QA:Testcase Certificate Trust:Edit Trust In Firefox

From FedoraProject

(Difference between revisions)
Jump to: navigation, search
(Created page with "{{QA/Test_Case |description=Firefox allows to edit and override the default trust of the CAs included with Firefox. A new Fedora feature replaces the component that contains t...")
 
 
(2 intermediate revisions by one user not shown)
Line 4: Line 4:
 
Because our test will modify Firefox settings, as part of the setup we'll clear the relevant parts of the Firefox settings. (Alternatively, if know how to do so, you could create a fresh profile (firefox -P) prior to a each new test cycle, instead of the removal "rm" step.)
 
Because our test will modify Firefox settings, as part of the setup we'll clear the relevant parts of the Firefox settings. (Alternatively, if know how to do so, you could create a fresh profile (firefox -P) prior to a each new test cycle, instead of the removal "rm" step.)
  
{{admon/warning | Dangerous. Not possible to undo! | The setup instructions will delete all personal keys and passwords that are stored in Firefox. Only use this command on a test user account! }}
+
{{admon/warning | Dangerous. Not possible to undo! | The setup instructions will delete all personal keys and passwords that are stored in Firefox. Only use them on a test user account! }}
  
 
|setup=
 
|setup=
# Make sure to complete the [[QA:Testcase_Certificate_Trust:Prerequisites|prerequisites before starting this test]].
+
# Make sure to complete the [[QA:Testcase_Certificate_Trust:Prerequisites|prerequisites before starting this test]], in particular you should know [[QA:Testcase_Certificate_Trust:Prerequisites#Learn_how_to_clear_the_Firefox_cache|how to clear the Firefox cache]]
 
# Open a terminal and run these commands:
 
# Open a terminal and run these commands:
 
  $ rm -f ~/.mozilla/firefox/*/*.db
 
  $ rm -f ~/.mozilla/firefox/*/*.db
Line 17: Line 17:
 
* open firefox
 
* open firefox
 
* erase firefox location bar, copy and paste this address and and hit enter
 
* erase firefox location bar, copy and paste this address and and hit enter
   https://mein.t-mobile.de
+
   https://mobile2025.cybertrust.ne.jp/
 
* expected: page loads, padlock
 
* expected: page loads, padlock
 
* use the firefox menu: edit/preferences, advanced/encryption/view certificates
 
* use the firefox menu: edit/preferences, advanced/encryption/view certificates
Line 35: Line 35:
 
* quit firefox
 
* quit firefox
 
* start firefox
 
* start firefox
* go to https://mein.t-mobile.de
+
* go to https://mobile2025.cybertrust.ne.jp/
 
* expected: still error page
 
* expected: still error page
 
* shift reload
 
* shift reload

Latest revision as of 00:12, 28 March 2013

Contents

Description

Firefox allows to edit and override the default trust of the CAs included with Firefox. A new Fedora feature replaces the component that contains the Firefox default trust (same default contents, different technology). We must ensure that the old functionality still works.

Because our test will modify Firefox settings, as part of the setup we'll clear the relevant parts of the Firefox settings. (Alternatively, if know how to do so, you could create a fresh profile (firefox -P) prior to a each new test cycle, instead of the removal "rm" step.)

Warning (medium size).png
Dangerous. Not possible to undo!
The setup instructions will delete all personal keys and passwords that are stored in Firefox. Only use them on a test user account!

Setup

  1. Make sure to complete the prerequisites before starting this test, in particular you should know how to clear the Firefox cache
  2. Open a terminal and run these commands:
$ rm -f ~/.mozilla/firefox/*/*.db
$ ls ~/.mozilla/firefox/*/*.db
ls: cannot access ~/.mozilla/firefox/*/*.db: No such file or directory 

How to test

Part 1

  • open firefox
  • erase firefox location bar, copy and paste this address and and hit enter
 https://mobile2025.cybertrust.ne.jp/
  • expected: page loads, padlock
  • use the firefox menu: edit/preferences, advanced/encryption/view certificates
  • click the authorities tab
  • scroll down to the "Baltimore" heading
  • click the "Baltimore CyberTrust Root" line
  • click the "edit trust" button
  • uncheck (deactivate) the checkbox in front of "this certificate can identify websites"
  • OK
  • close certificate manager window (you may keep the preferences window open)
  • switch to the firefox window, which still shows the web page
  • clear the firefox cache (see instructions, in short: tools/clear recent history/everything, ok)
  • use a forced reload: hold the shift key on your keyboard and click the round arrow in the firefox url bar
  • expected: error page, technical details: sec_error_untrusted_issuer

Part 2:

Part 3

  • go to preferences, open certificate manager
  • scroll to baltimore, click the "Baltimore CyberTrust Root" line
  • click the "edit trust" button, check (activate) "can identify websites"
  • OK, close cert manager
  • back to firefox browser windows, reload
  • exected: page loads again

Expected Results

  1. Ensure you get the results that are expected.



Troubleshooting

Notes