import javax.servlet.http.HttpSession;
import org.cacert.gigi.database.DatabaseConnection;
-import org.cacert.gigi.email.EmailProvider;
import org.cacert.gigi.localisation.Language;
import org.cacert.gigi.output.Form.CSRFException;
import org.cacert.gigi.output.Menu;
Menu m;
public Gigi(Properties conf) {
- EmailProvider.init(conf);
DatabaseConnection.init(conf);
}
import java.io.IOException;
import java.security.GeneralSecurityException;
+import java.security.Key;
import java.security.KeyStore;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.security.cert.Certificate;
import java.util.List;
import java.util.Properties;
import javax.net.ssl.SSLSession;
import org.cacert.gigi.api.GigiAPI;
+import org.cacert.gigi.email.EmailProvider;
import org.cacert.gigi.natives.SetUID;
import org.cacert.gigi.util.CipherInfo;
import org.cacert.gigi.util.ServerConstants;
public static void main(String[] args) throws Exception {
GigiConfig conf = GigiConfig.parse(System.in);
ServerConstants.init(conf.getMainProps());
+ initEmails(conf);
Server s = new Server();
// === SSL HTTP Configuration ===
}
}
+ private static void initEmails(GigiConfig conf) throws GeneralSecurityException, IOException, KeyStoreException, NoSuchAlgorithmException, UnrecoverableKeyException {
+ KeyStore privateStore = conf.getPrivateStore();
+ Certificate mail = privateStore.getCertificate("mail");
+ Key k = privateStore.getKey("mail", conf.getPrivateStorePw().toCharArray());
+ EmailProvider.initSystem(conf.getMainProps(), mail, k);
+ }
+
private static SslConnectionFactory createConnectionFactory(GigiConfig conf) throws GeneralSecurityException, IOException {
final SslContextFactory sslContextFactory = generateSSLContextFactory(conf, "www");
final SslContextFactory secureContextFactory = generateSSLContextFactory(conf, "secure");
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.Socket;
+import java.security.GeneralSecurityException;
+import java.security.Key;
+import java.security.PrivateKey;
+import java.security.cert.Certificate;
+import java.security.cert.X509Certificate;
import java.sql.PreparedStatement;
import java.sql.SQLException;
import java.util.LinkedList;
import java.util.Properties;
import java.util.regex.Pattern;
+import org.cacert.gigi.crypto.SMIME;
import org.cacert.gigi.database.DatabaseConnection;
public abstract class EmailProvider {
private static EmailProvider instance;
+ private X509Certificate c;
+
+ private PrivateKey k;
+
+ protected final void init(Certificate c, Key k) {
+ this.c = (X509Certificate) c;
+ this.k = (PrivateKey) k;
+ }
+
+ protected final void sendSigned(String contents, PrintWriter output) throws IOException, GeneralSecurityException {
+ SMIME.smime(contents, k, c, output);
+ }
+
public static EmailProvider getInstance() {
return instance;
}
EmailProvider.instance = instance;
}
- public static void init(Properties conf) {
+ public static void initSystem(Properties conf, Certificate cert, Key pk) {
try {
Class<?> c = Class.forName(conf.getProperty("emailProvider"));
- instance = (EmailProvider) c.getDeclaredConstructor(Properties.class).newInstance(conf);
+ EmailProvider ep = (EmailProvider) c.getDeclaredConstructor(Properties.class).newInstance(conf);
+ ep.init(cert, pk);
+ instance = ep;
} catch (ReflectiveOperationException e) {
e.printStackTrace();
}
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.Socket;
+import java.security.GeneralSecurityException;
import java.text.SimpleDateFormat;
import java.util.Base64;
import java.util.Date;
import java.util.Properties;
import java.util.regex.Pattern;
+import org.cacert.gigi.util.ServerConstants;
+
public class Sendmail extends EmailProvider {
protected Sendmail(Properties props) {}
String[] bits = from.split(",");
- Socket smtp = new Socket("dogcraft.de", 25);
+ Socket smtp = new Socket("localhost", 25);
PrintWriter out = new PrintWriter(smtp.getOutputStream());
BufferedReader in = new BufferedReader(new InputStreamReader(smtp.getInputStream()));
readResponse(in);
} else {
out.print("Reply-To: " + from + "\r\n");
}
- out.print("From: " + from + "\r\n");
+ out.print("From: support@" + ServerConstants.getWwwHostName().replaceAll("^www.", "") + "\r\n");
out.print("To: " + to + "\r\n");
if (NON_ASCII.matcher(subject).matches()) {
} else {
out.print("Subject: " + subject + "\r\n");
}
- out.print("Mime-Version: 1.0\r\n");
- if ( !extra) {
- out.print("Content-Type: text/plain; charset=\"utf-8\"\r\n");
- out.print("Content-Transfer-Encoding: 8bit\r\n");
- } else {
- out.print("Content-Type: text/plain; charset=\"iso-8859-1\"\r\n");
- out.print("Content-Transfer-Encoding: quoted-printable\r\n");
- out.print("Content-Disposition: inline\r\n");
- }
- // out.print("Content-Transfer-Encoding: BASE64\r\n");
- out.print("\r\n");
+ StringBuffer headers = new StringBuffer();
+ headers.append("Content-Type: text/plain; charset=\"utf-8\"\r\n");
+ headers.append("Content-Transfer-Encoding: base64\r\n");
// out.print(chunk_split(base64_encode(recode("html..utf-8",
// $message)))."\r\n.\r\n");
- message = message + "\r\n";
+ headers.append("\r\n");
+ headers.append(Base64.getEncoder().encodeToString(message.getBytes("UTF-8")).replaceAll("(.{64})(?=.)", "$1\r\n"));
+ headers.append("\r\n");
- String sendM = message.replace("\r", "").replace("\n.\n", "\n").replace("\n.\n", "\n").replace("\n", "\r\n") + ".\r\n";
- out.print(sendM);
- out.flush();
+ try {
+ sendSigned(headers.toString(), out);
+ out.print("\r\n.\r\n");
+ out.flush();
+ } catch (GeneralSecurityException e) {
+ e.printStackTrace();
+ smtp.close();
+ return;
+ }
readResponse(in);
out.print("QUIT\n");
out.flush();