public void TokenInvalid_TokenEmpty()
{
var securityStamp = SecurityStampGenerator.NewSecurityStamp();
var result = _dataProtectorTokenProvider.Validate(string.Empty, _testPurpose, _resourceId, securityStamp);
Assert.False(result);
}
public void TokenInvalid_PurposeMismatch()
{
var securityStamp = SecurityStampGenerator.NewSecurityStamp();
var token = _dataProtectorTokenProvider.Generate(_testPurpose, _resourceId, securityStamp);
var result = _dataProtectorTokenProvider.Validate(token, "invalidPurpose", _resourceId, securityStamp);
Assert.False(result);
}
public void TokenValid()
{
var securityStamp = SecurityStampGenerator.NewSecurityStamp();
var token = _dataProtectorTokenProvider.Generate(_testPurpose, _resourceId, securityStamp);
var result = _dataProtectorTokenProvider.Validate(token, _testPurpose, _resourceId, securityStamp);
Assert.True(result);
}
public void TokenInvalid_ResourceIdMismatch()
{
// note: this case isn't likely to happen, because with an invalid resource id, you'd look up the wrong
// stamp to validate with anyway.
var securityStamp = SecurityStampGenerator.NewSecurityStamp();
var token = _dataProtectorTokenProvider.Generate(_testPurpose, _resourceId, securityStamp);
var result = _dataProtectorTokenProvider.Validate(token, _testPurpose, "invalidResource", securityStamp);
Assert.False(result);
}
