Example 96 with CaMgmtException
use of org.xipki.ca.server.mgmt.api.CaMgmtException in project xipki by xipki.
the class CaManagerQueryExecutor method removeScep.
// method addScep
void removeScep(String name) throws CaMgmtException {
ParamUtil.requireNonNull("name", name);
final String sql = "DELETE FROM SCEP WHERE NAME=?";
PreparedStatement ps = null;
try {
ps = prepareStatement(sql);
ps.setString(1, name);
if (ps.executeUpdate() == 0) {
throw new CaMgmtException("could not remove SCEP " + name);
}
} catch (SQLException ex) {
throw new CaMgmtException(datasource, sql, ex);
} finally {
datasource.releaseResources(ps, null);
}
}
Also used :
CaMgmtException(org.xipki.ca.server.mgmt.api.CaMgmtException)
SQLException(java.sql.SQLException)
PreparedStatement(java.sql.PreparedStatement)
Example 97 with CaMgmtException
use of org.xipki.ca.server.mgmt.api.CaMgmtException in project xipki by xipki.
the class CaManagerQueryExecutor method createCaInfo.
// method createResponder
X509CaInfo createCaInfo(String name, boolean masterMode, CertificateStore certstore) throws CaMgmtException {
final String sql = sqls.sqlSelectCa;
PreparedStatement stmt = null;
ResultSet rs = null;
try {
stmt = prepareStatement(sql);
stmt.setString(1, name);
rs = stmt.executeQuery();
if (!rs.next()) {
throw new CaMgmtException("uknown CA " + name);
}
int artCode = rs.getInt("ART");
if (artCode != CertArt.X509PKC.getCode()) {
throw new CaMgmtException("CA " + name + " is not X509CA, and is not supported");
}
String crlUris = rs.getString("CRL_URIS");
String deltaCrlUris = rs.getString("DELTACRL_URIS");
CertRevocationInfo revocationInfo = null;
boolean revoked = rs.getBoolean("REV");
if (revoked) {
int revReason = rs.getInt("RR");
long revTime = rs.getInt("RT");
long revInvalidityTime = rs.getInt("RIT");
Date revInvTime = (revInvalidityTime == 0) ? null : new Date(revInvalidityTime * 1000);
revocationInfo = new CertRevocationInfo(revReason, new Date(revTime * 1000), revInvTime);
}
List<String> tmpCrlUris = null;
if (StringUtil.isNotBlank(crlUris)) {
tmpCrlUris = StringUtil.splitByComma(crlUris);
}
List<String> tmpDeltaCrlUris = null;
if (StringUtil.isNotBlank(deltaCrlUris)) {
tmpDeltaCrlUris = StringUtil.splitByComma(deltaCrlUris);
}
String ocspUris = rs.getString("OCSP_URIS");
List<String> tmpOcspUris = null;
if (StringUtil.isNotBlank(ocspUris)) {
tmpOcspUris = StringUtil.splitByComma(ocspUris);
}
String caCertUris = rs.getString("CACERT_URIS");
List<String> tmpCaCertUris = null;
if (StringUtil.isNotBlank(caCertUris)) {
tmpCaCertUris = StringUtil.splitByComma(caCertUris);
}
X509CaUris caUris = new X509CaUris(tmpCaCertUris, tmpOcspUris, tmpCrlUris, tmpDeltaCrlUris);
int id = rs.getInt("ID");
int serialNoSize = rs.getInt("SN_SIZE");
long nextCrlNo = rs.getLong("NEXT_CRLNO");
String signerType = rs.getString("SIGNER_TYPE");
String signerConf = rs.getString("SIGNER_CONF");
int numCrls = rs.getInt("NUM_CRLS");
int expirationPeriod = rs.getInt("EXPIRATION_PERIOD");
X509CaEntry entry = new X509CaEntry(new NameId(id, name), serialNoSize, nextCrlNo, signerType, signerConf, caUris, numCrls, expirationPeriod);
String b64cert = rs.getString("CERT");
X509Certificate cert = generateCert(b64cert);
entry.setCert(cert);
String status = rs.getString("STATUS");
CaStatus caStatus = CaStatus.forName(status);
entry.setStatus(caStatus);
String maxValidityS = rs.getString("MAX_VALIDITY");
CertValidity maxValidity = CertValidity.getInstance(maxValidityS);
entry.setMaxValidity(maxValidity);
int keepExpiredCertDays = rs.getInt("KEEP_EXPIRED_CERT_DAYS");
entry.setKeepExpiredCertInDays(keepExpiredCertDays);
String crlsignerName = rs.getString("CRLSIGNER_NAME");
if (StringUtil.isNotBlank(crlsignerName)) {
entry.setCrlSignerName(crlsignerName);
}
String responderName = rs.getString("RESPONDER_NAME");
if (StringUtil.isNotBlank(responderName)) {
entry.setResponderName(responderName);
}
String extraControl = rs.getString("EXTRA_CONTROL");
if (StringUtil.isNotBlank(extraControl)) {
entry.setExtraControl(new ConfPairs(extraControl).unmodifiable());
}
String cmpcontrolName = rs.getString("CMPCONTROL_NAME");
if (StringUtil.isNotBlank(cmpcontrolName)) {
entry.setCmpControlName(cmpcontrolName);
}
boolean duplicateKeyPermitted = (rs.getInt("DUPLICATE_KEY") != 0);
entry.setDuplicateKeyPermitted(duplicateKeyPermitted);
boolean duplicateSubjectPermitted = (rs.getInt("DUPLICATE_SUBJECT") != 0);
entry.setDuplicateSubjectPermitted(duplicateSubjectPermitted);
boolean saveReq = (rs.getInt("SAVE_REQ") != 0);
entry.setSaveRequest(saveReq);
int permission = rs.getInt("PERMISSION");
entry.setPermission(permission);
entry.setRevocationInfo(revocationInfo);
String validityModeS = rs.getString("VALIDITY_MODE");
ValidityMode validityMode = null;
if (validityModeS != null) {
validityMode = ValidityMode.forName(validityModeS);
}
if (validityMode == null) {
validityMode = ValidityMode.STRICT;
}
entry.setValidityMode(validityMode);
try {
return new X509CaInfo(entry, certstore);
} catch (OperationException ex) {
throw new CaMgmtException(ex);
}
} catch (SQLException ex) {
throw new CaMgmtException(datasource, sql, ex);
} finally {
datasource.releaseResources(stmt, rs);
}
}
Also used :
NameId(org.xipki.ca.api.NameId)
CertValidity(org.xipki.ca.api.profile.CertValidity)
SQLException(java.sql.SQLException)
ConfPairs(org.xipki.common.ConfPairs)
PreparedStatement(java.sql.PreparedStatement)
CaStatus(org.xipki.ca.server.mgmt.api.CaStatus)
Date(java.util.Date)
X509Certificate(java.security.cert.X509Certificate)
CertRevocationInfo(org.xipki.security.CertRevocationInfo)
CaMgmtException(org.xipki.ca.server.mgmt.api.CaMgmtException)
X509CaUris(org.xipki.ca.server.mgmt.api.x509.X509CaUris)
ValidityMode(org.xipki.ca.server.mgmt.api.ValidityMode)
ResultSet(java.sql.ResultSet)
OperationException(org.xipki.ca.api.OperationException)
X509CaEntry(org.xipki.ca.server.mgmt.api.x509.X509CaEntry)
Example 98 with CaMgmtException
use of org.xipki.ca.server.mgmt.api.CaMgmtException in project xipki by xipki.
the class CaManagerQueryExecutor method removeUserFromCa.
// method changeUser
void removeUserFromCa(String username, String caName) throws CaMgmtException {
Integer id = getIdForName(sqls.sqlSelectUserId, username);
if (id == null) {
throw new CaMgmtException("unknown user " + username);
}
int caId = getNonNullIdForName(sqls.sqlSelectCaId, caName);
final String sql = "DELETE FROM CA_HAS_USER WHERE CA_ID=? AND USER_ID=?";
PreparedStatement ps = null;
try {
ps = prepareStatement(sql);
ps.setInt(1, caId);
ps.setInt(2, id);
if (ps.executeUpdate() == 0) {
throw new CaMgmtException("could not remove user " + username + " from CA " + caName);
}
} catch (SQLException ex) {
throw new CaMgmtException(datasource, sql, ex);
} finally {
datasource.releaseResources(ps, null);
}
}
Also used :
AtomicInteger(java.util.concurrent.atomic.AtomicInteger)
CaMgmtException(org.xipki.ca.server.mgmt.api.CaMgmtException)
SQLException(java.sql.SQLException)
PreparedStatement(java.sql.PreparedStatement)
Example 99 with CaMgmtException
use of org.xipki.ca.server.mgmt.api.CaMgmtException in project xipki by xipki.
the class CaManagerQueryExecutor method createCmpControl.
// method createCrlSigner
CmpControlEntry createCmpControl(String name) throws CaMgmtException {
final String sql = sqls.sqlSelectCmpControl;
PreparedStatement stmt = null;
ResultSet rs = null;
try {
stmt = prepareStatement(sql);
stmt.setString(1, name);
rs = stmt.executeQuery();
if (!rs.next()) {
throw new CaMgmtException("unknown CMP control " + name);
}
String conf = rs.getString("CONF");
return new CmpControlEntry(name, conf);
} catch (SQLException ex) {
throw new CaMgmtException(datasource, sql, ex);
} finally {
datasource.releaseResources(stmt, rs);
}
}
Also used :
CaMgmtException(org.xipki.ca.server.mgmt.api.CaMgmtException)
SQLException(java.sql.SQLException)
CmpControlEntry(org.xipki.ca.server.mgmt.api.CmpControlEntry)
ResultSet(java.sql.ResultSet)
PreparedStatement(java.sql.PreparedStatement)
Example 100 with CaMgmtException
use of org.xipki.ca.server.mgmt.api.CaMgmtException in project xipki by xipki.
the class CaManagerQueryExecutor method getCaHasUsersForCa.
// method getCaHasUsersForUser
List<CaHasUserEntry> getCaHasUsersForCa(String caName, CaIdNameMap idNameMap) throws CaMgmtException {
NameId caIdent = idNameMap.getCa(caName);
if (caIdent == null) {
throw new CaMgmtException("unknown CA " + caName);
}
final String sql = "SELECT NAME,PERMISSION,PROFILES FROM CA_HAS_USER INNER JOIN TUSER" + " ON CA_ID=? AND TUSER.ID=CA_HAS_USER.USER_ID";
PreparedStatement ps = null;
ResultSet rs = null;
try {
ps = prepareStatement(sql);
ps.setInt(1, caIdent.getId().intValue());
rs = ps.executeQuery();
List<CaHasUserEntry> ret = new LinkedList<>();
while (rs.next()) {
String username = rs.getString("NAME");
int permission = rs.getInt("PERMISSION");
String str = rs.getString("PROFILES");
List<String> list = StringUtil.splitByComma(str);
Set<String> profiles = (list == null) ? null : new HashSet<>(list);
CaHasUserEntry caHasUser = new CaHasUserEntry(new NameId(null, username));
caHasUser.setPermission(permission);
caHasUser.setProfiles(profiles);
ret.add(caHasUser);
}
return ret;
} catch (SQLException ex) {
throw new CaMgmtException(datasource, sql, ex);
} finally {
datasource.releaseResources(ps, rs);
}
}
Also used :
CaHasUserEntry(org.xipki.ca.server.mgmt.api.CaHasUserEntry)
NameId(org.xipki.ca.api.NameId)
SQLException(java.sql.SQLException)
PreparedStatement(java.sql.PreparedStatement)
LinkedList(java.util.LinkedList)
CaMgmtException(org.xipki.ca.server.mgmt.api.CaMgmtException)
ResultSet(java.sql.ResultSet)
Aggregations
CaMgmtException (org.xipki.ca.server.mgmt.api.CaMgmtException)157
PreparedStatement (java.sql.PreparedStatement)63
SQLException (java.sql.SQLException)63
CmdFailure (org.xipki.console.karaf.CmdFailure)52
NameId (org.xipki.ca.api.NameId)31
ResultSet (java.sql.ResultSet)24
OperationException (org.xipki.ca.api.OperationException)18
AtomicInteger (java.util.concurrent.atomic.AtomicInteger)16
InvalidConfException (org.xipki.common.InvalidConfException)11
DataAccessException (org.xipki.datasource.DataAccessException)11
CertificateEncodingException (java.security.cert.CertificateEncodingException)9
CaHasRequestorEntry (org.xipki.ca.server.mgmt.api.CaHasRequestorEntry)9
CertificateException (java.security.cert.CertificateException)8
ObjectCreationException (org.xipki.common.ObjectCreationException)8
X509Certificate (java.security.cert.X509Certificate)7
Date (java.util.Date)7
X509CaEntry (org.xipki.ca.server.mgmt.api.x509.X509CaEntry)7
IOException (java.io.IOException)6
Statement (java.sql.Statement)6
CaHasUserEntry (org.xipki.ca.server.mgmt.api.CaHasUserEntry)6
