Example 56 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project athenz by yahoo.
the class ZTSUtilsTest method testValidateCertReqDNSNamesSubdomain.
@Test
public void testValidateCertReqDNSNamesSubdomain() throws IOException {
Path path = Paths.get("src/test/resources/subdomain.csr");
String csr = new String(Files.readAllBytes(path));
PKCS10CertificationRequest certReq = Crypto.getPKCS10CertRequest(csr);
boolean result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz.domain", "production");
assertTrue(result);
}
Also used :
Path(java.nio.file.Path)
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
Test(org.testng.annotations.Test)
Example 57 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project athenz by yahoo.
the class ZTSUtilsTest method testVerifyCertificateRequest.
@Test
public void testVerifyCertificateRequest() throws IOException {
Path path = Paths.get("src/test/resources/athenz.instanceid.csr");
String csr = new String(Files.readAllBytes(path));
PKCS10CertificationRequest certReq = Crypto.getPKCS10CertRequest(csr);
boolean result = ZTSUtils.verifyCertificateRequest(certReq, "athenz", "production");
assertTrue(result);
result = ZTSUtils.verifyCertificateRequest(certReq, "athenz2", "production");
assertFalse(result);
}
Also used :
Path(java.nio.file.Path)
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
Test(org.testng.annotations.Test)
Example 58 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project athenz by yahoo.
the class ZTSUtilsTest method testValidateCertReqCommonNameException.
@Test
public void testValidateCertReqCommonNameException() {
PKCS10CertificationRequest certReq = Mockito.mock(PKCS10CertificationRequest.class);
Mockito.when(certReq.getSubject()).thenThrow(new CryptoException());
assertFalse(ZTSUtils.validateCertReqCommonName(certReq, "athenz.syncer"));
}
Also used :
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
CryptoException(com.yahoo.athenz.auth.util.CryptoException)
Test(org.testng.annotations.Test)
Example 59 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project athenz by yahoo.
the class ZTSUtilsTest method testValidateCertReqDNSNames.
@Test
public void testValidateCertReqDNSNames() throws IOException {
Path path = Paths.get("src/test/resources/athenz.instanceid.csr");
String csr = new String(Files.readAllBytes(path));
PKCS10CertificationRequest certReq = Crypto.getPKCS10CertRequest(csr);
boolean result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz", "production");
assertTrue(result);
result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz2", "production");
assertFalse(result);
result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz2", "productio2");
assertFalse(result);
}
Also used :
Path(java.nio.file.Path)
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
Test(org.testng.annotations.Test)
Example 60 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project athenz by yahoo.
the class ZTSUtilsTest method testValidateCertReqDNSNamesUnknown.
@Test
public void testValidateCertReqDNSNamesUnknown() throws IOException {
Path path = Paths.get("src/test/resources/invalid_dns.csr");
String csr = new String(Files.readAllBytes(path));
// includes www.athenz.io as dns name so it should be rejected
PKCS10CertificationRequest certReq = Crypto.getPKCS10CertRequest(csr);
boolean result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz", "production");
assertFalse(result);
result = ZTSUtils.validateCertReqDNSNames(certReq, "athenz", "production");
assertFalse(result);
}
Also used :
Path(java.nio.file.Path)
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
Test(org.testng.annotations.Test)
Aggregations
PKCS10CertificationRequest (org.bouncycastle.pkcs.PKCS10CertificationRequest)78
Test (org.testng.annotations.Test)39
Path (java.nio.file.Path)34
DERIA5String (org.bouncycastle.asn1.DERIA5String)19
X509Certificate (java.security.cert.X509Certificate)17
IOException (java.io.IOException)14
X500Name (org.bouncycastle.asn1.x500.X500Name)13
PrivateKey (java.security.PrivateKey)12
JcaContentSignerBuilder (org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)10
JcaPKCS10CertificationRequestBuilder (org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequestBuilder)10
KeyPair (java.security.KeyPair)9
KeyPairGenerator (java.security.KeyPairGenerator)8
X500Principal (javax.security.auth.x500.X500Principal)8
OperatorCreationException (org.bouncycastle.operator.OperatorCreationException)8
File (java.io.File)7
BouncyCastleProvider (org.bouncycastle.jce.provider.BouncyCastleProvider)7
ContentSigner (org.bouncycastle.operator.ContentSigner)7
JcaPKCS10CertificationRequest (org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequest)7
PemObject (org.bouncycastle.util.io.pem.PemObject)6
CryptoException (org.kse.crypto.CryptoException)6
