def _get_repository_protection_utils(): """ Instantiate our repository protection utilities with the config file. :return: A 2-tuple of repo_cert_utils and protected_repo_utils :rtype: tuple """ repo_auth_config = SafeConfigParser() repo_auth_config.read(constants.REPO_AUTH_CONFIG_FILE) repo_cert_utils = RepoCertUtils(repo_auth_config) protected_repo_utils = ProtectedRepoUtils(repo_auth_config) return repo_cert_utils, protected_repo_utils
def test_basic_validate(self): repo_cert_utils = RepoCertUtils(config=self.config) cert_pem = E_FULL ca_pem = VALID_CA status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem) self.assertTrue(status) status = self.simple_m2crypto_verify(cert_pem, ca_pem) self.assertTrue(status) cert_pem = E_FULL ca_pem = OTHER_CA status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem) self.assertFalse(status) status = self.simple_m2crypto_verify(cert_pem, ca_pem) self.assertFalse(status) cert_pem = OTHER_CERT ca_pem = VALID_CA status = repo_cert_utils.validate_certificate_pem(cert_pem, ca_pem) self.assertFalse(status) status = self.simple_m2crypto_verify(cert_pem, ca_pem) self.assertFalse(status)
def __init__(self, config): self.config = config self.repo_cert_utils = RepoCertUtils(config) self.protected_repo_utils = ProtectedRepoUtils(config) self.repo_url_prefixes = self._get_repo_url_prefixes_from_config( config)
def pulp_verify(ca_cert, client_cert, crl): repo_utils = RepoCertUtils(config.config) return repo_utils.validate_certificate(client_cert, ca_cert)