def testClientIgnoreFQDNCheck(self): self.startNuauth() client1 = createClient(more_args=["-H","nuauth.inl.fr","-A", self.cacert]) client2 = createClient(more_args=["-H","localhost","-A", self.cacert,"-N"]) self.assert_(connectClient(client1)) self.assert_(connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testClientIgnoreFQDNCheck(self): self.startNuauth() client1 = createClient( more_args=["-H", "nuauth.inl.fr", "-A", self.cacert]) client2 = createClient( more_args=["-H", "localhost", "-A", self.cacert, "-N"]) self.assert_(connectClient(client1)) self.assert_(connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testNuauthExpired(self): args = dict() args["nuauth_tls_key"] = '"%s"' % abspath(config.get("test_cert", "user_expired_key")) args["nuauth_tls_cert"] = '"%s"' % abspath(config.get("test_cert", "user_expired_cert")) self.startNuauth(args) self.client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert]) self.assert_(not connectClient(self.client)) self.client.stop() self.client = createClient(more_args=["-H","nuauth.inl.fr","-Q"]) self.assert_(not connectClient(self.client)) self.client.stop() self.stopNuauth()
def testClientInvalidCA(self): self.startNuauth() cacert = config.get("test_cert", "invalid_cacert") client = createClient(more_args=["-A", cacert]) self.assert_(not connectClient(client)) client.stop() self.stopNuauth()
def testNuauthRevoked(self): args = dict() args["nuauth_tls_key"] = '"%s"' % abspath(config.get("test_cert", "user_revoked_key")) args["nuauth_tls_cert"] = '"%s"' % abspath(config.get("test_cert", "user_revoked_cert")) self.startNuauth(args) self.client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert,"-R",abspath("./pki/crl.pem")]) self.assert_(not connectClient(self.client)) self.client.stop() self.stopNuauth()
def testClientInvalidCRL(self): args = dict() args["nuauth_tls_request_cert"] = "2" self.startNuauth(args) invalid_crl = abspath(config.get("test_cert", "invalid_crl")) client = createClient(more_args=["-H","nuauth.inl.fr","-A",self.cacert,"-R",invalid_crl]) self.assert_(not connectClient(client)) client.stop() self.stopNuauth()
def testClientValidCert(self): args = dict() args["nuauth_tls_request_cert"] = "2" self.startNuauth(args) tls_cert = abspath(config.get("test_cert", "user_cert")) tls_key = abspath(config.get("test_cert", "user_key")) client = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key]) self.assert_(connectClient(client)) client.stop() self.stopNuauth()
def testClientValidCert(self): args = dict() args["nuauth_tls_request_cert"] = "2" self.startNuauth(args) tls_cert = abspath(config.get("test_cert", "user_cert")) tls_key = abspath(config.get("test_cert", "user_key")) client = createClient( more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key]) self.assert_(connectClient(client)) client.stop() self.stopNuauth()
def testClientInvalidCRL(self): args = dict() args["nuauth_tls_request_cert"] = "2" self.startNuauth(args) invalid_crl = abspath(config.get("test_cert", "invalid_crl")) client = createClient(more_args=[ "-H", "nuauth.inl.fr", "-A", self.cacert, "-R", invalid_crl ]) self.assert_(not connectClient(client)) client.stop() self.stopNuauth()
def testClientExpired(self): self.startNuauth() client1 = createClientWithCerts() self.assert_(connectClient(client1)) tls_cert = abspath(config.get("test_cert", "user_expired_cert")) tls_key = abspath(config.get("test_cert", "user_expired_key")) client2 = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key]) self.assert_(not connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testClientExpired(self): self.startNuauth() client1 = createClientWithCerts() self.assert_(connectClient(client1)) tls_cert = abspath(config.get("test_cert", "user_expired_cert")) tls_key = abspath(config.get("test_cert", "user_expired_key")) client2 = createClient( more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key]) self.assert_(not connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testClientRevoked(self): args = dict() args["nuauth_tls_request_cert"] = "1" args["nuauth_tls_crl"] = '"%s"' % abspath(config.get("test_cert", "crl")) self.startNuauth(args) client1 = createClientWithCerts() self.assert_(connectClient(client1)) tls_cert = abspath(config.get("test_cert", "user_revoked_cert")) tls_key = abspath(config.get("test_cert", "user_revoked_key")) client2 = createClient(more_args=["-A", self.cacert,"-C",tls_cert,"-K",tls_key]) self.assert_(not connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testClientRevoked(self): args = dict() args["nuauth_tls_request_cert"] = "1" args["nuauth_tls_crl"] = '"%s"' % abspath( config.get("test_cert", "crl")) self.startNuauth(args) client1 = createClientWithCerts() self.assert_(connectClient(client1)) tls_cert = abspath(config.get("test_cert", "user_revoked_cert")) tls_key = abspath(config.get("test_cert", "user_revoked_key")) client2 = createClient( more_args=["-A", self.cacert, "-C", tls_cert, "-K", tls_key]) self.assert_(not connectClient(client2)) client1.stop() client2.stop() self.stopNuauth()
def testValidCert(self): self.client = createClient(more_args=["-A", self.cacert]) self.assert_(connectClient(self.client))
def testClientValidCA(self): self.startNuauth() client = createClient(more_args=["-A", self.cacert]) self.assert_(connectClient(client)) client.stop() self.stopNuauth()
def createClient(self, more_args=None): return createClient(self.login, self.password, more_args=more_args)
def testInvalidCert(self): cacert = config.get("test_cert", "invalid_cacert") self.client = createClient(more_args=["-A", cacert]) self.assert_(not connectClient(self.client))