Add WinRM client certificate authentication support

[rveznaver]

Hello,
I have added a couple of lines of code to support client certificate-based authentication as per http://msdn.microsoft.com/en-us/library/aa384295.aspx
Please note that I am not a Java programmer, so any suggestions and help is welcomed. I have not managed to run the integration tests (overcast), so I have tested using the following code:

import static com.xebialabs.overthere.ConnectionOptions.ADDRESS;
import static com.xebialabs.overthere.ConnectionOptions.OPERATING_SYSTEM;
import static com.xebialabs.overthere.ConnectionOptions.PASSWORD;
import static com.xebialabs.overthere.ConnectionOptions.USERNAME;
import static com.xebialabs.overthere.OperatingSystemFamily.WINDOWS;
import static com.xebialabs.overthere.cifs.CifsConnectionBuilder.CONNECTION_TYPE;
import static com.xebialabs.overthere.cifs.CifsConnectionBuilder.WINRM_ENABLE_HTTPS;
import static com.xebialabs.overthere.cifs.CifsConnectionBuilder.WINRM_CLIENT_CERTIFICATE;
import static com.xebialabs.overthere.cifs.CifsConnectionBuilder.WINRM_HTTPS_CERTIFICATE_TRUST_STRATEGY;
import static com.xebialabs.overthere.cifs.CifsConnectionBuilder.WINRM_HTTPS_HOSTNAME_VERIFICATION_STRATEGY;
import static com.xebialabs.overthere.cifs.CifsConnectionType.WINRM_INTERNAL;

import com.xebialabs.overthere.CmdLine;
import com.xebialabs.overthere.ConnectionOptions;
import com.xebialabs.overthere.Overthere;
import com.xebialabs.overthere.OverthereConnection;
import com.xebialabs.overthere.cifs.WinrmHttpsCertificateTrustStrategy;
import com.xebialabs.overthere.cifs.WinrmHttpsHostnameVerificationStrategy;

public class main {
    public static void main(String[] args) {
        ConnectionOptions options = new ConnectionOptions();
        options.set(OPERATING_SYSTEM, WINDOWS);
        options.set(CONNECTION_TYPE, WINRM_INTERNAL);
        options.set(ADDRESS, "localhost");
        options.set(USERNAME, "/home/user/client.pfx");
        options.set(PASSWORD, "password");
        options.set(WINRM_CLIENT_CERTIFICATE, true);
        options.set(WINRM_ENABLE_HTTPS, true);
        options.set(WINRM_HTTPS_CERTIFICATE_TRUST_STRATEGY, WinrmHttpsCertificateTrustStrategy.ALLOW_ALL);
        options.set(WINRM_HTTPS_HOSTNAME_VERIFICATION_STRATEGY, WinrmHttpsHostnameVerificationStrategy.ALLOW_ALL);
        OverthereConnection connection = Overthere.getConnection("cifs", options);
        try {
            connection.execute(CmdLine.build("type", "\\windows\\system32\\drivers\\etc\\hosts"));
        } finally {
            connection.close();
        }
    }
}

I have used the USERNAME field for storing the certificate location as it required the minimum refactoring.

The Windows (WinRM) server was set up using:

winrm create winrm/config/Listener?Address=*+Transport=HTTPS @{CertificateThumbprint="S3rv3rThum8pr1n7"}
winrm set winrm/config/service @{AllowUnencrypted="False"}
winrm set winrm/config/service/auth @{Basic="False"}
winrm set winrm/config/service/auth @{Certificate="True"}
winrm create winrm/config/service/certmapping?Issuer=Cl13ntThum8pr1n7+Subject=*+URI=* @{UserName="LocalUser";Password="LocalPassword"}

[buildhive]

XebiaLabs » overthere #245 SUCCESS
This pull request looks good
(what's this?)

[buildhive]

XebiaLabs » overthere #246 SUCCESS
This pull request looks good
(what's this?)

[hierynomus]

Also missing hte documentation updates and unit/integration tests.

[rveznaver]

I can add documentation about the client certificate authentication. However, I have not been able to set up integration tests. Do you have some documentation on setting up the tests?

[hierynomus]

I have not, but it would be good to add to the readme indeed... And provide some scripts to setup the environment..

[buildhive]

XebiaLabs » overthere #285 FAILURE
Looks like there's a problem with this pull request
(what's this?)

[buildhive]

XebiaLabs » overthere #286 FAILURE
Looks like there's a problem with this pull request
(what's this?)