archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/services/ca/certweb/certnew.cer

134 lines
4.6 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. <%@ CODEPAGE=65001 'UTF-8%>
  2. <%' certnew.cer - (CERT)srv web - return a (NEW) certificate
  3. ' Copyright (C) Microsoft Corporation, 1998 - 1999 %>
  4. <!-- #include FILE=certdat.inc -->
  5. <!-- #include FILE=certsrck.inc -->
  6. <% ' ########## BEGIN SERVER SIDE EXECUTION ##########
  8. 'Process a Certificate Request
  10. Dim nDisposition, nResult, sCert, sErrMsg, nEncoding
  11. On Error Resume Next
  13. ' from \nt\public\sdk\inc\certcli.h
  14. Const CR_OUT_BASE64HEADER=&H00000000
  15. Const CR_OUT_BASE64=&H00000001
  16. Const CR_OUT_BINARY=&H00000002
  17. Const CR_OUT_CHAIN=&H00000100
  19. 'Disposition code ref: \nt\public\sdk\inc\certcli.h
  20. Const CR_DISP_INCOMPLETE =0
  21. Const CR_DISP_ERROR =1
  22. Const CR_DISP_DENIED =2
  23. Const CR_DISP_ISSUED =3
  24. Const CR_DISP_ISSUED_OUT_OF_BAND=4
  25. Const CR_DISP_UNDER_SUBMISSION =5
  26. Const CR_DISP_REVOKED =6
  27. Const no_disp=-1
  29. Const CR_PROP_CASIGCERT=12
  30. Const PROPTYPE_BINARY=3
  32. 'Stop 'debugging breakpoint
  34. ' determine the requested encoding
  35. If "bin"=Request.QueryString("Enc") Then
  36. nEncoding=CR_OUT_BINARY
  37. Else '"b64"=Request.QueryString("Enc")
  38. nEncoding=CR_OUT_BASE64HEADER
  39. End If
  41. ' create the object to do the request
  42. Set Session("ICertRequest")=Server.CreateObject("CertificateAuthority.Request")
  43. Set ICertRequest=Session("ICertRequest")
  44. nDisposition=no_disp
  46. Err.Clear 'make sure we catch the HRESULT and not some earlier error
  48. If "CACert"=Request.QueryString("ReqID") Then
  49. ' get the CA cert
  50. sCert=ICertRequest.GetCAProperty(sServerConfig, CR_PROP_CASIGCERT, Request.QueryString("Renewal"), PROPTYPE_BINARY, nEncoding)
  51. nResult=Err.Number
  52. sErrMsg=Err.Description
  54. If 0<>nResult Then
  55. 'internal redirect - transfer control to error page
  56. Session("nResult")=nResult
  57. Session("sErrMsg")=sErrMsg
  58. Server.Transfer("certrser.asp")
  59. End If
  61. Else
  62. ' Fetch the user's cert
  63. nDisposition=ICertRequest.RetrievePending(Request.QueryString("ReqID"), sServerConfig)
  64. nResult=Err.number
  65. sErrMsg=Err.Description
  67. If nDisposition=CR_DISP_ISSUED Then
  68. ' Remove this request from the user's cookie
  69. RemoveReq(Request.QueryString("ReqID"))
  71. sCert=ICertRequest.GetCertificate(nEncoding)
  72. Else
  73. 'internal redirect - transfer control to error page
  74. Session("nDisposition")=nDisposition
  75. Session("nResult")=nResult
  76. Session("sErrMsg")=sErrMsg
  77. Server.Transfer("certrser.asp")
  78. End If
  79. End If
  81. ' Set the MIME type of the data we return. We have two options:
  82. '
  83. ' 1) Set the MIME type to x-x509-***-cert. This works great for IE,
  84. ' but causes problems for Netscape because it will automatically
  85. ' try to install the cert
  86. ' 2) Set the MIME type to pkix-cert. This gets rid of the automatic
  87. ' installation issue, but may cause 2003 and greater to grey out the
  88. ' "open" button in the file download dialog.
  89. '
  90. ' Option #1 is implemented here. Option #2 is left commented out, but can
  91. ' easily be substituted
  93. '----------------------------------------------------------------------
  94. ' OPTION #1: set the MIME type to x-x509-***-cert in all cases
  95. '----------------------------------------------------------------------
  97. If "CACert"=Request.QueryString("ReqID") Then
  98. ' Netscape installs this type and does not expect to have a private key
  99. Response.ContentType="application/x-x509-ca-cert"
  100. Else
  101. ' Netscape installs this type and expects to have a private key
  102. Response.ContentType="application/x-x509-user-cert"
  103. End If
  105. '----------------------------------------------------------------------
  106. ' OPTION #2: prevent Netscape from automagically installing the cert,
  107. '----------------------------------------------------------------------
  109. ' so pick MIME type depending upon what we want the browser to do.
  110. 'If "inst"=Request.QueryString("Mode") Then
  111. ' ' We want Netscape to install
  112. ' If "CACert"=Request.QueryString("ReqID") Then
  113. ' ' Netscape installs this type and does not expect to have a private key
  114. ' Response.ContentType="application/x-x509-ca-cert"
  115. ' Else
  116. ' ' Netscape installs this type and expects to have a private key
  117. ' Response.ContentType="application/x-x509-user-cert"
  118. ' End If
  119. '
  120. 'Else
  121. ' ' We don't wan't Netscape to install
  122. ' Response.ContentType="application/pkix-cert" ' Netscape does not install this type
  123. 'End If
  125. ' send the cert to the client
  126. Response.Clear 'guarantee no extraneous bytes
  127. If CR_OUT_BINARY=nEncoding Then
  128. Response.BinaryWrite(sCert)
  129. Else
  130. Response.Write(sCert)
  131. End If
  133. ' ########## END SERVER SIDE EXECUTION ##########
  134. %>