1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
use strict;
use warnings FATAL => 'all';
use Apache::Test;
use Apache::TestRequest;
use Apache::TestConfig ();
use Apache::TestUtil;
# check fake authentication using mod_auth_anon
# no cert should fail but the presence of any cert
# should pass. see also t/ssl/basicauth.t
my $url = '/ssl-fakebasicauth2/index.html';
plan tests => 3, need need_auth,
need_module('mod_authn_anon'),
need_min_apache_version(2.1);
Apache::TestRequest::scheme('https');
# With TLSv1.3 mod_ssl may return a better 403 error here, otherwise
# expect a TLS alert which is represented as a 500 by LWP.
ok t_cmp (GET_RC($url, cert => undef),
qr/^(500|403)$/,
"Getting $url with no cert"
);
ok t_cmp (GET_RC($url, cert => 'client_snakeoil'),
200,
"Getting $url with client_snakeoil cert"
);
ok t_cmp (GET_RC($url, cert => 'client_ok'),
200,
"Getting $url with client_ok cert"
);
|
