public void SignDataStreamAlgorithmNotSupported([EnumValues(Exclude = new[] { nameof(KeyType.Rsa), nameof(KeyType.RsaHsm), nameof(KeyType.Ec), nameof(KeyType.EcHsm) })] KeyType keyType)
{
JsonWebKey jwk = CreateKey(keyType);
LocalCryptographyClient client = CreateClient <LocalCryptographyClient>(jwk);
Assert.ThrowsAsync <NotSupportedException>(async() => await client.SignDataAsync(new SignatureAlgorithm("ignored"), TestStream));
}
public void SignDataStreamOperationNotSupported()
{
JsonWebKey jwk = new JsonWebKey(RSA.Create(), keyOps: Array.Empty <KeyOperation>());
LocalCryptographyClient client = CreateClient <LocalCryptographyClient>(jwk);
Assert.ThrowsAsync <NotSupportedException>(async() => await client.SignDataAsync(new SignatureAlgorithm("ignored"), TestStream));
}
public async Task SignDataStreamVerifyDataStreamRoundtrip([EnumValues(Exclude = new[] { nameof(SignatureAlgorithm.PS256), nameof(SignatureAlgorithm.PS384), nameof(SignatureAlgorithm.PS512) })] SignatureAlgorithm algorithm)
{
JsonWebKey jwk = KeyUtilities.CreateKey(algorithm, includePrivateParameters: true);
LocalCryptographyClient client = CreateClient <LocalCryptographyClient>(jwk);
SignResult signed = await client.SignDataAsync(algorithm, TestStream);
VerifyResult verified = await client.VerifyDataAsync(algorithm, TestStream, signed.Signature);
Assert.IsTrue(verified.IsValid);
}
public void SignDataStreamRequiresPrivateKey([EnumValues] SignatureAlgorithm algorithm)
{
JsonWebKey jwk = KeyUtilities.CreateKey(algorithm, keyOps: new[] { KeyOperation.Sign, KeyOperation.Verify });
LocalCryptographyClient client = CreateClient <LocalCryptographyClient>(jwk);
Assert.ThrowsAsync(new InstanceOfTypeConstraint(typeof(CryptographicException)), async() => await client.SignDataAsync(algorithm, TestStream));
}
