@Test public void testGetSecrets() throws Exception { String secretStr = "secret"; StringSignerSecretProvider secretProvider = new StringSignerSecretProvider(secretStr); secretProvider.init(null, -1); byte[] secretBytes = secretStr.getBytes(); Assert.assertArrayEquals(secretBytes, secretProvider.getCurrentSecret()); byte[][] allSecrets = secretProvider.getAllSecrets(); Assert.assertEquals(1, allSecrets.length); Assert.assertArrayEquals(secretBytes, allSecrets[0]); } }
private StringSignerSecretProvider createStringSignerSecretProvider() throws Exception { StringSignerSecretProvider secretProvider = new StringSignerSecretProvider(); Properties secretProviderProps = new Properties(); secretProviderProps.setProperty(AuthenticationFilter.SIGNATURE_SECRET, "secret"); secretProvider.init(secretProviderProps, null, -1); return secretProvider; }
/** * @return a new StringSignerSecretProvider * @throws Exception */ public static StringSignerSecretProvider newStringSignerSecretProvider() throws Exception { return new StringSignerSecretProvider(); } }
/** * @return a new StringSignerSecretProvider * @throws Exception */ public static StringSignerSecretProvider newStringSignerSecretProvider() throws Exception { return new StringSignerSecretProvider(); } }
private StringSignerSecretProvider createStringSignerSecretProvider() throws Exception { StringSignerSecretProvider secretProvider = new StringSignerSecretProvider(); Properties secretProviderProps = new Properties(); secretProviderProps.setProperty(AuthenticationFilter.SIGNATURE_SECRET, "secret"); secretProvider.init(secretProviderProps, null, -1); return secretProvider; }
@Test public void testGetSecrets() throws Exception { String secretStr = "secret"; StringSignerSecretProvider secretProvider = new StringSignerSecretProvider(); Properties secretProviderProps = new Properties(); secretProviderProps.setProperty( AuthenticationFilter.SIGNATURE_SECRET, "secret"); secretProvider.init(secretProviderProps, null, -1); byte[] secretBytes = secretStr.getBytes(); Assert.assertArrayEquals(secretBytes, secretProvider.getCurrentSecret()); byte[][] allSecrets = secretProvider.getAllSecrets(); Assert.assertEquals(1, allSecrets.length); Assert.assertArrayEquals(secretBytes, allSecrets[0]); } }
config.getProperty(configPrefix + SIGNATURE_SECRET, null); if (signatureSecret != null) { secretProvider = new StringSignerSecretProvider(signatureSecret); } else { secretProvider = new RandomSignerSecretProvider();
@Test public void testGetSecrets() throws Exception { String secretStr = "secret"; StringSignerSecretProvider secretProvider = new StringSignerSecretProvider(); Properties secretProviderProps = new Properties(); secretProviderProps.setProperty( AuthenticationFilter.SIGNATURE_SECRET, "secret"); secretProvider.init(secretProviderProps, null, -1); byte[] secretBytes = secretStr.getBytes(); Assert.assertArrayEquals(secretBytes, secretProvider.getCurrentSecret()); byte[][] allSecrets = secretProvider.getAllSecrets(); Assert.assertEquals(1, allSecrets.length); Assert.assertArrayEquals(secretBytes, allSecrets[0]); } }
@Test public void testInvalidSignedText() throws Exception { Signer signer = new Signer(new StringSignerSecretProvider("secret")); try { signer.verifyAndExtract("test"); Assert.fail(); } catch (SignerException ex) { // Expected } catch (Throwable ex) { Assert.fail(); } }
@Test public void testVerify() throws Exception { Signer signer = new Signer(new StringSignerSecretProvider("secret")); String t = "test"; String s = signer.sign(t); String e = signer.verifyAndExtract(s); Assert.assertEquals(t, e); }
Signer signer = new Signer(new StringSignerSecretProvider(secret)); String tokenSigned = signer.sign(token.toString());
Signer signer = new Signer(new StringSignerSecretProvider(secret)); String tokenSigned = signer.sign(token.toString());
Signer signer = new Signer(new StringSignerSecretProvider("secret")); String tokenSigned = signer.sign(token.toString()); Cookie cookie = new Cookie(AuthenticatedURL.AUTH_COOKIE, tokenSigned);
Signer signer = new Signer(new StringSignerSecretProvider("secret")); String tokenSigned = signer.sign(token.toString());
Signer signer = new Signer(new StringSignerSecretProvider("secret")); String tokenSigned = signer.sign(token.toString());
Signer signer = new Signer(new StringSignerSecretProvider("secret")); String tokenSigned = signer.sign(token.toString());
new AuthenticationToken("u", "p", DummyAuthenticationHandler.TYPE); token.setExpires(System.currentTimeMillis() - TOKEN_VALIDITY_SEC); Signer signer = new Signer(new StringSignerSecretProvider("secret")); String tokenSigned = signer.sign(token.toString());
Mockito.any(ServletResponse.class)); Signer signer = new Signer(new StringSignerSecretProvider("secret")); String value = signer.verifyAndExtract(v); AuthenticationToken token = AuthenticationToken.parse(value);
@Test public void testTampering() throws Exception { Signer signer = new Signer(new StringSignerSecretProvider("secret")); String t = "test"; String s = signer.sign(t); s += "x"; try { signer.verifyAndExtract(s); Assert.fail(); } catch (SignerException ex) { // Expected } catch (Throwable ex) { Assert.fail(); } }
@Test public void testSignature() throws Exception { Signer signer = new Signer(new StringSignerSecretProvider("secret")); String s1 = signer.sign("ok"); String s2 = signer.sign("ok"); String s3 = signer.sign("wrong"); Assert.assertEquals(s1, s2); Assert.assertNotEquals(s1, s3); }