TestJWSUtils done.
William Kim
parent
2ba8ad71f1
commit
0f16bacc63
|
|
@ -1,8 +1,23 @@
|
|||
/*******************************************************************************
|
||||
* Copyright 2013 The MITRE Corporation
|
||||
* and the MIT Kerberos and Internet Trust Consortium
|
||||
*
|
||||
* Licensed under the Apache License, Version 2.0 (the "License");
|
||||
* you may not use this file except in compliance with the License.
|
||||
* You may obtain a copy of the License at
|
||||
*
|
||||
* http://www.apache.org/licenses/LICENSE-2.0
|
||||
*
|
||||
* Unless required by applicable law or agreed to in writing, software
|
||||
* distributed under the License is distributed on an "AS IS" BASIS,
|
||||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
* See the License for the specific language governing permissions and
|
||||
* limitations under the License.
|
||||
******************************************************************************/
|
||||
package org.mitre.openid.connect.util;
|
||||
|
||||
|
||||
import static org.junit.Assert.assertEquals;
|
||||
import net.minidev.json.JSONObject;
|
||||
|
||||
import org.junit.Before;
|
||||
import org.junit.Test;
|
||||
|
|
@ -13,39 +28,59 @@ import org.mockito.Mockito;
|
|||
import org.mockito.runners.MockitoJUnitRunner;
|
||||
|
||||
import com.nimbusds.jose.JWSAlgorithm;
|
||||
import com.nimbusds.jose.util.Base64;
|
||||
import com.nimbusds.jose.util.Base64URL;
|
||||
import com.nimbusds.jwt.JWTClaimsSet;
|
||||
import com.nimbusds.jwt.PlainJWT;
|
||||
|
||||
/**
|
||||
*
|
||||
* @author wkim
|
||||
*
|
||||
*/
|
||||
@RunWith(MockitoJUnitRunner.class)
|
||||
public class TestJWSUtils {
|
||||
|
||||
@Mock
|
||||
OAuth2AccessTokenEntity mockToken256;
|
||||
@Mock
|
||||
OAuth2AccessTokenEntity mockToken384;
|
||||
@Mock
|
||||
OAuth2AccessTokenEntity mockToken512;
|
||||
|
||||
@Before
|
||||
public void prepare() {
|
||||
|
||||
JWTClaimsSet claims = new JWTClaimsSet();
|
||||
claims.setType("JWT");
|
||||
claims.setClaim("alg", "HS256");
|
||||
|
||||
claims.setIssuer("www.example.com");
|
||||
claims.setSubject("example_user");
|
||||
|
||||
|
||||
claims.setClaim("alg", "HS256");
|
||||
Mockito.when(mockToken256.getJwt()).thenReturn(new PlainJWT(claims));
|
||||
|
||||
claims = new JWTClaimsSet();
|
||||
claims.setType("JWT");
|
||||
claims.setIssuer("www.another-example.net");
|
||||
claims.setSubject("another_user");
|
||||
claims.setClaim("alg", "ES384");
|
||||
Mockito.when(mockToken384.getJwt()).thenReturn(new PlainJWT(claims));
|
||||
|
||||
claims = new JWTClaimsSet();
|
||||
claims.setType("JWT");
|
||||
claims.setIssuer("www.different.com");
|
||||
claims.setSubject("different_user");
|
||||
claims.setClaim("alg", "RS512");
|
||||
Mockito.when(mockToken512.getJwt()).thenReturn(new PlainJWT(claims));
|
||||
}
|
||||
|
||||
@Test
|
||||
public void getAccessTokenHash256() {
|
||||
|
||||
/*
|
||||
* independently generate hash
|
||||
ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJIUzI1NiIsInN1YiI6ImV4YW1wbGVfdXNlciIsImlzcyI6Ind3dy5leGFtcGxlLmNvbSIsInR5cCI6IkpXVCJ9.
|
||||
base64url of hash = EP1gXNeESRH-n57baopfTQ
|
||||
*/
|
||||
String token = mockToken256.getJwt().serialize(); // this line is here for debugging purposes
|
||||
String token = mockToken256.getJwt().serialize();
|
||||
Base64URL expectedHash = new Base64URL("EP1gXNeESRH-n57baopfTQ");
|
||||
|
||||
Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.HS256, mockToken256);
|
||||
|
|
@ -53,4 +88,49 @@ public class TestJWSUtils {
|
|||
assertEquals(expectedHash, resultHash);
|
||||
}
|
||||
|
||||
@Test
|
||||
public void getAccessTokenHash384() {
|
||||
|
||||
/*
|
||||
* independently generate hash
|
||||
ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJFUzM4NCIsInN1YiI6ImFub3RoZXJfdXNlciIsImlzcyI6Ind3dy5hbm90aGVyLWV4YW1wbGUubmV0IiwidHlwIjoiSldUIn0.
|
||||
base64url of hash = BWfFK73PQI36M1rg9R6VjMyWOE0-XvBK
|
||||
*/
|
||||
|
||||
String token = mockToken384.getJwt().serialize();
|
||||
Base64URL expectedHash = new Base64URL("BWfFK73PQI36M1rg9R6VjMyWOE0-XvBK");
|
||||
|
||||
Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.ES384, mockToken384);
|
||||
|
||||
assertEquals(expectedHash, resultHash);
|
||||
}
|
||||
|
||||
@Test
|
||||
public void getAccessTokenHash512() {
|
||||
|
||||
/*
|
||||
* independently generate hash
|
||||
ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJSUzUxMiIsInN1YiI6ImRpZmZlcmVudF91c2VyIiwiaXNzIjoid3d3LmRpZmZlcmVudC5jb20iLCJ0eXAiOiJKV1QifQ.
|
||||
base64url of hash = vGH3QMY-knpACkLgzdkTqu3C9jtvbf2Wk_RSu2vAx8k
|
||||
*/
|
||||
|
||||
String token = mockToken512.getJwt().serialize();
|
||||
Base64URL expectedHash = new Base64URL("vGH3QMY-knpACkLgzdkTqu3C9jtvbf2Wk_RSu2vAx8k");
|
||||
|
||||
Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.RS512, mockToken512);
|
||||
|
||||
assertEquals(expectedHash, resultHash);
|
||||
}
|
||||
|
||||
@Test
|
||||
public void getCodeHash512() {
|
||||
|
||||
String testCode = "b0x0rZ";
|
||||
|
||||
Base64URL expectedHash = new Base64URL("R5DCRi5eOjlvyTAJfry2dNM9adJ2ElpDEKYYByYU920"); // independently generated
|
||||
|
||||
Base64URL resultHash = JWSUtils.getCodeHash(JWSAlgorithm.ES512, testCode);
|
||||
|
||||
assertEquals(expectedHash, resultHash);
|
||||
}
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in New Issue