michael@0: <!-- This Source Code Form is subject to the terms of the Mozilla Public
michael@0:    - License, v. 2.0. If a copy of the MPL was not distributed with this
michael@0:    - file, You can obtain one at http://mozilla.org/MPL/2.0/. -->
michael@0: 
michael@0: <html>
michael@0: <head>
michael@0: <title>CRMF Test Page for PSM</title>
michael@0: <script language=javascript>
michael@0: var request;
michael@0: //This variable must be set to the first value
michael@0: //in the select field "testType" in the form.
michael@0: var keyGenType="SigningOnlyRSA";
michael@0: 
michael@0: var requestedDN = "CN=Javi CA Shack ID, O=NSS";
michael@0: 
michael@0: function setTestType() {
michael@0:   var testType = document.crmfForm.testType;
michael@0:   
michael@0:   keyGenType = testType.options[testType.selectedIndex].value;
michael@0: }
michael@0: 
michael@0: function setRequest() {
michael@0:   with (document.crmfForm) {
michael@0:     CRMFRequest.value = request.request;
michael@0:     submit();
michael@0:   }
michael@0: }
michael@0: 
michael@0: function generateSignAndEncryptRSARequest() {
michael@0:     request = crypto.generateCRMFRequest(requestedDN,
michael@0:                                          null, null, null, "setRequest()",
michael@0:                                          crypto.algorithms.rsa.keyEx.keySizes[0],
michael@0:                                          null, "rsa-dual-use");    
michael@0: }
michael@0: 
michael@0: function generateSigningOnlyRSARequest() {
michael@0:     request = crypto.generateCRMFRequest(requestedDN,null,null,null,"setRequest()",
michael@0:                                          crypto.algorithms.rsa.signing.keySizes[0],
michael@0:                                          null, "rsa-sign");
michael@0: }
michael@0: 
michael@0: function generateEncryptionOnlyRSARequest() {
michael@0:     request = crypto.generateCRMFRequest(requestedDN, null, null, null, "setRequest()",
michael@0:                                          crypto.algorithms.rsa.keyEx.keySizes[0],
michael@0:                                          null, "rsa-ex");
michael@0: }
michael@0: 
michael@0: function generateDualRSAKeys() {
michael@0:     request = crypto.generateCRMFRequest(requestedDN, null, null, null, "setRequest()",
michael@0:                                          crypto.algorithms.rsa.keyEx.keySizes[0],
michael@0:                                          null, "rsa-ex",
michael@0:                                          crypto.algorithms.rsa.signing.keySizes[0],
michael@0:                                          null, "rsa-sign");
michael@0: }
michael@0: 
michael@0: function generateDSAKey() {
michael@0:     request = crypto.generateCRMFRequest(requestedDN, null, null, null, "setRequest()",
michael@0:                                          crypto.algorithms.dsa.keySizes[0],
michael@0:                                          null, "dsa-sign-nonrepudiation");
michael@0: }
michael@0: 
michael@0: function processForm(form) {
michael@0:   with (form) {
michael@0:     if (typeof(crypto.version) == "undefined") {
michael@0:       alert('You must be running PSM in order to use this page.');
michael@0:       return false;
michael@0:     }
michael@0:     if (NSSDirectory.value == "") {
michael@0:       alert('You must provide a path for NSS to use.');
michael@0:       return false;
michael@0:     }
michael@0:     if (dbPassword.value == "") {
michael@0:       alert('You must provide a password for the certificate database.');
michael@0:       return false;
michael@0:     }
michael@0:     if (CANickname.value == "") {
michael@0:       alert('You must provide a CA Nickname to use.');
michael@0:       return false;
michael@0:     }
michael@0:     //Now do the correct key generation.
michael@0:     if (keyGenType == "SignAndEncryptRSA") {
michael@0:       generateSignAndEncryptRSARequest();
michael@0:     } else if (keyGenType == "SigningOnlyRSA") {
michael@0:       generateSigningOnlyRSARequest();
michael@0:     } else if (keyGenType == "EncryptionOnlyRSA") {
michael@0:       generateEncryptionOnlyRSARequest();
michael@0:     } else if (keyGenType == "DualRSAKeys") {
michael@0:       generateDualRSAKeys();
michael@0:     } else if (keyGenType == "DSAKeyGen") {
michael@0:       generateDSAKey();
michael@0:     }
michael@0:   }
michael@0:   return true;
michael@0: }
michael@0: </script>
michael@0: </head>
michael@0: <body>
michael@0: <h1><center>CRMF Test page for PSM</center></h1>
michael@0: This page is designed to be used in combination with the executable
michael@0: produced by ns/security/cmd/crmf-cgi in a CGI environment.  In order
michael@0: to successfully use this page, modify its action to post to a a server
michael@0: where you have installed the crmfcgi executable and you'll be able to
michael@0: test the functionality.
michael@0: <hr>
michael@0: <form name="crmfForm" method=post action="http://www.cgi-site.com/cgi-bin/crmfcgi"> 
michael@0: <h2>Certificate Database information</h2>
michael@0: First, enter all the information for the CGI to use for initializing 
michael@0: NSS.  The CGI will use the directory entered below as the directory
michael@0: where to look for the certificate and key databases.
michael@0: <pre>
michael@0: Path for NSS Config: <input size=40 type="text" name="NSSDirectory">
michael@0: </pre>
michael@0: Enter the password for the certificate database found in the direcotry
michael@0: above.
michael@0: <pre>
michael@0: Database Password:   <input type="password" name="dbPassword" size=40>
michael@0: </pre>
michael@0: Now enter the nickname of the certificate to use for signing the 
michael@0: certificate issued during this test.
michael@0: <pre>
michael@0: CA Nickname:         <input size=40 type="text" name="CANickname">
michael@0: </pre>
michael@0: <h2>Now, figure out which type of key generation you want to test:</h2>
michael@0: <select name="testType" onChange="setTestType()">`
michael@0: <option value="SigningOnlyRSA">Signing Only-RSA
michael@0: <option value="EncryptionOnlyRSA">Encryption Only-RSA
michael@0: <option value="SignAndEncryptRSA">Sign and Encrypt Single Key -RSA
michael@0: <option value="DualRSAKeys">Dual Keys-RSA
michael@0: <option value="DSAKeyGen">DSA Key Gen
michael@0: </select>
michael@0: <input type="hidden" name=CRMFRequest value="">
michael@0: <hr>
michael@0: <input type="button" value="OK" onclick="processForm(document.crmfForm)">
michael@0: </form>
michael@0: </body>
michael@0: </html>