testCertificateAuthorityTool.py 4.06 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52
# -*- coding: utf-8 -*-
##############################################################################
#
# Copyright (c) 2005 Nexedi SARL and Contributors. All Rights Reserved.
#                     Ivan Tyagov <ivan@nexedi.com>
#
# WARNING: This program as such is intended to be used by professional
# programmers who take the whole responsability of assessing all potential
# consequences resulting from its eventual inadequacies and bugs
# End users who are looking for a ready-to-use solution with commercial
# garantees and support are strongly adviced to contract a Free Software
# Service Company
#
# This program is Free Software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
#
##############################################################################

import os
import random
import unittest
from Products.ERP5Type.tests.ERP5TypeTestCase import ERP5TypeTestCase
from AccessControl import Unauthorized

class TestCertificateAuthority(ERP5TypeTestCase):

  def getTitle(self):
    return "Test Certificate Authority"

  def afterSetUp(self):
    self.portal.portal_certificate_authority.certificate_authority_path = \
        os.environ['TEST_CA_PATH']

  def getBusinessTemplateList(self):
    return ('erp5_base', 'erp5_certificate_authority')

  def _createPerson(self):
    login = str(random.random())
    person = self.portal.person_module.newContent(portal_type='Person',
      reference=login, password=login)
    person.newContent(portal_type='Assignment').open()
53
    self.tic()
54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105
    return login

  def test_person_request_certificate(self):
    login = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login)
    certificate = person.getCertificate()
    self.assertTrue('CN=%s' % login in certificate['certificate'])

  def test_person_revoke_certificate(self):
    login = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login)
    self.assertRaises(ValueError, person.revokeCertificate)

  def test_person_request_revoke_certificate(self):
    login = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login)
    certificate = person.getCertificate()
    self.assertTrue('CN=%s' % login in certificate['certificate'])
    person.revokeCertificate()

  def test_person_request_certificate_twice(self):
    login = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login)
    certificate = person.getCertificate()
    self.assertTrue('CN=%s' % login in certificate['certificate'])
    self.assertRaises(ValueError, person.getCertificate)

  def test_person_request_certificate_for_another(self):
    login = self._createPerson()
    login2 = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login2)
    self.assertRaises(Unauthorized, person.getCertificate)

  def test_person_revoke_certificate_for_another(self):
    login = self._createPerson()
    login2 = self._createPerson()
    person = self.portal.ERP5Site_getAuthenticatedMemberPersonValue(login)
    self.login(login)
    certificate = person.getCertificate()
    self.assertTrue('CN=%s' % login in certificate['certificate'])
    self.login(login2)
    self.assertRaises(Unauthorized, person.revokeCertificate)

def test_suite():
  suite = unittest.TestSuite()
  suite.addTest(unittest.makeSuite(TestCertificateAuthority))
  return suite