C# (CSharp) AuthRequest.SetLoginSessionの例

コード例 #1

        public void UnknownUserDoesntFailTheFirstAuthStep()
        {
            var authRequest = new AuthRequest();

            authRequest.SetLoginSession("123");
            authRequest.Parameters[SrpProtocolConstants.UserNameKey] = "root";
            authRequest.Parameters[SrpProtocolConstants.ClientPublicEphemeralKey] = "123";

            // server generates fake salt and ephemeral values
            var authResponse = AuthProvider.Authenticate(authRequest);

            Assert.IsTrue(AuthProvider.PendingAuthentications.IsEmpty);
            Assert.IsNotNull(authResponse);
            Assert.IsNotNull(authResponse.GetSalt());
            Assert.IsNotNull(authResponse.GetServerPublicEphemeral());

            var firstSalt      = authResponse.GetSalt();
            var firstEphemeral = authResponse.GetServerPublicEphemeral();

            // retry the first step for the same user
            authRequest.SetLoginSession("321");
            authResponse = AuthProvider.Authenticate(authRequest);
            Assert.IsTrue(AuthProvider.PendingAuthentications.IsEmpty);
            Assert.IsNotNull(authResponse);
            Assert.IsNotNull(authResponse.GetSalt());
            Assert.IsNotNull(authResponse.GetServerPublicEphemeral());

            // same fake salt, but another fake ephemeral is expected
            Assert.AreEqual(firstSalt, authResponse.GetSalt());
            Assert.AreNotEqual(firstEphemeral, authResponse.GetServerPublicEphemeral());
        }

コード例 #2

ファイル: SrpProtocolConstantsTests.cs プロジェクト: attackgithub/JsonServices

        public void GetParameterDoesntThrowWhenParameterIsUnknown()
        {
            var authRequest = new AuthRequest();

            Assert.IsNull(authRequest.GetParameter("viscosity"));

            // login session is now current client's ConnectionId
            RequestContext.CurrentContextHolder.Value = null;
            Assert.IsNull(authRequest.GetLoginSession());

            // make sure it can be set
            authRequest.SetLoginSession("SampleSessionId");
            Assert.AreEqual("SampleSessionId", authRequest.GetLoginSession());
        }

コード例 #3

        public void SrpAuthProviderThrowsOnInvalidRequestMessages()
        {
            // reset RequestContext to make sure the current ConnectionId is not set
            RequestContext.CurrentContextHolder.Value = null;

            // null is not allowed
            Assert.Throws <AuthFailedException>(() => AuthProvider.Authenticate(null));

            // empty parameters
            var authRequest = new AuthRequest();

            Assert.Throws <AuthFailedException>(() => AuthProvider.Authenticate(authRequest));

            // login session not specified
            authRequest.Parameters[SrpProtocolConstants.UserNameKey] = "Bozo";
            Assert.Throws <AuthFailedException>(() => AuthProvider.Authenticate(authRequest));

            // protocol error: client public ephemeral or client session proof is expected
            authRequest.SetLoginSession("321");
            Assert.Throws <AuthFailedException>(() => AuthProvider.Authenticate(authRequest));
        }