public async Task user_without_cnf_claim_should_fail_validation() { _stubAuthenticationManager.Identity = _cnfIdentity; var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, "token"); result.Should().BeFalse(); }
public async Task ValidateToken_should_throw_for_invalid_arguments() { var ctx = new OwinContext(); await Assert.ThrowsAsync <ArgumentNullException>(async() => await DefaultPopSignatureValidator.ValidateTokenAsync(null, new OwinRequestValidationOptions(), "token")); await Assert.ThrowsAsync <ArgumentNullException>(async() => await DefaultPopSignatureValidator.ValidateTokenAsync(ctx.Environment, null, "token")); await Assert.ThrowsAsync <ArgumentNullException>(async() => await DefaultPopSignatureValidator.ValidateTokenAsync(ctx.Environment, new OwinRequestValidationOptions(), "")); await Assert.ThrowsAsync <ArgumentNullException>(async() => await DefaultPopSignatureValidator.ValidateTokenAsync(ctx.Environment, new OwinRequestValidationOptions(), "")); }
public async Task valid_claim_should_succeed_validation() { _stubAuthenticationManager.Identity = _cnfIdentity; var token = new Dictionary <string, object> { { "at", "token" } }; var payload = new EncodingParameters("token"); var popToken = _signature.Sign(payload); var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, popToken); result.Should().BeTrue(); }
public async Task negative_timestamp_should_fail_validation() { _stubAuthenticationManager.Identity = _cnfIdentity; var token = new Dictionary <string, object> { { "at", "token" } }; var payload = new EncodingParameters("token"); payload.TimeStamp = DateTimeOffset.MinValue; var popToken = _signature.Sign(payload); var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, popToken); result.Should().BeFalse(); }
public async Task no_user_should_fail_validation() { { var result = await DefaultPopSignatureValidator.ValidateTokenAsync(new OwinContext().Environment, _stubOptions, "token"); result.Should().BeFalse(); } { var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, "token"); result.Should().BeFalse(); } { _stubAuthenticationManager.Identity = new ClaimsIdentity(); var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, "token"); result.Should().BeFalse(); } }
public async Task too_new_timestamp_should_fail_validation() { _stubOptions.TimespanValidityWindow = TimeSpan.FromSeconds(300); _stubAuthenticationManager.Identity = _cnfIdentity; var token = new Dictionary <string, object> { { "at", "token" } }; var payload = new EncodingParameters("token"); payload.TimeStamp = DateTimeOffset.UtcNow.AddSeconds(302); var popToken = _signature.Sign(payload); var result = await DefaultPopSignatureValidator.ValidateTokenAsync(_context.Environment, _stubOptions, popToken); result.Should().BeFalse(); }