2012-02-28 08:23:39 +00:00
|
|
|
<?php
|
|
|
|
|
#
|
|
|
|
|
# This is to support the NetscapeRevocationURL extension that can
|
|
|
|
|
# be used to check the validity of certificates issued by this CA.
|
|
|
|
|
# The URL to this script is embeded in all certificates issued by
|
|
|
|
|
# this CA.
|
|
|
|
|
#
|
|
|
|
|
# PROTOCOL:
|
|
|
|
|
# The client should issue an HTTP GET request using a URL that is
|
2021-03-03 17:15:01 +01:00
|
|
|
# the concatenation of the revocation url and certificate serial
|
2012-02-28 08:23:39 +00:00
|
|
|
# number. (i.e. http://www.host.dom/phpki/ns_revoke_query.php?10A5F2)
|
|
|
|
|
#
|
2021-03-03 17:15:01 +01:00
|
|
|
# The server should return a document of type
|
2012-02-28 08:23:39 +00:00
|
|
|
# application/x-netscape-revocation containing a single character
|
|
|
|
|
# '1' if the certificate is revoked, '0' if it is valid.
|
|
|
|
|
#
|
2013-07-23 09:42:54 +02:00
|
|
|
include('./config.php');
|
2012-02-28 08:23:39 +00:00
|
|
|
include(STORE_DIR.'/config/config.php');
|
|
|
|
|
|
|
|
|
|
$serial = escapeshellcmd(trim($_SERVER['QUERY_STRING']));
|
2013-07-23 09:42:54 +02:00
|
|
|
#header("Content-type: application/x-netscape-revocation");
|
|
|
|
|
|
|
|
|
|
# old Reg Ex doesnt work, new should do the work
|
|
|
|
|
#$regexp = "^R\t.*\t.*\t$serial\t.*\t.*$";
|
|
|
|
|
$regexp = "^R.*$serial.*$";
|
2021-03-01 16:09:50 +01:00
|
|
|
$configIndex = $config['index'];
|
2013-07-23 09:42:54 +02:00
|
|
|
|
2021-03-03 17:15:01 +01:00
|
|
|
if (exec("egrep '$regexp' '$configIndex'")) {
|
|
|
|
|
print '1';
|
|
|
|
|
} else {
|
|
|
|
|
print '0';
|
|
|
|
|
}
|
