source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/AttAuthority/siteA-aa.crt @ 3135

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/python/ndg.security.test/ndg/security/test/AttAuthority/siteA-aa.crt@3135
Revision 3135, 2.5 KB checked in by pjkersha, 13 years ago (diff)

Working Attribute Authority unit tests with WS-Security multiple CAs support. This will be needed for deployment of MyProxy? with Simple CA at partner sites.

Added CA cert and certs and keys for a *TEST* CA for use with unit tests. This CA is NOT for production use.

python/ndg.security.server/setup.py: include .crt certs in conf/ package data

python/ndg.security.server/ndg/security/server/AttAuthority/init.py: added sslCACertDir param. It enables M2Crypto SSL server side to pick up multiple CA certs for a dir.

python/ndg.security.server/ndg/security/server/conf/certs/ca/init.py: make new ca/ dir a package so that it's exported with egg package data.

python/ndg.security.server/ndg/security/server/conf/sessionMgr.tac,
python/ndg.security.server/ndg/security/server/conf/attAuthority.tac:

  • alter WS-Security SOAP handler init to accept multiple CA certs.
  • load multiple CA certs from sslCACertDir key of SessionMgr/AttAuthority? instance

python/ndg.security.server/ndg/security/server/conf/attAuthorityProperties.xml,
python/ndg.security.test/ndg/security/test/AttAuthority/siteBAttAuthorityProperties.xml,
python/ndg.security.test/ndg/security/test/sessionMgrClient/sessionMgrProperties.xml

  • added new sslCACertDir elem
  • fixed caCertFile - only single elem required

python/ndg.security.test/setup.py: include TEST CA and certs and keys issued from it for use in unit tests. These are fro test only.

python/ndg.security.test/ndg/security/test/AttAuthority/ca/ndg-test-ca.crt,
python/ndg.security.test/ndg/security/test/AttAuthority/siteA-aa.key,
python/ndg.security.test/ndg/security/test/AttAuthority/siteA-aa.crt: test CA certs and key.

python/ndg.security.test/ndg/security/test/AttAuthority/init.py: fix description

python/ndg.security.test/ndg/security/test/AttAuthority/AttAuthorityClientTest.py: ditto + added NDGSEC_INT_DEBUG env var option

python/ndg.security.test/ndg/security/test/AttAuthority/attAuthorityClientTest.cfg: fixed for new location of CA cert in ca/ sub-dir

python/ndg.security.test/ndg/security/test/sessionMgrClient/ca/init.py,
python/ndg.security.test/ndg/security/test/sessionMgr/ca/init.py,
python/ndg.security.test/ndg/security/test/AttAuthority/ca/init.py: ensure ca/ dir gets included in egg package data

Line 
1Certificate:
2    Data:
3        Version: 3 (0x2)
4        Serial Number: 54 (0x36)
5        Signature Algorithm: md5WithRSAEncryption
6        Issuer: O=NDG, OU=BADC, CN=Test CA
7        Validity
8            Not Before: Dec 12 13:52:16 2007 GMT
9            Not After : Dec 11 13:52:16 2008 GMT
10        Subject: O=NDG Security Test, OU=Site A, CN=AttributeAuthority
11        Subject Public Key Info:
12            Public Key Algorithm: rsaEncryption
13            RSA Public Key: (1024 bit)
14                Modulus (1024 bit):
15                    00:a7:b5:ff:a1:53:11:4a:5f:1f:ca:63:72:d7:cb:
16                    f4:58:73:fc:aa:85:f2:0b:33:c8:7d:e5:cd:78:9f:
17                    f5:9d:4a:a8:7c:ac:ad:d5:c6:45:2e:e6:0b:a3:94:
18                    48:02:1d:a7:c8:d8:08:cd:64:96:6a:25:f2:86:ed:
19                    9b:9c:62:64:5c:9d:76:c2:5f:5a:8f:20:62:9a:f9:
20                    39:65:6c:85:9d:b1:ae:72:fc:81:7f:0e:8d:80:a0:
21                    f3:09:9d:33:49:d9:4d:48:05:f3:d0:5d:b3:b9:49:
22                    de:3d:3a:f7:d3:8b:80:a5:76:4f:3d:f3:bd:91:22:
23                    ec:cf:98:b2:03:70:5c:9d:81
24                Exponent: 65537 (0x10001)
25        X509v3 extensions:
26            Netscape Cert Type:
27                SSL Client, SSL Server, S/MIME, Object Signing
28    Signature Algorithm: md5WithRSAEncryption
29        9e:3d:25:d5:5c:13:b8:ea:8f:f5:8a:79:fc:3d:ab:5f:51:3b:
30        48:78:eb:a5:3e:34:3f:48:ee:8c:ad:4a:4e:b6:1d:f7:c1:0b:
31        21:de:46:ea:d4:76:0e:03:95:da:47:ec:4a:f4:10:b8:74:5d:
32        2c:7d:4b:19:a8:c0:a8:c4:ac:81:5e:3a:a4:64:e3:c9:2b:d6:
33        03:77:cc:bb:6a:99:85:90:fe:f8:da:2f:29:37:ab:ac:a7:b3:
34        5f:99:2a:52:54:3d:a7:cd:1b:a7:2f:28:e3:e0:91:51:a4:37:
35        51:d9:32:ac:3d:cc:17:73:e6:be:f3:4c:d9:77:8e:f1:25:85:
36        ed:7c
37-----BEGIN CERTIFICATE-----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49-----END CERTIFICATE-----
Note: See TracBrowser for help on using the repository browser.