def testSkipClientIdNotAllowedForIdTokens(self): """Verify that SKIP_CLIENT_ID_CHECKS does not work for ID tokens.""" parsed_token = self.GetSampleBody() result = users_id_token._verify_parsed_token( parsed_token, users_id_token._ISSUERS, self._SAMPLE_AUDIENCES, users_id_token.SKIP_CLIENT_ID_CHECK) self.assertEqual(False, result)
def testEmptyAudience(self): parsed_token = self.GetSampleBody() parsed_token.update({'aud': 'invalid.audience'}) result = users_id_token._verify_parsed_token( parsed_token, users_id_token._ISSUERS, [], self._SAMPLE_ALLOWED_CLIENT_IDS) self.assertEqual(False, result)
def CheckToken(self, field_update_dict, valid): """Update the sample token and check if it's valid or invalid. This updates the body of our sample token with the fields in field_update_dict, then passes it to _verify_parsed_token. The result must match the "valid" parameter. Args: field_update_dict: A dict of fields to update in the sample body. valid: A boolean, compared against the result from _verify_parsed_token. """ parsed_token = self.GetSampleBody() parsed_token.update(field_update_dict) result = users_id_token._verify_parsed_token( parsed_token, users_id_token._ISSUERS, self._SAMPLE_AUDIENCES, self._SAMPLE_ALLOWED_CLIENT_IDS) self.assertEqual(valid, result)