Add x509
This commit is contained in:
@@ -0,0 +1,84 @@
|
||||
/*
|
||||
* Copyright 2002-2018 the original author or authors.
|
||||
*
|
||||
* Licensed under the Apache License, Version 2.0 (the "License");
|
||||
* you may not use this file except in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* https://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing, software
|
||||
* distributed under the License is distributed on an "AS IS" BASIS,
|
||||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
* See the License for the specific language governing permissions and
|
||||
* limitations under the License.
|
||||
*/
|
||||
package example;
|
||||
|
||||
import java.security.KeyStore;
|
||||
|
||||
import javax.net.ssl.SSLContext;
|
||||
import javax.net.ssl.SSLHandshakeException;
|
||||
|
||||
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
|
||||
import org.apache.http.impl.client.CloseableHttpClient;
|
||||
import org.apache.http.impl.client.HttpClients;
|
||||
import org.apache.http.ssl.SSLContexts;
|
||||
import org.junit.jupiter.api.BeforeEach;
|
||||
import org.junit.jupiter.api.Test;
|
||||
|
||||
import org.springframework.core.io.ClassPathResource;
|
||||
import org.springframework.http.ResponseEntity;
|
||||
import org.springframework.http.client.ClientHttpRequestFactory;
|
||||
import org.springframework.http.client.HttpComponentsClientHttpRequestFactory;
|
||||
import org.springframework.web.client.RestTemplate;
|
||||
|
||||
import static org.assertj.core.api.Assertions.assertThat;
|
||||
import static org.assertj.core.api.Assertions.assertThatCode;
|
||||
|
||||
/**
|
||||
* Test the Hello World application.
|
||||
*
|
||||
* @author Michael Simons
|
||||
*/
|
||||
public class X509Tests {
|
||||
|
||||
private int port;
|
||||
|
||||
@BeforeEach
|
||||
void setup() {
|
||||
this.port = Integer.parseInt(System.getProperty("app.httpPort", "8443"));
|
||||
}
|
||||
|
||||
@Test
|
||||
void notCertificateThenSslHandshakeException() {
|
||||
RestTemplate rest = new RestTemplate();
|
||||
assertThatCode(() -> rest.getForEntity("https://localhost:8443/", String.class))
|
||||
.hasCauseInstanceOf(SSLHandshakeException.class);
|
||||
}
|
||||
|
||||
@Test
|
||||
void certificateThenStatusOk() throws Exception {
|
||||
ClassPathResource serverKeystore = new ClassPathResource("/certs/server.p12");
|
||||
KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType());
|
||||
keyStore.load(serverKeystore.getInputStream(), "password".toCharArray());
|
||||
// @formatter:off
|
||||
SSLContext sslContext = SSLContexts.custom()
|
||||
.loadKeyMaterial(keyStore, "password".toCharArray(), (aliases, socket) -> "client")
|
||||
.loadTrustMaterial(keyStore, null)
|
||||
.build();
|
||||
|
||||
SSLConnectionSocketFactory socketFactory = new SSLConnectionSocketFactory(sslContext,
|
||||
new String[]{"TLSv1.2", "TLSv1.1"},
|
||||
null,
|
||||
SSLConnectionSocketFactory.getDefaultHostnameVerifier());
|
||||
// @formatter:on
|
||||
|
||||
CloseableHttpClient httpClient = HttpClients.custom().setSSLSocketFactory(socketFactory).build();
|
||||
ClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory(httpClient);
|
||||
RestTemplate rest = new RestTemplate(requestFactory);
|
||||
ResponseEntity<String> responseEntity = rest.getForEntity("https://localhost:8443/me", String.class);
|
||||
assertThat(responseEntity).extracting((result) -> result.getStatusCode().is2xxSuccessful()).isEqualTo(true);
|
||||
}
|
||||
|
||||
}
|
||||
Reference in New Issue
Block a user