src/org/cacert/gigi/pages/admin/support/SupportRevokeCertificatesForm.java

   1 package org.cacert.gigi.pages.admin.support;
   2
   3 import java.io.IOException;
   4 import java.io.PrintWriter;
   5 import java.security.GeneralSecurityException;
   6 import java.util.Date;
   7 import java.util.Map;
   8
   9 import javax.servlet.http.HttpServletRequest;
  10
  11 import org.cacert.gigi.GigiApiException;
  12 import org.cacert.gigi.dbObjects.Certificate;
  13 import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
  14 import org.cacert.gigi.dbObjects.CertificateProfile;
  15 import org.cacert.gigi.dbObjects.SupportedUser;
  16 import org.cacert.gigi.dbObjects.User;
  17 import org.cacert.gigi.localisation.Language;
  18 import org.cacert.gigi.output.template.Form;
  19 import org.cacert.gigi.output.template.IterableDataset;
  20 import org.cacert.gigi.output.template.Outputable;
  21 import org.cacert.gigi.output.template.SprintfCommand;
  22 import org.cacert.gigi.output.template.Template;
  23
  24 public class SupportRevokeCertificatesForm extends Form {
  25
  26     private static final Template t = new Template(SupportRevokeCertificatesForm.class.getResource("SupportRevokeCertificatesForm.templ"));
  27
  28     private SupportedUser user;
  29
  30     public SupportRevokeCertificatesForm(HttpServletRequest hsr, SupportedUser user) {
  31         super(hsr);
  32         this.user = user;
  33     }
  34
  35     @Override
  36     public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
  37         if (user.getTicket() != null) {
  38             user.revokeAllCertificates();
  39             User target = user.getTargetUser();
  40             // send notification to support
  41             String subject = "Revoke certificates";
  42             Outputable message = SprintfCommand.createSimple("All certificates in the account {0} <{1}> have been revoked.", target.getPreferredName().toString(), target.getEmail());
  43             user.sendSupportNotification(subject, message);
  44             // send notification to user
  45             subject = "Revoke certificate";
  46             message = SprintfCommand.createSimple("All certificates in your account have been revoked.");
  47             user.sendSupportUserNotification(subject, message);
  48             return true;
  49         }
  50         return false;
  51     }
  52
  53     @Override
  54     protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
  55         final Certificate[] certs = user.getCertificates(true);
  56         final CertificateProfile[] profiles = CertificateProfile.getAll();
  57         vars.put("types", new IterableDataset() {
  58
  59             int typeIndex = 0;
  60
  61             @Override
  62             public boolean next(Language l, Map<String, Object> vars) {
  63                 if (typeIndex > profiles.length - 1) {
  64                     return false;
  65                 }
  66                 int valid = 0;
  67                 int total = 0;
  68                 int revoked = 0;
  69                 long lastExpire = Long.MIN_VALUE;
  70                 for (int i = 0; i < certs.length; i++) {
  71                     try {
  72                         if (certs[i].getProfile().getId() != profiles[typeIndex].getId()) {
  73                             continue;
  74                         }
  75                         total++;
  76                         if (certs[i].getStatus() == CertificateStatus.DRAFT) {
  77                             continue;
  78                         }
  79                         if (certs[i].getStatus() == CertificateStatus.REVOKED) {
  80                             revoked++;
  81                             continue;
  82                         }
  83                         certs[i].cert().checkValidity();
  84                         lastExpire = Math.max(lastExpire, certs[i].cert().getNotAfter().getTime());
  85                         valid++;
  86                     } catch (GeneralSecurityException | IOException e) {
  87                         continue;
  88                     }
  89                 }
  90                 vars.put("total", total);
  91                 vars.put("profile", profiles[typeIndex].getVisibleName());
  92                 vars.put("valid", valid);
  93                 vars.put("exp", total - valid);
  94                 vars.put("rev", revoked);
  95                 if (lastExpire == Long.MIN_VALUE) {
  96                     vars.put("lastdate", "-");
  97                 } else {
  98                     vars.put("lastdate", new Date(lastExpire));
  99                 }
 100                 typeIndex++;
 101                 return true;
 102             }
 103         });
 104         t.output(out, l, vars);
 105     }
 106
 107 }