From 4fb376687dc1546f51e637cae1478582309f85f0 Mon Sep 17 00:00:00 2001
From: Silvio Rhatto <rhatto@riseup.net>
Date: Sat, 15 Mar 2014 15:09:48 -0300
Subject: Squashed 'mod/foafssl/' content from commit 3c1da1e

git-subtree-dir: mod/foafssl
git-subtree-split: 3c1da1eaff8f61049b45ad99528f8f4e09ac7e62
---
 actions/generate.php | 53 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 actions/generate.php

(limited to 'actions/generate.php')

diff --git a/actions/generate.php b/actions/generate.php
new file mode 100644
index 000000000..e899d3dd0
--- /dev/null
+++ b/actions/generate.php
@@ -0,0 +1,53 @@
+<?php
+
+require_once($CONFIG->pluginspath."foafssl/lib/Authentication.php");
+require_once($CONFIG->pluginspath."foafssl/cert_proxy.php");
+
+global $CONFIG;
+
+
+function toBASE64($encodeMe) {
+    // does openssl really need this?
+    $data = base64_encode($encodeMe);
+    $datalb = "";
+    while (strlen($data) > 64) {
+        $datalb .= substr($data, 0, 64) . "\n";
+        $data = substr($data,64);
+    }
+    $datalb .= $data;
+    return $datalb;
+}
+
+
+$user = get_loggedin_user();
+$webid = $user->getURL();
+$name = get_input("name");
+$pubkey = get_input("pubkey");
+
+$cert = request_identity_p12($name, $webid, $pubkey);
+
+if ($cert && $user) {
+	$armored_cert = "-----BEGIN CERTIFICATE-----\n";
+	$armored_cert .= toBase64($cert);
+	$armored_cert .= "\n-----END CERTIFICATE-----\n";
+	$res = openssl_x509_read($armored_cert);
+	$cert_data = openssl_x509_parse($armored_cert);
+	$uid = $cert_data["subject"]["UID"];
+	$altName = $cert_data["extensions"]["subjectAltName"];
+        $pubKey  = openssl_pkey_get_public($res);
+        $keyData = openssl_pkey_get_details($pubKey);
+
+        //Remove certificate armour
+        $unpacked_n = unpack("H*",$keyData['rsa']['n']);
+        $modulus = strtoupper($unpacked_n[1]);
+        $unpacked_e = unpack("H*",$keyData['rsa']['e']);
+        $exponent = hexdec($unpacked_e[1]);
+ 	  set_input("name",$cert_data["subject"]["CN"]);
+	    set_input("webid",$altName);
+	    set_input("modulus",$modulus);
+	    set_input("exponent",$exponent);
+	    // now really include
+	    include($CONFIG->pluginspath."foafssl/actions/add.php");
+}
+
+?>
-- 
cgit v1.2.3