1 package org.cacert.gigi.pages.account;
3 import static org.hamcrest.CoreMatchers.*;
4 import static org.junit.Assert.*;
6 import java.io.IOException;
7 import java.security.GeneralSecurityException;
8 import java.security.KeyPair;
10 import org.cacert.gigi.GigiApiException;
11 import org.cacert.gigi.dbObjects.Group;
12 import org.cacert.gigi.pages.account.certs.CertificateRequest;
13 import org.cacert.gigi.testUtils.ClientTest;
14 import org.cacert.gigi.util.AuthorizationContext;
15 import org.junit.Test;
17 public class TestCertificateRequest extends ClientTest {
19 KeyPair kp = generateKeypair();
21 AuthorizationContext ac;
23 public TestCertificateRequest() throws GeneralSecurityException, IOException, GigiApiException {
24 ac = new AuthorizationContext(u, u);
25 makeAssurer(u.getId());
29 public void testIssuingOtherName() throws Exception {
31 new CertificateRequest(ac, generatePEMCSR(kp, "CN=hansi")).draft();
33 } catch (GigiApiException e) {
34 assertThat(e.getMessage(), containsString("name you entered was invalid"));
39 public void testIssuingDefault() throws Exception {
40 new CertificateRequest(ac, generatePEMCSR(kp, "CN=" + CertificateRequest.DEFAULT_CN + ",EMAIL=" + email)).draft();
44 public void testIssuingRealName() throws Exception {
45 new CertificateRequest(ac, generatePEMCSR(kp, "CN=a b,EMAIL=" + email)).draft();
49 public void testIssuingModifiedName() throws Exception {
51 new CertificateRequest(ac, generatePEMCSR(kp, "CN=a ab")).draft();
53 } catch (GigiApiException e) {
54 assertThat(e.getMessage(), containsString("name you entered was invalid"));
59 // TODO annotate that this depends on default config
61 public void testCodesignModifiedName() throws Exception {
63 u.grantGroup(getSupporter(), Group.CODESIGNING);
64 CertificateRequest cr = new CertificateRequest(ac, generatePEMCSR(kp, "CN=a ab"));
65 cr.update("name", "SHA512", "code-a", null, null, "email:" + email);
68 } catch (GigiApiException e) {
69 assertThat(e.getMessage(), containsString("does not match the details"));
74 // TODO annotate that this depends on default config
76 public void testCodesignNoPermModifiedName() throws Exception {
78 CertificateRequest cr = new CertificateRequest(ac, generatePEMCSR(kp, "CN=a ab"));
79 cr.update("name", "SHA512", "code-a", null, null, "email:" + email);
82 } catch (GigiApiException e) {
83 assertThat(e.getMessage(), containsString("Certificate Profile is invalid."));