country
-=item contact
+=item cert_contact
-contact
+contact email
=back
'city' => { label=>'City', %dis, },
'state' => { label=>'State', %dis, },
'country' => { label=>'Country', %dis, },
- 'cert_contact' => { label=>'Contact', %dis, },
+ 'cert_contact' => { label=>'Contact email', %dis, },
#'another_field' => {
# 'label' => 'Description',
|| $self->ut_textn('city')
|| $self->ut_textn('state')
|| $self->ut_textn('country') #XXX char(2) or NULL
- || $self->ut_textn('contact')
+ || $self->ut_textn('cert_contact')
;
return $error if $error;
);
}
-sub generate_csr {
+sub _file {
my $self = shift;
- my $in = $self->privatekey;
+ my $field = shift;
my $dir = $FS::UID::conf_dir. "/cache.". $FS::UID::datasrc; #XXX actual cache dir
my $fh = new File::Temp(
- TEMPLATE => 'certkey.'. '.XXXXXXXX',
+ TEMPLATE => 'cert.'. '.XXXXXXXX',
DIR => $dir,
) or die "can't open temp file: $!\n";
+ print $fh $self->$field;
+ close $fh;
+ $fh;
+}
+
+sub generate_csr {
+ my $self = shift;
+
+ my $fh = $self->_file('privatekey');
run( [qw( openssl req -new -key ), $fh->filename, '-subj', $self->subj ],
'>pipe'=>\*OUT, '2>'=>'/dev/null'
$self->csr($csr);
}
+#sub check_csr {
+# my $self = shift;
+#}
+
+sub generate_selfsigned {
+ my $self = shift;
+
+ my $days = 730;
+
+ my $key = $self->_file('privatekey');
+ my $csr = $self->_file('csr');
+
+ run( [qw( openssl req -x509 -nodes ),
+ '-days' => $days,
+ '-key' => $key->filename,
+ '-in' => $csr->filename,
+ ],
+ '>pipe'=>\*OUT, '2>'=>'/dev/null'
+ )
+ or die "error running openssl: $!";
+ #XXX error checking
+ my $csr = join('', <OUT>);
+ $self->certificate($csr);
+}
+
+#openssl x509 -in cert -noout -subject -issuer -dates -serial
+#subject= /CN=cn.example.com/ST=AK/O=Tofuy/OU=Soybean dept./C=US/L=Tofutown
+#issuer= /CN=cn.example.com/ST=AK/O=Tofuy/OU=Soybean dept./C=US/L=Tofutown
+#notBefore=Nov 7 05:07:42 2010 GMT
+#notAfter=Nov 6 05:07:42 2012 GMT
+#serial=B1DBF1A799EF207B
+
+sub check_certificate {
+ my $self = shift;
+
+ my $in = $self->certificate;
+ run( [qw( openssl x509 -noout -subject -issuer -dates -serial )],
+ '<'=>\$in,
+ '>pipe'=>\*OUT, '2>'=>'/dev/null'
+ )
+ or die "error running openssl: $!";
+ #XXX error checking
+
+ my %hash = ();
+ while (<OUT>) {
+ warn $_;
+ /^\s*(\w+)=\s*(.*)\s*$/ or next;
+ $hash{$1} = $2;
+ }
+
+ %hash;
+}
+
=back
=head1 BUGS
<TR>
<TD ALIGN="right">Private key</TD>
<TD BGCOLOR="#ffffff">
-% if ( $svc_cert->privatekey && $svc_cert->check_privatekey ) {
- <FONT COLOR="#33ff33">Verification OK</FONT>
-% # remove key & cert link? just unprovision?
- </TD>
-</TR>
-% my $cust_main = $svc_cert->cust_svc->cust_pkg->cust_main;
+% if ( $svc_cert->privatekey && $svc_cert->check_privatekey ) {
-<TR>
- <TD ALIGN="right">Organization</TD>
- <TD><INPUT TYPE="text" NAME="organization" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->organization || $cust_main->company |h %>"></TD>
-</TR>
+ <FONT COLOR="#33ff33">Verification OK</FONT>
+% # remove key & cert link? just unprovision?
-<TR>
- <TD ALIGN="right">Organization Unit</TD>
- <TD><INPUT TYPE="text" NAME="organization_unit" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->organization_unit |h %>"></TD>
-</TR>
+ </TD></TR>
-<TR>
- <TD ALIGN="right">City</TD>
- <TD><% include('/elements/city.html',
- 'city' => $svc_cert->city || $cust_main->city,
- 'state' => $svc_cert->state || $cust_main->state,
- 'country' => $svc_cert->country || $cust_main->country,
- )
- %>
- </TD>
-</TR>
+% if (0) { #( $svc_cert->csr_submitted ) { #XXX add field? date? }
-<TR>
- <TD ALIGN="right">State</TD>
- <TD><% include('/elements/select-state.html',
- 'city' => $svc_cert->city || $cust_main->city,
- 'state' => $svc_cert->state || $cust_main->state,
- 'country' => $svc_cert->country || $cust_main->country,
- )
- %>
- </TD>
-</TR>
-
-<TR>
- <TD ALIGN="right">City</TD>
- <TD><% include('/elements/select-country.html',
- 'city' => $svc_cert->city || $cust_main->city,
- 'state' => $svc_cert->state || $cust_main->state,
- 'country' => $svc_cert->country || $cust_main->country,
- )
- %>
- </TD>
-</TR>
+% # just show the fields once the csr has been submitted
% } else {
-% my $re = '';
-% if ( $svc_cert->privatekey ) {
- <FONT COLOR="#ff0000">Verification error</FONT>
-% $re = 'Clear and Re-';
-% }
- <% include('/elements/popup_link.html', {
- 'action' => "svc_cert/generate_privatekey.html$link_query",
- 'label' => $re.'Generate',
- 'actionlabel' => 'Generate private key',
- #opt
- 'width' => '350',
- 'height' => '150'
- #'color' => '#ff0000',
- #'closetext' => 'Go Away', # the value '' removes the link
- })%>
-
- or
-
- <% include('/elements/popup_link.html', {
- 'action' => "svc_cert/import_privatekey.html$link_query",
- 'label' => $re.'Import',
- 'actionlabel' => 'Import private key',
- #opt
- 'width' => '544',
- 'height' => '368',
- #'color' => '#ff0000',
- #'closetext' => 'Go Away', # the value '' removes the link
- })%>
-% if ( $svc_cert->privatekey ) {
-<PRE><% $svc_cert->privatekey |h %></PRE>
-% }
+
+% my $cust_main = $svc_cert->cust_svc->cust_pkg->cust_main;
+
+ <TR>
+ <TD ALIGN="right">Common name</TD>
+ <TD><INPUT TYPE="text" NAME="common_name" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->common_name |h %>"></TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">Organization</TD>
+ <TD><INPUT TYPE="text" NAME="organization" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->organization || $cust_main->company |h %>"></TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">Organization Unit</TD>
+ <TD><INPUT TYPE="text" NAME="organization_unit" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->organization_unit |h %>"></TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">City</TD>
+ <TD><% include('/elements/city.html',
+ 'city' => $svc_cert->city || $cust_main->city,
+ 'state' => $svc_cert->state || $cust_main->state,
+ 'country' => $svc_cert->country || $cust_main->country,
+ )
+ %>
+ </TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">State</TD>
+ <TD><% include('/elements/select-state.html',
+ 'city' => $svc_cert->city || $cust_main->city,
+ 'state' => $svc_cert->state || $cust_main->state,
+ 'country' => $svc_cert->country || $cust_main->country,
+ )
+ %>
+ </TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">Country</TD>
+ <TD><% include('/elements/select-country.html',
+ 'city' => $svc_cert->city || $cust_main->city,
+ 'state' => $svc_cert->state || $cust_main->state,
+ 'country' => $svc_cert->country || $cust_main->country,
+ )
+ %>
+ </TD>
+ </TR>
+
+ <TR>
+ <TD ALIGN="right">Contact email</TD>
+ <TD><INPUT TYPE="text" NAME="cert_contact" SIZE=40 MAXLENGTH=80 VALUE="<% $svc_cert->cert_contact || ($cust_main->invoicing_list_emailonly)[0] |h %>"></TD>
+ </TR>
+
+% }
+
+% } else {
+% my $re = '';
+% if ( $svc_cert->privatekey ) {
+ <FONT COLOR="#ff0000">Verification error</FONT>
+% $re = 'Clear and Re-';
+% }
+ <% include('/elements/popup_link.html', {
+ 'action' => "svc_cert/generate_privatekey.html$link_query",
+ 'label' => $re.'Generate',
+ 'actionlabel' => 'Generate private key',
+ #opt
+ 'width' => '350',
+ 'height' => '150'
+ #'color' => '#ff0000',
+ #'closetext' => 'Go Away', # the value '' removes the link
+ })%>
+
+ or
+
+ <% include('/elements/popup_link.html', {
+ 'action' => "svc_cert/import_privatekey.html$link_query",
+ 'label' => $re.'Import',
+ 'actionlabel' => 'Import private key',
+ #opt
+ 'width' => '544',
+ 'height' => '368',
+ #'color' => '#ff0000',
+ #'closetext' => 'Go Away', # the value '' removes the link
+ })%>
+% if ( $svc_cert->privatekey ) {
+ <PRE><% $svc_cert->privatekey |h %></PRE>
+% }
</TD>
</TR>
-% }
+% }
</TABLE>
<BR>