def test_csr_disallowed_cn(client, logged_in_user): """Domain name CN is disallowed via LEMUR_WHITELISTED_DOMAINS.""" from lemur.common import validators request, pkey = create_csr(common_name="evilhacker.org", owner="*****@*****.**", key_type="RSA2048") with pytest.raises(ValidationError) as err: validators.csr(request) assert str(err.value).startswith( "Domain evilhacker.org does not match whitelisted domain patterns")
def test_csr_disallowed_cn(client, logged_in_user): """Domain name CN is disallowed via LEMUR_WHITELISTED_DOMAINS.""" from lemur.common import validators request, pkey = create_csr( common_name='evilhacker.org', owner='*****@*****.**', key_type='RSA2048', ) with pytest.raises(ValidationError) as err: validators.csr(request) assert str(err.value).startswith('Domain evilhacker.org does not match whitelisted domain patterns')
def test_csr_disallowed_san(client, logged_in_user): """SAN name is disallowed by LEMUR_WHITELISTED_DOMAINS.""" from lemur.common import validators request, pkey = create_csr( common_name="CN with spaces isn't a domain and is thus allowed", owner='*****@*****.**', key_type='RSA2048', extensions={'sub_alt_names': {'names': x509.SubjectAlternativeName([x509.DNSName('evilhacker.org')])}} ) with pytest.raises(ValidationError) as err: validators.csr(request) assert str(err.value).startswith('Domain evilhacker.org does not match whitelisted domain patterns')
def test_csr_disallowed_san(client, logged_in_user): """SAN name is disallowed by LEMUR_WHITELISTED_DOMAINS.""" from lemur.common import validators request, pkey = create_csr( common_name="CN with spaces isn't a domain and is thus allowed", owner='*****@*****.**', key_type='RSA2048', extensions={'sub_alt_names': {'names': x509.SubjectAlternativeName([x509.DNSName('evilhacker.org')])}} ) with pytest.raises(ValidationError) as err: validators.csr(request) assert str(err.value).startswith('Domain evilhacker.org does not match whitelisted domain patterns')
def test_csr_disallowed_san(client, logged_in_user): """SAN name is disallowed by LEMUR_ALLOWED_DOMAINS.""" from lemur.common import validators request, pkey = create_csr( common_name="CN with spaces isn't a domain and is thus allowed", owner="*****@*****.**", key_type="RSA2048", extensions={ "sub_alt_names": { "names": x509.SubjectAlternativeName([x509.DNSName("evilhacker.org")]) } }, ) with pytest.raises(ValidationError) as err: validators.csr(request) assert str(err.value).startswith( "Domain evilhacker.org does not match allowed domain patterns" )