@Override public boolean caAdded(X509Cert issuer) { try { queryExecutor.addIssuer(issuer); return true; } catch (Exception ex) { logAndAudit(issuer.getSubject(), issuer, ex, "could not publish issuer"); return false; } }
@Override public boolean certificateRevoked(X509Cert caCert, CertWithDbId cert, String certprofile, CertRevocationInfo revInfo) { try { queryExecutor.revokeCert(caCert, cert, revInfo); return true; } catch (Exception ex) { logAndAudit(caCert.getSubject(), cert, ex, "could not publish revoked certificate"); return false; } }
@Override public boolean certificateUnrevoked(X509Cert caCert, CertWithDbId cert) { try { queryExecutor.unrevokeCert(caCert, cert); return true; } catch (Exception ex) { logAndAudit(caCert.getSubject(), cert, ex, "could not publish unrevocation of certificate"); return false; } }
X509Cert entity = certificates.get(objectId); sb.append("\t").append(objectId); sb.append(", subject='").append(entity.getSubject()).append("'\n");
X509Cert entity = certificates.get(objectId); sb.append("\t").append(objectId); sb.append(", subject='").append(entity.getSubject()).append("'\n");
String subject = issuerCert.getSubject(); int idx = 1; ps.setInt(idx++, id);
@Override public boolean certificateAdded(CertificateInfo certInfo) { X509Cert caCert = certInfo.getIssuerCert(); CertWithDbId cert = certInfo.getCert(); try { queryExecutor.addCert(caCert, cert, certInfo.getRevocationInfo()); return true; } catch (Exception ex) { logAndAudit(caCert.getSubject(), cert, ex, "could not save certificate"); return false; } }
private void logAndAudit(String issuer, X509Cert cert, Exception ex, String messagePrefix) { String subjectText = cert.getSubject(); String serialText = LogUtil.formatCsn(cert.getCert().getSerialNumber()); LOG.error("{} (issuser='{}': subject='{}', serialNumber={}). Message: {}", messagePrefix, issuer, subjectText, serialText, ex.getMessage()); LOG.debug("error", ex); AuditEvent event = new AuditEvent(new Date()); event.setApplicationName("CAPublisher"); event.setName("SYSTEM"); event.setLevel(AuditLevel.ERROR); event.setStatus(AuditStatus.FAILED); if (cert instanceof CertWithDbId) { Long certId = ((CertWithDbId) cert).getCertId(); if (certId != null) { event.addEventData("id", certId); } } event.addEventData("issuer", issuer); event.addEventData("subject", subjectText); event.addEventData("serial", serialText); event.addEventData("message", messagePrefix); Audits.getAuditService().logEvent(event); } // method logAndAudit