locallogsessionbean.java

一个免费的CA,基于EJB平台的,老师叫我们测试,现把之共享出来让大家参考

/*************************************************************************
 *                                                                       *
 *  EJBCA: The OpenSource Certificate Authority                          *
 *                                                                       *
 *  This software is free software; you can redistribute it and/or       *
 *  modify it under the terms of the GNU Lesser General Public           *
 *  License as published by the Free Software Foundation; either         *
 *  version 2.1 of the License, or any later version.                    *
 *                                                                       *
 *  See terms of license at gnu.org.                                     *
 *                                                                       *
 *************************************************************************/

package org.ejbca.core.ejb.log;

import java.io.InputStream;
import java.lang.reflect.Method;
import java.security.cert.X509Certificate;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Date;
import java.util.Iterator;
import java.util.Properties;

import javax.ejb.CreateException;
import javax.ejb.EJBException;
import javax.ejb.FinderException;

import org.apache.commons.lang.StringUtils;
import org.ejbca.core.ejb.BaseSessionBean;
import org.ejbca.core.ejb.JNDINames;
import org.ejbca.core.ejb.ca.sign.ISignSessionLocal;
import org.ejbca.core.ejb.ca.sign.ISignSessionLocalHome;
import org.ejbca.core.ejb.protect.TableProtectSessionLocal;
import org.ejbca.core.ejb.protect.TableProtectSessionLocalHome;
import org.ejbca.core.model.InternalResources;
import org.ejbca.core.model.ca.caadmin.CADoesntExistsException;
import org.ejbca.core.model.ca.caadmin.extendedcaservices.CmsCAServiceRequest;
import org.ejbca.core.model.ca.caadmin.extendedcaservices.CmsCAServiceResponse;
import org.ejbca.core.model.ca.caadmin.extendedcaservices.ExtendedCAServiceNotActiveException;
import org.ejbca.core.model.ca.caadmin.extendedcaservices.ExtendedCAServiceRequestException;
import org.ejbca.core.model.ca.caadmin.extendedcaservices.IllegalExtendedCAServiceRequestException;
import org.ejbca.core.model.log.Admin;
import org.ejbca.core.model.log.ILogDevice;
import org.ejbca.core.model.log.ILogExporter;
import org.ejbca.core.model.log.LogConfiguration;
import org.ejbca.core.model.log.LogConstants;
import org.ejbca.core.model.log.LogEntry;
import org.ejbca.core.model.protect.TableVerifyResult;
import org.ejbca.util.CertTools;
import org.ejbca.util.JDBCUtil;
import org.ejbca.util.query.IllegalQueryException;
import org.ejbca.util.query.Query;


/**
 * Stores data used by web server clients.
 * Uses JNDI name for datasource as defined in env 'Datasource' in ejb-jar.xml.
 *
 *
 * @ejb.bean
 *   display-name="LogSessionSB"
 *   name="LogSession"
 *   jndi-name="LogSession"
 *   local-jndi-name="LogSessionLocal"
 *   view-type="both"
 *   type="Stateless"
 *   transaction-type="Container"
 *
 * @weblogic.enable-call-by-reference True
 *
 * @ejb.env-entry
 * name="DataSource"
 * type="java.lang.String"
 * value="${datasource.jndi-name-prefix}${datasource.jndi-name}"
 *
 * @ejb.env-entry
 *   description="String representing the log device factories to be used. The different device classes should be separated with semicolons (;)."
 *   name="logDeviceFactories"
 *   type="java.lang.String"
 *   value="org.ejbca.core.model.log.Log4jLogDeviceFactory"
 *
 * @ejb.env-entry
 *   description="String representing the property file corresponding to each log device.
 The property files should be placed in the '/logdeviceproperties' subdirectory.
 The filenames should be separated with semicolons (;)"
 *   name="logDevicePropertyFiles"
 *   type="java.lang.String"
 *   value="Log4j.properties"
 *
 * @ejb.env-entry description="Enable or disable protection of logs, see HOWTO-logsigning.txt"
 *   name="logSigning"
 *   type="java.lang.String"
 *   value="${protection.logprotect}"
 *   
 * @ejb.ejb-external-ref
 *   description="The Log Entry Data entity bean"
 *   view-type="local"
 *   ref-name="ejb/LogEntryDataLocal"
 *   type="Entity"
 *   home="org.ejbca.core.ejb.log.LogEntryDataLocalHome"
 *   business="org.ejbca.core.ejb.log.LogEntryDataLocal"
 *   link="LogEntryData"
 *
 * @ejb.ejb-external-ref
 *   description="The Log Configuration Data Entity bean"
 *   view-type="local"
 *   ref-name="ejb/LogConfigurationDataLocal"
 *   type="Entity"
 *   home="org.ejbca.core.ejb.log.LogConfigurationDataLocalHome"
 *   business="org.ejbca.core.ejb.log.LogConfigurationDataLocal"
 *   link="LogConfigurationData"
 *
 * @ejb.ejb-external-ref
 *   description="The table protection session bean"
 *   view-type="local"
 *   ref-name="ejb/TableProtectSessionLocal"
 *   type="Session"
 *   home="org.ejbca.core.ejb.protect.TableProtectSessionLocalHome"
 *   business="org.ejbca.core.ejb.protect.TableProtectSessionLocal"
 *   link="TableProtectSession"
 *   
 * @ejb.ejb-external-ref description="The Sign Session Bean"
 *   view-type="local"
 *   ref-name="ejb/RSASignSessionLocal"
 *   type="Session"
 *   home="org.ejbca.core.ejb.ca.sign.ISignSessionLocalHome"
 *   business="org.ejbca.core.ejb.ca.sign.ISignSessionLocal"
 *   link="RSASignSession"
 *   
 * @ejb.home
 *   extends="javax.ejb.EJBHome"
 *   local-extends="javax.ejb.EJBLocalHome"
 *   local-class="org.ejbca.core.ejb.log.ILogSessionLocalHome"
 *   remote-class="org.ejbca.core.ejb.log.ILogSessionHome"
 *
 * @ejb.interface
 *   extends="javax.ejb.EJBObject"
 *   local-extends="javax.ejb.EJBLocalObject"
 *   local-class="org.ejbca.core.ejb.log.ILogSessionLocal"
 *   remote-class="org.ejbca.core.ejb.log.ILogSessionRemote"
 *
 * @jonas.bean
 *   ejb-name="LogSession"
 *
 * @version $Id: LocalLogSessionBean.java,v 1.16.2.2 2007/03/21 15:46:17 anatom Exp $
 */
public class LocalLogSessionBean extends BaseSessionBean {

    /** Internal localization of logs and errors */
    private static final InternalResources intres = InternalResources.getInstance();

    /** The home interface of  LogEntryData entity bean */
    private LogEntryDataLocalHome logentryhome;

    /** The come interface of the protection session bean */
    private TableProtectSessionLocalHome protecthome;
    
    /** The home interface of  LogConfigurationData entity bean */
    private LogConfigurationDataLocalHome logconfigurationhome;

    /** The home interface of SignSession session bean */
    private ISignSessionLocalHome signsessionhome;

    /** The remote interface of the LogConfigurationData entity bean */
    private LogConfigurationDataLocal logconfigurationdata;

    private static final String LOGDEVICE_FACTORIES = "java:comp/env/logDeviceFactories";
    private static final String LOGDEVICE_PROPERTIES = "java:comp/env/logDevicePropertyFiles";
    private static final String LOGSIGNING_PROPERTIES = "java:comp/env/logSigning";

    /** Collection of available log devices, i.e Log4j etc */
    private ArrayList logdevices;
    /** If signing of logs is enabled of not, default not */
    private boolean logsigning = false;

    /** Columns in the database used in select */
    private final String LOGENTRYDATA_TABLE = "LogEntryData";
    private final String LOGENTRYDATA_COL = "id, adminType, adminData, caid, module, time, username, certificateSNR, event";
    // Different column names is an unforturnalte workaround because of Orcale, you cannot have a column named 'comment' in Oracle.
    // The workaround 'comment_' was spread in the wild in 2005, so we have to use it so far.
    private final String LOGENTRYDATA_COL_COMMENT_OLD = "comment";
    private final String LOGENTRYDATA_COL_COMMENT_ORA = "comment_";

    /**
     * Default create for SessionBean without any creation Arguments.
     */
    public void ejbCreate() {
        try {
            logentryhome = (LogEntryDataLocalHome) getLocator().getLocalHome(LogEntryDataLocalHome.COMP_NAME);
            logconfigurationhome = (LogConfigurationDataLocalHome) getLocator().getLocalHome(LogConfigurationDataLocalHome.COMP_NAME);
            signsessionhome = (ISignSessionLocalHome) getLocator().getLocalHome(ISignSessionLocalHome.COMP_NAME);

            // Setup Connection to signing devices.
            logdevices = new ArrayList();

            // Get configuration of log device classes from ejb-jar.xml
            String factoryclassesstring = getLocator().getString(LOGDEVICE_FACTORIES);
            String propertyfilesstring = getLocator().getString(LOGDEVICE_PROPERTIES);
            String sign = getLocator().getString(LOGSIGNING_PROPERTIES);
            if (StringUtils.equalsIgnoreCase(sign, "true")) {
            	logsigning = true;
            	protecthome = (TableProtectSessionLocalHome) getLocator().getLocalHome(TableProtectSessionLocalHome.COMP_NAME);
            }

            String[] propertyfiles = propertyfilesstring.split(";");
            Properties[] properties = new Properties[propertyfiles.length];
            for (int i = 0; i < propertyfiles.length; i++) {
                properties[i] = new Properties();
                if (!(propertyfiles[i] == null || propertyfiles[i].trim().equals(""))) {
                	InputStream is = null;
                	try {
                		is = this.getClass().getResourceAsStream("/logdeviceproperties/" + propertyfiles[i].trim());
                		properties[i].load(is);
                	} finally {
                		if (is != null) is.close();
                	}
                }
            }

            String[] factoryclasses = factoryclassesstring.split(";");
            for (int i = 0; i < factoryclasses.length; i++) {
                Class implClass = Class.forName(factoryclasses[i].trim());
                Object fact = implClass.newInstance();
                Class[] paramTypes = new Class[]{properties[0].getClass()};
                Method method = implClass.getMethod("makeInstance", paramTypes);
                Object[] params = new Object[1];
                if (i < properties.length)
                    params[0] = properties[i];
                else
                    params[0] = new Properties();
                logdevices.add(method.invoke(fact, params));
            }
        } catch (Exception e) {
            throw new EJBException(e);
        }
    }

    /**
     * Session beans main function. Takes care of the logging functionality.
     *
     * @param admin the administrator performing the event.
     * @param time the time the event occured.
     * @param username the name of the user involved or null if no user is involved.
     * @param certificate the certificate involved in the event or null if no certificate is involved.
     * @param event id of the event, should be one of the org.ejbca.core.model.log.LogEntry.EVENT_ constants.
     * @param comment comment of the event.
     *
     * @ejb.interface-method view-type="both"
     * @ejb.transaction type="RequiresNew"
     */
    public void log(Admin admin, int caid, int module, Date time, String username, X509Certificate certificate, int event, String comment) {
        doLog(admin, caid, module, time, username, certificate, event, comment, null);
    } // log

    /**
     * Same as above but with the difference of CAid which is taken from the issuerdn of given certificate.
     *
     * @ejb.interface-method view-type="both"
     * @ejb.transaction type="RequiresNew"
     */
    public void log(Admin admin, X509Certificate caid, int module, Date time, String username, X509Certificate certificate, int event, String comment) {
        log(admin, CertTools.getIssuerDN(caid).hashCode(), module, time, username, certificate, event, comment);