ASWI - Pokročilé softwarové inženýrství » ASWI 2021 » Aplikace pro správu X.509 certifikátů (Yoso Czech s.r.o.) - JMSD

from src.exceptions.database_exception import DatabaseException

from src.model.subject import Subject

from src.services.certificate_service import CertificateService, RevocationReasonInvalidException, \

#  responsibility.

from src.services.key_service import KeyService

E_NO_ISSUER_FOUND = {"success": False, "data": "No certificate authority with such unique ID exists."}

E_NO_CERTIFICATES_FOUND = {"success": False, "data": "No such certificate found."}

E_NO_CERT_PRIVATE_KEY_FOUND = {"success": False,

                               "data": "Internal server error (certificate's private key cannot be found)."}

E_NOT_JSON_FORMAT = {"success": False, "data": "The request must be JSON-formatted."}

            try:

                # set certificate status using certificate_service

                self.certificate_service.set_certificate_revocation_status(identifier, status, reason)

                # these exceptions are thrown in case invalid status or revocation reason is passed to the controller

                return E_WRONG_PARAMETERS, C_BAD_REQUEST

            return {"success": True,

                    "data": "Certificate status updated successfully."}, C_SUCCESS

        # throw an error in case the request does not contain a json body

from src.constants import ROOT_CA_ID, INTERMEDIATE_CA_ID, CA_ID, CERTIFICATE_ID, CERTIFICATE_STATES, \

    CERTIFICATE_REVOCATION_REASONS

from src.dao.certificate_repository import CertificateRepository

from src.model.certificate import Certificate

from src.model.private_key import PrivateKey

from src.model.subject import Subject

        if reason not in CERTIFICATE_REVOCATION_REASONS:

            raise RevocationReasonInvalidException(reason)

        updated = False

        if status == STATUS_VALID:

            updated = self.certificate_repository.clear_certificate_revocation(id)

        elif status == STATUS_REVOKED:

            revocation_timestamp = int(time.time())

            updated = self.certificate_repository.set_certificate_revoked(id, str(revocation_timestamp), reason)

        if not updated:

    def get_subject_from_certificate(self, certificate: Certificate) -> Subject:

        """

class CertificateNotFoundException(Exception):

    """

    Exception that denotes that the caller was trying to set

    """

    def __init__(self, id):

    def __str__(self):

        return f"Certificate id '{self.id}' does not exist."

        # reference in openssl req command using -extensions option.

        extensions += "\n"+CA_EXTENSIONS

        if len(config) == 0:

        config += "\n[ " + SSCRT_SECTION + " ]" + "\n" + extensions

        with TemporaryFile("openssl.conf", config) as conf_path:

    assert "success" in revoke_ret.json

    assert revoke_ret.json["success"]

    # set to valid again

    valid_body = {

        "status":  "valid"

    }

    revoke_ret = server.patch(f"/api/certificates/54791", content_type="application/json", json=revocation_body)

    assert "data" in revoke_ret.json

    assert "success" in revoke_ret.json

    assert not revoke_ret.json["success"]

from src.constants import SSL_ID, CA_ID, AUTHENTICATION_ID, INTERMEDIATE_CA_ID, ROOT_CA_ID, CERTIFICATE_ID, SIGNATURE_ID

from src.model.subject import Subject

from src.services.certificate_service import RevocationReasonInvalidException, CertificateStatusInvalidException, \

def export_crt(crt):

    with pytest.raises(CertificateNotFoundException) as e:

        certificate_service_unique.set_certificate_revocation_status(5974, "revoked", "unspecified")