From 40db492098aa5318e2bd3163fe5f66ccb0cc1a08 Mon Sep 17 00:00:00 2001 From: Alex Butcher Date: Thu, 9 Jul 2026 15:18:18 +0100 Subject: [PATCH] Skip FromHeader RSA tests when FIPS140-3 is enabled Bring in to line the FromHeader RSA tests to the sigAlg tests by skipping when FIPS140-3 with Semeru is enabled --- .../security/mp/jwt11/fat/MPJwtConfigUsingBuilderTests.java | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/dev/com.ibm.ws.security.mp.jwt.1.1_fat.commonTest/fat/src/com/ibm/ws/security/mp/jwt11/fat/MPJwtConfigUsingBuilderTests.java b/dev/com.ibm.ws.security.mp.jwt.1.1_fat.commonTest/fat/src/com/ibm/ws/security/mp/jwt11/fat/MPJwtConfigUsingBuilderTests.java index 18bccfe2afa..cf2b3868563 100644 --- a/dev/com.ibm.ws.security.mp.jwt.1.1_fat.commonTest/fat/src/com/ibm/ws/security/mp/jwt11/fat/MPJwtConfigUsingBuilderTests.java +++ b/dev/com.ibm.ws.security.mp.jwt.1.1_fat.commonTest/fat/src/com/ibm/ws/security/mp/jwt11/fat/MPJwtConfigUsingBuilderTests.java @@ -1466,6 +1466,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyHS512_tokenWithMatc * @throws Exception */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyRS256_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER_allow_RS256.xml"); @@ -1479,6 +1480,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyRS256_tokenWithMatc * @throws Exception */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyRS384_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER_allow_RS384.xml"); @@ -1492,6 +1494,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyRS384_tokenWithMatc * @throws Exception */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_AllowOnlyRS512_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER_allow_RS512.xml"); @@ -1556,6 +1559,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowAllHSAlgs_tokenWithMatc * @throws Exception */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_AllowAllRSAlgs_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER_allow_RSAlgs.xml"); @@ -1583,6 +1587,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowAllESAlgs_tokenWithMatc */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) @Mode(TestMode.LITE) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_AllowMixedAlgs_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER_allow_HS256RS384ES512.xml"); @@ -1595,6 +1600,7 @@ public void MPJwtConfigUsingBuilderTests_FromHeader_AllowMixedAlgs_tokenWithMatc * @throws Exception */ @ExpectedFFDC({ "org.jose4j.jwt.consumer.InvalidJwtSignatureException" }) + @SkipJavaSemeruWithFipsEnabledRule @Test public void MPJwtConfigUsingBuilderTests_FromHeader_tokenWithMatchAndMisMatchSigAlgs() throws Exception { resourceServer.reconfigureServerUsingExpandedConfiguration(_testName, "rs_server_sigAlg_FROM_HEADER.xml");