github.com/Venafi/vcert/v5@v5.10.2/aruba/features/renew/renew-by-thumbprint.feature

github.com/Venafi/vcert/v5@v5.10.2/aruba/features/renew/renew-by-thumbprint.feature (about)

     1  Feature: renew action by -thumbprint
     2  
     3    As a user
     4    I want to renew certificates that were enrolled by the app
     5  
     6    Renew action requires a reference to some issued certificate:
     7    -id
     8    - for TPP -id is CertificateDN (like in `revoke` command)
     9    - for Condor -id points to some RequestID, which is used to find ManagedCertificateId then
    10    -thumbprint
    11    - for TPP & Condor -thumbprint is used to find CertificateDN / ManagedCertificateId respectively
    12  
    13    Background:
    14      And the default aruba exit timeout is 180 seconds
    15  
    16    Scenario Outline: TPP - renew by CertificateDN using -thumbprint
    17      Given I enroll random certificate using <endpoint> with -no-prompt -key-file k.pem -cert-file c.pem
    18      And it should write private key to the file "k.pem"
    19      And it should write certificate to the file "c.pem"
    20      And I decode certificate from file "c.pem"
    21      Then I renew the certificate in <endpoint> using the same Thumbprint with flags -no-prompt -cert-file c1.pem -key-file k1.pem
    22      And it should retrieve certificate
    23      And it should write private key to the file "k1.pem"
    24      And it should write certificate to the file "c1.pem"
    25      Then private key in "k1.pem" and certificate in "c1.pem" should have the same modulus
    26      And certificate in "c.pem" and certificate in "c1.pem" should not have the same modulus
    27      And certificate in "c.pem" and certificate in "c1.pem" should not have the same serial
    28  
    29      @TPP
    30      Examples:
    31        | endpoint  |
    32        | TPP       |
    33  
    34      @VAAS
    35      Examples:
    36        | endpoint  |
    37        | Cloud     |
    38  
    39    Scenario Outline: TPP - renew by CertificateDN using -thumbprint file:cert.pem
    40      Given I enroll random certificate using <endpoint> with -no-prompt -key-file k.pem -cert-file c.pem
    41      And it should write private key to the file "k.pem"
    42      And it should write certificate to the file "c.pem"
    43      Then I renew the certificate in <endpoint> with flags -thumbprint file:c.pem -no-prompt -cert-file c1.pem -key-file k1.pem
    44      And it should retrieve certificate
    45      And it should write private key to the file "k1.pem"
    46      And it should write certificate to the file "c1.pem"
    47      Then private key in "k1.pem" and certificate in "c1.pem" should have the same modulus
    48      And certificate in "c.pem" and certificate in "c1.pem" should not have the same modulus
    49      And certificate in "c.pem" and certificate in "c1.pem" should not have the same serial
    50  
    51      @TPP
    52      Examples:
    53        | endpoint  |
    54        | TPP       |
    55  
    56      @VAAS
    57      Examples:
    58        | endpoint  |
    59        | Cloud     |
    60