com.netscape.certsrv.publish
Interface ICRLPublisher


public interface ICRLPublisher

This interface represents a CRL publisher that is invoked when CRL publishing is requested by CMS. Note that CMS, by default, shipped with a LDAP-based CRL publisher that can be configured via Certificiate Manager/LDAP Publishing panel. This interface provides administrator additional capability of publishing CRL to different destinations. The CRL publishing frequency is configured via Netscape Certificate Server Console's Certificate Manager/Revocation List panel. The CRL publishing may occur either everytime a certificate is revoked or at a pre-defined interval. To try out this new CRL publisher mechanism, do the following: (1) Write a sample CRL publisher class that implements ICRLPublisher interface. For example, public class CRLPublisher implements ICRLPublisher { public void init(ISubsystem owner, IConfigStore config) throws EBaseException { log(ILogger.LL_DEBUG, "CRLPublisher: Initialized"); } public void publish(String issuingPointId, X509CRLImpl crl) throws EBaseException { log(ILogger.LL_DEBUG, "CRLPublisher: " + issuingPointId + " crl=" + crl); } public void log(int level, String msg) { Logger.getLogger().log(ILogger.EV_SYSTEM, null, ILogger.S_OTHER, level, msg); } } (2) Compile the class and place the class into \bin\cert\classes directory. (3) Add the following parameter to CMS.cfg ca.crlPublisher.class= For example, ca.crlPublisher.class=myCRLPublisher

Version:
$Revision: 1211 $, $Date: 2010-08-18 10:15:37 -0700 (Wed, 18 Aug 2010) $

Method Summary
 void init(ISubsystem owner, IConfigStore config)
          Initializes this CRL publisher.
 void publish(java.lang.String issuingPointId, netscape.security.x509.X509CRLImpl crl)
          Publishes CRL.
 

Method Detail

init

void init(ISubsystem owner,
          IConfigStore config)
          throws EBaseException
Initializes this CRL publisher.

Parameters:
owner - parent of the publisher. An object of type CertificateAuthority.
config - config store for this publisher. If this publisher requires configuration parameters for initialization, the parameters should be placed in CMS.cfg as ca.crlPublisher.=
Throws:
EBaseException - failed to initialize this publisher

publish

void publish(java.lang.String issuingPointId,
             netscape.security.x509.X509CRLImpl crl)
             throws EBaseException
Publishes CRL. This method is invoked by CMS based on the configured CRL publishing frequency.

Parameters:
issuingPointId - CRL issuing point identifier (i.e. MasterCRL)
crl - CRL that is publishing
Throws:
EBaseException - failed to publish