Generate certs

selenium/.gitignore

@@ -7,3 +7,10 @@ suites/screens/*
 test/oauth/*/h2/*.trace.db
 test/oauth/*/h2/*.lock.db
 */target/*
+tls-gen
+test/*/certs/*.pem
+test/*/certs/*.p12
+test/*/certs/*.jks
+test/*/*/*.pem
+test/*/*/*.p12
+test/*/*/*.jks

selenium/bin/components/devkeycloak

@@ -9,6 +9,9 @@ init_devkeycloak() {
   print "> DEVKEYCLOAK_CONFIG_DIR: ${DEVKEYCLOAK_CONFIG_DIR}"
   print "> DEVKEYCLOAK_URL: ${DEVKEYCLOAK_URL}"
   print "> DEVKEYCLOAK_DOCKER_IMAGE: ${KEYCLOAK_DOCKER_IMAGE}"
+
+  generate-ca-server-client-kpi devkeycloak $DEVKEYCLOAK_CONFIG_DIR
+
 }
 ensure_devkeycloak() {
   if docker ps | grep devkeycloak &> /dev/null; then

selenium/bin/components/keycloak

@@ -17,6 +17,9 @@ init_keycloak() {
   print "> KEYCLOAK_CONFIG_DIR: ${KEYCLOAK_CONFIG_DIR}"
   print "> KEYCLOAK_URL: ${KEYCLOAK_URL}"
   print "> KEYCLOAK_DOCKER_IMAGE: ${KEYCLOAK_DOCKER_IMAGE}"
+
+  generate-ca-server-client-kpi keycloak $KEYCLOAK_CONFIG_DIR
+
 }
 start_keycloak() {
   begin "Starting keycloak ..."

selenium/bin/components/prodkeycloak

@@ -16,6 +16,8 @@ init_prodkeycloak() {
   print "> PRODKEYCLOAK_CONFIG_DIR: ${PRODKEYCLOAK_CONFIG_DIR}"
   print "> PRODKEYCLOAK_URL: ${PRODKEYCLOAK_URL}"
   print "> KEYCLOAK_DOCKER_IMAGE: ${KEYCLOAK_DOCKER_IMAGE}"
+
+  generate-ca-server-client-kpi prodkeycloak $PRODKEYCLOAK_CONFIG_DIR
 }
 start_prodkeycloak() {
   begin "Starting prodkeycloak ..."

selenium/bin/components/rabbitmq

@@ -10,6 +10,13 @@ init_rabbitmq() {
   [[ -z "${OAUTH_SERVER_CONFIG_BASEDIR}" ]] || print "> OAUTH_SERVER_CONFIG_BASEDIR: ${OAUTH_SERVER_CONFIG_BASEDIR}"
   [[ -z "${OAUTH_SERVER_CONFIG_DIR}" ]] || print "> OAUTH_SERVER_CONFIG_DIR: ${OAUTH_SERVER_CONFIG_DIR}"
 
+  if [[ ! -d "${RABBITMQ_CONFIG_DIR}/certs" ]]; then 
+    mkdir ${RABBITMQ_CONFIG_DIR}/certs
+  fi 
+  generate-ca-server-client-kpi rabbitmq $RABBITMQ_CONFIG_DIR/certs
+  generate-server-keystore-if-required rabbitmq $RABBITMQ_CONFIG_DIR/certs
+  generate-client-keystore-if-required rabbitmq $RABBITMQ_CONFIG_DIR/certs
+  generate-truststore-if-required rabbitmq $RABBITMQ_CONFIG_DIR/certs
 }
 
 start_rabbitmq() {

selenium/bin/components/uaa

@@ -16,6 +16,9 @@ init_uaa() {
   print "> UAA_CONFIG_DIR: ${UAA_CONFIG_DIR}"
   print "> UAA_URL: ${UAA_URL}"
   print "> UAA_DOCKER_IMAGE: ${UAA_DOCKER_IMAGE}"
+
+  generate-ca-server-client-kpi uaa $UAA_CONFIG_DIR
+  generate-server-keystore-if-required uaa $UAA_CONFIG_DIR
 }
 start_uaa() {
   begin "Starting UAA ..."

selenium/bin/suite_template

@@ -375,6 +375,99 @@ generate_env_file() {
     source $ENV_FILE
     end "Finished generating env file."
 }
+generate-ca-server-client-kpi() {
+  NAME=$1
+  FOLDER=$2
+  if [[ ! -f "${FOLDER}/server_${NAME}_key.pem" ]]; then
+	  do_generate-ca-server-client-kpi $1 $2
+  fi
+}
+do_generate-ca-server-client-kpi() {
+  NAME=$1
+  FOLDER=$2
+  ROOT=$SELENIUM_ROOT_FOLDER
+
+  begin "Generate certs for $NAME"
+
+  if [ ! -d "$ROOT/tls-gen" ]; then
+    git clone https://github.com/michaelklishin/tls-gen $ROOT/tls-gen
+  fi
+
+  print "Generating CA and Server (localhost and $NAME) PKI under $FOLDER ..."
+  mkdir -p $FOLDER
+
+  CUR_DIR=$(pwd)
+  cd $ROOT/tls-gen/basic
+  cp openssl.cnf openssl.cnf.bak
+  if [ -f "$FOLDER/openssl.cnf.in" ]; then     
+    cp $FOLDER/openssl.cnf.in >> openssl.cnf
+  fi 
+  if [[ ! -z "${DEBUG}" ]]; then
+    print "Used this openssl.conf"
+    cat openssl.cnf
+  fi
+  make CN=$NAME CLIENT_ALT_NAME=internaluser
+  cp openssl.cnf.bak openssl.cnf  
+  cd $CUR_DIR
+
+  cp $ROOT/tls-gen/basic/result/ca_certificate.pem $FOLDER/ca_${NAME}_certificate.pem
+  cp $ROOT/tls-gen/basic/result/server_${NAME}_certificate.pem $FOLDER
+  cp $ROOT/tls-gen/basic/result/server_${NAME}_key.pem $FOLDER
+  cp $ROOT/tls-gen/basic/result/server_${NAME}.p12 $FOLDER
+  cp $ROOT/tls-gen/basic/result/client_${NAME}_certificate.pem $FOLDER
+  cp $ROOT/tls-gen/basic/result/client_${NAME}_key.pem $FOLDER
+  cp $ROOT/tls-gen/basic/result/client_${NAME}.p12 $FOLDER
+  chmod ugo+r $FOLDER/*.pem
+  end "SSL Certificates generated for $NAME under $FOLDER"
+}
+generate-truststore-if-required() {
+  NAME=$1
+  FOLDER=$2
+  if [[ ! -f "${FOLDER}/truststore.jks" ]]; then
+    keytool -import \
+      -trustcacerts \
+      -file ${FOLDER}/ca_${NAME}_certificate.pem \
+      -keystore ${FOLDER}/truststore.jks \
+      -storepass foobar \
+			-noprompt
+  fi
+}
+generate-server-keystore-if-required() {
+  NAME=$1
+  FOLDER=$2
+  if [ ! -f "${FOLDER}/server_${NAME}.jks" ]; then
+    keytool -importkeystore \
+        -destkeystore ${FOLDER}/server_${NAME}.jks \
+        -srckeystore ${FOLDER}/server_${NAME}.p12 \
+        -deststoretype pkcs12 \
+        -srcstoretype pkcs12 \
+        -alias 1 \
+        -destalias server-${NAME}-tls \
+        -deststorepass foobar \
+        -destkeypass foobar \
+        -srcstorepass "" \
+        -srckeypass "" \
+        -noprompt
+  fi
+}
+generate-client-keystore-if-required() {
+  NAME=$1
+  FOLDER=$2
+  if [ ! -f "${FOLDER}/client_${NAME}.jks" ]; then
+    keytool -importkeystore \
+        -destkeystore ${FOLDER}/client_${NAME}.jks \
+        -srckeystore ${FOLDER}/client_${NAME}.p12 \
+        -deststoretype pkcs12 \
+        -srcstoretype pkcs12 \
+        -alias 1 \
+        -destalias client-${NAME}-tls \
+        -deststorepass foobar \
+        -destkeypass foobar \
+        -srcstorepass "" \
+        -srckeypass "" \
+        -noprompt
+  fi
+}
 run() {
   runWith rabbitmq
 }

selenium/test/authnz-msg-protocols/env.auth-oauth-dev.docker

@@ -1,2 +1,2 @@
 export OAUTH_PROVIDER_URL=https://devkeycloak:8442/realms/dev
-export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/devkeycloak/ca_certificate.pem
+export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/devkeycloak/ca_devkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.auth-oauth-dev.local

@@ -1,2 +1,2 @@
 export OAUTH_PROVIDER_URL=https://devkeycloak:8442/realms/dev
-export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/devkeycloak/ca_certificate.pem
+export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/devkeycloak/ca_devkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.auth-oauth-prod.docker

@@ -1,2 +1,2 @@
 export OAUTH_PROVIDER_URL=https://prodkeycloak:8442/realms/prod
-export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/prodkeycloak/ca_certificate.pem
+export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/prodkeycloak/ca_prodkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.auth-oauth-prod.local

@@ -1,2 +1,2 @@
 export OAUTH_PROVIDER_URL=https://prodkeycloak:8442/realms/prod
-export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/prodkeycloak/ca_certificate.pem
+export OAUTH_NODE_EXTRA_CA_CERTS=multi-oauth/prodkeycloak/ca_prodkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.docker.devkeycloak

@@ -1,2 +1,2 @@
 export DEVKEYCLOAK_URL=https://devkeycloak:8442/realms/dev
-export DEVKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_certificate.pem 
+export DEVKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_devkeycloak_certificate.pem 

selenium/test/authnz-msg-protocols/env.docker.prodkeycloak

@@ -1,2 +1,2 @@
 export PRODKEYCLOAK_URL=https://prodkeycloak:8443/realms/prod
-export PRODKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_certificate.pem
+export PRODKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_prodkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.local.devkeycloak

@@ -1,2 +1,2 @@
 export DEVKEYCLOAK_URL=https://localhost:8442/realms/dev
-export DEVKEYCLOAK_CA_CERT=test/multi-oauth/devkeycloak/ca_certificate.pem
+export DEVKEYCLOAK_CA_CERT=test/multi-oauth/devkeycloak/ca_devkeycloak_certificate.pem

selenium/test/authnz-msg-protocols/env.local.prodkeycloak

@@ -1,2 +1,2 @@
 export PRODKEYCLOAK_URL=https://localhost:8443/realms/prod
-export PRODKEYCLOAK_CA_CERT=test/multi-oauth/prodkeycloak/ca_certificate.pem
+export PRODKEYCLOAK_CA_CERT=test/multi-oauth/prodkeycloak/ca_prodkeycloak_certificate.pem

selenium/test/basic-auth/certs/ca_rabbitmq_certificate.pem

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----
+MIIDhDCCAmygAwIBAgIUGj1qIVmaPreBbuiv/5ClTnSYS+EwDQYJKoZIhvcNAQEL
+BQAwSzE6MDgGA1UEAwwxVExTR2VuU2VsZlNpZ25lZFJvb3RDQSAyMDI0LTExLTI4
+VDExOjI4OjQxLjYxMjUxMDENMAsGA1UEBwwEJCQkJDAeFw0yNDExMjgxMDI4NDFa
+Fw0zNDExMjYxMDI4NDFaMEsxOjA4BgNVBAMMMVRMU0dlblNlbGZTaWduZWRSb290
+Q0EgMjAyNC0xMS0yOFQxMToyODo0MS42MTI1MTAxDTALBgNVBAcMBCQkJCQwggEi
+MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfI5C+29ZY9phf1yyjr8kWpLDB
+EAESadATme+N/C/Ogmoli8JvFcmH3Ct2QZ1UO/iMYuqnob1s4lt6Jmd4IITJEkoP
+jZU4ZfpnQZ7aKp4d9k476TAP47Bon9MD5AhsOmZhTNPDwWJEDH0OzQ89Ei9zUwbH
+3Y9gmRS2QNw68+pmIL5EHd+l/Yp1rmaoy+jfUpEIDqcXbLQn+1kaAgZMAttvydoR
+a6ioDgAP7G4EymeUTHd2OeUFLuY1uT0yje+nUfOOtJX29DX6JZ6Dw+9J/pUnYxQ/
+169HNOOMaGC7KNkwmWj0oIQjWgunV9/cHFtTSENF2C0ltwyYdyIpnqgTAl6bAgMB
+AAGjYDBeMA8GA1UdEwEB/wQFMAMBAf8wCwYDVR0PBAQDAgEGMB0GA1UdDgQWBBT9
+wcqXKAFYCcs5wMTUDmWUN3F43DAfBgNVHSMEGDAWgBT9wcqXKAFYCcs5wMTUDmWU
+N3F43DANBgkqhkiG9w0BAQsFAAOCAQEAR8X86jeXZMLdjdQQBVm+RB4/sTryo79Z
+SL6y1RxcvRdrE62L0yPk39shoihJhxtP9k3glN72+g4QE/1Fk4anFc9eCQ5X11Iy
+oyW6cfXCMAenY66wdDvqdZOONjEXC5bwaKGEajByZmfKfB5eMoyQmixaH+NJ+q/8
+OYYlpuMBIXoFIQ3VH3+1YdWeBpkCEhyt6kHoC7ql0jD5sDwMBEMw1OfcaTEabnlS
+idVDFE2tRj7l1Ni3XNUxfNHGC51N/gogF/rgyBblHE7chnrV6Qt6Uj0nnN5nkE30
+bZwTcXk0mkEnUXMl7Egreg9VRDtKWej5YATsrHvCVtahoddBSyZ4gw==
+-----END CERTIFICATE-----

selenium/test/basic-auth/certs/client_rabbitmq_certificate.pem

@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

selenium/test/basic-auth/certs/client_rabbitmq_key.pem

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

selenium/test/basic-auth/certs/server_rabbitmq_certificate.pem

@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----

selenium/test/basic-auth/certs/server_rabbitmq_key.pem

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

selenium/test/multi-oauth/env.docker.devkeycloak

@@ -1,2 +1,2 @@
 export DEVKEYCLOAK_URL=https://devkeycloak:8442/realms/dev
-export DEVKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_certificate.pem
+export DEVKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_devkeycloak_certificate.pem

selenium/test/multi-oauth/env.docker.prodkeycloak

@@ -1,2 +1,2 @@
 export PRODKEYCLOAK_URL=https://prodkeycloak:8443/realms/prod
-export PRODKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_certificate.pem
+export PRODKEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_prodkeycloak_certificate.pem

selenium/test/multi-oauth/env.local.devkeycloak

@@ -1,2 +1,2 @@
 export DEVKEYCLOAK_URL=https://localhost:8442/realms/dev
-export DEVKEYCLOAK_CA_CERT=deps/rabbitmq_management/selenium/test/multi-oauth/devkeycloak/ca_certificate.pem
+export DEVKEYCLOAK_CA_CERT=deps/rabbitmq_management/selenium/test/multi-oauth/devkeycloak/ca_prodkeycloak_certificate.pem

selenium/test/multi-oauth/env.local.prodkeycloak

@@ -1,2 +1,2 @@
 export PRODKEYCLOAK_URL=https://localhost:8443/realms/prod
-export PRODKEYCLOAK_CA_CERT=deps/rabbitmq_management/selenium/test/multi-oauth/prodkeycloak/ca_certificate.pem
+export PRODKEYCLOAK_CA_CERT=deps/rabbitmq_management/selenium/test/multi-oauth/prodkeycloak/ca_prodkeycloak_certificate.pem

selenium/test/multi-oauth/rabbitmq.tls.conf

@@ -2,13 +2,13 @@ auth_backends.1 = rabbit_auth_backend_oauth2
 
 listeners.ssl.1 = 5671
 
-ssl_options.cacertfile = ${RABBITMQ_TEST_DIR}/certs/ca_certificate.pem
+ssl_options.cacertfile = ${RABBITMQ_TEST_DIR}/certs/ca_rabbitmq_certificate.pem
 ssl_options.certfile   = ${RABBITMQ_TEST_DIR}/certs/server_rabbitmq_certificate.pem
 ssl_options.keyfile    = ${RABBITMQ_TEST_DIR}/certs/server_rabbitmq_key.pem
 ssl_options.verify     = verify_peer
 ssl_options.fail_if_no_peer_cert = true
 
 management.ssl.port = 15671
-management.ssl.cacertfile = ${RABBITMQ_TEST_DIR}/certs/ca_certificate.pem
+management.ssl.cacertfile = ${RABBITMQ_TEST_DIR}/certs/ca_rabbitmq_certificate.pem
 management.ssl.certfile   = ${RABBITMQ_TEST_DIR}/certs/server_rabbitmq_certificate.pem
 management.ssl.keyfile    = ${RABBITMQ_TEST_DIR}/certs/server_rabbitmq_key.pem