Changeset 6202 for TI12-security/trunk/python/ndg_security_test/ndg/security/test

Timestamp:

21/12/09 16:40:20 (11 years ago)

Author:

pjkersha

Message:

Adding information about requested attributes for the decide page interface of the OpenID Provider.

Location:

TI12-security/trunk/python/ndg_security_test/ndg/security/test

Files:

• integration/authz_lite/openidprovider/associations/http-localhost-24n.kfUjLruFG.Vi4xNrwEMPRyU-R7HuGyarFSQketW2tWkRrckDzKQ (added)
• integration/authz_lite/openidprovider/associations/http-localhost-24n.kfUjLruFG.Vi4xNrwEMPRyU-h5OmM8Aj1rOhAxg98UkjBQ6xNdU (deleted)
• integration/authz_lite/openidrelyingparty/store/associations/https-localhost_3A7443-B16p5yAhGqRC1qWMEEpkriM9tU8-R7HuGyarFSQketW2tWkRrckDzKQ (added)
• integration/authz_lite/openidrelyingparty/store/associations/https-localhost_3A7443-B16p5yAhGqRC1qWMEEpkriM9tU8-h5OmM8Aj1rOhAxg98UkjBQ6xNdU (deleted)
• integration/authz_lite/openidrelyingparty/store/nonces/4b275086-https-localhost_3A7443-B16p5yAhGqRC1qWMEEpkriM9tU8-8jdTwydB4nrz..jh7pPef9gA6RI (deleted)
• integration/authz_lite/securityservices.ini (modified) (2 diffs)
• unit/wsgi/myproxy/test_myproxy.py (modified) (4 diffs)

TI12-security/trunk/python/ndg_security_test/ndg/security/test/integration/authz_lite/securityservices.ini

@@ -181 +181 @@
 #authkit.openid.ax.alias.firstName=first_name
 #authkit.openid.ax.count.firstName=1
+#authkit.openid.ax.required.firstName=True
 authkit.openid.ax.typeuri.lastName=http://openid.net/schema/namePerson/last
+authkit.openid.ax.required.lastName=True
 authkit.openid.ax.typeuri.emailAddress=http://openid.net/schema/contact/internet/email
-#authkit.openid.ax.required.emailAddress=True
+authkit.openid.ax.required.emailAddress=True
 
 
@@ -209 +211 @@
 # <meta http-equiv="x-xrds-location" content="..."> links if required but in 
 # this implementation it set to return 404 not found - see 
-# ndg.security.server.wsgi.openid.provider.renderinginterface.buffet.BuffetRendering 
+# ndg.security.server.wsgi.openid.provider.renderinginterface.genshi.GenshiRendering 
 # class
 openid.provider.path.id=/OpenID/Provider/id/${userIdentifier}

TI12-security/trunk/python/ndg_security_test/ndg/security/test/unit/wsgi/myproxy/test_myproxy.py

@@ -16 +16 @@
 import urllib2
 import base64
+
 import paste.fixture
 from paste.deploy import loadapp
+
+from M2Crypto import X509
+
 from ndg.security.test.unit import BaseTestCase
 from ndg.security.common.utils.configfileparsers import \
@@ -129 +133 @@
         BaseTestCase.__init__(self, *args, **kwargs)
 
+        # Thread separate Paster based service 
+        self.addService(app=self.wsgiapp, 
+                        port=MyProxyLogonMiddlewareTestCase.SERVICE_PORTNUM)
+
     def test01PasteFixtureInvalidCredentials(self):
         username = '_test'
@@ -160 +168 @@
         print response
         
-    def test03Urllib2Client(self):
-        # Thread separate Paster based service 
-        self.addService(app=self.wsgiapp, 
-                        port=MyProxyLogonMiddlewareTestCase.SERVICE_PORTNUM)
-        
-        username = self.username
-        if self.password is None:
-            from getpass import getpass
-            password = getpass('test03Urllib2Client: MyProxy pass-phrase for '
-                               '%r: ' % username)
+    def test03Urllib2ClientGET(self):
+        
+        username = self.username
+        if self.password is None:
+            from getpass import getpass
+            password = getpass('test03Urllib2ClientGET: MyProxy pass-phrase '
+                               'for %r: ' % username)
         else:
             password = self.password
@@ -186 +191 @@
         print (response)
         
-    def test04WGetClient(self):
+    def test04Urllib2ClientPOST(self):
+        
+        username = self.username
+        if self.password is None:
+            from getpass import getpass
+            password = getpass('test04Urllib2ClientPOST: MyProxy pass-phrase '
+                               'for %r: ' % username)
+        else:
+            password = self.password
+
+        url = 'http://localhost:%d/test_200' % \
+            MyProxyLogonMiddlewareTestCase.SERVICE_PORTNUM
+            
+        req = urllib2.Request(url)
+        base64String = base64.encodestring('%s:%s' % (username, password))[:-1]
+        authHeader =  "Basic %s" % base64String
+        req.add_header("Authorization", authHeader)
+        
+        # Create key pair
+        keys = RSA.gen_key(nBitsForKey, m2.RSA_F4)
+        certReq = X509.Request()
+        
+        # Create public key object
+        pubKey = EVP.PKey()
+        pubKey.assign_rsa(keys)
+        
+        # Add the public key to the request
+        certReq.set_version(0)
+        certReq.set_pubkey(pubKey)
+        
+        x509Name = X509.X509_Name()                        
+        certReq.set_subject_name(x509Name)
+        
+        certReq.sign(pubKey, messageDigest)
+
+        pemCertReq = certReq.as_pem()
+       
+        handle = urllib2.urlopen(req, data=pemCertReq)
+        
+        response = handle.read()
+        print (response)
+        
+    def test05WGetClient(self):
         uri = ('http://localhost:%d/test_200' % 
                   MyProxyLogonMiddlewareTestCase.SERVICE_PORTNUM)