Changeset 7153
- Timestamp:
- 01/07/10 16:10:08 (11 years ago)
- Location:
- TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test
- Files:
-
- 1 added
- 3 deleted
- 22 edited
Legend:
- Unmodified
- Added
- Removed
-
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/siteA-aa.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 2 53 (0xfd)4 Serial Number: 20 (0x14) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Dec 15 16:35:24 2008GMT9 Not After : Dec 14 16:35:24 2013GMT10 Subject: O=NDG Security Test, OU=Site A, CN=AttributeAuthority8 Not Before: Jun 29 10:54:18 2010 GMT 9 Not After : Jun 29 10:54:18 2011 GMT 10 Subject: O=NDG, OU=Site A, CN=AttributeAuthority 11 11 Subject Public Key Info: 12 12 Public Key Algorithm: rsaEncryption … … 27 27 SSL Client, SSL Server, S/MIME, Object Signing 28 28 Signature Algorithm: md5WithRSAEncryption 29 58:3d:38:b1:c0:41:f7:59:16:4f:ca:97:29:9c:8d:d8:46:79:30 9c:11:6a:b3:a4:44:5e:d2:3e:75:d3:9a:66:de:d5:b6:26:87:31 60:c5:c0:99:c4:56:fe:40:b0:f1:88:12:f9:49:65:fa:66:69:32 03:0a:56:51:4f:64:47:f0:39:75:b8:88:0c:34:5b:c6:5c:f8:33 04:90:9e:32:09:0e:fc:ec:54:df:5c:e6:be:aa:9a:db:75:32:34 19:73:e1:b5:a4:ee:a3:c0:c6:da:e4:ab:e5:70:e4:e8:69:c9:35 e6:c6:f4:58:1d:d4:82:c4:61:ed:5e:2b:c9:69:12:b4:89:82:36 48:6629 11:94:83:d8:1e:09:2a:1f:48:c8:a2:a2:11:c9:ad:f8:8e:e6: 30 62:cb:30:18:18:3e:ea:61:12:36:6b:5b:f6:d2:01:3c:fc:04: 31 92:9b:e0:c3:a4:9c:fd:00:a2:74:48:52:68:8a:7d:32:d6:04: 32 29:ca:3b:db:7c:aa:cb:99:4d:b6:8e:1a:27:33:b9:1e:f7:97: 33 14:12:72:80:16:a6:28:63:04:27:db:1d:8c:08:ca:ae:47:70: 34 e5:6d:c1:d9:27:85:c6:ba:dc:cc:bc:37:01:22:39:24:48:2f: 35 ca:7f:92:dd:3a:15:68:f7:c1:df:83:c1:f9:6a:72:7a:3d:b4: 36 d4:47 37 37 -----BEGIN CERTIFICATE----- 38 MII CBTCCAW6gAwIBAgICAP0wDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH39 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNTE2MzUy 40 N FoXDTEzMTIxNDE2MzUyNFowSjEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx41 DzANBgNVBAsTBlNpdGUgQTEbMBkGA1UEAxMSQXR0cmlidXRlQXV0aG9yaXR5MIGf 42 MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCntf+hUxFKXx/KY3LXy/RYc/yqhfIL 43 M8h95c14n/WdSqh8rK3VxkUu5gujlEgCHafI2AjNZJZqJfKG7ZucYmRcnXbCX1qP 44 IGKa+TllbIWdsa5y/IF/Do2AoPMJnTNJ2U1IBfPQXbO5Sd49OvfTi4Cldk89872R 45 IuzPmLIDcFydgQIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcN 46 AQEEBQADgYEAWD04scBB91kWT8qXKZyN2EZ5nBFqs6REXtI+ddOaZt7VtiaHYMXA 47 mcRW/kCw8YgS+Ull+mZpAwpWUU9kR/A5dbiIDDRbxlz4BJCeMgkO/OxU31zmvqqa 48 23UyGXPhtaTuo8DG2uSr5XDk6GnJ5sb0WB3UgsRh7V4ryWkStImCSGY= 38 MIIB+jCCAWOgAwIBAgIBFDANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 39 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEw 40 NTQxOFoXDTExMDYyOTEwNTQxOFowPDEMMAoGA1UEChMDTkRHMQ8wDQYDVQQLEwZT 41 aXRlIEExGzAZBgNVBAMTEkF0dHJpYnV0ZUF1dGhvcml0eTCBnzANBgkqhkiG9w0B 42 AQEFAAOBjQAwgYkCgYEAp7X/oVMRSl8fymNy18v0WHP8qoXyCzPIfeXNeJ/1nUqo 43 fKyt1cZFLuYLo5RIAh2nyNgIzWSWaiXyhu2bnGJkXJ12wl9ajyBimvk5ZWyFnbGu 44 cvyBfw6NgKDzCZ0zSdlNSAXz0F2zuUnePTr304uApXZPPfO9kSLsz5iyA3BcnYEC 45 AwEAAaMVMBMwEQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBABGU 46 g9geCSofSMiiohHJrfiO5mLLMBgYPuphEjZrW/bSATz8BJKb4MOknP0AonRIUmiK 47 fTLWBCnKO9t8qsuZTbaOGiczuR73lxQScoAWpihjBCfbHYwIyq5HcOVtwdknhca6 48 3My8NwEiOSRIL8p/kt06FWj3wd+Dwflqcno9tNRH 49 49 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/localhost.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 2 63 (0x107)4 Serial Number: 2 (0x2) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Jun 9 09:28:37 2009GMT9 Not After : Jun 9 09:28:37 2010GMT10 Subject: C=UK, ST=Oxfordshire, O=BADC, OU=Security, CN=localhost8 Not Before: Jun 11 09:04:56 2010 GMT 9 Not After : Jun 11 09:04:56 2011 GMT 10 Subject: O=NDG, OU=Security, CN=localhost 11 11 Subject Public Key Info: 12 12 Public Key Algorithm: rsaEncryption … … 36 36 SSL Client, SSL Server, S/MIME, Object Signing 37 37 Signature Algorithm: md5WithRSAEncryption 38 8b:8c:45:03:bb:90:4a:70:54:28:69:b7:02:3e:50:95:12:10:39 ef:c7:d4:48:c2:56:be:7a:4d:0a:6e:28:9f:07:4d:71:8c:01:40 fc:e0:e0:dd:6e:ef:5a:d7:b0:0c:df:14:be:af:e4:20:11:4c:41 ca:9b:4b:ae:ce:4b:0f:1f:46:b0:57:74:e0:86:ff:94:b2:27:42 0b:2a:7b:e9:09:d5:2b:72:14:fe:99:5c:66:12:87:31:2f:e0:43 7b:5c:47:b5:52:09:bb:18:09:d8:0a:c2:95:8e:bf:23:e6:ac:44 0d:ea:48:19:c8:11:e6:8f:da:10:d2:cd:a2:de:72:e7:b1:75:45 c0:d838 70:9e:28:be:0e:7e:b2:af:0b:95:e9:60:ea:1b:51:bc:02:76: 39 f3:67:69:47:ba:99:a1:4e:0f:2f:cb:2c:e8:ac:0e:20:b8:dd: 40 e0:70:9f:d0:5b:a6:5f:cd:42:3f:a6:aa:98:ef:f8:39:4a:ac: 41 79:8d:71:79:a4:98:19:00:e4:87:34:e6:c4:f6:8d:b5:d2:c3: 42 cf:45:77:e7:54:c9:3a:81:b6:47:da:ce:71:ba:79:4c:e2:d5: 43 40:44:b1:55:b6:a7:7b:57:31:43:fb:8c:58:f3:83:d3:68:e2: 44 5c:a4:30:2c:cc:c2:b0:e5:3f:84:18:2b:34:f6:39:50:a0:61: 45 13:28 46 46 -----BEGIN CERTIFICATE----- 47 MIIC mDCCAgGgAwIBAgICAQcwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA5MDYwOTA5Mjgz 49 N1oXDTEwMDYwOTA5MjgzN1owWTELMAkGA1UEBhMCVUsxFDASBgNVBAgTC094Zm9y 50 Z HNoaXJlMQ0wCwYDVQQKEwRCQURDMREwDwYDVQQLEwhTZWN1cml0eTESMBAGA1UE51 A xMJbG9jYWxob3N0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOCU52 wunA35Y2uk0OP7xBUXtP/tiCR1L4Nlc1FTuDd7qEqqNI8AMLWrcxQI0/hwWeBsZy 53 H8p97XM80HZNOzKJ5x9bhCe/i3IJKtRAjSzEwyNobPRiVajgLorItF+/4RjXaqYa 54 kG3mgxcQOpW12g1EP9/7bMWevx0EXxwWzp73nYH4/spDgl9ryHAX+OjzdNn7rBSv 55 mY/9863ifo3zvYkV8DnqUXwpgYy8umNraeDBRi8nk4OFvou7qrh2w+yK9lDhw5Ce 56 Rx0ZaEBiWROL6+iJZCDso7fnso+Y8mS0qm7Q8XP86u0ZGWeYEfWVynYLx0M1PFMj 57 tWewtSZZ0cU+StFw3QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJKoZI 58 hvcNAQEEBQADgYEAi4xFA7uQSnBUKGm3Aj5QlRIQ78fUSMJWvnpNCm4onwdNcYwB 59 /ODg3W7vWtewDN8Uvq/kIBFMyptLrs5LDx9GsFd04Ib/lLInCyp76QnVK3IU/plc 60 ZhKHMS/ge1xHtVIJuxgJ2ArClY6/I+asDepIGcgR5o/aENLNot5y57F1wNg=47 MIICdzCCAeCgAwIBAgIBAjANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 48 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYxMTA5 49 MDQ1NloXDTExMDYxMTA5MDQ1NlowNTEMMAoGA1UEChMDTkRHMREwDwYDVQQLEwhT 50 ZWN1cml0eTESMBAGA1UEAxMJbG9jYWxob3N0MIIBIjANBgkqhkiG9w0BAQEFAAOC 51 AQ8AMIIBCgKCAQEAwOCUwunA35Y2uk0OP7xBUXtP/tiCR1L4Nlc1FTuDd7qEqqNI 52 8AMLWrcxQI0/hwWeBsZyH8p97XM80HZNOzKJ5x9bhCe/i3IJKtRAjSzEwyNobPRi 53 VajgLorItF+/4RjXaqYakG3mgxcQOpW12g1EP9/7bMWevx0EXxwWzp73nYH4/spD 54 gl9ryHAX+OjzdNn7rBSvmY/9863ifo3zvYkV8DnqUXwpgYy8umNraeDBRi8nk4OF 55 vou7qrh2w+yK9lDhw5CeRx0ZaEBiWROL6+iJZCDso7fnso+Y8mS0qm7Q8XP86u0Z 56 GWeYEfWVynYLx0M1PFMjtWewtSZZ0cU+StFw3QIDAQABoxUwEzARBglghkgBhvhC 57 AQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAcJ4ovg5+sq8Llelg6htRvAJ282dp 58 R7qZoU4PL8ss6KwOILjd4HCf0FumX81CP6aqmO/4OUqseY1xeaSYGQDkhzTmxPaN 59 tdLDz0V351TJOoG2R9rOcbp5TOLVQESxVbane1cxQ/uMWPOD02jiXKQwLMzCsOU/ 60 hBgrNPY5UKBhEyg= 61 61 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/test.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 2 57 (0x101)4 Serial Number: 24 (0x18) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Dec 16 15:11:48 2008GMT9 Not After : Dec 15 15:11:48 2013GMT8 Not Before: Jun 29 11:14:44 2010 GMT 9 Not After : Jun 29 11:14:44 2011 GMT 10 10 Subject: O=NDG, OU=BADC, CN=test 11 11 Subject Public Key Info: … … 36 36 SSL Client, SSL Server, S/MIME, Object Signing 37 37 Signature Algorithm: md5WithRSAEncryption 38 3c:2d:44:82:80:fd:03:ef:4e:eb:43:f9:52:cd:eb:0c:28:6f:39 47:6c:76:7f:cb:97:ff:bc:3e:dc:69:4d:05:cd:00:ed:40:f4:40 6 5:41:04:9e:05:26:9e:f9:1c:9b:56:13:38:2c:23:dc:42:0d:41 9e:f3:fa:4b:a0:25:c6:3e:ac:d9:7f:2d:2d:63:d4:19:32:d5:42 bb:6a:7d:dd:7e:72:ed:19:d8:93:a8:ac:48:4a:18:8f:39:b0:43 fc:b8:9a:c9:01:f3:ae:6f:fb:84:d4:76:d1:30:04:fd:ac:44:44 5b:ba:d2:ea:ce:dc:47:2e:70:54:35:15:d1:53:4c:41:0b:89:45 71:2838 74:79:d9:10:9c:c9:8a:dc:72:85:71:62:2a:b3:96:be:ea:69: 39 87:25:77:f0:c1:12:4b:e1:81:30:01:eb:94:e5:2f:ce:13:55: 40 6f:57:2b:15:35:53:2f:81:dd:6a:eb:61:30:8a:34:ab:c4:29: 41 19:df:e7:61:d6:22:d8:32:d9:29:7c:c7:b7:8f:3a:f7:8c:e2: 42 8f:d3:6a:6b:af:6e:20:71:f9:ee:a2:8d:ec:66:88:5d:11:14: 43 7b:37:df:ae:cd:16:76:b3:27:1d:3c:7b:17:70:7b:6d:d4:28: 44 c0:c3:81:a5:79:d4:5d:b7:61:c6:14:d9:cb:66:66:c9:59:47: 45 13:8f 46 46 -----BEGIN CERTIFICATE----- 47 MIICazCCAdSgAwIBAgICAQEwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH 48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTE0 49 OFoXDTEzMTIxNTE1MTE0OFowLDEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRCQURD 50 MQ0wCwYDVQQDEwR0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 51 rpbuNUHWVRwhjHzhTOdym+fcZdmD7HbaeoFdef2V//Wj41xMieMZy9XQft2dFBDY 52 ZIHLElojVhZTHoowMkwXxsmLt7hZF8fL7j3ssU/lflM9E0Uk2dZxaAt97zXEruEH 53 JoNqHTEQlH0qMALfuUrAaZEIXHDdTQDNRJl4oXvjJWaqS8Y5Je8QREThIE5hRd9F 54 oUlgfMNNnwzLyIH7s0KBci2yryeubAG/Qig5LkulbpnhxYLCcLvs3THQ3kO5qYYb 55 B0g11YOBgshZ0SpNwEEyhDzHUt3Ii2XmAh25/II08BR61fhMZvSJ/tVGJY4HfWG7 56 B4PZzYwo5vn/tYH1mk7w5QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAwDQYJ 57 KoZIhvcNAQEEBQADgYEAPC1EgoD9A+9O60P5Us3rDChvR2x2f8uX/7w+3GlNBc0A 58 7UD0ZUEEngUmnvkcm1YTOCwj3EINnvP6S6Alxj6s2X8tLWPUGTLVu2p93X5y7RnY 59 k6isSEoYjzmw/LiayQHzrm/7hNR20TAE/axEW7rS6s7cRy5wVDUV0VNMQQuJcSg= 47 MIICbjCCAdegAwIBAgIBGDANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 48 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 49 MTQ0NFoXDTExMDYyOTExMTQ0NFowLDEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRC 50 QURDMQ0wCwYDVQQDEwR0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC 51 AQEArpbuNUHWVRwhjHzhTOdym+fcZdmD7HbaeoFdef2V//Wj41xMieMZy9XQft2d 52 FBDYZIHLElojVhZTHoowMkwXxsmLt7hZF8fL7j3ssU/lflM9E0Uk2dZxaAt97zXE 53 ruEHJoNqHTEQlH0qMALfuUrAaZEIXHDdTQDNRJl4oXvjJWaqS8Y5Je8QREThIE5h 54 Rd9FoUlgfMNNnwzLyIH7s0KBci2yryeubAG/Qig5LkulbpnhxYLCcLvs3THQ3kO5 55 qYYbB0g11YOBgshZ0SpNwEEyhDzHUt3Ii2XmAh25/II08BR61fhMZvSJ/tVGJY4H 56 fWG7B4PZzYwo5vn/tYH1mk7w5QIDAQABoxUwEzARBglghkgBhvhCAQEEBAMCBPAw 57 DQYJKoZIhvcNAQEEBQADgYEAdHnZEJzJitxyhXFiKrOWvupphyV38MESS+GBMAHr 58 lOUvzhNVb1crFTVTL4HdauthMIo0q8QpGd/nYdYi2DLZKXzHt48694zij9Nqa69u 59 IHH57qKN7GaIXREUezffrs0WdrMnHTx7F3B7bdQowMOBpXnUXbdhxhTZy2ZmyVlH 60 E48= 60 61 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/user.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 25 8 (0x102)4 Serial Number: 25 (0x19) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Dec 16 15:18:25 2008GMT9 Not After : Dec 15 15:18:25 2013GMT8 Not Before: Jun 29 11:51:27 2010 GMT 9 Not After : Jun 29 11:51:27 2011 GMT 10 10 Subject: O=NDG, OU=BADC, OU=Gabriel, CN=testuser 11 11 Subject Public Key Info: … … 36 36 SSL Client, SSL Server, S/MIME, Object Signing 37 37 Signature Algorithm: md5WithRSAEncryption 38 95:07:9e:9a:d7:de:2b:9c:3c:a0:cc:5e:5d:dd:87:a9:84:3b:39 2 c:17:4e:fd:b5:87:ce:31:b7:74:4c:dc:94:4e:96:ea:a8:5f:40 01:52:df:31:33:eb:7f:1f:25:d4:65:e4:6d:b1:72:11:cc:0c:41 3f:0e:1d:e8:89:90:ec:2b:64:dc:34:36:19:74:2b:52:5c:e4:42 f5:6f:d3:02:b2:47:65:4c:79:17:0c:e3:14:c5:e2:bf:89:fd:43 e5:a6:d5:6c:44:67:5f:e0:43:3d:6f:97:19:f0:57:fe:a9:02:44 0a:56:90:af:fa:15:95:d0:cd:26:dd:44:c9:38:ec:d4:c1:e0:45 8c:4338 31:bc:bd:79:5e:9e:8d:f5:dd:8d:3c:c2:dd:2a:99:7f:b1:06: 39 29:f2:aa:3f:16:7c:ca:bf:b9:ec:d2:b4:5a:c5:57:98:4b:34: 40 ff:88:6d:76:30:68:3e:2a:c9:50:b4:af:92:87:3e:67:f3:02: 41 76:f7:e1:48:34:06:8e:4b:f6:4e:a5:3c:9f:ac:6f:0e:f7:ec: 42 34:ce:b8:ca:2e:90:0f:f0:cb:2f:2b:6f:76:0a:7f:e3:b0:eb: 43 1a:43:cb:84:d8:f3:81:3e:48:4c:fa:f3:fd:e4:32:ad:43:86: 44 41:85:00:cf:01:c3:c2:02:5c:1a:28:c3:b9:6c:09:23:bf:2c: 45 96:77 46 46 -----BEGIN CERTIFICATE----- 47 MIIC gTCCAeqgAwIBAgICAQIwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTgy 49 N VoXDTEzMTIxNTE1MTgyNVowQjEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRCQURD50 MRAwDgYDVQQLEwdHYWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjCCASIwDQYJKoZI 51 hvcNAQEBBQADggEPADCCAQoCggEBAOdL1ZgnNhthCgNzg3vO/8jMbpfa0aggwKmq 52 Yib2+RiIElRpPa6iYQxDQ3J1LzXTqn7cHyyLhT0DpH6/oszmXthSCP2LrZkbtMm7 53 CDTWj60i/e0N53sezmcBBqE5Ttn2PKLpWPGYNX3Z+3qnd3PYpQQ08d75GXwfOsz/ 54 MRn77l9sxKB9yT3nMGJuMzaBbUBCStsbFIzFXbNSkE29jVDLwehdIPb7taIDrPuB 55 vTnxOuscWOWjooDURwr4JeP0XRqBGcvcq6Ba24FxSr+R+UwyoDqLYmnrLDlxrecp 56 QCIYArOPlkgOi0Kw5nu9B3pMzp6UqXH4b8JXcBW2t2cRMzWo+VcCAwEAAaMVMBMw 57 EQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBAJUHnprX3iucPKDM 58 Xl3dh6mEOywXTv21h84xt3RM3JROluqoXwFS3zEz638fJdRl5G2xchHMDD8OHeiJ 59 kOwrZNw0Nhl0K1Jc5PVv0wKyR2VMeRcM4xTF4r+J/eWm1WxEZ1/gQz1vlxnwV/6p 60 AgpWkK/6FZXQzSbdRMk47NTB4IxD 47 MIIChDCCAe2gAwIBAgIBGTANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 48 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 49 NTEyN1oXDTExMDYyOTExNTEyN1owQjEMMAoGA1UEChMDTkRHMQ0wCwYDVQQLEwRC 50 QURDMRAwDgYDVQQLEwdHYWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjCCASIwDQYJ 51 KoZIhvcNAQEBBQADggEPADCCAQoCggEBAOdL1ZgnNhthCgNzg3vO/8jMbpfa0agg 52 wKmqYib2+RiIElRpPa6iYQxDQ3J1LzXTqn7cHyyLhT0DpH6/oszmXthSCP2LrZkb 53 tMm7CDTWj60i/e0N53sezmcBBqE5Ttn2PKLpWPGYNX3Z+3qnd3PYpQQ08d75GXwf 54 Osz/MRn77l9sxKB9yT3nMGJuMzaBbUBCStsbFIzFXbNSkE29jVDLwehdIPb7taID 55 rPuBvTnxOuscWOWjooDURwr4JeP0XRqBGcvcq6Ba24FxSr+R+UwyoDqLYmnrLDlx 56 recpQCIYArOPlkgOi0Kw5nu9B3pMzp6UqXH4b8JXcBW2t2cRMzWo+VcCAwEAAaMV 57 MBMwEQYJYIZIAYb4QgEBBAQDAgTwMA0GCSqGSIb3DQEBBAUAA4GBADG8vXleno31 58 3Y08wt0qmX+xBinyqj8WfMq/uezStFrFV5hLNP+IbXYwaD4qyVC0r5KHPmfzAnb3 59 4Ug0Bo5L9k6lPJ+sbw737DTOuMoukA/wyy8rb3YKf+Ow6xpDy4TY84E+SEz68/3k 60 Mq1DhkGFAM8Bw8ICXBoow7lsCSO/LJZ3 61 61 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/wsse-clnt.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 2 59 (0x103)4 Serial Number: 22 (0x16) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Dec 16 15:19:45 2008GMT9 Not After : Dec 15 15:19:45 2013GMT10 Subject: O=NDG Security Test, OU=WS-Security Unittest, CN=client8 Not Before: Jun 29 11:03:35 2010 GMT 9 Not After : Jun 29 11:03:35 2011 GMT 10 Subject: O=NDG, OU=WS-Security Unittest, CN=client 11 11 Subject Public Key Info: 12 12 Public Key Algorithm: rsaEncryption … … 36 36 SSL Client, SSL Server, S/MIME, Object Signing 37 37 Signature Algorithm: md5WithRSAEncryption 38 63:11:bf:8c:fe:88:3a:7d:12:1e:c1:ea:90:f6:11:33:f2:7d:39 1d:2b:f3:22:3d:72:fb:1b:35:ed:cc:55:79:0e:98:13:41:cf:40 44:5e:c7:88:75:08:b4:b2:2b:ad:11:0e:0b:2e:49:21:41:18:41 6b:e9:2f:77:6d:27:4b:17:85:c8:fa:7b:91:45:97:a4:2d:f3:42 24:4e:1e:be:c5:e5:bc:ca:fd:dc:b2:e9:e1:b1:8a:f0:c1:4f:43 f9:c9:14:f8:c3:c2:98:66:fa:04:82:f1:8d:68:59:17:1f:f2:44 bf:34:f7:c6:3c:85:9b:80:c6:bc:2f:66:2e:0e:f4:24:7c:d8:45 9e:5f38 8d:87:4d:6f:6b:7b:ed:dc:23:c1:bf:80:f0:b8:8a:88:5a:12: 39 50:72:23:e0:a5:0d:0e:08:16:5a:c1:5d:0c:ca:26:eb:b5:f7: 40 31:8e:86:db:f2:10:74:db:83:b5:8c:04:46:36:1a:0c:e2:ef: 41 a2:66:a6:33:ca:e6:46:83:d7:74:cd:45:ef:3a:24:b5:0f:26: 42 54:97:a3:cd:e6:e3:1f:d7:ed:47:83:32:3f:f0:15:a5:7d:70: 43 18:f2:cc:b8:09:0d:b9:63:84:50:9b:c9:56:0c:f5:d8:25:8d: 44 49:8c:ea:82:ae:fb:98:79:12:53:8e:19:52:12:05:17:c1:6d: 45 ff:9b 46 46 -----BEGIN CERTIFICATE----- 47 MIIC izCCAfSgAwIBAgICAQMwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MTk0 49 NVoXDTEzMTIxNTE1MTk0NVowTDEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx 50 HTAbBgNVBAsTFFdTLVNlY3VyaXR5IFVuaXR0ZXN0MQ8wDQYDVQQDEwZjbGllbnQw 51 ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY7CFf5GAGGJEY38Vukj0U 52 Nfb/Q78yCucsJ0aQLKb+ItHvURqU2X/WEmiNLa90VQ4BBFoYiuFYtAyqxubnp1m1 53 XM97iJrUwo85Cw7/FKvM0gRkLbvbPrYDVcy7EHvjrB9O2mhEFoz6svqdtdmasmOG 54 1JEagdmfJrQLuiG5hrsPxCA/8ucLxH4FnmcMh5kRo0MwlXlva582RzWRWKgO2vDO 55 mtvitXt9HJwdCZbPmPyxs6STvFHMZru1mY5dj1YWT8PBT5Svmpo/EEiL+TZctcXE 56 SRRSVxu99yRBJ0f9Nd8IPxtuyyIVX4+xfgOLrNoVQuIV5vKTCZh5RrWjpbk/0eqN 57 AgMBAAGjFTATMBEGCWCGSAGG+EIBAQQEAwIE8DANBgkqhkiG9w0BAQQFAAOBgQBj 58 Eb+M/og6fRIeweqQ9hEz8n0dK/MiPXL7GzXtzFV5DpgTQc9EXseIdQi0siutEQ4L 59 LkkhQRhr6S93bSdLF4XI+nuRRZekLfMkTh6+xeW8yv3csunhsYrwwU/5yRT4w8KY 60 ZvoEgvGNaFkXH/K/NPfGPIWbgMa8L2YuDvQkfNieXw==47 MIICgDCCAemgAwIBAgIBFjANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 48 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 49 MDMzNVoXDTExMDYyOTExMDMzNVowPjEMMAoGA1UEChMDTkRHMR0wGwYDVQQLExRX 50 Uy1TZWN1cml0eSBVbml0dGVzdDEPMA0GA1UEAxMGY2xpZW50MIIBIjANBgkqhkiG 51 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOwhX+RgBhiRGN/FbpI9FDX2/0O/MgrnLCdG 52 kCym/iLR71EalNl/1hJojS2vdFUOAQRaGIrhWLQMqsbm56dZtVzPe4ia1MKPOQsO 53 /xSrzNIEZC272z62A1XMuxB746wfTtpoRBaM+rL6nbXZmrJjhtSRGoHZnya0C7oh 54 uYa7D8QgP/LnC8R+BZ5nDIeZEaNDMJV5b2ufNkc1kVioDtrwzprb4rV7fRycHQmW 55 z5j8sbOkk7xRzGa7tZmOXY9WFk/DwU+Ur5qaPxBIi/k2XLXFxEkUUlcbvfckQSdH 56 /TXfCD8bbssiFV+PsX4Di6zaFULiFebykwmYeUa1o6W5P9HqjQIDAQABoxUwEzAR 57 BglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAjYdNb2t77dwjwb+A 58 8LiKiFoSUHIj4KUNDggWWsFdDMom67X3MY6G2/IQdNuDtYwERjYaDOLvomamM8rm 59 RoPXdM1F7zoktQ8mVJejzebjH9ftR4MyP/AVpX1wGPLMuAkNuWOEUJvJVgz12CWN 60 SYzqgq77mHkSU44ZUhIFF8Ft/5s= 61 61 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/pki/wsse-server.crt
r7077 r7153 2 2 Data: 3 3 Version: 3 (0x2) 4 Serial Number: 2 60 (0x104)4 Serial Number: 23 (0x17) 5 5 Signature Algorithm: md5WithRSAEncryption 6 Issuer: O=NDG, OU= BADC, CN=Test CA6 Issuer: O=NDG, OU=Security, CN=Test CA 7 7 Validity 8 Not Before: Dec 16 15:20:55 2008GMT9 Not After : Dec 15 15:20:55 2013GMT10 Subject: O=NDG Security Test, OU=WS-Security Unittest, CN=server8 Not Before: Jun 29 11:10:12 2010 GMT 9 Not After : Jun 29 11:10:12 2011 GMT 10 Subject: O=NDG, OU=WS-Security Unittest, CN=server 11 11 Subject Public Key Info: 12 12 Public Key Algorithm: rsaEncryption … … 36 36 SSL Client, SSL Server, S/MIME, Object Signing 37 37 Signature Algorithm: md5WithRSAEncryption 38 95:eb:24:bb:4e:4d:38:b8:0e:8d:0e:fa:27:61:0b:91:f7:9e:39 a3:a7:a4:e0:d8:ba:57:3a:ee:df:54:50:80:26:19:f5:66:d7:40 6c:83:64:eb:b3:1a:3b:dc:7a:08:49:db:3f:a1:9a:bf:03:08:41 7f:b2:8c:28:eb:cf:79:d9:a3:f0:a4:7c:65:40:c5:fe:34:88:42 7f:88:47:e2:4b:38:f4:d6:c6:91:69:9c:68:ca:ed:03:fc:fb:43 83:c8:07:be:3c:33:be:24:87:aa:68:7f:38:18:e3:fc:97:ef:44 8f:e4:6e:39:f8:3d:e2:97:91:4a:86:e8:39:52:01:b3:31:54:45 d9:5d38 67:96:45:5e:73:66:69:2c:f1:fb:ed:65:c9:fa:69:c7:6a:0e: 39 15:d9:3b:56:1b:90:a5:27:18:f7:47:70:f0:1b:a6:41:21:d8: 40 21:3e:1a:ae:87:9a:f1:36:3e:02:cf:1f:30:83:af:f8:fe:21: 41 6c:14:45:a0:9e:39:f2:91:de:0a:06:22:8f:4d:2e:9f:66:7e: 42 26:61:3d:cc:31:4d:43:9e:4d:5d:c6:00:ef:82:ed:30:57:76: 43 c4:4f:db:85:7c:97:35:a1:d0:ff:b8:91:a1:9c:e9:a3:a8:c9: 44 99:80:a4:03:66:8b:e6:44:54:d0:7c:72:d8:e0:c3:3b:ea:98: 45 e7:f7 46 46 -----BEGIN CERTIFICATE----- 47 MIIC izCCAfSgAwIBAgICAQQwDQYJKoZIhvcNAQEEBQAwLzEMMAoGA1UEChMDTkRH48 MQ0wCwYDVQQLEwRCQURDMRAwDgYDVQQDEwdUZXN0IENBMB4XDTA4MTIxNjE1MjA1 49 NVoXDTEzMTIxNTE1MjA1NVowTDEaMBgGA1UEChMRTkRHIFNlY3VyaXR5IFRlc3Qx 50 HTAbBgNVBAsTFFdTLVNlY3VyaXR5IFVuaXR0ZXN0MQ8wDQYDVQQDEwZzZXJ2ZXIw 51 ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKh5yGjF6lxe3OL/g1lZdq 52 ar1niwjRU91t1kdktU9g4bQBxg4hFsMX0nb6iWKUXe09Npuu8KLiaQh7f1j+iMfv 53 FyklZFazO3wnpO4O95jvdsruu7RSP1Mr1pSWqT5rE+YlRaq+rKkeUWw41d2/RC94 54 fpQ6gVyKXePfSW52flQcmrAHuRG8DyxQGSWlLDx6UuDzCfMQ/BW5aEVtpXIKfyfq 55 FbpcpjemyU85R6h7K8Q7Wmoa841np+KRdMSnhQ6VX9PcgfcNdNEzsV+zxb7kblYq 56 JXUEDFWmNcJmdoWPUXwLtvdA3wwy15k+cvLVw3X4BmyTXrrK76uOjcroePMIJpHr 57 AgMBAAGjFTATMBEGCWCGSAGG+EIBAQQEAwIE8DANBgkqhkiG9w0BAQQFAAOBgQCV 58 6yS7Tk04uA6NDvonYQuR956jp6Tg2LpXOu7fVFCAJhn1Ztdsg2Trsxo73HoISds/ 59 oZq/Awh/sowo68952aPwpHxlQMX+NIh/iEfiSzj01saRaZxoyu0D/PuDyAe+PDO+ 60 JIeqaH84GOP8l++P5G45+D3il5FKhug5UgGzMVTZXQ==47 MIICgDCCAemgAwIBAgIBFzANBgkqhkiG9w0BAQQFADAzMQwwCgYDVQQKEwNOREcx 48 ETAPBgNVBAsTCFNlY3VyaXR5MRAwDgYDVQQDEwdUZXN0IENBMB4XDTEwMDYyOTEx 49 MTAxMloXDTExMDYyOTExMTAxMlowPjEMMAoGA1UEChMDTkRHMR0wGwYDVQQLExRX 50 Uy1TZWN1cml0eSBVbml0dGVzdDEPMA0GA1UEAxMGc2VydmVyMIIBIjANBgkqhkiG 51 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoechoxepcXtzi/4NZWXamq9Z4sI0VPdbdZH 52 ZLVPYOG0AcYOIRbDF9J2+olilF3tPTabrvCi4mkIe39Y/ojH7xcpJWRWszt8J6Tu 53 DveY73bK7ru0Uj9TK9aUlqk+axPmJUWqvqypHlFsONXdv0QveH6UOoFcil3j30lu 54 dn5UHJqwB7kRvA8sUBklpSw8elLg8wnzEPwVuWhFbaVyCn8n6hW6XKY3pslPOUeo 55 eyvEO1pqGvONZ6fikXTEp4UOlV/T3IH3DXTRM7Ffs8W+5G5WKiV1BAxVpjXCZnaF 56 j1F8C7b3QN8MMteZPnLy1cN1+AZsk166yu+rjo3K6HjzCCaR6wIDAQABoxUwEzAR 57 BglghkgBhvhCAQEEBAMCBPAwDQYJKoZIhvcNAQEEBQADgYEAZ5ZFXnNmaSzx++1l 58 yfppx2oOFdk7VhuQpScY90dw8BumQSHYIT4aroea8TY+As8fMIOv+P4hbBRFoJ45 59 8pHeCgYij00un2Z+JmE9zDFNQ55NXcYA74LtMFd2xE/bhXyXNaHQ/7iRoZzpo6jJ 60 mYCkA2aL5kRU0Hxy2ODDO+qY5/c= 61 61 -----END CERTIFICATE----- -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/authz_lite/securityservices.ini
r7077 r7153 12 12 # license: BSD - see LICENSE file in top-level directory 13 13 # Contact: Philip.Kershaw@stfc.ac.uk 14 # Revision: $Id :$14 # Revision: $Id$ 15 15 16 16 [DEFAULT] … … 110 110 # Apply verification against a list of trusted CAs. To skip this step, comment 111 111 # out or remove this item. e.g. set CA verification in the Apache config file. 112 ssl.caCertFilePathList = %(testConfigDir)s/ca/ ndg-test-ca.crt112 ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 113 113 #ssl.clientCertDNMatchList = /O=NDG/OU=BADC/CN=mytest /O=gabriel/OU=BADC/CN=test /O=NDG/OU=BADC/CN=test 114 114 -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/dap/template/server-pydap2.ini
r7077 r7153 87 87 # List of CA certificates used to verify the signatures of 88 88 # Attribute Certificates retrieved 89 pip.caCertFilePathList=%(here)s/pki/ca/ ndg-test-ca.crt89 pip.caCertFilePathList=%(here)s/pki/ca/d573507a.0 90 90 91 91 # … … 109 109 110 110 # For signature verification. Provide a space separated list of file paths 111 pip.wssecurity.caCertFilePathList=%(here)s/pki/ca/ ndg-test-ca.crt111 pip.wssecurity.caCertFilePathList=%(here)s/pki/ca/d573507a.0 112 112 113 113 # ValueType for the BinarySecurityToken added to the WSSE header -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openid/securityservices.ini
r7077 r7153 58 58 attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 59 59 attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 60 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt60 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 61 61 62 62 #______________________________________________________________________________ … … 68 68 # 69 69 # CA certificates for Attribute Certificate signature validation 70 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt70 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 71 71 72 72 # CA certificates for SSL connection peer cert. validation - required if 73 73 # connecting to an Attribute Authority over SSL 74 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt74 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/d573507a.0 75 75 76 76 # Allow Get Attribute Certificate calls to try to get a mapped certificate … … 101 101 # The CA certificates of other NDG trusted sites should go here. NB, multiple 102 102 # values should be delimited by a space 103 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt103 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 104 104 105 105 # Signature of an outbound message … … 414 414 415 415 # Verify against known CAs - Provide a space separated list of file paths 416 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt416 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 417 417 418 418 #______________________________________________________________________________ -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidprovider/securityservices.ini
r7077 r7153 56 56 attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 57 57 attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 58 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt58 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 59 59 60 60 #______________________________________________________________________________ … … 66 66 # 67 67 # CA certificates for Attribute Certificate signature validation 68 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt68 sessionManager.credentialWallet.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 69 69 70 70 # CA certificates for SSL connection peer cert. validation - required if 71 71 # connecting to an Attribute Authority over SSL 72 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt72 sessionManager.credentialWallet.sslCACertFilePathList=%(testConfigDir)s/ca/d573507a.0 73 73 74 74 # Allow Get Attribute Certificate calls to try to get a mapped certificate … … 99 99 # The CA certificates of other NDG trusted sites should go here. NB, multiple 100 100 # values should be delimited by a space 101 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt101 sessionManager.credentialWallet.wssecurity.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 102 102 103 103 # Signature of an outbound message … … 380 380 381 381 # Verify against known CAs - Provide a space separated list of file paths 382 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt382 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 383 383 384 384 #______________________________________________________________________________ -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidrelyingparty_withapp/securedapp.ini
r7077 r7153 130 130 # List of CA certificates used to verify the signatures of 131 131 # Attribute Certificates retrieved 132 pip.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt132 pip.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 133 133 134 134 # … … 153 153 154 154 # For signature verification. Provide a space separated list of file paths 155 pip.wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt155 pip.wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 156 156 157 157 # ValueType for the BinarySecurityToken added to the WSSE header -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/openidrelyingparty_withapp/securityservices.ini
r7077 r7153 12 12 # license: BSD - see LICENSE file in top-level directory 13 13 # Contact: Philip.Kershaw@stfc.ac.uk 14 # Revision: $Id :$14 # Revision: $Id$ 15 15 16 16 [DEFAULT] … … 212 212 attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 213 213 attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 214 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt214 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 215 215 216 216 … … 225 225 226 226 # Verify against known CAs - Provide a space separated list of file paths 227 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/ ndg-test-ca.crt227 wssecurity.caCertFilePathList=%(testConfigDir)s/ca/d573507a.0 228 228 229 229 #______________________________________________________________________________ -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/configfileparsers/test.cfg
r7077 r7153 39 39 # Test a 3rd level of nesting - prefixed for the Session Manager but the 40 40 # Session Manager itself has a Credential Wallet subcomponent 41 sessionManager.credentialWallet.caCertFilePathList=ca/ ndg-test-ca.crt41 sessionManager.credentialWallet.caCertFilePathList=ca/d573507a.0 42 42 43 43 # Test bool and int type conversions -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/credentialwallet/credWallet.cfg
r7077 r7153 15 15 16 16 # CA certificates for Attribute Certificate signature validation 17 caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ ndg-test-ca.crt17 caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 18 18 19 19 # CA certificates for SSL connection peer cert. validation 20 sslCACertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ ndg-test-ca.crt20 sslCACertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 21 21 22 22 # See attAuthority unit tests to get this service running … … 79 79 80 80 # Provide a space separated list of file paths 81 wssecurity.caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/ ndg-test-ca.crt81 wssecurity.caCertFilePathList=$NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/myproxy/certificate_extapp/config.ini
r7077 r7153 12 12 connectionString = sqlite:///$NDGSEC_TEST_CONFIG_DIR/user.db 13 13 openIdSqlQuery = select openid from users where username = '${username}' 14 #attributeAuthorityURI = https://localhost:5443/AttributeAuthority/saml 15 attributeAuthorityURI = http://localhost:5000/AttributeAuthority/saml 14 attributeAuthorityURI = https://localhost:5443/AttributeAuthority 15 #attributeAuthorityURI = http://localhost:5000/AttributeAuthority 16 16 attributeQuery.subjectIdFormat = urn:esg:openid 17 17 attributeQuery.issuerName = /O=Site A/CN=Authorisation Service -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/myproxy/certificate_extapp/test_saml_attribute_assertion.py
r7077 r7153 10 10 __license__ = "BSD - see LICENSE file in top-level directory" 11 11 __contact__ = "Philip.Kershaw@stfc.ac.uk" 12 __revision__ = '$Id :$'12 __revision__ = '$Id$' 13 13 import logging 14 14 logging.basicConfig(level=logging.DEBUG) 15 15 16 16 import os 17 from string import Template 17 import sys 18 18 from cStringIO import StringIO 19 20 from sqlalchemy import create_engine, MetaData, Table, Column, Integer, String 21 from sqlalchemy.ext.declarative import declarative_base 22 from sqlalchemy.orm import sessionmaker 19 import unittest 23 20 24 21 from ndg.security.common.saml_utils.esg import EsgSamlNamespaces … … 29 26 30 27 class CertExtAppTestCase(BaseTestCase): 28 """Test SAML Assertion Certificate Extension plugin for MyProxy""" 31 29 THIS_DIR = os.path.dirname(__file__) 32 30 OPENID_SQL_QUERY = ("select openid from users where username = " … … 43 41 myProxyCertExtApp = CertExtApp() 44 42 myProxyCertExtApp.connectionString = \ 45 CertExtAppTestCase.DB_CONNECTION_STR43 CertExtAppTestCase.DB_CONNECTION_STR 46 44 47 45 myProxyCertExtApp.openIdSqlQuery = CertExtAppTestCase.OPENID_SQL_QUERY … … 128 126 print(output) 129 127 128 129 if __name__ == "__main__": 130 unittest.main() -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/sslclientauthnmiddleware/test.ini
r7077 r7153 28 28 errorResponseCode: 401 29 29 pathMatchList: /secure1 /secure2 30 caCertFilePathList: $NDGSEC_TEST_CONFIG_DIR/ca/ ndg-test-ca.crt30 caCertFilePathList: $NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 31 31 32 32 # Logging configuration -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini
r7077 r7153 66 66 paste.filter_app_factory = ndg.security.server.wsgi.ssl:AuthKitSSLAuthnMiddleware 67 67 prefix = ssl. 68 ssl.caCertFilePathList = %(testConfigDir)s/ca/ ndg-test-ca.crt68 ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 69 69 ssl.rePathMatchList = ^/ssl-client-authn.* -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/attribute-interface.ini
r7077 r7153 77 77 attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 78 78 attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 79 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ ndg-test-ca.crt79 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/d573507a.0 -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/test_soapauthzdecisioninterface.py
r7077 r7153 187 187 self.assert_(samlResponse.assertions[0].authzDecisionStatements[0 188 188 ].decision == DecisionType.PERMIT) 189 190 191 class SOAPAuthzServiceMiddlewareTestCase(192 SOAPAuthzDecisionInterfaceMiddlewareTestCase):193 """Test the actual server side middleware194 ndg.security.server.wsgi.authzservice.AuthzServiceMiddleware195 rather than a test stub196 """197 CONFIG_FILENAME = 'authz-service.ini'198 RESOURCE_URI = 'http://localhost/dap/data/my.nc.dods?time[0:1:0]&lat'199 ACCESS_DENIED_RESOURCE_URI = \200 'http://localhost/dap/data/test_accessDeniedToSecuredURI'201 202 def __init__(self, *arg, **kw):203 """Extend base init to include SAML Attribute Authority required by204 Authorisation Service"""205 super(SOAPAuthzDecisionInterfaceMiddlewareTestCase, self).__init__(206 *arg, **kw)207 self.startSiteAAttributeAuthority(withSSL=True, port=5443)208 209 def test02AccessDenied(self):210 cls = SOAPAuthzServiceMiddlewareTestCase211 query = self._createAuthzDecisionQuery(212 resource=cls.ACCESS_DENIED_RESOURCE_URI)213 request = self._makeRequest(query=query)214 215 header = {216 'soapAction': "http://www.oasis-open.org/committees/security",217 'Content-length': str(len(request)),218 'Content-type': 'text/xml'219 }220 response = self.app.post('/authorisationservice/',221 params=request,222 headers=header,223 status=200)224 print("Response status=%d" % response.status)225 samlResponse = self._getSAMLResponse(response.body)226 227 self.assert_(samlResponse.status.statusCode.value == \228 StatusCode.SUCCESS_URI)229 self.assert_(samlResponse.inResponseTo == query.id)230 self.assert_(samlResponse.assertions[0].subject.nameID.value == \231 query.subject.nameID.value)232 self.assert_(samlResponse.assertions[0])233 self.assert_(samlResponse.assertions[0].authzDecisionStatements[0])234 self.assert_(samlResponse.assertions[0].authzDecisionStatements[0235 ].decision == DecisionType.DENY)236 189 237 190 -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/ssl/test.ini
r7077 r7153 21 21 paste.filter_app_factory = ndg.security.server.wsgi.ssl:ApacheSSLAuthnMiddleware 22 22 prefix = ssl. 23 ssl.caCertFilePathList = %(testConfigDir)s/ca/ ndg-test-ca.crt23 ssl.caCertFilePathList = %(testConfigDir)s/ca/d573507a.0 24 24 ssl.rePathMatchList = ^/secured/.*$ ^/restrict.* 25 25 ssl.clientCertDNMatchList = /O=NDG/OU=BADC/CN=test, /O=localhost/OU=local client/CN=test 2 -
TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/x509/x509Test.cfg
r7077 r7153 14 14 certfile: $NDGSEC_TEST_CONFIG_DIR/pki/user.crt 15 15 proxycertfile: $NDGSEC_X509_UNITTEST_DIR/proxy.crt 16 cacertfile: $NDGSEC_TEST_CONFIG_DIR/ca/ ndg-test-ca.crt16 cacertfile: $NDGSEC_TEST_CONFIG_DIR/ca/d573507a.0 17 17
Note: See TracChangeset
for help on using the changeset viewer.