tests/authorization-endpoint-get-form.scm


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

;; webid-oidc, implementation of the Solid specification
;; Copyright (C) 2020, 2021  Vivien Kraus

;; This program is free software: you can redistribute it and/or modify
;; it under the terms of the GNU Affero General Public License as
;; published by the Free Software Foundation, either version 3 of the
;; License, or (at your option) any later version.

;; This program is distributed in the hope that it will be useful,
;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
;; GNU Affero General Public License for more details.

;; You should have received a copy of the GNU Affero General Public License
;; along with this program.  If not, see <https://www.gnu.org/licenses/>.

(use-modules (webid-oidc authorization-endpoint)
             (webid-oidc jwk)
             (webid-oidc testing)
             ((webid-oidc parameters) #:prefix p:)
             (web uri)
             (web request)
             (web response)
             (srfi srfi-19)
             (web response)
             (ice-9 optargs)
             (ice-9 receive))

(with-test-environment
 "authorization-endpoint-get-form"
 (lambda ()
   (define alg 'RS256)
   (define key (generate-key #:n-size 2048))
   (define subject (string->uri "https://authorization-endpoint-get-form.scm/profile/card#me"))
   (define password "p4ssw0rd")
   (define validity 120)
   (define* (http-get uri #:key (headers '()))
     (exit 2))
   (define endpoint
     (make-authorization-endpoint
      subject password alg key validity
      #:http-get http-get))
   (receive (response response-body)
       (parameterize ((p:current-date 0))
         (endpoint
          (build-request (string->uri
                          (format #f "https://authorization-endpoint-get-form.scm/authorize?client_id=~a&redirect_uri=~a"
                                  (uri-encode "https://authorization-endpoint-get-form.scm/client/card#app")
                                  (uri-encode "https://authorization-endpoint-get-form.scm/client/redirect"))))
          ""))
     (unless (eq? (response-code response) 200)
       (exit 3))
     (unless (response-content-type response)
       (exit 4))
     (unless (eq? (car (response-content-type response))
                  'application/xhtml+xml)
       (exit 5)))))