forked from mirror/jwt
124 lines
5.4 KiB
Go
124 lines
5.4 KiB
Go
package jwt
|
|
|
|
import (
|
|
"testing"
|
|
"time"
|
|
)
|
|
|
|
func TestVerifyAud(t *testing.T) {
|
|
var nilInterface interface{}
|
|
var nilListInterface []interface{}
|
|
var intListInterface interface{} = []int{1, 2, 3}
|
|
type test struct {
|
|
Name string
|
|
MapClaims MapClaims
|
|
Expected bool
|
|
Comparison string
|
|
Required bool
|
|
}
|
|
tests := []test{
|
|
// Matching Claim in aud
|
|
// Required = true
|
|
{Name: "String Aud matching required", MapClaims: MapClaims{"aud": "example.com"}, Expected: true, Required: true, Comparison: "example.com"},
|
|
{Name: "[]String Aud with match required", MapClaims: MapClaims{"aud": []string{"example.com", "example.example.com"}}, Expected: true, Required: true, Comparison: "example.com"},
|
|
|
|
// Required = false
|
|
{Name: "String Aud with match not required", MapClaims: MapClaims{"aud": "example.com"}, Expected: true, Required: false, Comparison: "example.com"},
|
|
{Name: "Empty String Aud with match not required", MapClaims: MapClaims{}, Expected: true, Required: false, Comparison: "example.com"},
|
|
{Name: "Empty String Aud with match not required", MapClaims: MapClaims{"aud": ""}, Expected: true, Required: false, Comparison: "example.com"},
|
|
{Name: "Nil String Aud with match not required", MapClaims: MapClaims{"aud": nil}, Expected: true, Required: false, Comparison: "example.com"},
|
|
|
|
{Name: "[]String Aud with match not required", MapClaims: MapClaims{"aud": []string{"example.com", "example.example.com"}}, Expected: true, Required: false, Comparison: "example.com"},
|
|
{Name: "Empty []String Aud with match not required", MapClaims: MapClaims{"aud": []string{}}, Expected: true, Required: false, Comparison: "example.com"},
|
|
|
|
// Non-Matching Claim in aud
|
|
// Required = true
|
|
{Name: "String Aud without match required", MapClaims: MapClaims{"aud": "not.example.com"}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "Empty String Aud without match required", MapClaims: MapClaims{"aud": ""}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "[]String Aud without match required", MapClaims: MapClaims{"aud": []string{"not.example.com", "example.example.com"}}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "Empty []String Aud without match required", MapClaims: MapClaims{"aud": []string{""}}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "String Aud without match not required", MapClaims: MapClaims{"aud": "not.example.com"}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "Empty String Aud without match not required", MapClaims: MapClaims{"aud": ""}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "[]String Aud without match not required", MapClaims: MapClaims{"aud": []string{"not.example.com", "example.example.com"}}, Expected: false, Required: true, Comparison: "example.com"},
|
|
|
|
// Required = false
|
|
{Name: "Empty []String Aud without match required", MapClaims: MapClaims{"aud": []string{""}}, Expected: false, Required: true, Comparison: "example.com"},
|
|
|
|
// []interface{}
|
|
{Name: "Empty []interface{} Aud without match required", MapClaims: MapClaims{"aud": nilListInterface}, Expected: true, Required: false, Comparison: "example.com"},
|
|
{Name: "[]interface{} Aud wit match required", MapClaims: MapClaims{"aud": []interface{}{"a", "foo", "example.com"}}, Expected: true, Required: true, Comparison: "example.com"},
|
|
{Name: "[]interface{} Aud wit match but invalid types", MapClaims: MapClaims{"aud": []interface{}{"a", 5, "example.com"}}, Expected: false, Required: true, Comparison: "example.com"},
|
|
{Name: "[]interface{} Aud int wit match required", MapClaims: MapClaims{"aud": intListInterface}, Expected: false, Required: true, Comparison: "example.com"},
|
|
|
|
// interface{}
|
|
{Name: "Empty interface{} Aud without match not required", MapClaims: MapClaims{"aud": nilInterface}, Expected: true, Required: false, Comparison: "example.com"},
|
|
}
|
|
|
|
for _, test := range tests {
|
|
t.Run(test.Name, func(t *testing.T) {
|
|
got := test.MapClaims.VerifyAudience(test.Comparison, test.Required)
|
|
|
|
if got != test.Expected {
|
|
t.Errorf("Expected %v, got %v", test.Expected, got)
|
|
}
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestMapclaimsVerifyIssuedAtInvalidTypeString(t *testing.T) {
|
|
mapClaims := MapClaims{
|
|
"iat": "foo",
|
|
}
|
|
want := false
|
|
got := mapClaims.VerifyIssuedAt(0, false)
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
}
|
|
|
|
func TestMapclaimsVerifyNotBeforeInvalidTypeString(t *testing.T) {
|
|
mapClaims := MapClaims{
|
|
"nbf": "foo",
|
|
}
|
|
want := false
|
|
got := mapClaims.VerifyNotBefore(0, false)
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
}
|
|
|
|
func TestMapclaimsVerifyExpiresAtInvalidTypeString(t *testing.T) {
|
|
mapClaims := MapClaims{
|
|
"exp": "foo",
|
|
}
|
|
want := false
|
|
got := mapClaims.VerifyExpiresAt(0, false)
|
|
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
}
|
|
|
|
func TestMapClaimsVerifyExpiresAtExpire(t *testing.T) {
|
|
exp := time.Now().Unix()
|
|
mapClaims := MapClaims{
|
|
"exp": float64(exp),
|
|
}
|
|
want := false
|
|
got := mapClaims.VerifyExpiresAt(exp, true)
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
|
|
got = mapClaims.VerifyExpiresAt(exp+1, true)
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
|
|
want = true
|
|
got = mapClaims.VerifyExpiresAt(exp-1, true)
|
|
if want != got {
|
|
t.Fatalf("Failed to verify claims, wanted: %v got %v", want, got)
|
|
}
|
|
}
|