Merge pull request #165 from azul/feature/cert-fingerprints

Feature/cert fingerprints
author: azul <azul@leap.se> 2014-05-26 10:08:07 +0200
committer: azul <azul@leap.se> 2014-05-26 10:08:07 +0200
commit: df298887221cffc8cacc8965d73a0d7850118849 (patch)
tree: e13fc7c05956b10ca051377b89487d97e659528d /app/models
parent: 0f686b1256b4190522bcb101ba06cd2c7406eb36 (diff)
parent: f221e5313fe54a2efa127b547916c7c812110449 (diff)
3 files changed, 24 insertions, 0 deletions
diff --git a/app/models/client_certificate.rb b/app/models/client_certificate.rb
index 76b07a2..63de9e1 100644
--- a/app/models/client_certificate.rb
+++ b/app/models/client_certificate.rb
@@ -43,8 +43,16 @@ class ClientCertificate
     self.key.to_pem + self.cert.to_pem
   end
 
+  def fingerprint
+    OpenSSL::Digest::SHA1.hexdigest(openssl_cert.to_der).scan(/../).join(':')
+  end
+
   private
 
+  def openssl_cert
+    cert.openssl_body
+  end
+
   def self.root_ca
     @root_ca ||= begin
                    crt = File.read(APP_CONFIG[:client_ca_cert])
diff --git a/app/models/email.rb b/app/models/email.rb
index a9a503f..4090275 100644
--- a/app/models/email.rb
+++ b/app/models/email.rb
@@ -7,6 +7,11 @@ class Email < String
       :message => "needs to be a valid email address"
     }
 
+  # Make sure we can call Email.new(nil) and get an invalid email address
+  def initialize(s)
+    super(s.to_s)
+  end
+
   def to_partial_path
     "emails/email"
   end
diff --git a/app/models/identity.rb b/app/models/identity.rb
index ad8c01e..a4225e7 100644
--- a/app/models/identity.rb
+++ b/app/models/identity.rb
@@ -8,6 +8,7 @@ class Identity < CouchRest::Model::Base
   property :address, LocalEmail
   property :destination, Email
   property :keys, HashWithIndifferentAccess
+  property :cert_fingerprints, Hash
 
   validate :unique_forward
   validate :alias_available
@@ -107,6 +108,16 @@ class Identity < CouchRest::Model::Base
     write_attribute('keys', keys.merge(type => key.to_s))
   end
 
+  def cert_fingerprints
+    read_attribute('cert_fingerprints') || Hash.new
+  end
+
+  def register_cert(cert)
+    today = DateTime.now.to_date.to_s
+    write_attribute 'cert_fingerprints',
+      cert_fingerprints.merge(cert.fingerprint => today)
+  end
+
   # for LoginFormatValidation
   def login
     self.address.handle
author	azul <azul@leap.se>	2014-05-26 10:08:07 +0200
committer	azul <azul@leap.se>	2014-05-26 10:08:07 +0200
commit	df298887221cffc8cacc8965d73a0d7850118849 (patch)
tree	e13fc7c05956b10ca051377b89487d97e659528d /app/models
parent	0f686b1256b4190522bcb101ba06cd2c7406eb36 (diff)
parent	f221e5313fe54a2efa127b547916c7c812110449 (diff)