public void GetAuthorizationCodeViaUserAgentAndRequestProtectedResource() { //TODO: webrequest mocken // diesen dann mit "Pseudo"-Auth-Code ausstatten, die SetToken(server, incommingRequest) => resoruceOwner // und die WebRequest.Authorize(server, resourceOwner) anschubsen // dabei müssen die UserCredentials richtig gesetzt sein var resourceOwnertmp = ResourceOwners.GetResourceOwner(_resourceOwnerName); var servertmp = ServersWithAuthorizationCode.GetServerWithAuthorizationCode(_clientId, _authorizationRequestUri, _accessTokenRequestUri, _redirectionUri); var mockContext = new Mock <IWebOperationContext> { DefaultValue = DefaultValue.Mock }; mockContext.SetupAllProperties(); var context = mockContext.Object; context.IncomingRequest.UriTemplateMatch.RequestUri = _redirectionUri; context.IncomingRequest.UriTemplateMatch.QueryParameters.Add("code", "Splx10BeZQQYbYS6WxSbIA"); context.IncomingRequest.UriTemplateMatch.QueryParameters.Add("state", servertmp.Guid.ToString() + "_" + resourceOwnertmp.Guid.ToString()); var tuple = context.GetCredentialsFromAuthorizationRedirect(); var server = tuple.Item1; var resourceOwner = tuple.Item2; server.Should().Be(servertmp); resourceOwner.Should().Be(resourceOwner); var webRequest = resourceOwner.GetSignedRequestFor(server, "http://example.com/ProtectedResource");; //Test ob WebRequest richtig unterschrieben wurde Assert.Fail("Test is not completed yet"); }
public static Tuple <ServerWithAuthorizationCode, ResourceOwner> GetCredentialsFromAuthorizationRedirect(this IWebOperationContext context) { var code = context.IncomingRequest.UriTemplateMatch.QueryParameters.Get("code"); var state = context.IncomingRequest.UriTemplateMatch.QueryParameters.Get("state"); if (string.IsNullOrEmpty(code)) { throw new InvalidAuthorizationRequestException("the query parameters 'code' is not set."); } if (string.IsNullOrEmpty(state)) { throw new InvalidAuthorizationRequestException("the query parameters 'state' is not set."); } if (!state.Contains("_")) { throw new InvalidAuthorizationRequestException("the query parameters 'state' must be of type '<GUID of Server>_<GUID of ResourceOwner>'"); } var states = state.Split('_'); var server = ServersWithAuthorizationCode.GetServerWithAuthorizationCode(new Guid(states[0])); var resourceOwner = ResourceOwners.GetResourceOwner(new Guid(states[1])); var token = Tokens.GetToken(server, resourceOwner); token.AuthorizationCode = code; return(new Tuple <ServerWithAuthorizationCode, ResourceOwner>(server, resourceOwner)); }
public void GetResourceOwner() { ResourceOwners.CleanUpForTests(); ResourceOwners.Add("user1"); ResourceOwners.Add("user2"); var resourceOwner = ResourceOwners.GetResourceOwner("user1"); resourceOwner.Name.Should().Be("user1"); ResourceOwners.GetResourceOwner(resourceOwner.Guid).Should().NotBeNull(); var resourceOwnerNull = ResourceOwners.GetResourceOwner("foo"); resourceOwnerNull.Should().BeNull(); ResourceOwners.GetResourceOwner(Guid.NewGuid()).Should().BeNull(); }
public void DisposeAndLoad() { ResourceOwners.CleanUpForTests(); ResourceOwners.Add("user1"); ResourceOwners.Add("user2"); ResourceOwners.SaveToIsoStore(); ResourceOwners.LoadFromIsoStore(); var resourceOwner = ResourceOwners.GetResourceOwner("user1"); Assert.IsNotNull(resourceOwner); Assert.AreEqual("user1", resourceOwner.Name); var resourceOwnerNull = ResourceOwners.GetResourceOwner("foo"); Assert.IsNull(resourceOwnerNull); }
public void CreateServerAndUsersAndGetCorrectRedirectToAuthorizationRequest() { // Spec v2-22 4.1.1 var resourceOwner = ResourceOwners.GetResourceOwner(_resourceOwnerName); var server = ServersWithAuthorizationCode.GetServerWithAuthorizationCode(_clientId, _authorizationRequestUri, _accessTokenRequestUri, _redirectionUri); var mockContext = new Mock <IWebOperationContext> { DefaultValue = DefaultValue.Mock }; mockContext.SetupAllProperties(); resourceOwner.AuthorizesMeToAccessTo(server).Should().BeFalse(); var context = mockContext.Object; context.RedirectToAuthorization(server, resourceOwner); context.OutgoingResponse.StatusCode.Should().Be(HttpStatusCode.Redirect); context.OutgoingResponse.Location.Should().NotBeNullOrEmpty(); }