1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
<? local view, viewlibrary, pageinfo, session = ... ?>
<? --[[ DEBUG INFORMATION
io.write(html.cfe_unpack(view))
--]] ?>
<? if view.value.cmdresult then ?>
<H1>Command Result</H1>
<DL>
<?= string.gsub(view.value.cmdresult.value, "\n", "<BR>") ?>
</DL>
<? end ?>
<H1>Pending certificate requests<? if view.value.user then?> for <?= view.value.user.value ?><? end ?></H1>
<? if not view.value.pending or #view.value.pending.value == 0 then ?>
No certificates pending
<? else ?>
<TABLE>
<TR style="background:#eee;font-weight:bold;">
<TD style="padding-right:20px;white-space:nowrap;" class="header">Action</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">User</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">Cert Type</TD>
<TD style="white-space:nowrap;" class="header">Common Name</TD>
<? for i,request in ipairs(view.value.pending.value) do ?>
<TR>
<TD>
<? if session.permissions.openssl.viewrequest then
io.write(html.link{value="viewrequest?request="..request.name, label="View "})
end ?>
<? if session.permissions.openssl.approve then
io.write(html.link{value="approve?request="..request.name, label="Approve "})
end ?>
<? if session.permissions.openssl.deleterequest then
io.write(html.link{value="deleterequest?request="..request.name, label="Delete "})
elseif session.permissions.openssl.deletemyrequest then
io.write(html.link{value="deletemyrequest?request="..request.name, label="Delete "})
end ?>
</TD>
<TD><?= request.user ?></TD>
<TD><?= request.certtype ?></TD>
<TD><?= request.commonName ?></TD>
</TR>
<? end ?>
</TABLE>
<? end ?>
<? local reverserevoked = {}
local approved = {}
local revoked = {}
if view.value.revoked and #view.value.revoked.value > 0 then
for i,serial in ipairs(view.value.revoked.value) do
reverserevoked[serial] = i
end
for i,cert in ipairs(view.value.approved.value) do
if reverserevoked[cert.serial] then
revoked[#revoked + 1] = cert
else
approved[#approved + 1] = cert
end
end
else
approved = view.value.approved.value
end ?>
<H1>Approved certificate requests<? if view.value.user then?> for <?= view.value.user.value ?><? end ?></H1>
<? if #approved == 0 then ?>
No certificates approved
<? else ?>
<TABLE>
<TR style="background:#eee;font-weight:bold;">
<TD style="padding-right:20px;white-space:nowrap;" class="header">Action</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">User</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">Cert Type</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">Common Name</TD>
<TD style="white-space:nowrap;" class="header">Serial Num</TD>
<? for i,cert in ipairs(approved) do ?>
<TR>
<TD>
<? if session.permissions.openssl.viewcert then ?>
<?= html.link{value="viewcert?cert="..cert.name, label="View "} ?>
<? end ?>
<? if session.permissions.openssl.getcert then ?>
<?= html.link{value="getcert?cert="..cert.name, label="Download "} ?>
<? end ?>
<? if session.permissions.openssl.revoke then ?>
<?= html.link{value="revoke?cert="..cert.name, label="Revoke "} ?>
<? end ?>
<? if session.permissions.openssl.deletecert then ?>
<?= html.link{value="deletecert?cert="..cert.name, label="Delete "} ?>
<? end ?>
</TD>
<TD><?= cert.user ?></TD>
<TD><?= cert.certtype ?></TD>
<TD><?= cert.commonName ?></TD>
<TD><?= cert.serial ?></TD>
</TR>
<? end ?>
</TABLE>
<? end ?>
<H1>Revoked certificates<? if view.value.user then?> for <?= view.value.user.value ?><? end ?></H1>
<? if #revoked == 0 then ?>
No certificates revoked
<? else ?>
<TABLE>
<TR style="background:#eee;font-weight:bold;">
<TD style="padding-right:20px;white-space:nowrap;" class="header">User</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">Cert Type</TD>
<TD style="padding-right:20px;white-space:nowrap;" class="header">Common Name</TD>
<TD style="white-space:nowrap;" class="header">Serial Num</TD>
<? for i,cert in ipairs(revoked) do ?>
<TR>
<TD><?= cert.user ?></TD>
<TD><?= cert.certtype ?></TD>
<TD><?= cert.commonName ?></TD>
<TD><?= cert.serial ?></TD>
</TR>
<? end ?>
</TABLE>
<? end ?>
<? if session.permissions.openssl.getrevoked then ?>
<H1>Get revoked list (crl)</H1>
<?= html.link{value="getrevoked?crltype=PEM", label="Download PEM "} ?><BR>
<?= html.link{value="getrevoked?crltype=DER", label="Download DER "} ?><BR>
<?= html.link{value="getrevoked", label="Import to Firefox"} ?><BR>
<? end ?>
|
