github.com/Venafi/vcert/v5@v5.10.2/aruba/features/renew/renew-with-csr-file.feature

github.com/Venafi/vcert/v5@v5.10.2/aruba/features/renew/renew-with-csr-file.feature (about)

     1  Feature: renew action with -csr file:csr.pem option
     2  
     3    As a user
     4    I want to renew certificates that were enrolled by the app
     5    Using `-csr file:*` option meaning that provided CSR will be sent for signing to substitute old certificate
     6  
     7    New certificate will have the same modulus as an old one.
     8  
     9    It only works if service side allows key reuse. Error is returned otherwise
    10  
    11    Background:
    12      And the default aruba exit timeout is 180 seconds
    13  
    14    Scenario Outline: where the same CSR is sent for renew
    15      Given I generate random CSR with -key-file k.pem -csr-file csr.pem -no-prompt
    16        And it should write private key to the file "k.pem"
    17        And it should write CSR to the file named "csr.pem"
    18      Then I enroll certificate using <endpoint> with -csr file:csr.pem -cert-file c.pem
    19        And it should retrieve certificate
    20        And it should write certificate to the file "c.pem"
    21      Then I renew the certificate in <endpoint> using the same Pickup ID with flags -csr file:csr.pem -cert-file c1.pem
    22        And it should retrieve certificate
    23        And it should write certificate to the file "c1.pem"
    24        But it should not output private key
    25      Then certificate in "c.pem" and certificate in "c1.pem" should have the same modulus
    26      And certificate in "c.pem" and certificate in "c1.pem" should not have the same serial
    27  
    28      @TPP
    29      Examples:
    30        | endpoint  |
    31        | TPP       |
    32  
    33      @VAAS
    34      Examples:
    35        | endpoint  |
    36        | Cloud     |
    37  
    38    Scenario Outline: where different CSR is sent for renew
    39      Given I enroll random certificate using <endpoint> with -no-prompt -key-file k.pem -cert-file c.pem
    40      And it should retrieve certificate
    41  
    42      Given I generate random CSR with -key-file k1.pem -csr-file csr1.pem -no-prompt
    43      And it should write private key to the file "k1.pem"
    44      And it should write CSR to the file named "csr1.pem"
    45  
    46      Then I renew the certificate in <endpoint> using the same Pickup ID with flags -csr file:csr1.pem -cert-file c1.pem
    47      And it should retrieve certificate
    48      And it should write certificate to the file "c1.pem"
    49      But it should not output private key
    50  
    51      Then certificate in "c.pem" and certificate in "c1.pem" should not have the same modulus
    52      And certificate in "c.pem" and certificate in "c1.pem" should not have the same serial
    53  
    54      @TPP
    55      Examples:
    56        | endpoint  |
    57        | TPP       |
    58  
    59      @VAAS
    60      Examples:
    61        | endpoint  |
    62        | Cloud     |