Changeset 4573 for TI12-security/trunk/python/ndg.security.test/ndg

Timestamp:

09/12/08 13:26:58 (12 years ago)

Author:

pjkersha

Message:

• updated configfileparsers imports for new module name.
• improved error reporting and logging in soap and wssecurity WSGIs
• fixed settings in attributeauthorityclient unit test site-a and site-b PAste ini files
• updated Attribute Authority Client unit test names

Location:

TI12-security/trunk/python/ndg.security.test/ndg/security/test

Files:

• attributeauthorityclient/attAuthorityClientTest.cfg (modified) (3 diffs)
• attributeauthorityclient/siteA/site-a.ini (modified) (3 diffs)
• attributeauthorityclient/siteB/site-b.ini (modified) (2 diffs)
• attributeauthorityclient/test_attributeauthorityclient.py (modified) (11 diffs)
• combinedservices/services.ini (modified) (1 diff)
• combinedservices/test_combinedservices.py (modified) (1 diff)
• configfileparsers/test.cfg (modified) (1 diff)
• configfileparsers/test_configfileparsers.py (modified) (2 diffs)
• credentialwallet/test_credentialwallet.py (modified) (1 diff)
• sessionmanager/test_sessionmanager.py (modified) (1 diff)
• sessionmanagerclient/test_sessionmanagerclient.py (modified) (1 diff)
• utils/testConfigFileParsers.py (modified) (1 diff)

TI12-security/trunk/python/ndg.security.test/ndg/security/test/attributeauthorityclient/attAuthorityClientTest.cfg

@@ -11 +11 @@
 # ! SiteBMapConfig.xml trusted site A aaURI setting must agree with this 
 # setting for test6GetMappedAttCert
-uri = http://localhost:5000/AttributeAuthority
+
+# With TCP Mon:
+uri = http://localhost:4999/AttributeAuthority
+#uri = http://localhost:5000/AttributeAuthority
 
 # For https connections only.  !Omit ssl* settings if using http!
@@ -19 +22 @@
 sslCACertFilePathList = $NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt
 
-[test3GetTrustedHostInfo]
+[test02GetTrustedHostInfo]
 role = postgrad
 
-[test3aGetTrustedHostInfoWithNoMatchingRoleFound]
+[test03GetTrustedHostInfoWithNoMatchingRoleFound]
 # Set an alternative role to test no matching role found exception
 role = blah
  
-[test5GetAttCert]
+[test06GetAttCert]
 # If clntcertfilepath is a proxy set this cert as the one that issued the 
 # proxy.  Comment out if clntcertfilepath is a standard X.509 cert.
@@ -34 +37 @@
 #issuingclntcertfilepath = $NDGSEC_AACLNT_UNITTEST_DIR/proxy-cert.pem
 
-# Setup for use by test7GetMappedAttCert test
+# Setup for use by test08GetMappedAttCert test
 attCertFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/ac-clnt.xml
 
-[test6GetAttCertWithUserIdSet]
+[test07GetAttCertWithUserIdSet]
 userId = system
 attCertFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/ac-clnt-test6.xml
 
-[test7GetMappedAttCert]
+[test08GetMappedAttCert]
 uri = http://localhost:5100/AttributeAuthority
 userAttCertFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/ac-clnt.xml
 mappedAttCertFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/mapped-ac.xml
 
-[test8GetMappedAttCertStressTest]
+[test09GetMappedAttCertStressTest]
 uri = http://localhost:5100/AttributeAuthority
 userAttCertFilePathList = $NDGSEC_AACLNT_UNITTEST_DIR/ac-clnt.xml

TI12-security/trunk/python/ndg.security.test/ndg/security/test/attributeauthorityclient/siteA/site-a.ini

@@ -62 +62 @@
 # Chain of SOAP Middleware filters
 [pipeline:main]
-pipeline = wsseSignatureVerificationFilter AttributeAuthorityFilter wsseSignatureFilter mainApp
+pipeline = wsseSignatureVerificationFilter 
+                   AttributeAuthorityFilter 
+                   wsseSignatureFilter 
+                   mainApp
 
 
@@ -71 +74 @@
 AttributeAuthority.propPrefix = attributeAuthority
 AttributeAuthority.propFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/siteA/site-a.ini
+AttributeAuthority.wsseSignatureVerificationFilterID = wsseSignatureVerificationFilter01
 referencedFilters = wsseSignatureVerificationFilter01
 path = /AttributeAuthority
@@ -86 +90 @@
 # confirmation
 referencedFilters = wsseSignatureVerificationFilter01
+wsseSignatureVerificationFilterID = wsseSignatureVerificationFilter01
 
 # Last filter in chain SOAP handlers writes the response

TI12-security/trunk/python/ndg.security.test/ndg/security/test/attributeauthorityclient/siteB/site-b.ini

@@ -71 +71 @@
 AttributeAuthority.propPrefix = attributeAuthority
 AttributeAuthority.propFilePath = $NDGSEC_AACLNT_UNITTEST_DIR/siteB/site-b.ini
+AttributeAuthority.wsseSignatureVerificationFilterID = wsseSignatureVerificationFilter01
 referencedFilters = wsseSignatureVerificationFilter01
 path = /AttributeAuthority
@@ -82 +83 @@
 [filter:wsseSignatureFilter]
 paste.filter_app_factory = ndg.security.server.wsgi.wssecurity:ApplySignatureFilter
+
+# Reference the verification filter in order to be able to apply signature
+# confirmation - not needed if applySignatureConfirmation is set to False - see
+# WS-Security section below...
+#referencedFilters = wsseSignatureVerificationFilter01
+#wsseSignatureVerificationFilterID = wsseSignatureVerificationFilter01
+
 # Last filter in chain SOAP handlers writes the response
 writeResponse = True

TI12-security/trunk/python/ndg.security.test/ndg/security/test/attributeauthorityclient/test_attributeauthorityclient.py

@@ -22 +22 @@
 from ndg.security.common.AttCert import AttCertRead
 from ndg.security.common.X509 import X509CertParse, X509CertRead
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
     CaseSensitiveConfigParser
     
@@ -83 +83 @@
                         cfgFileSection='wsse',
                         cfg=self.cfgParser)            
-    
-    def test1GetX509Cert(self):
-        '''test1GetX509Cert: retrieve Attribute Authority's X.509 cert.'''
-        resp = self.siteAClnt.getX509Cert()
-        print "Attribute Authority X.509 cert.:\n" + resp
-
-    def test2GetHostInfo(self):
-        """test2GetHostInfo: retrieve info for AA host"""
+
+    def test01GetHostInfo(self):
+        """test01GetHostInfo: retrieve info for AA host"""
         hostInfo = self.siteAClnt.getHostInfo()
         print "Host Info:\n %s" % hostInfo        
 
-    def test3GetTrustedHostInfo(self):
-        """test3GetTrustedHostInfo: retrieve trusted host info matching a
+    def test02GetTrustedHostInfo(self):
+        """test02GetTrustedHostInfo: retrieve trusted host info matching a
         given role"""
         trustedHostInfo = self.siteAClnt.getTrustedHostInfo(\
-                                 self.cfg['test3GetTrustedHostInfo']['role'])
+                                 self.cfg['test02GetTrustedHostInfo']['role'])
         for hostname, hostInfo in trustedHostInfo.items():
             assert hostname, "Hostname not set"
@@ -106 +101 @@
         print "Trusted Host Info:\n %s" % trustedHostInfo
 
-    def test3aGetTrustedHostInfoWithNoMatchingRoleFound(self):
-        """test3aGetTrustedHostInfoWithNoMatchingRoleFound: test the case 
+    def test03GetTrustedHostInfoWithNoMatchingRoleFound(self):
+        """test03GetTrustedHostInfoWithNoMatchingRoleFound: test the case 
         where the input role doesn't match any roles in the target AA's map 
         config file"""
-        _cfg = self.cfg['test3aGetTrustedHostInfoWithNoMatchingRoleFound']
+        _cfg = self.cfg['test03GetTrustedHostInfoWithNoMatchingRoleFound']
         try:
             trustedHostInfo = self.siteAClnt.getTrustedHostInfo(_cfg['role'])
@@ -120 +115 @@
 
 
-    def test4GetTrustedHostInfoWithNoRole(self):
-        """test4GetTrustedHostInfoWithNoRole: retrieve trusted host info 
+    def test04GetTrustedHostInfoWithNoRole(self):
+        """test04GetTrustedHostInfoWithNoRole: retrieve trusted host info 
         irrespective of role"""
         trustedHostInfo = self.siteAClnt.getTrustedHostInfo()
@@ -133 +128 @@
         
 
-    def test4aGetAllHostsInfo(self):
-        """test4aGetAllHostsInfo: retrieve info for all hosts"""
+    def test05GetAllHostsInfo(self):
+        """test05GetAllHostsInfo: retrieve info for all hosts"""
         allHostInfo = self.siteAClnt.getAllHostsInfo()
         for hostname, hostInfo in allHostInfo.items():
@@ -144 +139 @@
 
 
-    def test5GetAttCert(self):        
-        """test5GetAttCert: Request attribute certificate from NDG Attribute 
+    def test06GetAttCert(self):        
+        """test06GetAttCert: Request attribute certificate from NDG Attribute 
         Authority Web Service."""
-        _cfg = self.cfg['test5GetAttCert']
+        _cfg = self.cfg['test06GetAttCert']
         
         # Read user Certificate into a string ready for passing via WS
@@ -171 +166 @@
         
         
-    def test6GetAttCertWithUserIdSet(self):        
-        """test6GetAttCertWithUserIdSet: Request attribute certificate from 
+    def test07GetAttCertWithUserIdSet(self):        
+        """test07GetAttCertWithUserIdSet: Request attribute certificate from 
         NDG Attribute Authority Web Service setting a specific user Id 
         independent of the signer of the SOAP request."""
-        _cfg = self.cfg['test6GetAttCertWithUserIdSet']
+        _cfg = self.cfg['test07GetAttCertWithUserIdSet']
         
         # Read user Certificate into a string ready for passing via WS
@@ -201 +196 @@
 
 
-    def test7GetMappedAttCert(self):        
-        """test7GetMappedAttCert: Request mapped attribute certificate from 
+    def test08GetMappedAttCert(self):        
+        """test08GetMappedAttCert: Request mapped attribute certificate from 
         NDG Attribute Authority Web Service."""
-        _cfg = self.cfg['test7GetMappedAttCert']
+        _cfg = self.cfg['test08GetMappedAttCert']
         
         # Read user Certificate into a string ready for passing via WS
@@ -241 +236 @@
         
         
-    def test8GetMappedAttCertStressTest(self):        
-        """test8GetMappedAttCertStressTest: Request mapped attribute 
+    def test09GetMappedAttCertStressTest(self):        
+        """test09GetMappedAttCertStressTest: Request mapped attribute 
         certificate from NDG Attribute Authority Web Service."""
-        _cfg = self.cfg['test8GetMappedAttCertStressTest']
+        _cfg = self.cfg['test09GetMappedAttCertStressTest']
         
         # Read user Certificate into a string ready for passing via WS
@@ -280 +275 @@
                                                userAttCert=userAttCert)
             except Exception, e:
-                outFilePfx = 'test8GetMappedAttCertStressTest-%s' % \
+                outFilePfx = 'test09GetMappedAttCertStressTest-%s' % \
                         os.path.basename(acFilePath)    
                 msgFile = open(outFilePfx+".msg", 'w')
@@ -286 +281 @@
              
              
-#_____________________________________________________________________________       
 class AttributeAuthorityClientTestSuite(unittest.TestSuite):
     def __init__(self):
         map = map(AttributeAuthorityClientTestCase,
                   (
-                    "test1GetX509Cert",
-                    "test2GetHostInfo",
-                    "test3GetTrustedHostInfo",
-                    "test4GetTrustedHostInfoWithNoRole",
-                    "test5GetAttCert",
-                    "test6GetAttCertWithUserIdSet",
-                    "test7GetMappedAttCert",
-                    "test8GetMappedAttCertStressTest",
+                    "test01GetHostInfo",
+                    "test02GetTrustedHostInfo",
+                    "test03GetTrustedHostInfoWithNoMatchingRoleFound",
+                    "test04GetTrustedHostInfoWithNoRole",
+                    "test05GetAllHostsInfo",
+                    "test06GetAttCert",
+                    "test07GetAttCertWithUserIdSet",
+                    "test08GetMappedAttCert",
+                    "test09GetMappedAttCertStressTest",
                   ))
         unittest.TestSuite.__init__(self, map)

TI12-security/trunk/python/ndg.security.test/ndg/security/test/combinedservices/services.ini

@@ -181 +181 @@
 AttributeAuthority.propPrefix = attributeAuthority
 AttributeAuthority.propFilePath = $NDGSEC_COMBINED_SRVS_UNITTEST_DIR/services.ini
+AttributeAuthority.wsseSignatureVerificationFilterID = ndg.security.server.wsgi.wsseSignatureVerificationFilter01
 
 # Provide an identifier for this filter so that main WSGI app 

TI12-security/trunk/python/ndg.security.test/ndg/security/test/combinedservices/test_combinedservices.py

@@ -36 +36 @@
 from ndg.security.common.X509 import X509CertParse, X509CertRead
 from ndg.security.common.wssecurity.dom import SignatureHandler as SigHdlr
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
     CaseSensitiveConfigParser
 

TI12-security/trunk/python/ndg.security.test/ndg/security/test/configfileparsers/test.cfg

@@ -1 @@
-# Test Configuration file for ConfigFileParsers unit tests
+# Test Configuration file for configfileparsers unit tests
 # 
 # NERC Data Grid Project

TI12-security/trunk/python/ndg.security.test/ndg/security/test/configfileparsers/test_configfileparsers.py

@@ -17 +17 @@
 import traceback
 
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
     CaseSensitiveConfigParser, INIPropertyFile, readAndValidateProperties
 from ConfigParser import SafeConfigParser
@@ -31 +31 @@
 
 class ConfigFileParsersTestCase(unittest.TestCase):
-    """Unit test case for ndg.security.common.utils.ConfigFileParsers
+    """Unit test case for ndg.security.common.utils.configfileparsers
     module.
     """

TI12-security/trunk/python/ndg.security.test/ndg/security/test/credentialwallet/test_credentialwallet.py

@@ -17 +17 @@
 import traceback
 
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
                                                     CaseSensitiveConfigParser
 from ndg.security.common.X509 import X509CertParse

TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionmanager/test_sessionmanager.py

@@ -20 +20 @@
 import traceback
 
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
                                                     CaseSensitiveConfigParser
 from ndg.security.common.X509 import X509CertParse

TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionmanagerclient/test_sessionmanagerclient.py

@@ -31 +31 @@
 from ndg.security.common.X509 import X509CertParse, X509CertRead
 from ndg.security.common.wssecurity.dom import SignatureHandler as SigHdlr
-from ndg.security.common.utils.ConfigFileParsers import \
+from ndg.security.common.utils.configfileparsers import \
     CaseSensitiveConfigParser
 

TI12-security/trunk/python/ndg.security.test/ndg/security/test/utils/testConfigFileParsers.py

@@ -6 +6 @@
 '''
 import unittest, os
-from ndg.security.common.utils.ConfigFileParsers import readProperties, readAndValidateProperties
+from ndg.security.common.utils.configfileparsers import readProperties, readAndValidateProperties
 from ndg.security.server.attributeauthority import AttributeAuthority
 from ndg.security.server.sessionmanager import SessionManager