From: Felix Dörre <felix@dogcraft.de>
Date: Thu, 15 Sep 2016 09:36:16 +0000 (+0200)
Subject: add: testcase for successful certificate login
X-Git-Url: https://code.wpia.club/?p=gigi.git;a=commitdiff_plain;h=d3fae2244debf99eb93281c7302e8bd397868c49

add: testcase for successful certificate login

Change-Id: Ie6efe2d2a5ab6e14ca3eee95db9c5e99e498b2ce
---

diff --git a/tests/org/cacert/gigi/LoginTest.java b/tests/org/cacert/gigi/LoginTest.java
index 30970623..c0ff71a4 100644
--- a/tests/org/cacert/gigi/LoginTest.java
+++ b/tests/org/cacert/gigi/LoginTest.java
@@ -4,8 +4,19 @@ import static org.hamcrest.CoreMatchers.*;
 import static org.junit.Assert.*;
 
 import java.io.IOException;
+import java.net.HttpURLConnection;
+import java.net.URL;
 import java.net.URLConnection;
+import java.security.GeneralSecurityException;
+import java.security.KeyPair;
+import java.security.PrivateKey;
+import java.security.cert.X509Certificate;
 
+import org.cacert.gigi.dbObjects.Certificate;
+import org.cacert.gigi.dbObjects.Certificate.CSRType;
+import org.cacert.gigi.dbObjects.CertificateProfile;
+import org.cacert.gigi.dbObjects.Digest;
+import org.cacert.gigi.dbObjects.User;
 import org.cacert.gigi.testUtils.IOUtils;
 import org.cacert.gigi.testUtils.ManagedTest;
 import org.junit.Test;
@@ -58,4 +69,23 @@ public class LoginTest extends ManagedTest {
         assertThat(readURL, containsString("Password"));
     }
 
+    @Test
+    public void testLoginCertificate() throws IOException, GeneralSecurityException, GigiApiException, InterruptedException {
+        String email = createUniqueName() + "@testmail.org";
+        int user = createVerifiedUser("an", "bn", email, TEST_PASSWORD);
+        KeyPair kp = generateKeypair();
+        String csr = generatePEMCSR(kp, "CN=hans");
+        User u = User.getById(user);
+        Certificate c = new Certificate(u, u, Certificate.buildDN("CN", "hans"), Digest.SHA256, csr, CSRType.CSR, CertificateProfile.getById(1));
+        final PrivateKey pk = kp.getPrivate();
+        await(c.issue(null, "2y", u));
+        final X509Certificate ce = c.cert();
+        c.setLoginEnabled(true);
+        String cookie = login(pk, ce);
+        URL u2 = new URL("https://" + getServerName().replaceFirst("^www.", "secure.") + SECURE_REFERENCE);
+        HttpURLConnection huc = (HttpURLConnection) u2.openConnection();
+        huc.addRequestProperty("Cookie", cookie);
+        authenticateClientCert(pk, ce, huc);
+        assertEquals(200, huc.getResponseCode());
+    }
 }