You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
130 lines
3.0 KiB
130 lines
3.0 KiB
<?php |
|
/** |
|
* @copyright Copyright (c) 2016, ownCloud, Inc. |
|
* |
|
* @author Lukas Reschke <lukas@statuscode.ch> |
|
* @author Morris Jobke <hey@morrisjobke.de> |
|
* @author Robin Appelman <robin@icewind.nl> |
|
* |
|
* @license AGPL-3.0 |
|
* |
|
* This code is free software: you can redistribute it and/or modify |
|
* it under the terms of the GNU Affero General Public License, version 3, |
|
* as published by the Free Software Foundation. |
|
* |
|
* This program is distributed in the hope that it will be useful, |
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of |
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
|
* GNU Affero General Public License for more details. |
|
* |
|
* You should have received a copy of the GNU Affero General Public License, version 3, |
|
* along with this program. If not, see <http://www.gnu.org/licenses/> |
|
* |
|
*/ |
|
|
|
namespace OC\Security; |
|
|
|
use OCP\ICertificate; |
|
|
|
class Certificate implements ICertificate { |
|
protected $name; |
|
|
|
protected $commonName; |
|
|
|
protected $organization; |
|
|
|
protected $serial; |
|
|
|
protected $issueDate; |
|
|
|
protected $expireDate; |
|
|
|
protected $issuerName; |
|
|
|
protected $issuerOrganization; |
|
|
|
/** |
|
* @param string $data base64 encoded certificate |
|
* @param string $name |
|
* @throws \Exception If the certificate could not get parsed |
|
*/ |
|
public function __construct($data, $name) { |
|
$this->name = $name; |
|
$gmt = new \DateTimeZone('GMT'); |
|
|
|
// If string starts with "file://" ignore the certificate |
|
$query = 'file://'; |
|
if(strtolower(substr($data, 0, strlen($query))) === $query) { |
|
throw new \Exception('Certificate could not get parsed.'); |
|
} |
|
|
|
$info = openssl_x509_parse($data); |
|
if(!is_array($info)) { |
|
throw new \Exception('Certificate could not get parsed.'); |
|
} |
|
|
|
$this->commonName = isset($info['subject']['CN']) ? $info['subject']['CN'] : null; |
|
$this->organization = isset($info['subject']['O']) ? $info['subject']['O'] : null; |
|
$this->issueDate = new \DateTime('@' . $info['validFrom_time_t'], $gmt); |
|
$this->expireDate = new \DateTime('@' . $info['validTo_time_t'], $gmt); |
|
$this->issuerName = isset($info['issuer']['CN']) ? $info['issuer']['CN'] : null; |
|
$this->issuerOrganization = isset($info['issuer']['O']) ? $info['issuer']['O'] : null; |
|
} |
|
|
|
/** |
|
* @return string |
|
*/ |
|
public function getName() { |
|
return $this->name; |
|
} |
|
|
|
/** |
|
* @return string|null |
|
*/ |
|
public function getCommonName() { |
|
return $this->commonName; |
|
} |
|
|
|
/** |
|
* @return string |
|
*/ |
|
public function getOrganization() { |
|
return $this->organization; |
|
} |
|
|
|
/** |
|
* @return \DateTime |
|
*/ |
|
public function getIssueDate() { |
|
return $this->issueDate; |
|
} |
|
|
|
/** |
|
* @return \DateTime |
|
*/ |
|
public function getExpireDate() { |
|
return $this->expireDate; |
|
} |
|
|
|
/** |
|
* @return bool |
|
*/ |
|
public function isExpired() { |
|
$now = new \DateTime(); |
|
return $this->issueDate > $now or $now > $this->expireDate; |
|
} |
|
|
|
/** |
|
* @return string|null |
|
*/ |
|
public function getIssuerName() { |
|
return $this->issuerName; |
|
} |
|
|
|
/** |
|
* @return string|null |
|
*/ |
|
public function getIssuerOrganization() { |
|
return $this->issuerOrganization; |
|
} |
|
}
|
|
|