Class ExplicitKeySignatureTrustEngineTest
- java.lang.Object
-
- org.opensaml.core.OpenSAMLInitBaseTestCase
-
- org.opensaml.core.xml.XMLObjectBaseTestCase
-
- org.opensaml.xmlsec.signature.support.impl.ExplicitKeySignatureTrustEngineTest
-
public class ExplicitKeySignatureTrustEngineTest extends org.opensaml.core.xml.XMLObjectBaseTestCaseTest explicit key signature trust engine.
-
-
Field Summary
Fields Modifier and Type Field Description private org.opensaml.security.credential.impl.CollectionCredentialResolvercredResolverprivate net.shibboleth.utilities.java.support.resolver.CriteriaSetcriteriaSetprivate org.opensaml.xmlsec.signature.support.impl.ExplicitKeySignatureTrustEngineengineprivate X509CertificateotherCert1private StringotherCert1Base64private StringrawAlgorithmURIprivate byte[]rawControlSignatureprivate StringrawDataprivate X509CertificatesigningCertprivate StringsigningCertBase64private StringsigningEntityIDprivate PrivateKeysigningPrivateKeyprivate StringsigningPrivateKeyBase64private org.opensaml.security.x509.BasicX509CredentialsigningX509Credprivate List<org.opensaml.security.credential.Credential>trustedCredentials
-
Constructor Summary
Constructors Constructor Description ExplicitKeySignatureTrustEngineTest()Constructor.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected org.opensaml.xmlsec.signature.SignableXMLObjectbuildSignedObject()Build a signed object.protected org.opensaml.xmlsec.signature.SignableXMLObjectgetInvalidSignedObject()Get a signed object containing the signature to be validated.protected org.opensaml.xmlsec.signature.SignableXMLObjectgetValidSignedObject()Get a signed object containing the signature to be validated.protected voidsetUp()voidtestBlacklistedDigestAlgorithm()Test blacklisted digest method algorithm URI.voidtestBlacklistedSignatureAlgorithm()Test blacklisted signature method algorithm URI.voidtestInvalidSignature()Test invalid signature, trusted signing credential.voidtestRawBlacklistedAlgorithm()Test valid raw signature with whitelisted signature algorithm.voidtestRawInvalidSignature()Test invalid raw signature, trusted signing credential.voidtestRawSuccess()Test valid raw signature, trusted signing credential.voidtestRawUntrustedCredential()Test valid raw signature, untrusted signing credential.voidtestRawWhitelistedAlgorithm()Test valid raw signature with whitelisted signature algorithm.voidtestSuccess()Test valid signature.voidtestUntrustedCredential()Test valid signature, untrusted signing credential.voidtestWhitelistedAlgorithms()Test whitelisted signature and digest method algorithm URIs.-
Methods inherited from class org.opensaml.core.xml.XMLObjectBaseTestCase
assertXMLEquals, assertXMLEquals, buildXMLObject, getBuilder, getMarshaller, getMarshaller, getUnmarshaller, getUnmarshaller, getUnmarshaller, initXMLObjectSupport, parseXMLDocument, printXML, printXML, unmarshallElement, unmarshallElement
-
-
-
-
Field Detail
-
signingCert
private X509Certificate signingCert
-
signingCertBase64
private String signingCertBase64
-
signingPrivateKey
private PrivateKey signingPrivateKey
-
signingPrivateKeyBase64
private String signingPrivateKeyBase64
-
otherCert1
private X509Certificate otherCert1
-
otherCert1Base64
private String otherCert1Base64
-
credResolver
private org.opensaml.security.credential.impl.CollectionCredentialResolver credResolver
-
trustedCredentials
private List<org.opensaml.security.credential.Credential> trustedCredentials
-
signingX509Cred
private org.opensaml.security.x509.BasicX509Credential signingX509Cred
-
engine
private org.opensaml.xmlsec.signature.support.impl.ExplicitKeySignatureTrustEngine engine
-
criteriaSet
private net.shibboleth.utilities.java.support.resolver.CriteriaSet criteriaSet
-
signingEntityID
private String signingEntityID
-
rawAlgorithmURI
private String rawAlgorithmURI
-
rawData
private String rawData
-
rawControlSignature
private byte[] rawControlSignature
-
-
Method Detail
-
setUp
@BeforeMethod protected void setUp() throws Exception
- Throws:
Exception
-
testSuccess
public void testSuccess() throws org.opensaml.security.SecurityExceptionTest valid signature.- Throws:
org.opensaml.security.SecurityException- ...
-
testUntrustedCredential
public void testUntrustedCredential() throws org.opensaml.security.SecurityExceptionTest valid signature, untrusted signing credential.- Throws:
org.opensaml.security.SecurityException- ...
-
testInvalidSignature
public void testInvalidSignature() throws org.opensaml.security.SecurityExceptionTest invalid signature, trusted signing credential.- Throws:
org.opensaml.security.SecurityException- ...
-
testWhitelistedAlgorithms
public void testWhitelistedAlgorithms() throws org.opensaml.security.SecurityExceptionTest whitelisted signature and digest method algorithm URIs.- Throws:
org.opensaml.security.SecurityException- ...
-
testBlacklistedSignatureAlgorithm
public void testBlacklistedSignatureAlgorithm() throws org.opensaml.security.SecurityExceptionTest blacklisted signature method algorithm URI.- Throws:
org.opensaml.security.SecurityException- ...
-
testBlacklistedDigestAlgorithm
public void testBlacklistedDigestAlgorithm() throws org.opensaml.security.SecurityExceptionTest blacklisted digest method algorithm URI.- Throws:
org.opensaml.security.SecurityException- ...
-
testRawSuccess
public void testRawSuccess() throws org.opensaml.security.SecurityExceptionTest valid raw signature, trusted signing credential.- Throws:
org.opensaml.security.SecurityException- ...
-
testRawUntrustedCredential
public void testRawUntrustedCredential() throws org.opensaml.security.SecurityExceptionTest valid raw signature, untrusted signing credential.- Throws:
org.opensaml.security.SecurityException- ...
-
testRawInvalidSignature
public void testRawInvalidSignature() throws org.opensaml.security.SecurityExceptionTest invalid raw signature, trusted signing credential.- Throws:
org.opensaml.security.SecurityException- ...
-
testRawWhitelistedAlgorithm
public void testRawWhitelistedAlgorithm() throws org.opensaml.security.SecurityExceptionTest valid raw signature with whitelisted signature algorithm.- Throws:
org.opensaml.security.SecurityException- ...
-
testRawBlacklistedAlgorithm
public void testRawBlacklistedAlgorithm() throws org.opensaml.security.SecurityExceptionTest valid raw signature with whitelisted signature algorithm.- Throws:
org.opensaml.security.SecurityException- ...
-
getValidSignedObject
protected org.opensaml.xmlsec.signature.SignableXMLObject getValidSignedObject()
Get a signed object containing the signature to be validated.- Returns:
- a signed object
-
getInvalidSignedObject
protected org.opensaml.xmlsec.signature.SignableXMLObject getInvalidSignedObject()
Get a signed object containing the signature to be validated. Signature should be invalid when valid (i.e. signed content modified, etc ).- Returns:
- a signed object, with invalid signature
-
buildSignedObject
protected org.opensaml.xmlsec.signature.SignableXMLObject buildSignedObject() throws org.opensaml.xmlsec.signature.support.SignatureExceptionBuild a signed object.- Returns:
- a signed object
- Throws:
org.opensaml.xmlsec.signature.support.SignatureException- ...
-
-