Skip to content
Snippets Groups Projects
Select Git revision
  • f792bb743469cce2a061fe3d2bc7848046a8102c
  • noblogs default
  • noblogs-5.7.1
  • upstream
  • noblogs-5.7
  • noblogs-5.6new
  • upstream5.5.1
  • noblogs28dic
  • upstream28dic
  • noblogs-5.5.1
  • noblogs-5.4.2
  • noblogs-5.4_seconda
  • noblogs-5.4
  • noblogs-7c
  • wp5.2.3p3
  • mergedbconf
  • noblogs-5.7.1
  • noblogs.5.7.0p1
  • noblogs-5.7.0
  • noblogs-5.6p3
  • noblogs5.6p2
  • noblogs-5.6p1
  • noblogs-5.6
  • noblogs-5.4.2p1
  • noblogs-5.4.2
  • noblogs-5.4.1
  • noblogs-5.4
  • noblogs-p5.4
  • noblogs-5.3.2p2
  • noblogs-5.3.2p1
  • noblogs-5.3.2
  • noblogs-5.3
  • noblogs-5.2.3p4
  • noblogs-5.2.3p3
  • noblogs-5.2.3p2
  • noblogs-5.2.3p1
36 results

class.two-factor-core.php

Blame
    • protocol_test.go 2.54 KiB 
    package auth

import (
	"testing"

	"github.com/duo-labs/webauthn/protocol"
	"github.com/duo-labs/webauthn/webauthn"
	"github.com/google/go-cmp/cmp"

	"git.autistici.org/id/usermetadb"
)

func TestProtocol_SerializeRequest(t *testing.T) {
	c := &kvCodec{}

	req := &Request{
		Service:  "service",
		Username: "username",
		Password: []byte("password"),
		OTP:      "123456",
		WebAuthnSession: &webauthn.SessionData{
			Challenge: "challenge",
			UserID:    []byte("user_id"),
		},
		// Note: a lot of the following fields are set to something
		// otherwise they will receive values on deserialization.
		WebAuthnResponse: &protocol.ParsedCredentialAssertionData{
			ParsedPublicKeyCredential: protocol.ParsedPublicKeyCredential{
				ParsedCredential: protocol.ParsedCredential{
					ID:   "keyid",
					Type: "ecc256",
				},
			},
			Raw: protocol.CredentialAssertionResponse{
				PublicKeyCredential: protocol.PublicKeyCredential{
					RawID: protocol.URLEncodedBase64{0x9e, 0xe9, 0x65},
				},
				AssertionResponse: protocol.AuthenticatorAssertionResponse{
					AuthenticatorResponse: protocol.AuthenticatorResponse{ClientDataJSON: protocol.URLEncodedBase64{0x9e, 0xe9, 0x65}},
					AuthenticatorData:     protocol.URLEncodedBase64{0x9e, 0xe9, 0x65},
					Signature:             protocol.URLEncodedBase64{0x9e, 0xe9, 0x65},
				},
			},
		},
		DeviceInfo: &usermetadb.DeviceInfo{
			ID:         "ah9hf3kh2",
			RemoteAddr: "1.2.3.4",
			RemoteZone: "cc",
			Browser:    "IE9",
			OS:         "Windows",
			UserAgent:  "MSIE/9.1 foo/12 bar/13",
			Mobile:     true,
		},
	}

	b := c.Encode(req)

	var req2 Request
	err := c.Decode(b, &req2)
	if err != nil {
		t.Fatal("Decode():", err)
	}
	if diffs := cmp.Diff(req, &req2); diffs != "" {
		t.Errorf("decode results differ:\n%s", diffs)
	}
}

func TestProtocol_SerializeResponse(t *testing.T) {
	c := &kvCodec{}

    	resp := &Response{
		Status:     StatusInsufficientCredentials,
		Mechanism:  MechanismWebAuthN,
		TFAMethods: []TFAMethod{TFAMethodU2F},
		WebAuthnData: &protocol.CredentialAssertion{
			protocol.PublicKeyCredentialRequestOptions{
				Challenge:        protocol.Challenge("challenge"),
				Timeout:          100,
				RelyingPartyID:   "rpid",
				UserVerification: "none",
			},
		},
		UserInfo: &UserInfo{
			Email:  "test@example.com",
			Shard:  "42",
			Groups: []string{"group1", "group2", "group3"},
		},
	}

	b := c.Encode(resp)

	var resp2 Response
	err := c.Decode(b, &resp2)
	if err != nil {
		t.Fatal("Decode():", err)
	}
	if diffs := cmp.Diff(resp, &resp2); diffs != "" {
		t.Errorf("decode results differ: %s", diffs)
	}
}