forked from community/device-mgt-core
Merge branch 'master' of https://github.com/geethkokila/product-cdm
commit
6eabb80e47
@ -0,0 +1,27 @@
|
||||
/**
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* Licensed under the Apache License, Version 2.0 (the "License");
|
||||
* you may not use this file except in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing, software
|
||||
* distributed under the License is distributed on an "AS IS" BASIS,
|
||||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
* See the License for the specific language governing permissions and
|
||||
* limitations under the License.
|
||||
*/
|
||||
package org.wso2.cdm.agent.utils;
|
||||
|
||||
/**
|
||||
* Constant values throughout the agent
|
||||
*/
|
||||
public class Constant {
|
||||
public static final String USERNAME = "username";
|
||||
public static final String PASSWORD = "password";
|
||||
public static final String STATUS = "status";
|
||||
public static final String RESPONSE = "response";
|
||||
|
||||
}
|
Binary file not shown.
@ -1,47 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* WSO2 Inc. licenses this file to you under the Apache License,
|
||||
* Version 2.0 (the "License"); you may not use this file except
|
||||
* in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing,
|
||||
* software distributed under the License is distributed on an
|
||||
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
||||
* KIND, either express or implied. See the License for the
|
||||
* specific language governing permissions and limitations
|
||||
* under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows;
|
||||
|
||||
import javax.ws.rs.*;
|
||||
import javax.ws.rs.core.Response;
|
||||
import java.io.InputStream;
|
||||
|
||||
@Path("/EnrollmentServer")
|
||||
public interface DiscoveryService {
|
||||
|
||||
@Path("/Discovery.svc")
|
||||
@POST
|
||||
@Consumes({ "application/soap+xml;charset=utf-8", "application/xml" })
|
||||
@Produces("application/soap+xml;charset=utf-8")
|
||||
Response getDiscoveryResponse(
|
||||
InputStream discoveryRequest);
|
||||
|
||||
@Path("/Discovery.svc")
|
||||
@GET
|
||||
@Consumes("text/html")
|
||||
@Produces("text/html")
|
||||
Response getDiscoveryOKRequest();
|
||||
|
||||
@Path("/Discovery.svc")
|
||||
@GET
|
||||
@Consumes({ "application/soap+xml;charset=utf-8", "application/xml" })
|
||||
@Produces("text/html")
|
||||
Response getDiscoveryOKRequestWithBody(InputStream discoveryRequest);
|
||||
|
||||
}
|
@ -1,43 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* WSO2 Inc. licenses this file to you under the Apache License,
|
||||
* Version 2.0 (the "License"); you may not use this file except
|
||||
* in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing,
|
||||
* software distributed under the License is distributed on an
|
||||
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
||||
* KIND, either express or implied. See the License for the
|
||||
* specific language governing permissions and limitations
|
||||
* under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows;
|
||||
|
||||
import javax.swing.text.Document;
|
||||
import javax.ws.rs.Consumes;
|
||||
import javax.ws.rs.POST;
|
||||
import javax.ws.rs.Path;
|
||||
import javax.ws.rs.Produces;
|
||||
import javax.ws.rs.core.Response;
|
||||
|
||||
@Path("/ENROLLMENTSERVER")
|
||||
public interface EnrolmentService {
|
||||
|
||||
@Path("/PolicyEnrollmentWebservice.svc")
|
||||
@POST
|
||||
@Consumes("application/soap+xml;charset=utf-8")
|
||||
@Produces("application/soap+xml;charset=utf-8")
|
||||
Response getPolicies(Document request);
|
||||
|
||||
@Path("/DeviceEnrollmentWebservice.svc")
|
||||
@POST
|
||||
@Consumes("application/soap+xml;charset=utf-8")
|
||||
@Produces("application/soap+xml;charset=utf-8")
|
||||
Response enrollUser(Document request);
|
||||
|
||||
}
|
@ -1,72 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* WSO2 Inc. licenses this file to you under the Apache License,
|
||||
* Version 2.0 (the "License"); you may not use this file except
|
||||
* in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing,
|
||||
* software distributed under the License is distributed on an
|
||||
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
||||
* KIND, either express or implied. See the License for the
|
||||
* specific language governing permissions and limitations
|
||||
* under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows.impl;
|
||||
|
||||
import cdm.api.windows.DiscoveryService;
|
||||
|
||||
import javax.ws.rs.core.Response;
|
||||
import java.io.File;
|
||||
import java.io.FileInputStream;
|
||||
import java.io.IOException;
|
||||
import java.io.InputStream;
|
||||
|
||||
|
||||
import org.apache.log4j.Logger;
|
||||
|
||||
public class DiscoveryServiceImpl implements DiscoveryService {
|
||||
|
||||
private Logger LOGGER = Logger.getLogger(DiscoveryServiceImpl.class);
|
||||
|
||||
public Response getDiscoveryResponse(InputStream discoveryRequest) {
|
||||
LOGGER.info("Received Discovery Service POST Request [{}]");
|
||||
|
||||
String response = null;
|
||||
File file = null;
|
||||
FileInputStream fis = null;
|
||||
byte[] data = null;
|
||||
|
||||
try {
|
||||
|
||||
file = new File("./conf/discover-service.xml");
|
||||
fis = new FileInputStream(file);
|
||||
data = new byte[(int) file.length()];
|
||||
fis.read(data);
|
||||
fis.close();
|
||||
response = new String(data, "UTF-8");
|
||||
|
||||
} catch (IOException e) {
|
||||
LOGGER.error("An Unexpected Error has occurred while processing the request ", e);
|
||||
}
|
||||
LOGGER.info("Sending Discovery Response");
|
||||
|
||||
return Response.ok().entity(response).build();
|
||||
}
|
||||
|
||||
public Response getDiscoveryOKRequest() {
|
||||
LOGGER.info("Received a GET Request without body");
|
||||
return Response.ok().build();
|
||||
}
|
||||
|
||||
public Response getDiscoveryOKRequestWithBody(InputStream discoveryRequest) {
|
||||
LOGGER.info("Received a GET Request with body [{}]");
|
||||
return Response.ok().build();
|
||||
}
|
||||
|
||||
|
||||
}
|
@ -1,305 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* WSO2 Inc. licenses this file to you under the Apache License,
|
||||
* Version 2.0 (the "License"); you may not use this file except
|
||||
* in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing,
|
||||
* software distributed under the License is distributed on an
|
||||
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
||||
* KIND, either express or implied. See the License for the
|
||||
* specific language governing permissions and limitations
|
||||
* under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows.impl;
|
||||
|
||||
import cdm.api.windows.EnrolmentService;
|
||||
import org.apache.log4j.Logger;
|
||||
import org.bouncycastle.jce.provider.BouncyCastleProvider;
|
||||
import org.bouncycastle.pkcs.PKCS10CertificationRequest;
|
||||
import org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequest;
|
||||
import org.w3c.dom.NamedNodeMap;
|
||||
import org.w3c.dom.Node;
|
||||
import org.w3c.dom.NodeList;
|
||||
import sun.misc.BASE64Decoder;
|
||||
import sun.misc.BASE64Encoder;
|
||||
import javax.swing.text.Document;
|
||||
import javax.ws.rs.core.Response;
|
||||
import javax.xml.namespace.NamespaceContext;
|
||||
import javax.xml.parsers.DocumentBuilder;
|
||||
import javax.xml.parsers.DocumentBuilderFactory;
|
||||
import javax.xml.transform.Transformer;
|
||||
import javax.xml.transform.TransformerFactory;
|
||||
import javax.xml.transform.dom.DOMSource;
|
||||
import javax.xml.transform.stream.StreamResult;
|
||||
import javax.xml.xpath.XPath;
|
||||
import javax.xml.xpath.XPathConstants;
|
||||
import javax.xml.xpath.XPathFactory;
|
||||
import java.io.File;
|
||||
import java.io.FileInputStream;
|
||||
import java.io.IOException;
|
||||
import java.io.StringWriter;
|
||||
import java.security.KeyFactory;
|
||||
import java.security.PrivateKey;
|
||||
import java.security.Security;
|
||||
import java.security.cert.CertificateFactory;
|
||||
import java.security.cert.X509Certificate;
|
||||
import java.security.spec.PKCS8EncodedKeySpec;
|
||||
import java.util.Iterator;
|
||||
|
||||
import cdm.api.windows.util.CertificateSigningService;
|
||||
|
||||
public class EnrolmentServiceImpl implements EnrolmentService {
|
||||
|
||||
private Logger LOGGER = Logger.getLogger(EnrolmentServiceImpl.class);
|
||||
|
||||
static {
|
||||
Security.addProvider(new BouncyCastleProvider());
|
||||
}
|
||||
|
||||
private String enrollmentResponseFile;
|
||||
|
||||
private String wapProvisioningXmlFile;
|
||||
|
||||
private String privatePemKeyFilePath;
|
||||
|
||||
private String caCertificateFilePath;
|
||||
|
||||
PrivateKey privateKey;
|
||||
|
||||
X509Certificate rooCACertificate;
|
||||
|
||||
public void init() {
|
||||
|
||||
try {
|
||||
FileInputStream in = new FileInputStream(privatePemKeyFilePath);
|
||||
byte[] keyBytes = new byte[in.available()];
|
||||
in.read(keyBytes);
|
||||
in.close();
|
||||
|
||||
String key = new String(keyBytes, "UTF-8");
|
||||
key = key.replaceAll(
|
||||
"(-+BEGIN RSA PRIVATE KEY-+\\r?\\n|-+END RSA PRIVATE KEY-+\\r?\\n?)", "");
|
||||
|
||||
// don't use this for real projects!
|
||||
BASE64Decoder decoder = new BASE64Decoder();
|
||||
keyBytes = decoder.decodeBuffer(key);
|
||||
|
||||
// generate private key
|
||||
|
||||
PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(keyBytes);
|
||||
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
|
||||
|
||||
privateKey = keyFactory.generatePrivate(spec);
|
||||
|
||||
LOGGER.info("Private Key Algorithm : " + privateKey.getAlgorithm());
|
||||
} catch (Exception e) {
|
||||
LOGGER.error("An unexpected Error has occurred while reading CA Private Key, ", e);
|
||||
}
|
||||
|
||||
try {
|
||||
FileInputStream fr = new FileInputStream(caCertificateFilePath);
|
||||
CertificateFactory cf = CertificateFactory.getInstance("X509");
|
||||
rooCACertificate = (X509Certificate) cf.generateCertificate(fr);
|
||||
|
||||
rooCACertificate.verify(rooCACertificate.getPublicKey());
|
||||
|
||||
LOGGER.info("CA Certificate Expiration Date : " + rooCACertificate.getNotAfter());
|
||||
|
||||
} catch (Exception e) {
|
||||
LOGGER.error("An unexpected Error has occurred while reading CA Root Certificate, ", e);
|
||||
}
|
||||
|
||||
/*try {
|
||||
KeyPairGenerator gen = KeyPairGenerator.getInstance("RSA");
|
||||
gen.initialize(2048);
|
||||
key = gen.generateKeyPair();
|
||||
PrivateKey privateKey = key.getPrivate();
|
||||
PublicKey publicKey = key.getPublic();
|
||||
|
||||
|
||||
*//**
|
||||
* Following details need to be provided
|
||||
*
|
||||
* Serial number
|
||||
* Signature algorithm
|
||||
* Issuer Name.
|
||||
* Subject Name -- or a Subject Alternative Name (SAN).
|
||||
* Date range (not before, not after).
|
||||
* Subject Public Key.
|
||||
*//*
|
||||
|
||||
X509V3CertificateGenerator v3CertGen = new X509V3CertificateGenerator();
|
||||
v3CertGen.setSerialNumber(BigInteger.valueOf(new SecureRandom().nextInt(Integer.MAX_VALUE)));
|
||||
v3CertGen.setIssuerDN(new X509Principal("CN=wso2.com"));
|
||||
//v3CertGen.setIssuerDN(new X509Principal("CN=wso2.com, OU=Mobile, O=wso2 L=Colombo, C=LK"));
|
||||
v3CertGen.setNotBefore(new Date(System.currentTimeMillis() - 1000L * 60 * 60 * 24 * 30));
|
||||
v3CertGen.setNotAfter(new Date(System.currentTimeMillis() + (1000L * 60 * 60 * 24 * 365*10)));
|
||||
v3CertGen.setSubjectDN(new X509Principal("CN=wso2.com"));
|
||||
v3CertGen.setPublicKey(publicKey);
|
||||
v3CertGen.setSignatureAlgorithm("SHA1withRSA");
|
||||
|
||||
rooCACertificate = v3CertGen.generateX509Certificate(privateKey);
|
||||
|
||||
} catch (Exception e) {
|
||||
e.printStackTrace();
|
||||
}*/
|
||||
}
|
||||
|
||||
public Response getPolicies(Document request) {
|
||||
LOGGER.info("Received Get Policies Request");
|
||||
|
||||
String response = null;
|
||||
File file = null;
|
||||
FileInputStream fis = null;
|
||||
byte[] data = null;
|
||||
|
||||
try {
|
||||
|
||||
file = new File("./conf/policy-service.xml");
|
||||
fis = new FileInputStream(file);
|
||||
data = new byte[(int) file.length()];
|
||||
fis.read(data);
|
||||
fis.close();
|
||||
response = new String(data, "UTF-8");
|
||||
|
||||
} catch (IOException e) {
|
||||
LOGGER.error("An Unexpected Error has occurred while processing the request ", e);
|
||||
}
|
||||
|
||||
LOGGER.info("Sending Get Policy Response");
|
||||
return Response.ok().entity(response).build();
|
||||
}
|
||||
|
||||
public Response enrollUser(Document request) {
|
||||
LOGGER.info("Received User Enrollment Request");
|
||||
|
||||
XPath xPath = XPathFactory.newInstance().newXPath();
|
||||
xPath.setNamespaceContext(new MyNamespaceContext());
|
||||
String response = null;
|
||||
|
||||
DocumentBuilderFactory domFactory = DocumentBuilderFactory.newInstance();
|
||||
|
||||
try {
|
||||
NodeList nl = (NodeList) xPath.evaluate(
|
||||
"/s:Envelope/s:Body/wst:RequestSecurityToken/wsse:BinarySecurityToken", request,
|
||||
XPathConstants.NODESET);
|
||||
Node node = nl.item(0);
|
||||
String certificateDataString = node.getTextContent();
|
||||
byte[] derByteArray =
|
||||
javax.xml.bind.DatatypeConverter.parseBase64Binary(certificateDataString);
|
||||
|
||||
PKCS10CertificationRequest certificationRequest =
|
||||
new PKCS10CertificationRequest(derByteArray);
|
||||
JcaPKCS10CertificationRequest csrReq =
|
||||
new JcaPKCS10CertificationRequest(certificationRequest);
|
||||
|
||||
LOGGER.info("Public Key of CSR : " + csrReq.getPublicKey());
|
||||
|
||||
X509Certificate signedCert =
|
||||
CertificateSigningService.signCSR(csrReq, privateKey, rooCACertificate);
|
||||
|
||||
LOGGER.info("Verifying Signed Certificate with CSR's public key : " +
|
||||
signedCert.getPublicKey());
|
||||
|
||||
BASE64Encoder base64Encoder = new BASE64Encoder();
|
||||
String rootCertEncodedString = base64Encoder.encode(rooCACertificate.getEncoded());
|
||||
String signedCertEncoded = base64Encoder.encode(signedCert.getEncoded());
|
||||
|
||||
DocumentBuilder builder = domFactory.newDocumentBuilder();
|
||||
org.w3c.dom.Document dDoc = builder.parse(wapProvisioningXmlFile);
|
||||
|
||||
NodeList wapParm = dDoc.getElementsByTagName("parm");
|
||||
|
||||
NamedNodeMap rootCertAttributes = wapParm.item(0).getAttributes();
|
||||
Node b64Encoded = rootCertAttributes.getNamedItem("value");
|
||||
b64Encoded.setTextContent(rootCertEncodedString);
|
||||
|
||||
NamedNodeMap clientCertAttributes = wapParm.item(1).getAttributes();
|
||||
Node b64CliendEncoded = clientCertAttributes.getNamedItem("value");
|
||||
b64CliendEncoded.setTextContent(signedCertEncoded);
|
||||
|
||||
String wapProvisioning = convertDocumentToString(dDoc);
|
||||
String encodedWap = base64Encoder.encode(wapProvisioning.getBytes());
|
||||
|
||||
org.w3c.dom.Document responseXml = builder.parse(enrollmentResponseFile);
|
||||
NodeList token = responseXml.getElementsByTagName("BinarySecurityToken");
|
||||
|
||||
Node firstToken = token.item(0);
|
||||
firstToken.setTextContent(encodedWap);
|
||||
|
||||
response = convertDocumentToString(responseXml);
|
||||
} catch (Exception e) {
|
||||
LOGGER.error("An Unexpected Error has occurred while processing the request ", e);
|
||||
}
|
||||
|
||||
LOGGER.info("Sending User Enrollment Response");
|
||||
return Response.ok().entity(response).build();
|
||||
}
|
||||
|
||||
private String convertDocumentToString(org.w3c.dom.Document document) throws Exception {
|
||||
DOMSource domSource = new DOMSource(document);
|
||||
StringWriter writer = new StringWriter();
|
||||
StreamResult result = new StreamResult(writer);
|
||||
TransformerFactory tf = TransformerFactory.newInstance();
|
||||
Transformer transformer = tf.newTransformer();
|
||||
transformer.transform(domSource, result);
|
||||
String wapProvisioning = writer.toString();
|
||||
|
||||
return wapProvisioning;
|
||||
|
||||
}
|
||||
|
||||
public void setEnrollmentResponseFile(String enrollmentResponseFile) {
|
||||
this.enrollmentResponseFile = enrollmentResponseFile;
|
||||
}
|
||||
|
||||
public void setWapProvisioningXmlFile(String wapProvisioningXmlFile) {
|
||||
this.wapProvisioningXmlFile = wapProvisioningXmlFile;
|
||||
}
|
||||
|
||||
public void setPrivatePemKeyFilePath(String privatePemKeyFilePath) {
|
||||
this.privatePemKeyFilePath = privatePemKeyFilePath;
|
||||
}
|
||||
|
||||
public void setCaCertificateFilePath(String caCertificateFilePath) {
|
||||
this.caCertificateFilePath = caCertificateFilePath;
|
||||
}
|
||||
|
||||
public void setPrivateKey(PrivateKey privateKey) {
|
||||
this.privateKey = privateKey;
|
||||
}
|
||||
|
||||
public void setRooCACertificate(X509Certificate rooCACertificate) {
|
||||
this.rooCACertificate = rooCACertificate;
|
||||
}
|
||||
|
||||
private static class MyNamespaceContext implements NamespaceContext {
|
||||
|
||||
public String getNamespaceURI(String prefix) {
|
||||
|
||||
if ("s".equals(prefix)) {
|
||||
return "http://www.w3.org/2003/05/soap-envelope";
|
||||
} else if ("wst".equals(prefix)) {
|
||||
return "http://docs.oasis-open.org/ws-sx/ws-trust/200512";
|
||||
} else if ("wsse".equals(prefix)) {
|
||||
return "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd";
|
||||
}
|
||||
return null;
|
||||
|
||||
}
|
||||
|
||||
public String getPrefix(String namespaceURI) {
|
||||
return null;
|
||||
}
|
||||
|
||||
public Iterator getPrefixes(String namespaceURI) {
|
||||
return null;
|
||||
}
|
||||
}
|
||||
}
|
@ -1,92 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* WSO2 Inc. licenses this file to you under the Apache License,
|
||||
* Version 2.0 (the "License"); you may not use this file except
|
||||
* in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing,
|
||||
* software distributed under the License is distributed on an
|
||||
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
||||
* KIND, either express or implied. See the License for the
|
||||
* specific language governing permissions and limitations
|
||||
* under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows.util;
|
||||
|
||||
import org.apache.log4j.Logger;
|
||||
import org.bouncycastle.asn1.x500.X500Name;
|
||||
import org.bouncycastle.cert.X509v3CertificateBuilder;
|
||||
import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
|
||||
import org.bouncycastle.cert.jcajce.JcaX509ExtensionUtils;
|
||||
import org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder;
|
||||
import org.bouncycastle.operator.ContentSigner;
|
||||
import org.bouncycastle.operator.jcajce.JcaContentSignerBuilder;
|
||||
import org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequest;
|
||||
|
||||
import java.math.BigInteger;
|
||||
import java.security.PrivateKey;
|
||||
import java.security.SecureRandom;
|
||||
import java.security.cert.X509Certificate;
|
||||
import java.util.Date;
|
||||
|
||||
public class CertificateSigningService {
|
||||
|
||||
private static Logger LOGGER = Logger.getLogger(CertificateSigningService.class);
|
||||
|
||||
public static X509Certificate signCSR(JcaPKCS10CertificationRequest jcaRequest,
|
||||
PrivateKey privateKey, X509Certificate caCert)
|
||||
throws Exception {
|
||||
try {
|
||||
|
||||
X509v3CertificateBuilder certificateBuilder = new JcaX509v3CertificateBuilder(caCert,
|
||||
BigInteger
|
||||
.valueOf(
|
||||
new SecureRandom()
|
||||
.nextInt(
|
||||
Integer.MAX_VALUE)),
|
||||
new Date(
|
||||
System.currentTimeMillis() -
|
||||
1000L *
|
||||
60 *
|
||||
60 *
|
||||
24 *
|
||||
30),
|
||||
new Date(
|
||||
System.currentTimeMillis() +
|
||||
(1000L *
|
||||
60 *
|
||||
60 *
|
||||
24 *
|
||||
365 *
|
||||
10)),
|
||||
new X500Name(
|
||||
"CN=abimaran"),
|
||||
jcaRequest
|
||||
.getPublicKey());
|
||||
|
||||
JcaX509ExtensionUtils extUtils = new JcaX509ExtensionUtils();
|
||||
|
||||
ContentSigner signer =
|
||||
new JcaContentSignerBuilder("SHA1withRSA").setProvider("BC").build(privateKey);
|
||||
|
||||
X509Certificate theCert =
|
||||
new JcaX509CertificateConverter().setProvider("BC").getCertificate(
|
||||
certificateBuilder.build(signer));
|
||||
|
||||
LOGGER.info("Signed Certificate CN : " + theCert.getSubjectDN().getName());
|
||||
|
||||
LOGGER.info("Signed CSR's public key : " + theCert.getPublicKey());
|
||||
|
||||
return theCert;
|
||||
|
||||
} catch (Exception e) {
|
||||
throw new Exception("Error in signing the certificate", e);
|
||||
}
|
||||
}
|
||||
|
||||
}
|
@ -1,45 +0,0 @@
|
||||
/*
|
||||
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
|
||||
*
|
||||
* Licensed under the Apache License, Version 2.0 (the "License");
|
||||
* you may not use this file except in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing, software
|
||||
* distributed under the License is distributed on an "AS IS" BASIS,
|
||||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
* See the License for the specific language governing permissions and
|
||||
* limitations under the License.
|
||||
*/
|
||||
|
||||
package cdm.api.windows.util;
|
||||
|
||||
|
||||
import com.google.gson.JsonObject;
|
||||
import org.wso2.carbon.device.mgt.common.Device;
|
||||
import org.wso2.carbon.device.mgt.common.DeviceIdentifier;
|
||||
import org.wso2.carbon.device.mgt.common.DeviceManagementConstants;
|
||||
|
||||
|
||||
/**
|
||||
* WindowsAPIUtil class provides utility function used by Android REST-API classes.
|
||||
*/
|
||||
public class WindowsAPIUtil {
|
||||
|
||||
public static Device convertToDeviceObject(JsonObject json){
|
||||
Device device = new Device();
|
||||
device.setType(DeviceManagementConstants.MobileDeviceTypes.MOBILE_DEVICE_TYPE_ANDROID);
|
||||
device.setName("Test Device");
|
||||
device.setOwner("harshan");
|
||||
return device;
|
||||
}
|
||||
|
||||
public static DeviceIdentifier convertToDeviceIdentifierObject(String deviceId){
|
||||
DeviceIdentifier identifier = new DeviceIdentifier();
|
||||
identifier.setId(deviceId);
|
||||
identifier.setType(DeviceManagementConstants.MobileDeviceTypes.MOBILE_DEVICE_TYPE_ANDROID);
|
||||
return identifier;
|
||||
}
|
||||
}
|
@ -1,52 +0,0 @@
|
||||
<beans xmlns="http://www.springframework.org/schema/beans"
|
||||
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
|
||||
xmlns:jaxws="http://cxf.apache.org/jaxws"
|
||||
xmlns:httpj="http://cxf.apache.org/transports/http-jetty/configuration"
|
||||
xmlns:sec="http://cxf.apache.org/configuration/security"
|
||||
xmlns:context="http://www.springframework.org/schema/context"
|
||||
xmlns:jaxrs="http://cxf.apache.org/jaxrs"
|
||||
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.5.xsd
|
||||
http://cxf.apache.org/jaxws http://cxf.apache.org/schemas/jaxws.xsd http://www.springframework.org/schema/context
|
||||
http://www.springframework.org/schema/context/spring-context.xsd
|
||||
http://cxf.apache.org/transports/http/configuration
|
||||
http://cxf.apache.org/schemas/configuration/http-conf.xsd
|
||||
http://cxf.apache.org/transports/http-jetty/configuration
|
||||
http://cxf.apache.org/schemas/configuration/http-jetty.xsd
|
||||
http://cxf.apache.org/transports/http/configuration
|
||||
http://cxf.apache.org/schemas/configuration/http-conf.xsd
|
||||
http://cxf.apache.org/transports/http-jetty/configuration
|
||||
http://cxf.apache.org/schemas/configuration/security.xsd
|
||||
http://cxf.apache.org/jaxrs http://cxf.apache.org/schemas/jaxrs.xsd">
|
||||
|
||||
<import resource="classpath:META-INF/cxf/cxf.xml"/>
|
||||
<import resource="classpath:META-INF/cxf/cxf-extension-xml.xml"/>
|
||||
<import resource="classpath:META-INF/cxf/cxf-servlet.xml"/>
|
||||
|
||||
<context:property-placeholder location="classpath:windows-mdm-server.properties"/>
|
||||
|
||||
<bean id="discoveryService" class="cdm.api.windows.impl.DiscoveryServiceImpl">
|
||||
<property name="discoveryServiceFileName" value="${discovery.service.file.location}"/>
|
||||
</bean>
|
||||
|
||||
<bean id="userEnrollmentService" class="cdm.api.windows.impl.EnrolmentServiceImpl" init-method="init">
|
||||
<property name="enrollmentResponseFile" value="${enrollment.service.file.location}"/>
|
||||
<property name="responseFile" value="${policy.certificate.file.location}"/>
|
||||
<property name="wapProvisioningXmlFile" value="${enrollment.service.wap.provisioning.file.location}"/>
|
||||
<property name="privatePemKeyFilePath" value="./conf/ca_private.key"/>
|
||||
<property name="caCertificateFilePath" value="./conf/ca_cert.pem"/>
|
||||
</bean>
|
||||
|
||||
<jaxrs:server name="windowsMDMRest" address="${service.url}">
|
||||
<jaxrs:serviceBeans>
|
||||
<ref bean="discoveryService"/>
|
||||
<ref bean="userEnrollmentService"/>
|
||||
</jaxrs:serviceBeans>
|
||||
<jaxrs:providers>
|
||||
<ref bean="jaxbProvider"/>
|
||||
</jaxrs:providers>
|
||||
</jaxrs:server>
|
||||
|
||||
<bean id="jaxbProvider" class="org.apache.cxf.jaxrs.provider.JAXBElementProvider">
|
||||
</bean>
|
||||
|
||||
</beans>
|
@ -1,20 +0,0 @@
|
||||
-----BEGIN CERTIFICATE-----
|
||||
MIIDXDCCAkQCCQDWxw0vNF9H8DANBgkqhkiG9w0BAQUFADBwMQswCQYDVQQGEwJM
|
||||
SzEQMA4GA1UECBMHQ29sb21ibzEQMA4GA1UEBxMHQ29sb21ibzENMAsGA1UEChME
|
||||
d3NvMjEPMA0GA1UECxMGbW9iaWxlMR0wGwYDVQQDFBRjYV93c28yV2luZG93c01v
|
||||
YmlsZTAeFw0xNDA3MDcxMDE4MDhaFw0xNTA3MDcxMDE4MDhaMHAxCzAJBgNVBAYT
|
||||
AkxLMRAwDgYDVQQIEwdDb2xvbWJvMRAwDgYDVQQHEwdDb2xvbWJvMQ0wCwYDVQQK
|
||||
EwR3c28yMQ8wDQYDVQQLEwZtb2JpbGUxHTAbBgNVBAMUFGNhX3dzbzJXaW5kb3dz
|
||||
TW9iaWxlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+w93X1S8nOM
|
||||
VM3ScGP8XY9+PnoUaFZgKaD3d9Z6cj4HPKjIzv8iTMx9JBfDjSsLiks5nJqxm1in
|
||||
juck7n0tl/CZ5L2j/3DhsA4D0Ngp5JsH5ZF+Vu2T+z8wUq8UwGD6qsn/EP9jBbj/
|
||||
WN0TtOPcfhOhfJVxaNOrt+9htYad9WOeU8Rh+CIb5oQrigEd417e5d5j4wcU8QLj
|
||||
sVQQ8WRCYDrnKKof834ZnViBYX4UAdLtXkWFtKcD0RM/cB2LdjydwP3HEj6pkwjT
|
||||
hRLGHdVF21VCbKOF6mnQagvuseT/ynioBNY60TXb283BQ6YrDfMytvRuzguEQ/7/
|
||||
AsTPclNZxQIDAQABMA0GCSqGSIb3DQEBBQUAA4IBAQB3cwy5pibn009WvAYzmw9B
|
||||
oB77bt21GQO4gFLJlNkvIRrneE5SinjoO6ezWOgY3+8t9ViNeD874momq4kuE6Hb
|
||||
XDZE1qqinJlqfMJQuEaFkDZKg55kO66wy5+8ioFhA9V8SpeM+SYy3ENBucxiDLQE
|
||||
ZhM7RKJCpSIq0rRHJyBRbs6GoW7cOB5QQcFDfSW+/CajicWzeD/OJMIfjJezCsZ8
|
||||
GNXJpyAS/Te+ysHlfmrKMb1VMZphFNiTmpEx8OI8F/kbhmdwePaZ3SOw2kJp8e3v
|
||||
Ke4/zPwB95wjz8luzU+PbqNO2K4ZKtXHk6rx5yybR1UBpYINvUEjsRI3hgy1IoE+
|
||||
-----END CERTIFICATE-----
|
@ -1,27 +0,0 @@
|
||||
-----BEGIN RSA PRIVATE KEY-----
|
||||
MIIEpAIBAAKCAQEAz+w93X1S8nOMVM3ScGP8XY9+PnoUaFZgKaD3d9Z6cj4HPKjI
|
||||
zv8iTMx9JBfDjSsLiks5nJqxm1injuck7n0tl/CZ5L2j/3DhsA4D0Ngp5JsH5ZF+
|
||||
Vu2T+z8wUq8UwGD6qsn/EP9jBbj/WN0TtOPcfhOhfJVxaNOrt+9htYad9WOeU8Rh
|
||||
+CIb5oQrigEd417e5d5j4wcU8QLjsVQQ8WRCYDrnKKof834ZnViBYX4UAdLtXkWF
|
||||
tKcD0RM/cB2LdjydwP3HEj6pkwjThRLGHdVF21VCbKOF6mnQagvuseT/ynioBNY6
|
||||
0TXb283BQ6YrDfMytvRuzguEQ/7/AsTPclNZxQIDAQABAoIBAQCrNz+Od1fpnOrv
|
||||
Hnnu4Pb82F+99Ot/K7mOLiX6Qdyc3KU690Y85m2JTk6yfPsj8VFUdTOg2OXuJWf9
|
||||
TivkU6JK3u7rJJq6i2rdffz4aji9Lkina1LdJFBacaNKQzBUZsekAiiPB660FK34
|
||||
sDw9FfIIxAOTwsAb8UoTcgVE5PCIEx7R7YdAI0/mMnd98kTc2YdcnAmGwrDFQNer
|
||||
eOLhq8H/6SxUADyos3s6Tgw3/yIo9BnBpe8uPNoakEPgYJLh263uF2rJ2h0+yLDV
|
||||
9F9by+yFCqyVqS8P06NI+NMe8WsYJo99RGQsLZ7PsI5jiJSTRYgOF4ROQfAcCZiK
|
||||
UWKCwcwhAoGBAPOg32J8AZX64FFDqyruN/1Q6hJfkVAVM+B3dxNAYIpccLuuxJ7x
|
||||
JMIWkAFfBlOoaXZzxaDIXmXrd3h5qxRTd6W/gAR9nRko7YHaK7NszpEPA8hVOjjx
|
||||
kkTNs/KjlELrLspRWL+iDqR5Nscw0V9y2D6tyYuGp475wK4PmKbgcKAdAoGBANp7
|
||||
M9nFEAUTeHzdo9csbrGy6wUuCRlixFvXKOH+1ezeuNvxh0XtbJPj7FrPT4nuCKEV
|
||||
Wud1w3/IRaeCYeKXaHk6eF8zN1gVkN0MAQJ+9KtfZ0QnmQSsluJfrUBGej6UYO0z
|
||||
DUv5CLNYLPwOVGTb/jb5n+lY2IzjKmA+aWZRML/JAoGBAJSfUycVVzJTdXydt1Hd
|
||||
OTLDpcfHnTIpfRg2SOHpp/tAIVWdbD06Bp6QfREZExb96jhkr+9BzLSITL2mG4Ou
|
||||
15K5nDMhHjE3Eozgt0Ah5HIBouEXfQk39W8bvecLe2rHZifuMCHXju8vMweY9GEy
|
||||
AlFaW1VOs/E40x5cTVegG5TRAoGANLxmUJtTeZYwkBtDr+2GrpfcSLzK73i6otx1
|
||||
fs9vPaSpBFXxa/yaJ7xtUaIWtdlh9dfcwF/Zl590yLEdBX+8dP6bDYekRTu3YtPB
|
||||
7qNMVY1KtNXGBq3OIcgsXoZkfXR9TOP0wrDS289d1F11G39KhmSMp9uNMbynfuGx
|
||||
uUPBu5kCgYA1UUtQkVPbkKaaopSrDkqAJDlsUnNVkvXH5yWqdAYI2Frw1iOwhED3
|
||||
cKmwAejf8nl1HPwfDTGQMRB5PCDkK7mWJ5w9W4MUbJ7ZiNPHloZutUTcw3Nz58cn
|
||||
OZMZGR/Trtn+YLoj2526NPwKqlw0bRB27UR0KOdgPOHynI3uYPnwgQ==
|
||||
-----END RSA PRIVATE KEY-----
|
@ -1,27 +0,0 @@
|
||||
<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
|
||||
xmlns:a="http://www.w3.org/2005/08/addressing">
|
||||
<s:Header>
|
||||
<a:Action s:mustUnderstand="1">
|
||||
http://schemas.microsoft.com/windows/management/2012/01/enrollment/IDiscoveryService/DiscoverResponse
|
||||
</a:Action>
|
||||
<ActivityId>
|
||||
d9eb2fdd-e38a-46ee-bd93-aea9dc86a3b8
|
||||
</ActivityId>
|
||||
<a:RelatesTo>urn:uuid: 748132ec-a575-4329-b01b-6171a9cf8478</a:RelatesTo>
|
||||
</s:Header>
|
||||
<s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
|
||||
xmlns:xsd="http://www.w3.org/2001/XMLSchema">
|
||||
<DiscoverResponse
|
||||
xmlns="http://schemas.microsoft.com/windows/management/2012/01/enrollment">
|
||||
<DiscoverResult>
|
||||
<AuthPolicy>OnPremise</AuthPolicy>
|
||||
<EnrollmentPolicyServiceUrl>
|
||||
https://EnterpriseEnrollment.wso2.com/ENROLLMENTSERVER/PolicyEnrollmentWebservice.svc
|
||||
</EnrollmentPolicyServiceUrl>
|
||||
<EnrollmentServiceUrl>
|
||||
https://EnterpriseEnrollment.wso2.com/ENROLLMENTSERVER/DeviceEnrollmentWebservice.svc
|
||||
</EnrollmentServiceUrl>
|
||||
</DiscoverResult>
|
||||
</DiscoverResponse>
|
||||
</s:Body>
|
||||
</s:Envelope>
|
@ -1,27 +0,0 @@
|
||||
<s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" xmlns:a="http://www.w3.org/2005/08/addressing"
|
||||
xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
|
||||
<s:Header>
|
||||
<Action s:mustUnderstand="1">http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep</Action>
|
||||
<a:RelatesTo>urn:uuid:81a5419a-496b-474f-a627-5cdd33eed8ab</a:RelatesTo>
|
||||
<o:Security s:mustUnderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
|
||||
<u:Timestamp u:Id="_0">
|
||||
<u:Created>2012-08-02T00:32:59.420Z</u:Created>
|
||||
<u:Expires>2014-08-02T00:37:59.420Z</u:Expires>
|
||||
</u:Timestamp>
|
||||
</o:Security>
|
||||
</s:Header>
|
||||
<s:Body>
|
||||
<RequestSecurityTokenResponseCollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
|
||||
<RequestSecurityTokenResponse>
|
||||
<TokenType>http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken</TokenType>
|
||||
<RequestedSecurityToken>
|
||||
<BinarySecurityToken ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc"
|
||||
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary"
|
||||
xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
|
||||
</BinarySecurityToken>
|
||||
</RequestedSecurityToken>
|
||||
<RequestID xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0</RequestID>
|
||||
</RequestSecurityTokenResponse>
|
||||
</RequestSecurityTokenResponseCollection>
|
||||
</s:Body>
|
||||
</s:Envelope>
|
@ -1,50 +0,0 @@
|
||||
<?xml version="1.0" encoding="UTF-8" ?>
|
||||
|
||||
<!DOCTYPE log4j:configuration SYSTEM "log4j.dtd">
|
||||
|
||||
<log4j:configuration debug="false" xmlns:log4j="http://jakarta.apache.org/log4j/">
|
||||
|
||||
<appender name="error" class="org.apache.log4j.DailyRollingFileAppender">
|
||||
<param name="File" value="logs/windows_mdm_error.log"/>
|
||||
<param name="Threshold" value="error"/>
|
||||
<param name="DatePattern" value="'.'yyyy-MM-dd"/>
|
||||
<layout class="org.apache.log4j.PatternLayout">
|
||||
<param name="ConversionPattern" value="%d{DATE} %-5p %c{1} - [%x] %m%n"/>
|
||||
</layout>
|
||||
</appender>
|
||||
|
||||
<appender name="debug" class="org.apache.log4j.DailyRollingFileAppender">
|
||||
<param name="File" value="logs/windows_mdm_debug.log"/>
|
||||
<param name="Threshold" value="debug"/>
|
||||
<param name="DatePattern" value="'.'yyyy-MM-dd"/>
|
||||
<layout class="org.apache.log4j.PatternLayout">
|
||||
<param name="ConversionPattern" value="%d{DATE} %-5p %c{1} - [%x] %m%n"/>
|
||||
</layout>
|
||||
</appender>
|
||||
|
||||
<appender name="trans" class="org.apache.log4j.DailyRollingFileAppender">
|
||||
<param name="File" value="logs/windows_mdm__trans.log" />
|
||||
<param name="Threshold" value="info" />
|
||||
<param name="DatePattern" value="'.'yyyy-MM-dd" />
|
||||
<layout class="org.apache.log4j.PatternLayout">
|
||||
<param name="ConversionPattern" value="%m%n" />
|
||||
</layout>
|
||||
</appender>
|
||||
|
||||
<category name="org.apache.cxf" additivity="false">
|
||||
<priority value="trace"/>
|
||||
<appender-ref ref="debug"/>
|
||||
<appender-ref ref="error"/>
|
||||
</category>
|
||||
|
||||
<category name="org.springframework" additivity="false">
|
||||
<priority value="info"/>
|
||||
<appender-ref ref="error"/>
|
||||
</category>
|
||||
|
||||
<root>
|
||||
<appender-ref ref="debug"/>
|
||||
<appender-ref ref="error"/>
|
||||
</root>
|
||||
|
||||
</log4j:configuration>
|
@ -1,15 +0,0 @@
|
||||
<s:Envelope
|
||||
xmlns:a="http://www.w3.org/2005/08/addressing"
|
||||
xmlns:s="http://www.w3.org/2003/05/soap-envelope">
|
||||
<s:Header>
|
||||
<a:Action s:mustUnderstand="1">
|
||||
http://schemas.microsoft.com/windows/pki/2009/01/enrollmentpolicy/IPolicy/GetPoliciesResponse
|
||||
</a:Action>
|
||||
</s:Header>
|
||||
<s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
|
||||
xmlns:xsd="http://www.w3.org/2001/XMLSchema">
|
||||
<GetPoliciesResponse xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollmentpolicy">
|
||||
|
||||
</GetPoliciesResponse>
|
||||
</s:Body>
|
||||
</s:Envelope>
|
@ -1,8 +0,0 @@
|
||||
service.url=http://0.0.0.0:9090
|
||||
|
||||
|
||||
discovery.service.file.location=./conf/discover-service.xml
|
||||
policy.certificate.file.location=./conf/policy-service.xml
|
||||
enrollment.service.file.location=./conf/enrollment-service.xml
|
||||
|
||||
enrollment.service.wap.provisioning.file.location=./conf/wap-provisioning.xml
|
Loading…
Reference in new issue