def test_token_scope(self):
token = self.get_token()
auth = JSONWebTokenAuthentication()
with self.assertRaises(AuthenticationFailed) as error:
auth.validate_claims(token)
self.assertIn('Invalid JWT scope', str(error.exception))
def test_token_too_old(self):
token = self.get_token()
token['iat'] = token['nbf']
auth = JSONWebTokenAuthentication()
with self.assertRaises(AuthenticationFailed) as error:
auth.validate_claims(token)
self.assertIn('JWT too old', str(error.exception))
def test_not_yet_valid_token(self):
token = self.get_token()
token['nbf'] = token['exp']
auth = JSONWebTokenAuthentication()
with self.assertRaises(AuthenticationFailed) as error:
auth.validate_claims(token)
self.assertIn('JWT not yet valid', str(error.exception))
def test_validate_authorized_party_invalid(self):
token = self.get_token()
token['azp'] = 'authorized-party'
auth = JSONWebTokenAuthentication()
with self.assertRaises(AuthenticationFailed) as error:
auth.validate_claims(token)
self.assertIn('Invalid JWT authorized party', str(error.exception))
def test_validate_authorized_party_missing(self):
token = self.get_token()
token['aud'] += ['second-audience']
auth = JSONWebTokenAuthentication()
with self.assertRaises(AuthenticationFailed) as error:
auth.validate_claims(token)
self.assertIn('Missing JWT authorized party', str(error.exception))
def test_token_iat_valid(self):
token = self.get_token()
token['iat'] = token['nbf']
auth = JSONWebTokenAuthentication()
self.assertEqual(auth.validate_claims(token), None)