X-Git-Url: https://code.wpia.club/?p=gigi.git;a=blobdiff_plain;f=tests%2Forg%2Fcacert%2Fgigi%2Fapi%2FImportCATSResult.java;h=a0caee2b66f2e75e1fa65cd28d4e78174d970023;hp=be02a7b672d84f459164ab94e48ca117598470f9;hb=a0f14d6df549f682359082cb78076222cf44a599;hpb=8f19db917312590be3db9eabe91434d5750b5c15 diff --git a/tests/org/cacert/gigi/api/ImportCATSResult.java b/tests/org/cacert/gigi/api/ImportCATSResult.java index be02a7b6..a0caee2b 100644 --- a/tests/org/cacert/gigi/api/ImportCATSResult.java +++ b/tests/org/cacert/gigi/api/ImportCATSResult.java @@ -3,77 +3,95 @@ package org.cacert.gigi.api; import static org.junit.Assert.*; import java.io.IOException; -import java.io.OutputStream; import java.io.UnsupportedEncodingException; import java.net.HttpURLConnection; import java.net.MalformedURLException; -import java.net.URL; import java.net.URLEncoder; import java.security.GeneralSecurityException; import java.security.KeyManagementException; -import java.security.KeyPair; import java.security.NoSuchAlgorithmException; -import java.security.PrivateKey; -import java.security.cert.X509Certificate; import org.cacert.gigi.GigiApiException; -import org.cacert.gigi.dbObjects.CATS; +import org.cacert.gigi.dbObjects.CATS.CATSType; import org.cacert.gigi.dbObjects.Certificate; import org.cacert.gigi.dbObjects.Certificate.CSRType; import org.cacert.gigi.dbObjects.Certificate.SANType; import org.cacert.gigi.dbObjects.CertificateProfile; import org.cacert.gigi.dbObjects.Digest; -import org.cacert.gigi.dbObjects.Group; -import org.cacert.gigi.dbObjects.Organisation; import org.cacert.gigi.dbObjects.User; -import org.cacert.gigi.testUtils.ClientTest; +import org.cacert.gigi.testUtils.IOUtils; +import org.cacert.gigi.testUtils.RestrictedApiTest; +import org.cacert.gigi.util.ServerConstants; import org.junit.Test; -public class ImportCATSResult extends ClientTest { +public class ImportCATSResult extends RestrictedApiTest { + + @Test + public void testLookupSerial() throws GigiApiException, IOException, GeneralSecurityException, InterruptedException { + Certificate target2 = new Certificate(u, u, Certificate.buildDN("EMAIL", u.getEmail()), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + u.getEmail()), CSRType.CSR, CertificateProfile.getByName("client"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org")); + await(target2.issue(null, "2y", u)); + target2.setLoginEnabled(true); + + assertEquals(u.getId(), Integer.parseInt(apiLookup(target2))); + + Certificate target3 = new Certificate(selfOrg, u, Certificate.buildDN("EMAIL", ServerConstants.getQuizAdminMailAddress()), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + ServerConstants.getQuizAdminMailAddress()), CSRType.CSR, CertificateProfile.getByName("client-orga"), new Certificate.SubjectAlternateName(SANType.EMAIL, ServerConstants.getQuizAdminMailAddress())); + await(target3.issue(null, "2y", u)); + target3.setLoginEnabled(true); + + assertEquals("admin", apiLookup(target3)); + } @Test public void testImportCATS() throws GigiApiException, IOException, GeneralSecurityException, InterruptedException { - makeAssurer(id); - Certificate target = new Certificate(u, u, Certificate.buildDN("EMAIL", email), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + email), CSRType.CSR, CertificateProfile.getByName("client"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org")); - target.issue(null, "2y", u).waitFor(60000); - - grant(u.getEmail(), Group.ORGASSURER); - clearCaches(); - u = User.getById(u.getId()); - Organisation o = new Organisation(Organisation.SELF_ORG_NAME, "NA", "NA", "NA", "contact@cacert.org", u); - assertTrue(o.isSelfOrganisation()); - KeyPair kp = generateKeypair(); - String key1 = generatePEMCSR(kp, "EMAIL=cats@cacert.org"); - Certificate c = new Certificate(o, u, Certificate.buildDN("EMAIL", "cats@cacert.org"), Digest.SHA256, key1, CSRType.CSR, CertificateProfile.getByName("client-orga"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org")); - final PrivateKey pk = kp.getPrivate(); - c.issue(null, "2y", u).waitFor(60000); - final X509Certificate ce = c.cert(); assertEquals(1, u.getTrainings().length); - apiRequest(target.cert().getSerialNumber().toString(16), "Test Training", pk, ce); + apiImport(u, "Test Training"); assertEquals(2, u.getTrainings().length); User u2 = User.getById(createVerifiedUser("fn", "ln", createUniqueName() + "@example.com", TEST_PASSWORD)); - Certificate target2 = new Certificate(u2, u2, Certificate.buildDN("EMAIL", u2.getEmail()), Digest.SHA256, generatePEMCSR(generateKeypair(), "EMAIL=" + u2.getEmail()), CSRType.CSR, CertificateProfile.getByName("client"), new Certificate.SubjectAlternateName(SANType.EMAIL, "cats@cacert.org")); - target2.issue(null, "2y", u).waitFor(60000); assertEquals(0, u2.getTrainings().length); assertFalse(u2.hasPassedCATS()); - apiRequest(target2.cert().getSerialNumber().toString(16), "Test Training", pk, ce); + apiImport(u2, "Test Training"); assertEquals(1, u2.getTrainings().length); assertFalse(u2.hasPassedCATS()); - apiRequest(target2.cert().getSerialNumber().toString(16), CATS.ASSURER_CHALLANGE_NAME, pk, ce); + apiImport(u2, CATSType.ASSURER_CHALLENGE.getDisplayName()); assertEquals(2, u2.getTrainings().length); assertTrue(u2.hasPassedCATS()); } - private void apiRequest(String target, String test, final PrivateKey pk, final X509Certificate ce) throws IOException, MalformedURLException, NoSuchAlgorithmException, KeyManagementException, UnsupportedEncodingException, GeneralSecurityException { - HttpURLConnection connection = (HttpURLConnection) new URL("https://" + getServerName().replaceFirst("^www.", "api.") + CATSImport.PATH).openConnection(); - authenticateClientCert(pk, ce, connection); - connection.setDoOutput(true); - OutputStream os = connection.getOutputStream(); - os.write(("serial=" + target + "&variant=" + URLEncoder.encode(test, "UTF-8") + "&date=" + System.currentTimeMillis()).getBytes("UTF-8")); - System.out.println(connection.getResponseCode()); - System.out.println(connection.getResponseMessage()); + @Test + public void testImportCATSFailures() throws GigiApiException, IOException, GeneralSecurityException, InterruptedException { + assertEquals(1, u.getTrainings().length); + assertNotEquals(200, executeImportQuery("").getResponseCode()); + assertNotEquals(200, executeImportQuery("mid=" + u.getId()).getResponseCode()); + assertNotEquals(200, executeImportQuery("mid=" + u.getId() + "&variant=Test+Training").getResponseCode()); + assertNotEquals(200, executeImportQuery("mid=" + u.getId() + "&variant=Test+Training&date=" + System.currentTimeMillis()).getResponseCode()); + assertNotEquals(200, executeImportQuery("mid=" + u.getId() + "&variant=Test+Training&date=" + System.currentTimeMillis() + "&language=en").getResponseCode()); + assertNotEquals(200, executeImportQuery("mid=" + u.getId() + "&variant=Test+Training&date=" + System.currentTimeMillis() + "&version=1.0").getResponseCode()); + assertEquals(1, u.getTrainings().length); + apiImport(u, "Test Training"); + assertEquals(2, u.getTrainings().length); + + } + + private void apiImport(User target, String test) throws IOException, MalformedURLException, NoSuchAlgorithmException, KeyManagementException, UnsupportedEncodingException, GeneralSecurityException { + HttpURLConnection connection = executeImportQuery("mid=" + target.getId() + "&variant=" + URLEncoder.encode(test, "UTF-8") + "&date=" + System.currentTimeMillis() + "&language=en&version=1.0"); + if (connection.getResponseCode() != 200) { + throw new Error(connection.getResponseMessage()); + } } + + private HttpURLConnection executeImportQuery(String query) throws IOException, GeneralSecurityException { + return doApi(CATSImport.PATH, query); + } + + private String apiLookup(Certificate target) throws IOException, GeneralSecurityException { + HttpURLConnection connection = doApi(CATSResolve.PATH, "serial=" + target.cert().getSerialNumber().toString(16).toLowerCase()); + if (connection.getResponseCode() != 200) { + throw new Error(connection.getResponseMessage()); + } + return IOUtils.readURL(connection); + } + }