def _get_repository_protection_utils():
"""
Instantiate our repository protection utilities with the config file.
:return: A 2-tuple of repo_cert_utils and protected_repo_utils
:rtype: tuple
"""
repo_auth_config = SafeConfigParser()
repo_auth_config.read(constants.REPO_AUTH_CONFIG_FILE)
repo_cert_utils = RepoCertUtils(repo_auth_config)
protected_repo_utils = ProtectedRepoUtils(repo_auth_config)
return repo_cert_utils, protected_repo_utils
def test_basic_validate(self):
repo_cert_utils = RepoCertUtils(config=self.config)
cert_pem = E_FULL
ca_pem = VALID_CA
status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem)
self.assertTrue(status)
status = self.simple_m2crypto_verify(cert_pem, ca_pem)
self.assertTrue(status)
cert_pem = E_FULL
ca_pem = OTHER_CA
status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem)
self.assertFalse(status)
status = self.simple_m2crypto_verify(cert_pem, ca_pem)
self.assertFalse(status)
cert_pem = OTHER_CERT
ca_pem = VALID_CA
status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem)
self.assertFalse(status)
status = self.simple_m2crypto_verify(cert_pem, ca_pem)
self.assertFalse(status)
def __init__(self, config):
self.config = config
self.repo_cert_utils = RepoCertUtils(config)
self.protected_repo_utils = ProtectedRepoUtils(config)
self.repo_url_prefixes = self._get_repo_url_prefixes_from_config(
config)
def pulp_verify(ca_cert, client_cert, crl):
repo_utils = RepoCertUtils(config.config)
return repo_utils.validate_certificate(client_cert, ca_cert)
