public void Authenticated_RejectButHasPayloadForTokensWithInvalidSignature()
{
var differingEncryptor = HmacEncryptor.CreateSha512("secret");
var result = new Authenticator(_encryptor).Authenticate(CreateAcceptableJwtToken(differingEncryptor));
AssertBadSignature(result);
}
public void Authenticated_RejectButHasPayloadForTokensWhichAreNotLabelledToUseTheSameEncryptionAlgorithm()
{
var encryptor = HmacEncryptor.CreateSha512("secret");
var header = new JObject();
header["alg"] = "HS256";
header["typ"] = "JWT";
var result = new Authenticator(encryptor).Authenticate(CreateJwtToken(header, CreateAcceptablePayload(), encryptor));
AssertMismatchedHeaders(result);
}
public MiniAuth(string secret)
{
_auth = new Authenticator(HmacEncryptor.CreateSha256(secret));
}
public void Initialize()
{
_encryptor = HmacEncryptor.CreateSha256("secret");
_authenticator = new Authenticator(_encryptor);
}
