def setUp(self):
self.setup_zookeeper()
zoo_host = ":".join(str(x) for x in self.client.hosts[0])
ezConfig = EzConfiguration().getProperties()
ezConfig[
EzBakePropertyConstants.ZOOKEEPER_CONNECTION_STRING] = zoo_host
ezConfig[caservice.EzCAHandler.CLIENT_CERTS] = "client"
ezConfig[caservice.EzCAHandler.CLIENT_CERT_O] = "tmpcerts"
# make direcotry for client certs
try:
os.mkdir('tmpcerts')
os.mkdir('tmpcerts/server')
os.mkdir('tmpcerts/client')
except OSError as e:
if e.errno != errno.EEXIST:
raise e
#caservice.setup_logging(True, ezConfig)
# Start the server
self.serverProcess = Process(target=caservice.ca_server,
args=(ezConfig, ),
kwargs={
'port': 5049,
'host': 'localhost',
'verify_pattern': r"client",
"ssldir": "tmpcerts/server"
})
self.serverProcess.start()
# Starting the server takes a while
time.sleep(5)
# Write out the client certs
ca.EzbakeCA.setup(FilePersist(caservice.EzCAHandler.TABLE_NAME))
cert.Cert.setup(FilePersist(caservice.EzCAHandler.TABLE_NAME))
try:
ca_certs = ca.EzbakeCA.get_named("ezbakeca")
except KeyError:
ca_certs = ca.EzbakeCA(name="ezbakeca")
ca_certs.save()
client_certs = cert.Cert.get_named("client")
with open(os.path.join("tmpcerts/client", "ezbakeca.crt"), 'w') as f:
f.write(ca_certs.cert_string())
with open(os.path.join("tmpcerts/client", "application.crt"),
'w') as f:
f.write(client_certs.cert_string())
with open(os.path.join("tmpcerts/client", "application.priv"),
'w') as f:
f.write(client_certs.pkey_string())
def get_client(self, port):
ezConfig = EzConfiguration().getProperties()
ezConfig[EzBakePropertyConstants.
EZBAKE_CERTIFICATES_DIRECTORY] = "tmpcerts/client"
host = 'localhost'
transport = EzSSLSocket.TSSLSocket(ezConfig,
host=host,
port=port,
validate=True,
verify_pattern=r"Ez.*")
transport = TTransport.TBufferedTransport(transport)
protocol = TBinaryProtocol.TBinaryProtocol(transport)
transport.open()
return ezbake.ezca.EzCA.Client(protocol)
def __init__(self, ca_name, ezconfig=EzConfiguration().getProperties()):
mode = ezconfig.get(EzCAHandler.PERSIST_MODE, "file")
if mode == "file":
store = FilePersist(EzCAHandler.TABLE_NAME)
elif mode == "accumulo":
raise NotImplementedError("accumulo persistance not supported by EzCA yet")
else:
store = MemoryPersist()
EzbakeCA.setup(store=store)
Cert.setup(store=store)
self.store = store
try:
logger.info("Reading CA certificate {}".format(ca_name))
self.ca = EzbakeCA.get_named(ca_name)
except KeyError:
self.ca = EzbakeCA(name=ca_name)
self.ca.save()
def load_configuration(dir=None):
loaders = [DirectoryConfigurationLoader()]
if dir:
loaders.append(DirectoryConfigurationLoader(dir))
return EzConfiguration(*loaders).getProperties()
def test_main(self):
ezconf = EzConfiguration()
ezconf.set(ApplicationConfiguration.CERTIFICATES_DIRECTORY_KEY,
"test/pki/server")
ezbakeca.caservice.main(ezconfig=ezconf)
