public void DuplicateClaims()
{
Console.WriteLine("Entering: " + MethodBase.GetCurrentMethod());
string issuer = "http://www.dupsRus.com";
string audience = "http://www.contoso.com";
JwtSecurityToken jwt = new JwtSecurityToken(issuer: issuer, audience: audience, claims: ClaimSets.DuplicateTypes(issuer, issuer), signingCredentials: KeyingMaterial.SymmetricSigningCreds_256_Sha2, lifetime: new Lifetime(DateTime.UtcNow, DateTime.UtcNow + TimeSpan.FromHours(10)));
JwtSecurityTokenHandler jwtHandler = new JwtSecurityTokenHandler();
string encodedJwt = jwtHandler.WriteToken(jwt);
JwtSecurityToken jwtRead = jwtHandler.ReadToken(encodedJwt) as JwtSecurityToken;
TokenValidationParameters validationParameters = new TokenValidationParameters()
{
SigningToken = KeyingMaterial.BinarySecretToken_256,
AudienceUriMode = Selectors.AudienceUriMode.Never,
ValidIssuer = issuer,
};
Console.WriteLine("Comparing jwt.Claims");
IEnumerable <Claim> claims = ClaimSets.ClaimsPlus(claims: ClaimSets.DuplicateTypes(issuer, issuer), lifetime: new Lifetime(jwt.ValidFrom, jwt.ValidTo), issuer: issuer, audience: audience);
// ClaimTypes would have been translated outbound, when the jwt was created.
// Comparision should take that into account.
List <Claim> translatedClaims = new List <Claim>();
foreach (Claim c in claims)
{
translatedClaims.Add(ClaimSets.OutboundClaim(c));
}
if (!IdentityComparer.AreEqual(jwt.Claims, translatedClaims))
{
Assert.Fail("Claims are different");
}
// ClaimTypes would have been translated inbound, when the identity was created.
// Comparision should take that into account.
Console.WriteLine("Comparing Claimsprincipal Claims");
var cp = jwtHandler.ValidateToken(jwtRead, validationParameters);
translatedClaims.Clear();
foreach (Claim c in claims)
{
translatedClaims.Add(ClaimSets.InboundClaim(c));
}
Assert.IsTrue(IdentityComparer.AreEqual(translatedClaims, cp.Claims), "Claims are different");
}
