public class RevocationProcessor extends CertProcessor
| Modifier and Type | Field and Description |
|---|---|
static java.lang.String |
LOGGING_SIGNED_AUDIT_CERT_STATUS_CHANGE_REQUEST |
static java.lang.String |
LOGGING_SIGNED_AUDIT_CERT_STATUS_CHANGE_REQUEST_PROCESSED |
static java.lang.String |
OFF_HOLD |
static java.lang.String |
ON_HOLD |
static java.lang.String |
REVOKE |
ACL_INFO, ACL_METHOD, aclMethod, ARG_AUTH_TOKEN, ARG_ERROR_CODE, ARG_ERROR_REASON, ARG_OP, ARG_OUTPUT_CONSTRAINT, ARG_OUTPUT_ID, ARG_OUTPUT_LIST, ARG_OUTPUT_NAME, ARG_OUTPUT_SYNTAX, ARG_OUTPUT_VAL, ARG_PROFILE, ARG_PROFILE_APPROVED_BY, ARG_PROFILE_DESC, ARG_PROFILE_ENABLED_BY, ARG_PROFILE_ID, ARG_PROFILE_IS_ENABLED, ARG_PROFILE_IS_VISIBLE, ARG_PROFILE_NAME, ARG_PROFILE_REMOTE_ADDR, ARG_PROFILE_REMOTE_HOST, ARG_PROFILE_SET_ID, ARG_RENEWAL_PROFILE_ID, ARG_REQUEST_CREATION_TIME, ARG_REQUEST_ID, ARG_REQUEST_LIST, ARG_REQUEST_MODIFICATION_TIME, ARG_REQUEST_NONCE, ARG_REQUEST_NOTES, ARG_REQUEST_OWNER, ARG_REQUEST_STATUS, ARG_REQUEST_TYPE, ARG_REQUESTS, AUTH_ID, AUTH_MGR, authMgr, AUTHORITY_ID, authz, AUTHZ_MGR, AUTHZ_RESOURCE_NAME, authzResourceName, CERT_ATTR, certdb, GET_CLIENT_CERT, getClientCert, HDR_LANG, LOGGING_SIGNED_AUDIT_AUTH_FAIL, LOGGING_SIGNED_AUDIT_AUTH_SUCCESS, LOGGING_SIGNED_AUDIT_AUTHZ_FAIL, LOGGING_SIGNED_AUDIT_AUTHZ_SUCCESS, LOGGING_SIGNED_AUDIT_CERT_REQUEST_PROCESSED, LOGGING_SIGNED_AUDIT_ROLE_ASSUME, PROFILE_ID, PROFILE_SUB_ID, profileID, profileSubId, ps, queue, SIGNED_AUDIT_CERT_REQUEST_REASON, signedAuditLogger, statEvents, ug, ul| Constructor and Description |
|---|
RevocationProcessor(java.lang.String id,
java.util.Locale locale) |
| Modifier and Type | Method and Description |
|---|---|
void |
addCertificate(netscape.security.x509.X509CertImpl cert) |
void |
addCertificateToRevoke(netscape.security.x509.X509CertImpl cert) |
void |
addSerialNumberToUnrevoke(java.math.BigInteger serialNumber) |
void |
auditChangeRequest(java.lang.String status) |
void |
auditChangeRequestProcessed(java.lang.String status) |
void |
createCRLExtension() |
void |
createRevocationRequest() |
void |
createUnrevocationRequest() |
ICertificateAuthority |
getAuthority() |
ICertRecord |
getCertificateRecord(java.math.BigInteger serialNumber) |
ICertRecord |
getCertificateRecord(CertId id) |
ICertRecord[] |
getCertificateRecords(java.math.BigInteger[] serialNumbers) |
java.util.Collection<netscape.security.x509.X509CertImpl> |
getCertificates() |
netscape.security.x509.X509CertImpl[] |
getCertificates(ICertRecord[] records) |
java.lang.String |
getComments() |
java.lang.String |
getInitiative() |
java.util.Date |
getInvalidityDate() |
IRequest |
getRequest() |
RequestId |
getRequestID() |
RequestStatus |
getRequestStatus() |
java.lang.String |
getRequestType() |
netscape.security.x509.RevocationReason |
getRevocationReason() |
CertId |
getSerialNumber() |
long |
getStartTime() |
boolean |
isMemberOfSubsystemGroup(java.security.cert.X509Certificate clientCert) |
boolean |
isSystemCertificate(java.security.cert.X509Certificate cert)
A system certificate such as the CA signing certificate
should not be allowed to delete.
|
void |
log(int level,
java.lang.String message) |
void |
logRevoke(IRequest revocationRequest,
java.security.cert.X509Certificate cert,
java.lang.String status,
java.lang.String message) |
void |
logUnrevoke(IRequest unrevocationRequest,
java.security.cert.X509Certificate cert,
java.lang.String status) |
void |
processRevocationRequest() |
void |
processUnrevocationRequest() |
void |
setAuthority(ICertificateAuthority authority) |
void |
setComments(java.lang.String comments) |
void |
setInitiative(java.lang.String initiative) |
void |
setInvalidityDate(java.util.Date invalidityDate) |
void |
setRequestID(RequestId requestID) |
void |
setRequestStatus(RequestStatus requestStatus) |
void |
setRequestType(java.lang.String requestType) |
void |
setRevocationReason(netscape.security.x509.RevocationReason revocationReason) |
void |
setSerialNumber(CertId serialNumber) |
void |
setStartTime(long startTime) |
void |
validateCertificateToRevoke(java.lang.String subjectDN,
ICertRecord targetRecord,
boolean revokingCACert) |
codeToReason, populateRequests, setCredentialsIntoContext, submitRequestsaudit, auditGroupID, auditGroups, auditInfoCertValue, auditInfoCertValue, auditInfoValue, auditRequesterID, auditSubjectID, authenticate, authenticate, authenticate, authenticate, authenticate, authorize, authorize, authorize, endAllEvents, endTiming, getOriginalRequest, getProfileID, getProfileSubsystem, getRequest, getSSLClientCertificate, printParameterValues, saveAuthToken, startTiming, toHashtable, validateNonceaudit, getParams, getUserMessage, logpublic static final java.lang.String REVOKE
public static final java.lang.String ON_HOLD
public static final java.lang.String OFF_HOLD
public static final java.lang.String LOGGING_SIGNED_AUDIT_CERT_STATUS_CHANGE_REQUEST
public static final java.lang.String LOGGING_SIGNED_AUDIT_CERT_STATUS_CHANGE_REQUEST_PROCESSED
public RevocationProcessor(java.lang.String id,
java.util.Locale locale)
throws EPropertyNotFound,
EBaseException
EPropertyNotFoundEBaseExceptionpublic ICertificateAuthority getAuthority()
public void setAuthority(ICertificateAuthority authority)
public long getStartTime()
public void setStartTime(long startTime)
public java.lang.String getInitiative()
public void setInitiative(java.lang.String initiative)
public RequestId getRequestID()
public void setRequestID(RequestId requestID)
public CertId getSerialNumber()
public void setSerialNumber(CertId serialNumber)
public netscape.security.x509.RevocationReason getRevocationReason()
public void setRevocationReason(netscape.security.x509.RevocationReason revocationReason)
public java.util.Date getInvalidityDate()
public void setInvalidityDate(java.util.Date invalidityDate)
public java.lang.String getComments()
public void setComments(java.lang.String comments)
public java.lang.String getRequestType()
public void setRequestType(java.lang.String requestType)
public RequestStatus getRequestStatus()
public void setRequestStatus(RequestStatus requestStatus)
public void addCertificate(netscape.security.x509.X509CertImpl cert)
public java.util.Collection<netscape.security.x509.X509CertImpl> getCertificates()
public IRequest getRequest()
public boolean isMemberOfSubsystemGroup(java.security.cert.X509Certificate clientCert)
public void validateCertificateToRevoke(java.lang.String subjectDN,
ICertRecord targetRecord,
boolean revokingCACert)
throws EBaseException
EBaseExceptionpublic void addCertificateToRevoke(netscape.security.x509.X509CertImpl cert)
public void addSerialNumberToUnrevoke(java.math.BigInteger serialNumber)
throws EBaseException
EBaseExceptionpublic ICertRecord[] getCertificateRecords(java.math.BigInteger[] serialNumbers) throws EBaseException
EBaseExceptionpublic ICertRecord getCertificateRecord(CertId id) throws EBaseException
EBaseExceptionpublic ICertRecord getCertificateRecord(java.math.BigInteger serialNumber) throws EBaseException
EBaseExceptionpublic netscape.security.x509.X509CertImpl[] getCertificates(ICertRecord[] records) throws EBaseException
EBaseExceptionpublic void createCRLExtension()
throws java.io.IOException
java.io.IOExceptionpublic void createRevocationRequest()
throws EBaseException
EBaseExceptionpublic void processRevocationRequest()
throws EBaseException
EBaseExceptionpublic void createUnrevocationRequest()
throws EBaseException
EBaseExceptionpublic void processUnrevocationRequest()
throws EBaseException
EBaseExceptionpublic boolean isSystemCertificate(java.security.cert.X509Certificate cert)
throws EBaseException
EBaseExceptionpublic void logRevoke(IRequest revocationRequest, java.security.cert.X509Certificate cert, java.lang.String status, java.lang.String message)
public void logUnrevoke(IRequest unrevocationRequest, java.security.cert.X509Certificate cert, java.lang.String status)
public void auditChangeRequest(java.lang.String status)
public void auditChangeRequestProcessed(java.lang.String status)
public void log(int level,
java.lang.String message)