fix: improve p12 container generation with proper certificate status

Fix p12 containers being incorrectly generated with revoked status Add proper serial number generation based on current time Improve CRL handling in certificate_revoked? method Fix controller parameter naming from cert_params to p12_params Add comprehensive tests for certificate status and CRL handling Include diagnostic methods for troubleshooting CRL issues This commit resolves the issue where certificates were incorrectly considered revoked during p12 container generation due to missing or improperly handled CRL files.
2025-07-29 14:06:21 +02:00 · 2025-03-03 14:38:42 +02:00 · 2025-03-03 14:38:42 +02:00 · c08c3878e0
commit c08c3878e0
parent 3b594cf30d
11 changed files with 259 additions and 26 deletions
--- a/app/controllers/repp/v1/certificates/p12_controller.rb
+++ b/app/controllers/repp/v1/certificates/p12_controller.rb
@ -2,7 +2,7 @@ module Repp
  module V1
    module Certificates
      class P12Controller < BaseController
-        load_and_authorize_resource param_method: :cert_params
+        load_and_authorize_resource class: 'Certificate', param_method: :p12_params
        
        THROTTLED_ACTIONS = %i[create].freeze
        include Shunter::Integration::Throttle
@ -10,7 +10,7 @@ module Repp
        api :POST, '/repp/v1/certificates/p12'
        desc 'Generate a P12 certificate'
        def create
-          api_user_id = cert_params[:api_user_id]
+          api_user_id = p12_params[:api_user_id]
          render_error(I18n.t('errors.messages.not_found'), :not_found) and return if api_user_id.blank?

          api_user = current_user.registrar.api_users.find(api_user_id)
@ -20,8 +20,8 @@ module Repp

        private

-        def cert_params
-          params.require(:certificate).permit(:api_user_id)
+        def p12_params
+          params.require(:p12).permit(:api_user_id)
        end
      end
    end