import java.io.IOException;
import java.io.PrintWriter;
import java.lang.reflect.Field;
+import java.security.GeneralSecurityException;
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.Signature;
import java.sql.Date;
+import java.util.Base64;
import java.util.Calendar;
import java.util.GregorianCalendar;
import java.util.HashMap;
import javax.servlet.http.HttpServletResponse;
import org.cacert.gigi.GigiApiException;
+import org.cacert.gigi.crypto.SPKAC;
import org.cacert.gigi.database.DatabaseConnection;
import org.cacert.gigi.database.GigiPreparedStatement;
+import org.cacert.gigi.dbObjects.Certificate;
+import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
+import org.cacert.gigi.dbObjects.Digest;
import org.cacert.gigi.dbObjects.EmailAddress;
import org.cacert.gigi.dbObjects.Group;
+import org.cacert.gigi.dbObjects.Name;
import org.cacert.gigi.dbObjects.User;
import org.cacert.gigi.email.EmailProvider;
import org.cacert.gigi.localisation.Language;
-import org.cacert.gigi.output.Form;
import org.cacert.gigi.output.template.IterableDataset;
import org.cacert.gigi.output.template.Template;
+import org.cacert.gigi.pages.account.certs.CertificateRequest;
import org.cacert.gigi.util.Notary;
+import sun.security.x509.X509Key;
+
public class Manager extends Page {
public static final String PATH = "/manager";
String mail = "test-assurer" + i + "@example.com";
User u = User.getByEmail(mail);
if (u == null) {
+ System.out.println("Creating assurer");
createUser(mail);
u = User.getByEmail(mail);
passCATS(u);
}
- public class ManagementForm extends Form {
-
- public ManagementForm(HttpServletRequest hsr) {
- super(hsr);
- }
-
- @Override
- public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
- return false;
- }
-
- @Override
- protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
- getDefaultTemplate().output(out, l, vars);
- }
-
- }
-
public void batchCreateUsers(String mailPrefix, String domain, int amount, PrintWriter out) {
try {
private void createUser(String email) throws GigiApiException, IllegalAccessException {
User u = new User();
- u.setFname("Först");
- u.setMname("Müddle");
- u.setLname("Läst");
- u.setSuffix("Süffix");
+ u.setName(new Name("Först", "Läst", "Müddle", "Süffix"));
u.setEmail(email);
Calendar gc = GregorianCalendar.getInstance();
gc.set(1990, 0, 1);
- u.setDob(new Date(gc.getTime().getTime()));
+ u.setDoB(new Date(gc.getTime().getTime()));
u.setPreferredLocale(Locale.ENGLISH);
u.insert("xvXV12°§");
EmailAddress ea = new EmailAddress(u, email);
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
if (req.getParameter("create") != null) {
batchCreateUsers(req.getParameter("prefix"), req.getParameter("suffix"), Integer.parseInt(req.getParameter("amount")), resp.getWriter());
+ resp.getWriter().println("User batch created.");
} else if (req.getParameter("addpriv") != null || req.getParameter("delpriv") != null) {
User u = User.getByEmail(req.getParameter("email"));
if (u == null) {
}
if (req.getParameter("addpriv") != null) {
u.grantGroup(u, Group.getByString(req.getParameter("priv")));
+ resp.getWriter().println("Privilege granted");
} else {
u.revokeGroup(u, Group.getByString(req.getParameter("priv")));
+ resp.getWriter().println("Privilege revoked");
}
-
} else if (req.getParameter("fetch") != null) {
String mail = req.getParameter("femail");
fetchMails(req, resp, mail);
return;
}
passCATS(byEmail);
+ resp.getWriter().println("User has been passed CATS");
} else if (req.getParameter("assure") != null) {
String mail = req.getParameter("assureEmail");
User byEmail = User.getByEmail(mail);
}
try {
for (int i = 0; i < getAssurers().length; i++) {
- Notary.assure(getAssurers()[i], byEmail, byEmail.getName(), byEmail.getDob(), 10, "Testmanager Assure up code", "2014-11-06");
+ Notary.assure(getAssurers()[i], byEmail, byEmail.getName(), byEmail.getDoB(), 10, "Testmanager Assure up code", "2014-11-06");
}
} catch (GigiApiException e) {
throw new Error(e);
}
+ resp.getWriter().println("User has been assured.");
+ } else if (req.getParameter("addEmail") != null) {
+ User u = User.getByEmail(req.getParameter("addEmailEmail"));
+ EmailAddress ea = new EmailAddress(u, req.getParameter("addEmailNew"));
+ try {
+ ea.insert(Language.getInstance(Locale.ENGLISH));
+ String hash = (String) f.get(ea);
+ ea.verify(hash);
+ resp.getWriter().println("Email added and verified");
+ } catch (IllegalArgumentException e) {
+ e.printStackTrace();
+ resp.getWriter().println("An internal error occured.");
+ } catch (IllegalAccessException e) {
+ e.printStackTrace();
+ resp.getWriter().println("An internal error occured.");
+ } catch (GigiApiException e) {
+ e.format(resp.getWriter(), Language.getInstance(Locale.ENGLISH));
+ }
+ } else if (req.getParameter("addCert") != null) {
+ User u = User.getByEmail(req.getParameter("addCertEmail"));
+ try {
+ KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
+ kpg.initialize(4096);
+ KeyPair kp = kpg.generateKeyPair();
+ SPKAC s = new SPKAC((X509Key) kp.getPublic(), "challange");
+ Signature sign = Signature.getInstance("SHA512withRSA");
+ sign.initSign(kp.getPrivate());
+
+ byte[] res = s.getEncoded(sign);
+
+ CertificateRequest cr = new CertificateRequest(u, Base64.getEncoder().encodeToString(res), "challange");
+ cr.update(CertificateRequest.DEFAULT_CN, Digest.SHA512.toString(), "client", null, "", "email:" + u.getEmail(), resp.getWriter(), req);
+ Certificate draft = cr.draft();
+ draft.issue(null, "2y").waitFor(10000);
+ if (draft.getStatus() == CertificateStatus.ISSUED) {
+ resp.getWriter().println("added certificate");
+ } else {
+ resp.getWriter().println("signer failed");
+ }
+ } catch (GeneralSecurityException e1) {
+ e1.printStackTrace();
+ resp.getWriter().println("error");
+ } catch (GigiApiException e) {
+ e.format(resp.getWriter(), Language.getInstance(Locale.ENGLISH));
+ } catch (InterruptedException e) {
+ e.printStackTrace();
+ resp.getWriter().println("interrupted");
+ }
+
}
}
@Override
public boolean next(Language l, Map<String, Object> vars) {
- if ( !s.hasNext())
+ if ( !s.hasNext()) {
return false;
+ }
vars.put("body", s.next().replaceAll("(https?://\\S+)", "<a href=\"$1\">$1</a>"));
return true;
}
}
}
+ private Template form = new Template(Manager.class.getResource("Manager.templ"));
+
@Override
public boolean needsLogin() {
return false;
return;
}
- new ManagementForm(req).output(resp.getWriter(), getLanguage(req), new HashMap<String, Object>());
+ form.output(resp.getWriter(), getLanguage(req), new HashMap<String, Object>());
}
}
projects / gigi.git / blobdiff