JksSslStoreBundleTests Class — spring-boot Architecture
Architecture documentation for the JksSslStoreBundleTests class in JksSslStoreBundleTests.java from the spring-boot codebase.
Entity Profile
Relationship Graph
Source Code
core/spring-boot/src/test/java/org/springframework/boot/ssl/jks/JksSslStoreBundleTests.java lines 48–210
@MockPkcs11Security
class JksSslStoreBundleTests {
@Test
void whenNullStores() {
JksSslStoreDetails keyStoreDetails = null;
JksSslStoreDetails trustStoreDetails = null;
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getKeyStore()).isNull();
assertThat(bundle.getKeyStorePassword()).isNull();
assertThat(bundle.getTrustStore()).isNull();
}
@Test
void whenStoresHaveNoValues() {
JksSslStoreDetails keyStoreDetails = JksSslStoreDetails.forLocation(null);
JksSslStoreDetails trustStoreDetails = JksSslStoreDetails.forLocation(null);
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getKeyStore()).isNull();
assertThat(bundle.getKeyStorePassword()).isNull();
assertThat(bundle.getTrustStore()).isNull();
}
@Test
void whenTypePKCS11AndLocationGetKeyStoreThrowsException() {
JksSslStoreDetails keyStoreDetails = new JksSslStoreDetails("PKCS11", null, "test.jks", null);
JksSslStoreBundle jksSslStoreBundle = new JksSslStoreBundle(keyStoreDetails, null);
assertThatIllegalStateException().isThrownBy(jksSslStoreBundle::getKeyStore)
.withMessageContaining(
"Unable to create key store: Location is 'test.jks', but must be empty or null for PKCS11 hardware key stores");
}
@Test
@WithPackageResources("test.jks")
void whenHasKeyStoreLocation() {
JksSslStoreDetails keyStoreDetails = JksSslStoreDetails.forLocation("classpath:test.jks")
.withPassword("secret");
JksSslStoreDetails trustStoreDetails = null;
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getKeyStore()).satisfies(storeContainingCertAndKey("test-alias", "password"));
}
@Test
@WithPackageResources("test.jks")
void getTrustStoreWithLocations() {
JksSslStoreDetails keyStoreDetails = null;
JksSslStoreDetails trustStoreDetails = JksSslStoreDetails.forLocation("classpath:test.jks")
.withPassword("secret");
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getTrustStore()).satisfies(storeContainingCertAndKey("test-alias", "password"));
}
@Test
@WithPackageResources("test.jks")
void whenHasKeyStoreType() {
JksSslStoreDetails keyStoreDetails = new JksSslStoreDetails("jks", null, "classpath:test.jks", "secret");
JksSslStoreDetails trustStoreDetails = null;
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getKeyStore()).satisfies(storeContainingCertAndKey("jks", "test-alias", "password"));
}
@Test
@WithPackageResources("test.jks")
void whenHasTrustStoreType() {
JksSslStoreDetails keyStoreDetails = null;
JksSslStoreDetails trustStoreDetails = new JksSslStoreDetails("jks", null, "classpath:test.jks", "secret");
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getTrustStore()).satisfies(storeContainingCertAndKey("jks", "test-alias", "password"));
}
@Test
@WithPackageResources("test.jks")
void whenHasKeyStoreProvider() {
JksSslStoreDetails keyStoreDetails = new JksSslStoreDetails(null, "com.example.KeyStoreProvider",
"classpath:test.jks", "secret");
JksSslStoreBundle jksSslStoreBundle = new JksSslStoreBundle(keyStoreDetails, null);
assertThatIllegalStateException().isThrownBy(jksSslStoreBundle::getKeyStore)
.withMessageContaining("com.example.KeyStoreProvider");
}
@Test
@WithPackageResources("test.jks")
void whenHasTrustStoreProvider() {
JksSslStoreDetails trustStoreDetails = new JksSslStoreDetails(null, "com.example.KeyStoreProvider",
"classpath:test.jks", "secret");
JksSslStoreBundle jksSslStoreBundle = new JksSslStoreBundle(null, trustStoreDetails);
assertThatIllegalStateException().isThrownBy(jksSslStoreBundle::getTrustStore)
.withMessageContaining("com.example.KeyStoreProvider");
}
@Test
void storeCreationIsLazy() {
JksSslStoreDetails details = new JksSslStoreDetails(null, null, "does-not-exist", null);
JksSslStoreBundle bundle = new JksSslStoreBundle(details, details);
assertThatIllegalStateException().isThrownBy(bundle::getKeyStore);
assertThatIllegalStateException().isThrownBy(bundle::getTrustStore);
}
@Test
@WithPackageResources({ "test.p12", "test.jks" })
void whenLocationsAreBase64Encoded() throws IOException {
JksSslStoreDetails keyStoreDetails = JksSslStoreDetails.forLocation(encodeFileContent("classpath:test.p12"))
.withPassword("secret");
JksSslStoreDetails trustStoreDetails = JksSslStoreDetails.forLocation(encodeFileContent("classpath:test.jks"))
.withPassword("secret");
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails);
assertThat(bundle.getKeyStore()).satisfies(storeContainingCertAndKey("test-alias", "secret"));
assertThat(bundle.getTrustStore()).satisfies(storeContainingCertAndKey("test-alias", "password"));
}
@Test
void invalidBase64EncodedLocationThrowsException() {
JksSslStoreDetails keyStoreDetails = JksSslStoreDetails.forLocation("base64:not base 64");
JksSslStoreBundle jksSslStoreBundle = new JksSslStoreBundle(keyStoreDetails, null);
assertThatIllegalStateException().isThrownBy(jksSslStoreBundle::getKeyStore)
.withMessageContaining("key store")
.withMessageContaining("base64:not base 64")
.havingRootCause()
.isInstanceOf(IllegalArgumentException.class)
.withMessageContaining("Illegal base64");
}
@Test
void invalidLocationThrowsException() {
JksSslStoreDetails trustStoreDetails = JksSslStoreDetails.forLocation("does-not-exist.p12");
JksSslStoreBundle jksSslStoreBundle = new JksSslStoreBundle(null, trustStoreDetails);
assertThatIllegalStateException().isThrownBy(jksSslStoreBundle::getTrustStore)
.withMessageContaining("trust store")
.withMessageContaining("does-not-exist.p12");
}
@Test
@WithPackageResources("test.jks")
void usesResourceLoader() {
JksSslStoreDetails keyStoreDetails = null;
JksSslStoreDetails trustStoreDetails = new JksSslStoreDetails("jks", null, "classpath:test.jks", "secret");
ResourceLoader resourceLoader = spy(new DefaultResourceLoader());
JksSslStoreBundle bundle = new JksSslStoreBundle(keyStoreDetails, trustStoreDetails, resourceLoader);
assertThat(bundle.getTrustStore()).satisfies(storeContainingCertAndKey("jks", "test-alias", "password"));
then(resourceLoader).should(atLeastOnce()).getResource("classpath:test.jks");
}
private Consumer<KeyStore> storeContainingCertAndKey(String keyAlias, String keyPassword) {
return storeContainingCertAndKey(KeyStore.getDefaultType(), keyAlias, keyPassword);
}
private Consumer<KeyStore> storeContainingCertAndKey(String keyStoreType, String keyAlias, String keyPassword) {
return ThrowingConsumer.of((keyStore) -> {
assertThat(keyStore).isNotNull();
assertThat(keyStore.getType()).isEqualTo(keyStoreType);
assertThat(keyStore.containsAlias(keyAlias)).isTrue();
assertThat(keyStore.getCertificate(keyAlias)).isNotNull();
assertThat(keyStore.getKey(keyAlias, keyPassword.toCharArray())).isNotNull();
});
}
private String encodeFileContent(String location) throws IOException {
Resource resource = ApplicationResourceLoader.get().getResource(location);
byte[] bytes = Files.readAllBytes(resource.getFile().toPath());
return "base64:" + Base64.getEncoder().encodeToString(bytes);
}
}Domain
Source
Analyze Your Own Codebase
Get architecture documentation, dependency graphs, and domain analysis for your codebase in minutes.
Try Supermodel Free