src/org/cacert/gigi/api/CreateCertificate.java

   1 package org.cacert.gigi.api;
   2
   3 import java.io.IOException;
   4 import java.io.PrintWriter;
   5 import java.security.GeneralSecurityException;
   6
   7 import javax.servlet.http.HttpServletRequest;
   8 import javax.servlet.http.HttpServletResponse;
   9
  10 import org.cacert.gigi.GigiApiException;
  11 import org.cacert.gigi.dbObjects.Certificate;
  12 import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
  13 import org.cacert.gigi.dbObjects.CertificateProfile;
  14 import org.cacert.gigi.dbObjects.Job;
  15 import org.cacert.gigi.dbObjects.User;
  16 import org.cacert.gigi.pages.account.certs.CertificateRequest;
  17 import org.cacert.gigi.util.AuthorizationContext;
  18 import org.cacert.gigi.util.CertExporter;
  19
  20 public class CreateCertificate extends APIPoint {
  21
  22     public static final String PATH = "/account/certs/new";
  23
  24     @Override
  25     public void process(HttpServletRequest req, HttpServletResponse resp, User u) throws IOException {
  26         String csr = req.getParameter("csr");
  27         if (csr == null) {
  28             resp.sendError(500, "Error, no CSR found");
  29             return;
  30         }
  31         CertificateProfile cp = null;
  32         String cpS = req.getParameter("profile");
  33         if (cpS != null) {
  34             cp = CertificateProfile.getByName(cpS);
  35             if (cp == null) {
  36                 resp.sendError(500, "Error, profile " + cpS + "not found");
  37                 return;
  38             }
  39         }
  40         try {
  41             CertificateRequest cr = new CertificateRequest(new AuthorizationContext(u, u), csr, cp);
  42             Certificate result = cr.draft();
  43             Job job = result.issue(null, "2y", u);
  44             job.waitFor(60000);
  45             if (result.getStatus() != CertificateStatus.ISSUED) {
  46                 resp.sendError(510, "Error, issuing timed out");
  47                 return;
  48             }
  49
  50             CertExporter.writeCertCrt(result, resp.getOutputStream(), req.getParameter("chain") != null, req.getParameter("noAnchor") == null);
  51             return;
  52         } catch (GeneralSecurityException e) {
  53             resp.sendError(500, "Crypto failed");
  54         } catch (GigiApiException e) {
  55             resp.setStatus(500);
  56             PrintWriter wr = resp.getWriter();
  57             e.formatPlain(wr);
  58         } catch (InterruptedException e) {
  59             resp.sendError(500, "Interrupted");
  60         }
  61     }
  62 }