public async Task When_Empty_Json_Request_Is_Passed_To_Registration_Api_Then_Error_Is_Returned()
{
var tokenClient = new TokenClient(
TokenCredentials.FromClientCredentials("stateless_client", "stateless_client"),
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"));
var grantedToken = await tokenClient.GetToken(TokenRequest.FromScopes("register_client"))
.ConfigureAwait(false) as Option <GrantedTokenResponse> .Result;
var obj = new { fake = "fake" };
var fakeJson = JsonConvert.SerializeObject(
obj,
new JsonSerializerSettings {
NullValueHandling = NullValueHandling.Ignore
});
var httpRequest = new HttpRequestMessage
{
Method = HttpMethod.Post,
RequestUri = new Uri($"{BaseUrl}/clients"),
Content = new StringContent(fakeJson)
};
httpRequest.Content.Headers.ContentType = new MediaTypeHeaderValue("application/json");
httpRequest.Headers.Authorization = new AuthenticationHeaderValue("Bearer", grantedToken.Item.AccessToken);
var httpResult = await _server.Client().SendAsync(httpRequest).ConfigureAwait(false);
Assert.Equal(HttpStatusCode.BadRequest, httpResult.StatusCode);
}
public async Task When_Registering_A_Client_Then_No_Exception_Is_Thrown()
{
var tokenClient = new TokenClient(
TokenCredentials.FromClientCredentials("stateless_client", "stateless_client"),
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"));
var grantedToken =
await tokenClient.GetToken(TokenRequest.FromScopes("manager")).ConfigureAwait(false) as
Option <GrantedTokenResponse> .Result;
var registrationClient = await ManagementClient.Create(
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"))
.ConfigureAwait(false);
var client = await registrationClient.Register(
new Client
{
JsonWebKeys = TestKeys.SecretKey.CreateSignatureJwk().ToSet(),
AllowedScopes = new[] { "openid" },
ClientName = "Test",
ClientId = "id",
RedirectionUrls = new[] { new Uri("https://localhost"), },
RequestUris = new[] { new Uri("https://localhost") },
},
grantedToken.Item.AccessToken)
.ConfigureAwait(false) as Option <Client> .Result;
Assert.NotNull(client);
}
public async Task When_Pass_Redirect_Uri_With_Fragment_Then_Error_Is_Returned()
{
var tokenClient = new TokenClient(
TokenCredentials.FromClientCredentials("stateless_client", "stateless_client"),
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"));
var grantedToken = await tokenClient.GetToken(TokenRequest.FromScopes("register_client"))
.ConfigureAwait(false) as Option <GrantedTokenResponse> .Result;
var obj = new
{
JsonWebKeys = TestKeys.SecretKey.CreateSignatureJwk().ToSet(),
AllowedScopes = new[] { "openid" },
RequestUris = new[] { new Uri("https://localhost") },
RedirectionUrls = new[] { new Uri("http://localhost#fragment") },
//LogoUri = "http://google.com",
ClientUri = new Uri("https://valid")
};
var fakeJson = JsonConvert.SerializeObject(
obj,
new JsonSerializerSettings {
NullValueHandling = NullValueHandling.Ignore
});
var httpRequest = new HttpRequestMessage
{
Method = HttpMethod.Post,
RequestUri = new Uri($"{BaseUrl}/registration"),
Content = new StringContent(fakeJson)
};
httpRequest.Content.Headers.ContentType = new MediaTypeHeaderValue(ApplicationJson);
httpRequest.Headers.Authorization = new AuthenticationHeaderValue(
grantedToken.Item.TokenType,
grantedToken.Item.AccessToken);
var httpResult = await _server.SharedCtx.Client().SendAsync(httpRequest).ConfigureAwait(false);
//Assert.Equal(HttpStatusCode.OK, httpResult.StatusCode);
var json = await httpResult.Content.ReadAsStringAsync().ConfigureAwait(false);
var error = JsonConvert.DeserializeObject <ErrorDetails>(json);
Assert.Equal("invalid_redirect_uri", error !.Title);
Assert.Equal(
string.Format(Strings.TheRedirectUrlCannotContainsFragment, "http://localhost/#fragment"),
error.Detail);
}
public async Task WhenPassInvalidRedirectUrisThenErrorIsReturned()
{
var tokenClient = new TokenClient(
TokenCredentials.FromClientCredentials("stateless_client", "stateless_client"),
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"));
var grantedToken =
await tokenClient.GetToken(TokenRequest.FromScopes("manager")).ConfigureAwait(false) as
Option <GrantedTokenResponse> .Result;
var obj = new
{
allowed_scopes = new[] { "openid" },
request_uris = new[] { new Uri("https://localhost") },
redirect_uris = new[] { "localhost" },
client_uri = new Uri("http://google.com"),
tos_uri = new Uri("http://google.com"),
jwks = TestKeys.SecretKey.CreateSignatureJwk().ToSet()
};
var fakeJson = JsonConvert.SerializeObject(
obj,
new JsonSerializerSettings {
NullValueHandling = NullValueHandling.Ignore
});
var httpRequest = new HttpRequestMessage
{
Method = HttpMethod.Post,
RequestUri = new Uri($"{BaseUrl}/clients"),
Content = new StringContent(fakeJson)
};
httpRequest.Content.Headers.ContentType = new MediaTypeHeaderValue("application/json");
httpRequest.Headers.Authorization = new AuthenticationHeaderValue("Bearer", grantedToken.Item.AccessToken);
var httpResult = await _server.Client().SendAsync(httpRequest).ConfigureAwait(false);
Assert.Equal(HttpStatusCode.BadRequest, httpResult.StatusCode);
var json = await httpResult.Content.ReadAsStringAsync().ConfigureAwait(false);
var error = JsonConvert.DeserializeObject <ErrorDetails>(json);
Assert.Equal(ErrorCodes.InvalidRedirectUri, error !.Title);
}
public async Task When_Pass_Invalid_Tos_Uri_Then_Error_Is_Returned()
{
var tokenClient = new TokenClient(
TokenCredentials.FromClientCredentials("stateless_client", "stateless_client"),
_server.Client,
new Uri($"{BaseUrl}/.well-known/openid-configuration"));
var grantedToken = await tokenClient.GetToken(TokenRequest.FromScopes("register_client"))
.ConfigureAwait(false) as Option <GrantedTokenResponse> .Result;
var obj = new
{
AllowedScopes = new[] { "openid" },
RequestUris = new[] { new Uri("https://localhost") },
RedirectionUrls = new[] { new Uri("http://localhost") },
LogoUri = new Uri("http://google.com"),
ClientUri = new Uri("https://valid_client_uri"),
TosUri = "invalid"
};
var fakeJson = JsonConvert.SerializeObject(
obj,
new JsonSerializerSettings {
NullValueHandling = NullValueHandling.Ignore
});
var httpRequest = new HttpRequestMessage
{
Method = HttpMethod.Post,
RequestUri = new Uri($"{BaseUrl}/registration"),
Content = new StringContent(fakeJson)
};
httpRequest.Content.Headers.ContentType = new MediaTypeHeaderValue("application/json");
httpRequest.Headers.Authorization = new AuthenticationHeaderValue("Bearer", grantedToken.Item.AccessToken);
var httpResult = await _server.Client().SendAsync(httpRequest).ConfigureAwait(false);
var json = await httpResult.Content.ReadAsStringAsync().ConfigureAwait(false);
var error = JsonConvert.DeserializeObject <ErrorDetails>(json);
Assert.Equal("invalid_client_metadata", error !.Title);
Assert.Equal("the parameter tos_uri is not correct", error.Detail);
}