From 95f40458a9dd927fba35624564b64b5f973dd9fe Mon Sep 17 00:00:00 2001 From: Thomas Vanbesien Date: Wed, 18 Feb 2026 22:07:07 +0100 Subject: Remove redundant config/ dir, use Aes256_Sha256_RsaPss everywhere The config/ example files duplicated the test configs. Remove them and point the Running docs at tests/secure_user/ instead. Switch the security policy from Basic256Sha256 to Aes256_Sha256_RsaPss in all test configs, CMakeLists.txt, and readme.md. --- readme.md | 26 ++++++++++++++------------ 1 file changed, 14 insertions(+), 12 deletions(-) (limited to 'readme.md') diff --git a/readme.md b/readme.md index dcdf8a1..f6a7916 100644 --- a/readme.md +++ b/readme.md @@ -82,24 +82,26 @@ build takes a bit longer. ## Running -Start the programs in order, each in its own terminal, from the project root: +Start the programs in order, each in its own terminal, from the project root. +Configuration files live in `tests/` (one directory per test scenario — see +[Tests](#tests) below). The examples below use `tests/secure_user/`: ```sh # 1. Local Discovery Server -build/ServerLDS config/server_lds.conf +build/ServerLDS tests/secure_user/server_lds.conf -# 2. Register Server (connects to the LDS on port 4840) -build/ServerRegister config/server_register.conf \ - config/server_register_client.conf opc.tcp://localhost:4840 +# 2. Register Server (connects to the LDS on port 14840) +build/ServerRegister tests/secure_user/server_register.conf \ + tests/secure_user/server_register_client.conf opc.tcp://localhost:14840 # 3. Find registered servers via the LDS -build/Client config/client.conf find-servers opc.tcp://localhost:4840 +build/Client tests/secure_user/client.conf find-servers opc.tcp://localhost:14840 # 4. List endpoints on the registered server -build/Client config/client.conf get-endpoints opc.tcp://localhost:4841 +build/Client tests/secure_user/client.conf get-endpoints opc.tcp://localhost:14841 # 5. Read the current time from the registered server -build/Client config/client.conf read-time opc.tcp://localhost:4841 +build/Client tests/secure_user/client.conf read-time opc.tcp://localhost:14841 ``` All three programs accept an optional log level as the last argument @@ -112,9 +114,9 @@ Integration tests exercise four combinations of security and authentication: | Test | Security | Auth | |------|----------|------| | `unsecure_anonymous` | None / None | anonymous | -| `secure_anonymous` | SignAndEncrypt / Basic256Sha256 | anonymous | -| `secure_user` | SignAndEncrypt / Basic256Sha256 | user/password | -| `secure_cert` | SignAndEncrypt / Basic256Sha256 | X509 certificate | +| `secure_anonymous` | SignAndEncrypt / Aes256_Sha256_RsaPss | anonymous | +| `secure_user` | SignAndEncrypt / Aes256_Sha256_RsaPss | user/password | +| `secure_cert` | SignAndEncrypt / Aes256_Sha256_RsaPss | X509 certificate | Run all tests: @@ -143,7 +145,7 @@ cmake --build build --parallel ## Configuration Programs are configured through plain text files (`key = value`, one per line). -Example configs are in `config/`. +See the `tests/` directories for working examples. Three authentication modes are supported via the `authMode` key: -- cgit v1.2.3