zydronium/internetee-epp_proxy
1
0
Fork 0
mirror of https://github.com/internetee/epp_proxy.git synced 2025-08-15 12:03:47 +02:00
Code Issues Projects Releases Packages Wiki Activity

Rename functions

Browse source
This commit is contained in:
Maciej Szlosarczyk 2019-05-27 09:25:23 +03:00
parent eed763844a
commit ab5bf9de38
No known key found for this signature in database
GPG key ID: 41D62D42D3B0D765
1 changed files with 17 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

25
apps/epp_proxy/src/certs.erl
View file

@ -2,9 +2,17 @@
-include_lib("public_key/include/public_key.hrl"). -include_lib("public_key/include/public_key.hrl").
-export([read_pem_certificate/1, get_subject_from_otp_certificate/1, -export([read_pem_certificate/1, subject_from_otp_certificate/1,
get_common_name_from_subject/1, certificate_to_pem/1, common_name_from_subject/1, certificate_to_pem/1,
read_der_certificate/1]). read_der_certificate/1, headers_from_cert/1]).
% Returns a tuple of headers {SSL_CLIENT_S_DN_CN, SLL_CLIENT_CERT}
headers_from_cert(Der) ->
OTPCertificate = read_der_certificate(Der),
Subject = subject_from_otp_certificate(OTPCertificate),
CommonName = common_name_from_subject(Subject),
PEM = certificate_to_pem(OTPCertificate),
{CommonName, PEM}.
%% Read certificate from the wire and return back an otp type record %% Read certificate from the wire and return back an otp type record
read_der_certificate(Der) -> read_der_certificate(Der) ->
@ -16,18 +24,19 @@ read_der_certificate(Der) ->
certificate_to_pem(Certificate) -> certificate_to_pem(Certificate) ->
PemEntry = {'Certificate', Certificate, not_encrypted}, PemEntry = {'Certificate', Certificate, not_encrypted},
PemString = public_key:pem_encode([PemEntry]), PemString = public_key:pem_encode([PemEntry]),
binary:replace(PemString, <<"\n">>, <<" ">>, [global]). CleanBinary = binary:replace(PemString, <<"\n">>, <<" ">>, [global]),
CleanBinary.
%% Read only a specific type of certificate, otherwise fail. %% Read only a specific type of certificate, otherwise fail.
get_subject_from_otp_certificate(Certificate) when is_record(Certificate, 'OTPCertificate') -> subject_from_otp_certificate(Certificate) when is_record(Certificate, 'OTPCertificate') ->
Subject = Certificate#'OTPCertificate'.tbsCertificate#'OTPTBSCertificate'.subject, Subject = Certificate#'OTPCertificate'.tbsCertificate#'OTPTBSCertificate'.subject,
Subject. Subject.
%% Take a subject rdnSequence that can be set into %% Take a subject rdnSequence that can be set into
%% HTTP header SSL_CLIENT_S_DN_CN. %% HTTP header SSL_CLIENT_S_DN_CN.
get_common_name_from_subject(Subject) -> common_name_from_subject(Subject) ->
CommonName = ?'id-at-commonName', CommonName = ?'id-at-commonName',
{_Type, Field} = get_field_from_subject(Subject, CommonName), {_Type, Field} = field_from_subject(Subject, CommonName),
Field. Field.
%% Only used for local development test, is not required for the application. %% Only used for local development test, is not required for the application.
@ -39,7 +48,7 @@ read_pem_certificate(PathToCert) ->
Decoded = public_key:pkix_decode_cert(DerCert, otp), Decoded = public_key:pkix_decode_cert(DerCert, otp),
Decoded. Decoded.
get_field_from_subject({rdnSequence, Attributes}, Field) -> field_from_subject({rdnSequence, Attributes}, Field) ->
FlatList = lists:flatten(Attributes), FlatList = lists:flatten(Attributes),
ValidAttrs = lists:filter(fun (X) -> ValidAttrs = lists:filter(fun (X) ->
X#'AttributeTypeAndValue'.type =:= Field X#'AttributeTypeAndValue'.type =:= Field