public string findISSByClientIDAndAccessToken(string client_id, string access_token)
{
string IdPSessinSecret = Nondet.String();
IDTokenAndAccessTokenEntry entry = (IDTokenAndAccessTokenEntry)getEntry(IdPSessinSecret, client_id);
Contract.Assume(entry.access_token == access_token);
return(IdPSessinSecret);
}
public string findISSByClientIDAndAccessToken(string client_id, string UserID, string access_token)
{
string IdPSessionSecret = Nondet.String();
AccessToken token = new AccessToken();
token.token = access_token;
IDTokenAndAccessTokenEntry entry = (IDTokenAndAccessTokenEntry)getEntry(token, client_id, UserID);
Contract.Assume(entry.access_token == token);
return(IdPSessionSecret);
}
public string findISSByClientIDAndCode(string client_id, string authorization_code)
{
string IdPSessinSecret = Nondet.String();
AuthorizationCodeEntry entry = (AuthorizationCodeEntry)getEntry(IdPSessinSecret, client_id);
Contract.Assume(entry.code == authorization_code);
/*This is an assumption implicitly in the definition of the notion of "code lookup" and "AuthReq redirection"*/
Contract.Assume(IdPSessinSecret == GlobalObjects_base.SignInIdP_Req.IdPSessionSecret &&
client_id == GlobalObjects_base.SignInIdP_Req.Realm &&
client_id == GlobalObjects_base.RP.Realm);
/*********************************************************************************/
return(IdPSessinSecret);
}
