From 0f16bacc63e8dedc480940775958c0ac4463f857 Mon Sep 17 00:00:00 2001
From: William Kim <wkim@mitre.org>
Date: Thu, 8 Aug 2013 14:07:37 -0400
Subject: [PATCH] TestJWSUtils done.

---
 .../openid/connect/util/TestJWSUtils.java     | 92 +++++++++++++++++--
 1 file changed, 86 insertions(+), 6 deletions(-)

diff --git a/openid-connect-server/src/test/java/org/mitre/openid/connect/util/TestJWSUtils.java b/openid-connect-server/src/test/java/org/mitre/openid/connect/util/TestJWSUtils.java
index 521ed4a9b..61899aea9 100644
--- a/openid-connect-server/src/test/java/org/mitre/openid/connect/util/TestJWSUtils.java
+++ b/openid-connect-server/src/test/java/org/mitre/openid/connect/util/TestJWSUtils.java
@@ -1,8 +1,23 @@
+/*******************************************************************************
+ * Copyright 2013 The MITRE Corporation 
+ *   and the MIT Kerberos and Internet Trust Consortium
+ * 
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ ******************************************************************************/
 package org.mitre.openid.connect.util;
 
 
 import static org.junit.Assert.assertEquals;
-import net.minidev.json.JSONObject;
 
 import org.junit.Before;
 import org.junit.Test;
@@ -13,39 +28,59 @@ import org.mockito.Mockito;
 import org.mockito.runners.MockitoJUnitRunner;
 
 import com.nimbusds.jose.JWSAlgorithm;
-import com.nimbusds.jose.util.Base64;
 import com.nimbusds.jose.util.Base64URL;
 import com.nimbusds.jwt.JWTClaimsSet;
 import com.nimbusds.jwt.PlainJWT;
 
+/**
+ * 
+ * @author wkim
+ *
+ */
 @RunWith(MockitoJUnitRunner.class)
 public class TestJWSUtils {
 	
 	@Mock
 	OAuth2AccessTokenEntity mockToken256;
+	@Mock
+	OAuth2AccessTokenEntity mockToken384;
+	@Mock
+	OAuth2AccessTokenEntity mockToken512;
 	
 	@Before
 	public void prepare() {
 		
 		JWTClaimsSet claims = new JWTClaimsSet();
 		claims.setType("JWT");
-		claims.setClaim("alg", "HS256");
-		
 		claims.setIssuer("www.example.com");
 		claims.setSubject("example_user");
+		claims.setClaim("alg", "HS256");
+		Mockito.when(mockToken256.getJwt()).thenReturn(new PlainJWT(claims));
 		
+		claims = new JWTClaimsSet();
+		claims.setType("JWT");
+		claims.setIssuer("www.another-example.net");
+		claims.setSubject("another_user");
+		claims.setClaim("alg", "ES384");
+		Mockito.when(mockToken384.getJwt()).thenReturn(new PlainJWT(claims));
 		
-		Mockito.when(mockToken256.getJwt()).thenReturn(new PlainJWT(claims));
+		claims = new JWTClaimsSet();
+		claims.setType("JWT");
+		claims.setIssuer("www.different.com");
+		claims.setSubject("different_user");
+		claims.setClaim("alg", "RS512");
+		Mockito.when(mockToken512.getJwt()).thenReturn(new PlainJWT(claims));
 	}
 	
 	@Test
 	public void getAccessTokenHash256() {
 		
 		/*
+		 * independently generate hash
 		 ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJIUzI1NiIsInN1YiI6ImV4YW1wbGVfdXNlciIsImlzcyI6Ind3dy5leGFtcGxlLmNvbSIsInR5cCI6IkpXVCJ9.
 		 base64url of hash = EP1gXNeESRH-n57baopfTQ
 		 */
-		String token = mockToken256.getJwt().serialize(); // this line is here for debugging purposes
+		String token = mockToken256.getJwt().serialize();
 		Base64URL expectedHash = new Base64URL("EP1gXNeESRH-n57baopfTQ");
 		
 		Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.HS256, mockToken256);
@@ -53,4 +88,49 @@ public class TestJWSUtils {
 		assertEquals(expectedHash, resultHash);
 	}
 	
+	@Test
+	public void getAccessTokenHash384() {
+		
+		/*
+		 * independently generate hash
+		 ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJFUzM4NCIsInN1YiI6ImFub3RoZXJfdXNlciIsImlzcyI6Ind3dy5hbm90aGVyLWV4YW1wbGUubmV0IiwidHlwIjoiSldUIn0.
+		 base64url of hash = BWfFK73PQI36M1rg9R6VjMyWOE0-XvBK
+		 */
+		
+		String token = mockToken384.getJwt().serialize(); 
+		Base64URL expectedHash = new Base64URL("BWfFK73PQI36M1rg9R6VjMyWOE0-XvBK");
+		
+		Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.ES384, mockToken384);
+		
+		assertEquals(expectedHash, resultHash);
+	}
+	
+	@Test
+	public void getAccessTokenHash512() {
+		
+		/*
+		 * independently generate hash
+		 ascii of token = eyJhbGciOiJub25lIn0.eyJhbGciOiJSUzUxMiIsInN1YiI6ImRpZmZlcmVudF91c2VyIiwiaXNzIjoid3d3LmRpZmZlcmVudC5jb20iLCJ0eXAiOiJKV1QifQ.
+		 base64url of hash = vGH3QMY-knpACkLgzdkTqu3C9jtvbf2Wk_RSu2vAx8k
+		 */
+		
+		String token = mockToken512.getJwt().serialize(); 
+		Base64URL expectedHash = new Base64URL("vGH3QMY-knpACkLgzdkTqu3C9jtvbf2Wk_RSu2vAx8k");
+		
+		Base64URL resultHash = JWSUtils.getAccessTokenHash(JWSAlgorithm.RS512, mockToken512);
+		
+		assertEquals(expectedHash, resultHash);
+	}
+	
+	@Test
+	public void getCodeHash512() {
+		
+		String testCode = "b0x0rZ";
+		
+		Base64URL expectedHash = new Base64URL("R5DCRi5eOjlvyTAJfry2dNM9adJ2ElpDEKYYByYU920"); // independently generated
+		
+		Base64URL resultHash = JWSUtils.getCodeHash(JWSAlgorithm.ES512, testCode);
+		
+		assertEquals(expectedHash, resultHash);
+	}
 }