IEKeygen.js | searchcode

/trunk/parent/platform.accountcontrolpanel/platform.accountcontrolpanel.core/src/main/resources/CLEREZZA-INF/web-resources/account-control-panel/scripts/IEKeygen.js

#
JavaScript | 287 lines | 162 code | 35 blank | 90 comment | 26 complexity | 7486f950b8fd45f02733863cf84412ad MD5 | raw file
Possible License(s): LGPL-2.1, Apache-2.0, BSD-3-Clause, MPL-2.0-no-copyleft-exception

/*
 *
 * Licensed to the Apache Software Foundation (ASF) under one
 * or more contributor license agreements.  See the NOTICE file
 * distributed with this work for additional information
 * regarding copyright ownership.  The ASF licenses this file
 * to you under the Apache License, Version 2.0 (the
 * "License"); you may not use this file except in compliance
 * with the License.  You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied.  See the License for the
 * specific language governing permissions and limitations
 * under the License.
 *
*/

/**
 *
 * Copyright (c) 2008-2010, The University of Manchester, United Kingdom. All
 * rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 * Redistributions of source code must retain the above copyright notice, this
 * list of conditions and the following disclaimer. Redistributions in binary
 * form must reproduce the above copyright notice, this list of conditions and
 * the following disclaimer in the documentation and/or other materials provided
 * with the distribution. Neither the name of the The University of Manchester
 * nor the names of its contributors may be used to endorse or promote products
 * derived from this software without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 *
 * Author........: Bruno Harbulot
 *
 */



function createCsrCertEnroll(enrollFactObj, keylength) {
	/*
	 * Creates a CX509EnrollmentWebClassFactory (used to create all the other
	 * objects).
	 */
	if (enrollFactObj == null) {
		enrollFactObj = new ActiveXObject(
			"X509Enrollment.CX509EnrollmentWebClassFactory");
	}

	/*
	 * Load the information about the providers.
	 */
	var providerInfosObj = enrollFactObj
	.CreateObject("X509Enrollment.CCspInformations");
	providerInfosObj.AddAvailableCsps();

	/*
	 * Find the provider of RSA type (sufficient for this example). The type
	 * numbers for this are 1, 2 and 24.
	 * http://msdn.microsoft.com/en-us/library/aa379427%28VS.85%29.aspx
	 */
	var providerType = -1;
	var providerName = null;
	for ( var i = 0; i < providerInfosObj.Count; i++) {
		var providerInfoObj = providerInfosObj.ItemByIndex(i);
		switch (providerInfoObj.Type) {
			case 1:
			case 2:
			case 24:
				providerType = providerInfoObj.Type;
				providerName = providerInfoObj.Name;
				break;
			default:
		}
	}

	/*
	 * Creates a 2048-bit key with this provider.
	 */
	var privKeyObj = enrollFactObj
	.CreateObject("X509Enrollment.CX509PrivateKey");
	privKeyObj.ProviderType = providerInfoObj.Type;
	privKeyObj.KeySpec = 1;
	privKeyObj.Length = keylength;
	// http://msdn.microsoft.com/en-us/library/aa379024%28VS.85%29.aspx
	privKeyObj.MachineContext = false;
	// http://msdn.microsoft.com/en-us/library/aa379414%28VS.85%29.aspx
	privKeyObj.KeyProtection = 2;
	// http://msdn.microsoft.com/en-us/library/aa379002%28VS.85%29.aspx
	privKeyObj.ExportPolicy = 1;

	/*
	 * Creates the PKCS#10 object and initialise as a user context.
	 */
	var pkcs10CsrObj = enrollFactObj
	.CreateObject("X509Enrollment.CX509CertificateRequestPkcs10");
	pkcs10CsrObj.InitializeFromPrivateKey(1, privKeyObj, "");

	/*
	 * Creates the enrolment object and exports the CSR.
	 */
	var enrollObj = enrollFactObj
	.CreateObject("X509Enrollment.CX509Enrollment");
	enrollObj.InitializeFromRequest(pkcs10CsrObj);
	var csr = enrollObj.CreateRequest(1);
	csr = "-----BEGIN CERTIFICATE REQUEST-----\r\n" + csr
	+ "-----END CERTIFICATE REQUEST-----";

	/*
	 * Makes the request to the server.
	 */
    xmlHttpRequest = createRequest(csr);

    /**
	 * What to do on response
	 */
    xmlHttpRequest.onreadystatechange = function() {
		if (xmlHttpRequest.readyState == 4) {
			if (xmlHttpRequest.status == 200) {
				/*
				 * Installs the certificate.
				 */
				try {
					enrollObj.InstallResponse(4, xmlHttpRequest.responseText,
						0, "");
					window.alert("A certificate has been installed.");
				} catch (e1) {
					try {
						enrollObj.InstallResponse(0,
							xmlHttpRequest.responseText, 0, "");
						window.alert("A certificate has been installed.");
					} catch (e2) {
						window
						.alert("You're probably using Vista without SP1 or above, in which case you need to add the certificate of this authority as a trusted root certificate (not recommended in general).");
					}
				}
			} else {
				window.alert("The server returned an error status: "
					+ xmlHttpRequest.status);
			}
		}
	}
}


function createRequest(csrString) {
	var xmlHttpRequest = new XMLHttpRequest();

	xmlHttpRequest.open("POST", kgnFloctn, true);

	var params = "webId=" + encodeURIComponent(document.getElementById("webId").value);
	params += "&cn=" + encodeURIComponent(document.getElementById("cn").value);
	params += "&csr=" + encodeURIComponent(csrString);
	params += "&days="+encodeURIComponent(document.getElementById("days").value);
	params += "&hours="+encodeURIComponent(document.getElementById("hours").value);

	xmlHttpRequest.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
	xmlHttpRequest.setRequestHeader("Content-length", params.length);
	xmlHttpRequest.setRequestHeader("Connection", "close");

	xmlHttpRequest.send(params);

	return xmlHttpRequest;

}


function createCsrXenroll(enrollObj, keylength) {
	if (enrollObj == null) {
		enrollObj = new ActiveXObject("CEnroll.CEnroll");
	}

	// http://msdn.microsoft.com/en-us/library/aa379941%28VS.85%29.aspx
	// CRYPT_EXPORTABLE: 1?
	enrollObj.GenKeyFlags = (keylength * 256 * 256) + 1;
	enrollObj.KeySpec = 2;

	var csr = enrollObj.createPKCS10("", "");
	csr = "-----BEGIN CERTIFICATE REQUEST-----\r\n" + csr
	+ "-----END CERTIFICATE REQUEST-----";

	xmlHttpRequest = createRequest(csr);

	xmlHttpRequest.onreadystatechange = function() {
		if (xmlHttpRequest.readyState == 4) {
			if (xmlHttpRequest.status == 200) {
				enrollObj.acceptPKCS7(xmlHttpRequest.responseText);
				window.alert("A certificate has been installed.");
			} else {
				window.alert("The server returned an error status: "
					+ xmlHttpRequest.status);
			}
		}
	}
}

function createCsr() {
	var keystrengthSelectElem = document.getElementById("keylength");
	var keylength = keystrengthSelectElem.value;

	var enrollFactObj = null;
	try {
		enrollFactObj = new ActiveXObject(
			"X509Enrollment.CX509EnrollmentWebClassFactory");
	} catch (e) {
	}

	if (enrollFactObj != null) {
		createCsrCertEnroll(enrollFactObj, keylength);
	} else {
		var enrollObj = null;
		try {
			enrollObj = new ActiveXObject("CEnroll.CEnroll");
		} catch (e) {
		}
		if (enrollObj != null) {
			createCsrXenroll(enrollObj, keylength);
		} else {
			window.alert("ActiveX certificate creation not supported or not enabled.");
		}
	}
}
// kgnFloctn needs to be calculated first
var kgnFloctn = "errorKeyGenLoctn";
function configurePage() {
	kgnFloctn = document.getElementById("keygenform").getAttribute("action");

	var keygenElem = document.getElementById("spkac");

	if (navigator.appName == "Microsoft Internet Explorer") {
		var keygenFormElem = document.getElementById("keygenform");
		keygenFormElem.removeAttribute("action");
		keygenFormElem.removeAttribute("method");

		/*
		 * Try the ActiveX approach, assume Internet Explorer.
		 */

		var iehelptextElem = document.getElementById("iehelptext");
		iehelptextElem.style.display = "block";

		var submitButtonElem = document.getElementById("keygensubmit");
		var newSumbitButtonElem = document.createElement("input");
		newSumbitButtonElem.setAttribute("type", "button");
		newSumbitButtonElem.setAttribute("value", "Submit");
		submitButtonElem.parentNode.replaceChild(newSumbitButtonElem,
			submitButtonElem);
		submitButtonElem = newSumbitButtonElem;

		if (submitButtonElem.attachEvent) {
			submitButtonElem.attachEvent("onclick", createCsr);
		} else {
			submitButtonElem.setAttribute("onclick", "createCsr()");
		}

		var keystrengthSelectElem = document.createElement("select");
		keystrengthSelectElem.setAttribute("id", "keylength");
		keystrengthSelectElem.setAttribute("name", "keylength");
		var optionElem;
		optionElem = document.createElement("option");
		optionElem.setAttribute("value", "1024");
		optionElem.appendChild(document.createTextNode("1024"));
		keystrengthSelectElem.appendChild(optionElem);
		optionElem = document.createElement("option");
		optionElem.setAttribute("value", "2048");
		optionElem.appendChild(document.createTextNode("2048"));
		keystrengthSelectElem.appendChild(optionElem);
		var keystrengthTdElem = document.getElementById("keystrenghtd");
		keystrengthTdElem.appendChild(keystrengthSelectElem);
	}
}