Example 6 with ParameterizedValidationException
use of org.cloudfoundry.credhub.exceptions.ParameterizedValidationException in project credhub by cloudfoundry-incubator.
the class PermissionedCertificateService method updateTransitionalVersion.
public List<CredentialVersion> updateTransitionalVersion(UUID certificateUuid, UUID newTransitionalVersionUuid, List<EventAuditRecordParameters> auditRecordParameters) {
EventAuditRecordParameters eventAuditRecordParameters = new EventAuditRecordParameters(AuditingOperationCode.CREDENTIAL_UPDATE, null);
auditRecordParameters.add(eventAuditRecordParameters);
Credential credential = findCertificateCredential(certificateUuid);
String name = credential.getName();
eventAuditRecordParameters.setCredentialName(name);
if (!permissionCheckingService.hasPermission(userContextHolder.getUserContext().getActor(), name, PermissionOperation.WRITE)) {
throw new EntryNotFoundException("error.credential.invalid_access");
}
certificateVersionDataService.unsetTransitionalVerison(certificateUuid);
if (newTransitionalVersionUuid != null) {
CertificateCredentialVersion version = certificateVersionDataService.findVersion(newTransitionalVersionUuid);
if (versionDoesNotBelongToCertificate(credential, version)) {
throw new ParameterizedValidationException("error.credential.mismatched_credential_and_version");
}
certificateVersionDataService.setTransitionalVersion(newTransitionalVersionUuid);
}
return certificateVersionDataService.findActiveWithTransitional(name);
}
Also used :
Credential(org.cloudfoundry.credhub.entity.Credential)
EntryNotFoundException(org.cloudfoundry.credhub.exceptions.EntryNotFoundException)
EventAuditRecordParameters(org.cloudfoundry.credhub.audit.EventAuditRecordParameters)
ParameterizedValidationException(org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)
CertificateCredentialVersion(org.cloudfoundry.credhub.domain.CertificateCredentialVersion)
Example 7 with ParameterizedValidationException
use of org.cloudfoundry.credhub.exceptions.ParameterizedValidationException in project credhub by cloudfoundry-incubator.
the class CertificateCredentialRegeneratable method createGenerateRequest.
@Override
public BaseCredentialGenerateRequest createGenerateRequest(CredentialVersion credentialVersion, List<EventAuditRecordParameters> auditRecordParameters) {
CertificateCredentialVersion certificateCredential = (CertificateCredentialVersion) credentialVersion;
CertificateReader reader = certificateCredential.getParsedCertificate();
if (!reader.isValid() || (isEmpty(certificateCredential.getCaName()) && !reader.isSelfSigned())) {
auditRecordParameters.add(new EventAuditRecordParameters(CREDENTIAL_UPDATE, credentialVersion.getName()));
throw new ParameterizedValidationException("error.cannot_regenerate_non_generated_certificate");
}
CertificateGenerationParameters certificateGenerationParameters = new CertificateGenerationParameters(reader, certificateCredential.getCaName());
CertificateGenerateRequest generateRequest = new CertificateGenerateRequest();
generateRequest.setName(certificateCredential.getName());
generateRequest.setType(certificateCredential.getCredentialType());
generateRequest.setCertificateGenerationParameters(certificateGenerationParameters);
generateRequest.setOverwrite(true);
return generateRequest;
}
Also used :
CertificateGenerateRequest(org.cloudfoundry.credhub.request.CertificateGenerateRequest)
CertificateGenerationParameters(org.cloudfoundry.credhub.domain.CertificateGenerationParameters)
EventAuditRecordParameters(org.cloudfoundry.credhub.audit.EventAuditRecordParameters)
ParameterizedValidationException(org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)
CertificateCredentialVersion(org.cloudfoundry.credhub.domain.CertificateCredentialVersion)
CertificateReader(org.cloudfoundry.credhub.util.CertificateReader)
Example 8 with ParameterizedValidationException
use of org.cloudfoundry.credhub.exceptions.ParameterizedValidationException in project credhub by cloudfoundry-incubator.
the class PasswordCredentialRegeneratable method createGenerateRequest.
@Override
public BaseCredentialGenerateRequest createGenerateRequest(CredentialVersion credentialVersion, List<EventAuditRecordParameters> auditRecordParameters) {
PasswordCredentialVersion passwordCredential = (PasswordCredentialVersion) credentialVersion;
PasswordGenerateRequest generateRequest = new PasswordGenerateRequest();
generateRequest.setName(passwordCredential.getName());
generateRequest.setType(passwordCredential.getCredentialType());
generateRequest.setOverwrite(true);
StringGenerationParameters generationParameters;
generationParameters = passwordCredential.getGenerationParameters();
if (generationParameters == null) {
auditRecordParameters.add(new EventAuditRecordParameters(CREDENTIAL_UPDATE, credentialVersion.getName()));
throw new ParameterizedValidationException("error.cannot_regenerate_non_generated_password");
}
generateRequest.setGenerationParameters(generationParameters);
return generateRequest;
}
Also used :
PasswordGenerateRequest(org.cloudfoundry.credhub.request.PasswordGenerateRequest)
EventAuditRecordParameters(org.cloudfoundry.credhub.audit.EventAuditRecordParameters)
PasswordCredentialVersion(org.cloudfoundry.credhub.domain.PasswordCredentialVersion)
ParameterizedValidationException(org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)
StringGenerationParameters(org.cloudfoundry.credhub.request.StringGenerationParameters)
Example 9 with ParameterizedValidationException
use of org.cloudfoundry.credhub.exceptions.ParameterizedValidationException in project credhub by cloudfoundry-incubator.
the class CredentialsControllerTypeSpecificGenerateTest method generatingACredential_validatesTheRequestBody.
@Test
public void generatingACredential_validatesTheRequestBody() throws Exception {
MockHttpServletRequestBuilder request = createGenerateNewCredentialRequest();
DefaultCredentialGenerateRequest requestBody = mock(DefaultCredentialGenerateRequest.class);
Mockito.doThrow(new ParameterizedValidationException("error.bad_request")).when(requestBody).validate();
doReturn(requestBody).when(objectMapper).readValue(anyString(), any(Class.class));
mockMvc.perform(request).andExpect(status().isBadRequest()).andExpect(content().json("{\"error\":\"The request could not be fulfilled because the request path or body did not meet expectation. Please check the documentation for required formatting and retry your request.\"}"));
}
Also used :
DefaultCredentialGenerateRequest(org.cloudfoundry.credhub.request.DefaultCredentialGenerateRequest)
MockHttpServletRequestBuilder(org.springframework.test.web.servlet.request.MockHttpServletRequestBuilder)
ParameterizedValidationException(org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)
SpringBootTest(org.springframework.boot.test.context.SpringBootTest)
Test(org.junit.Test)
Example 10 with ParameterizedValidationException
use of org.cloudfoundry.credhub.exceptions.ParameterizedValidationException in project credhub by cloudfoundry-incubator.
the class CertificateGeneratorTest method whenTheCADoesNotHaveAPrivateKey_itThrowsAnException.
@Test
public void whenTheCADoesNotHaveAPrivateKey_itThrowsAnException() throws Exception {
CertificateGenerationRequestParameters parameters = new CertificateGenerationRequestParameters();
parameters.setCaName("/ca-without-private-key");
parameters.setKeyLength(2048);
parameters.setSelfSigned(false);
CertificateCredentialValue caWithoutPrivateKey = mock(CertificateCredentialValue.class);
when(certificateAuthorityService.findActiveVersion("/ca-without-private-key")).thenReturn(caWithoutPrivateKey);
when(caWithoutPrivateKey.getPrivateKey()).thenReturn(null);
when(keyGenerator.generateKeyPair(anyInt())).thenReturn(rootCaKeyPair);
try {
subject.generateCredential(new CertificateGenerationParameters(parameters));
fail("Should throw exception");
} catch (ParameterizedValidationException e) {
assertThat(e.getMessage(), equalTo("error.ca_missing_private_key"));
}
}
Also used :
CertificateGenerationParameters(org.cloudfoundry.credhub.domain.CertificateGenerationParameters)
CertificateCredentialValue(org.cloudfoundry.credhub.credential.CertificateCredentialValue)
CertificateGenerationRequestParameters(org.cloudfoundry.credhub.request.CertificateGenerationRequestParameters)
ParameterizedValidationException(org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)
Test(org.junit.Test)
Aggregations
ParameterizedValidationException (org.cloudfoundry.credhub.exceptions.ParameterizedValidationException)17
CertificateCredentialVersion (org.cloudfoundry.credhub.domain.CertificateCredentialVersion)6
Test (org.junit.Test)6
EventAuditRecordParameters (org.cloudfoundry.credhub.audit.EventAuditRecordParameters)5
CertificateCredentialValue (org.cloudfoundry.credhub.credential.CertificateCredentialValue)5
CredentialVersion (org.cloudfoundry.credhub.domain.CredentialVersion)4
EntryNotFoundException (org.cloudfoundry.credhub.exceptions.EntryNotFoundException)4
CertificateReader (org.cloudfoundry.credhub.util.CertificateReader)4
CertificateGenerationParameters (org.cloudfoundry.credhub.domain.CertificateGenerationParameters)3
X509Certificate (java.security.cert.X509Certificate)2
Map (java.util.Map)2
PasswordCredentialVersion (org.cloudfoundry.credhub.domain.PasswordCredentialVersion)2
Credential (org.cloudfoundry.credhub.entity.Credential)2
StringGenerationParameters (org.cloudfoundry.credhub.request.StringGenerationParameters)2
SpringBootTest (org.springframework.boot.test.context.SpringBootTest)2
MockHttpServletRequestBuilder (org.springframework.test.web.servlet.request.MockHttpServletRequestBuilder)2
JavaType (com.fasterxml.jackson.databind.JavaType)1
InputStream (java.io.InputStream)1
Field (java.lang.reflect.Field)1
KeyPair (java.security.KeyPair)1
