public string findISSByClientIDAndAccessToken(string client_id, string access_token) { string IdPSessinSecret = Nondet.String(); IDTokenAndAccessTokenEntry entry = (IDTokenAndAccessTokenEntry)getEntry(IdPSessinSecret, client_id); Contract.Assume(entry.access_token == access_token); return(IdPSessinSecret); }
public string findISSByClientIDAndAccessToken(string client_id, string UserID, string access_token) { string IdPSessionSecret = Nondet.String(); AccessToken token = new AccessToken(); token.token = access_token; IDTokenAndAccessTokenEntry entry = (IDTokenAndAccessTokenEntry)getEntry(token, client_id, UserID); Contract.Assume(entry.access_token == token); return(IdPSessionSecret); }
public string findISSByClientIDAndCode(string client_id, string authorization_code) { string IdPSessinSecret = Nondet.String(); AuthorizationCodeEntry entry = (AuthorizationCodeEntry)getEntry(IdPSessinSecret, client_id); Contract.Assume(entry.code == authorization_code); /*This is an assumption implicitly in the definition of the notion of "code lookup" and "AuthReq redirection"*/ Contract.Assume(IdPSessinSecret == GlobalObjects_base.SignInIdP_Req.IdPSessionSecret && client_id == GlobalObjects_base.SignInIdP_Req.Realm && client_id == GlobalObjects_base.RP.Realm); /*********************************************************************************/ return(IdPSessinSecret); }