Examples with SigningServerException com.itrus.cryptorole.SigningServerException used on opensource projects

Search in sources :

Example 11 with SigningServerException

use of com.itrus.cryptorole.SigningServerException in project portal by ixinportal.

the class BindCertWebController method sendCode.

/**
 * 绑定证书时发送验证码
 *
 * @param mPhone
 * @param project
 * @param certBase64
 * @return
 */
@RequestMapping("/sendCode")
@ResponseBody
public Map<String, Object> sendCode(@RequestParam(value = "mPhone", required = true) String mPhone, @RequestParam(value = "project", required = true) Long project, @RequestParam(value = "certBase64", required = true) String certBase64, HttpSession session) {
    Map<String, Object> retMap = new HashMap<String, Object>();
    // 0标识发送验证码失败,1标识成功
    retMap.put("retCode", 0);
    // 是否登录
    UserInfo webuserInfo = (UserInfo) session.getAttribute("webuserInfo");
    Enterprise webenterprise = (Enterprise) session.getAttribute("webenterprise");
    if (null == webuserInfo || null == webenterprise) {
        // 登录状态失效,跳转到注册页面
        // 2标识登录已经失效,需跳转到登录页面
        retMap.put("retCode", 2);
        retMap.put("retMsg", "登录已经失效");
        return retMap;
    }
    try {
        // 判断该证书是否已经绑定有用户
        UserInfo userInfo = userInfoService.getUserInfoByMphone(mPhone);
        // 0表示没有用户,1表示有用户
        retMap.put("hasUserInfo", 0);
        if (null != userInfo) {
            // 1表示有用户
            retMap.put("hasUserInfo", 1);
            // 判断是否和证书绑定
            if (userCertService.isBindCert(userInfo.getId(), certBase64)) {
                retMap.put("retMsg", "该证书已绑定过用户");
                return retMap;
            }
        }
        // 发送验证码
        // ZSBD表示短信模版类型为‘绑定证书’。
        dynamicCodeService.sendCode(mPhone, project, "ZSBD");
        retMap.put("retCode", 1);
    } catch (UserInfoServiceException e) {
        retMap.put("retMsg", e.getMessage());
        return retMap;
    } catch (CertificateException e) {
        retMap.put("retMsg", e.getMessage());
        return retMap;
    } catch (SigningServerException e) {
        retMap.put("retMsg", e.getMessage());
        return retMap;
    }
    return retMap;
}
Also used : HashMap(java.util.HashMap) Enterprise(com.itrus.portal.db.Enterprise) SigningServerException(com.itrus.cryptorole.SigningServerException) UserInfo(com.itrus.portal.db.UserInfo) CertificateException(java.security.cert.CertificateException) UserInfoServiceException(com.itrus.portal.exception.UserInfoServiceException) RequestMapping(org.springframework.web.bind.annotation.RequestMapping) ResponseBody(org.springframework.web.bind.annotation.ResponseBody)

Example 12 with SigningServerException

use of com.itrus.cryptorole.SigningServerException in project portal by ixinportal.

the class RealNameAuthenticationController method update.

// 修改处理
@RequestMapping(method = RequestMethod.POST, produces = "text/html")
public String update(RealNameAuthentication realName, @RequestParam(value = "status", required = false) Integer status, Model uiModel) {
    if (realName.getId() == null) {
        realName.setType(status);
        try {
            realnameauthent.addRealName(realName);
        } catch (ServiceNullException e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
        } catch (Exception e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
        }
    } else {
        if (realName != null && realName.getCertificate() != null) {
            if (!"realName.certificate".equals(realName.getCertificate())) {
                String result = null;
                try {
                    sun.misc.BASE64Decoder decoder = new sun.misc.BASE64Decoder();
                    byte[] bt = decoder.decodeBuffer(realName.getCertificate());
                    result = new String(bt, "utf-8");
                    result = result.replaceAll("-----BEGIN CERTIFICATE-----", "").replaceAll("-----END CERTIFICATE-----", "").replaceAll("\r", "").replaceAll("\n", "");
                    // System.out.println(result);
                    realName.setCertificate(result);
                    UserCert usercert = CertUtil.getCertFromBase64(result);
                    ;
                    String certDn = usercert.getCertDn();
                    EvidenceCert evidenceCert = new EvidenceCert();
                    evidenceCert.setCertBase64(result);
                    evidenceCert.setCertSerialnumber(usercert.getCertSn());
                    evidenceCert.setCreateTime(new Date());
                    evidenceCert.setEndTime(usercert.getCertEndTime());
                    if (usercert.getCertBuf() != null) {
                        evidenceCert.setEvidenceBuf(usercert.getCertBuf().toString());
                    }
                    evidenceCert.setIssuerdn(usercert.getIssuerDn());
                    evidenceCert.setStartTime(usercert.getCertStartTime());
                    evidenceCert.setSubjectdn(usercert.getCertDn());
                    sqlSession.insert("com.itrus.portal.db.EvidenceCertMapper.insertSelective", evidenceCert);
                    if (evidenceCert.getId() != null) {
                        realName.setCertificateCn(evidenceCert.getId().toString());
                    }
                } catch (CertificateException e) {
                    // TODO Auto-generated catch block
                    e.printStackTrace();
                } catch (SigningServerException e) {
                    // TODO Auto-generated catch block
                    e.printStackTrace();
                } catch (UnsupportedEncodingException e) {
                    // TODO Auto-generated catch block
                    e.printStackTrace();
                } catch (IOException e) {
                    // TODO Auto-generated catch block
                    e.printStackTrace();
                }
            } else {
                realName.setCertificate(null);
            }
        }
        try {
            realnameauthent.updateRealName(realName);
        } catch (ServiceNullException e) {
            e.printStackTrace();
        } catch (Exception e) {
            e.printStackTrace();
        }
    }
    // 通知其他机器,加载缓存
    EvidenceCertificationChargingHandler cch = new EvidenceCertificationChargingHandler();
    cch.setType(2);
    QueueThread.buildCertificationTask(cch);
    cacheCustomer.initEvidence(2);
    return "redirect:/realname";
}
Also used : UnsupportedEncodingException(java.io.UnsupportedEncodingException) CertificateException(java.security.cert.CertificateException) EvidenceCertificationChargingHandler(com.itrus.portal.evidence.service.EvidenceCertificationChargingHandler) ServiceNullException(com.itrus.portal.exception.ServiceNullException) IOException(java.io.IOException) ServiceNullException(com.itrus.portal.exception.ServiceNullException) IOException(java.io.IOException) CertificateException(java.security.cert.CertificateException) SigningServerException(com.itrus.cryptorole.SigningServerException) UnsupportedEncodingException(java.io.UnsupportedEncodingException) Date(java.util.Date) EvidenceCert(com.itrus.portal.db.EvidenceCert) SigningServerException(com.itrus.cryptorole.SigningServerException) UserCert(com.itrus.portal.db.UserCert) RequestMapping(org.springframework.web.bind.annotation.RequestMapping)

Example 13 with SigningServerException

use of com.itrus.cryptorole.SigningServerException in project portal by ixinportal.

the class UserInfoWebController method certLogin.

/**
 * 证书登陆//登录成功后跳转至选择企业页面 szy 2016年8月18日 下午1:17:57
 *
 * @param certBase64
 *            证书信息
 * @param productId
 *            产品id
 * @param projectId
 *            项目id
 * @param session
 * @return Map<String,Object> retCode -1 失败, 0成功,1 没有绑定证书,2不存在用户
 */
@RequestMapping("/certLogin")
@ResponseBody
public Map<String, Object> certLogin(@RequestParam(value = "pkcs7", required = true) String pkcs7, @RequestParam(value = "productId", required = false) Long productId, @RequestParam(value = "projectId", required = false) Long projectId, HttpSession session) {
    Map<String, Object> retMap = new HashMap<String, Object>();
    // 默认失败
    retMap.put("retCode", -1);
    try {
        // 验证签名
        String webrandom = (String) session.getAttribute("webrandom");
        // 验证签名
        X509Certificate cert = X509Certificate.getInstance(SVM.verifySignature("LOGONDATA:" + webrandom, pkcs7));
        // 获得证书信息
        UserCert userCert = userCertService.getUserCert(cert);
        Long userid = userCert.getUserinfo();
        // 没有绑定用户
        if (userid == null) {
            retMap.put("retCode", 1);
            retMap.put("retMsg", "请先绑定证书");
            return retMap;
        }
        if (null != userCert.getIsValid() && userCert.getIsValid().equals(0)) {
            retMap.put("retMsg", "该证书已过期,请使用更新后的证书登录");
            return retMap;
        }
        UserInfoExample example = new UserInfoExample();
        UserInfoExample.Criteria criteria = example.or();
        criteria.andIdEqualTo(userid);
        UserInfo userInfo = sqlSession.selectOne("com.itrus.portal.db.UserInfoMapper.selectByExample", example);
        if (userInfo == null) {
            retMap.put("retCode", 2);
            retMap.put("retMsg", "不存在该用户");
            return retMap;
        }
        // 成功
        retMap.put("retCode", 0);
        // 设置session
        // 验证码验证通过
        session.setAttribute("webverifyCodeStatus", true);
        session.setAttribute("webuserInfo", userInfo);
        // 携带产品信息时,将webnoProduct设置为false
        if (null != projectId && null != productId) {
            session.setAttribute("webproductId", productId);
            session.setAttribute("webprojectId", projectId);
            session.setAttribute("webnoProduct", false);
        } else {
            session.setAttribute("webnoProduct", true);
        }
        // 记录日志
        UserLog userlog = new UserLog();
        userlog.setProject(userInfo.getProject());
        userlog.setType("证书登录");
        userlog.setInfo("证书登录成功");
        userlog.setHostId("未知");
        userlog.setSn(null == userInfo.getUniqueId() ? null : userInfo.getUniqueId());
        LogUtil.userlog(sqlSession, userlog);
    } catch (CertificateException e) {
        retMap.put("retMsg", e.getMessage());
        return retMap;
    } catch (SigningServerException e) {
        retMap.put("retMsg", e.getMessage());
        return retMap;
    } catch (Exception e) {
        retMap.put("retMsg", "服务端出现未知异常,请联系管理员");
        String info = "证书登录失败,原因:" + e.getMessage();
        LogUtil.syslog(sqlSession, "证书登录", info);
        return retMap;
    }
    return retMap;
}
Also used : HashMap(java.util.HashMap) CertificateException(java.security.cert.CertificateException) X509Certificate(com.itrus.cert.X509Certificate) ParseException(java.text.ParseException) JsonGenerationException(org.codehaus.jackson.JsonGenerationException) FileNotFoundException(java.io.FileNotFoundException) UnsupportedEncodingException(java.io.UnsupportedEncodingException) JsonMappingException(org.codehaus.jackson.map.JsonMappingException) BiffException(jxl.read.biff.BiffException) TerminalServiceException(com.itrus.portal.exception.TerminalServiceException) IOException(java.io.IOException) CertificateException(java.security.cert.CertificateException) SigningServerException(com.itrus.cryptorole.SigningServerException) UserInfoServiceException(com.itrus.portal.exception.UserInfoServiceException) SigningServerException(com.itrus.cryptorole.SigningServerException) RequestMapping(org.springframework.web.bind.annotation.RequestMapping) ResponseBody(org.springframework.web.bind.annotation.ResponseBody)

Example 14 with SigningServerException

use of com.itrus.cryptorole.SigningServerException in project portal by ixinportal.

the class TrustService method verifyCertificate.

/**
 * 验证证书状态
 *
 * @param cert
 * @return 验证有效,返回true,否则抛出异常
 * @throws SigningServerException
 */
public boolean verifyCertificate(X509Certificate cert) throws SigningServerException {
    boolean result = false;
    // if (!cert.isOnValidPeriod())// 验证是否过期
    if (// 不验证证书开始时间,即不验证证书是否已经生效
    !cert.getNotAfter().after(new Date()))
        throw new SigningServerException("证书已过期");
    int ret = CVM.verifyCertificate(cert);
    if (ret == CVM.VALID) {
        result = true;
    } else {
        throw new SigningServerException(verifyCertMsg(ret));
    }
    return result;
}
Also used : SigningServerException(com.itrus.cryptorole.SigningServerException) Date(java.util.Date)

Example 15 with SigningServerException

use of com.itrus.cryptorole.SigningServerException in project portal by ixinportal.

the class TrustService method verifyCert.

// 验证签名及证书有效性
public X509Certificate verifyCert(String toSign, String signedData) throws CertException {
    if (StringUtils.isBlank(toSign) || StringUtils.isBlank(signedData))
        throw new CertException("原文或者签名值为空");
    X509Certificate cert;
    try {
        cert = X509Certificate.getInstance(SVM.verifySignature(toSign, signedData));
        // 验证证书有效性失败,则直接抛出异常
        verifyCertificate(cert);
    } catch (SigningServerException e) {
        throw new CertException(e.getMessage(), e);
    } catch (Exception e) {
        logger.error("TrustService", e);
        throw new CertException("签名验证失败", e);
    }
    return cert;
}
Also used : SigningServerException(com.itrus.cryptorole.SigningServerException) CertException(org.bouncycastle.cert.CertException) X509Certificate(com.itrus.cert.X509Certificate) CryptoException(com.itrus.cryptorole.CryptoException) KeyStoreException(java.security.KeyStoreException) UnrecoverableKeyException(java.security.UnrecoverableKeyException) IOException(java.io.IOException) CertificateException(java.security.cert.CertificateException) FileNotFoundException(java.io.FileNotFoundException) SigningServerException(com.itrus.cryptorole.SigningServerException) NotSupportException(com.itrus.cryptorole.NotSupportException) NoSuchAlgorithmException(java.security.NoSuchAlgorithmException) CertException(org.bouncycastle.cert.CertException) UnsupportedEncodingException(java.io.UnsupportedEncodingException) NoSuchProviderException(java.security.NoSuchProviderException)

Aggregations

SigningServerException (com.itrus.cryptorole.SigningServerException)15 CertificateException (java.security.cert.CertificateException)13 IOException (java.io.IOException)10 UserInfoServiceException (com.itrus.portal.exception.UserInfoServiceException)9 RequestMapping (org.springframework.web.bind.annotation.RequestMapping)9 UserCert (com.itrus.portal.db.UserCert)7 HashMap (java.util.HashMap)6 JsonGenerationException (org.codehaus.jackson.JsonGenerationException)6 JsonMappingException (org.codehaus.jackson.map.JsonMappingException)6 ResponseBody (org.springframework.web.bind.annotation.ResponseBody)6 UnsupportedEncodingException (java.io.UnsupportedEncodingException)5 Date (java.util.Date)5 UserInfo (com.itrus.portal.db.UserInfo)4 X509Certificate (com.itrus.cert.X509Certificate)3 Enterprise (com.itrus.portal.db.Enterprise)3 EvidenceCert (com.itrus.portal.db.EvidenceCert)3 ParseException (java.text.ParseException)3 TransactionStatus (org.springframework.transaction.TransactionStatus)3 DefaultTransactionDefinition (org.springframework.transaction.support.DefaultTransactionDefinition)3 Product (com.itrus.portal.db.Product)2
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial