Decryption unit tests for new SDK

Author: dvsekhvalnov

UnitTests/TestSuite.cs

@@ -132,6 +132,22 @@ public void DecodeBytesHS512()
             Assert.Equal(BinaryPayload, payload);
         }
 
+        [Fact]
+        public void DecodeBytesHS512_StringSDK()
+        {
+            // This test decodes a payload consisting of arbitrary binary data. Only a single signature algorithm is tested
+            // in the binary data scenario, as the internal flow is the same as for the non-Bytes methods and the
+            // other tests also cover the primary JOSE functionality, with only the binary-payload-specific part tested here.
+
+            string token = "eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.AAECAwQFBgcICQoLDA0ODxAREhMUFRYXGBkaGxwdHh8gISIjJCUmJygpKissLS4vMDEyMzQ1Njc4OTo7PD0-P0BBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWltcXV5fYGFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6e3x9fn-AgYKDhIWGh4iJiouMjY6PkJGSk5SVlpeYmZqbnJ2en6ChoqOkpaanqKmqq6ytrq-wsbKztLW2t7i5uru8vb6_wMHCw8TFxsfIycrLzM3Oz9DR0tPU1dbX2Nna29zd3t_g4eLj5OXm5-jp6uvs7e7v8PHy8_T19vf4-fr7_P3-_w.3_-H4HJiNi8--Ss-VAMM1Dg0JtTGEXNvMo1LAHEnQ7bZpQiblqAu5tt-G9p8KFnSlSYOG6l64pIqmqu5p5RvuQ";
+
+            var payload = Jose.JWT.DecodeBytes(token, Encoding.UTF8.GetBytes(key), "HS512");
+
+            Console.Out.WriteLine("DecodeBytesHS512: " + BitConverter.ToString(payload));
+
+            Assert.Equal(BinaryPayload, payload);
+        }
+
         [Fact]
         public void EncryptAndDecryptBytes_RSA1_5_A256GCM()
         {
@@ -148,6 +164,22 @@ public void EncryptAndDecryptBytes_RSA1_5_A256GCM()
             Assert.Equal(BinaryPayload, payload);
         }
 
+        [Fact]
+        public void EncryptAndDecryptBytes_RSA1_5_A256GCM_StringSDK()
+        {
+            // This test encodes a payload consisting of arbitrary binary data. Only a single encryption algorithm is tested
+            // in the binary data scenario, as the internal flow is the same as for the non-Bytes methods and the
+            // other tests also cover the primary JOSE functionality, with only the binary-payload-specific part tested here.
+
+            string token = Jose.JWT.EncodeBytes(BinaryPayload, testSuiteUtils.PubKey(), JweAlgorithm.RSA1_5, JweEncryption.A256GCM);
+
+            Console.Out.WriteLine("EncryptAndDecryptBytes_RSA1_5_A256GCM: " + token);
+
+            var payload = Jose.JWT.DecodeBytes(token, testSuiteUtils.PrivKey(), "RSA1_5", "A256GCM");
+
+            Assert.Equal(BinaryPayload, payload);
+        }
+
         [Fact]
         public void DecodeHS256()
         {
@@ -4667,6 +4699,19 @@ public void DecodeSignedTokenValidationSuccess()
             Assert.Equal(@"{""hello"": ""world""}", json);
         }
 
+        [Fact]
+        public void DecodeSignedTokenValidationSuccess_StringSDK()
+        {
+            // given
+            string token = "eyJhbGciOiJSUzI1NiIsImN0eSI6InRleHRcL3BsYWluIn0.eyJoZWxsbyI6ICJ3b3JsZCJ9.NL_dfVpZkhNn4bZpCyMq5TmnXbT4yiyecuB6Kax_lV8Yq2dG8wLfea-T4UKnrjLOwxlbwLwuKzffWcnWv3LVAWfeBxhGTa0c4_0TX_wzLnsgLuU6s9M2GBkAIuSMHY6UTFumJlEeRBeiqZNrlqvmAzQ9ppJHfWWkW4stcgLCLMAZbTqvRSppC1SMxnvPXnZSWn_Fk_q3oGKWw6Nf0-j-aOhK0S0Lcr0PV69ZE4xBYM9PUS1MpMe2zF5J3Tqlc1VBcJ94fjDj1F7y8twmMT3H1PI9RozO-21R0SiXZ_a93fxhE_l_dj5drgOek7jUN9uBDjkXUwJPAyp9YPehrjyLdw";
+
+            // when
+            string json = Jose.JWT.Decode(token, testSuiteUtils.PubKey(), "RS256");
+
+            // then
+            Assert.Equal(@"{""hello"": ""world""}", json);
+        }
+
         [Fact]
         public void DecodeSignedTokenValidationFailure()
         {
@@ -4675,7 +4720,18 @@ public void DecodeSignedTokenValidationFailure()
 
             // then
             Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PubKey(), JwsAlgorithm.RS512));
-	    Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PubKey(), JweAlgorithm.RSA_OAEP_256, JweEncryption.A192GCM));            
+	        Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PubKey(), JweAlgorithm.RSA_OAEP_256, JweEncryption.A192GCM));            
+        }
+
+        [Fact]
+        public void DecodeSignedTokenValidationFailure_StringSDK()
+        {
+            // given
+            string token = "eyJhbGciOiJSUzI1NiIsImN0eSI6InRleHRcL3BsYWluIn0.eyJoZWxsbyI6ICJ3b3JsZCJ9.NL_dfVpZkhNn4bZpCyMq5TmnXbT4yiyecuB6Kax_lV8Yq2dG8wLfea-T4UKnrjLOwxlbwLwuKzffWcnWv3LVAWfeBxhGTa0c4_0TX_wzLnsgLuU6s9M2GBkAIuSMHY6UTFumJlEeRBeiqZNrlqvmAzQ9ppJHfWWkW4stcgLCLMAZbTqvRSppC1SMxnvPXnZSWn_Fk_q3oGKWw6Nf0-j-aOhK0S0Lcr0PV69ZE4xBYM9PUS1MpMe2zF5J3Tqlc1VBcJ94fjDj1F7y8twmMT3H1PI9RozO-21R0SiXZ_a93fxhE_l_dj5drgOek7jUN9uBDjkXUwJPAyp9YPehrjyLdw";
+
+            // then
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PubKey(), "RS512"));
+	        Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PubKey(), "RSA-OAEP-256", "A192GCM"));            
         }
 
         [Fact]
@@ -4692,6 +4748,20 @@ public void DecodeEncryptedTokenValidationSuccess()
             Assert.Equal(json, decodedToken);
         }
 
+        [Fact]
+        public void DecodeEncryptedTokenValidationSuccess_StringSDK()
+        {
+            // given
+            string json = @"{""hello"": ""world""}";
+            string token = Jose.JWT.Encode(json, testSuiteUtils.PubKey(), "RSA-OAEP-256", "A192GCM");
+
+            // when
+            string decodedToken = Jose.JWT.Decode(token, testSuiteUtils.PrivKey(), "RSA-OAEP-256", "A192GCM");
+
+            // then
+            Assert.Equal(json, decodedToken);
+        }
+
         [Fact]
         public void DecodeEncryptedTokenValidationFailure()
         {
@@ -4705,6 +4775,19 @@ public void DecodeEncryptedTokenValidationFailure()
             Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PrivKey(), JwsAlgorithm.RS256));
         }
 
+        [Fact]
+        public void DecodeEncryptedTokenValidationFailure_StringSDK()
+        {
+            // given
+            string json = @"{""hello"": ""world""}";
+            string token = Jose.JWT.Encode(json, testSuiteUtils.PubKey(), "RSA-OAEP-256", "A192GCM");
+
+            // then
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PrivKey(), "RSA-OAEP", "A192GCM"));
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PrivKey(), "RSA-OAEP-256", "A128CBC-HS256"));
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decode(token, testSuiteUtils.PrivKey(), "RS256"));
+        }
+
         [Fact]
         public void DecodeAndMapSignedTokenValidationSuccess()
         {
@@ -4718,6 +4801,19 @@ public void DecodeAndMapSignedTokenValidationSuccess()
             Assert.Equal(new Dictionary<string, object> { { "hello", "world" } }, test);
         }
 
+        [Fact]
+        public void DecodeAndMapSignedTokenValidationSuccess_StringSDK()
+        {
+            // given
+            string token = "eyJhbGciOiJSUzI1NiIsImN0eSI6InRleHRcL3BsYWluIn0.eyJoZWxsbyI6ICJ3b3JsZCJ9.NL_dfVpZkhNn4bZpCyMq5TmnXbT4yiyecuB6Kax_lV8Yq2dG8wLfea-T4UKnrjLOwxlbwLwuKzffWcnWv3LVAWfeBxhGTa0c4_0TX_wzLnsgLuU6s9M2GBkAIuSMHY6UTFumJlEeRBeiqZNrlqvmAzQ9ppJHfWWkW4stcgLCLMAZbTqvRSppC1SMxnvPXnZSWn_Fk_q3oGKWw6Nf0-j-aOhK0S0Lcr0PV69ZE4xBYM9PUS1MpMe2zF5J3Tqlc1VBcJ94fjDj1F7y8twmMT3H1PI9RozO-21R0SiXZ_a93fxhE_l_dj5drgOek7jUN9uBDjkXUwJPAyp9YPehrjyLdw";
+
+            // when
+            var test = Jose.JWT.Decode<IDictionary<string, object>>(token, testSuiteUtils.PubKey(), "RS256");
+
+            // then
+            Assert.Equal(new Dictionary<string, object> { { "hello", "world" } }, test);
+        }
+
         [Fact]
         public void DecodeAndMapEncryptedTokenValidationSuccess()
         {
@@ -4732,6 +4828,20 @@ public void DecodeAndMapEncryptedTokenValidationSuccess()
             Assert.Equal(new Dictionary<string, object> { { "hello", "world" } }, test);
         }
 
+        [Fact]
+        public void DecodeAndMapEncryptedTokenValidationSuccess_StringSDK()
+        {
+            // given
+            string json = @"{""hello"": ""world""}";
+            string token = Jose.JWT.Encode(json, testSuiteUtils.PrivKey(), "RSA-OAEP-256", "A192GCM");
+
+            // when
+            var test = Jose.JWT.Decode<IDictionary<string, object>>(token, testSuiteUtils.PrivKey(), "RSA-OAEP-256", "A192GCM");
+
+            // then
+            Assert.Equal(new Dictionary<string, object> { { "hello", "world" } }, test);
+        }
+
         [Fact]
         public void UnknownJwsAlg()
         {
@@ -4784,6 +4894,30 @@ public void Verify()
             Assert.Equal(@"{""hello"": ""world""}", json);
         }
 
+        [Fact]
+        public void VerifyExplicitAlg()
+        {
+            //given
+            const string token = "eyJhbGciOiJSUzI1NiIsImN0eSI6InRleHRcL3BsYWluIn0.eyJoZWxsbyI6ICJ3b3JsZCJ9.NL_dfVpZkhNn4bZpCyMq5TmnXbT4yiyecuB6Kax_lV8Yq2dG8wLfea-T4UKnrjLOwxlbwLwuKzffWcnWv3LVAWfeBxhGTa0c4_0TX_wzLnsgLuU6s9M2GBkAIuSMHY6UTFumJlEeRBeiqZNrlqvmAzQ9ppJHfWWkW4stcgLCLMAZbTqvRSppC1SMxnvPXnZSWn_Fk_q3oGKWw6Nf0-j-aOhK0S0Lcr0PV69ZE4xBYM9PUS1MpMe2zF5J3Tqlc1VBcJ94fjDj1F7y8twmMT3H1PI9RozO-21R0SiXZ_a93fxhE_l_dj5drgOek7jUN9uBDjkXUwJPAyp9YPehrjyLdw";
+
+            //then
+            string json = Jose.JWT.Verify(token, testSuiteUtils.PubKey(), JwsAlgorithm.RS256);
+            
+            Assert.Equal(@"{""hello"": ""world""}", json);
+        }
+
+        [Fact]
+        public void VerifyExplicitAlg_StringSDK()
+        {
+            //given
+            const string token = "eyJhbGciOiJSUzI1NiIsImN0eSI6InRleHRcL3BsYWluIn0.eyJoZWxsbyI6ICJ3b3JsZCJ9.NL_dfVpZkhNn4bZpCyMq5TmnXbT4yiyecuB6Kax_lV8Yq2dG8wLfea-T4UKnrjLOwxlbwLwuKzffWcnWv3LVAWfeBxhGTa0c4_0TX_wzLnsgLuU6s9M2GBkAIuSMHY6UTFumJlEeRBeiqZNrlqvmAzQ9ppJHfWWkW4stcgLCLMAZbTqvRSppC1SMxnvPXnZSWn_Fk_q3oGKWw6Nf0-j-aOhK0S0Lcr0PV69ZE4xBYM9PUS1MpMe2zF5J3Tqlc1VBcJ94fjDj1F7y8twmMT3H1PI9RozO-21R0SiXZ_a93fxhE_l_dj5drgOek7jUN9uBDjkXUwJPAyp9YPehrjyLdw";
+
+            //then
+            string json = Jose.JWT.Verify(token, testSuiteUtils.PubKey(), "RS256");
+            
+            Assert.Equal(@"{""hello"": ""world""}", json);
+        }
+
         [Fact]
         public void VerifyBytes()
         {
@@ -4810,6 +4944,19 @@ public void VerifyBytesExplicitAlg()
             Assert.Equal(BinaryPayload, payload);
         }
 
+        [Fact]
+        public void VerifyBytesExplicitAlg_StringSDK()
+        {
+            //given
+            const string token = "eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.AAECAwQFBgcICQoLDA0ODxAREhMUFRYXGBkaGxwdHh8gISIjJCUmJygpKissLS4vMDEyMzQ1Njc4OTo7PD0-P0BBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWltcXV5fYGFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6e3x9fn-AgYKDhIWGh4iJiouMjY6PkJGSk5SVlpeYmZqbnJ2en6ChoqOkpaanqKmqq6ytrq-wsbKztLW2t7i5uru8vb6_wMHCw8TFxsfIycrLzM3Oz9DR0tPU1dbX2Nna29zd3t_g4eLj5OXm5-jp6uvs7e7v8PHy8_T19vf4-fr7_P3-_w.3_-H4HJiNi8--Ss-VAMM1Dg0JtTGEXNvMo1LAHEnQ7bZpQiblqAu5tt-G9p8KFnSlSYOG6l64pIqmqu5p5RvuQ";
+
+            // when
+            var payload = Jose.JWT.VerifyBytes(token, Encoding.UTF8.GetBytes(key), "HS512");
+
+            // then
+            Assert.Equal(BinaryPayload, payload);
+        }
+
         [Fact]
         public void VerifyUnknownAlg()
         {
@@ -4878,6 +5025,58 @@ public void DecryptBytes()
             Assert.Equal(BinaryPayload, payload);
         }
 
+        [Fact]
+        public void DecryptBytesExplicitAlg()
+        {
+            //given
+            string token = Jose.JWT.EncodeBytes(BinaryPayload, testSuiteUtils.PubKey(), JweAlgorithm.RSA1_5, JweEncryption.A256GCM);
+
+            //when
+            var payload = Jose.JWT.DecryptBytes(token, testSuiteUtils.PrivKey(), JweAlgorithm.RSA1_5);
+
+            //then
+            Assert.Equal(BinaryPayload, payload);
+        }
+
+        [Fact]
+        public void DecryptBytesExplicitAlg_StringSDk()
+        {
+            //given
+            string token = Jose.JWT.EncodeBytes(BinaryPayload, testSuiteUtils.PubKey(), "RSA1_5", "A256GCM");
+
+            //when
+            var payload = Jose.JWT.DecryptBytes(token, testSuiteUtils.PrivKey(), "RSA1_5");
+
+            //then
+            Assert.Equal(BinaryPayload, payload);
+        }
+
+        [Fact]
+        public void DecryptBytesExplicitEnc()
+        {
+            //given
+            string token = Jose.JWT.EncodeBytes(BinaryPayload, testSuiteUtils.PubKey(), JweAlgorithm.RSA1_5, JweEncryption.A256GCM);
+
+            //when
+            var payload = Jose.JWT.DecryptBytes(token, testSuiteUtils.PrivKey(), JweAlgorithm.RSA1_5, JweEncryption.A256GCM);
+
+            //then
+            Assert.Equal(BinaryPayload, payload);
+        }
+
+        [Fact]
+        public void DecryptBytesExplicitEnc_StringSDK()
+        {
+            //given
+            string token = Jose.JWT.EncodeBytes(BinaryPayload, testSuiteUtils.PubKey(), "RSA1_5", "A256GCM");
+
+            //when
+            var payload = Jose.JWT.DecryptBytes(token, testSuiteUtils.PrivKey(), "RSA1_5", "A256GCM");
+
+            //then
+            Assert.Equal(BinaryPayload, payload);
+        }
+
         [Fact]
         public void DecryptCorrectAlgEnc()
         {
@@ -4891,6 +5090,19 @@ public void DecryptCorrectAlgEnc()
             Assert.Equal(@"{""exp"":1392548520,""sub"":""alice"",""nbf"":1392547920,""aud"":[""https:\/\/app-one.com"",""https:\/\/app-two.com""],""iss"":""https:\/\/openid.net"",""jti"":""0e659a67-1cd3-438b-8888-217e72951ec9"",""iat"":1392547920}", json);
         }
 
+        [Fact]
+        public void DecryptCorrectAlgEnc_StringSDK()
+        {
+            //given
+            const string token = "eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4R0NNIn0..yVi-LdQQngN0C5WS.1McwSmhZzAtmmLp9y-OdnJwaJFo1nj_4ashmzl2LhubGf0Jl1OTEVJzsHZb7bkup7cGTkuxh6Vfv10ljHsjWf_URXoxP3stQqQeViVcuPV0y2Q_WHYzTNGZpmHGe-hM6gjDhyZyvu3yeXGFSvfPQmp9pWVOgDjI4RC0MQ83rzzn-rRdnZkznWjbmOPxwPrR72Qng0BISsEwbkPn4oO8-vlHkVmPpuDTaYzCT2ZR5K9JnIU8d8QdxEAGb7-s8GEJ1yqtd_w._umbK59DAKA3O89h15VoKQ";
+
+            //when
+            string json = Jose.JWT.Decode(token, aes128Key, "dir", "A128GCM");
+
+            //then
+            Assert.Equal(@"{""exp"":1392548520,""sub"":""alice"",""nbf"":1392547920,""aud"":[""https:\/\/app-one.com"",""https:\/\/app-two.com""],""iss"":""https:\/\/openid.net"",""jti"":""0e659a67-1cd3-438b-8888-217e72951ec9"",""iat"":1392547920}", json);
+        }
+
         [Fact]
         public void DecryptUnknownAlg()
         {
@@ -4921,6 +5133,16 @@ public void DecryptWrongAlg()
             Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decrypt(token, aes192Key, JweAlgorithm.RSA_OAEP));
         }
 
+        [Fact]
+        public void DecryptWrongAlg_StringSDK()
+        {
+            //given
+            const string token = "eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4R0NNIn0..yVi-LdQQngN0C5WS.1McwSmhZzAtmmLp9y-OdnJwaJFo1nj_4ashmzl2LhubGf0Jl1OTEVJzsHZb7bkup7cGTkuxh6Vfv10ljHsjWf_URXoxP3stQqQeViVcuPV0y2Q_WHYzTNGZpmHGe-hM6gjDhyZyvu3yeXGFSvfPQmp9pWVOgDjI4RC0MQ83rzzn-rRdnZkznWjbmOPxwPrR72Qng0BISsEwbkPn4oO8-vlHkVmPpuDTaYzCT2ZR5K9JnIU8d8QdxEAGb7-s8GEJ1yqtd_w._umbK59DAKA3O89h15VoKQ";
+
+            //then            
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decrypt(token, aes192Key, "RSA-OAEP"));
+        }
+
         [Fact]
         public void DecryptWrongEnc()
         {
@@ -4930,6 +5152,15 @@ public void DecryptWrongEnc()
             //then            
             Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decrypt(token, aes128Key, JweAlgorithm.DIR, JweEncryption.A192GCM));
         }
+        [Fact]
+        public void DecryptWrongEnc_StringSDK()
+        {
+            //given
+            const string token = "eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4R0NNIn0..yVi-LdQQngN0C5WS.1McwSmhZzAtmmLp9y-OdnJwaJFo1nj_4ashmzl2LhubGf0Jl1OTEVJzsHZb7bkup7cGTkuxh6Vfv10ljHsjWf_URXoxP3stQqQeViVcuPV0y2Q_WHYzTNGZpmHGe-hM6gjDhyZyvu3yeXGFSvfPQmp9pWVOgDjI4RC0MQ83rzzn-rRdnZkznWjbmOPxwPrR72Qng0BISsEwbkPn4oO8-vlHkVmPpuDTaYzCT2ZR5K9JnIU8d8QdxEAGb7-s8GEJ1yqtd_w._umbK59DAKA3O89h15VoKQ";
+
+            //then            
+            Assert.Throws<InvalidAlgorithmException>(() => Jose.JWT.Decrypt(token, aes128Key, "dir", "A192GCM"));
+        }
 
         [Fact]
         public void DecryptSignedToken()