@SuppressWarnings("ConstantConditions")
@Test
public void shouldFailToAuthenticateUsingJWKIfMissingProvider() throws Exception {
Jwk jwk = mock(Jwk.class);
JwkProvider jwkProvider = null;
KeyPair keyPair = RSAKeyPair();
when(jwk.getPublicKey()).thenReturn(keyPair.getPublic());
JwtAuthenticationProvider provider = new JwtAuthenticationProvider(jwkProvider, "issuer", "audience");
Map<String, Object> keyIdHeader = Collections.singletonMap("kid", (Object) "key-id");
String token = JWT.create()
.withAudience("audience")
.withIssuer("issuer")
.withHeader(keyIdHeader)
.sign(Algorithm.RSA256((RSAKey) keyPair.getPrivate()));
Authentication authentication = PreAuthenticatedAuthenticationJsonWebToken.usingToken(token);
exception.expect(AuthenticationServiceException.class);
exception.expectMessage("Missing jwk provider");
provider.authenticate(authentication);
}
JwtAuthenticationProviderTest.java 文件源码
java
阅读 33
收藏 0
点赞 0
评论 0
项目:auth0-spring-security-api
作者:
评论列表
文章目录
