From c746882a07952a0cd460e6fa8bcac246289db6b9 Mon Sep 17 00:00:00 2001
From: Krzysztof Gajewski <krzysztof.gajewski@nokia.com>
Date: Mon, 1 Feb 2021 17:46:51 +0100
Subject: Add HTTPS to DFC tests - testing environment preparation for DFC with
 HTTPS client   (expand existing http server) - add suitable TCs for CSIT
 tests

Issue-ID: DCAEGEN2-2528
Signed-off-by: Krzysztof Gajewski <krzysztof.gajewski@nokia.com>
Change-Id: Ifa8abb827e269d76144fc74c65031dd387fe5fe7
---
 .../apache2/conf/extra/httpd-ssl.conf              | 65 ++++++++++++++++++++++
 1 file changed, 65 insertions(+)
 create mode 100644 test/mocks/datafilecollector-testharness/http-https-server/apache2/conf/extra/httpd-ssl.conf

(limited to 'test/mocks/datafilecollector-testharness/http-https-server/apache2/conf/extra/httpd-ssl.conf')

diff --git a/test/mocks/datafilecollector-testharness/http-https-server/apache2/conf/extra/httpd-ssl.conf b/test/mocks/datafilecollector-testharness/http-https-server/apache2/conf/extra/httpd-ssl.conf
new file mode 100644
index 000000000..f4caf357e
--- /dev/null
+++ b/test/mocks/datafilecollector-testharness/http-https-server/apache2/conf/extra/httpd-ssl.conf
@@ -0,0 +1,65 @@
+Listen 443
+Listen 8080
+
+SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
+SSLProxyProtocol all -SSLv3
+SSLPassPhraseDialog  builtin
+
+SSLSessionCache        "shmcb:/usr/local/apache2/logs/ssl_scache(512000)"
+SSLSessionCacheTimeout  300
+
+<VirtualHost *:8080>
+	ServerAdmin httpserver-onap.org
+	ServerName  httpserver-onap.org
+
+	DocumentRoot /usr/local/apache2/htdocs
+
+	ErrorLog ${APACHE_LOG_DIR}/error.log
+	CustomLog ${APACHE_LOG_DIR}/access.log combined
+
+	SSLEngine on
+	SSLProtocol -all +TLSv1.2
+	SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
+    SSLHonorCipherOrder off
+	SSLSessionTickets off
+
+	SSLCACertificateFile /usr/local/apache2/certs/truststore.pem
+    SSLCertificateFile /usr/local/apache2/certs/keystore.pem
+    SSLCertificateKeyFile /usr/local/apache2/certs/key.pem
+
+</VirtualHost>
+
+<VirtualHost *:443>
+
+    ServerAdmin httpserver-onap.org
+	ServerName httpserver-onap.org
+
+	DocumentRoot /usr/local/apache2/htdocs
+	<Directory "/usr/local/apache2/htdocs">
+        SSLVerifyClient optional
+		SSLVerifyDepth 2
+		SSLOptions +FakeBasicAuth +StrictRequire
+		<RequireAll>
+            Require ssl-verify-client
+        </RequireAll>
+        Options Indexes FollowSymLinks MultiViews
+        AuthType Basic
+	    AuthName "Restricted Content"
+		AuthBasicProvider file
+        AuthUserFile /usr/local/apache2/conf/.htpasswd
+        Require valid-user
+    </Directory>
+
+	ErrorLog ${APACHE_LOG_DIR}/error.log
+	CustomLog ${APACHE_LOG_DIR}/access.log combined
+
+	SSLEngine on
+	SSLProtocol -all +TLSv1.2
+	SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
+   	SSLHonorCipherOrder off
+    SSLSessionTickets off
+
+    SSLCACertificateFile /usr/local/apache2/certs/truststore.pem
+    SSLCertificateFile /usr/local/apache2/certs/keystore.pem
+    SSLCertificateKeyFile /usr/local/apache2/certs/key.pem
+</VirtualHost>
-- 
cgit 1.2.3-korg