OpenXPKI::Template::Plugin::PKCS10

Plugin for Template::Toolkit to retrieve properties of a certificate request from the PKCS10 PEM formatted request. All methods require the PEM encoded request as first argument.

How to use

You need to load the plugin into your template before using it. As we do not export the methods, you need to address them with the plugin name, e.g.

    [% USE PKCS10 %]

    Your request with the key [% PKCS10.subject_key_identifier(context.pkcs10) %]...

Will result in

    Your request with the key AB:CD...:2A

_load(pkcs10)

Internal method used to parse the request. Does some caching based on the SHA1 hash of the incoming data so multiple requests on the same data blob do not cause multiple calls to the parser.

pem

Print the PEM encoded PKCS10 container

binary

Print the raw binary data of the container

subject_key_identifier

Return the public key identifier as defined in RFC 5280 (hash of DER encoded public key). Result is in hex notation, uppercased with colon.

transaction_id

Return the transaction id which is the sha1 hash on the DER encoded request given in hexadecimal format.

digest

Return the digest of the raw request which is the sha1 hash on the DER encoded "inner" request without the signature parts given in hexadecimal format.

dn

Returns the DN of the request as parsed hash, if second parameter is given returns the named part as string. Note: In case the named property has more than one item, only the first one is returned!