1 package org.cacert.gigi.api;
3 import java.io.IOException;
4 import java.security.GeneralSecurityException;
6 import javax.servlet.http.HttpServletRequest;
7 import javax.servlet.http.HttpServletResponse;
9 import org.cacert.gigi.GigiApiException;
10 import org.cacert.gigi.dbObjects.Certificate;
11 import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
12 import org.cacert.gigi.dbObjects.CertificateProfile;
13 import org.cacert.gigi.dbObjects.Job;
14 import org.cacert.gigi.dbObjects.User;
15 import org.cacert.gigi.pages.account.certs.CertificateRequest;
16 import org.cacert.gigi.util.AuthorizationContext;
17 import org.cacert.gigi.util.PEM;
19 public class CreateCertificate extends APIPoint {
21 public static final String PATH = "/account/certs/new";
24 public void process(HttpServletRequest req, HttpServletResponse resp, User u) throws IOException {
25 String csr = req.getParameter("csr");
27 resp.sendError(500, "Error, no CSR found");
30 CertificateProfile cp = null;
31 String cpS = req.getParameter("profile");
33 cp = CertificateProfile.getByName(cpS);
35 resp.sendError(500, "Error, profile " + cpS + "not found");
40 CertificateRequest cr = new CertificateRequest(new AuthorizationContext(u, u), csr, cp);
41 Certificate result = cr.draft();
42 Job job = result.issue(null, "2y", u);
44 if (result.getStatus() != CertificateStatus.ISSUED) {
45 resp.sendError(510, "Error, issuing timed out");
48 resp.getWriter().println(PEM.encode("CERTIFICATE", result.cert().getEncoded()));
50 } catch (GeneralSecurityException e) {
52 } catch (GigiApiException e) {
54 } catch (InterruptedException e) {