micro/util/token/jwt/jwt_test.go

package jwt

import (
	"io/ioutil"
	"testing"
	"time"

	"github.com/micro/go-micro/v3/auth"
	"github.com/micro/go-micro/v3/util/token"
)

func TestGenerate(t *testing.T) {
	privKey, err := ioutil.ReadFile("test/sample_key")
	if err != nil {
		t.Fatalf("Unable to read private key: %v", err)
	}

	j := NewTokenProvider(
		token.WithPrivateKey(string(privKey)),
	)

	_, err = j.Generate(&auth.Account{ID: "test"})
	if err != nil {
		t.Fatalf("Generate returned %v error, expected nil", err)
	}
}

func TestInspect(t *testing.T) {
	pubKey, err := ioutil.ReadFile("test/sample_key.pub")
	if err != nil {
		t.Fatalf("Unable to read public key: %v", err)
	}
	privKey, err := ioutil.ReadFile("test/sample_key")
	if err != nil {
		t.Fatalf("Unable to read private key: %v", err)
	}

	j := NewTokenProvider(
		token.WithPublicKey(string(pubKey)),
		token.WithPrivateKey(string(privKey)),
	)

	t.Run("Valid token", func(t *testing.T) {
		md := map[string]string{"foo": "bar"}
		scopes := []string{"admin"}
		subject := "test"

		acc := &auth.Account{ID: subject, Scopes: scopes, Metadata: md}
		tok, err := j.Generate(acc)
		if err != nil {
			t.Fatalf("Generate returned %v error, expected nil", err)
		}

		tok2, err := j.Inspect(tok.Token)
		if err != nil {
			t.Fatalf("Inspect returned %v error, expected nil", err)
		}
		if acc.ID != subject {
			t.Errorf("Inspect returned %v as the token subject, expected %v", acc.ID, subject)
		}
		if len(tok2.Scopes) != len(scopes) {
			t.Errorf("Inspect returned %v scopes, expected %v", len(tok2.Scopes), len(scopes))
		}
		if len(tok2.Metadata) != len(md) {
			t.Errorf("Inspect returned %v as the token metadata, expected %v", tok2.Metadata, md)
		}
	})

	t.Run("Expired token", func(t *testing.T) {
		tok, err := j.Generate(&auth.Account{}, token.WithExpiry(-10*time.Second))
		if err != nil {
			t.Fatalf("Generate returned %v error, expected nil", err)
		}

		if _, err = j.Inspect(tok.Token); err != token.ErrInvalidToken {
			t.Fatalf("Inspect returned %v error, expected %v", err, token.ErrInvalidToken)
		}
	})

	t.Run("Invalid token", func(t *testing.T) {
		_, err := j.Inspect("Invalid token")
		if err != token.ErrInvalidToken {
			t.Fatalf("Inspect returned %v error, expected %v", err, token.ErrInvalidToken)
		}
	})

}
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`package jwt`

			`import (`
			`"io/ioutil"`
			`"testing"`
			`"time"`

v3 refactor (#1868) * Move to v3 Co-authored-by: Ben Toogood <bentoogood@gmail.com> 2020-07-27 15:22:00 +03:00			`"github.com/micro/go-micro/v3/auth"`
			`"github.com/micro/go-micro/v3/util/token"`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`)`

			`func TestGenerate(t *testing.T) {`
			`privKey, err := ioutil.ReadFile("test/sample_key")`
			`if err != nil {`
			`t.Fatalf("Unable to read private key: %v", err)`
			`}`

			`j := NewTokenProvider(`
			`token.WithPrivateKey(string(privKey)),`
			`)`

Fix token tests 2020-04-01 19:29:17 +03:00			`_, err = j.Generate(&auth.Account{ID: "test"})`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`if err != nil {`
			`t.Fatalf("Generate returned %v error, expected nil", err)`
			`}`
			`}`

			`func TestInspect(t *testing.T) {`
			`pubKey, err := ioutil.ReadFile("test/sample_key.pub")`
			`if err != nil {`
			`t.Fatalf("Unable to read public key: %v", err)`
			`}`
			`privKey, err := ioutil.ReadFile("test/sample_key")`
			`if err != nil {`
			`t.Fatalf("Unable to read private key: %v", err)`
			`}`

			`j := NewTokenProvider(`
			`token.WithPublicKey(string(pubKey)),`
			`token.WithPrivateKey(string(privKey)),`
			`)`

			`t.Run("Valid token", func(t *testing.T) {`
			`md := map[string]string{"foo": "bar"}`
Remove roles (replaced with scope) 2020-05-21 16:56:17 +03:00			`scopes := []string{"admin"}`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`subject := "test"`

Remove roles (replaced with scope) 2020-05-21 16:56:17 +03:00			`acc := &auth.Account{ID: subject, Scopes: scopes, Metadata: md}`
Fix token tests 2020-04-01 19:29:17 +03:00			`tok, err := j.Generate(acc)`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`if err != nil {`
			`t.Fatalf("Generate returned %v error, expected nil", err)`
			`}`

			`tok2, err := j.Inspect(tok.Token)`
			`if err != nil {`
			`t.Fatalf("Inspect returned %v error, expected nil", err)`
			`}`
Fix token tests 2020-04-01 19:29:17 +03:00			`if acc.ID != subject {`
			`t.Errorf("Inspect returned %v as the token subject, expected %v", acc.ID, subject)`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`}`
Remove roles (replaced with scope) 2020-05-21 16:56:17 +03:00			`if len(tok2.Scopes) != len(scopes) {`
			`t.Errorf("Inspect returned %v scopes, expected %v", len(tok2.Scopes), len(scopes))`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`}`
			`if len(tok2.Metadata) != len(md) {`
			`t.Errorf("Inspect returned %v as the token metadata, expected %v", tok2.Metadata, md)`
			`}`
			`})`

			`t.Run("Expired token", func(t *testing.T) {`
Fix token tests 2020-04-01 19:29:17 +03:00			`tok, err := j.Generate(&auth.Account{}, token.WithExpiry(-10*time.Second))`
Updated auth interface (#1384) * Updated auth interface * Add Rule * Remove Rule * Return token from Renew * Renew => Refresh * Implement Tokens & Default Auth Implementation * Change default auth to noop * Change default auth to noop * Move token.Token to auth.Token * Remove Token from Account * Auth service implementation * Decode JWT locally * Cookie for secret * Move string to bottom of interface definition * Depricate auth_exclude * Update auth wrappers * Update go.sum Co-authored-by: Ben Toogood <ben@micro.mu> 2020-03-23 19:19:30 +03:00			`if err != nil {`
			`t.Fatalf("Generate returned %v error, expected nil", err)`
			`}`

			`if _, err = j.Inspect(tok.Token); err != token.ErrInvalidToken {`
			`t.Fatalf("Inspect returned %v error, expected %v", err, token.ErrInvalidToken)`
			`}`
			`})`

			`t.Run("Invalid token", func(t *testing.T) {`
			`_, err := j.Inspect("Invalid token")`
			`if err != token.ErrInvalidToken {`
			`t.Fatalf("Inspect returned %v error, expected %v", err, token.ErrInvalidToken)`
			`}`
			`})`

			`}`