Merge pull request #8 from fmichellonet/features/tokenvalidation_tests

fmichellonet · web-flow · commit 5b02884a0e34 · 2021-03-08T00:18:20.000+01:00
test on default token validation
diff --git a/src/AzureFunctions.Extensions.OpenIDConnect.Tests/TokenValidationShould.cs b/src/AzureFunctions.Extensions.OpenIDConnect.Tests/TokenValidationShould.cs
@@ -0,0 +1,48 @@
+﻿namespace AzureFunctions.Extensions.OpenIDConnect.Tests
+{
+    using Configuration;
+    using FluentAssertions;
+    using Microsoft.Extensions.DependencyInjection;
+    using Microsoft.IdentityModel.Tokens;
+    using NUnit.Framework;
+
+    public class TokenValidationShould
+    {
+        [Test]
+        public void BeSecure_When_Using_Audience_And_Issuer()
+        {
+            // Arrange
+            var collection = ServiceCollectionFixture.MinimalAzFunctionsServices();
+
+            var audience = "my_audience";
+            var issuer = "https://me.secure.com";
+
+            collection.AddOpenIDConnect(builder =>
+            {
+                builder.SetIssuerBaseUrlConfiguration("http://anyurl.com");
+                builder.SetTokenValidation(audience, issuer);
+            });
+
+            var provider = collection.BuildServiceProvider();
+
+            var expected = new TokenValidationParameters
+            {
+                RequireSignedTokens = true,
+                ValidateIssuerSigningKey = true,
+                ValidateLifetime = true,
+
+                ValidateAudience = true,
+                ValidAudience = audience,
+
+                ValidateIssuer = true,
+                ValidIssuer = issuer
+            };
+
+            // Act
+            var tokenValidationParameters = provider.GetService<TokenValidationParameters>();
+            
+            // Assert
+            tokenValidationParameters.Should().BeEquivalentTo(expected);
+        }
+    }
+}
