certificates/scep/api/webhook/webhook.go

package webhook

import (
	"net/http"

	"go.step.sm/linkedca"

	"github.com/smallstep/certificates/authority/provisioner"
	"github.com/smallstep/certificates/webhook"
)

type Controller struct {
	client   *http.Client
	webhooks []*provisioner.Webhook
}

func New(webhooks []*provisioner.Webhook) (*Controller, error) {
	return &Controller{
		client:   http.DefaultClient,
		webhooks: webhooks,
	}, nil
}

func (c *Controller) Validate(challenge string) error {
	if c == nil {
		return nil
	}
	for _, wh := range c.webhooks {
		if wh.Kind != linkedca.Webhook_SCEPCHALLENGE.String() {
			continue
		}
		if !c.isCertTypeOK(wh) {
			continue
		}
		req := &webhook.RequestBody{
			SCEPChallenge: challenge,
		}
		resp, err := wh.Do(c.client, req, nil) // TODO(hs): support templated URL?
		if err != nil {
			return err
		}
		if !resp.Allow {
			return provisioner.ErrWebhookDenied
		}
	}
	return nil
}

func (c *Controller) isCertTypeOK(wh *provisioner.Webhook) bool {
	return linkedca.Webhook_X509.String() == wh.CertType
}
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`package webhook`

			`import (`
			`"net/http"`

Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`"go.step.sm/linkedca"`

			`"github.com/smallstep/certificates/authority/provisioner"`
			`"github.com/smallstep/certificates/webhook"`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`)`

			`type Controller struct {`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`client *http.Client`
			`webhooks []*provisioner.Webhook`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`

Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`func New(webhooks []provisioner.Webhook) (Controller, error) {`
			`return &Controller{`
			`client: http.DefaultClient,`
			`webhooks: webhooks,`
			`}, nil`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`

Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`func (c *Controller) Validate(challenge string) error {`
			`if c == nil {`
			`return nil`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`for _, wh := range c.webhooks {`
			`if wh.Kind != linkedca.Webhook_SCEPCHALLENGE.String() {`
			`continue`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`if !c.isCertTypeOK(wh) {`
			`continue`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`req := &webhook.RequestBody{`
			`SCEPChallenge: challenge,`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`resp, err := wh.Do(c.client, req, nil) // TODO(hs): support templated URL?`
			`if err != nil {`
			`return err`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`if !resp.Allow {`
			`return provisioner.ErrWebhookDenied`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`
			`}`
Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`return nil`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`

Integrate the SCEP webhook with the existing webhook logic 2023-04-28 15:15:05 +00:00			`func (c Controller) isCertTypeOK(wh provisioner.Webhook) bool {`
			`return linkedca.Webhook_X509.String() == wh.CertType`
Create basic webhook for SCEP challenge validation 2023-04-28 13:47:22 +00:00			`}`