Class ConnectorServlet
java.lang.Object
javax.servlet.GenericServlet
javax.servlet.http.HttpServlet
com.netscape.cms.servlet.base.CMSServlet
com.netscape.cms.servlet.connector.ConnectorServlet
- All Implemented Interfaces:
Serializable
,javax.servlet.Servlet
,javax.servlet.ServletConfig
Connector servlet
process requests from remote authority -
service request or return status.
- Author:
- cfu - Server-Side Keygen Enrollment implementation
- See Also:
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final String
static org.slf4j.Logger
protected IAuthority
protected AuthSubsystem
protected javax.servlet.ServletConfig
protected HttpRequestEncoder
static final String
Fields inherited from class com.netscape.cms.servlet.base.CMSServlet
ADMIN_GROUP, AUTH_FAILURE, AUTHMGR_PARAM, AUTHZ_MGR_BASIC, AUTHZ_MGR_LDAP, CA_AGENT_GROUP, CERT_ATTR, ERROR_MSG_TOKEN, ERROR_TEMPLATE, EXCEPTION_TEMPLATE, FAILURE, FINAL_ERROR_MSG, FULL_ENROLLMENT_REQUEST, FULL_ENROLLMENT_RESPONSE, FULL_RESPONSE, IMPORT_CERT, IMPORT_CERT_MIME_TYPE, IMPORT_CHAIN, KRA_AGENT_GROUP, mAclMethod, mAuthMgr, mAuthz, mAuthzResourceName, mDontSaveHttpParams, mFinalErrorMsg, mGetClientCert, mId, mOutputTemplatePath, mRenderResult, mRequestQueue, mSaveHttpHeaders, mTemplates, NS_X509_EMAIL_CERT, NS_X509_USER_CERT, OCSP_AGENT_GROUP, PENDING_TEMPLATE, PFX_AUTH_TOKEN, PFX_HTTP_HEADER, PFX_HTTP_PARAM, PROP_ACL, PROP_AUTHMGR, PROP_AUTHORITYID, PROP_AUTHZ_MGR, PROP_CLIENTAUTH, PROP_ERROR_TEMPLATE, PROP_EXCEPTION_TEMPLATE, PROP_FINAL_ERROR_MSG, PROP_ID, PROP_PENDING_TEMPLATE, PROP_PENDING_TEMPLATE_FILLER, PROP_REJECTED_TEMPLATE, PROP_RESOURCEID, PROP_SUCCESS_TEMPLATE, PROP_SUCCESS_TEMPLATE_FILLER, PROP_SVC_PENDING_TEMPLATE, PROP_UNAUTHORIZED_TEMPLATE, RA_AGENT_GROUP, REJECTED_TEMPLATE, requestRepository, servletConfig, servletContext, SIMPLE_ENROLLMENT_REQUEST, SIMPLE_ENROLLMENT_RESPONSE, SUCCESS, SUCCESS_TEMPLATE, SVC_PENDING_TEMPLATE, TEMPLATE_NAME, TRUSTED_RA_GROUP, UNAUTHORIZED_TEMPLATE
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected String
Signed Audit Log Profile ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "ProfileID" for a signed audit log message.protected X509Certificate
getPeerCert
(javax.servlet.http.HttpServletRequest req) void
init
(javax.servlet.ServletConfig sc) static boolean
isProfileRequest
(Request request) void
normalizeProfileRequest
(Request request) protected IPKIMessage
processRequest
(String source, String sourceUserId, IPKIMessage msg, AuthToken token) Process requestvoid
service
(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) void
serviceImpl
(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) Methods inherited from class com.netscape.cms.servlet.base.CMSServlet
auditGroupID, auditSubjectID, authenticate, authenticate, authenticate, authenticate, authorize, authorize, clientIsMSIE, clientIsNav, connectionIsSSL, doCMMFResponse, doFullResponse, formCRLEntry, getAuthCreds, getAuthMgr, getAuthToken, getCMSEngine, getDontSaveHttpParams, getId, getLangFile, getLocale, getLocale, getSaveHttpHeaders, getSSLClientCertificate, getSSLClientCertificate, getTemplate, hashPassword, initializeAuthz, invalidateSSLSession, isClientCertRequired, newCMSRequest, newFillerObject, outputArgBlockAsXML, outputError, outputError, outputError, outputHttpParameters, outputResult, outputXML, process, renderException, renderFinalError, renderResult, renderTemplate, saveAuthToken, saveHttpHeaders, saveHttpParams, setDefaultTemplates, toHashtable
Methods inherited from class javax.servlet.http.HttpServlet
doDelete, doGet, doHead, doOptions, doPost, doPut, doTrace, getLastModified, service
Methods inherited from class javax.servlet.GenericServlet
destroy, getInitParameter, getInitParameterNames, getServletConfig, getServletContext, getServletName, init, log, log
-
Field Details
-
logger
public static org.slf4j.Logger logger -
INFO
- See Also:
-
PROP_AUTHORITY
- See Also:
-
mConfig
protected javax.servlet.ServletConfig mConfig -
mAuthority
-
mReqEncoder
-
mAuthSubsystem
-
-
Constructor Details
-
ConnectorServlet
public ConnectorServlet()
-
-
Method Details
-
init
public void init(javax.servlet.ServletConfig sc) throws javax.servlet.ServletException - Specified by:
init
in interfacejavax.servlet.Servlet
- Overrides:
init
in classCMSServlet
- Throws:
javax.servlet.ServletException
-
service
public void service(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws javax.servlet.ServletException, IOException - Overrides:
service
in classCMSServlet
- Throws:
javax.servlet.ServletException
IOException
-
serviceImpl
public void serviceImpl(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws javax.servlet.ServletException, IOException - Throws:
javax.servlet.ServletException
IOException
-
isProfileRequest
-
normalizeProfileRequest
-
processRequest
protected IPKIMessage processRequest(String source, String sourceUserId, IPKIMessage msg, AuthToken token) throws EBaseException Process request(Certificate Request - all "agent" profile cert requests made through a connector)
(Certificate Request Processed - all automated "agent" profile based cert acceptance made through a connector)
- signed.audit LOGGING_SIGNED_AUDIT_PROFILE_CERT_REQUEST used when a profile cert request is made (before approval process)
- signed.audit LOGGING_SIGNED_AUDIT_CERT_REQUEST_PROCESSED used when a certificate request has just been through the approval process
- signed.audit LOGGING_SIGNED_AUDIT_INTER_BOUNDARY_SUCCESS used when inter-CIMC_Boundary data transfer is successful (this is used when data does not need to be captured)
- Parameters:
source
- string containing sourcesourceUserId
- string containing source user IDmsg
- PKI messagetoken
- the authentication token- Returns:
- PKI message
- Throws:
EBaseException
- an error has occurred
-
getPeerCert
protected X509Certificate getPeerCert(javax.servlet.http.HttpServletRequest req) throws EBaseException - Throws:
EBaseException
-
getServletInfo
- Specified by:
getServletInfo
in interfacejavax.servlet.Servlet
- Overrides:
getServletInfo
in classjavax.servlet.GenericServlet
-
auditProfileID
Signed Audit Log Profile ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "ProfileID" for a signed audit log message.- Returns:
- id string containing the signed audit log message ProfileID
-