From 067008c5f094ba9606daacbe540f6b929dc124ea Mon Sep 17 00:00:00 2001
From: Daniel Baumann <daniel.baumann@progress-linux.org>
Date: Sun, 14 Apr 2024 15:31:28 +0200
Subject: Adding upstream version 1:1.3.2.

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
---
 library/X509/Model/X509Certificate.php | 159 +++++++++++++++++++++++++++++++++
 1 file changed, 159 insertions(+)
 create mode 100644 library/X509/Model/X509Certificate.php

(limited to 'library/X509/Model/X509Certificate.php')

diff --git a/library/X509/Model/X509Certificate.php b/library/X509/Model/X509Certificate.php
new file mode 100644
index 0000000..63bdf95
--- /dev/null
+++ b/library/X509/Model/X509Certificate.php
@@ -0,0 +1,159 @@
+<?php
+
+/* Icinga Web 2 X.509 Module | (c) 2022 Icinga GmbH | GPLv2 */
+
+namespace Icinga\Module\X509\Model;
+
+use Icinga\Module\X509\Model\Behavior\DERBase64;
+use Icinga\Module\X509\Model\Behavior\ExpressionInjector;
+use ipl\Orm\Behavior\Binary;
+use ipl\Orm\Behavior\BoolCast;
+use ipl\Orm\Behavior\MillisecondTimestamp;
+use ipl\Orm\Behaviors;
+use ipl\Orm\Model;
+use ipl\Orm\Relations;
+use ipl\Sql\Expression;
+
+class X509Certificate extends Model
+{
+    public function getTableName()
+    {
+        return 'x509_certificate';
+    }
+
+    public function getTableAlias(): string
+    {
+        return 'certificate';
+    }
+
+    public function getKeyName()
+    {
+        return 'id';
+    }
+
+    public function getColumns()
+    {
+        return [
+            'subject',
+            'subject_hash',
+            'issuer',
+            'issuer_hash',
+            'issuer_certificate_id',
+            'version',
+            'self_signed',
+            'ca',
+            'trusted',
+            'pubkey_algo',
+            'pubkey_bits',
+            'signature_algo',
+            'signature_hash_algo',
+            'valid_from',
+            'valid_to',
+            'fingerprint',
+            'serial',
+            'certificate',
+            'ctime',
+            'mtime',
+            'duration' => new Expression('%s - %s', ['valid_to', 'valid_from'])
+        ];
+    }
+
+    public function getColumnDefinitions()
+    {
+        return [
+            'subject'             => t('Certificate'),
+            'issuer'              => t('Issuer'),
+            'version'             => t('Version'),
+            'self_signed'         => t('Is Self-Signed'),
+            'ca'                  => t('Is Certificate Authority'),
+            'trusted'             => t('Is Trusted'),
+            'pubkey_algo'         => t('Public Key Algorithm'),
+            'pubkey_bits'         => t('Public Key Strength'),
+            'signature_algo'      => t('Signature Algorithm'),
+            'signature_hash_algo' => t('Signature Hash Algorithm'),
+            'valid_from'          => t('Valid From'),
+            'valid_to'            => t('Valid To'),
+            'duration'            => t('Duration'),
+            'subject_hash'        => t('Subject Hash'),
+            'issuer_hash'         => t('Issuer Hash'),
+        ];
+    }
+
+    public function getSearchColumns()
+    {
+        return ['subject', 'issuer'];
+    }
+
+    /**
+     * Get list of allowed columns to be exported
+     *
+     * @return string[]
+     */
+    public function getExportableColumns(): array
+    {
+        return [
+            'id',
+            'subject',
+            'issuer',
+            'version',
+            'self_signed',
+            'ca',
+            'trusted',
+            'pubkey_algo',
+            'pubkey_bits',
+            'signature_algo',
+            'signature_hash_algo',
+            'valid_from',
+            'valid_to'
+        ];
+    }
+
+    public function createBehaviors(Behaviors $behaviors)
+    {
+        $behaviors->add(new Binary([
+            'subject_hash',
+            'issuer_hash',
+            'fingerprint',
+            'serial',
+            'certificate'
+        ]));
+
+        $behaviors->add(new DERBase64(['certificate']));
+
+        $behaviors->add(new BoolCast([
+            'ca',
+            'trusted',
+            'self_signed'
+        ]));
+
+        $behaviors->add(new MillisecondTimestamp([
+            'valid_from',
+            'valid_to',
+            'ctime',
+            'mtime',
+            'duration'
+        ]));
+
+        $behaviors->add(new ExpressionInjector('duration'));
+    }
+
+    public function createRelations(Relations $relations)
+    {
+        $relations->belongsTo('issuer_certificate', static::class)
+            ->setForeignKey('subject_hash')
+            ->setCandidateKey('issuer_hash');
+        $relations->belongsToMany('chain', X509CertificateChain::class)
+            ->through(X509CertificateChainLink::class)
+            ->setForeignKey('certificate_id');
+
+        $relations->hasMany('certificate', static::class)
+            ->setForeignKey('issuer_hash')
+            ->setCandidateKey('subject_hash');
+        $relations->hasMany('alt_name', X509CertificateSubjectAltName::class)
+            ->setJoinType('LEFT');
+        $relations->hasMany('dn', X509Dn::class)
+            ->setForeignKey('hash')
+            ->setCandidateKey('subject_hash')
+            ->setJoinType('LEFT');
+    }
+}
-- 
cgit v1.2.3