tests/org/cacert/gigi/api/ImportCATSResult.java

   1 package org.cacert.gigi.api;
   2
   3 import static org.junit.Assert.*;
   4
   5 import java.io.IOException;
   6 import java.io.OutputStream;
   7 import java.io.UnsupportedEncodingException;
   8 import java.net.HttpURLConnection;
   9 import java.net.MalformedURLException;
  10 import java.net.URL;
  11 import java.net.URLEncoder;
  12 import java.security.GeneralSecurityException;
  13 import java.security.KeyManagementException;
  14 import java.security.KeyPair;
  15 import java.security.NoSuchAlgorithmException;
  16 import java.security.PrivateKey;
  17 import java.security.cert.X509Certificate;
  18
  19 import org.cacert.gigi.GigiApiException;
  20 import org.cacert.gigi.dbObjects.CATS;
  21 import org.cacert.gigi.dbObjects.Certificate;
  22 import org.cacert.gigi.dbObjects.Certificate.CSRType;
  23 import org.cacert.gigi.dbObjects.Certificate.SANType;
  24 import org.cacert.gigi.dbObjects.CertificateProfile;
  25 import org.cacert.gigi.dbObjects.Digest;
  26 import org.cacert.gigi.dbObjects.Group;
  27 import org.cacert.gigi.dbObjects.Organisation;
  28 import org.cacert.gigi.dbObjects.User;
  29 import org.cacert.gigi.testUtils.ClientTest;
  30 import org.junit.Test;
  31
  32 public class ImportCATSResult extends ClientTest {
  33
  34     @Test
  35     public void testImportCATS() throws GigiApiException, IOException, GeneralSecurityException, InterruptedException {
  36         makeAssurer(id);
  37         Certificate target = new Certificate(u, u, Certificate.buildDN("EMAIL", email), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + email), CSRType.CSR, CertificateProfile.getByName("client"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org"));
  38         target.issue(null, "2y", u).waitFor(60000);
  39
  40         grant(u.getEmail(), Group.ORGASSURER);
  41         clearCaches();
  42         u = User.getById(u.getId());
  43         Organisation o = new Organisation(Organisation.SELF_ORG_NAME, "NA", "NA", "NA", "contact@cacert.org", u);
  44         assertTrue(o.isSelfOrganisation());
  45         KeyPair kp = generateKeypair();
  46         String key1 = generatePEMCSR(kp, "EMAIL=cats@cacert.org");
  47         Certificate c = new Certificate(o, u, Certificate.buildDN("EMAIL", "cats@cacert.org"), Digest.SHA256, key1, CSRType.CSR, CertificateProfile.getByName("client-orga"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org"));
  48         final PrivateKey pk = kp.getPrivate();
  49         c.issue(null, "2y", u).waitFor(60000);
  50         final X509Certificate ce = c.cert();
  51
  52         assertEquals(1, u.getTrainings().length);
  53         apiRequest(target.cert().getSerialNumber().toString(16), "Test Training", pk, ce);
  54         assertEquals(2, u.getTrainings().length);
  55
  56         User u2 = User.getById(createVerifiedUser("fn", "ln", createUniqueName() + "@example.com", TEST_PASSWORD));
  57         Certificate target2 = new Certificate(u2, u2, Certificate.buildDN("EMAIL", u2.getEmail()), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + u2.getEmail()), CSRType.CSR, CertificateProfile.getByName("client"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org"));
  58         target2.issue(null, "2y", u).waitFor(60000);
  59         assertEquals(0, u2.getTrainings().length);
  60         assertFalse(u2.hasPassedCATS());
  61         apiRequest(target2.cert().getSerialNumber().toString(16), "Test Training", pk, ce);
  62         assertEquals(1, u2.getTrainings().length);
  63         assertFalse(u2.hasPassedCATS());
  64         apiRequest(target2.cert().getSerialNumber().toString(16), CATS.ASSURER_CHALLANGE_NAME, pk, ce);
  65         assertEquals(2, u2.getTrainings().length);
  66         assertTrue(u2.hasPassedCATS());
  67
  68     }
  69
  70     private void apiRequest(String target, String test, final PrivateKey pk, final X509Certificate ce) throws IOException, MalformedURLException, NoSuchAlgorithmException, KeyManagementException, UnsupportedEncodingException, GeneralSecurityException {
  71         HttpURLConnection connection = (HttpURLConnection) new URL("https://" + getServerName().replaceFirst("^www.", "api.") + CATSImport.PATH).openConnection();
  72         authenticateClientCert(pk, ce, connection);
  73         connection.setDoOutput(true);
  74         OutputStream os = connection.getOutputStream();
  75         os.write(("serial=" + target + "&variant=" + URLEncoder.encode(test, "UTF-8") + "&date=" + System.currentTimeMillis()).getBytes("UTF-8"));
  76         System.out.println(connection.getResponseCode());
  77         System.out.println(connection.getResponseMessage());
  78     }
  79 }