phpki-0.82

2025-09-10 23:01:43 -04:00
parent 02a6566061
commit 66ea908568
78 changed files with 5094 additions and 1 deletions
--- a/root/ns_revoke_query.php
+++ b/root/ns_revoke_query.php
@@ -0,0 +1,27 @@
+<?php
+#
+# This is to support the NetscapeRevocationURL extension that can
+# be used to check the validity of certificates issued by this CA.
+# The URL to this script is embeded in all certificates issued by
+# this CA.
+#
+# PROTOCOL:
+# The client should issue an HTTP GET request using a URL that is
+# the concatenation of the revocation url and certificate serial 
+# number. (i.e. http://www.host.dom/phpki/ns_revoke_query.php?10A5F2)
+#
+# The server should return a document of type 
+# application/x-netscape-revocation containing a single character
+# '1' if the certificate is revoked, '0' if it is valid.
+#
+include('./config.in.php');
+include(STORE_DIR.'/config/config.php');
+
+$serial = escapeshellcmd(trim($HTTP_SERVER_VARS['QUERY_STRING']));
+header("Content-type: application/x-netscape-revocation");
+$regexp = "^R\t.*\t.*\t$serial\t.*\t.*$";
+if (exec("egrep '$regexp' ca/$config[index]"))
+	print '1';
+else
+	print '0';
+?>