est.tests.test_est_interface

Tests for the EST interface endpoints.

Functions

request_factory()

est_simple_enrollment_view()

est_cacerts_view()

get_mock_truststore(certificates)

Get a mock truststore for testing.

test_get_credential_for_certificate(mock_get, mock_filter)

Test the get_credential_for_certificate method.

test_tls_client_cert_verification_no_cert(...)

Tests the TLS client certificate verification if no valid PEM is passed.

test_tls_client_cert_domain_credential_enrollment()

Tests that an issued credential can be enrolled via EST simpleenroll using an IDevID.

test_tls_client_cert_enrollment_twice()

Tests that the same domain credential cannot be enrolled twice via EST simpleenroll using an IDevID.

test_tls_client_cert_application_credential_enrollment()

Tests that an application credential cannot directly be enrolled via EST simpleenroll using an IDevID.

test_tls_reenrollment_valid()

Tests that an issued credential can be re-enrolled via EST simplereenroll.

test_tls_reenrollment_mismatched()

Tests that an issued credential cannot be re-enrolled if the TLS client cert does not match the issued cred.

Module Contents

est.tests.test_est_interface.request_factory()[source]
est.tests.test_est_interface.est_simple_enrollment_view()[source]
est.tests.test_est_interface.est_cacerts_view()[source]
est.tests.test_est_interface.get_mock_truststore(certificates)[source]

Get a mock truststore for testing.

Parameters:

certificates (list[cryptography.x509.Certificate])

Return type:

unittest.mock.MagicMock

est.tests.test_est_interface.test_get_credential_for_certificate(mock_get, mock_filter)[source]

Test the get_credential_for_certificate method.

Return type:

None

est.tests.test_est_interface.test_tls_client_cert_verification_no_cert(est_simple_enrollment_view)[source]

Tests the TLS client certificate verification if no valid PEM is passed.

Return type:

None

est.tests.test_est_interface.test_tls_client_cert_domain_credential_enrollment()[source]

Tests that an issued credential can be enrolled via EST simpleenroll using an IDevID.

Return type:

None

est.tests.test_est_interface.test_tls_client_cert_enrollment_twice()[source]

Tests that the same domain credential cannot be enrolled twice via EST simpleenroll using an IDevID.

Return type:

None

est.tests.test_est_interface.test_tls_client_cert_application_credential_enrollment()[source]

Tests that an application credential cannot directly be enrolled via EST simpleenroll using an IDevID.

Return type:

None

est.tests.test_est_interface.test_tls_reenrollment_valid()[source]

Tests that an issued credential can be re-enrolled via EST simplereenroll.

Return type:

None

est.tests.test_est_interface.test_tls_reenrollment_mismatched()[source]

Tests that an issued credential cannot be re-enrolled if the TLS client cert does not match the issued cred.

For this example, it is attempted to re-enroll a domain credential with an application credential.

Return type:

None