def setUp(self):
CreateCaChain()
self.rca = CertificateAuthority.objects.get(pk=1)
self.ica = CertificateAuthority.objects.get(pk=2)
self.eca = CertificateAuthority.objects.get(pk=3)
openssl.refresh_pki_metadata([self.rca, self.ica, self.eca])
Certificate(common_name='Server Edge Certificate', name='Server_Edge_Certificate', description="unit test server edge certificate", country='DE', \
state='Bavaria', locality='Munich', organization='Bozo Clown Inc.', OU='IT', email='*****@*****.**', valid_days=365, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, pkcs12_encoded=False, pkcs12_passphrase=None, parent=self.eca, parent_passphrase="1234567890", passphrase=None, \
extension=x509Extension.objects.get(pk=3), subjaltname="IP:1.2.3.4, DNS:www1.company.com").save()
Certificate(common_name='User Edge Certificate', name='User_Edge_Certificate', description="unit test user edge certificate", country='DE', \
state='Bavaria', locality='Munich', organization='Bozo Clown Inc.', OU='IT', email='*****@*****.**', valid_days=365, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, pkcs12_encoded=False, pkcs12_passphrase=None, parent=self.eca, parent_passphrase="1234567890", passphrase=None, \
extension=x509Extension.objects.get(pk=4), crl_dpoints="URI:https://ca.company.com/ca.crl").save()
self.srv = Certificate.objects.get(pk=1)
self.usr = Certificate.objects.get(pk=2)
self.srv_openssl = openssl.Openssl(self.srv)
self.usr_openssl = openssl.Openssl(self.usr)
def CreateCaChain():
"""Create a 3 level CA chain"""
## Reset PKI_DIR
openssl.refresh_pki_metadata([])
## Root CA object
CertificateAuthority(common_name='Root CA', name='Root_CA', description="unit test", country='DE', state='Bavaria', \
locality='Munich', organization='Bozo Clown Inc.', OU='IT', email='*****@*****.**', valid_days=1000, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, parent=None, passphrase='1234567890', extension=x509Extension.objects.get(pk=1)).save()
rca = CertificateAuthority.objects.get(pk=1)
## Intermediate CA object
CertificateAuthority(common_name='Intermediate CA', name='Intermediate_CA', description="unit test IM CA", country='DE', \
state='Bavaria', locality='Berlin', organization='Bozo Clown Inc.', OU=None, email='*****@*****.**', valid_days=365, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, parent=rca, parent_passphrase="1234567890", passphrase='1234567890', \
extension=x509Extension.objects.get(pk=1)).save()
ica = CertificateAuthority.objects.get(pk=2)
## Edge CA object (RootCA->IntermediateCA->SubCA)
CertificateAuthority(common_name='Edge CA', name='Edge_CA', description="unit test edge CA", country='DE', state='Bavaria', \
locality='Munich', organization='Bozo Clown Inc.', OU='IT', email='*****@*****.**', valid_days=365, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, parent=ica, parent_passphrase="1234567890", passphrase='1234567890', \
extension=x509Extension.objects.get(pk=2)).save()
def setUp(self):
self.ca = CertificateAuthority(common_name='Root CA', name='Root_CA', description="unit test", country='DE', state='Bavaria', \
locality='Munich', organization='Bozo Clown Inc.', OU='IT', email='*****@*****.**', valid_days=1000, \
key_length=1024, expiry_date='', created='', revoked=None, active=None, serial=None, ca_chain=None, \
der_encoded=False, parent=None, passphrase='1234567890', extension=x509Extension.objects.get(pk=1))
self.ca_ssl = openssl.Openssl(self.ca)
openssl.refresh_pki_metadata([self.ca,])
def setUp(self):
'''Create a self-signed RootCA'''
CreateCaChain()
self.rca = CertificateAuthority.objects.get(pk=1)
self.ica = CertificateAuthority.objects.get(pk=2)
self.eca = CertificateAuthority.objects.get(pk=3)
self.rca_openssl = openssl.Openssl(self.rca)
self.ica_openssl = openssl.Openssl(self.ica)
self.eca_openssl = openssl.Openssl(self.eca)
openssl.refresh_pki_metadata([self.rca, self.ica, self.eca])
def setUp(self):
openssl.refresh_pki_metadata([])
self.post_data_rca = {'action':'create', 'common_name':'Root CA', 'name':'Root_CA', 'description':"unit test", \
'country':'DE', 'state':'Bavaria', 'locality':'Munich', 'organization':'Bozo Clown Inc.', \
'OU':'IT', 'email':'*****@*****.**', 'valid_days':1000, 'key_length':1024, 'der_encoded':False, \
'parent':'', 'passphrase':'1234567890', 'passphrase_verify':'1234567890', 'policy':'policy_anything', \
'extension':x509Extension.objects.get(name="v3_root_or_intermediate_ca").pk,}
self.post_data_ica = {'action':'create', 'common_name':'Intermediate CA', 'name':'Intermediate_CA', 'description':"unit test", \
'country':'DE', 'state':'Bavaria', 'locality':'Munich', 'organization':'Bozo Clown Inc.', \
'OU':'IT', 'email':'*****@*****.**', 'valid_days':1000, 'key_length':1024, 'der_encoded':False, \
'parent':'1', 'passphrase':'1234567890', 'passphrase_verify':'1234567890', 'parent_passphrase':'1234567890', \
'policy':'policy_anything', 'extension':x509Extension.objects.get(name="v3_root_or_intermediate_ca").pk,}
self.post_data_eca = {'action':'create', 'common_name':'Edge CA', 'name':'Edge', 'description':"unit test", \
'country':'DE', 'state':'Bavaria', 'locality':'Munich', 'organization':'Bozo Clown Inc.', \
'OU':'IT', 'email':'*****@*****.**', 'valid_days':1000, 'key_length':1024, 'der_encoded':False, \
'parent':'2', 'passphrase':'1234567890', 'passphrase_verify':'1234567890', 'parent_passphrase':'1234567890', \
'policy':'policy_anything', 'extension':x509Extension.objects.get(name="v3_edge_ca").pk,}
self.post_data_srv = {'action':'create', 'common_name':'Server cert', 'name':'Server_cert', 'description':"unit test", \
'country':'DE', 'state':'Bavaria', 'locality':'Munich', 'organization':'Bozo Clown Inc.', \
'OU':'IT', 'email':'*****@*****.**', 'valid_days':1000, 'key_length':1024, 'der_encoded':False, \
'parent':'3', 'passphrase':'1234567890', 'passphrase_verify':'1234567890', 'parent_passphrase':'1234567890', \
'extension':x509Extension.objects.get(name="v3_edge_cert_server").pk,}
self.post_data_usr = {'action':'create', 'common_name':'User cert', 'name':'User_cert', 'description':"unit test", \
'country':'DE', 'state':'Bavaria', 'locality':'Munich', 'organization':'Bozo Clown Inc.', \
'OU':'IT', 'email':'*****@*****.**', 'valid_days':1000, 'key_length':1024, 'der_encoded':False, \
'parent':'3', 'passphrase':'1234567890', 'passphrase_verify':'1234567890', 'parent_passphrase':'1234567890', \
'extension':x509Extension.objects.get(name="v3_edge_cert_client").pk,}
self.c = Client()
self.assertTrue(self.c.login(username="******", password="******"))
r = self.c.post('/admin/pki/certificateauthority/add/', self.post_data_rca, follow=True)
self.assertContains(r, 'was added successfully')
self.failUnlessEqual(r.status_code, 200)
r = self.c.post('/admin/pki/certificateauthority/add/', self.post_data_ica, follow=True)
self.assertContains(r, 'was added successfully')
self.failUnlessEqual(r.status_code, 200)
r = self.c.post('/admin/pki/certificateauthority/add/', self.post_data_eca, follow=True)
self.assertContains(r, 'was added successfully')
self.failUnlessEqual(r.status_code, 200)
r = self.c.post('/admin/pki/certificate/add/', self.post_data_srv, follow=True)
self.assertContains(r, 'was added successfully')
self.failUnlessEqual(r.status_code, 200)
def tearDown(self):
self.c.logout()
openssl.refresh_pki_metadata([])
def tearDown(self):
openssl.refresh_pki_metadata([])
