1 package org.cacert.gigi.api;
3 import java.io.IOException;
4 import java.io.PrintWriter;
5 import java.security.GeneralSecurityException;
7 import javax.servlet.http.HttpServletRequest;
8 import javax.servlet.http.HttpServletResponse;
10 import org.cacert.gigi.GigiApiException;
11 import org.cacert.gigi.dbObjects.Certificate;
12 import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
13 import org.cacert.gigi.dbObjects.CertificateProfile;
14 import org.cacert.gigi.dbObjects.Job;
15 import org.cacert.gigi.dbObjects.Organisation;
16 import org.cacert.gigi.dbObjects.User;
17 import org.cacert.gigi.pages.account.certs.CertificateRequest;
18 import org.cacert.gigi.util.AuthorizationContext;
19 import org.cacert.gigi.util.CertExporter;
21 public class CreateCertificate extends APIPoint {
23 public static final String PATH = "/account/certs/new";
26 public void process(HttpServletRequest req, HttpServletResponse resp, User u) throws IOException {
27 String csr = req.getParameter("csr");
29 resp.sendError(500, "Error, no CSR found");
32 CertificateProfile cp = null;
33 String cpS = req.getParameter("profile");
35 cp = CertificateProfile.getByName(cpS);
37 resp.sendError(500, "Error, profile not found");
41 AuthorizationContext ctx = new AuthorizationContext(u, u);
42 String asOrg = req.getParameter("asOrg");
45 int i = Integer.parseInt(asOrg);
46 Organisation o0 = null;
47 for (Organisation o : u.getOrganisations()) {
54 resp.sendError(500, "Error, Organisation with id " + i + " not found.");
57 ctx = new AuthorizationContext(o0, u);
59 } catch (NumberFormatException e) {
60 resp.sendError(500, "Error, as Org is not an integer");
65 CertificateRequest cr = new CertificateRequest(ctx, csr, cp);
66 Certificate result = cr.draft();
67 Job job = result.issue(null, "2y", u);
69 if (result.getStatus() != CertificateStatus.ISSUED) {
70 resp.sendError(510, "Error, issuing timed out");
73 resp.addHeader("Content-Type", "text/plain");
74 CertExporter.writeCertCrt(result, resp.getOutputStream(), req.getParameter("chain") != null, req.getParameter("noAnchor") == null, true);
76 } catch (GeneralSecurityException e) {
77 resp.sendError(500, "Crypto failed");
78 } catch (GigiApiException e) {
80 PrintWriter wr = resp.getWriter();