com.netscape.certsrv.publish
Interface ICRLPublisher
public interface ICRLPublisher
This interface represents a CRL publisher that is
invoked when CRL publishing is requested by CMS.
Note that CMS, by default, shipped with a LDAP-based
CRL publisher that can be configured via
Certificiate Manager/LDAP Publishing panel. This
interface provides administrator additional capability
of publishing CRL to different destinations.
The CRL publishing frequency is configured via
Netscape Certificate Server Console's
Certificate Manager/Revocation List panel.
The CRL publishing may occur either everytime a
certificate is revoked or at a pre-defined interval.
To try out this new CRL publisher mechanism, do
the following:
(1) Write a sample CRL publisher class that implements
ICRLPublisher interface. For example,
public class CRLPublisher implements ICRLPublisher
{
public void init(ISubsystem owner, IConfigStore config)
throws EBaseException
{
log(ILogger.LL_DEBUG, "CRLPublisher: Initialized");
}
public void publish(String issuingPointId, X509CRLImpl crl)
throws EBaseException
{
log(ILogger.LL_DEBUG, "CRLPublisher: " + issuingPointId +
" crl=" + crl);
}
public void log(int level, String msg)
{
Logger.getLogger().log(ILogger.EV_SYSTEM,
null, ILogger.S_OTHER, level,
msg);
}
}
(2) Compile the class and place the class into
\bin\cert\classes directory.
(3) Add the following parameter to CMS.cfg
ca.crlPublisher.class=
For example,
ca.crlPublisher.class=myCRLPublisher
- Version:
- $Revision: 1211 $, $Date: 2010-08-18 10:15:37 -0700 (Wed, 18 Aug 2010) $
Method Summary |
void |
init(ISubsystem owner,
IConfigStore config)
Initializes this CRL publisher. |
void |
publish(java.lang.String issuingPointId,
netscape.security.x509.X509CRLImpl crl)
Publishes CRL. |
init
void init(ISubsystem owner,
IConfigStore config)
throws EBaseException
- Initializes this CRL publisher.
- Parameters:
owner
- parent of the publisher. An object of type
CertificateAuthority.config
- config store for this publisher. If this
publisher requires configuration parameters for
initialization, the parameters should be placed
in CMS.cfg as ca.crlPublisher.=
- Throws:
EBaseException
- failed to initialize this publisher
publish
void publish(java.lang.String issuingPointId,
netscape.security.x509.X509CRLImpl crl)
throws EBaseException
- Publishes CRL. This method is invoked by CMS based
on the configured CRL publishing frequency.
- Parameters:
issuingPointId
- CRL issuing point identifier
(i.e. MasterCRL)crl
- CRL that is publishing
- Throws:
EBaseException
- failed to publish