public class Notary {
+ // minimum date range between 2 verifications of the RA-Agent to the same
+ // Applicant
public final static int LIMIT_DAYS_VERIFICATION = 90; // conf.getProperty("limit_days_verification");
+ // maximum date range from date when the verification took place and the
+ // entering to the system
+ public final static int LIMIT_MAX_MONTHS_VERIFICATION = 24; // conf.getProperty("limit_max_months_verification");
+
public static void writeUserAgreement(User member, String document, String method, String comment, boolean active, int secmemid) {
try (GigiPreparedStatement q = new GigiPreparedStatement("INSERT INTO `user_agreements` SET `memid`=?, `secmemid`=?," + " `document`=?,`date`=NOW(), `active`=?,`method`=?,`comment`=?")) {
q.setInt(1, member.getId());
if (d.getTime() > gc.getTimeInMillis()) {
gae.mergeInto(new GigiApiException("You must not enter a date in the future."));
}
+ gc.setTimeInMillis(System.currentTimeMillis());
+ gc.add(Calendar.MONTH, -LIMIT_MAX_MONTHS_VERIFICATION);
+ if (d.getTime() < gc.getTimeInMillis()) {
+ gae.mergeInto(new GigiApiException(SprintfCommand.createSimple("Verifications older than {0} months are not accepted.", LIMIT_MAX_MONTHS_VERIFICATION)));
+ }
} catch (ParseException e) {
gae.mergeInto(new GigiApiException("You must enter the date in this format: YYYY-MM-DD."));
}
User[] us = new User[5];
for (int i = 0; i < us.length; i++) {
us[i] = User.getById(createAssuranceUser("f", "l", createUniqueName() + "@email.com", TEST_PASSWORD));
- Notary.assure(us[i], u, u.getPreferredName(), u.getDoB(), 10, "here", "2000-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(us[i], u, u.getPreferredName(), u.getDoB(), 10, "here", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
}
assertTrue(u.isValidName("aä b"));
Name n4 = new Name(u, new NamePart(NamePartType.SINGLE_NAME, "Testiaac"));
assertEquals(0, n0.getAssurancePoints());
- Notary.assure(u0, u, n0, u.getDoB(), 10, "test mgr", "2010-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(u0, u, n0, u.getDoB(), 10, "test mgr", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
assertEquals(10, n0.getAssurancePoints());
- Notary.assure(u0, u, n2, u.getDoB(), 10, "test mgr", "2010-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(u0, u, n2, u.getDoB(), 10, "test mgr", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
assertEquals(10, n2.getAssurancePoints());
- Notary.assure(u0, u, n3, u.getDoB(), 10, "test mgr", "2010-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(u0, u, n3, u.getDoB(), 10, "test mgr", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
assertEquals(10, n3.getAssurancePoints());
- Notary.assure(u0, u, n4, u.getDoB(), 10, "test mgr", "2010-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(u0, u, n4, u.getDoB(), 10, "test mgr", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
assertEquals(10, n4.getAssurancePoints());
assertEquals(10, u.getMaxAssurePoints());
}
import org.cacert.gigi.testUtils.IOUtils;
import org.cacert.gigi.testUtils.ManagedTest;
import org.cacert.gigi.util.DayDate;
+import org.cacert.gigi.util.Notary;
import org.hamcrest.Matcher;
import org.junit.Before;
import org.junit.Test;
@Test
public void testAssureForm() throws IOException {
- executeSuccess("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10");
+ executeSuccess("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=1&points=10");
}
@Test
public void testAssureFormContanisData() throws IOException {
URLConnection uc = buildupAssureFormConnection(true);
- uc.getOutputStream().write(("assuredName=" + assureeName + "&date=2000-01-01&location=testcase&rules=1&assertion=1&points=10").getBytes("UTF-8"));
+ uc.getOutputStream().write(("assuredName=" + assureeName + "&date=" + validVerificationDateString() + "&location=testcase&rules=1&assertion=1&points=10").getBytes("UTF-8"));
uc.getOutputStream().flush();
String data = IOUtils.readURL(uc);
- assertThat(data, containsString("2000-01-01"));
+ assertThat(data, containsString(validVerificationDateString()));
assertThat(data, containsString("testcase"));
}
public void testAssureFormNoCSRF() throws IOException {
// override csrf
HttpURLConnection uc = (HttpURLConnection) buildupAssureFormConnection(false);
- uc.getOutputStream().write(("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8"));
+ uc.getOutputStream().write(("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8"));
uc.getOutputStream().flush();
assertEquals(500, uc.getResponseCode());
}
public void testAssureFormWrongCSRF() throws IOException {
// override csrf
HttpURLConnection uc = (HttpURLConnection) buildupAssureFormConnection(false);
- uc.getOutputStream().write(("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10&csrf=aragc").getBytes("UTF-8"));
+ uc.getOutputStream().write(("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=1&points=10&csrf=aragc").getBytes("UTF-8"));
uc.getOutputStream().flush();
assertEquals(500, uc.getResponseCode());
}
assertNull(executeBasicWebInteraction(assureeCookie, MyDetails.PATH, newDob + "&action=updateDoB", 0));
- uc.getOutputStream().write(("assuredName=" + assureeName + "&date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8"));
+ uc.getOutputStream().write(("assuredName=" + assureeName + "&date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8"));
uc.getOutputStream().flush();
String error = fetchStartErrorMessage(IOUtils.readURL(uc));
if (succeed) {
executeSuccess("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&certify=1&rules=1&assertion=1&points=10");
}
+ @Test
+ public void testAssureFormPastInRange() throws IOException {
+ executeSuccess("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=1&points=10");
+ }
+
+ @Test
+ public void testAssureFormPastOnLimit() throws IOException {
+ SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd");
+ Calendar c = Calendar.getInstance();
+ c.setTimeInMillis(System.currentTimeMillis());
+ c.add(Calendar.MONTH, -Notary.LIMIT_MAX_MONTHS_VERIFICATION);
+ c.add(Calendar.DAY_OF_MONTH, 1);
+
+ executeSuccess("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&certify=1&rules=1&assertion=1&points=10");
+ }
+
+ @Test
+ public void testAssureFormPastOutOfRange() throws IOException {
+ SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd");
+ Calendar c = Calendar.getInstance();
+ c.setTimeInMillis(System.currentTimeMillis());
+ c.add(Calendar.MONTH, -Notary.LIMIT_MAX_MONTHS_VERIFICATION);
+
+ executeFails("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&certify=1&rules=1&assertion=1&points=10");
+ }
+
@Test
public void testAssureFormNoLoc() throws IOException {
- executeFails("date=2000-01-01&location=a&certify=1&rules=1&assertion=1&points=10");
- executeFails("date=2000-01-01&location=&certify=1&rules=1&assertion=1&points=10");
+ executeFails("date=" + validVerificationDateString() + "&location=a&certify=1&rules=1&assertion=1&points=10");
+ executeFails("date=" + validVerificationDateString() + "&location=&certify=1&rules=1&assertion=1&points=10");
}
@Test
@Test
public void testAssureFormBoxes() throws IOException {
- executeFails("date=2000-01-01&location=testcase&certify=0&rules=1&assertion=1&points=10");
- executeFails("date=2000-01-01&location=testcase&certify=1&rules=&assertion=1&points=10");
- executeFails("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=z&points=10");
+ executeFails("date=" + validVerificationDateString() + "&location=testcase&certify=0&rules=1&assertion=1&points=10");
+ executeFails("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=&assertion=1&points=10");
+ executeFails("date=" + validVerificationDateString() + "&location=testcase&certify=1&rules=1&assertion=z&points=10");
}
@Test
public void testAssureListingValid() throws IOException {
String uniqueLoc = createUniqueName();
- execute("date=2000-01-01&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
+ execute("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
String cookie = login(assureeM, TEST_PASSWORD);
URLConnection url = get(cookie, MyPoints.PATH);
@Test
public void testAssurerListingValid() throws IOException {
String uniqueLoc = createUniqueName();
- executeSuccess("date=2000-01-01&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
+ executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
String cookie = login(assurerM, TEST_PASSWORD);
URLConnection url = get(cookie, MyPoints.PATH);
String resp = IOUtils.readURL(url);
// enter second entry
String uniqueLoc = createUniqueName();
- executeSuccess("date=2000-01-01&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
+ executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10");
// enter third entry on the same day
URLConnection uc = get(cookie, AssurePage.PATH);
import java.security.KeyPairGenerator;
import java.security.Signature;
import java.sql.SQLException;
+import java.text.SimpleDateFormat;
+import java.util.Calendar;
+import java.util.Date;
import java.util.Properties;
import java.util.TimeZone;
import java.util.regex.Matcher;
import org.cacert.gigi.testUtils.TestEmailReceiver.TestMail;
import org.cacert.gigi.util.DatabaseManager;
import org.cacert.gigi.util.DomainAssessment;
+import org.cacert.gigi.util.Notary;
import org.cacert.gigi.util.PEM;
import org.cacert.gigi.util.ServerConstants;
import org.junit.BeforeClass;
}
System.out.println("Database reset complete in " + (System.currentTimeMillis() - ms) + " ms.");
}
+
+ public static String validVerificationDateString() {
+ SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd");
+ Calendar c = Calendar.getInstance();
+ c.setTimeInMillis(System.currentTimeMillis());
+ c.add(Calendar.MONTH, -Notary.LIMIT_MAX_MONTHS_VERIFICATION + 1);
+ return sdf.format(new Date(c.getTimeInMillis()));
+ }
+
}
};
try {
- Notary.assure(assurer, users[0], users[0].getPreferredName(), users[0].getDoB(), -1, "test-notary", "2014-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(assurer, users[0], users[0].getPreferredName(), users[0].getDoB(), -1, "test-notary", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
fail("This shouldn't have passed");
} catch (GigiApiException e) {
// expected
for (int i = 0; i < result.length; i++) {
assertEquals(result[i], assurer.getMaxAssurePoints());
- assuranceFail(assurer, users[i], result[i] + 1, "test-notary", "2014-01-01");
- Notary.assure(assurer, users[i], users[i].getPreferredName(), users[i].getDoB(), result[i], "test-notary", "2014-01-01", AssuranceType.FACE_TO_FACE);
- assuranceFail(assurer, users[i], result[i], "test-notary", "2014-01-01");
+ assuranceFail(assurer, users[i], result[i] + 1, "test-notary", validVerificationDateString());
+ Notary.assure(assurer, users[i], users[i].getPreferredName(), users[i].getDoB(), result[i], "test-notary", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
+ assuranceFail(assurer, users[i], result[i], "test-notary", validVerificationDateString());
}
assertEquals(35, assurer.getMaxAssurePoints());
ObjectCache.clearAllCaches(); // reload values from db
User assurer = User.getById(id);
for (int i = 0; i < users.length; i++) {
- assuranceFail(assurer, users[i], -1, "test-notary", "2014-01-01");
- assuranceFail(assurer, users[i], 11, "test-notary", "2014-01-01");
+ assuranceFail(assurer, users[i], -1, "test-notary", validVerificationDateString());
+ assuranceFail(assurer, users[i], 11, "test-notary", validVerificationDateString());
if (User.POJAM_ENABLED) {
- Notary.assure(assurer, users[i], users[i].getPreferredName(), users[i].getDoB(), 10, "test-notary", "2014-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(assurer, users[i], users[i].getPreferredName(), users[i].getDoB(), 10, "test-notary", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
}
- assuranceFail(assurer, users[i], 10, "test-notary", "2014-01-01");
+ assuranceFail(assurer, users[i], 10, "test-notary", validVerificationDateString());
}
}
// null date
assuranceFail(assuranceUser, assuree, 10, "notary-junit-test", null);
// null location
- assuranceFail(assuranceUser, assuree, 10, null, "2014-01-01");
+ assuranceFail(assuranceUser, assuree, 10, null, validVerificationDateString());
// empty location
- assuranceFail(assuranceUser, assuree, 10, "", "2014-01-01");
+ assuranceFail(assuranceUser, assuree, 10, "", validVerificationDateString());
// date in the future
assuranceFail(assuranceUser, assuree, 10, "notary-junit-test", DateSelector.getDateFormat().format(new Date(System.currentTimeMillis() + 2 * 24 * 60 * 60 * 1000)));
// location too short
- assuranceFail(assuranceUser, assuree, 10, "n", "2014-01-01");
+ assuranceFail(assuranceUser, assuree, 10, "n", validVerificationDateString());
// points too low
- assuranceFail(assuranceUser, assuree, -1, "notary-junit-test", "2014-01-01");
+ assuranceFail(assuranceUser, assuree, -1, "notary-junit-test", validVerificationDateString());
// points too high
- assuranceFail(assuranceUser, assuree, 11, "notary-junit-test", "2014-01-01");
+ assuranceFail(assuranceUser, assuree, 11, "notary-junit-test", validVerificationDateString());
// assure oneself
- assuranceFail(assuranceUser, assuranceUser, 10, "notary-junit-test", "2014-01-01");
+ assuranceFail(assuranceUser, assuranceUser, 10, "notary-junit-test", validVerificationDateString());
// not an assurer
- assuranceFail(assuree, assuranceUser, 10, "notary-junit-test", "2014-01-01");
+ assuranceFail(assuree, assuranceUser, 10, "notary-junit-test", validVerificationDateString());
// valid
- Notary.assure(assuranceUser, assuree, assuree.getPreferredName(), assuree.getDoB(), 10, "notary-junit-test", "2014-01-01", AssuranceType.FACE_TO_FACE);
+ Notary.assure(assuranceUser, assuree, assuree.getPreferredName(), assuree.getDoB(), 10, "notary-junit-test", validVerificationDateString(), AssuranceType.FACE_TO_FACE);
// assure double
- assuranceFail(assuranceUser, assuree, 10, "notary-junit-test", "2014-01-01");
+ assuranceFail(assuranceUser, assuree, 10, "notary-junit-test", validVerificationDateString());
}
}