cacert/cacert-webdb
9
0
Fork 0
Code Issues Pull requests 3 Projects Releases 4 Wiki Activity

Prevented wrong root certificate selection due to session problem

Browse source
This commit is contained in:
Philipp Dunkel 2009-12-02 22:08:51 +00:00
parent 4fde81d03c
commit 45a79bce52
1 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
includes/account.php
View file

@ -295,6 +295,9 @@
if($_SESSION['_config']['incname'] == 4) if($_SESSION['_config']['incname'] == 4)
$emails .= "commonName = ".$user['fname']." ".$user['mname']." ".$user['lname']." ".$user['suffix']."\n"; $emails .= "commonName = ".$user['fname']." ".$user['mname']." ".$user['lname']." ".$user['suffix']."\n";
} }
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
$emails .= "SPKAC = $spkac"; $emails .= "SPKAC = $spkac";
$query = "insert into emailcerts set $query = "insert into emailcerts set
`CN`='$defaultemail', `CN`='$defaultemail',
@ -374,6 +377,8 @@
$csr .= $data; $csr .= $data;
fclose($fp); fclose($fp);
@unlink($tmpname); @unlink($tmpname);
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
if($csr == "") if($csr == "")
{ {
@ -690,6 +695,8 @@
if(!$supressSAN) $subject .= "/subjectAltName=otherName:1.3.6.1.5.5.7.8.5;UTF8:$row"; if(!$supressSAN) $subject .= "/subjectAltName=otherName:1.3.6.1.5.5.7.8.5;UTF8:$row";
} }
} }
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
if(array_key_exists('0',$_SESSION['_config']['rowid']) && $_SESSION['_config']['rowid']['0'] > 0) if(array_key_exists('0',$_SESSION['_config']['rowid']) && $_SESSION['_config']['rowid']['0'] > 0)
{ {
@ -1366,6 +1373,8 @@
$emails .= "stateOrProvinceName = ".$org['ST']."\n"; $emails .= "stateOrProvinceName = ".$org['ST']."\n";
if($org['C']) if($org['C'])
$emails .= "countryName = ".$org['C']."\n"; $emails .= "countryName = ".$org['C']."\n";
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
$emails .= "SPKAC = $spkac"; $emails .= "SPKAC = $spkac";
$query = "insert into `orgemailcerts` set $query = "insert into `orgemailcerts` set
@ -1444,6 +1453,9 @@
showfooter(); showfooter();
exit; exit;
} }
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
$query = "insert into `orgemailcerts` set $query = "insert into `orgemailcerts` set
`CN`='$defaultemail', `CN`='$defaultemail',
`keytype`='" . sanitizeHTML($_REQUEST['keytype']) . "', `keytype`='" . sanitizeHTML($_REQUEST['keytype']) . "',
@ -1715,6 +1727,8 @@
$type=""; $type="";
if($_REQUEST["ocspcert"]!="" && $_SESSION['profile']['admin'] == 1) $type="8"; if($_REQUEST["ocspcert"]!="" && $_SESSION['profile']['admin'] == 1) $type="8";
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1;
if($_SESSION['_config']['rowid']['0'] > 0) if($_SESSION['_config']['rowid']['0'] > 0)
{ {