1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
|
use strict;
use warnings FATAL => 'all';
use Apache::Test;
use Apache::TestRequest;
use Apache::TestConfig ();
use Apache::TestUtil;
#if keepalives are on, renegotiation not happen again once
#a client cert is presented. so on test #3, the cert from #2
#will be used. this test scenerio would never
#happen in real-life, so just disable keepalives here.
Apache::TestRequest::user_agent_keepalive(0);
my $url = '/ssl-fakebasicauth/index.html';
plan tests => 4, need need_auth, need_lwp;
Apache::TestRequest::scheme('https');
# With TLSv1.3 mod_ssl may return a better 403 error here, otherwise
# expect a TLS alert which is represented as a 500 by LWP.
ok t_cmp (GET_RC($url, cert => undef),
qr/^(500|403)$/,
"Getting $url with no cert"
);
ok t_cmp (GET_RC($url, cert => 'client_snakeoil'),
200,
"Getting $url with client_snakeoil cert"
);
ok t_cmp (GET_RC($url, cert => 'client_ok'),
401,
"Getting $url with client_ok cert"
);
if (!have_min_apache_version("2.5.1")) {
skip "Colon in username test skipped.";
}
else {
ok t_cmp (GET_RC($url, cert => 'client_colon'),
403,
"Getting $url with client_colon cert"
);
}
|
