Class LdapCrlPublisher
java.lang.Object
com.netscape.cms.publish.publishers.LdapCrlPublisher
- All Implemented Interfaces:
IExtendedPluginInfo
,ILdapPlugin
,ILdapPublisher
For publishing master or global CRL.
Publishes (replaces) the CRL in the CA's LDAP entry.
- Version:
- $Revision$, $Date$
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final String
static final String
static final String
static final String
static org.slf4j.Logger
protected ConfigStore
protected String
protected String
protected int
protected String
protected String
Fields inherited from interface com.netscape.certsrv.base.IExtendedPluginInfo
HELP_TEXT, HELP_TOKEN
Fields inherited from interface com.netscape.certsrv.publish.ILdapPublisher
PROP_ENABLE, PROP_IMPLNAME, PROP_PREDICATE
-
Constructor Summary
ConstructorsConstructorDescriptionconstructs ldap crl publisher with default valuesLdapCrlPublisher
(String crlAttr, String crlObjectClass) -
Method Summary
Modifier and TypeMethodDescriptionReturn config store.Gets the CA object class to convert to.Returns the initial default parameters.Returns the description of the publisher.String[]
This method returns an array of strings.Returns the implementation name.Returns the current instance parameters.void
init
(ConfigStore config) Initialize from config store.void
Replaces the CRL in the certificateRevocationList attribute.void
There shouldn't be a need to call this.
-
Field Details
-
logger
public static org.slf4j.Logger logger -
mConfig
-
LDAP_CACERT_ATTR
- See Also:
-
LDAP_ARL_ATTR
- See Also:
-
LDAP_CRL_ATTR
- See Also:
-
LDAP_CRL_OBJECTCLASS
- See Also:
-
mCrlAttr
-
mCrlObjectClass
-
mObjAdded
-
mObjDeleted
-
mLdapPublishTimelimit_ms
protected int mLdapPublishTimelimit_ms
-
-
Constructor Details
-
LdapCrlPublisher
public LdapCrlPublisher()constructs ldap crl publisher with default values -
LdapCrlPublisher
-
-
Method Details
-
getImplName
Description copied from interface:ILdapPublisher
Returns the implementation name.- Specified by:
getImplName
in interfaceILdapPublisher
-
getDescription
Description copied from interface:ILdapPublisher
Returns the description of the publisher.- Specified by:
getDescription
in interfaceILdapPublisher
-
getExtendedPluginInfo
Description copied from interface:IExtendedPluginInfo
This method returns an array of strings. Each element of the array represents a configurable parameter, or some other meta-info (such as help-token) there is an entry indexed on that parameter name Where: type_info is either 'string', 'number', 'boolean', 'password' or 'choice(ch1,ch2,ch3,...)' If the marker 'required' is included after the type_info, the parameter will has some visually distinctive marking in the UI. 'description' is a short sentence describing the parameter 'choice' is rendered as a drop-down list. The first parameter in the list will be activated by default 'boolean' is rendered as a checkbox. The resulting parameter will be either 'true' or 'false' 'string' allows any characters 'number' allows only numbers 'password' is rendered as a password field (the characters are replaced with *'s when being types. This parameter is not passed through to the plugin. It is instead inserted directly into the password cache keyed on the instance name. The value of the parameter 'bindPWPrompt' (see example below) is set to the key. In addition to the configurable parameters, the following magic parameters may be defined: HELP_TOKEN;helptoken - a pointer to the online manual section for this plugin HELP_TEXT;helptext - a general help string describing the plugin For example: "username;string;The username you wish to login as" "bindPWPrompt;password;Enter password to bind as above user with" "algorithm;choice(RSA,DSA);Which algorithm do you want to use" "enable;boolean;Do you want to run this plugin" "port;number;Which port number do you want to use"- Specified by:
getExtendedPluginInfo
in interfaceIExtendedPluginInfo
-
getInstanceParams
Description copied from interface:ILdapPublisher
Returns the current instance parameters.- Specified by:
getInstanceParams
in interfaceILdapPublisher
-
getDefaultParams
Description copied from interface:ILdapPublisher
Returns the initial default parameters.- Specified by:
getDefaultParams
in interfaceILdapPublisher
-
getConfigStore
Description copied from interface:ILdapPlugin
Return config store.- Specified by:
getConfigStore
in interfaceILdapPlugin
-
init
Description copied from interface:ILdapPlugin
Initialize from config store.- Specified by:
init
in interfaceILdapPlugin
- Parameters:
config
- the configuration store to initialize from.- Throws:
ELdapException
- initialization failed due to Ldap error.EBaseException
- initialization failed.
-
getCRLObjectclass
Gets the CA object class to convert to. -
publish
public void publish(netscape.ldap.LDAPConnection conn, String dn, Object crlObj) throws ELdapException Replaces the CRL in the certificateRevocationList attribute. CRL's are published as a DER encoded blob.- Specified by:
publish
in interfaceILdapPublisher
- Parameters:
conn
- a Ldap connection (null for non-LDAP publishing)dn
- dn of the ldap entry to publish cert (null for non-LDAP publishing)crlObj
- object to publish (java.security.cert.X509Certificate or, java.security.cert.X509CRL)- Throws:
ELdapException
- publish failed.
-
unpublish
public void unpublish(netscape.ldap.LDAPConnection conn, String dn, Object crlObj) throws ELdapException There shouldn't be a need to call this. CRLs are always replaced but this is implemented anyway in case there is ever a reason to remove a global CRL.- Specified by:
unpublish
in interfaceILdapPublisher
- Parameters:
conn
- the Ldap connection (null for non-LDAP publishing)dn
- dn of the ldap entry to unpublish cert (null for non-LDAP publishing)crlObj
- object to unpublish (java.security.cert.X509Certificate)- Throws:
ELdapException
- unpublish failed.
-