public async Task Updates_with_refresh_token()
{
// setup
var auth0serverUrl = "https://localhost";
var apiClient = new Mock <IAuthenticationApiClient>(MockBehavior.Strict);
RefreshTokenDelegationRequestDto delegationRequest = null;
apiClient.Setup(ac => ac.GetDelegationTokenAsync(It.IsAny <RefreshTokenDelegationRequestDto>(), auth0serverUrl))
.Callback((DelegationRequestBaseDto token, string server) => delegationRequest = token as RefreshTokenDelegationRequestDto)
.Returns(Task.FromResult(new AccessToken {
IdToken = Guid.NewGuid().ToString()
}));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings {
Auth0ServerUrl = auth0serverUrl
}, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings {
Auth0ClientId = Guid.NewGuid().ToString(), Auth0RefreshToken = Guid.NewGuid().ToString()
};
// execute
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate
apiClient.Verify(ac => ac.GetDelegationTokenAsync(It.IsAny <DelegationRequestBaseDto>(), auth0serverUrl), Times.Once);
Assert.NotNull(delegationRequest);
delegationRequest.RefreshToken.Should().Be(auth0ClientSettings.Auth0RefreshToken);
delegationRequest.SourceClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
delegationRequest.TargetClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
}
public async Task Updates_with_client_secret()
{
// setup
var auth0serverUrl = "https://localhost";
var auth0Connection = "unit-test-connection";
var apiClient = new Mock <IAuthenticationApiClient>(MockBehavior.Strict);
TokenAuthenticationRequestDto authRequest = null;
apiClient.Setup(ac => ac.TokenAuthenticateAsync(It.IsAny <TokenAuthenticationRequestDto>(), auth0serverUrl))
.Callback((TokenAuthenticationRequestDto token, string server) => authRequest = token)
.Returns(Task.FromResult(new AuthenticationResponseDto {
IdToken = Guid.NewGuid().ToString()
}));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings {
Auth0ServerUrl = auth0serverUrl, Auth0Connection = auth0Connection
}, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings {
Auth0ClientId = Guid.NewGuid().ToString(), Auth0ClientSecret = Guid.NewGuid().ToString(), Auth0Audience = Guid.NewGuid().ToString()
};
// execute
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate
apiClient.Verify(ac => ac.TokenAuthenticateAsync(It.IsAny <TokenAuthenticationRequestDto>(), auth0serverUrl), Times.Once);
Assert.NotNull(authRequest);
authRequest.ClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
authRequest.ClientSecret.Should().Be(auth0ClientSettings.Auth0ClientSecret);
authRequest.Audience.Should().Be(auth0ClientSettings.Auth0Audience);
authRequest.GrantType.Should().Be("client_credentials");
}
public async Task Schedules_auto_refresh_for_refresh_token()
{
// setup
var apiClient = new Mock <IAuthenticationApiClient>(MockBehavior.Strict);
apiClient.Setup(ac => ac.GetDelegationTokenAsync(It.IsAny <RefreshTokenDelegationRequestDto>(), It.IsAny <string>()))
.Returns(Task.FromResult(new AccessToken {
IdToken = Guid.NewGuid().ToString()
}));
var scheduler = new Mock <IAutoScheduler>(MockBehavior.Strict);
scheduler.Setup(s => s.ScheduleRefresh(It.IsAny <Auth0ClientSettings>()));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings {
Auth0ServerUrl = Guid.NewGuid().ToString()
}, apiClient.Object, scheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings {
Auth0ClientId = Guid.NewGuid().ToString(), Auth0RefreshToken = Guid.NewGuid().ToString()
};
// execute twice
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate that it was called only once
scheduler.Verify(ac => ac.ScheduleRefresh(It.IsAny <Auth0ClientSettings>()), Times.Once);
}
public async Task Does_not_reauthenticate_within_a_short_period_of_time_for_refresh_token()
{
// setup
var apiClient = new Mock<IAuthenticationApiClient>(MockBehavior.Strict);
apiClient.Setup(ac => ac.GetDelegationTokenAsync(It.IsAny<RefreshTokenDelegationRequestDto>(), It.IsAny<string>()))
.Returns(Task.FromResult(new AccessToken { IdToken = Guid.NewGuid().ToString() }));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings { Auth0ServerUrl = Guid.NewGuid().ToString() }, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings { Auth0ClientId = Guid.NewGuid().ToString(), Auth0RefreshToken = Guid.NewGuid().ToString() };
// execute twice
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate that it was called only once
apiClient.Verify(ac => ac.GetDelegationTokenAsync(It.IsAny<RefreshTokenDelegationRequestDto>(), It.IsAny<string>()), Times.Once);
}
public async Task Updates_with_refresh_token()
{
// setup
var auth0serverUrl = "https://localhost";
var apiClient = new Mock<IAuthenticationApiClient>(MockBehavior.Strict);
RefreshTokenDelegationRequestDto delegationRequest = null;
apiClient.Setup(ac => ac.GetDelegationTokenAsync(It.IsAny<RefreshTokenDelegationRequestDto>(), auth0serverUrl))
.Callback((DelegationRequestBaseDto token, string server) => delegationRequest = token as RefreshTokenDelegationRequestDto)
.Returns(Task.FromResult(new AccessToken { IdToken = Guid.NewGuid().ToString() }));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings {Auth0ServerUrl = auth0serverUrl}, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings { Auth0ClientId = Guid.NewGuid().ToString(), Auth0RefreshToken = Guid.NewGuid().ToString() };
// execute
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate
apiClient.Verify(ac => ac.GetDelegationTokenAsync(It.IsAny<DelegationRequestBaseDto>(), auth0serverUrl), Times.Once);
Assert.NotNull(delegationRequest);
delegationRequest.RefreshToken.Should().Be(auth0ClientSettings.Auth0RefreshToken);
delegationRequest.SourceClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
delegationRequest.TargetClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
}
public async Task Reauthenticate_within_a_short_period_of_time_when_forced_for_username_password()
{
// setup
var apiClient = new Mock <IAuthenticationApiClient>(MockBehavior.Strict);
apiClient.Setup(ac => ac.TokenAuthenticateAsync(It.IsAny <TokenAuthenticationRequestDto>(), It.IsAny <string>()))
.Returns(Task.FromResult(new AuthenticationResponseDto {
IdToken = Guid.NewGuid().ToString()
}));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings {
Auth0ServerUrl = Guid.NewGuid().ToString()
}, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings {
Auth0ClientId = Guid.NewGuid().ToString(), Auth0ClientSecret = Guid.NewGuid().ToString()
};
// execute twice
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings, true);
// validate that it was called only once
apiClient.Verify(ac => ac.TokenAuthenticateAsync(It.IsAny <TokenAuthenticationRequestDto>(), It.IsAny <string>()), Times.Exactly(2));
}
public async Task Updates_with_client_secret()
{
// setup
var auth0serverUrl = "https://localhost";
var auth0Connection = "unit-test-connection";
var apiClient = new Mock<IAuthenticationApiClient>(MockBehavior.Strict);
TokenAuthenticationRequestDto authRequest = null;
apiClient.Setup(ac => ac.TokenAuthenticateAsync(It.IsAny<TokenAuthenticationRequestDto>(), auth0serverUrl))
.Callback((TokenAuthenticationRequestDto token, string server) => authRequest = token)
.Returns(Task.FromResult(new AuthenticationResponseDto { IdToken = Guid.NewGuid().ToString() }));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings { Auth0ServerUrl = auth0serverUrl, Auth0Connection = auth0Connection }, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings { Auth0ClientId = Guid.NewGuid().ToString(), Auth0ClientSecret = Guid.NewGuid().ToString(), Auth0Audience = Guid.NewGuid().ToString() };
// execute
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate
apiClient.Verify(ac => ac.TokenAuthenticateAsync(It.IsAny<TokenAuthenticationRequestDto>(), auth0serverUrl), Times.Once);
Assert.NotNull(authRequest);
authRequest.ClientId.Should().Be(auth0ClientSettings.Auth0ClientId);
authRequest.ClientSecret.Should().Be(auth0ClientSettings.Auth0ClientSecret);
authRequest.Audience.Should().Be(auth0ClientSettings.Auth0Audience);
authRequest.GrantType.Should().Be("client_credentials");
}
public async Task Schedules_auto_refresh_for_client_secret()
{
// setup
var apiClient = new Mock<IAuthenticationApiClient>(MockBehavior.Strict);
apiClient.Setup(ac => ac.TokenAuthenticateAsync(It.IsAny<TokenAuthenticationRequestDto>(), It.IsAny<string>()))
.Returns(Task.FromResult(new AuthenticationResponseDto { IdToken = Guid.NewGuid().ToString() }));
var scheduler = new Mock<IAutoScheduler>(MockBehavior.Strict);
scheduler.Setup(s => s.ScheduleRefresh(It.IsAny<Auth0ClientSettings>()));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings { Auth0ServerUrl = Guid.NewGuid().ToString() }, apiClient.Object, scheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings { Auth0ClientId = Guid.NewGuid().ToString(), Auth0ClientSecret = Guid.NewGuid().ToString() };
// execute twice
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
// validate that it was called only once
scheduler.Verify(ac => ac.ScheduleRefresh(It.IsAny<Auth0ClientSettings>()), Times.Once);
}
public async Task Reauthenticate_within_a_short_period_of_time_when_forced_for_username_password()
{
// setup
var apiClient = new Mock<IAuthenticationApiClient>(MockBehavior.Strict);
apiClient.Setup(ac => ac.TokenAuthenticateAsync(It.IsAny<TokenAuthenticationRequestDto>(), It.IsAny<string>()))
.Returns(Task.FromResult(new AuthenticationResponseDto { IdToken = Guid.NewGuid().ToString() }));
var tokenProvider = new Auth0v2TokenProvider(loggerFactor.Object, new Auth0ClientSettings { Auth0ServerUrl = Guid.NewGuid().ToString() }, apiClient.Object, autoScheduler.Object);
var auth0ClientSettings = new Auth0ClientSettings { Auth0ClientId = Guid.NewGuid().ToString(), Auth0ClientSecret = Guid.NewGuid().ToString() };
// execute twice
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings);
await tokenProvider.AddOrUpdateClientAsync(auth0ClientSettings, true);
// validate that it was called only once
apiClient.Verify(ac => ac.TokenAuthenticateAsync(It.IsAny<TokenAuthenticationRequestDto>(), It.IsAny<string>()), Times.Exactly(2));
}
