Ignore:
Timestamp:
03/10/08 16:43:28 (12 years ago)
Author:
pjkersha
Message:

Major refactoring of CredWallet? and SessionMgr? to allow for non-user based X.509 certificates.

Location:
TI12-security/trunk/python/ndg.security.test/ndg/security/test
Files:
11 added
4 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/AttAuthorityClientTest.py

    r4254 r4279  
    1515import unittest 
    1616import os, sys, getpass, re 
    17 from ConfigParser import SafeConfigParser 
    1817import logging 
    1918logging.basicConfig() 
  • TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionMgr/test.py

    r4158 r4279  
    11#!/usr/bin/env python 
    22"""Test harness for NDG Session Manager - makes requests for  
    3 authentication and authorisation.  An Attribute Authority and Simple CA 
    4 services must be running for the reqAuthorisation and addUser tests 
     3authentication and authorisation.  Attribute Authority services must be running 
     4for *AttCert* test methods 
    55 
    66NERC Data Grid Project 
  • TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionMgrClient/wsgi/session-manager.ini

    r4262 r4279  
    1616wsseCfgFileSection = WS-Security 
    1717 
    18 # Session Manager specific settings 
    19 # the port number the service is to run on  
     18# Session Manager specific settings - commented out settings will take their 
     19# default settings.  To override the defaults uncomment and set as required. 
     20# See ndg.security.server.sessionMgr.SessionMgr class for details 
    2021 
    2122# Flag for SSL - set to something to stipulate http, leave blank to use http  
    22 sessionmanager.useSSL:  
     23#SessionManager.useSSL:  
    2324 
    2425# X.509 certificate for SSL connections - ignored if useSSL is blank  
    25 sessionmanager.sslCertFile: $NDGSEC_AACLNT_UNITTEST_DIR/hostcert.pem 
     26#SessionManager.sslCertFile: $NDGSEC_SMCLNT_UNITTEST_DIR/hostcert.pem 
    2627 
    2728# Private key file for SSL  - ignored if useSSL is blank  
    28 sessionmanager.sslKeyFile: $NDGSEC_AACLNT_UNITTEST_DIR/hostkey.pem 
     29#SessionManager.sslKeyFile: $NDGSEC_SMCLNT_UNITTEST_DIR/hostkey.pem 
    2930 
    3031# Directory containing CA cert.s to verify SSL peer cert against - ignored if  
    3132# useSSL is blank  
    32 sessionmanager.sslCACertDir: $NDGSEC_AACLNT_UNITTEST_DIR/certs/ca 
    33   
    34 # Domain defaults to the server host - any more generic setting could be a  
    35 # a security risk.  Leave blank to default to the fully qualified domain 
    36 # name of the server. 
    37 cookieDomain:  
     33#SessionManager.sslCACertDir: $NDGSEC_SMCLNT_UNITTEST_DIR/certs/ca 
     34 
     35# On receipt of Attribute Certificates from Attribute Authorities, the 
     36# signature of the Attribute Certificate needs to be checked.  This list of 
     37# CA certs. enables the X,509 certificate used in the signature to be  
     38# validated 
     39SessionManager.credentialWallet.caCertFilePathList: $NDGSEC_SMCLNT_UNITTEST_DIR/ca/ndg-test-ca.crt 
     40 
     41# Settings for the Credential Repository - NullCredRepos is  
     42#SessionManager.credentialRepository.modFilePath:  
     43#SessionManager.credentialRepository.modName: ndg.security.common.CredWallet 
     44#SessionManager.credentialRepository.className: NullCredRepos 
     45#SessionManager.credentialRepository.propFile: 
    3846 
    3947[server:main] 
     
    5462ServiceSOAPBindingClass = ndg.security.server.zsi.sessionmanager.SessionManagerWS 
    5563ServiceSOAPBindingPropPrefix = SessionManager 
    56 SessionManager.propPrefix = sessionmanager 
    57 SessionManager.propFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/wsgi/session-manager.ini 
     64SessionManager.propPrefix = SessionManager 
     65SessionManager.propFilePath = $NDGSEC_SMCLNT_UNITTEST_DIR/wsgi/session-manager.ini 
    5866referencedFilters = wsseSignatureVerificationFilter01 
    5967path = /SessionManager 
     
    8492# Certificate associated with private key used to sign a message.  The sign  
    8593# method will add this to the BinarySecurityToken element of the WSSE header.   
    86 signingCertFilePath=$NDGSEC_AACLNT_UNITTEST_DIR/sm.crt 
    87 #signingCertFilePath=$NDGSEC_AACLNT_UNITTEST_DIR/java-ca-server.crt 
     94signingCertFilePath=$NDGSEC_SMCLNT_UNITTEST_DIR/sm.crt 
     95#signingCertFilePath=$NDGSEC_SMCLNT_UNITTEST_DIR/java-ca-server.crt 
    8896 
    8997# PEM encoded private key file 
    90 signingPriKeyFilePath=$NDGSEC_AACLNT_UNITTEST_DIR/sm.key 
    91 #signingPriKeyFilePath=$NDGSEC_AACLNT_UNITTEST_DIR/java-ca-server.key 
     98signingPriKeyFilePath=$NDGSEC_SMCLNT_UNITTEST_DIR/sm.key 
     99#signingPriKeyFilePath=$NDGSEC_SMCLNT_UNITTEST_DIR/java-ca-server.key 
    92100 
    93101# Set the ValueType for the BinarySecurityToken added to the WSSE header for a 
     
    112120 
    113121# Provide a space separated list of file paths 
    114 caCertFilePathList=$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt  
    115 #caCertFilePathList=$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt $NDGSEC_AACLNT_UNITTEST_DIR/ca/java-ca.crt 
     122caCertFilePathList=$NDGSEC_SMCLNT_UNITTEST_DIR/ca/ndg-test-ca.crt  
     123#caCertFilePathList=$NDGSEC_SMCLNT_UNITTEST_DIR/ca/ndg-test-ca.crt $NDGSEC_SMCLNT_UNITTEST_DIR/ca/java-ca.crt 
    116124 
    117125 
  • TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionMgrClient/wsgi/sessionManagerServerApp.py

    r4262 r4279  
    2323 
    2424# Initialize environment for unit tests 
    25 if 'NDGSEC_AACLNT_UNITTEST_DIR' not in os.environ: 
    26     os.environ['NDGSEC_AACLNT_UNITTEST_DIR'] = \ 
     25if 'NDGSEC_SMCLNT_UNITTEST_DIR' not in os.environ: 
     26    os.environ['NDGSEC_SMCLNT_UNITTEST_DIR'] = \ 
    2727                    os.path.dirname(os.path.abspath(os.path.dirname(__file__))) 
    2828     
    2929if 'NDGSEC_AA_PROPFILEPATH' not in os.environ: 
    3030    os.environ['NDGSEC_AA_PROPFILEPATH'] = \ 
    31                         os.path.join(os.environ['NDGSEC_AACLNT_UNITTEST_DIR'], 
     31                        os.path.join(os.environ['NDGSEC_SMCLNT_UNITTEST_DIR'], 
    3232#                                     "sessionMgr.cfg") 
    3333                                     "sessionMgrProperties.xml") 
Note: See TracChangeset for help on using the changeset viewer.