def testClientIgnoreFQDNCheck(self):
self.startNuauth()
client1 = createClient(more_args=["-H","nuauth.inl.fr","-A", self.cacert])
client2 = createClient(more_args=["-H","localhost","-A", self.cacert,"-N"])
self.assert_(connectClient(client1))
self.assert_(connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testClientIgnoreFQDNCheck(self):
self.startNuauth()
client1 = createClient(
more_args=["-H", "nuauth.inl.fr", "-A", self.cacert])
client2 = createClient(
more_args=["-H", "localhost", "-A", self.cacert, "-N"])
self.assert_(connectClient(client1))
self.assert_(connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testNuauthExpired(self):
args = dict()
args["nuauth_tls_key"] = '"%s"' % abspath(config.get("test_cert", "user_expired_key"))
args["nuauth_tls_cert"] = '"%s"' % abspath(config.get("test_cert", "user_expired_cert"))
self.startNuauth(args)
self.client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert])
self.assert_(not connectClient(self.client))
self.client.stop()
self.client = createClient(more_args=["-H","nuauth.inl.fr","-Q"])
self.assert_(not connectClient(self.client))
self.client.stop()
self.stopNuauth()
def testClientInvalidCA(self):
self.startNuauth()
cacert = config.get("test_cert", "invalid_cacert")
client = createClient(more_args=["-A", cacert])
self.assert_(not connectClient(client))
client.stop()
self.stopNuauth()
def testClientInvalidCA(self):
self.startNuauth()
cacert = config.get("test_cert", "invalid_cacert")
client = createClient(more_args=["-A", cacert])
self.assert_(not connectClient(client))
client.stop()
self.stopNuauth()
def testNuauthRevoked(self):
args = dict()
args["nuauth_tls_key"] = '"%s"' % abspath(config.get("test_cert", "user_revoked_key"))
args["nuauth_tls_cert"] = '"%s"' % abspath(config.get("test_cert", "user_revoked_cert"))
self.startNuauth(args)
self.client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert,"-R",abspath("./pki/crl.pem")])
self.assert_(not connectClient(self.client))
self.client.stop()
self.stopNuauth()
def testClientInvalidCRL(self):
args = dict()
args["nuauth_tls_request_cert"] = "2"
self.startNuauth(args)
invalid_crl = abspath(config.get("test_cert", "invalid_crl"))
client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert,"-R",invalid_crl])
self.assert_(not connectClient(client))
client.stop()
self.stopNuauth()
def testClientValidCert(self):
args = dict()
args["nuauth_tls_request_cert"] = "2"
self.startNuauth(args)
tls_cert = abspath(config.get("test_cert", "user_cert"))
tls_key = abspath(config.get("test_cert", "user_key"))
client = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key])
self.assert_(connectClient(client))
client.stop()
self.stopNuauth()
def testClientValidCert(self):
args = dict()
args["nuauth_tls_request_cert"] = "2"
self.startNuauth(args)
tls_cert = abspath(config.get("test_cert", "user_cert"))
tls_key = abspath(config.get("test_cert", "user_key"))
client = createClient(
more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key])
self.assert_(connectClient(client))
client.stop()
self.stopNuauth()
def testClientInvalidCRL(self):
args = dict()
args["nuauth_tls_request_cert"] = "2"
self.startNuauth(args)
invalid_crl = abspath(config.get("test_cert", "invalid_crl"))
client = createClient(more_args=[
"-H", "nuauth.inl.fr", "-A", self.cacert, "-R", invalid_crl
])
self.assert_(not connectClient(client))
client.stop()
self.stopNuauth()
def testClientExpired(self):
self.startNuauth()
client1 = createClientWithCerts()
self.assert_(connectClient(client1))
tls_cert = abspath(config.get("test_cert", "user_expired_cert"))
tls_key = abspath(config.get("test_cert", "user_expired_key"))
client2 = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key])
self.assert_(not connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testClientExpired(self):
self.startNuauth()
client1 = createClientWithCerts()
self.assert_(connectClient(client1))
tls_cert = abspath(config.get("test_cert", "user_expired_cert"))
tls_key = abspath(config.get("test_cert", "user_expired_key"))
client2 = createClient(
more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key])
self.assert_(not connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testClientRevoked(self):
args = dict()
args["nuauth_tls_request_cert"] = "1"
args["nuauth_tls_crl"] = '"%s"' % abspath(config.get("test_cert", "crl"))
self.startNuauth(args)
client1 = createClientWithCerts()
self.assert_(connectClient(client1))
tls_cert = abspath(config.get("test_cert", "user_revoked_cert"))
tls_key = abspath(config.get("test_cert", "user_revoked_key"))
client2 = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key])
self.assert_(not connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testClientRevoked(self):
args = dict()
args["nuauth_tls_request_cert"] = "1"
args["nuauth_tls_crl"] = '"%s"' % abspath(
config.get("test_cert", "crl"))
self.startNuauth(args)
client1 = createClientWithCerts()
self.assert_(connectClient(client1))
tls_cert = abspath(config.get("test_cert", "user_revoked_cert"))
tls_key = abspath(config.get("test_cert", "user_revoked_key"))
client2 = createClient(
more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key])
self.assert_(not connectClient(client2))
client1.stop()
client2.stop()
self.stopNuauth()
def testValidCert(self):
self.client = createClient(more_args=["-A", self.cacert])
self.assert_(connectClient(self.client))
def testClientValidCA(self):
self.startNuauth()
client = createClient(more_args=["-A", self.cacert])
self.assert_(connectClient(client))
client.stop()
self.stopNuauth()
def testClientValidCA(self):
self.startNuauth()
client = createClient(more_args=["-A", self.cacert])
self.assert_(connectClient(client))
client.stop()
self.stopNuauth()
def testValidCert(self):
self.client = createClient(more_args=["-A", self.cacert])
self.assert_(connectClient(self.client))
def createClient(self, more_args=None):
return createClient(self.login, self.password, more_args=more_args)
def testInvalidCert(self):
cacert = config.get("test_cert", "invalid_cacert")
self.client = createClient(more_args=["-A", cacert])
self.assert_(not connectClient(self.client))
def testInvalidCert(self):
cacert = config.get("test_cert", "invalid_cacert")
self.client = createClient(more_args=["-A", cacert])
self.assert_(not connectClient(self.client))
def createClient(self, more_args=None):
return createClient(self.login, self.password, more_args=more_args)
