X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2Fapi%2FCATSResolve.java;h=332885a97f08411df3d50cb3f48843b27767be04;hb=635da69a876542e30ed5cc5cbdc1ef4a9793ddfe;hp=1b25e9d5dd241c49d8e04f94272ad9b505ff1670;hpb=aa5723dbb64ec8efa63909d39ff72364f0a5ee96;p=gigi.git diff --git a/src/org/cacert/gigi/api/CATSResolve.java b/src/org/cacert/gigi/api/CATSResolve.java index 1b25e9d5..332885a9 100644 --- a/src/org/cacert/gigi/api/CATSResolve.java +++ b/src/org/cacert/gigi/api/CATSResolve.java @@ -5,30 +5,27 @@ import java.io.IOException; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; +import org.cacert.gigi.dbObjects.Certificate; import org.cacert.gigi.dbObjects.CertificateOwner; -import org.cacert.gigi.dbObjects.Organisation; import org.cacert.gigi.dbObjects.User; -public class CATSResolve extends APIPoint { +public class CATSResolve extends CATSRestrictedApi { public static final String PATH = "/cats/resolve"; @Override - public void process(HttpServletRequest req, HttpServletResponse resp, CertificateOwner u) throws IOException { - if ( !(u instanceof Organisation)) { - resp.sendError(500, "Error, invalid cert"); - return; - } - if ( !((Organisation) u).isSelfOrganisation()) { - resp.sendError(500, "Error, invalid cert"); - return; - } + public void processAuthenticated(HttpServletRequest req, HttpServletResponse resp) throws IOException { String target = req.getParameter("serial"); if (target == null) { resp.sendError(500, "Error, requires a serial parameter"); return; } - + target = target.toLowerCase(); + Certificate clientCert = Certificate.getBySerial(target); + if (clientCert == null) { + resp.sendError(500, "Error, requires valid serial"); + return; + } CertificateOwner o = CertificateOwner.getByEnabledSerial(target); if ( !(o instanceof User)) { resp.sendError(500, "Error, requires valid serial");