X-Git-Url: https://code.wpia.club/?p=gigi.git;a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2Fapi%2FCATSRestrictedApi.java;fp=src%2Forg%2Fcacert%2Fgigi%2Fapi%2FCATSRestrictedApi.java;h=0000000000000000000000000000000000000000;hp=b7ff83a9753df78b0439a854f69d59a34e50f258;hb=bccd4cc0dba0f89aa045b113bac46eb8cc1dab4e;hpb=c9ed09f0007fc2c813815be927a5a24b23dab83c diff --git a/src/org/cacert/gigi/api/CATSRestrictedApi.java b/src/org/cacert/gigi/api/CATSRestrictedApi.java deleted file mode 100644 index b7ff83a9..00000000 --- a/src/org/cacert/gigi/api/CATSRestrictedApi.java +++ /dev/null @@ -1,44 +0,0 @@ -package org.cacert.gigi.api; - -import java.io.IOException; - -import javax.servlet.http.HttpServletRequest; -import javax.servlet.http.HttpServletResponse; - -import org.cacert.gigi.dbObjects.Certificate; -import org.cacert.gigi.dbObjects.Certificate.SANType; -import org.cacert.gigi.dbObjects.Certificate.SubjectAlternateName; -import org.cacert.gigi.dbObjects.CertificateOwner; -import org.cacert.gigi.dbObjects.Organisation; -import org.cacert.gigi.util.ServerConstants; - -public abstract class CATSRestrictedApi extends APIPoint { - - @Override - public final void process(HttpServletRequest req, HttpServletResponse resp, CertificateOwner u, Certificate clientCert) throws IOException { - if ( !(u instanceof Organisation)) { - resp.sendError(500, "Error, invalid cert"); - return; - } - if ( !((Organisation) u).isSelfOrganisation()) { - resp.sendError(500, "Error, invalid cert"); - return; - } - if ( !hasMail(clientCert, ServerConstants.getQuizMailAddress())) { - resp.sendError(500, "Error, invalid cert"); - return; - } - processAuthenticated(req, resp); - } - - public abstract void processAuthenticated(HttpServletRequest req, HttpServletResponse resp) throws IOException; - - public boolean hasMail(Certificate clientCert, String mail) { - for (SubjectAlternateName a : clientCert.getSANs()) { - if (a.getType() == SANType.EMAIL && a.getName().equals(mail)) { - return true; - } - } - return false; - } -}