/*
|
* The contents of this file are subject to the terms of the Common Development and
|
* Distribution License (the License). You may not use this file except in compliance with the
|
* License.
|
*
|
* You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
|
* specific language governing permission and limitations under the License.
|
*
|
* When distributing Covered Software, include this CDDL Header Notice in each file and include
|
* the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
|
* Header, with the fields enclosed by brackets [] replaced by your own identifying
|
* information: "Portions Copyright [year] [name of copyright owner]".
|
*
|
* Copyright 2014 ForgeRock AS.
|
*/
|
package org.forgerock.opendj.server.setup.model;
|
|
import static org.fest.assertions.Assertions.assertThat;
|
|
import java.io.File;
|
import java.io.IOException;
|
|
import org.forgerock.opendj.config.server.ConfigException;
|
import org.forgerock.opendj.server.setup.model.Certificate.CertificateType;
|
import org.testng.annotations.Test;
|
|
public class CertificateTestCase extends AbstractSetupTestCase {
|
|
/**
|
* Default is a self-signed certificate.
|
*/
|
@Test
|
public void testGetDefault() {
|
final Certificate cert = new Certificate();
|
assertThat(cert.getType()).isEqualTo(CertificateType.SELF_SIGNED);
|
assertThat(cert.getKeyStoreFile()).isNull();
|
assertThat(cert.getKeyStorePin()).isEmpty();
|
}
|
|
@Test
|
public void testValidateDefaultCertificate() throws ConfigException {
|
final Certificate cert = new Certificate();
|
cert.validate();
|
}
|
|
/**
|
* Certificates which are not self-signed should fail when no key store is provided.
|
*
|
* @throws ConfigException
|
*/
|
@Test(expectedExceptions = ConfigException.class)
|
public void testValidateCertificateFailsWhenNoKeystoreProvided() throws ConfigException {
|
final Certificate cert = new Certificate();
|
cert.setType(CertificateType.JKS);
|
cert.validate();
|
}
|
|
/**
|
* Certificates which are not self-signed should fail when no key store is provided.
|
*
|
* @throws ConfigException
|
*/
|
@Test(expectedExceptions = ConfigException.class)
|
public void testValidatePKCS11CertificateFailsWhenNoKeyPinProvided() throws ConfigException {
|
final Certificate cert = new Certificate();
|
cert.setType(CertificateType.PKCS11);
|
cert.validate();
|
}
|
|
/**
|
* Certificates which are not self-signed should fail when no key pin is provided.
|
*
|
* @throws ConfigException
|
* Occurs if this configuration is invalid.
|
* @throws IOException
|
* If an exception occurs when creating the keystore.
|
*/
|
@Test(expectedExceptions = ConfigException.class)
|
public void testValidateCertificateFailsWhenNoKeyPinProvided() throws ConfigException, IOException {
|
final Certificate cert = new Certificate();
|
cert.setType(CertificateType.JKS);
|
File keystore = null;
|
try {
|
keystore = File.createTempFile("keystore", ".keystore");
|
cert.setKeyStoreFile(keystore);
|
cert.validate();
|
} catch (IOException e) {
|
throw e;
|
} finally {
|
if (keystore != null) {
|
keystore.delete();
|
}
|
}
|
}
|
|
/**
|
* Builds a new JKS certificate.
|
*
|
* @throws ConfigException
|
* Occurs if this configuration is invalid.
|
* @throws IOException
|
* If an exception occurs when creating the temp keystore.
|
*/
|
@Test
|
public void testValidateJKSCertificate() throws ConfigException, IOException {
|
final Certificate cert = new Certificate();
|
cert.setType(CertificateType.JKS);
|
File keystore = null;
|
try {
|
keystore = File.createTempFile("keystore", ".keystore");
|
cert.setKeyStoreFile(keystore);
|
cert.setKeyStorePin("key pin");
|
cert.validate();
|
} finally {
|
if (keystore != null) {
|
keystore.delete();
|
}
|
}
|
}
|
|
}
|
