This week, I made one more step of progress by implementing the Certificate Revocation List (CRL). The CRL holds a list of certificates that had to be revoked before their expiry date for a particular reason. In our case, that reason would be to handle the case where the customers Read more…
If you have been following my blogs for awhile, it is very clear from the last few blog posts or so, that my progress on my current project has been quite slow. The main reason would be that I stucked myself trying to figure out how I could get the Read more…
Following up on last week’s post, it was decided that we would generate the private keys in the user’s browser, and then it would be uploaded to the server for the creation of the certificate. At first glance, this seemed to compromise security because by right the private key should Read more…
There is nothing much to be said for this week. The only implementation I’ve attempted to get done for this week, is the part where the server application interfaces with the WooCommerce REST API, in order to create products and coupons, when an organization makes an order for a certificate. Read more…
As time goes on, the details and requirements of the project start to emerge themselves progressively. At this point of time, we have two kinds of products, one for individuals and another for organizations. In the case of organizations, they have the choice of buying an intermediate CA certificate and Read more…
On a previous blog post, I talked about the flow of my project in detail, but then I realized that I was missing something important. The crux of the matter was I mentioned that when the customers have made the order and paid for the subscription, the certificate would be Read more…
It was about time to start writing some code since I already got the gist of how the application is gonna work overall. Nothing much has been done at this point, but so far I had set up two REST endpoints to handle both Subscription Created and Updated webhooks. As Read more…
At this point, I am more or less aware of how the whole flow of my project is gonna work, after having a fruitful discussion with Dr Shawn. Let me first summarize the flow from the perspective of the customer: Customers can subscribe to a license, in accordance to their Read more…
In the last blog post, I talked about the structure of how certificates would be created. I would now be talking a bit about the renewal process in WooCommerce subscriptions and how it relates to the renewal of the certificates as well. Subscriptions in general involves having recurring payments that Read more…
The time has come to embark on a new project. Although a different project on its own, it is closely related to the P3 project I was working on previously. The P3 application authenticates users through client certificates, but how and where are they gonna get the certificates? This is Read more…