Certificate certificate = rsaCert.getCertificate(); keyStore.setCertificateEntry(alias, certificate); Key key = RSATools.createPrivateKey(rsaCert.getKeysForSigning()); keyStore.setKeyEntry(alias, key, password, new Certificate[] { certificate });
public static void toWebsiteCertificate(String caCertificate, RSACertificate rsaCertificate, WebsiteCertificate websiteCertificate) { websiteCertificate.setCaCertificate(caCertificate); websiteCertificate.setThumbprint(rsaCertificate.getThumbprint()); websiteCertificate.setCertificate(rsaCertificate.saveCertificatePemAsString()); websiteCertificate.setPublicKey(RSACrypt.RSA_CRYPT.savePublicKeyPemAsString(rsaCertificate.getKeysForSigning())); websiteCertificate.setPrivateKey(RSACrypt.RSA_CRYPT.savePrivateKeyPemAsString(rsaCertificate.getKeysForSigning())); websiteCertificate.setStart(rsaCertificate.getStartDate()); websiteCertificate.setEnd(rsaCertificate.getEndDate()); websiteCertificate.getDomainNames().addAll(rsaCertificate.getSubjectAltNames()); }
public static void toWebsiteCertificate(String caCertificate, RSACertificate rsaCertificate, WebsiteCertificate websiteCertificate) { websiteCertificate.setCaCertificate(caCertificate); websiteCertificate.setThumbprint(rsaCertificate.getThumbprint()); websiteCertificate.setCertificate(rsaCertificate.saveCertificatePemAsString()); websiteCertificate.setPublicKey(RSACrypt.RSA_CRYPT.savePublicKeyPemAsString(rsaCertificate.getKeysForSigning())); websiteCertificate.setPrivateKey(RSACrypt.RSA_CRYPT.savePrivateKeyPemAsString(rsaCertificate.getKeysForSigning())); websiteCertificate.setStart(rsaCertificate.getStartDate()); websiteCertificate.setEnd(rsaCertificate.getEndDate()); websiteCertificate.setDomainNames(rsaCertificate.getSubjectAltNames()); }
@Override public void timerHandler(CommonServicesContext services, ChangesContext changes, TimerEventContext event) { IPResourceService resourceService = services.getResourceService(); // Check the certs that will expire in 1 week logger.info("Getting self-signed certificates that expire in 1 week"); List<WebsiteCertificate> certificatesToUpdate = resourceService.resourceFindAll( // resourceService.createResourceQuery(WebsiteCertificate.class) // .addEditorEquals(SelfSignedWebsiteCertificateEditor.EDITOR_NAME) // .propertyLesserAndEquals(WebsiteCertificate.PROPERTY_END, DateTools.addDate(Calendar.WEEK_OF_YEAR, 1) // )); // Update them logger.info("Got {} certificates to update", certificatesToUpdate.size()); for (WebsiteCertificate certificate : certificatesToUpdate) { logger.info("Updating certificate {}", certificate.getDomainNames()); try { RSACertificate currentRsaCertificate = CertificateHelper.toRSACertificate(certificate); AsymmetricKeys keys = currentRsaCertificate.getKeysForSigning(); RSACertificate rsaCertificate = new RSACertificate(keys).selfSign( // new CertificateDetails().setCommonName(currentRsaCertificate.getCommonName()) // .addSanDns(currentRsaCertificate.getCommonName()) // .setEndDate(DateTools.addDate(Calendar.MONTH, 1))); CertificateHelper.toWebsiteCertificate(null, rsaCertificate, certificate); changes.resourceUpdate(certificate.getInternalId(), certificate); } catch (Exception e) { logger.error("Problem updating self-signed certificate {}", certificate.getDomainNames(), e); services.getMessagingService().alertingError("Problem updating self-signed certificate " + certificate.getDomainNames(), e.getMessage()); } } }
@Override public void timerHandler(CommonServicesContext services, ChangesContext changes, TimerEventContext event) { IPResourceService resourceService = services.getResourceService(); // Check the certs that will expire in 1 week logger.info("Getting self-signed certificates that expire in 1 week"); List<WebsiteCertificate> certificatesToUpdate = resourceService.resourceFindAll( // resourceService.createResourceQuery(WebsiteCertificate.class) // .addEditorEquals(SelfSignedWebsiteCertificateEditor.EDITOR_NAME) // .propertyLesserAndEquals(WebsiteCertificate.PROPERTY_END, DateTools.addDate(Calendar.WEEK_OF_YEAR, 1) // )); // Update them logger.info("Got {} certificates to update", certificatesToUpdate.size()); for (WebsiteCertificate certificate : certificatesToUpdate) { logger.info("Updating certificate {}", certificate.getDomainNames()); try { RSACertificate currentRsaCertificate = CertificateHelper.toRSACertificate(certificate); AsymmetricKeys keys = currentRsaCertificate.getKeysForSigning(); RSACertificate rsaCertificate = new RSACertificate(keys).selfSign( // new CertificateDetails().setCommonName(currentRsaCertificate.getCommonName()) // .addSanDns(currentRsaCertificate.getCommonName()) // .setEndDate(DateTools.addDate(Calendar.MONTH, 1))); CertificateHelper.toWebsiteCertificate(null, rsaCertificate, certificate); changes.resourceUpdate(certificate.getInternalId(), certificate); } catch (Exception e) { logger.error("Problem updating self-signed certificate {}", certificate.getDomainNames(), e); services.getMessagingService().alertingError("Problem updating self-signed certificate " + certificate.getDomainNames(), e.getMessage()); } } }