jwt/parser_test.go

package jwt_test

import (
	"crypto/rsa"
	"encoding/json"
	"fmt"
	"reflect"
	"testing"
	"time"

	"github.com/dgrijalva/jwt-go"
	"github.com/dgrijalva/jwt-go/test"
)

var (
	jwtTestDefaultKey *rsa.PublicKey
	defaultKeyFunc    jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return jwtTestDefaultKey, nil }
	emptyKeyFunc      jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return nil, nil }
	errorKeyFunc      jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return nil, fmt.Errorf("error loading key") }
	nilKeyFunc        jwt.Keyfunc = nil
)

func init() {
	jwtTestDefaultKey = test.LoadRSAPublicKeyFromDisk("test/sample_key.pub")
}

var jwtTestData = []struct {
	name        string
	tokenString string
	keyfunc     jwt.Keyfunc
	claims      jwt.Claims
	valid       bool
	errors      uint32
	parser      *jwt.Parser
}{
	{
		"basic",
		"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		true,
		0,
		nil,
	},
	{
		"basic expired",
		"", // autogen
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar", "exp": float64(time.Now().Unix() - 100)},
		false,
		jwt.ValidationErrorExpired,
		nil,
	},
	{
		"basic nbf",
		"", // autogen
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar", "nbf": float64(time.Now().Unix() + 100)},
		false,
		jwt.ValidationErrorNotValidYet,
		nil,
	},
	{
		"expired and nbf",
		"", // autogen
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar", "nbf": float64(time.Now().Unix() + 100), "exp": float64(time.Now().Unix() - 100)},
		false,
		jwt.ValidationErrorNotValidYet | jwt.ValidationErrorExpired,
		nil,
	},
	{
		"basic invalid",
		"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.EhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		false,
		jwt.ValidationErrorSignatureInvalid,
		nil,
	},
	{
		"basic nokeyfunc",
		"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",
		nilKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		false,
		jwt.ValidationErrorUnverifiable,
		nil,
	},
	{
		"basic nokey",
		"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",
		emptyKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		false,
		jwt.ValidationErrorSignatureInvalid,
		nil,
	},
	{
		"basic errorkey",
		"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",
		errorKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		false,
		jwt.ValidationErrorUnverifiable,
		nil,
	},
	{
		"invalid signing method",
		"",
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		false,
		jwt.ValidationErrorSignatureInvalid,
		&jwt.Parser{ValidMethods: []string{"HS256"}},
	},
	{
		"valid signing method",
		"",
		defaultKeyFunc,
		jwt.MapClaims{"foo": "bar"},
		true,
		0,
		&jwt.Parser{ValidMethods: []string{"RS256", "HS256"}},
	},
	{
		"JSON Number",
		"",
		defaultKeyFunc,
		jwt.MapClaims{"foo": json.Number("123.4")},
		true,
		0,
		&jwt.Parser{UseJSONNumber: true},
	},
	{
		"Standard Claims",
		"",
		defaultKeyFunc,
		&jwt.StandardClaims{
			ExpiresAt: time.Now().Add(time.Second * 10).Unix(),
		},
		true,
		0,
		&jwt.Parser{UseJSONNumber: true},
	},
}

func TestParser_Parse(t *testing.T) {
	privateKey := test.LoadRSAPrivateKeyFromDisk("test/sample_key")

	// Iterate over test data set and run tests
	for _, data := range jwtTestData {
		// If the token string is blank, use helper function to generate string
		if data.tokenString == "" {
			data.tokenString = test.MakeSampleToken(data.claims, privateKey)
		}

		// Parse the token
		var token *jwt.Token
		var err error
		var parser = data.parser
		if parser == nil {
			parser = new(jwt.Parser)
		}
		// Figure out correct claims type
		switch data.claims.(type) {
		case jwt.MapClaims:
			token, err = parser.ParseWithClaims(data.tokenString, data.keyfunc, jwt.MapClaims{})
		case *jwt.StandardClaims:
			token, err = parser.ParseWithClaims(data.tokenString, data.keyfunc, &jwt.StandardClaims{})
		}

		// Verify result matches expectation
		if !reflect.DeepEqual(data.claims, token.Claims) {
			t.Errorf("[%v] Claims mismatch. Expecting: %v  Got: %v", data.name, data.claims, token.Claims)
		}

		if data.valid && err != nil {
			t.Errorf("[%v] Error while verifying token: %T:%v", data.name, err, err)
		}

		if !data.valid && err == nil {
			t.Errorf("[%v] Invalid token passed validation", data.name)
		}

		if data.errors != 0 {
			if err == nil {
				t.Errorf("[%v] Expecting error.  Didn't get one.", data.name)
			} else {
				// compare the bitfield part of the error
				if e := err.(*jwt.ValidationError).Errors; e != data.errors {
					t.Errorf("[%v] Errors don't match expectation.  %v != %v", data.name, e, data.errors)
				}
			}
		}
		if data.valid && token.Signature == "" {
			t.Errorf("[%v] Signature is left unpopulated after parsing", data.name)
		}
	}
}

// Helper method for benchmarking various methods
func benchmarkSigning(b *testing.B, method jwt.SigningMethod, key interface{}) {
	t := jwt.New(method)
	b.RunParallel(func(pb *testing.PB) {
		for pb.Next() {
			if _, err := t.SignedString(key); err != nil {
				b.Fatal(err)
			}
		}
	})

}
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`package jwt_test`
starting to work on it 2012-04-18 03:49:21 +04:00
			`import (`
drop support for []byte keys in RSA signing methods 2015-07-20 20:23:11 +03:00			`"crypto/rsa"`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`"encoding/json"`
parse token from http requests 2012-04-18 23:35:16 +04:00			`"fmt"`
gofmt 2012-04-18 23:59:37 +04:00			`"reflect"`
			`"testing"`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`"time"`
Going through and updating tests to pass. Still need to add a test that utilizes the defaults of the structured object. Update Cmdline app Update package reference for PR. Update examples 2015-07-17 20:28:08 +03:00
			`"github.com/dgrijalva/jwt-go"`
moved some of the test helpers into a shared location so they can be reused 2016-04-08 23:01:55 +03:00			`"github.com/dgrijalva/jwt-go/test"`
starting to work on it 2012-04-18 03:49:21 +04:00			`)`

gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`var (`
drop support for []byte keys in RSA signing methods 2015-07-20 20:23:11 +03:00			`jwtTestDefaultKey *rsa.PublicKey`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`defaultKeyFunc jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return jwtTestDefaultKey, nil }`
			`emptyKeyFunc jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return nil, nil }`
			`errorKeyFunc jwt.Keyfunc = func(t *jwt.Token) (interface{}, error) { return nil, fmt.Errorf("error loading key") }`
			`nilKeyFunc jwt.Keyfunc = nil`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`)`

moved some of the test helpers into a shared location so they can be reused 2016-04-08 23:01:55 +03:00			`func init() {`
			`jwtTestDefaultKey = test.LoadRSAPublicKeyFromDisk("test/sample_key.pub")`
			`}`

gofmt 2012-04-18 23:59:37 +04:00			`var jwtTestData = []struct {`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`name string`
			`tokenString string`
			`keyfunc jwt.Keyfunc`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`claims jwt.Claims`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`valid bool`
			`errors uint32`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`parser *jwt.Parser`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`}{`
			`{`
parse token from http requests 2012-04-18 23:35:16 +04:00			`"basic",`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`defaultKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar"},`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`true,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`0,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`},`
			`{`
			`"basic expired",`
			`"", // autogen`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`defaultKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar", "exp": float64(time.Now().Unix() - 100)},`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorExpired,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`},`
			`{`
			`"basic nbf",`
			`"", // autogen`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`defaultKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar", "nbf": float64(time.Now().Unix() + 100)},`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorNotValidYet,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
switched error details to bitfield 2014-03-09 23:24:51 +04:00			`},`
			`{`
			`"expired and nbf",`
			`"", // autogen`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`defaultKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar", "nbf": float64(time.Now().Unix() + 100), "exp": float64(time.Now().Unix() - 100)},`
switched error details to bitfield 2014-03-09 23:24:51 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorNotValidYet \| jwt.ValidationErrorExpired,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`},`
			`{`
parse token from http requests 2012-04-18 23:35:16 +04:00			`"basic invalid",`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.EhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`defaultKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar"},`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorSignatureInvalid,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`},`
			`{`
			`"basic nokeyfunc",`
			`"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",`
			`nilKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar"},`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorUnverifiable,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`},`
			`{`
			`"basic nokey",`
			`"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",`
			`emptyKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar"},`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorSignatureInvalid,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`},`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`{`
			`"basic errorkey",`
			`"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJmb28iOiJiYXIifQ.FhkiHkoESI_cG3NPigFrxEk9Z60_oXrOT2vGm9Pn6RDgYNovYORQmmA0zs1AoAOf09ly2Nx2YAg6ABqAYga1AcMFkJljwxTT5fYphTuqpWdy4BELeSYJx5Ty2gmr8e7RonuUztrdD5WfPqLKMm1Ozp_T6zALpRmwTIW0QPnaBXaQD90FplAg46Iy1UlDKr-Eupy0i5SLch5Q-p2ZpaL_5fnTIUDlxC3pWhJTyx_71qDI-mAA_5lE_VdroOeflG56sSmDxopPEG3bFlSu1eowyBfxtu0_CuVd-M42RU75Zc4Gsj6uV77MBtbMrf4_7M_NUTSgoIF3fRqxrj0NzihIBg",`
			`errorKeyFunc,`
MapClaim -> MapClaims 2015-08-18 20:18:57 +03:00			`jwt.MapClaims{"foo": "bar"},`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`false,`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`jwt.ValidationErrorUnverifiable,`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`nil,`
			`},`
			`{`
			`"invalid signing method",`
			`"",`
			`defaultKeyFunc,`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`jwt.MapClaims{"foo": "bar"},`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`false,`
			`jwt.ValidationErrorSignatureInvalid,`
			`&jwt.Parser{ValidMethods: []string{"HS256"}},`
			`},`
added test for valid signing method 2015-11-03 02:24:32 +03:00			`{`
			`"valid signing method",`
			`"",`
			`defaultKeyFunc,`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`jwt.MapClaims{"foo": "bar"},`
added test for valid signing method 2015-11-03 02:24:32 +03:00			`true,`
			`0,`
			`&jwt.Parser{ValidMethods: []string{"RS256", "HS256"}},`
			`},`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`{`
			`"JSON Number",`
			`"",`
			`defaultKeyFunc,`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`jwt.MapClaims{"foo": json.Number("123.4")},`
			`true,`
			`0,`
			`&jwt.Parser{UseJSONNumber: true},`
			`},`
			`{`
			`"Standard Claims",`
			`"",`
			`defaultKeyFunc,`
			`&jwt.StandardClaims{`
			`ExpiresAt: time.Now().Add(time.Second * 10).Unix(),`
			`},`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`true,`
			`0,`
			`&jwt.Parser{UseJSONNumber: true},`
gracefully handle a nil keyfunc passed to Parse. (and more tests) 2014-10-12 00:54:16 +04:00			`},`
			`}`

added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`func TestParser_Parse(t *testing.T) {`
moved some of the test helpers into a shared location so they can be reused 2016-04-08 23:01:55 +03:00			`privateKey := test.LoadRSAPrivateKeyFromDisk("test/sample_key")`

added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`// Iterate over test data set and run tests`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`for _, data := range jwtTestData {`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`// If the token string is blank, use helper function to generate string`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`if data.tokenString == "" {`
moved some of the test helpers into a shared location so they can be reused 2016-04-08 23:01:55 +03:00			`data.tokenString = test.MakeSampleToken(data.claims, privateKey)`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`}`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`// Parse the token`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`var token *jwt.Token`
			`var err error`
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`var parser = data.parser`
			`if parser == nil {`
			`parser = new(jwt.Parser)`
			`}`
			`// Figure out correct claims type`
			`switch data.claims.(type) {`
			`case jwt.MapClaims:`
			`token, err = parser.ParseWithClaims(data.tokenString, data.keyfunc, jwt.MapClaims{})`
			`case *jwt.StandardClaims:`
			`token, err = parser.ParseWithClaims(data.tokenString, data.keyfunc, &jwt.StandardClaims{})`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`}`
gofmt 2012-04-18 23:59:37 +04:00
added special case behavior for MapClaims so they aren't all weird 2016-04-13 00:32:24 +03:00			`// Verify result matches expectation`
			`if !reflect.DeepEqual(data.claims, token.Claims) {`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`t.Errorf("[%v] Claims mismatch. Expecting: %v Got: %v", data.name, data.claims, token.Claims)`
			`}`
Going through and updating tests to pass. Still need to add a test that utilizes the defaults of the structured object. Update Cmdline app Update package reference for PR. Update examples 2015-07-17 20:28:08 +03:00
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`if data.valid && err != nil {`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`t.Errorf("[%v] Error while verifying token: %T:%v", data.name, err, err)`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`}`
Going through and updating tests to pass. Still need to add a test that utilizes the defaults of the structured object. Update Cmdline app Update package reference for PR. Update examples 2015-07-17 20:28:08 +03:00
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`if !data.valid && err == nil {`
			`t.Errorf("[%v] Invalid token passed validation", data.name)`
			`}`
Going through and updating tests to pass. Still need to add a test that utilizes the defaults of the structured object. Update Cmdline app Update package reference for PR. Update examples 2015-07-17 20:28:08 +03:00
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`if data.errors != 0 {`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`if err == nil {`
			`t.Errorf("[%v] Expecting error. Didn't get one.", data.name)`
			`} else {`
moved tests into jwt_test package for better clarity 2014-12-28 23:24:41 +03:00			`// compare the bitfield part of the error`
added tests for parser. fixed parser when using restricted method list 2015-11-03 02:22:08 +03:00			`if e := err.(*jwt.ValidationError).Errors; e != data.errors {`
			`t.Errorf("[%v] Errors don't match expectation. %v != %v", data.name, e, data.errors)`
updated parsing errors to provide more feedback 2014-03-08 02:43:11 +04:00			`}`
			`}`
			`}`
signature should be populated after parsing a valid token 2015-11-16 23:42:37 +03:00			`if data.valid && token.Signature == "" {`
			`t.Errorf("[%v] Signature is left unpopulated after parsing", data.name)`
			`}`
base64 decoding fixins 2012-04-18 23:18:31 +04:00			`}`
starting to work on it 2012-04-18 03:49:21 +04:00			`}`
parse token from http requests 2012-04-18 23:35:16 +04:00
cleaned up benchmarks 2015-04-11 23:53:09 +03:00			`// Helper method for benchmarking various methods`
			`func benchmarkSigning(b *testing.B, method jwt.SigningMethod, key interface{}) {`
			`t := jwt.New(method)`
			`b.RunParallel(func(pb *testing.PB) {`
			`for pb.Next() {`
use pre-parsed rsa key for rsa benchmark and make sure signing actually succeeds 2015-04-12 00:04:22 +03:00			`if _, err := t.SignedString(key); err != nil {`
			`b.Fatal(err)`
			`}`
cleaned up benchmarks 2015-04-11 23:53:09 +03:00			`}`
			`})`

			`}`