1 package club.wpia.gigi.api;
3 import java.io.IOException;
5 import javax.servlet.http.HttpServletRequest;
6 import javax.servlet.http.HttpServletResponse;
8 import club.wpia.gigi.dbObjects.Certificate;
9 import club.wpia.gigi.dbObjects.Certificate.CertificateStatus;
10 import club.wpia.gigi.dbObjects.Certificate.RevocationType;
11 import club.wpia.gigi.dbObjects.Job;
12 import club.wpia.gigi.dbObjects.User;
14 public class RevokeCertificate extends APIPoint {
16 public static final String PATH = "/account/certs/revoke";
19 public void process(HttpServletRequest req, HttpServletResponse resp, User u) throws IOException {
21 if ( !req.getMethod().equals("POST")) {
22 resp.sendError(500, "Error, POST required.");
26 if (req.getQueryString() != null) {
27 resp.sendError(500, "Error, no query String allowed.");
31 String tserial = req.getParameter("serial");
32 if (tserial == null) {
33 resp.sendError(500, "Error, no Serial found");
37 Certificate c = Certificate.getBySerial(tserial);
38 if (c == null || c.getOwner() != u) {
39 resp.sendError(403, "Access Denied");
43 Job job = c.revoke(RevocationType.USER);
45 if (c.getStatus() != CertificateStatus.REVOKED) {
46 resp.sendError(510, "Error, issuing timed out");
50 resp.getWriter().println("OK");