def decode(self):
# access token
header, payload, *_ = decode_token(self.ACCESS_TOKEN)
assert header.get("typ") == "JWT"
assert payload.get("uid") == self.uid
# id token
id_header, id_payload, *_ = decode_token(self.ID_TOKEN)
assert id_header.get("typ") == "JWT"
assert id_payload.get("email") == self.email
assert id_payload.get("user_id") == self.uid
def decode(self):
# access token
header, payload, *_ = decode_token(self.ACCESS_TOKEN)
assert not payload.get("cognito:groups")
# scope token
scope_header, scope_payload, *_ = decode_token(self.SCOPE_ACCESS_TOKEN)
assert self.scope in scope_payload.get("cognito:groups")
# id token
id_header, id_payload, *_ = decode_token(self.ID_TOKEN)
assert id_payload.get("email") == self.user
def decode(self):
# access token
header, payload, *_ = decode_token(self.ACCESS_TOKEN)
assert header.get("typ") == "JWT"
assert [self.scope[0]] == payload.get("permissions")
# scope access token
scope_header, scope_payload, *_ = decode_token(self.SCOPE_ACCESS_TOKEN)
assert scope_header.get("typ") == "JWT"
assert set(self.scope) == set(scope_payload.get("permissions"))
# id token
id_header, id_payload, *_ = decode_token(self.ID_TOKEN)
assert id_header.get("typ") == "JWT"
assert id_payload.get("email") == self.username