tests/org/cacert/gigi/testUtils/RestrictedApiTest.java

   1 package org.cacert.gigi.testUtils;
   2
   3 import static org.junit.Assert.*;
   4
   5 import java.io.IOException;
   6 import java.io.OutputStream;
   7 import java.net.HttpURLConnection;
   8 import java.net.URL;
   9 import java.security.GeneralSecurityException;
  10 import java.security.KeyPair;
  11 import java.security.PrivateKey;
  12 import java.security.cert.X509Certificate;
  13
  14 import org.cacert.gigi.GigiApiException;
  15 import org.cacert.gigi.dbObjects.Certificate;
  16 import org.cacert.gigi.dbObjects.Certificate.CSRType;
  17 import org.cacert.gigi.dbObjects.Certificate.SANType;
  18 import org.cacert.gigi.dbObjects.CertificateProfile;
  19 import org.cacert.gigi.dbObjects.Country;
  20 import org.cacert.gigi.dbObjects.Country.CountryCodeType;
  21 import org.cacert.gigi.dbObjects.Digest;
  22 import org.cacert.gigi.dbObjects.Group;
  23 import org.cacert.gigi.dbObjects.Organisation;
  24 import org.cacert.gigi.dbObjects.User;
  25 import org.junit.BeforeClass;
  26
  27 public class RestrictedApiTest extends ClientTest {
  28
  29     protected static PrivateKey pk;
  30
  31     protected static X509Certificate ce;
  32
  33     public RestrictedApiTest() {
  34         makeAssurer(id);
  35     }
  36
  37     @BeforeClass
  38     public static void initCert() {
  39         initEnvironment();
  40         try {
  41             User u = User.getById(createAssuranceUser("f", "l", createUniqueName() + "@email.com", TEST_PASSWORD));
  42             grant(u, Group.ORGASSURER);
  43             clearCaches();
  44             u = User.getById(u.getId());
  45             Organisation o = new Organisation(Organisation.SELF_ORG_NAME, Country.getCountryByCode("DE", CountryCodeType.CODE_2_CHARS), "NA", "NA", "contact@cacert.org", "", "", u);
  46             assertTrue(o.isSelfOrganisation());
  47             KeyPair kp = generateKeypair();
  48             String key1 = generatePEMCSR(kp, "EMAIL=cats@cacert.org");
  49             Certificate c = new Certificate(o, u, Certificate.buildDN("EMAIL", "cats@cacert.org"), Digest.SHA256, key1, CSRType.CSR, CertificateProfile.getByName("client-orga"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org"));
  50             pk = kp.getPrivate();
  51             await(c.issue(null, "2y", u));
  52             ce = c.cert();
  53             c.setLoginEnabled(true);
  54         } catch (IOException e) {
  55             throw new Error(e);
  56         } catch (GigiApiException e) {
  57             throw new Error(e);
  58         } catch (GeneralSecurityException e) {
  59             throw new Error(e);
  60         } catch (InterruptedException e) {
  61             throw new Error(e);
  62         }
  63
  64     }
  65
  66     public HttpURLConnection doApi(String path, String content) throws IOException, GeneralSecurityException {
  67         HttpURLConnection connection = (HttpURLConnection) new URL("https://" + getServerName().replaceFirst("^www.", "api.") + path).openConnection();
  68         authenticateClientCert(pk, ce, connection);
  69         connection.setDoOutput(true);
  70         OutputStream os = connection.getOutputStream();
  71         os.write(content.getBytes());
  72         return connection;
  73     }
  74 }