source: mod_gnutls/test/tests/21_TLS_reverse_proxy_wrong_cert/test.yaml @ be2ad50

asyncio
Last change on this file since be2ad50 was be2ad50, checked in by Fiona Klute <fiona.klute@…>, 22 months ago

Create untrusted, but otherwise good certificate for validation test

The previous "imposter" certificate would've already failed the
hostname check. It's still used in SNI tests, to be replaced with a
better fitting certificate later.

  • Property mode set to 100644
File size: 734 bytes
Line 
1- !connection
2  description: >-
3    The reverse proxy can't access the backend (certificate validation
4    fails)
5  gnutls_params:
6    - x509cafile=authority/x509.pem
7  actions:
8    - !request
9      path: /proxy/test.txt
10      expect:
11        status: 502
12        body:
13          contains:
14            - 'Proxy Error'
15            - 'Error reading from remote server'
16
17- !connection
18  description: >-
19    Check if the proxy itself works correctly and presents the
20    expected untrusted certificate
21  host: '${BACKEND_HOST}'
22  port: '${BACKEND_PORT}'
23  gnutls_params:
24    - x509cafile=rogueca/x509.pem
25  actions:
26    - !request
27      path: /test.txt
28      expect:
29        status: 200
30        body:
31          exactly: |
32            test
Note: See TracBrowser for help on using the repository browser.