def setUp(self): self.setup_zookeeper() zoo_host = ":".join(str(x) for x in self.client.hosts[0]) ezConfig = EzConfiguration().getProperties() ezConfig[ EzBakePropertyConstants.ZOOKEEPER_CONNECTION_STRING] = zoo_host ezConfig[caservice.EzCAHandler.CLIENT_CERTS] = "client" ezConfig[caservice.EzCAHandler.CLIENT_CERT_O] = "tmpcerts" # make direcotry for client certs try: os.mkdir('tmpcerts') os.mkdir('tmpcerts/server') os.mkdir('tmpcerts/client') except OSError as e: if e.errno != errno.EEXIST: raise e #caservice.setup_logging(True, ezConfig) # Start the server self.serverProcess = Process(target=caservice.ca_server, args=(ezConfig, ), kwargs={ 'port': 5049, 'host': 'localhost', 'verify_pattern': r"client", "ssldir": "tmpcerts/server" }) self.serverProcess.start() # Starting the server takes a while time.sleep(5) # Write out the client certs ca.EzbakeCA.setup(FilePersist(caservice.EzCAHandler.TABLE_NAME)) cert.Cert.setup(FilePersist(caservice.EzCAHandler.TABLE_NAME)) try: ca_certs = ca.EzbakeCA.get_named("ezbakeca") except KeyError: ca_certs = ca.EzbakeCA(name="ezbakeca") ca_certs.save() client_certs = cert.Cert.get_named("client") with open(os.path.join("tmpcerts/client", "ezbakeca.crt"), 'w') as f: f.write(ca_certs.cert_string()) with open(os.path.join("tmpcerts/client", "application.crt"), 'w') as f: f.write(client_certs.cert_string()) with open(os.path.join("tmpcerts/client", "application.priv"), 'w') as f: f.write(client_certs.pkey_string())
def get_client(self, port): ezConfig = EzConfiguration().getProperties() ezConfig[EzBakePropertyConstants. EZBAKE_CERTIFICATES_DIRECTORY] = "tmpcerts/client" host = 'localhost' transport = EzSSLSocket.TSSLSocket(ezConfig, host=host, port=port, validate=True, verify_pattern=r"Ez.*") transport = TTransport.TBufferedTransport(transport) protocol = TBinaryProtocol.TBinaryProtocol(transport) transport.open() return ezbake.ezca.EzCA.Client(protocol)
def __init__(self, ca_name, ezconfig=EzConfiguration().getProperties()): mode = ezconfig.get(EzCAHandler.PERSIST_MODE, "file") if mode == "file": store = FilePersist(EzCAHandler.TABLE_NAME) elif mode == "accumulo": raise NotImplementedError("accumulo persistance not supported by EzCA yet") else: store = MemoryPersist() EzbakeCA.setup(store=store) Cert.setup(store=store) self.store = store try: logger.info("Reading CA certificate {}".format(ca_name)) self.ca = EzbakeCA.get_named(ca_name) except KeyError: self.ca = EzbakeCA(name=ca_name) self.ca.save()
def load_configuration(dir=None): loaders = [DirectoryConfigurationLoader()] if dir: loaders.append(DirectoryConfigurationLoader(dir)) return EzConfiguration(*loaders).getProperties()
def test_main(self): ezconf = EzConfiguration() ezconf.set(ApplicationConfiguration.CERTIFICATES_DIRECTORY_KEY, "test/pki/server") ezbakeca.caservice.main(ezconfig=ezconf)