Class ConnectorServlet
- java.lang.Object
-
- javax.servlet.GenericServlet
-
- javax.servlet.http.HttpServlet
-
- com.netscape.cms.servlet.base.CMSServlet
-
- com.netscape.cms.servlet.connector.ConnectorServlet
-
- All Implemented Interfaces:
java.io.Serializable
,javax.servlet.Servlet
,javax.servlet.ServletConfig
public class ConnectorServlet extends CMSServlet
Connector servlet process requests from remote authority - service request or return status.- Author:
- cfu - Server-Side Keygen Enrollment implementation
- See Also:
- Serialized Form
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.String
INFO
static org.slf4j.Logger
logger
protected IAuthority
mAuthority
protected AuthSubsystem
mAuthSubsystem
protected javax.servlet.ServletConfig
mConfig
protected com.netscape.certsrv.connector.IRequestEncoder
mReqEncoder
static java.lang.String
PROP_AUTHORITY
-
Fields inherited from class com.netscape.cms.servlet.base.CMSServlet
ADMIN_GROUP, AUTH_FAILURE, AUTHMGR_PARAM, AUTHZ_MGR_BASIC, AUTHZ_MGR_LDAP, AUTHZ_SRC_LDAP, AUTHZ_SRC_TYPE, AUTHZ_SRC_XML, CA_AGENT_GROUP, CERT_ATTR, certAuthority, ERROR_MSG_TOKEN, ERROR_TEMPLATE, EXCEPTION_TEMPLATE, FAILURE, FINAL_ERROR_MSG, FULL_ENROLLMENT_REQUEST, FULL_ENROLLMENT_RESPONSE, FULL_RESPONSE, KRA_AGENT_GROUP, mAclMethod, mAuthMgr, mAuthz, mAuthzResourceName, mDontSaveHttpParams, mFinalErrorMsg, mGetClientCert, mId, mLogCategory, mOutputTemplatePath, mRenderResult, mRequestQueue, mSaveHttpHeaders, mServletConfig, mServletContext, mTemplates, OCSP_AGENT_GROUP, PENDING_TEMPLATE, PFX_AUTH_TOKEN, PFX_HTTP_HEADER, PFX_HTTP_PARAM, PROP_ACL, PROP_AUTHMGR, PROP_AUTHORITYID, PROP_AUTHZ_MGR, PROP_CLIENTAUTH, PROP_ERROR_TEMPLATE, PROP_EXCEPTION_TEMPLATE, PROP_FINAL_ERROR_MSG, PROP_ID, PROP_PENDING_TEMPLATE, PROP_REJECTED_TEMPLATE, PROP_RESOURCEID, PROP_SUCCESS_TEMPLATE, PROP_SUCCESS_TEMPLATE_FILLER, PROP_SVC_PENDING_TEMPLATE, PROP_UNAUTHORIZED_TEMPLATE, RA_AGENT_GROUP, REJECTED_TEMPLATE, servletConfig, signedAuditLogger, SIMPLE_ENROLLMENT_REQUEST, SIMPLE_ENROLLMENT_RESPONSE, SUCCESS, SUCCESS_TEMPLATE, SVC_PENDING_TEMPLATE, TEMPLATE_NAME, TRUSTED_RA_GROUP, UNAUTHORIZED_TEMPLATE
-
-
Constructor Summary
Constructors Constructor Description ConnectorServlet()
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description protected void
audit(com.netscape.certsrv.logging.LogEvent event)
protected void
audit(java.lang.String msg)
Signed Audit Log This method is inherited by all extended "CMSServlet"s, and is called to store messages to the signed audit log.protected java.lang.String
auditProfileID()
Signed Audit Log Profile ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "ProfileID" for a signed audit log message.protected java.security.cert.X509Certificate
getPeerCert(javax.servlet.http.HttpServletRequest req)
java.lang.String
getServletInfo()
void
init(javax.servlet.ServletConfig sc)
static boolean
isProfileRequest(com.netscape.certsrv.request.IRequest request)
void
normalizeProfileRequest(com.netscape.certsrv.request.IRequest request)
protected com.netscape.certsrv.connector.IPKIMessage
processRequest(java.lang.String source, java.lang.String sourceUserId, com.netscape.certsrv.connector.IPKIMessage msg, com.netscape.certsrv.authentication.IAuthToken token)
Process requestvoid
service(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
-
Methods inherited from class com.netscape.cms.servlet.base.CMSServlet
areCertsFromCA, auditGroupID, auditSubjectID, authenticate, authenticate, authenticate, authenticate, authorize, authorize, certIsRevoked, checkImportCertToNav, clientIsMSIE, clientIsNav, connectionIsSSL, doCMMFResponse, doFullResponse, formCRLEntry, generateSalt, getAuthCreds, getAuthMgr, getAuthToken, getCertRecord, getDontSaveHttpParams, getId, getLangFile, getLocale, getLocale, getRelPath, getSaveHttpHeaders, getSSLClientCertificate, getSSLClientCertificate, getTemplate, getX509Certificate, hashPassword, importCertToNav, invalidateSSLSession, isCertFromCA, isClientCertRequired, isSystemCertificate, newCMSRequest, newFillerObject, outputArgBlockAsXML, outputError, outputError, outputError, outputHttpParameters, outputResult, outputXML, process, renderException, renderFinalError, renderResult, renderTemplate, saveAuthToken, saveHttpHeaders, saveHttpParams, setDefaultTemplates, toHashtable
-
Methods inherited from class javax.servlet.http.HttpServlet
doDelete, doGet, doHead, doOptions, doPost, doPut, doTrace, getLastModified, service
-
-
-
-
Field Detail
-
logger
public static org.slf4j.Logger logger
-
INFO
public static final java.lang.String INFO
- See Also:
- Constant Field Values
-
PROP_AUTHORITY
public static final java.lang.String PROP_AUTHORITY
- See Also:
- Constant Field Values
-
mConfig
protected javax.servlet.ServletConfig mConfig
-
mAuthority
protected IAuthority mAuthority
-
mReqEncoder
protected com.netscape.certsrv.connector.IRequestEncoder mReqEncoder
-
mAuthSubsystem
protected AuthSubsystem mAuthSubsystem
-
-
Method Detail
-
init
public void init(javax.servlet.ServletConfig sc) throws javax.servlet.ServletException
- Specified by:
init
in interfacejavax.servlet.Servlet
- Overrides:
init
in classCMSServlet
- Throws:
javax.servlet.ServletException
-
service
public void service(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws javax.servlet.ServletException, java.io.IOException
- Overrides:
service
in classCMSServlet
- Throws:
javax.servlet.ServletException
java.io.IOException
-
isProfileRequest
public static boolean isProfileRequest(com.netscape.certsrv.request.IRequest request)
-
normalizeProfileRequest
public void normalizeProfileRequest(com.netscape.certsrv.request.IRequest request)
-
processRequest
protected com.netscape.certsrv.connector.IPKIMessage processRequest(java.lang.String source, java.lang.String sourceUserId, com.netscape.certsrv.connector.IPKIMessage msg, com.netscape.certsrv.authentication.IAuthToken token) throws EBaseException
Process request(Certificate Request - all "agent" profile cert requests made through a connector)
(Certificate Request Processed - all automated "agent" profile based cert acceptance made through a connector)
- signed.audit LOGGING_SIGNED_AUDIT_PROFILE_CERT_REQUEST used when a profile cert request is made (before approval process)
- signed.audit LOGGING_SIGNED_AUDIT_CERT_REQUEST_PROCESSED used when a certificate request has just been through the approval process
- signed.audit LOGGING_SIGNED_AUDIT_INTER_BOUNDARY_SUCCESS used when inter-CIMC_Boundary data transfer is successful (this is used when data does not need to be captured)
- Parameters:
source
- string containing sourcesourceUserId
- string containing source user IDmsg
- PKI messagetoken
- the authentication token- Returns:
- PKI message
- Throws:
EBaseException
- an error has occurred
-
getPeerCert
protected java.security.cert.X509Certificate getPeerCert(javax.servlet.http.HttpServletRequest req) throws EBaseException
- Throws:
EBaseException
-
getServletInfo
public java.lang.String getServletInfo()
- Specified by:
getServletInfo
in interfacejavax.servlet.Servlet
- Overrides:
getServletInfo
in classjavax.servlet.GenericServlet
-
audit
protected void audit(java.lang.String msg)
Signed Audit Log This method is inherited by all extended "CMSServlet"s, and is called to store messages to the signed audit log.- Overrides:
audit
in classCMSServlet
- Parameters:
msg
- signed audit log message
-
audit
protected void audit(com.netscape.certsrv.logging.LogEvent event)
- Overrides:
audit
in classCMSServlet
-
auditProfileID
protected java.lang.String auditProfileID()
Signed Audit Log Profile ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "ProfileID" for a signed audit log message.- Returns:
- id string containing the signed audit log message ProfileID
-
-