Context("when configuring mutual SSL", func() {
BeforeEach(func() {
bbsArgs.RequireSSL = true
bbsArgs.CAFile = path.Join(basePath, "green-certs", "server-ca.crt")
bbsArgs.CertFile = path.Join(basePath, "green-certs", "server.crt")
bbsArgs.KeyFile = path.Join(basePath, "green-certs", "server.key")
})
It("succeeds for a client configured with the right certificate", func() {
caFile := path.Join(basePath, "green-certs", "server-ca.crt")
certFile := path.Join(basePath, "green-certs", "client.crt")
keyFile := path.Join(basePath, "green-certs", "client.key")
client, err = bbs.NewSecureClient(bbsURL.String(), caFile, certFile, keyFile, 0, 0)
Expect(err).NotTo(HaveOccurred())
Expect(client.Ping()).To(BeTrue())
})
It("fails for a client with no SSL", func() {
client = bbs.NewClient(bbsURL.String())
Expect(client.Ping()).To(BeFalse())
})
It("fails for a client configured with the wrong certificates", func() {
caFile := path.Join(basePath, "green-certs", "server-ca.crt")
certFile := path.Join(basePath, "blue-certs", "client.crt")
keyFile := path.Join(basePath, "blue-certs", "client.key")
client, err = bbs.NewSecureClient(bbsURL.String(), caFile, certFile, keyFile, 0, 0)
Expect(err).NotTo(HaveOccurred())
Expect(client.Ping()).To(BeFalse())
})
