test(jans-auth-server): corrected assertions in tests Issue#804 (#895)

* fix jans-auth-client build tests * fix 2 jans-auth-client build tests * fix 3 jans-auth-client build tests * fix 4 jans-auth-client build tests
JanssenProject · Feb 24, 2022 · 370ac91 · 370ac91
1 parent 500a773
commit 370ac91
Show file tree

Hide file tree

Showing 29 changed files with 360 additions and 171 deletions.
diff --git a/jans-auth-server/client/src/test/java/io/jans/as/client/ciba/RegistrationTest.java b/jans-auth-server/client/src/test/java/io/jans/as/client/ciba/RegistrationTest.java
@@ -586,7 +586,7 @@ public void backchannelTokenDeliveryModePush2(final String sectorIdentifierUri,
 
         showClient(clientReadClient);
         assertRegisterResponseOk(clientReadResponse, 200, true);
-        assertRegisterResponseClaimsNotNull(clientReadResponse, APPLICATION_TYPE, SECTOR_IDENTIFIER_URI, SUBJECT_TYPE, ID_TOKEN_SIGNED_RESPONSE_ALG, JWKS, CLIENT_NAME, SCOPE);
+        assertRegisterResponseClaimsNotNull(clientReadResponse, APPLICATION_TYPE, SECTOR_IDENTIFIER_URI, SUBJECT_TYPE, ID_TOKEN_SIGNED_RESPONSE_ALG, CLIENT_NAME, SCOPE);
         assertRegisterResponseClaimsAreContained(clientReadResponse, SECTOR_IDENTIFIER_URI);
         assertRegisterResponseClaimsBackChannel(clientReadResponse, AsymmetricSignatureAlgorithm.RS256, BackchannelTokenDeliveryMode.PUSH, true);
     }

diff --git a/jans-auth-server/client/src/test/java/io/jans/as/client/client/Asserter.java b/jans-auth-server/client/src/test/java/io/jans/as/client/client/Asserter.java
@@ -118,6 +118,21 @@ public static void assertTokenResponseOk(TokenResponse response, boolean checkRe
         }
     }
 
+    public static void assertTokenResponseOk(TokenResponse response, boolean checkRefreshToken, boolean checkIdToken) {
+        assertNotNull(response);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getAccessToken(), "The access token is null");
+        assertNotNull(response.getExpiresIn(), "The expires in value is null");
+        assertNotNull(response.getTokenType(), "The token type is null");
+        if (checkIdToken) {
+            assertNotNull(response.getIdToken(), "The id token is null");
+        }
+        if (checkRefreshToken) {
+            assertNotNull(response.getRefreshToken(), "The refresh token is null");
+        }
+    }
+
     public static void assertTokenResponseFail(TokenResponse tokenResponse, int status, TokenErrorResponseType errorResponseType) {
         assertEquals(tokenResponse.getStatus(), status, "Unexpected HTTP status resposne: " + tokenResponse.getEntity());
         assertNotNull(tokenResponse.getEntity(), "The entity is null");
@@ -139,6 +154,29 @@ public static void assertAuthorizationResponse(AuthorizationResponse response, b
         }
     }
 
+    public static void assertAuthorizationResponse(AuthorizationResponse authorizationResponse, List<ResponseType> responseTypes, boolean checkState, boolean checkScope) {
+        assertNotNull(authorizationResponse);
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        if (checkScope) {
+            assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        }
+
+        if (checkState) {
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+        }
+        if (responseTypes.contains(ResponseType.CODE)) {
+            assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        }
+        if (responseTypes.contains(ResponseType.TOKEN)) {
+            assertNotNull(authorizationResponse.getAccessToken(), "The access_token is null");
+            assertNotNull(authorizationResponse.getTokenType());
+            assertNotNull(authorizationResponse.getExpiresIn());
+        }
+        if (responseTypes.contains(ResponseType.ID_TOKEN)) {
+            assertNotNull(authorizationResponse.getIdToken(), "The id_token is null");
+        }
+    }
+
     public static void assertAuthorizationResponse(AuthorizationResponse authorizationResponse, List<ResponseType> responseTypes, boolean checkState) {
         assertNotNull(authorizationResponse);
         assertNotNull(authorizationResponse.getLocation(), "The location is null");
@@ -218,6 +256,11 @@ public static void assertUserInfoBasicResponseOk(UserInfoResponse userInfoRespon
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
     }
 
+    public static void assertUserInfoBasicMinimumResponseOk(UserInfoResponse userInfoResponse, int status) {
+        assertEquals(userInfoResponse.getStatus(), status, "Unexpected response code: " + userInfoResponse.getEntity());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+
     public static void assertUserInfoAddressNotNull(UserInfoResponse userInfoResponse) {
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
@@ -229,6 +272,15 @@ public static void assertUserInfoAddressNotNull(UserInfoResponse userInfoRespons
                 JwtClaimName.ADDRESS_REGION)));
     }
 
+    public static void assertUserInfoAddressMinimumNotNull(UserInfoResponse userInfoResponse) {
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
     public static void assertUserInfoPersonalDataNotNull(UserInfoResponse userInfoResponse) {
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
@@ -239,6 +291,18 @@ public static void assertUserInfoPersonalDataNotNull(UserInfoResponse userInfoRe
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
     }
 
+    public static void assertUserInfoPersonalDataNotNull(UserInfoResponse userInfoResponse, boolean checkEmail) {
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        if (checkEmail) {
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        }
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
     public static void assertJweStandarClaimsNotNull(Jwe jwe, boolean checkAccessTokenHash) {
         assertNotNull(jwe);
         assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
@@ -271,6 +335,24 @@ public static void assertJwtStandarClaimsNotNull(Jwt jwt, boolean checkAccessTok
         }
     }
 
+    public static void assertJwtStandarClaimsNotNull(Jwt jwt, boolean checkAccessTokenHash, boolean checkAuthenticationTime) {
+        assertNotNull(jwt);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        if(checkAuthenticationTime){
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        }
+
+        if (checkAccessTokenHash) {
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        }
+    }
+
     public static void assertJwtAddressClaimsNotNull(Jwt jwt) {
         assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
         assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));

diff --git a/...r/client/src/test/java/io/jans/as/client/interop/CanProvideEncryptedUserInfoResponse.java b/...r/client/src/test/java/io/jans/as/client/interop/CanProvideEncryptedUserInfoResponse.java
@@ -97,7 +97,7 @@ public void canProvideEncryptedUserInfoResponseAlgA128KWEncA128GCM(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -153,7 +153,7 @@ public void canProvideEncryptedUserInfoResponseAlgA256KWEncA256GCM(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",

diff --git a/...rver/client/src/test/java/io/jans/as/client/interop/CanProvideSignedUserInfoResponse.java b/...rver/client/src/test/java/io/jans/as/client/interop/CanProvideSignedUserInfoResponse.java
@@ -92,7 +92,7 @@ public void canProvideSignedUserInfoResponseHS256(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -147,7 +147,7 @@ public void canProvideSignedUserInfoResponseHS384(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -202,7 +202,7 @@ public void canProvideSignedUserInfoResponseHS512(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -256,7 +256,7 @@ public void canProvideSignedUserInfoResponseRS256(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -310,7 +310,7 @@ public void canProvideSignedUserInfoResponseRS384(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -364,7 +364,7 @@ public void canProvideSignedUserInfoResponseRS512(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -418,7 +418,7 @@ public void canProvideSignedUserInfoResponseES256(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -472,7 +472,7 @@ public void canProvideSignedUserInfoResponseES384(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 
     @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
@@ -526,6 +526,6 @@ public void canProvideSignedUserInfoResponseES512(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 }
diff --git a/...lient/src/test/java/io/jans/as/client/interop/CanRequestAndUseSignedUserInfoResponse.java b/...lient/src/test/java/io/jans/as/client/interop/CanRequestAndUseSignedUserInfoResponse.java
@@ -92,6 +92,6 @@ public void canRequestAndUseSignedUserInfoResponse(
         showClient(userInfoClient);
         assertUserInfoBasicResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
-        assertUserInfoAddressNotNull(userInfoResponse);
+        assertUserInfoAddressMinimumNotNull(userInfoResponse);
     }
 }
diff --git a/...h-server/client/src/test/java/io/jans/as/client/interop/RejectsSecondUseOfAccessCode.java b/...h-server/client/src/test/java/io/jans/as/client/interop/RejectsSecondUseOfAccessCode.java
@@ -105,8 +105,8 @@ public void rejectsSecondUseOfAccessCode(
             UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
 
             showClient(userInfoClient);
-            assertUserInfoBasicResponseOk(userInfoResponse, 200);
-        assertUserInfoPersonalDataNotNull(userInfoResponse);
+            assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
+            assertUserInfoPersonalDataNotNull(userInfoResponse);
         }
 
         // 5. Request access token using the same authorization code one more time. This call must fail.

diff --git a/.../test/java/io/jans/as/client/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java b/.../test/java/io/jans/as/client/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java
@@ -114,7 +114,7 @@ public void requestingUserInfoClaimsWithOpenIdRequestObject(
         UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
 
         showClient(userInfoClient);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));

diff --git a/...ient/src/test/java/io/jans/as/client/interop/RequestingUserInfoClaimsWithScopeValues.java b/...ient/src/test/java/io/jans/as/client/interop/RequestingUserInfoClaimsWithScopeValues.java
@@ -85,7 +85,7 @@ public void requestingUserInfoClaimsWithScopeValues(
         UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
 
         showClient(userInfoClient);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));

diff --git a/...va/io/jans/as/client/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java b/...va/io/jans/as/client/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java
@@ -105,7 +105,7 @@ public void secondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken(
             UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
 
             showClient(userInfoClient);
-            assertUserInfoBasicResponseOk(userInfoResponse, 200);
+            assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
             assertUserInfoPersonalDataNotNull(userInfoResponse);
         }
 

diff --git a/...r/client/src/test/java/io/jans/as/client/interop/SupportScopeRequestingProfileClaims.java b/...r/client/src/test/java/io/jans/as/client/interop/SupportScopeRequestingProfileClaims.java
@@ -99,8 +99,8 @@ public void supportScopeRequestingProfileClaims(
 
         // 4. Request user info
         UserInfoResponse userInfoResponse = requestUserInfo(accessToken);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
-        assertUserInfoPersonalDataNotNull(userInfoResponse);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
+        assertUserInfoPersonalDataNotNull(userInfoResponse, false);
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
         assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));

diff --git a/.../test/java/io/jans/as/client/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java b/.../test/java/io/jans/as/client/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java
@@ -92,7 +92,7 @@ public void userInfoEndpointAccessWithFormEncodedBodyMethod(
         UserInfoResponse userInfoResponse = userInfoClient.exec();
 
         showClient(userInfoClient);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
     }
 }
diff --git a/...lient/src/test/java/io/jans/as/client/interop/UserInfoEndpointAccessWithHeaderMethod.java b/...lient/src/test/java/io/jans/as/client/interop/UserInfoEndpointAccessWithHeaderMethod.java
@@ -85,7 +85,7 @@ public void userInfoEndpointAccessWithHeaderMethod(
         UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
 
         showClient(userInfoClient);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
         assertUserInfoPersonalDataNotNull(userInfoResponse);
     }
 }
diff --git a/jans-auth-server/client/src/test/java/io/jans/as/client/ws/rs/AddressClaimsTest.java b/jans-auth-server/client/src/test/java/io/jans/as/client/ws/rs/AddressClaimsTest.java
@@ -142,7 +142,7 @@ public void authorizationRequestDefault(
         UserInfoResponse userInfoResponse = userInfoClient.exec();
 
         showClient(userInfoClient);
-        assertUserInfoBasicResponseOk(userInfoResponse, 200);
+        assertUserInfoBasicMinimumResponseOk(userInfoResponse, 200);
         assertUserInfoAddressNotNull(userInfoResponse);
     }