tests/club/wpia/gigi/testUtils/RestrictedApiTest.java

   1 package club.wpia.gigi.testUtils;
   2
   3 import static org.junit.Assert.*;
   4
   5 import java.io.IOException;
   6 import java.io.OutputStream;
   7 import java.net.HttpURLConnection;
   8 import java.net.URL;
   9 import java.security.GeneralSecurityException;
  10 import java.security.KeyPair;
  11 import java.security.PrivateKey;
  12 import java.security.cert.X509Certificate;
  13
  14 import org.junit.BeforeClass;
  15
  16 import club.wpia.gigi.GigiApiException;
  17 import club.wpia.gigi.dbObjects.Certificate;
  18 import club.wpia.gigi.dbObjects.CertificateProfile;
  19 import club.wpia.gigi.dbObjects.Country;
  20 import club.wpia.gigi.dbObjects.Digest;
  21 import club.wpia.gigi.dbObjects.Group;
  22 import club.wpia.gigi.dbObjects.Organisation;
  23 import club.wpia.gigi.dbObjects.User;
  24 import club.wpia.gigi.dbObjects.Certificate.CSRType;
  25 import club.wpia.gigi.dbObjects.Certificate.SANType;
  26 import club.wpia.gigi.dbObjects.Country.CountryCodeType;
  27 import club.wpia.gigi.util.ServerConstants;
  28
  29 public class RestrictedApiTest extends ClientTest {
  30
  31     protected static PrivateKey pk;
  32
  33     protected static X509Certificate ce;
  34
  35     protected static Organisation selfOrg;
  36
  37     public RestrictedApiTest() {
  38         makeAgent(id);
  39     }
  40
  41     @BeforeClass
  42     public static void initCert() {
  43         initEnvironment();
  44         try {
  45             User u = User.getById(createVerificationUser("f", "l", createUniqueName() + "@email.com", TEST_PASSWORD));
  46             grant(u, Group.ORG_AGENT);
  47             clearCaches();
  48             u = User.getById(u.getId());
  49             selfOrg = new Organisation(Organisation.SELF_ORG_NAME, Country.getCountryByCode("DE", CountryCodeType.CODE_2_CHARS), "NA", "NA", "contact@example.org", "", "", u);
  50             assertTrue(selfOrg.isSelfOrganisation());
  51             KeyPair kp = generateKeypair();
  52             String key1 = generatePEMCSR(kp, "EMAIL=" + ServerConstants.getQuizMailAddress());
  53             Certificate apiCert = new Certificate(selfOrg, u, Certificate.buildDN("EMAIL", ServerConstants.getQuizMailAddress()), Digest.SHA256, key1, CSRType.CSR, CertificateProfile.getByName("client-orga"), new Certificate.SubjectAlternateName(SANType.EMAIL, ServerConstants.getQuizMailAddress()));
  54             pk = kp.getPrivate();
  55             await(apiCert.issue(null, "2y", u));
  56             ce = apiCert.cert();
  57             apiCert.setLoginEnabled(true);
  58         } catch (IOException e) {
  59             throw new Error(e);
  60         } catch (GigiApiException e) {
  61             throw new Error(e);
  62         } catch (GeneralSecurityException e) {
  63             throw new Error(e);
  64         } catch (InterruptedException e) {
  65             throw new Error(e);
  66         }
  67
  68     }
  69
  70     public HttpURLConnection doApi(String path, String content) throws IOException, GeneralSecurityException {
  71         HttpURLConnection connection = (HttpURLConnection) new URL("https://" + getServerName().replaceFirst("^www.", "api.") + path).openConnection();
  72         authenticateClientCert(pk, ce, connection);
  73         connection.setDoOutput(true);
  74         OutputStream os = connection.getOutputStream();
  75         os.write(content.getBytes());
  76         return connection;
  77     }
  78 }