我如何对加密证书颁发进行回归测试?
[英]How do I perform regression testing on let's encrypt certificate issuance?
问题描述
I am a web hosting provider who provides free HTTPS certificates to the domain owners on my platform automatically using Let's Encrypt. 
我是网络托管提供商,他使用Let's Encrypt自动向平台上的域所有者提供免费的HTTPS证书。
I need to be able to test out repeatedly the process of issuance of certificates for a domain. 我需要能够反复测试域证书的颁发过程。 Since I do not have unlimited domains to test with, I need to be able to fully reset all certificates or any process that have occurred on a domain so I can repeat the process in a test suite. 由于我没有要测试的无限域,因此我需要能够完全重置域中发生的所有证书或任何过程,以便可以在测试套件中重复该过程。
How can I do this ? 我怎样才能做到这一点 ?
I am using Node/Express and greenlock as my server software. 我正在使用Node / Express和greenlock作为服务器软件。
1 个解决方案
解决方案1
0 2018-05-15 00:39:29
If you also provide DNS 如果您还提供DNS
You should be able to easily set up a testing environment that uses DNS instead of http challenges, so you can test all of the domains without affecting production. 您应该能够轻松地设置使用DNS而不使用http挑战的测试环境,以便可以测试所有域而不会影响生产。
If not, use staging and curl 如果没有,请staging卷曲
I think it may be easiest to write you test with bash and curl at first. 我认为一开始使用bash和curl进行测试可能是最简单的。 You can use curl's --with-ca-path= option to allow the staging environment's root authority to pass the checks. 您可以使用curl的--with-ca-path=选项来允许登台环境的根权限通过检查。
You could also do this more programmatically in node.js, which also has the option to add custom certificate authorities on a per-request basis. 您也可以在node.js中以编程方式进行此操作,它还可以选择根据每个请求添加自定义证书颁发机构。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.