Add Alias for Delete/Revoke Endpoint (#64)

* Add Alias for Delete/Revoke Endpoint * Fix Alias implementation
eu-digital-green-certificates · May 17, 2021 · b2175f0 · b2175f0
1 parent 88c9b05
commit b2175f0
Showing 1 changed file with 59 additions and 0 deletions.
diff --git a/src/main/java/eu/europa/ec/dgc/gateway/restapi/controller/SignerCertificateController.java b/src/main/java/eu/europa/ec/dgc/gateway/restapi/controller/SignerCertificateController.java
@@ -277,4 +277,63 @@ public ResponseEntity<Void> revokeVerificationInformation(
 
         return ResponseEntity.status(HttpStatus.NO_CONTENT).build();
     }
+
+    /**
+     * Alias Method for revoking signer certificate.
+     */
+    @CertificateAuthenticationRequired
+    @PostMapping(path = "/delete", consumes = CmsMessageConverter.CONTENT_TYPE_CMS_VALUE)
+    @Operation(
+        summary = "Revokes Signer Certificate of a trusted Issuer",
+        description = "This endpoint is a workaround alias endpoint. This should only be used if it is not possible"
+            + " to send http payloads with DELETE requests.",
+        tags = {"Signer Information"},
+        parameters = {
+            @Parameter(
+                in = ParameterIn.HEADER,
+                name = HttpHeaders.CONTENT_TYPE,
+                required = true,
+                schema = @Schema(type = "string"),
+                example = CmsMessageConverter.CONTENT_TYPE_CMS_VALUE),
+            @Parameter(
+                in = ParameterIn.HEADER,
+                name = HttpHeaders.CONTENT_ENCODING,
+                required = true,
+                schema = @Schema(type = "string"),
+                example = "base64")
+        },
+        requestBody = @io.swagger.v3.oas.annotations.parameters.RequestBody(
+            required = true,
+            description = "Request body with payload. (limited)",
+            content = @Content(
+                mediaType = CmsMessageConverter.CONTENT_TYPE_CMS_VALUE,
+                schema = @Schema(implementation = SignedCertificateDto.class))
+        ),
+        responses = {
+            @ApiResponse(
+                responseCode = "204",
+                description = "Certificate was revoked successfully."),
+            @ApiResponse(
+                responseCode = "400",
+                description = "Bad request. Possible reasons: Wrong Format, no CMS, not the correct signing alg,"
+                    + " missing attributes, invalid signature, certificate not signed by known CA",
+                content = @Content(
+                    mediaType = MediaType.APPLICATION_JSON_VALUE,
+                    schema = @Schema(implementation = ProblemReportDto.class))),
+            @ApiResponse(
+                responseCode = "401",
+                description = "Unauthorized. No Access to the system. (Client Certificate not present or whitelisted)",
+                content = @Content(
+                    mediaType = MediaType.APPLICATION_JSON_VALUE,
+                    schema = @Schema(implementation = ProblemReportDto.class)
+                ))
+        }
+    )
+    public ResponseEntity<Void> revokeVerificationInformationAlias(
+        @RequestBody SignedCertificateDto cms,
+        @RequestAttribute(CertificateAuthenticationFilter.REQUEST_PROP_COUNTRY) String countryCode,
+        @RequestAttribute(CertificateAuthenticationFilter.REQUEST_PROP_THUMBPRINT) String authThumbprint
+    ) {
+        return revokeVerificationInformation(cms, countryCode, authThumbprint);
+    }
 }