public async Task Valid_IdentityToken_no_ClientId_supplied()
{
var signer = new DefaultTokenSigningService(TestIdentityServerOptions.Create());
var jwt = await signer.SignTokenAsync(TokenFactory.CreateIdentityToken("roclient", "valid"));
var validator = Factory.CreateTokenValidator();
var result = await validator.ValidateIdentityTokenAsync(jwt);
result.IsError.Should().BeFalse();
}
public async Task IdentityToken_InvalidClientId()
{
var signer = new DefaultTokenSigningService(TestIdentityServerOptions.Create());
var jwt = await signer.SignTokenAsync(TokenFactory.CreateIdentityToken("roclient", "valid"));
var validator = Factory.CreateTokenValidator();
var result = await validator.ValidateIdentityTokenAsync(jwt, "invalid");
result.IsError.Should().BeTrue();
result.Error.Should().Be(Constants.ProtectedResourceErrors.InvalidToken);
}
public async Task JWT_Token_invalid_Audience()
{
var signer = new DefaultTokenSigningService(TestIdentityServerOptions.Create());
var token = TokenFactory.CreateAccessToken(new Client { ClientId = "roclient" }, "valid", 600, "read", "write");
token.Audience = "invalid";
var jwt = await signer.SignTokenAsync(token);
var validator = Factory.CreateTokenValidator(null);
var result = await validator.ValidateAccessTokenAsync(jwt);
result.IsError.Should().BeTrue();
result.Error.Should().Be(Constants.ProtectedResourceErrors.InvalidToken);
}
public async Task Valid_JWT_Token()
{
var signer = new DefaultTokenSigningService(TestIdentityServerOptions.Create());
var jwt = await signer.SignTokenAsync(TokenFactory.CreateAccessToken(new Client { ClientId = "roclient" }, "valid", 600, "read", "write"));
var validator = Factory.CreateTokenValidator(null);
var result = await validator.ValidateAccessTokenAsync(jwt);
result.IsError.Should().BeFalse();
}
