Return-Path: 
 <scm-return-20654-apmail-geronimo-scm-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-scm-archive@www.apache.org
Received: (qmail 33569 invoked from network); 23 Jul 2007 02:14:49 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 23 Jul 2007 02:14:49 -0000
Received: (qmail 263 invoked by uid 500); 23 Jul 2007 02:14:51 -0000
Delivered-To: apmail-geronimo-scm-archive@geronimo.apache.org
Received: (qmail 116 invoked by uid 500); 23 Jul 2007 02:14:50 -0000
Mailing-List: contact scm-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:scm-help@geronimo.apache.org>
list-unsubscribe: <mailto:scm-unsubscribe@geronimo.apache.org>
List-Post: <mailto:scm@geronimo.apache.org>
Reply-To: dev@geronimo.apache.org
List-Id: <scm.geronimo.apache.org>
Delivered-To: mailing list scm@geronimo.apache.org
Received: (qmail 104 invoked by uid 99); 23 Jul 2007 02:14:50 -0000
Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 22 Jul 2007 19:14:50 -0700
X-ASF-Spam-Status: No, hits=-99.5 required=10.0
	tests=ALL_TRUSTED,NO_REAL_NAME
X-Spam-Check-By: apache.org
Received: from [140.211.11.3] (HELO eris.apache.org) (140.211.11.3)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 22 Jul 2007 19:14:48 -0700
Received: by eris.apache.org (Postfix, from userid 65534)
	id 1DEC41A981A; Sun, 22 Jul 2007 19:14:28 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Subject: svn commit: r558585 -
 /geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java
Date: Mon, 23 Jul 2007 02:14:27 -0000
To: scm@geronimo.apache.org
From: dwoods@apache.org
X-Mailer: svnmailer-1.1.0
Message-Id: <20070723021428.1DEC41A981A@eris.apache.org>
X-Virus-Checked: Checked by ClamAV on apache.org

Author: dwoods
Date: Sun Jul 22 19:14:26 2007
New Revision: 558585

URL: http://svn.apache.org/viewvc?view=rev&rev=558585
Log:
Reintegrate some improvements from G2586 and G2588 that seemed to have been lost.

Modified:
    geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java

Modified: geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java
URL: http://svn.apache.org/viewvc/geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java?view=diff&rev=558585&r1=558584&r2=558585
==============================================================================
--- geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java (original)
+++ geronimo/server/trunk/applications/console/geronimo-console-core/src/main/java/org/apache/geronimo/console/core/keystore/KeyStoreGBean.java Sun Jul 22 19:14:26 2007
@@ -22,15 +22,18 @@
 import java.io.File;
 import java.io.FileInputStream;
 import java.io.FileOutputStream;
+import java.io.IOException;
 import java.io.InputStream;
 import java.math.BigInteger;
 import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.KeyStore;
 import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
 import java.security.PrivateKey;
 import java.security.PublicKey;
 import java.security.cert.Certificate;
+import java.security.cert.CertificateException;
 import java.security.cert.CertificateFactory;
 import java.security.cert.X509Certificate;
 import java.util.ArrayList;
@@ -78,7 +81,6 @@
     private ServerInfo serverInfo;
 
     public KeyStoreGBean() {
-        keyPassword = new String("");
     }
 
     public void doStart() throws WaitingException, Exception {
@@ -157,6 +159,14 @@
         return this.keyStorePassword;
     }
 
+    public void setKeyPassword(String keyPassword) {
+        this.keyPassword = keyPassword;
+    }
+
+    public String getKeyPassword() {
+        return this.keyPassword;
+    }
+
     public int getKeyStoreSize() throws KeyStoreException {
         return this.keystore.size();
     }
@@ -217,8 +227,7 @@
         X509Certificate cert = (X509Certificate) keystore.getCertificate(alias);
 
         // find private key by alias
-        PrivateKey key = (PrivateKey) keystore.getKey(alias, new String("")
-                .toCharArray());
+        PrivateKey key = (PrivateKey) keystore.getKey(alias, keyPassword.toCharArray());
 
         // generate csr
         String csr = generateCSR(cert, key);
@@ -285,8 +294,7 @@
         X509Certificate cert = generateCert(keyPair.getPublic(), keyPair
                 .getPrivate(), sigalg, validity.intValue(), cn, ou, o, l, st, c);
 
-        keystore.setKeyEntry(alias, keyPair.getPrivate(), new String()
-                .toCharArray(), new Certificate[] { cert });
+        keystore.setKeyEntry(alias, keyPair.getPrivate(), keyPassword.toCharArray(), new Certificate[] { cert });
 
         saveKeyStore();
     }
@@ -390,12 +398,21 @@
         InputStream is = null;
 
         try {
-            CertificateFactory cf = CertificateFactory.getInstance("X.509",
-                    keyStoreProvider);
+            if (keyStoreProvider.equalsIgnoreCase("Default"))
+            {
+                keyStoreProvider = new String(System.getProperty("java.security.Provider"));
+            }
+            CertificateFactory cf = CertificateFactory.getInstance("X.509", keyStoreProvider);
 
             is = new FileInputStream(certfile);
             Certificate cert = cf.generateCertificate(is);
 
+            if(alias == null || alias.equals("")) {
+                // Generate an alias for this certificate
+                X509Certificate xcert = (X509Certificate)cert;
+                alias = xcert.getIssuerDN().toString()+":"+xcert.getSerialNumber();
+            }
+
             keystore.setCertificateEntry(alias, cert);
 
             saveKeyStore();
@@ -438,8 +455,11 @@
             java.security.NoSuchAlgorithmException,
             java.security.UnrecoverableKeyException, java.io.IOException {
 
-        CertificateFactory cf = CertificateFactory.getInstance("X.509",
-                keyStoreProvider);
+        if (keyStoreProvider.equalsIgnoreCase("Default"))
+        {
+            keyStoreProvider = new String(System.getProperty("java.security.Provider"));
+        }
+        CertificateFactory cf = CertificateFactory.getInstance("X.509",keyStoreProvider);
         Collection certcoll = cf.generateCertificates(is);
 
         Certificate[] chain = new Certificate[certcoll.size()];
@@ -456,6 +476,16 @@
         saveKeyStore();
     }
 
+    public void deleteEntry(String alias)
+            throws KeyStoreException,
+            CertificateException,
+            NoSuchAlgorithmException, IOException {
+
+        keystore.deleteEntry(alias);
+
+        saveKeyStore();
+    }
+
 
     public static final GBeanInfo GBEAN_INFO;
 
@@ -466,6 +496,7 @@
         infoFactory.addAttribute("keyStoreProvider", String.class, true);
         infoFactory.addAttribute("keyStoreLocation", String.class, true);
         infoFactory.addAttribute("keyStorePassword", String.class, true);
+        infoFactory.addAttribute("keyPassword", String.class, true);
 
         infoFactory.addReference("serverInfo", ServerInfo.class, NameFactory.GERONIMO_SERVICE);
 
@@ -486,6 +517,7 @@
                 String.class, String.class });
         infoFactory.addOperation("importPKCS7Certificate", new Class[] {
                 String.class, String.class });
+        infoFactory.addOperation("deleteEntry", new Class[] {String.class });
 
         GBEAN_INFO = infoFactory.getBeanInfo();
     }