1 package org.cacert.gigi.api;
3 import static org.junit.Assert.*;
5 import java.io.ByteArrayInputStream;
6 import java.io.InputStreamReader;
7 import java.io.OutputStream;
8 import java.net.HttpURLConnection;
10 import java.net.URLEncoder;
11 import java.security.KeyPair;
12 import java.security.PrivateKey;
13 import java.security.cert.CertificateFactory;
14 import java.security.cert.X509Certificate;
16 import org.cacert.gigi.dbObjects.Certificate;
17 import org.cacert.gigi.dbObjects.Certificate.CSRType;
18 import org.cacert.gigi.dbObjects.CertificateProfile;
19 import org.cacert.gigi.dbObjects.Digest;
20 import org.cacert.gigi.testUtils.ClientTest;
21 import org.cacert.gigi.testUtils.IOUtils;
22 import org.junit.Test;
24 import sun.security.x509.X500Name;
26 public class IssueCert extends ClientTest {
29 public void testIssueCert() throws Exception {
30 KeyPair kp = generateKeypair();
31 String key1 = generatePEMCSR(kp, "EMAIL=testmail@example.com");
32 Certificate c = new Certificate(u, u, Certificate.buildDN("EMAIL", "testmail@example.com"), Digest.SHA256, key1, CSRType.CSR, CertificateProfile.getById(1));
33 final PrivateKey pk = kp.getPrivate();
34 c.issue(null, "2y", u).waitFor(60000);
35 final X509Certificate ce = c.cert();
36 HttpURLConnection connection = (HttpURLConnection) new URL("https://" + getServerName().replaceFirst("^www.", "api.") + "/account/certs/new").openConnection();
37 authenticateClientCert(pk, ce, connection);
38 connection.setDoOutput(true);
39 OutputStream os = connection.getOutputStream();
40 os.write(("profile=client&csr=" + URLEncoder.encode(generatePEMCSR(kp, "EMAIL=" + email + ",CN=CAcert WoT User"), "UTF-8")).getBytes("UTF-8"));
42 assertEquals(connection.getResponseCode(), 200);
43 String cert = IOUtils.readURL(new InputStreamReader(connection.getInputStream(), "UTF-8"));
44 CertificateFactory cf = CertificateFactory.getInstance("X509");
45 java.security.cert.Certificate xcert = cf.generateCertificate(new ByteArrayInputStream(cert.getBytes("UTF-8")));
46 assertEquals("CAcert WoT User", ((X500Name) ((X509Certificate) xcert).getSubjectDN()).getCommonName());