TlsPolicyTest.java

/*
 * Copyright (C) 2012 Intel Corporation
 * All rights reserved.
 */
package com.intel.mtwilson.crypto;

import com.intel.mtwilson.ApiClient;
import com.intel.mtwilson.My;
import com.intel.mtwilson.api.*;
import com.intel.mtwilson.model.*;
import java.io.File;
import java.io.IOException;
import java.security.SignatureException;
import java.util.Properties;
import org.apache.commons.configuration.MapConfiguration;
import org.junit.Test;

/**
 *
 * @author jbuhacoff
 */
public class TlsPolicyTest {
    
    /**
     * Connecting to Glassfish 3.1 with SSLv2:  cannot initialize client
     * Connecting to Glassfish 3.1 with SSL, SSLv3, TLS, TLSv1.1, TLSv1.2:  javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
     * 
     * @throws ClientException
     * @throws IOException
     * @throws ApiException
     * @throws SignatureException 
     */
    @Test
    public void testTrustCaAndVerifyHostname() throws ClientException, IOException, ApiException, SignatureException {
        Properties config = new Properties();
        config.setProperty("mtwilson.api.baseurl", "https://localhost:8181/");
        config.setProperty("mtwilson.api.keystore", My.configuration().getKeystoreFile().getAbsolutePath()); // was: System.getProperty("user.home")+File.separator+"test2.jks");
        config.setProperty("mtwilson.api.keystore.password", My.configuration().getKeystorePassword()); // was: "changeit"
        config.setProperty("mtwilson.api.key.alias", My.configuration().getConfiguration().getString("mtwilson.api.key.alias")); // was:  "test2"
        config.setProperty("mtwilson.api.key.password", My.configuration().getKeystorePassword()); // was: "changeit"  ... usng same password as keystore for this
        config.setProperty("mtwilson.api.ssl.protocol", "TLSv1.1");
//        config.setProperty("mtwilson.api.ssl.verifyHostname", "true");
//        config.setProperty("mtwilson.api.ssl.requireTrustedCertificate", "true");
        config.setProperty("mtwilson.api.ssl.policy", "TRUST_KNOWN_CERTIFICATE");
        
        ApiClient c = new ApiClient(new MapConfiguration(config));
        //String saml =
        c.getSamlForHost(new Hostname("1.2.3.4")); // IOException, ApiException, SignatureException
    }
}