def testSkipClientIdNotAllowedForIdTokens(self):
"""Verify that SKIP_CLIENT_ID_CHECKS does not work for ID tokens."""
parsed_token = self.GetSampleBody()
result = users_id_token._verify_parsed_token(
parsed_token, users_id_token._ISSUERS, self._SAMPLE_AUDIENCES,
users_id_token.SKIP_CLIENT_ID_CHECK)
self.assertEqual(False, result)
def testEmptyAudience(self):
parsed_token = self.GetSampleBody()
parsed_token.update({'aud': 'invalid.audience'})
result = users_id_token._verify_parsed_token(
parsed_token, users_id_token._ISSUERS, [],
self._SAMPLE_ALLOWED_CLIENT_IDS)
self.assertEqual(False, result)
def CheckToken(self, field_update_dict, valid):
"""Update the sample token and check if it's valid or invalid.
This updates the body of our sample token with the fields in
field_update_dict, then passes it to _verify_parsed_token. The result must
match the "valid" parameter.
Args:
field_update_dict: A dict of fields to update in the sample body.
valid: A boolean, compared against the result from _verify_parsed_token.
"""
parsed_token = self.GetSampleBody()
parsed_token.update(field_update_dict)
result = users_id_token._verify_parsed_token(
parsed_token, users_id_token._ISSUERS, self._SAMPLE_AUDIENCES, self._SAMPLE_ALLOWED_CLIENT_IDS)
self.assertEqual(valid, result)
def testEmptyAudience(self):
parsed_token = self.GetSampleBody()
parsed_token.update({'aud': 'invalid.audience'})
result = users_id_token._verify_parsed_token(
parsed_token, users_id_token._ISSUERS, [], self._SAMPLE_ALLOWED_CLIENT_IDS)
self.assertEqual(False, result)