Include additional examples (#25)

pegerto · pegerto · commit 50c91ffac9bc · 2019-05-07T14:35:06.000+01:00
Include additional examples (fix key and examples) (#26)
diff --git a/README.md b/README.md
@@ -28,26 +28,63 @@ A basic example of createing a certificate using the VCert java implementation.
             .build();
 
     final VCertClient client = new VCertClient(config);
-    final ZoneConfiguration zoneConfiguration = client.readZoneConfiguration("Public");
     final Authentication auth = Authentication.builder()
             .apiKey("xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx")
             .build();
 
-    CertificateRequest certificateRequest = new CertificateRequest().subject(
-            new CertificateRequest.PKIXName()
-                    .commonName("cert.example.com")
-                    .organization(Collections.singletonList("Venafi, Inc."))
-                    .organizationalUnit(Arrays.asList("Engineering"))
-                    .country(Collections.singletonList("US"))
-                    .locality(Collections.singletonList("SLC"))
-                    .province(Collections.singletonList("Utah")))
+    client.authenticate(auth);
+    final ZoneConfiguration zoneConfiguration = client.readZoneConfiguration("Public");
 
-            .keyType(KeyType.RSA);
 
 
-    client.authenticate(auth);
-    certificateRequest = client.generateRequest(zoneConfiguration, certificateRequest);
-    String newCertId = client.requestCertificate(certificateRequest, "Public");
+        // Generate a certificate
+        CertificateRequest certificateRequest = new CertificateRequest().subject(
+                new CertificateRequest.PKIXName()
+                        .commonName("opencredo.test")
+                        .organization(Collections.singletonList("Venafi, Inc."))
+                        .organizationalUnit(Arrays.asList("Engineering"))
+                        .country(Collections.singletonList("US"))
+                        .locality(Collections.singletonList("SLC"))
+                        .province(Collections.singletonList("Utah")))
+
+                .keyType(KeyType.RSA);
+        certificateRequest = client.generateRequest(zoneConfiguration, certificateRequest);
+
+
+        // Submit the certificate request
+        String newCertId = client.requestCertificate(certificateRequest, "Default");
+
+
+        // Retrieve PEM collection from Venafi
+        final CertificateRequest pickupRequest = new CertificateRequest().pickupId(newCertId);
+        PEMCollection pemCollection = client.retrieveCertificate(pickupRequest);
+        System.out.println(pemCollection.certificate());
+
+        // Renew the certificate
+        X509Certificate cert = (X509Certificate) pemCollection.certificate();
+        String thumbprint = DigestUtils.sha1Hex(cert.getEncoded()).toUpperCase();
+        final CertificateRequest certificateRequestToRenew = new CertificateRequest().subject(
+                new CertificateRequest.PKIXName()
+                        .commonName("opencredo.test")
+                        .organization(Collections.singletonList("Venafi, Inc."))
+                        .organizationalUnit(Arrays.asList("Engineering"))
+                        .country(Collections.singletonList("US"))
+                        .locality(Collections.singletonList("SLC"))
+                        .province(Collections.singletonList("Utah")));
+
+        client.generateRequest(zoneConfiguration, certificateRequestToRenew);
+
+        final RenewalRequest renewalRequest = new RenewalRequest()
+                .thumbprint(thumbprint)
+                .request(certificateRequestToRenew);
+        final String renewedCertificate = client.renewCertificate(renewalRequest);
+
+        // Retrieve PEM collection from Venafi
+        final CertificateRequest renewPickupRequest = new CertificateRequest().pickupId(renewedCertificate);
+        PEMCollection pemCollectionRenewed = client.retrieveCertificate(pickupRequest);
+        System.out.println(pemCollectionRenewed.certificate());
+
+
 ```
 
 ## Prerequisites for using with Trust Protection Platform
diff --git a/src/main/java/com/venafi/vcert/sdk/certificate/CertificateRequest.java b/src/main/java/com/venafi/vcert/sdk/certificate/CertificateRequest.java
@@ -225,7 +225,7 @@ public boolean checkCertificate(Certificate certificate) throws VCertException {
                 default:
                     throw new VCertException(format("unknown key algorithm %s", publicKeyAlgorithm.name()));
             }
-        } else if(csr.length != 0) {
+        } else if(Objects.nonNull(csr) && csr.length != 0) {
             try {
                 PemReader pemReader = new PemReader(new StringReader(new String(csr)));
                 PKCS10CertificationRequest csr = new PKCS10CertificationRequest(pemReader.readPemObject().getContent());
diff --git a/src/main/java/com/venafi/vcert/sdk/connectors/cloud/Cloud.java b/src/main/java/com/venafi/vcert/sdk/connectors/cloud/Cloud.java
@@ -30,7 +30,7 @@ public interface Cloud {
     @RequestLine("GET /v1/certificatepolicies/{id}")
     CertificatePolicy policyById(@Param("id") String id, @Param("apiKey") String apiKey);
 
-    @Headers({"tppl-api-key: {apiKey}", "Content-Type: application/json"})
+    @Headers({"tppl-api-key: {apiKey}", "Content-Type: application/json", "Accept: application/json"})
     @RequestLine("POST /v1/certificatesearch")
     CertificateSearchResponse searchCertificates(@Param("apiKey") String apiKey, SearchRequest searchRequest);
 
diff --git a/src/test/java/com/venafi/vcert/sdk/Examples.java b/src/test/java/com/venafi/vcert/sdk/Examples.java
@@ -0,0 +1,83 @@
+package com.venafi.vcert.sdk;
+
+import com.venafi.vcert.sdk.certificate.CertificateRequest;
+import com.venafi.vcert.sdk.certificate.KeyType;
+import com.venafi.vcert.sdk.certificate.PEMCollection;
+import com.venafi.vcert.sdk.certificate.RenewalRequest;
+import com.venafi.vcert.sdk.connectors.tpp.ZoneConfiguration;
+import com.venafi.vcert.sdk.endpoint.Authentication;
+import com.venafi.vcert.sdk.endpoint.ConnectorType;
+import org.apache.commons.codec.digest.DigestUtils;
+
+import java.security.cert.CertificateEncodingException;
+import java.security.cert.X509Certificate;
+import java.util.Arrays;
+import java.util.Collections;
+
+public class Examples {
+
+    public static void main(String ... args) throws VCertException, CertificateEncodingException {
+        final Config config = Config.builder()
+                .connectorType(ConnectorType.CLOUD)
+                .zone("Default")
+                .build();
+
+        final VCertClient client = new VCertClient(config);
+
+        final Authentication auth = Authentication.builder()
+                .apiKey("xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx")
+                .build();
+
+        client.authenticate(auth);
+        final ZoneConfiguration zoneConfiguration = client.readZoneConfiguration("Default");
+
+        // Generate a certificate
+        CertificateRequest certificateRequest = new CertificateRequest().subject(
+                new CertificateRequest.PKIXName()
+                        .commonName("cert.test")
+                        .organization(Collections.singletonList("Venafi, Inc."))
+                        .organizationalUnit(Arrays.asList("Engineering"))
+                        .country(Collections.singletonList("US"))
+                        .locality(Collections.singletonList("SLC"))
+                        .province(Collections.singletonList("Utah")))
+
+                .keyType(KeyType.RSA);
+        certificateRequest = client.generateRequest(zoneConfiguration, certificateRequest);
+
+
+        // Submit the certificate request
+        String newCertId = client.requestCertificate(certificateRequest, "Default");
+
+
+        // Retrieve PEM collection from Venafi
+        final CertificateRequest pickupRequest = new CertificateRequest().pickupId(newCertId);
+        PEMCollection pemCollection = client.retrieveCertificate(pickupRequest);
+        System.out.println(pemCollection.certificate());
+
+        // Renew the certificate
+        X509Certificate cert = (X509Certificate) pemCollection.certificate();
+        String thumbprint = DigestUtils.sha1Hex(cert.getEncoded()).toUpperCase();
+        final CertificateRequest certificateRequestToRenew = new CertificateRequest().subject(
+                new CertificateRequest.PKIXName()
+                        .commonName("cert.test")
+                        .organization(Collections.singletonList("Venafi, Inc."))
+                        .organizationalUnit(Arrays.asList("Engineering"))
+                        .country(Collections.singletonList("US"))
+                        .locality(Collections.singletonList("SLC"))
+                        .province(Collections.singletonList("Utah")));
+
+        client.generateRequest(zoneConfiguration, certificateRequestToRenew);
+
+        final RenewalRequest renewalRequest = new RenewalRequest()
+                .thumbprint(thumbprint)
+                .request(certificateRequestToRenew);
+        final String renewedCertificate = client.renewCertificate(renewalRequest);
+
+        // Retrieve PEM collection from Venafi
+        final CertificateRequest renewPickupRequest = new CertificateRequest().pickupId(renewedCertificate);
+        PEMCollection pemCollectionRenewed = client.retrieveCertificate(pickupRequest);
+        System.out.println(pemCollectionRenewed.certificate());
+
+    }
+
+}

Original file line number	Diff line number	Diff line change
`@@ -225,7 +225,7 @@ public boolean checkCertificate(Certificate certificate) throws VCertException {`
`225`	`225`	`default:`
`226`	`226`	`throw new VCertException(format("unknown key algorithm %s", publicKeyAlgorithm.name()));`
`227`	`227`	`}`
`228`		`- } else if(csr.length != 0) {`
	`228`	`+ } else if(Objects.nonNull(csr) && csr.length != 0) {`
`229`	`229`	`try {`
`230`	`230`	`PemReader pemReader = new PemReader(new StringReader(new String(csr)));`
`231`	`231`	`PKCS10CertificationRequest csr = new PKCS10CertificationRequest(pemReader.readPemObject().getContent());`