com.netscape.cms.servlet.processors
Class PKIProcessor

java.lang.Object
  extended by com.netscape.cms.servlet.processors.PKIProcessor
All Implemented Interfaces:
IPKIProcessor
Direct Known Subclasses:
CMCProcessor, CRMFProcessor, KeyGenProcessor, PKCS10Processor

public class PKIProcessor
extends java.lang.Object
implements IPKIProcessor

Process Certificate Requests

Version:
$Revision: 1211 $, $Date: 2010-08-18 10:15:37 -0700 (Wed, 18 Aug 2010) $

Field Summary
static java.lang.String ADMIN_ENROLL_SERVLET_ID
           
static java.lang.String CERT_TYPE
           
protected  javax.servlet.http.HttpServletRequest httpReq
           
protected  CMSRequest mRequest
           
protected  CMSServlet mServlet
           
protected  java.lang.String mServletId
           
protected  ILogger mSignedAuditLogger
           
static java.lang.String OLD_CERT_TYPE
           
static java.lang.String PKCS10_REQUEST
           
static java.lang.String SUBJECT_KEYGEN_INFO
           
static java.lang.String SUBJECT_NAME
           
 
Constructor Summary
PKIProcessor()
           
PKIProcessor(CMSRequest cmsReq, CMSServlet servlet)
           
 
Method Summary
protected  void audit(java.lang.String msg)
          Signed Audit Log This method is inherited by all extended "CMSServlet"s, and is called to store messages to the signed audit log.
protected  java.lang.String auditSubjectID()
          Signed Audit Log Subject ID This method is inherited by all extended "CMSServlet"s, and is called to obtain the "SubjectID" for a signed audit log message.
protected  void fillCertInfo(java.lang.String protocolString, netscape.security.x509.X509CertInfo certInfo, IAuthToken authToken, IArgBlock httpParams)
           
protected  netscape.security.x509.X509CertInfo[] fillCertInfoArray(java.lang.String protocolString, IAuthToken authToken, IArgBlock httpParams, IRequest req)
           
static void fillCertInfoFromAuthToken(netscape.security.x509.X509CertInfo certInfo, IAuthToken authToken)
          fill subject name, validity, extensions from authoken if any, overriding what was in pkcs10.
static void fillCertInfoFromForm(netscape.security.x509.X509CertInfo certInfo, IArgBlock httpParams)
          fill subject name, extension from form.
static void fillValidityFromForm(netscape.security.x509.X509CertInfo certInfo, IArgBlock httpParams)
           
static void log(int event, int level, java.lang.String msg)
          log according to authority category.
static void log(int level, java.lang.String msg)
           
 void process(CMSRequest cmsReq)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

ADMIN_ENROLL_SERVLET_ID

public static final java.lang.String ADMIN_ENROLL_SERVLET_ID
See Also:
Constant Field Values

SUBJECT_NAME

public static final java.lang.String SUBJECT_NAME
See Also:
Constant Field Values

OLD_CERT_TYPE

public static final java.lang.String OLD_CERT_TYPE
See Also:
Constant Field Values

CERT_TYPE

public static final java.lang.String CERT_TYPE
See Also:
Constant Field Values

PKCS10_REQUEST

public static final java.lang.String PKCS10_REQUEST
See Also:
Constant Field Values

SUBJECT_KEYGEN_INFO

public static final java.lang.String SUBJECT_KEYGEN_INFO
See Also:
Constant Field Values

mRequest

protected CMSRequest mRequest

httpReq

protected javax.servlet.http.HttpServletRequest httpReq

mServletId

protected java.lang.String mServletId

mServlet

protected CMSServlet mServlet

mSignedAuditLogger

protected ILogger mSignedAuditLogger
Constructor Detail

PKIProcessor

public PKIProcessor()

PKIProcessor

public PKIProcessor(CMSRequest cmsReq,
                    CMSServlet servlet)
Method Detail

process

public void process(CMSRequest cmsReq)
             throws EBaseException
Specified by:
process in interface IPKIProcessor
Throws:
EBaseException

fillCertInfo

protected void fillCertInfo(java.lang.String protocolString,
                            netscape.security.x509.X509CertInfo certInfo,
                            IAuthToken authToken,
                            IArgBlock httpParams)
                     throws EBaseException
Throws:
EBaseException

fillCertInfoArray

protected netscape.security.x509.X509CertInfo[] fillCertInfoArray(java.lang.String protocolString,
                                                                  IAuthToken authToken,
                                                                  IArgBlock httpParams,
                                                                  IRequest req)
                                                           throws EBaseException
Throws:
EBaseException

fillCertInfoFromAuthToken

public static void fillCertInfoFromAuthToken(netscape.security.x509.X509CertInfo certInfo,
                                             IAuthToken authToken)
                                      throws EBaseException
fill subject name, validity, extensions from authoken if any, overriding what was in pkcs10. fill subject name, extensions from http input if not authenticated. requests not authenticated will need to be approved by an agent.

Throws:
EBaseException

fillCertInfoFromForm

public static void fillCertInfoFromForm(netscape.security.x509.X509CertInfo certInfo,
                                        IArgBlock httpParams)
                                 throws EBaseException
fill subject name, extension from form. this is done for unauthenticated requests. unauthenticated requests must be approved by agents so these will all be seen by and agent.

Throws:
EBaseException

fillValidityFromForm

public static void fillValidityFromForm(netscape.security.x509.X509CertInfo certInfo,
                                        IArgBlock httpParams)
                                 throws EBaseException
Throws:
EBaseException

log

public static void log(int event,
                       int level,
                       java.lang.String msg)
log according to authority category.


log

public static void log(int level,
                       java.lang.String msg)

audit

protected void audit(java.lang.String msg)
Signed Audit Log This method is inherited by all extended "CMSServlet"s, and is called to store messages to the signed audit log.

Parameters:
msg - signed audit log message

auditSubjectID

protected java.lang.String auditSubjectID()
Signed Audit Log Subject ID This method is inherited by all extended "CMSServlet"s, and is called to obtain the "SubjectID" for a signed audit log message.

Returns:
id string containing the signed audit log message SubjectID