phpki/root/ns_revoke_query.php

<?php
#
# This is to support the NetscapeRevocationURL extension that can
# be used to check the validity of certificates issued by this CA.
# The URL to this script is embeded in all certificates issued by
# this CA.
#
# PROTOCOL:
# The client should issue an HTTP GET request using a URL that is
# the concatenation of the revocation url and certificate serial 
# number. (i.e. http://www.host.dom/phpki/ns_revoke_query.php?10A5F2)
#
# The server should return a document of type 
# application/x-netscape-revocation containing a single character
# '1' if the certificate is revoked, '0' if it is valid.
#
include('./config.in.php');
include(STORE_DIR.'/config/config.php');

$serial = escapeshellcmd(trim($HTTP_SERVER_VARS['QUERY_STRING']));
header("Content-type: application/x-netscape-revocation");
$regexp = "^R\t.*\t.*\t$serial\t.*\t.*$";
if (exec("egrep '$regexp' ca/$config[index]"))
	print '1';
else
	print '0';
?>
phpki-0.82 2025-09-10 23:01:43 -04:00			`<?php`
			`#`
			`# This is to support the NetscapeRevocationURL extension that can`
			`# be used to check the validity of certificates issued by this CA.`
			`# The URL to this script is embeded in all certificates issued by`
			`# this CA.`
			`#`
			`# PROTOCOL:`
			`# The client should issue an HTTP GET request using a URL that is`
			`# the concatenation of the revocation url and certificate serial`
			`# number. (i.e. http://www.host.dom/phpki/ns_revoke_query.php?10A5F2)`
			`#`
			`# The server should return a document of type`
			`# application/x-netscape-revocation containing a single character`
			`# '1' if the certificate is revoked, '0' if it is valid.`
			`#`
			`include('./config.in.php');`
			`include(STORE_DIR.'/config/config.php');`

			`$serial = escapeshellcmd(trim($HTTP_SERVER_VARS['QUERY_STRING']));`
			`header("Content-type: application/x-netscape-revocation");`
			`$regexp = "^R\t.\t.\t$serial\t.\t.$";`
			`if (exec("egrep '$regexp' ca/$config[index]"))`
			`print '1';`
			`else`
			`print '0';`
			`?>`