Changeset 7153 for TI12-security/trunk


Ignore:
Timestamp:
01/07/10 16:10:08 (9 years ago)
Author:
pjkersha
Message:

Incomplete - task 2: XACML-Security Integration

  • updated certs for new test CA
Location:
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test
Files:
1 added
3 deleted
22 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/siteA-aa.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 253 (0xfd) 
     4        Serial Number: 20 (0x14) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Dec 15 16:35:24 2008 GMT 
    9             Not After : Dec 14 16:35:24 2013 GMT 
    10         Subject: O=NDG Security Test, OU=Site A, CN=AttributeAuthority 
     8            Not Before: Jun 29 10:54:18 2010 GMT 
     9            Not After : Jun 29 10:54:18 2011 GMT 
     10        Subject: O=NDG, OU=Site A, CN=AttributeAuthority 
    1111        Subject Public Key Info: 
    1212            Public Key Algorithm: rsaEncryption 
     
    2727                SSL Client, SSL Server, S/MIME, Object Signing 
    2828    Signature Algorithm: md5WithRSAEncryption 
    29         58:3d:38:b1:c0:41:f7:59:16:4f:ca:97:29:9c:8d:d8:46:79: 
    30         9c:11:6a:b3:a4:44:5e:d2:3e:75:d3:9a:66:de:d5:b6:26:87: 
    31         60:c5:c0:99:c4:56:fe:40:b0:f1:88:12:f9:49:65:fa:66:69: 
    32         03:0a:56:51:4f:64:47:f0:39:75:b8:88:0c:34:5b:c6:5c:f8: 
    33         04:90:9e:32:09:0e:fc:ec:54:df:5c:e6:be:aa:9a:db:75:32: 
    34         19:73:e1:b5:a4:ee:a3:c0:c6:da:e4:ab:e5:70:e4:e8:69:c9: 
    35         e6:c6:f4:58:1d:d4:82:c4:61:ed:5e:2b:c9:69:12:b4:89:82: 
    36         48:66 
     29        11:94:83:d8:1e:09:2a:1f:48:c8:a2:a2:11:c9:ad:f8:8e:e6: 
     30        62:cb:30:18:18:3e:ea:61:12:36:6b:5b:f6:d2:01:3c:fc:04: 
     31        92:9b:e0:c3:a4:9c:fd:00:a2:74:48:52:68:8a:7d:32:d6:04: 
     32        29:ca:3b:db:7c:aa:cb:99:4d:b6:8e:1a:27:33:b9:1e:f7:97: 
     33        14:12:72:80:16:a6:28:63:04:27:db:1d:8c:08:ca:ae:47:70: 
     34        e5:6d:c1:d9:27:85:c6:ba:dc:cc:bc:37:01:22:39:24:48:2f: 
     35        ca:7f:92:dd:3a:15:68:f7:c1:df:83:c1:f9:6a:72:7a:3d:b4: 
     36        d4:47 
    3737-----BEGIN CERTIFICATE----- 
    38 MIICBTCCAW6gAwIBAgICAP0wDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    39 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNTE2MzUy 
    40 NFoXDTEzMTIxNDE2MzUyNFowSjEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx 
    41 DzANBgNVBAsTBlNpdGUgQTEbMBkGA1UEAxMSQXR0cmlidXRlQXV0aG9yaXR5MIGf 
    42 MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCntf+hUxFKXx/KY3LXy/RYc/yqhfIL 
    43 M8h95c14n/WdSqh8rK3VxkUu5gujlEgCHafI2AjNZJZqJfKG7ZucYmRcnXbCX1qP 
    44 IGKa+TllbIWdsa5y/IF/Do2AoPMJnTNJ2U1IBfPQXbO5Sd49OvfTi4Cldk89872R 
    45 IuzPmLIDcFydgQIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcN 
    46 AQEEBQADgYEAWD04scBB91kWT8qXKZyN2EZ5nBFqs6REXtI+ddOaZt7VtiaHYMXA 
    47 mcRW/kCw8YgS+Ull+mZpAwpWUU9kR/A5dbiIDDRbxlz4BJCeMgkO/OxU31zmvqqa 
    48 23UyGXPhtaTuo8DG2uSr5XDk6GnJ5sb0WB3UgsRh7V4ryWkStImCSGY= 
     38MIIB+jCCAWOgAwIBAgIBFDANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     39ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEw 
     40NTQxOFoXDTExMDYyOTEwNTQxOFowPDEMMAoGA1UEChMDTkRHMQ8wDQYDVQQLEwZT 
     41aXRlIEExGzAZBgNVBAMTEkF0dHJpYnV0ZUF1dGhvcml0eTCBnzANBgkqhkiG9w0B 
     42AQEFAAOBjQAwgYkCgYEAp7X/oVMRSl8fymNy18v0WHP8qoXyCzPIfeXNeJ/1nUqo 
     43fKyt1cZFLuYLo5RIAh2nyNgIzWSWaiXyhu2bnGJkXJ12wl9ajyBimvk5ZWyFnbGu 
     44cvyBfw6NgKDzCZ0zSdlNSAXz0F2zuUnePTr304uApXZPPfO9kSLsz5iyA3BcnYEC 
     45AwEAAaMVMBMwEQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBABGU 
     46g9geCSofSMiiohHJrfiO5mLLMBgYPuphEjZrW/bSATz8BJKb4MOknP0AonRIUmiK 
     47fTLWBCnKO9t8qsuZTbaOGiczuR73lxQScoAWpihjBCfbHYwIyq5HcOVtwdknhca6 
     483My8NwEiOSRIL8p/kt06FWj3wd+Dwflqcno9tNRH 
    4949-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/localhost.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 263 (0x107) 
     4        Serial Number: 2 (0x2) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Jun  9 09:28:37 2009 GMT 
    9             Not After : Jun  9 09:28:37 2010 GMT 
    10         Subject: C=UK, ST=Oxfordshire, O=BADC, OU=Security, CN=localhost 
     8            Not Before: Jun 11 09:04:56 2010 GMT 
     9            Not After : Jun 11 09:04:56 2011 GMT 
     10        Subject: O=NDG, OU=Security, CN=localhost 
    1111        Subject Public Key Info: 
    1212            Public Key Algorithm: rsaEncryption 
     
    3636                SSL Client, SSL Server, S/MIME, Object Signing 
    3737    Signature Algorithm: md5WithRSAEncryption 
    38         8b:8c:45:03:bb:90:4a:70:54:28:69:b7:02:3e:50:95:12:10: 
    39         ef:c7:d4:48:c2:56:be:7a:4d:0a:6e:28:9f:07:4d:71:8c:01: 
    40         fc:e0:e0:dd:6e:ef:5a:d7:b0:0c:df:14:be:af:e4:20:11:4c: 
    41         ca:9b:4b:ae:ce:4b:0f:1f:46:b0:57:74:e0:86:ff:94:b2:27: 
    42         0b:2a:7b:e9:09:d5:2b:72:14:fe:99:5c:66:12:87:31:2f:e0: 
    43         7b:5c:47:b5:52:09:bb:18:09:d8:0a:c2:95:8e:bf:23:e6:ac: 
    44         0d:ea:48:19:c8:11:e6:8f:da:10:d2:cd:a2:de:72:e7:b1:75: 
    45         c0:d8 
     38        70:9e:28:be:0e:7e:b2:af:0b:95:e9:60:ea:1b:51:bc:02:76: 
     39        f3:67:69:47:ba:99:a1:4e:0f:2f:cb:2c:e8:ac:0e:20:b8:dd: 
     40        e0:70:9f:d0:5b:a6:5f:cd:42:3f:a6:aa:98:ef:f8:39:4a:ac: 
     41        79:8d:71:79:a4:98:19:00:e4:87:34:e6:c4:f6:8d:b5:d2:c3: 
     42        cf:45:77:e7:54:c9:3a:81:b6:47:da:ce:71:ba:79:4c:e2:d5: 
     43        40:44:b1:55:b6:a7:7b:57:31:43:fb:8c:58:f3:83:d3:68:e2: 
     44        5c:a4:30:2c:cc:c2:b0:e5:3f:84:18:2b:34:f6:39:50:a0:61: 
     45        13:28 
    4646-----BEGIN CERTIFICATE----- 
    47 MIICmDCCAgGgAwIBAgICAQcwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA5MDYwOTA5Mjgz 
    49 N1oXDTEwMDYwOTA5MjgzN1owWTELMAkGA1UEBhMCVUsxFDASBgNVBAgTC094Zm9y 
    50 ZHNoaXJlMQ0wCwYDVQQKEwRCQURDMREwDwYDVQQLEwhTZWN1cml0eTESMBAGA1UE 
    51 AxMJbG9jYWxob3N0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOCU 
    52 wunA35Y2uk0OP7xBUXtP/tiCR1L4Nlc1FTuDd7qEqqNI8AMLWrcxQI0/hwWeBsZy 
    53 H8p97XM80HZNOzKJ5x9bhCe/i3IJKtRAjSzEwyNobPRiVajgLorItF+/4RjXaqYa 
    54 kG3mgxcQOpW12g1EP9/7bMWevx0EXxwWzp73nYH4/spDgl9ryHAX+OjzdNn7rBSv 
    55 mY/9863ifo3zvYkV8DnqUXwpgYy8umNraeDBRi8nk4OFvou7qrh2w+yK9lDhw5Ce 
    56 Rx0ZaEBiWROL6+iJZCDso7fnso+Y8mS0qm7Q8XP86u0ZGWeYEfWVynYLx0M1PFMj 
    57 tWewtSZZ0cU+StFw3QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJKoZI 
    58 hvcNAQEEBQADgYEAi4xFA7uQSnBUKGm3Aj5QlRIQ78fUSMJWvnpNCm4onwdNcYwB 
    59 /ODg3W7vWtewDN8Uvq/kIBFMyptLrs5LDx9GsFd04Ib/lLInCyp76QnVK3IU/plc 
    60 ZhKHMS/ge1xHtVIJuxgJ2ArClY6/I+asDepIGcgR5o/aENLNot5y57F1wNg= 
     47MIICdzCCAeCgAwIBAgIBAjANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     48ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYxMTA5 
     49MDQ1NloXDTExMDYxMTA5MDQ1NlowNTEMMAoGA1UEChMDTkRHMREwDwYDVQQLEwhT 
     50ZWN1cml0eTESMBAGA1UEAxMJbG9jYWxob3N0MIIBIjANBgkqhkiG9w0BAQEFAAOC 
     51AQ8AMIIBCgKCAQEAwOCUwunA35Y2uk0OP7xBUXtP/tiCR1L4Nlc1FTuDd7qEqqNI 
     528AMLWrcxQI0/hwWeBsZyH8p97XM80HZNOzKJ5x9bhCe/i3IJKtRAjSzEwyNobPRi 
     53VajgLorItF+/4RjXaqYakG3mgxcQOpW12g1EP9/7bMWevx0EXxwWzp73nYH4/spD 
     54gl9ryHAX+OjzdNn7rBSvmY/9863ifo3zvYkV8DnqUXwpgYy8umNraeDBRi8nk4OF 
     55vou7qrh2w+yK9lDhw5CeRx0ZaEBiWROL6+iJZCDso7fnso+Y8mS0qm7Q8XP86u0Z 
     56GWeYEfWVynYLx0M1PFMjtWewtSZZ0cU+StFw3QIDAQABoxUwEzARBglghkgBhvhC 
     57AQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAcJ4ovg5+sq8Llelg6htRvAJ282dp 
     58R7qZoU4PL8ss6KwOILjd4HCf0FumX81CP6aqmO/4OUqseY1xeaSYGQDkhzTmxPaN 
     59tdLDz0V351TJOoG2R9rOcbp5TOLVQESxVbane1cxQ/uMWPOD02jiXKQwLMzCsOU/ 
     60hBgrNPY5UKBhEyg= 
    6161-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/test.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 257 (0x101) 
     4        Serial Number: 24 (0x18) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Dec 16 15:11:48 2008 GMT 
    9             Not After : Dec 15 15:11:48 2013 GMT 
     8            Not Before: Jun 29 11:14:44 2010 GMT 
     9            Not After : Jun 29 11:14:44 2011 GMT 
    1010        Subject: O=NDG, OU=BADC, CN=test 
    1111        Subject Public Key Info: 
     
    3636                SSL Client, SSL Server, S/MIME, Object Signing 
    3737    Signature Algorithm: md5WithRSAEncryption 
    38         3c:2d:44:82:80:fd:03:ef:4e:eb:43:f9:52:cd:eb:0c:28:6f: 
    39         47:6c:76:7f:cb:97:ff:bc:3e:dc:69:4d:05:cd:00:ed:40:f4: 
    40         65:41:04:9e:05:26:9e:f9:1c:9b:56:13:38:2c:23:dc:42:0d: 
    41         9e:f3:fa:4b:a0:25:c6:3e:ac:d9:7f:2d:2d:63:d4:19:32:d5: 
    42         bb:6a:7d:dd:7e:72:ed:19:d8:93:a8:ac:48:4a:18:8f:39:b0: 
    43         fc:b8:9a:c9:01:f3:ae:6f:fb:84:d4:76:d1:30:04:fd:ac:44: 
    44         5b:ba:d2:ea:ce:dc:47:2e:70:54:35:15:d1:53:4c:41:0b:89: 
    45         71:28 
     38        74:79:d9:10:9c:c9:8a:dc:72:85:71:62:2a:b3:96:be:ea:69: 
     39        87:25:77:f0:c1:12:4b:e1:81:30:01:eb:94:e5:2f:ce:13:55: 
     40        6f:57:2b:15:35:53:2f:81:dd:6a:eb:61:30:8a:34:ab:c4:29: 
     41        19:df:e7:61:d6:22:d8:32:d9:29:7c:c7:b7:8f:3a:f7:8c:e2: 
     42        8f:d3:6a:6b:af:6e:20:71:f9:ee:a2:8d:ec:66:88:5d:11:14: 
     43        7b:37:df:ae:cd:16:76:b3:27:1d:3c:7b:17:70:7b:6d:d4:28: 
     44        c0:c3:81:a5:79:d4:5d:b7:61:c6:14:d9:cb:66:66:c9:59:47: 
     45        13:8f 
    4646-----BEGIN CERTIFICATE----- 
    47 MIICazCCAdSgAwIBAgICAQEwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTE0 
    49 OFoXDTEzMTIxNTE1MTE0OFowLDEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRCQURD 
    50 MQ0wCwYDVQQDEwR0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 
    51 rpbuNUHWVRwhjHzhTOdym+fcZdmD7HbaeoFdef2V//Wj41xMieMZy9XQft2dFBDY 
    52 ZIHLElojVhZTHoowMkwXxsmLt7hZF8fL7j3ssU/lflM9E0Uk2dZxaAt97zXEruEH 
    53 JoNqHTEQlH0qMALfuUrAaZEIXHDdTQDNRJl4oXvjJWaqS8Y5Je8QREThIE5hRd9F 
    54 oUlgfMNNnwzLyIH7s0KBci2yryeubAG/Qig5LkulbpnhxYLCcLvs3THQ3kO5qYYb 
    55 B0g11YOBgshZ0SpNwEEyhDzHUt3Ii2XmAh25/II08BR61fhMZvSJ/tVGJY4HfWG7 
    56 B4PZzYwo5vn/tYH1mk7w5QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJ 
    57 KoZIhvcNAQEEBQADgYEAPC1EgoD9A+9O60P5Us3rDChvR2x2f8uX/7w+3GlNBc0A 
    58 7UD0ZUEEngUmnvkcm1YTOCwj3EINnvP6S6Alxj6s2X8tLWPUGTLVu2p93X5y7RnY 
    59 k6isSEoYjzmw/LiayQHzrm/7hNR20TAE/axEW7rS6s7cRy5wVDUV0VNMQQuJcSg= 
     47MIICbjCCAdegAwIBAgIBGDANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     48ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 
     49MTQ0NFoXDTExMDYyOTExMTQ0NFowLDEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRC 
     50QURDMQ0wCwYDVQQDEwR0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC 
     51AQEArpbuNUHWVRwhjHzhTOdym+fcZdmD7HbaeoFdef2V//Wj41xMieMZy9XQft2d 
     52FBDYZIHLElojVhZTHoowMkwXxsmLt7hZF8fL7j3ssU/lflM9E0Uk2dZxaAt97zXE 
     53ruEHJoNqHTEQlH0qMALfuUrAaZEIXHDdTQDNRJl4oXvjJWaqS8Y5Je8QREThIE5h 
     54Rd9FoUlgfMNNnwzLyIH7s0KBci2yryeubAG/Qig5LkulbpnhxYLCcLvs3THQ3kO5 
     55qYYbB0g11YOBgshZ0SpNwEEyhDzHUt3Ii2XmAh25/II08BR61fhMZvSJ/tVGJY4H 
     56fWG7B4PZzYwo5vn/tYH1mk7w5QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAw 
     57DQYJKoZIhvcNAQEEBQADgYEAdHnZEJzJitxyhXFiKrOWvupphyV38MESS+GBMAHr 
     58lOUvzhNVb1crFTVTL4HdauthMIo0q8QpGd/nYdYi2DLZKXzHt48694zij9Nqa69u 
     59IHH57qKN7GaIXREUezffrs0WdrMnHTx7F3B7bdQowMOBpXnUXbdhxhTZy2ZmyVlH 
     60E48= 
    6061-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/user.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 258 (0x102) 
     4        Serial Number: 25 (0x19) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Dec 16 15:18:25 2008 GMT 
    9             Not After : Dec 15 15:18:25 2013 GMT 
     8            Not Before: Jun 29 11:51:27 2010 GMT 
     9            Not After : Jun 29 11:51:27 2011 GMT 
    1010        Subject: O=NDG, OU=BADC, OU=Gabriel, CN=testuser 
    1111        Subject Public Key Info: 
     
    3636                SSL Client, SSL Server, S/MIME, Object Signing 
    3737    Signature Algorithm: md5WithRSAEncryption 
    38         95:07:9e:9a:d7:de:2b:9c:3c:a0:cc:5e:5d:dd:87:a9:84:3b: 
    39         2c:17:4e:fd:b5:87:ce:31:b7:74:4c:dc:94:4e:96:ea:a8:5f: 
    40         01:52:df:31:33:eb:7f:1f:25:d4:65:e4:6d:b1:72:11:cc:0c: 
    41         3f:0e:1d:e8:89:90:ec:2b:64:dc:34:36:19:74:2b:52:5c:e4: 
    42         f5:6f:d3:02:b2:47:65:4c:79:17:0c:e3:14:c5:e2:bf:89:fd: 
    43         e5:a6:d5:6c:44:67:5f:e0:43:3d:6f:97:19:f0:57:fe:a9:02: 
    44         0a:56:90:af:fa:15:95:d0:cd:26:dd:44:c9:38:ec:d4:c1:e0: 
    45         8c:43 
     38        31:bc:bd:79:5e:9e:8d:f5:dd:8d:3c:c2:dd:2a:99:7f:b1:06: 
     39        29:f2:aa:3f:16:7c:ca:bf:b9:ec:d2:b4:5a:c5:57:98:4b:34: 
     40        ff:88:6d:76:30:68:3e:2a:c9:50:b4:af:92:87:3e:67:f3:02: 
     41        76:f7:e1:48:34:06:8e:4b:f6:4e:a5:3c:9f:ac:6f:0e:f7:ec: 
     42        34:ce:b8:ca:2e:90:0f:f0:cb:2f:2b:6f:76:0a:7f:e3:b0:eb: 
     43        1a:43:cb:84:d8:f3:81:3e:48:4c:fa:f3:fd:e4:32:ad:43:86: 
     44        41:85:00:cf:01:c3:c2:02:5c:1a:28:c3:b9:6c:09:23:bf:2c: 
     45        96:77 
    4646-----BEGIN CERTIFICATE----- 
    47 MIICgTCCAeqgAwIBAgICAQIwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTgy 
    49 NVoXDTEzMTIxNTE1MTgyNVowQjEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRCQURD 
    50 MRAwDgYDVQQLEwdHYWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjCCASIwDQYJKoZI 
    51 hvcNAQEBBQADggEPADCCAQoCggEBAOdL1ZgnNhthCgNzg3vO/8jMbpfa0aggwKmq 
    52 Yib2+RiIElRpPa6iYQxDQ3J1LzXTqn7cHyyLhT0DpH6/oszmXthSCP2LrZkbtMm7 
    53 CDTWj60i/e0N53sezmcBBqE5Ttn2PKLpWPGYNX3Z+3qnd3PYpQQ08d75GXwfOsz/ 
    54 MRn77l9sxKB9yT3nMGJuMzaBbUBCStsbFIzFXbNSkE29jVDLwehdIPb7taIDrPuB 
    55 vTnxOuscWOWjooDURwr4JeP0XRqBGcvcq6Ba24FxSr+R+UwyoDqLYmnrLDlxrecp 
    56 QCIYArOPlkgOi0Kw5nu9B3pMzp6UqXH4b8JXcBW2t2cRMzWo+VcCAwEAAaMVMBMw 
    57 EQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBAJUHnprX3iucPKDM 
    58 Xl3dh6mEOywXTv21h84xt3RM3JROluqoXwFS3zEz638fJdRl5G2xchHMDD8OHeiJ 
    59 kOwrZNw0Nhl0K1Jc5PVv0wKyR2VMeRcM4xTF4r+J/eWm1WxEZ1/gQz1vlxnwV/6p 
    60 AgpWkK/6FZXQzSbdRMk47NTB4IxD 
     47MIIChDCCAe2gAwIBAgIBGTANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     48ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 
     49NTEyN1oXDTExMDYyOTExNTEyN1owQjEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRC 
     50QURDMRAwDgYDVQQLEwdHYWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjCCASIwDQYJ 
     51KoZIhvcNAQEBBQADggEPADCCAQoCggEBAOdL1ZgnNhthCgNzg3vO/8jMbpfa0agg 
     52wKmqYib2+RiIElRpPa6iYQxDQ3J1LzXTqn7cHyyLhT0DpH6/oszmXthSCP2LrZkb 
     53tMm7CDTWj60i/e0N53sezmcBBqE5Ttn2PKLpWPGYNX3Z+3qnd3PYpQQ08d75GXwf 
     54Osz/MRn77l9sxKB9yT3nMGJuMzaBbUBCStsbFIzFXbNSkE29jVDLwehdIPb7taID 
     55rPuBvTnxOuscWOWjooDURwr4JeP0XRqBGcvcq6Ba24FxSr+R+UwyoDqLYmnrLDlx 
     56recpQCIYArOPlkgOi0Kw5nu9B3pMzp6UqXH4b8JXcBW2t2cRMzWo+VcCAwEAAaMV 
     57MBMwEQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBADG8vXleno31 
     583Y08wt0qmX+xBinyqj8WfMq/uezStFrFV5hLNP+IbXYwaD4qyVC0r5KHPmfzAnb3 
     594Ug0Bo5L9k6lPJ+sbw737DTOuMoukA/wyy8rb3YKf+Ow6xpDy4TY84E+SEz68/3k 
     60Mq1DhkGFAM8Bw8ICXBoow7lsCSO/LJZ3 
    6161-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/wsse-clnt.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 259 (0x103) 
     4        Serial Number: 22 (0x16) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Dec 16 15:19:45 2008 GMT 
    9             Not After : Dec 15 15:19:45 2013 GMT 
    10         Subject: O=NDG Security Test, OU=WS-Security Unittest, CN=client 
     8            Not Before: Jun 29 11:03:35 2010 GMT 
     9            Not After : Jun 29 11:03:35 2011 GMT 
     10        Subject: O=NDG, OU=WS-Security Unittest, CN=client 
    1111        Subject Public Key Info: 
    1212            Public Key Algorithm: rsaEncryption 
     
    3636                SSL Client, SSL Server, S/MIME, Object Signing 
    3737    Signature Algorithm: md5WithRSAEncryption 
    38         63:11:bf:8c:fe:88:3a:7d:12:1e:c1:ea:90:f6:11:33:f2:7d: 
    39         1d:2b:f3:22:3d:72:fb:1b:35:ed:cc:55:79:0e:98:13:41:cf: 
    40         44:5e:c7:88:75:08:b4:b2:2b:ad:11:0e:0b:2e:49:21:41:18: 
    41         6b:e9:2f:77:6d:27:4b:17:85:c8:fa:7b:91:45:97:a4:2d:f3: 
    42         24:4e:1e:be:c5:e5:bc:ca:fd:dc:b2:e9:e1:b1:8a:f0:c1:4f: 
    43         f9:c9:14:f8:c3:c2:98:66:fa:04:82:f1:8d:68:59:17:1f:f2: 
    44         bf:34:f7:c6:3c:85:9b:80:c6:bc:2f:66:2e:0e:f4:24:7c:d8: 
    45         9e:5f 
     38        8d:87:4d:6f:6b:7b:ed:dc:23:c1:bf:80:f0:b8:8a:88:5a:12: 
     39        50:72:23:e0:a5:0d:0e:08:16:5a:c1:5d:0c:ca:26:eb:b5:f7: 
     40        31:8e:86:db:f2:10:74:db:83:b5:8c:04:46:36:1a:0c:e2:ef: 
     41        a2:66:a6:33:ca:e6:46:83:d7:74:cd:45:ef:3a:24:b5:0f:26: 
     42        54:97:a3:cd:e6:e3:1f:d7:ed:47:83:32:3f:f0:15:a5:7d:70: 
     43        18:f2:cc:b8:09:0d:b9:63:84:50:9b:c9:56:0c:f5:d8:25:8d: 
     44        49:8c:ea:82:ae:fb:98:79:12:53:8e:19:52:12:05:17:c1:6d: 
     45        ff:9b 
    4646-----BEGIN CERTIFICATE----- 
    47 MIICizCCAfSgAwIBAgICAQMwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTk0 
    49 NVoXDTEzMTIxNTE1MTk0NVowTDEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx 
    50 HTAbBgNVBAsTFFdTLVNlY3VyaXR5IFVuaXR0ZXN0MQ8wDQYDVQQDEwZjbGllbnQw 
    51 ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY7CFf5GAGGJEY38Vukj0U 
    52 Nfb/Q78yCucsJ0aQLKb+ItHvURqU2X/WEmiNLa90VQ4BBFoYiuFYtAyqxubnp1m1 
    53 XM97iJrUwo85Cw7/FKvM0gRkLbvbPrYDVcy7EHvjrB9O2mhEFoz6svqdtdmasmOG 
    54 1JEagdmfJrQLuiG5hrsPxCA/8ucLxH4FnmcMh5kRo0MwlXlva582RzWRWKgO2vDO 
    55 mtvitXt9HJwdCZbPmPyxs6STvFHMZru1mY5dj1YWT8PBT5Svmpo/EEiL+TZctcXE 
    56 SRRSVxu99yRBJ0f9Nd8IPxtuyyIVX4+xfgOLrNoVQuIV5vKTCZh5RrWjpbk/0eqN 
    57 AgMBAAGjFTATMBEGCWCGSAGG+EIBAQQEAwIE8DANBgkqhkiG9w0BAQQFAAOBgQBj 
    58 Eb+M/og6fRIeweqQ9hEz8n0dK/MiPXL7GzXtzFV5DpgTQc9EXseIdQi0siutEQ4L 
    59 LkkhQRhr6S93bSdLF4XI+nuRRZekLfMkTh6+xeW8yv3csunhsYrwwU/5yRT4w8KY 
    60 ZvoEgvGNaFkXH/K/NPfGPIWbgMa8L2YuDvQkfNieXw== 
     47MIICgDCCAemgAwIBAgIBFjANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     48ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 
     49MDMzNVoXDTExMDYyOTExMDMzNVowPjEMMAoGA1UEChMDTkRHMR0wGwYDVQQLExRX 
     50Uy1TZWN1cml0eSBVbml0dGVzdDEPMA0GA1UEAxMGY2xpZW50MIIBIjANBgkqhkiG 
     519w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOwhX+RgBhiRGN/FbpI9FDX2/0O/MgrnLCdG 
     52kCym/iLR71EalNl/1hJojS2vdFUOAQRaGIrhWLQMqsbm56dZtVzPe4ia1MKPOQsO 
     53/xSrzNIEZC272z62A1XMuxB746wfTtpoRBaM+rL6nbXZmrJjhtSRGoHZnya0C7oh 
     54uYa7D8QgP/LnC8R+BZ5nDIeZEaNDMJV5b2ufNkc1kVioDtrwzprb4rV7fRycHQmW 
     55z5j8sbOkk7xRzGa7tZmOXY9WFk/DwU+Ur5qaPxBIi/k2XLXFxEkUUlcbvfckQSdH 
     56/TXfCD8bbssiFV+PsX4Di6zaFULiFebykwmYeUa1o6W5P9HqjQIDAQABoxUwEzAR 
     57BglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAjYdNb2t77dwjwb+A 
     588LiKiFoSUHIj4KUNDggWWsFdDMom67X3MY6G2/IQdNuDtYwERjYaDOLvomamM8rm 
     59RoPXdM1F7zoktQ8mVJejzebjH9ftR4MyP/AVpX1wGPLMuAkNuWOEUJvJVgz12CWN 
     60SYzqgq77mHkSU44ZUhIFF8Ft/5s= 
    6161-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/wsse-server.crt

    r7077 r7153  
    22    Data: 
    33        Version: 3 (0x2) 
    4         Serial Number: 260 (0x104) 
     4        Serial Number: 23 (0x17) 
    55        Signature Algorithm: md5WithRSAEncryption 
    6         Issuer: O=NDG, OU=BADC, CN=Test CA 
     6        Issuer: O=NDG, OU=Security, CN=Test CA 
    77        Validity 
    8             Not Before: Dec 16 15:20:55 2008 GMT 
    9             Not After : Dec 15 15:20:55 2013 GMT 
    10         Subject: O=NDG Security Test, OU=WS-Security Unittest, CN=server 
     8            Not Before: Jun 29 11:10:12 2010 GMT 
     9            Not After : Jun 29 11:10:12 2011 GMT 
     10        Subject: O=NDG, OU=WS-Security Unittest, CN=server 
    1111        Subject Public Key Info: 
    1212            Public Key Algorithm: rsaEncryption 
     
    3636                SSL Client, SSL Server, S/MIME, Object Signing 
    3737    Signature Algorithm: md5WithRSAEncryption 
    38         95:eb:24:bb:4e:4d:38:b8:0e:8d:0e:fa:27:61:0b:91:f7:9e: 
    39         a3:a7:a4:e0:d8:ba:57:3a:ee:df:54:50:80:26:19:f5:66:d7: 
    40         6c:83:64:eb:b3:1a:3b:dc:7a:08:49:db:3f:a1:9a:bf:03:08: 
    41         7f:b2:8c:28:eb:cf:79:d9:a3:f0:a4:7c:65:40:c5:fe:34:88: 
    42         7f:88:47:e2:4b:38:f4:d6:c6:91:69:9c:68:ca:ed:03:fc:fb: 
    43         83:c8:07:be:3c:33:be:24:87:aa:68:7f:38:18:e3:fc:97:ef: 
    44         8f:e4:6e:39:f8:3d:e2:97:91:4a:86:e8:39:52:01:b3:31:54: 
    45         d9:5d 
     38        67:96:45:5e:73:66:69:2c:f1:fb:ed:65:c9:fa:69:c7:6a:0e: 
     39        15:d9:3b:56:1b:90:a5:27:18:f7:47:70:f0:1b:a6:41:21:d8: 
     40        21:3e:1a:ae:87:9a:f1:36:3e:02:cf:1f:30:83:af:f8:fe:21: 
     41        6c:14:45:a0:9e:39:f2:91:de:0a:06:22:8f:4d:2e:9f:66:7e: 
     42        26:61:3d:cc:31:4d:43:9e:4d:5d:c6:00:ef:82:ed:30:57:76: 
     43        c4:4f:db:85:7c:97:35:a1:d0:ff:b8:91:a1:9c:e9:a3:a8:c9: 
     44        99:80:a4:03:66:8b:e6:44:54:d0:7c:72:d8:e0:c3:3b:ea:98: 
     45        e7:f7 
    4646-----BEGIN CERTIFICATE----- 
    47 MIICizCCAfSgAwIBAgICAQQwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 
    48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MjA1 
    49 NVoXDTEzMTIxNTE1MjA1NVowTDEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx 
    50 HTAbBgNVBAsTFFdTLVNlY3VyaXR5IFVuaXR0ZXN0MQ8wDQYDVQQDEwZzZXJ2ZXIw 
    51 ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKh5yGjF6lxe3OL/g1lZdq 
    52 ar1niwjRU91t1kdktU9g4bQBxg4hFsMX0nb6iWKUXe09Npuu8KLiaQh7f1j+iMfv 
    53 FyklZFazO3wnpO4O95jvdsruu7RSP1Mr1pSWqT5rE+YlRaq+rKkeUWw41d2/RC94 
    54 fpQ6gVyKXePfSW52flQcmrAHuRG8DyxQGSWlLDx6UuDzCfMQ/BW5aEVtpXIKfyfq 
    55 FbpcpjemyU85R6h7K8Q7Wmoa841np+KRdMSnhQ6VX9PcgfcNdNEzsV+zxb7kblYq 
    56 JXUEDFWmNcJmdoWPUXwLtvdA3wwy15k+cvLVw3X4BmyTXrrK76uOjcroePMIJpHr 
    57 AgMBAAGjFTATMBEGCWCGSAGG+EIBAQQEAwIE8DANBgkqhkiG9w0BAQQFAAOBgQCV 
    58 6yS7Tk04uA6NDvonYQuR956jp6Tg2LpXOu7fVFCAJhn1Ztdsg2Trsxo73HoISds/ 
    59 oZq/Awh/sowo68952aPwpHxlQMX+NIh/iEfiSzj01saRaZxoyu0D/PuDyAe+PDO+ 
    60 JIeqaH84GOP8l++P5G45+D3il5FKhug5UgGzMVTZXQ== 
     47MIICgDCCAemgAwIBAgIBFzANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 
     48ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 
     49MTAxMloXDTExMDYyOTExMTAxMlowPjEMMAoGA1UEChMDTkRHMR0wGwYDVQQLExRX 
     50Uy1TZWN1cml0eSBVbml0dGVzdDEPMA0GA1UEAxMGc2VydmVyMIIBIjANBgkqhkiG 
     519w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoechoxepcXtzi/4NZWXamq9Z4sI0VPdbdZH 
     52ZLVPYOG0AcYOIRbDF9J2+olilF3tPTabrvCi4mkIe39Y/ojH7xcpJWRWszt8J6Tu 
     53DveY73bK7ru0Uj9TK9aUlqk+axPmJUWqvqypHlFsONXdv0QveH6UOoFcil3j30lu 
     54dn5UHJqwB7kRvA8sUBklpSw8elLg8wnzEPwVuWhFbaVyCn8n6hW6XKY3pslPOUeo 
     55eyvEO1pqGvONZ6fikXTEp4UOlV/T3IH3DXTRM7Ffs8W+5G5WKiV1BAxVpjXCZnaF 
     56j1F8C7b3QN8MMteZPnLy1cN1+AZsk166yu+rjo3K6HjzCCaR6wIDAQABoxUwEzAR 
     57BglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAZ5ZFXnNmaSzx++1l 
     58yfppx2oOFdk7VhuQpScY90dw8BumQSHYIT4aroea8TY+As8fMIOv+P4hbBRFoJ45 
     598pHeCgYij00un2Z+JmE9zDFNQ55NXcYA74LtMFd2xE/bhXyXNaHQ/7iRoZzpo6jJ 
     60mYCkA2aL5kRU0Hxy2ODDO+qY5/c= 
    6161-----END CERTIFICATE----- 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/authz_lite/securityservices.ini

    r7077 r7153  
    1212# license: BSD - see LICENSE file in top-level directory 
    1313# Contact: Philip.Kershaw@stfc.ac.uk 
    14 # Revision: $Id:$ 
     14# Revision: $Id$ 
    1515 
    1616[DEFAULT] 
     
    110110# Apply verification against a list of trusted CAs.  To skip this step, comment 
    111111# out or remove this item.  e.g. set CA verification in the Apache config file. 
    112 ssl.caCertFilePathList = %(testConfigDir)s/ca/ndg-test-ca.crt 
     112ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 
    113113#ssl.clientCertDNMatchList = /O=NDG/OU=BADC/CN=mytest /O=gabriel/OU=BADC/CN=test /O=NDG/OU=BADC/CN=test 
    114114 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/dap/template/server-pydap2.ini

    r7077 r7153  
    8787# List of CA certificates used to verify the signatures of  
    8888# Attribute Certificates retrieved 
    89 pip.caCertFilePathList=%(here)s/pki/ca/ndg-test-ca.crt 
     89pip.caCertFilePathList=%(here)s/pki/ca/d573507a.0 
    9090 
    9191# 
     
    109109 
    110110# For signature verification.  Provide a space separated list of file paths 
    111 pip.wssecurity.caCertFilePathList=%(here)s/pki/ca/ndg-test-ca.crt 
     111pip.wssecurity.caCertFilePathList=%(here)s/pki/ca/d573507a.0 
    112112 
    113113# ValueType for the BinarySecurityToken added to the WSSE header 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openid/securityservices.ini

    r7077 r7153  
    5858attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 
    5959attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 
    60 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     60attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
    6161 
    6262#______________________________________________________________________________ 
     
    6868# 
    6969# CA certificates for Attribute Certificate signature validation 
    70 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     70sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    7171 
    7272# CA certificates for SSL connection peer cert. validation - required if 
    7373# connecting to an Attribute Authority over SSL 
    74 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     74sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    7575 
    7676# Allow Get Attribute Certificate calls to try to get a mapped certificate 
     
    101101# The CA certificates of other NDG trusted sites should go here.  NB, multiple 
    102102# values should be delimited by a space 
    103 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     103sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
    104104 
    105105# Signature of an outbound message 
     
    414414 
    415415# Verify against known CAs - Provide a space separated list of file paths 
    416 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     416wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    417417 
    418418#______________________________________________________________________________ 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidprovider/securityservices.ini

    r7077 r7153  
    5656attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 
    5757attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 
    58 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     58attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
    5959 
    6060#______________________________________________________________________________ 
     
    6666# 
    6767# CA certificates for Attribute Certificate signature validation 
    68 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     68sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    6969 
    7070# CA certificates for SSL connection peer cert. validation - required if 
    7171# connecting to an Attribute Authority over SSL 
    72 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     72sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    7373 
    7474# Allow Get Attribute Certificate calls to try to get a mapped certificate 
     
    9999# The CA certificates of other NDG trusted sites should go here.  NB, multiple 
    100100# values should be delimited by a space 
    101 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     101sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
    102102 
    103103# Signature of an outbound message 
     
    380380 
    381381# Verify against known CAs - Provide a space separated list of file paths 
    382 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     382wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    383383 
    384384#______________________________________________________________________________ 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidrelyingparty_withapp/securedapp.ini

    r7077 r7153  
    130130# List of CA certificates used to verify the signatures of  
    131131# Attribute Certificates retrieved 
    132 pip.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     132pip.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    133133 
    134134# 
     
    153153 
    154154# For signature verification.  Provide a space separated list of file paths 
    155 pip.wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     155pip.wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    156156 
    157157# ValueType for the BinarySecurityToken added to the WSSE header 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidrelyingparty_withapp/securityservices.ini

    r7077 r7153  
    1212# license: BSD - see LICENSE file in top-level directory 
    1313# Contact: Philip.Kershaw@stfc.ac.uk 
    14 # Revision: $Id:$ 
     14# Revision: $Id$ 
    1515 
    1616[DEFAULT] 
     
    212212attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 
    213213attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 
    214 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     214attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
    215215 
    216216 
     
    225225 
    226226# Verify against known CAs - Provide a space separated list of file paths 
    227 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ndg-test-ca.crt 
     227wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 
    228228 
    229229#______________________________________________________________________________ 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/configfileparsers/test.cfg

    r7077 r7153  
    3939# Test a 3rd level of nesting - prefixed for the Session Manager but the 
    4040# Session Manager itself has a Credential Wallet subcomponent 
    41 sessionManager.credentialWallet.caCertFilePathList=ca/ndg-test-ca.crt 
     41sessionManager.credentialWallet.caCertFilePathList=ca/d573507a.0 
    4242 
    4343# Test bool and int type conversions 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/credentialwallet/credWallet.cfg

    r7077 r7153  
    1515 
    1616# CA certificates for Attribute Certificate signature validation 
    17 caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ndg-test-ca.crt 
     17caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 
    1818 
    1919# CA certificates for SSL connection peer cert. validation 
    20 sslCACertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ndg-test-ca.crt 
     20sslCACertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 
    2121 
    2222# See attAuthority unit tests to get this service running 
     
    7979 
    8080# Provide a space separated list of file paths 
    81 wssecurity.caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ndg-test-ca.crt  
     81wssecurity.caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0  
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/myproxy/certificate_extapp/config.ini

    r7077 r7153  
    1212connectionString = sqlite:///$NDGSEC_TEST_CONFIG_DIR/user.db 
    1313openIdSqlQuery = select openid from users where username = '${username}'      
    14 #attributeAuthorityURI = https://localhost:5443/AttributeAuthority/saml 
    15 attributeAuthorityURI = http://localhost:5000/AttributeAuthority/saml 
     14attributeAuthorityURI = https://localhost:5443/AttributeAuthority 
     15#attributeAuthorityURI = http://localhost:5000/AttributeAuthority 
    1616attributeQuery.subjectIdFormat = urn:esg:openid 
    1717attributeQuery.issuerName = /O=Site A/CN=Authorisation Service 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/myproxy/certificate_extapp/test_saml_attribute_assertion.py

    r7077 r7153  
    1010__license__ = "BSD - see LICENSE file in top-level directory" 
    1111__contact__ = "Philip.Kershaw@stfc.ac.uk" 
    12 __revision__ = '$Id:$' 
     12__revision__ = '$Id$' 
    1313import logging 
    1414logging.basicConfig(level=logging.DEBUG) 
    1515 
    1616import os 
    17 from string import Template 
     17import sys 
    1818from cStringIO import StringIO 
    19  
    20 from sqlalchemy import create_engine, MetaData, Table, Column, Integer, String 
    21 from sqlalchemy.ext.declarative import declarative_base 
    22 from sqlalchemy.orm import sessionmaker 
     19import unittest 
    2320 
    2421from ndg.security.common.saml_utils.esg import EsgSamlNamespaces 
     
    2926 
    3027class CertExtAppTestCase(BaseTestCase): 
     28    """Test SAML Assertion Certificate Extension plugin for MyProxy""" 
    3129    THIS_DIR = os.path.dirname(__file__) 
    3230    OPENID_SQL_QUERY = ("select openid from users where username = " 
     
    4341        myProxyCertExtApp = CertExtApp() 
    4442        myProxyCertExtApp.connectionString = \ 
    45                     CertExtAppTestCase.DB_CONNECTION_STR 
     43                                            CertExtAppTestCase.DB_CONNECTION_STR 
    4644                     
    4745        myProxyCertExtApp.openIdSqlQuery = CertExtAppTestCase.OPENID_SQL_QUERY 
     
    128126        print(output) 
    129127         
     128         
     129if __name__ == "__main__": 
     130    unittest.main() 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/sslclientauthnmiddleware/test.ini

    r7077 r7153  
    2828errorResponseCode: 401 
    2929pathMatchList: /secure1 /secure2 
    30 caCertFilePathList: $NDGSEC_TEST_CONFIG_DIR/ca/ndg-test-ca.crt 
     30caCertFilePathList: $NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 
    3131 
    3232# Logging configuration 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini

    r7077 r7153  
    6666paste.filter_app_factory = ndg.security.server.wsgi.ssl:AuthKitSSLAuthnMiddleware 
    6767prefix = ssl. 
    68 ssl.caCertFilePathList = %(testConfigDir)s/ca/ndg-test-ca.crt 
     68ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 
    6969ssl.rePathMatchList = ^/ssl-client-authn.* 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/attribute-interface.ini

    r7077 r7153  
    7777attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 
    7878attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 
    79 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     79attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/test_soapauthzdecisioninterface.py

    r7077 r7153  
    187187        self.assert_(samlResponse.assertions[0].authzDecisionStatements[0 
    188188                                            ].decision == DecisionType.PERMIT) 
    189  
    190          
    191 class SOAPAuthzServiceMiddlewareTestCase( 
    192                                 SOAPAuthzDecisionInterfaceMiddlewareTestCase): 
    193     """Test the actual server side middleware  
    194     ndg.security.server.wsgi.authzservice.AuthzServiceMiddleware 
    195     rather than a test stub 
    196     """ 
    197     CONFIG_FILENAME = 'authz-service.ini' 
    198     RESOURCE_URI = 'http://localhost/dap/data/my.nc.dods?time[0:1:0]&lat' 
    199     ACCESS_DENIED_RESOURCE_URI = \ 
    200         'http://localhost/dap/data/test_accessDeniedToSecuredURI' 
    201      
    202     def __init__(self, *arg, **kw): 
    203         """Extend base init to include SAML Attribute Authority required by 
    204         Authorisation Service""" 
    205         super(SOAPAuthzDecisionInterfaceMiddlewareTestCase, self).__init__( 
    206                                                                     *arg, **kw) 
    207         self.startSiteAAttributeAuthority(withSSL=True, port=5443) 
    208          
    209     def test02AccessDenied(self): 
    210         cls = SOAPAuthzServiceMiddlewareTestCase 
    211         query = self._createAuthzDecisionQuery( 
    212                                         resource=cls.ACCESS_DENIED_RESOURCE_URI) 
    213         request = self._makeRequest(query=query) 
    214          
    215         header = { 
    216             'soapAction': "http://www.oasis-open.org/committees/security", 
    217             'Content-length': str(len(request)), 
    218             'Content-type': 'text/xml' 
    219         } 
    220         response = self.app.post('/authorisationservice/',  
    221                                  params=request,  
    222                                  headers=header,  
    223                                  status=200) 
    224         print("Response status=%d" % response.status) 
    225         samlResponse = self._getSAMLResponse(response.body) 
    226  
    227         self.assert_(samlResponse.status.statusCode.value == \ 
    228                      StatusCode.SUCCESS_URI) 
    229         self.assert_(samlResponse.inResponseTo == query.id) 
    230         self.assert_(samlResponse.assertions[0].subject.nameID.value == \ 
    231                      query.subject.nameID.value) 
    232         self.assert_(samlResponse.assertions[0]) 
    233         self.assert_(samlResponse.assertions[0].authzDecisionStatements[0]) 
    234         self.assert_(samlResponse.assertions[0].authzDecisionStatements[0 
    235                                             ].decision == DecisionType.DENY)    
    236189     
    237190     
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/ssl/test.ini

    r7077 r7153  
    2121paste.filter_app_factory = ndg.security.server.wsgi.ssl:ApacheSSLAuthnMiddleware 
    2222prefix = ssl. 
    23 ssl.caCertFilePathList = %(testConfigDir)s/ca/ndg-test-ca.crt 
     23ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 
    2424ssl.rePathMatchList = ^/secured/.*$ ^/restrict.* 
    2525ssl.clientCertDNMatchList = /O=NDG/OU=BADC/CN=test, /O=localhost/OU=local client/CN=test 2 
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/x509/x509Test.cfg

    r7077 r7153  
    1414certfile: $NDGSEC_TEST_CONFIG_DIR/pki/user.crt 
    1515proxycertfile: $NDGSEC_X509_UNITTEST_DIR/proxy.crt 
    16 cacertfile: $NDGSEC_TEST_CONFIG_DIR/ca/ndg-test-ca.crt 
     16cacertfile: $NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 
    1717 
Note: See TracChangeset for help on using the changeset viewer.