ASWI - Pokročilé softwarové inženýrství » ASWI 2021 » Aplikace pro správu X.509 certifikátů (Yoso Czech s.r.o.) - JMSD

from datetime import datetime

from injector import inject

from src.dao.certificate_repository import CertificateRepository

from src.services.crl.ca_index_file_line_generator import create_index_file_revoked_line

from src.services.cryptography import CryptographyService

class CrlService:

    @inject

    def __init__(self,

                 certificate_repository: CertificateRepository,

                 cryptography_service: CryptographyService

                 ):

        self.certificate_repository = certificate_repository

        self.cryptography_service = cryptography_service

    def create_revoked_index(self, ca_id) -> str:

        """

        Queries the certificate repository and looks for all certificates revoked by the certificate authority given

        by the passed ID. Found certificates are then put into a string representing the CA's database index file.

        :param ca_id: ID of the CA whose revoked certificates should be put into the index file

        :return: a str representing the content of a CA index file

        """

        index_lines = []

        # iterate over revoked certificates of the CA given by an ID

        for certificate in self.certificate_repository.get_all_revoked_by(ca_id):

            # extract the complete subject information and not_after date field

            subject, _, not_after = self.cryptography_service.parse_cert_pem(certificate.pem_data)

                                                  subject,

                                                  datetime.utcfromtimestamp(int(certificate.revocation_date)).timetuple(),

            # append it to the list of lines

            index_lines.append(line)

        # join all lines with a new line

        return "\n".join(index_lines)