blob: b527dce13f444d328471e1ae37c3ed5eab2af4ca (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
|
(use-modules (webid-oidc dpop-proof)
(webid-oidc jti)
(webid-oidc jwk)
(webid-oidc testing)
(webid-oidc errors)
(web uri)
(srfi srfi-19)
(web response))
(with-test-environment
"dpop-proof-replay"
(lambda ()
(define jwk (generate-key #:n-size 2048))
(define cnf (jkt jwk))
(define blacklist (make-jti-list))
(define proof
(issue-dpop-proof
jwk
#:alg 'RS256
#:htm 'GET
#:htu (string->uri "https://example.com/res#frag")
#:iat (time-utc->date (make-time time-utc 0 0))))
(define (decode)
(dpop-proof-decode (time-utc->date (make-time time-utc 0 10))
blacklist
'GET
(string->uri "https://example.com/res?query")
proof
cnf))
(define decoded-once (decode))
(with-exception-handler
(lambda (error)
(unless ((record-predicate &jti-found)
((record-accessor &cannot-decode-dpop-proof 'cause) error))
(raise-exception error)))
(lambda ()
(decode)
(exit 2))
#:unwind? #t
#:unwind-for-type &cannot-decode-dpop-proof)))
|