"""ACME utilities for testing."""
import datetime
import josepy as jose
import six
from acme import challenges
from acme import messages
from certbot import auth_handler
from certbot.tests import util
JWK = jose.JWK.load(util.load_vector('rsa512_key.pem'))
KEY = util.load_rsa_private_key('rsa512_key.pem')
# Challenges
HTTP01 = challenges.HTTP01(
token=b"evaGxfADs6pSRb2LAv9IZf17Dt3juxGJ+PCt92wr+oA")
DNS01 = challenges.DNS01(token=b"17817c66b60ce2e4012dfad92657527a")
DNS01_2 = challenges.DNS01(token=b"cafecafecafecafecafecafe0feedbac")
CHALLENGES = [HTTP01, DNS01]
def gen_combos(challbs):
"""Generate natural combinations for challbs."""
# completing a single DV challenge satisfies the CA
return tuple((i,) for i, _ in enumerate(challbs))
def chall_to_challb(chall, status): # pylint: disable=redefined-outer-name
"""Return ChallengeBody from Challenge."""
kwargs = {
"chall": chall,
"uri": chall.typ + "_uri",
"status": status,
}
if status == messages.STATUS_VALID:
kwargs.update({"validated": datetime.datetime.now()})
return messages.ChallengeBody(**kwargs)
# Pending ChallengeBody objects
HTTP01_P = chall_to_challb(HTTP01, messages.STATUS_PENDING)
DNS01_P = chall_to_challb(DNS01, messages.STATUS_PENDING)
DNS01_P_2 = chall_to_challb(DNS01_2, messages.STATUS_PENDING)
CHALLENGES_P = [HTTP01_P, DNS01_P]
# AnnotatedChallenge objects
HTTP01_A = auth_handler.challb_to_achall(HTTP01_P, JWK, "example.com")
DNS01_A = auth_handler.challb_to_achall(DNS01_P, JWK, "example.org")
DNS01_A_2 = auth_handler.challb_to_achall(DNS01_P_2, JWK, "esimerkki.example.org")
ACHALLENGES = [HTTP01_A, DNS01_A]
def gen_authzr(authz_status, domain, challs, statuses, combos=True):
"""Generate an authorization resource.
:param authz_status: Status object
:type authz_status: :class:`acme.messages.Status`
:param list challs: Challenge objects
:param list statuses: status of each challenge object
:param bool combos: Whether or not to add combinations
"""
# pylint: disable=redefined-outer-name
challbs = tuple(
chall_to_challb(chall, status)
for chall, status in six.moves.zip(challs, statuses)
)
authz_kwargs = {
"identifier": messages.Identifier(
typ=messages.IDENTIFIER_FQDN, value=domain),
"challenges": challbs,
}
if combos:
authz_kwargs.update({"combinations": gen_combos(challbs)})
if authz_status == messages.STATUS_VALID:
authz_kwargs.update({
"status": authz_status,
"expires": datetime.datetime.now() + datetime.timedelta(days=31),
})
else:
authz_kwargs.update({
"status": authz_status,
})
return messages.AuthorizationResource(
uri="https://trusted.ca/new-authz-resource",
body=messages.Authorization(**authz_kwargs)
)
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| __pycache__ | Folder | 0755 |
|
|
| compat | Folder | 0755 |
|
|
| display | Folder | 0755 |
|
|
| testdata | Folder | 0755 |
|
|
| __init__.py | File | 20 B | 0644 |
|
| account_test.py | File | 13.79 KB | 0644 |
|
| acme_util.py | File | 2.85 KB | 0644 |
|
| auth_handler_test.py | File | 21.79 KB | 0644 |
|
| cert_manager_test.py | File | 28.16 KB | 0644 |
|
| cli_test.py | File | 21.26 KB | 0644 |
|
| client_test.py | File | 31.74 KB | 0644 |
|
| configuration_test.py | File | 6.82 KB | 0644 |
|
| crypto_util_test.py | File | 13.43 KB | 0644 |
|
| eff_test.py | File | 5.94 KB | 0644 |
|
| error_handler_test.py | File | 5.14 KB | 0644 |
|
| errors_test.py | File | 1.8 KB | 0644 |
|
| hook_test.py | File | 17.44 KB | 0644 |
|
| lock_test.py | File | 4.87 KB | 0644 |
|
| log_test.py | File | 14.9 KB | 0644 |
|
| main_test.py | File | 82.76 KB | 0644 |
|
| notify_test.py | File | 2.07 KB | 0644 |
|
| ocsp_test.py | File | 16.3 KB | 0644 |
|
| renewal_test.py | File | 5.03 KB | 0644 |
|
| renewupdater_test.py | File | 5.32 KB | 0644 |
|
| reporter_test.py | File | 2.73 KB | 0644 |
|
| reverter_test.py | File | 18.1 KB | 0644 |
|
| storage_test.py | File | 41.63 KB | 0644 |
|
| util.py | File | 13.77 KB | 0644 |
|
| util_test.py | File | 21.2 KB | 0644 |
|