2 * ============LICENSE_START=======================================================
4 * ================================================================================
5 * Copyright (C) 2020 Nokia. All rights reserved.
6 * ================================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END=========================================================
21 package org.onap.oom.certservice.certification;
23 import org.onap.oom.certservice.certification.configuration.Cmpv2ServerProvider;
24 import org.onap.oom.certservice.certification.configuration.model.Cmpv2Server;
25 import org.onap.oom.certservice.certification.conversion.CsrModelFactory;
26 import org.onap.oom.certservice.certification.conversion.OldCertificateModelFactory;
27 import org.onap.oom.certservice.certification.conversion.StringBase64;
28 import org.onap.oom.certservice.certification.exception.CertificateDecryptionException;
29 import org.onap.oom.certservice.certification.exception.DecryptionException;
30 import org.onap.oom.certservice.certification.model.CertificateUpdateModel;
31 import org.onap.oom.certservice.certification.model.CertificationResponseModel;
32 import org.onap.oom.certservice.certification.model.CsrModel;
33 import org.onap.oom.certservice.certification.model.OldCertificateModel;
34 import org.onap.oom.certservice.cmpv2client.exceptions.CmpClientException;
35 import org.slf4j.Logger;
36 import org.slf4j.LoggerFactory;
37 import org.springframework.beans.factory.annotation.Autowired;
38 import org.springframework.stereotype.Service;
41 public class CertificationResponseModelFactory {
43 private static final Logger LOGGER = LoggerFactory.getLogger(CertificationResponseModelFactory.class);
45 private final CsrModelFactory csrModelFactory;
46 private final Cmpv2ServerProvider cmpv2ServerProvider;
47 private final CertificationProvider certificationProvider;
48 private final OldCertificateModelFactory oldCertificateModelFactory;
49 private final UpdateRequestTypeDetector updateRequestTypeDetector;
52 CertificationResponseModelFactory(
53 CsrModelFactory csrModelFactory,
54 Cmpv2ServerProvider cmpv2ServerProvider,
55 CertificationProvider certificationProvider,
56 OldCertificateModelFactory oldCertificateModelFactory,
57 UpdateRequestTypeDetector updateRequestTypeDetector) {
58 this.cmpv2ServerProvider = cmpv2ServerProvider;
59 this.csrModelFactory = csrModelFactory;
60 this.certificationProvider = certificationProvider;
61 this.oldCertificateModelFactory = oldCertificateModelFactory;
62 this.updateRequestTypeDetector = updateRequestTypeDetector;
65 public CertificationResponseModel provideCertificationModelFromInitialRequest(String encodedCsr, String encodedPrivateKey, String caName)
66 throws DecryptionException, CmpClientException {
67 CsrModel csrModel = csrModelFactory.createCsrModel(
68 new StringBase64(encodedCsr),
69 new StringBase64(encodedPrivateKey)
71 LOGGER.debug("Received CSR meta data: \n{}", csrModel);
73 Cmpv2Server cmpv2Server = cmpv2ServerProvider.getCmpv2Server(caName);
74 LOGGER.debug("Found server for given CA name: \n{}", cmpv2Server);
76 LOGGER.info("Sending sign request for certification model for CA named: {}, and certificate signing request:\n{}",
78 return certificationProvider.executeInitializationRequest(csrModel, cmpv2Server);
81 public CertificationResponseModel provideCertificationModelFromUpdateRequest(CertificateUpdateModel certificateUpdateModel)
82 throws DecryptionException, CmpClientException, CertificateDecryptionException {
83 LOGGER.info("CSR: " + certificateUpdateModel.getEncodedCsr() +
84 ", old cert: " + certificateUpdateModel.getEncodedOldCert() +
85 ", CA: " + certificateUpdateModel.getCaName());
86 final CsrModel csrModel = csrModelFactory.createCsrModel(
87 new StringBase64(certificateUpdateModel.getEncodedCsr()),
88 new StringBase64(certificateUpdateModel.getEncodedPrivateKey())
90 final OldCertificateModel certificateModel = oldCertificateModelFactory.createCertificateModel(
91 new StringBase64(certificateUpdateModel.getEncodedOldCert()), certificateUpdateModel.getEncodedOldPrivateKey());
93 Cmpv2Server cmpv2Server = cmpv2ServerProvider.getCmpv2Server(certificateUpdateModel.getCaName());
94 LOGGER.debug("Found server for given CA name: \n{}", cmpv2Server);
95 LOGGER.info("Sending update request for certification model for CA named: {}, and certificate update request:\n{}",
96 certificateUpdateModel.getCaName(), csrModel);
98 if (updateRequestTypeDetector.isKur(csrModel.getCertificateData(), certificateModel.getCertificateData())) {
100 "Certificate Signing Request and Old Certificate have the same parameters. Preparing Key Update Request");
101 return certificationProvider.executeKeyUpdateRequest(csrModel, cmpv2Server, certificateModel);
104 "Certificate Signing Request and Old Certificate have different parameters. Preparing Certification Request");
105 return certificationProvider.executeCertificationRequest(csrModel, cmpv2Server);