From 103e0ee850404a5c8dc69bbbf79b2508a9c55d7a Mon Sep 17 00:00:00 2001
From: Magnus Ahltorp <map@kth.se>
Date: Thu, 26 Feb 2015 16:54:26 +0100
Subject: Added authentication between frontend and storage nodes
---
test/config/frontend-1.config | 21 ++++++++++++++++++++-
test/config/privatekeys/frontend-1-private.pem | 5 +++++
test/config/privatekeys/merge-1-private.pem | 5 +++++
test/config/privatekeys/storage-1-private.pem | 5 +++++
test/config/publickeys/frontend-1.pem | 4 ++++
test/config/publickeys/merge-1.pem | 4 ++++
test/config/publickeys/storage-1.pem | 4 ++++
test/config/storage-1.config | 10 +++++++++-
8 files changed, 56 insertions(+), 2 deletions(-)
create mode 100644 test/config/privatekeys/frontend-1-private.pem
create mode 100644 test/config/privatekeys/merge-1-private.pem
create mode 100644 test/config/privatekeys/storage-1-private.pem
create mode 100644 test/config/publickeys/frontend-1.pem
create mode 100644 test/config/publickeys/merge-1.pem
create mode 100644 test/config/publickeys/storage-1.pem
(limited to 'test')
diff --git a/test/config/frontend-1.config b/test/config/frontend-1.config
index 79d887d..35631d1 100644
--- a/test/config/frontend-1.config
+++ b/test/config/frontend-1.config
@@ -31,5 +31,24 @@
{treesize_path, "tests/machine/machine-1/db/treesize"},
{indexforhash_root_path, "tests/machine/machine-1/db/certindex/"},
{storage_nodes, ["https://127.0.0.1:8081/ct/storage/"]},
- {storage_nodes_quorum, 1}
+ {storage_nodes_quorum, 1},
+ {publickey_path, "publickeys"},
+ {own_key, {"frontend-1", "privatekeys/frontend-1-private.pem"}},
+ {allowed_clients, [{"/ct/frontend/sendentry", noauth},
+ {"/ct/frontend/sendlog", noauth},
+ {"/ct/frontend/sendsth", noauth},
+ {"/ct/frontend/currentposition", noauth},
+ {"/ct/frontend/missingentries", noauth},
+ {"/ct/v1/add-chain", noauth},
+ {"/ct/v1/add-pre-chain", noauth},
+ {"/ct/v1/get-sth", noauth},
+ {"/ct/v1/get-sth-consistency", noauth},
+ {"/ct/v1/get-proof-by-hash", noauth},
+ {"/ct/v1/get-entries", noauth},
+ {"/ct/v1/get-entry-and-proof", noauth},
+ {"/ct/v1/get-roots", noauth}
+ ]},
+ {allowed_servers, [{"/ct/storage/sendentry", ["storage-1"]},
+ {"/ct/storage/entrycommitted", ["storage-1"]}
+ ]}
]}].
diff --git a/test/config/privatekeys/frontend-1-private.pem b/test/config/privatekeys/frontend-1-private.pem
new file mode 100644
index 0000000..718efda
--- /dev/null
+++ b/test/config/privatekeys/frontend-1-private.pem
@@ -0,0 +1,5 @@
+-----BEGIN EC PRIVATE KEY-----
+MHcCAQEEIPER9WFIxLXvXDHTwPvGnNvBAKOB+/6ahpvuCjtlzOU8oAoGCCqGSM49
+AwEHoUQDQgAEibeLqrVV7QAE6Wytzpxi4sd0JtGNGRfXNZ9r9CNIVudDnNjtFRF5
+gwm/AxUWEuBXjnbVvq4HOLqZ0bP2qc+uRQ==
+-----END EC PRIVATE KEY-----
diff --git a/test/config/privatekeys/merge-1-private.pem b/test/config/privatekeys/merge-1-private.pem
new file mode 100644
index 0000000..55d50b1
--- /dev/null
+++ b/test/config/privatekeys/merge-1-private.pem
@@ -0,0 +1,5 @@
+-----BEGIN EC PRIVATE KEY-----
+MHcCAQEEIBQcXtOVX29dno+aYqGddVOpg23FfhJmrMFOpOegyYZxoAoGCCqGSM49
+AwEHoUQDQgAExHAsjFFgKFlrcCveHhVdjE7A/Uh0gXdAeN9+P7SDGgRNe0WWDjCr
+0Da3c8X5JulA1cOLlQ0h2B67Yp3WZ9ONHg==
+-----END EC PRIVATE KEY-----
diff --git a/test/config/privatekeys/storage-1-private.pem b/test/config/privatekeys/storage-1-private.pem
new file mode 100644
index 0000000..b68d2a9
--- /dev/null
+++ b/test/config/privatekeys/storage-1-private.pem
@@ -0,0 +1,5 @@
+-----BEGIN EC PRIVATE KEY-----
+MHcCAQEEIAjVa6lTbhiNUfrfTGELRXqHSHF0nuk13lKF8NSHzU07oAoGCCqGSM49
+AwEHoUQDQgAE1vFWiMT9PItJGvyhMKPF5TnFirHPSh5u5swetajmNLyClWIDGXql
+RlXlcPwuKxTISI4rFJATBkKhNjvSZ5L3oA==
+-----END EC PRIVATE KEY-----
diff --git a/test/config/publickeys/frontend-1.pem b/test/config/publickeys/frontend-1.pem
new file mode 100644
index 0000000..938ef29
--- /dev/null
+++ b/test/config/publickeys/frontend-1.pem
@@ -0,0 +1,4 @@
+-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEibeLqrVV7QAE6Wytzpxi4sd0JtGN
+GRfXNZ9r9CNIVudDnNjtFRF5gwm/AxUWEuBXjnbVvq4HOLqZ0bP2qc+uRQ==
+-----END PUBLIC KEY-----
diff --git a/test/config/publickeys/merge-1.pem b/test/config/publickeys/merge-1.pem
new file mode 100644
index 0000000..95a75f7
--- /dev/null
+++ b/test/config/publickeys/merge-1.pem
@@ -0,0 +1,4 @@
+-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAExHAsjFFgKFlrcCveHhVdjE7A/Uh0
+gXdAeN9+P7SDGgRNe0WWDjCr0Da3c8X5JulA1cOLlQ0h2B67Yp3WZ9ONHg==
+-----END PUBLIC KEY-----
diff --git a/test/config/publickeys/storage-1.pem b/test/config/publickeys/storage-1.pem
new file mode 100644
index 0000000..0b862a1
--- /dev/null
+++ b/test/config/publickeys/storage-1.pem
@@ -0,0 +1,4 @@
+-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE1vFWiMT9PItJGvyhMKPF5TnFirHP
+Sh5u5swetajmNLyClWIDGXqlRlXlcPwuKxTISI4rFJATBkKhNjvSZ5L3oA==
+-----END PUBLIC KEY-----
diff --git a/test/config/storage-1.config b/test/config/storage-1.config
index b176e1f..8770f88 100644
--- a/test/config/storage-1.config
+++ b/test/config/storage-1.config
@@ -28,4 +28,12 @@
{newentries_path, "tests/machine/machine-1/db/newentries"},
{entryhash_root_path, "tests/machine/machine-1/db/entryhash/"},
{treesize_path, "tests/machine/machine-1/db/treesize"},
- {indexforhash_root_path, "tests/machine/machine-1/db/certindex/"}]}].
+ {indexforhash_root_path, "tests/machine/machine-1/db/certindex/"},
+ {publickey_path, "publickeys"},
+ {own_key, {"storage-1", "privatekeys/storage-1-private.pem"}},
+ {allowed_clients, [{"/ct/storage/sendentry", ["frontend-1"]},
+ {"/ct/storage/entrycommitted", ["frontend-1"]},
+ {"/ct/storage/fetchnewentries", noauth},
+ {"/ct/storage/getentry", noauth}
+ ]}
+]}].
--
cgit v1.1