From 99b5b4416193fafaa815746ea756900d2ab26917 Mon Sep 17 00:00:00 2001 From: Thomas Vanbesien Date: Wed, 18 Feb 2026 15:39:29 +0100 Subject: Make client/server encryption optional, rename tests to full names Make encryption optional for both ServerRegister's LDS client connection and the server side of ServerLDS/ServerRegister: when certificate, privateKey, and trustStore are omitted the programs run with SecurityPolicy#None only. Secure servers also add a discovery-only None endpoint so unencrypted clients can still call FindServers and GetEndpoints. Consolidate tests from 5 policy-specific cases (nosec_anon, none_user, basic256sha256_anon, aes256_anon, aes128_user) down to 3 that cover the important axes: unsecure_anonymous, secure_anonymous, secure_user. Rename directories to use full names. Auto-generate certificates and trust stores in run_test.sh. Update readme and CLAUDE.md to reflect the current program interface (unified Client binary, split ServerRegister configs) and the new test names. --- tests/aes128_user/server_register_client.conf | 14 -------------- 1 file changed, 14 deletions(-) delete mode 100644 tests/aes128_user/server_register_client.conf (limited to 'tests/aes128_user/server_register_client.conf') diff --git a/tests/aes128_user/server_register_client.conf b/tests/aes128_user/server_register_client.conf deleted file mode 100644 index 3e976be..0000000 --- a/tests/aes128_user/server_register_client.conf +++ /dev/null @@ -1,14 +0,0 @@ -# ServerRegister client config — test: aes128_user - -applicationUri = urn:localhost:bobink:ServerRegister - -certificate = certs/ServerRegisterClient_cert.der -privateKey = certs/ServerRegisterClient_key.der -trustStore = certs/trust/server_register_client - -securityMode = SignAndEncrypt -securityPolicy = Aes128_Sha256_RsaOaep - -authMode = user -username = user -password = password -- cgit v1.2.3