def test_get_wrapped_key_as_jwe_4(self, monkeypatch, get_jwt): nonce = '12345678901234567890123456789015' jwe_kid = 'jwe-kid-salesforce-serviceX' def mock_false(*args): return ('', '') monkeypatch.setattr(jwe, '_encrypt_dek_with_cek', mock_false) jwe_token = jwe.get_wrapped_key_as_jwe(bytearray('randomdek'.encode()), 'salesforce', jwe_kid, nonce) assert jwe_token == ''
def test_get_wrapped_key_as_jwe_5(self, monkeypatch, get_jwt): nonce = '12345678901234567890123456789014' jwe_kid = 'jwe-kid-salesforce-serviceX' def mock_false(*args): return '' monkeypatch.setattr(jwe, '_create_jwe_token_json', mock_false) jwe_token = jwe.get_wrapped_key_as_jwe(bytearray('randomdek'.encode()), 'salesforce', jwe_kid, nonce) assert jwe_token == ''
def test_get_wrapped_key_as_jwe(self, monkeypatch, get_jwt): nonce = '12345678901234567890123456789012' jwe_kid = 'jwe-kid-salesforce-serviceX' def mock_devmode(*args): if args[0] == 'DEV_MODE': return True else: cert = ('config/backend/distributey_serviceX_key_consumer.crt') return cert monkeypatch.setattr(config, 'get_config_by_keypath', mock_devmode) jwe_token = jwe.get_wrapped_key_as_jwe(bytearray('randomdek'.encode()), 'salesforce', jwe_kid, nonce) assert json.loads(jwe_token)['kid'] == jwe_kid
tenant = str(escape(view_args['tenant'])) jwe_kid = str(escape(view_args['jwe_kid'])) nonce = str(escape(query_args['requestId'])) dek = _get_dek_from_vault(token, tenant, jwe_kid) if not dek: err_msg = 'Failed to retrieve key material from key service.' app.logger.error(err_msg) ret = '{"status": "fail", "output": "%s"}' % err_msg trace_exit(inspect.currentframe(), ret) _http_error(500, ret) try: json_jwe_token = jwe.get_wrapped_key_as_jwe(dek, tenant, jwe_kid, nonce) except Exception as exc: ret = '{"status": "fail", "output": "Oops, internal error."}' app.logger.error('Failed to create JWE: %s', exc) trace_exit(inspect.currentframe(), ret) _http_error(500, ret) if not json_jwe_token: ret = '{"status": "fail", "output": "Oops, internal error."}' app.logger.error('Failed to create JWE for unknown reason.') trace_exit(inspect.currentframe(), ret) _http_error(500, ret) app.logger.info('JWE token with kid "%s" sent.', json.loads(json_jwe_token)['kid']) app.logger.debug('JWE token: %s', json_jwe_token)