KEYCLOAK-5720 Fix X.509 tests

2017-11-03 16:50:59 +01:00 · 2017-11-03 16:50:59 +01:00 · ef8adc15f4
commit ef8adc15f4
parent 1ac9bd510b
3 changed files with 5 additions and 2 deletions
--- a/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/AbstractKeycloakTest.java
+++ b/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/AbstractKeycloakTest.java
@ -71,6 +71,7 @@ import org.keycloak.testsuite.util.TestEventsLogger;
 import org.openqa.selenium.WebDriver;
 import org.wildfly.extras.creaper.commands.undertow.AddUndertowListener;
 import org.wildfly.extras.creaper.commands.undertow.RemoveUndertowListener;
+import org.wildfly.extras.creaper.commands.undertow.SslVerifyClient;
 import org.wildfly.extras.creaper.commands.undertow.UndertowListenerType;
 import org.wildfly.extras.creaper.core.CommandFailedException;
 import org.wildfly.extras.creaper.core.online.CliException;
@ -441,6 +442,7 @@ public abstract class AbstractKeycloakTest {
        if(!operations.exists(Address.coreService("management").and("security-realm", "UndertowRealm"))) {
            client.execute("/core-service=management/security-realm=UndertowRealm:add()");
            client.execute("/core-service=management/security-realm=UndertowRealm/server-identity=ssl:add(keystore-relative-to=jboss.server.config.dir,keystore-password=secret,keystore-path=keycloak.jks");
+            client.execute("/core-service=management/security-realm=UndertowRealm/authentication=truststore:add(keystore-relative-to=jboss.server.config.dir,keystore-password=secret,keystore-path=keycloak.truststore");
        }

        client.apply(new RemoveUndertowListener.Builder(UndertowListenerType.HTTPS_LISTENER, "https")
@ -450,6 +452,7 @@ public abstract class AbstractKeycloakTest {

        client.apply(new AddUndertowListener.HttpsBuilder("https", "default-server", "https")
                .securityRealm("UndertowRealm")
+                .verifyClient(SslVerifyClient.REQUESTED)
                .build());

        administration.reloadIfRequired();
--- a/testsuite/integration-arquillian/tests/base/src/test/resources/arquillian.xml
+++ b/testsuite/integration-arquillian/tests/base/src/test/resources/arquillian.xml
@ -34,7 +34,7 @@
        <property name="htmlUnitWebClientOptions">cssEnabled=false;historyPageCacheLimit=1</property>

        <!-- phantomjs -->
-        <property name="phantomjs.cli.args">${phantomjs.cli.args} --ssl-certificates-path=${client.certificate.ca.path} --ssl-client-certificate-file=${client.certificate.file} --ssl-client-key-file=${client.key.file} --ssl-client-key-passphrase=${client.key.passphrase}</property>
+        <property name="phantomjs.cli.args">${phantomjs.cli.args}</property>

        <!-- firefox -->
        <property name="firefox_binary">${firefox_binary}</property>
--- a/testsuite/integration-arquillian/tests/pom.xml
+++ b/testsuite/integration-arquillian/tests/pom.xml
@ -102,7 +102,7 @@
        <github.secretToken/>
        <ieDriverArch/>
        <htmlUnitBrowserVersion>chrome</htmlUnitBrowserVersion>
-        <phantomjs.cli.args>--ignore-ssl-errors=true --web-security=false</phantomjs.cli.args>
+        <phantomjs.cli.args>--ignore-ssl-errors=true --web-security=false --ssl-certificates-path=${client.certificate.ca.path} --ssl-client-certificate-file=${client.certificate.file} --ssl-client-key-file=${client.key.file} --ssl-client-key-passphrase=${client.key.passphrase}</phantomjs.cli.args>
        <firefox_binary>/usr/bin/firefox</firefox_binary>
        <firefoxLegacyDriver>true</firefoxLegacyDriver>
        <chromeArguments/>