Replace manual certificate generation with camel-quarkus-integration-…

…tests-support-certificate-generator

fixes #5967
fixes #6125
fixes #6126
fixes #6127

integration-test-groups/http/common/src/main/java/org/apache/camel/quarkus/component/http/common/CommonProducers.java

@@ -27,12 +27,12 @@ public class CommonProducers {
     @Named
     public SSLContextParameters sslContextParameters() {
         KeyStoreParameters keystoreParameters = new KeyStoreParameters();
-        keystoreParameters.setResource("/jsse/localhost-keystore.pkcs12");
+        keystoreParameters.setResource("/certs/localhost-keystore.p12");
         keystoreParameters.setPassword("localhost-keystore-password");
 
         KeyStoreParameters truststoreParameters = new KeyStoreParameters();
-        truststoreParameters.setResource("/jsse/client-truststore.pkcs12");
-        truststoreParameters.setPassword("client-truststore-password");
+        truststoreParameters.setResource("/certs/localhost-truststore.p12");
+        truststoreParameters.setPassword("localhost-keystore-password");
 
         TrustManagersParameters trustManagersParameters = new TrustManagersParameters();
         trustManagersParameters.setKeyStore(truststoreParameters);

integration-test-groups/http/common/src/main/resources/application.properties

@@ -18,7 +18,7 @@
 #
 # Quarkus
 #
-quarkus.native.resources.includes = jsse/*,restcountries/*
+quarkus.native.resources.includes = certs/*,restcountries/*
 quarkus.native.add-all-charsets = true
 quarkus.camel.native.reflection.serialization-enabled = true
 
@@ -31,7 +31,7 @@ quarkus.security.users.embedded.roles.admin=admin
 quarkus.security.users.embedded.roles.noadmin=user
 
 quarkus.http.insecure-requests=enabled
-quarkus.http.ssl.certificate.key-store-file=jsse/localhost-keystore.pkcs12
+quarkus.http.ssl.certificate.key-store-file=certs/localhost-keystore.p12
 quarkus.http.ssl.certificate.key-store-password=localhost-keystore-password
 quarkus.resteasy.gzip.enabled=true
 

integration-test-groups/http/common/src/test/java/org/apache/camel/quarkus/component/http/common/HttpTestResource.java

@@ -41,6 +41,10 @@
 
 public class HttpTestResource implements QuarkusTestResourceLifecycleManager {
     private static final Logger LOG = Logger.getLogger(HttpTestResource.class);
+
+    public static final String KEYSTORE_NAME = "localhost";
+    public static final String KEYSTORE_PASSWORD = "localhost-keystore-password";
+
     private ProxyServer server;
 
     @Override

integration-test-groups/http/http/pom.xml

@@ -78,6 +78,11 @@
             <type>test-jar</type>
             <scope>test</scope>
         </dependency>
+        <dependency>
+            <groupId>org.apache.camel.quarkus</groupId>
+            <artifactId>camel-quarkus-integration-tests-support-certificate-generator</artifactId>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
     <profiles>
         <profile>

integration-test-groups/http/http/src/test/java/org/apache/camel/quarkus/component/http/http/it/HttpTest.java

@@ -20,14 +20,20 @@
 import io.quarkus.test.junit.QuarkusTest;
 import io.restassured.RestAssured;
 import io.restassured.http.ContentType;
+import me.escoffier.certs.Format;
+import me.escoffier.certs.junit5.Certificate;
 import org.apache.camel.quarkus.component.http.common.AbstractHttpTest;
 import org.apache.camel.quarkus.component.http.common.HttpTestResource;
+import org.apache.camel.quarkus.test.support.certificate.TestCertificates;
 import org.junit.jupiter.api.Test;
 
 import static org.hamcrest.Matchers.empty;
 import static org.hamcrest.Matchers.is;
 import static org.hamcrest.Matchers.not;
 
+@TestCertificates(certificates = {
+        @Certificate(name = HttpTestResource.KEYSTORE_NAME, formats = {
+                Format.PKCS12 }, password = HttpTestResource.KEYSTORE_PASSWORD) })
 @QuarkusTest
 @QuarkusTestResource(HttpTestResource.class)
 public class HttpTest extends AbstractHttpTest {

integration-test-groups/http/netty-http/pom.xml

@@ -81,6 +81,11 @@
             <type>test-jar</type>
             <scope>test</scope>
         </dependency>
+        <dependency>
+            <groupId>org.apache.camel.quarkus</groupId>
+            <artifactId>camel-quarkus-integration-tests-support-certificate-generator</artifactId>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
     <profiles>
         <profile>

integration-test-groups/http/netty-http/src/test/java/org/apache/camel/quarkus/component/http/netty/it/NettyHttpJaasTest.java

@@ -19,10 +19,17 @@
 import io.quarkus.test.common.QuarkusTestResource;
 import io.quarkus.test.junit.QuarkusTest;
 import io.restassured.RestAssured;
+import me.escoffier.certs.Format;
+import me.escoffier.certs.junit5.Certificate;
+import org.apache.camel.quarkus.component.http.common.HttpTestResource;
+import org.apache.camel.quarkus.test.support.certificate.TestCertificates;
 import org.eclipse.microprofile.config.ConfigProvider;
 import org.junit.jupiter.params.ParameterizedTest;
 import org.junit.jupiter.params.provider.CsvSource;
 
+@TestCertificates(certificates = {
+        @Certificate(name = HttpTestResource.KEYSTORE_NAME, formats = {
+                Format.PKCS12 }, password = HttpTestResource.KEYSTORE_PASSWORD) })
 @QuarkusTest
 @QuarkusTestResource(NettyHttpJaasTestResource.class)
 public class NettyHttpJaasTest {

integration-test-groups/http/vertx-http/pom.xml

@@ -69,6 +69,11 @@
             <scope>test</scope>
             <type>test-jar</type>
         </dependency>
+        <dependency>
+            <groupId>org.apache.camel.quarkus</groupId>
+            <artifactId>camel-quarkus-integration-tests-support-certificate-generator</artifactId>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
     <profiles>
         <profile>

integration-test-groups/http/vertx-http/src/test/java/org/apache/camel/quarkus/component/http/vertx/it/VertxHttpTest.java

@@ -19,13 +19,19 @@
 import io.quarkus.test.common.QuarkusTestResource;
 import io.quarkus.test.junit.QuarkusTest;
 import io.restassured.RestAssured;
+import me.escoffier.certs.Format;
+import me.escoffier.certs.junit5.Certificate;
 import org.apache.camel.quarkus.component.http.common.AbstractHttpTest;
 import org.apache.camel.quarkus.component.http.common.HttpTestResource;
+import org.apache.camel.quarkus.test.support.certificate.TestCertificates;
 import org.junit.jupiter.api.Test;
 
 import static org.hamcrest.Matchers.is;
 import static org.junit.jupiter.api.Assertions.assertArrayEquals;
 
+@TestCertificates(certificates = {
+        @Certificate(name = HttpTestResource.KEYSTORE_NAME, formats = {
+                Format.PKCS12 }, password = HttpTestResource.KEYSTORE_PASSWORD) })
 @QuarkusTest
 @QuarkusTestResource(HttpTestResource.class)
 public class VertxHttpTest extends AbstractHttpTest {

integration-tests-support/certificate-generator/src/main/java/org/apache/camel/quarkus/test/support/certificate/CertificatesUtil.java

@@ -0,0 +1,28 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements.  See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.test.support.certificate;
+
+public class CertificatesUtil {
+    public static final String DEFAULT_CERTS_BASEDIR = "target/classes/certs";
+
+    private CertificatesUtil() {
+    }
+
+    public static String keystoreFile(String name, String extension) {
+        return DEFAULT_CERTS_BASEDIR + "/" + name + "-keystore." + extension;
+    }
+}

integration-tests-support/certificate-generator/src/main/java/org/apache/camel/quarkus/test/support/certificate/TestCertificateGenerationExtension.java

@@ -43,7 +43,7 @@
  * based on docker host (required for usage with external docker host)
  * Therefore I created a new annotation 'TestCertificates' which would use this new extension.
  */
-public class TestCertificateGenerationExtension implements BeforeAllCallback, ParameterResolver {
+public class TestCertificateGenerationExtension implements BeforeAllCallback {
     private static final Logger LOGGER = Logger.getLogger(TestCertificateGenerationExtension.class);
 
     public static TestCertificateGenerationExtension getInstance(ExtensionContext extensionContext) {
@@ -65,8 +65,12 @@ public void beforeAll(ExtensionContext extensionContext) throws Exception {
         var annotation = maybe.get();
 
         //cn and alternativeSubjectName might be different (to reflect docker host)
-        Optional<String> cn = resolveDockerHost();
-        Optional<String> altSubName = cn.stream().map(h -> "IP:%s".formatted(h)).findAny();
+        Optional<String> cn = Optional.empty();
+        Optional<String> altSubName = Optional.empty();
+        if (annotation.docker()) {
+            cn = resolveDockerHost();
+            altSubName = cn.stream().map(h -> "IP:%s".formatted(h)).findAny();
+        }
 
         for (Certificate certificate : annotation.certificates()) {
             String baseDir = annotation.baseDir();
@@ -113,15 +117,4 @@ private Optional<String> resolveDockerHost() {
         return Optional.empty();
     }
 
-    @Override
-    public boolean supportsParameter(ParameterContext parameterContext, ExtensionContext extensionContext)
-            throws ParameterResolutionException {
-        throw new IllegalArgumentException("Not supported!");
-    }
-
-    @Override
-    public Object resolveParameter(ParameterContext parameterContext, ExtensionContext extensionContext)
-            throws ParameterResolutionException {
-        throw new IllegalArgumentException("Not supported!");
-    }
 }

integration-tests-support/certificate-generator/src/main/java/org/apache/camel/quarkus/test/support/certificate/TestCertificates.java

@@ -39,8 +39,9 @@
 
     /**
      * The base directory in which certificates will be generated.
+     * Default value is `target/classes/certs`
      */
-    String baseDir();
+    String baseDir() default CertificatesUtil.DEFAULT_CERTS_BASEDIR;
 
     /**
      * The certificates to generate.
@@ -52,4 +53,10 @@
      * Whether to replace the certificates if they already exist.
      */
     boolean replaceIfExists() default false;
+
+    /**
+     * Whether certificate is used in docker container. If so, the cn and subject alt name has to equal docker host
+     * (which might differ in case of external docker host)
+     */
+    boolean docker() default false;
 }

integration-tests/ftp/pom.xml

@@ -85,6 +85,11 @@
             <artifactId>sshd-scp</artifactId>
             <scope>test</scope>
         </dependency>
+        <dependency>
+            <groupId>org.apache.camel.quarkus</groupId>
+            <artifactId>camel-quarkus-integration-tests-support-certificate-generator</artifactId>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
 
 

integration-tests/ftp/src/test/java/org/apache/camel/quarkus/component/ftp/it/FtpTestResource.java

@@ -90,15 +90,18 @@ public Map<String, String> start() {
 
             ListenerFactory factory = createListenerFactory(port);
 
-            FtpServerFactory serverFactory = new FtpServerFactory();
-            serverFactory.setUserManager(userMgr);
-            serverFactory.setFileSystem(fsf);
-            serverFactory.setConnectionConfig(new ConnectionConfigFactory().createConnectionConfig());
-            serverFactory.addListener("default", factory.createListener());
-
-            FtpServerFactory ftpServerFactory = serverFactory;
-            ftpServer = ftpServerFactory.createServer();
-            ftpServer.start();
+            if (factory != null) {
+                FtpServerFactory serverFactory = new FtpServerFactory();
+                serverFactory.setUserManager(userMgr);
+                serverFactory.setFileSystem(fsf);
+                serverFactory.setConnectionConfig(new ConnectionConfigFactory().createConnectionConfig());
+
+                serverFactory.addListener("default", factory.createListener());
+
+                FtpServerFactory ftpServerFactory = serverFactory;
+                ftpServer = ftpServerFactory.createServer();
+                ftpServer.start();
+            }
 
             return CollectionHelper.mapOf(
                     "camel." + componentName + ".test-port", Integer.toString(port),

integration-tests/ftp/src/test/java/org/apache/camel/quarkus/component/ftps/it/FtpsTest.java

@@ -20,15 +20,24 @@
 import io.quarkus.test.junit.QuarkusTest;
 import io.restassured.RestAssured;
 import io.restassured.http.ContentType;
+import me.escoffier.certs.Format;
+import me.escoffier.certs.junit5.Certificate;
+import org.apache.camel.quarkus.test.support.certificate.CertificatesUtil;
+import org.apache.camel.quarkus.test.support.certificate.TestCertificates;
 import org.junit.jupiter.api.Disabled;
 import org.junit.jupiter.api.Test;
 
 import static org.hamcrest.CoreMatchers.is;
 
+@TestCertificates(certificates = {
+        @Certificate(name = "ftp", formats = {
+                Format.PKCS12 }, password = "password") })
 @Disabled //https://github.com/apache/camel-quarkus/issues/4089
 @QuarkusTest
 @QuarkusTestResource(FtpsTestResource.class)
 class FtpsTest {
+    static final String CERTIFICATE_KEYSTORE_FILE = CertificatesUtil.keystoreFile("ftp", "p12");
+
     @Test
     public void testFtpsComponent() {
         // Create a new file on the FTPS server