/**
* @test
*
* @uses \Lcobucci\JWT\Signature::__construct
* @uses \Lcobucci\JWT\Signature::__toString
*
* @covers \Lcobucci\JWT\Signature::verify
*/
public function verifyMustReturnWhatSignerSays()
{
$this->signer->expects($this->any())->method('verify')->willReturn(true);
$signature = new Signature('test');
self::assertTrue($signature->verify($this->signer, 'one', 'key'));
}
/**
* testGetRequestVerify
*
* @return void
*/
public function testGetRequestVerify()
{
$http = null;
$request =& new ClientHttp($http, '/photos?oauth_signature_method=RSA-SHA1&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_timestamp=1196666512&oauth_nonce=13917289812797014437&file=vacaction.jpg&size=original&oauth_signature=jvTp%2FwX1TYtByB1m%2BPbyo0lnCOLIsyGCH7wke8AUs3BpnwZJtAuEJkvQL2%2F9n4s5wUmUl4aCI4BwpraNx4RtEXMe5qg5T1LVTGliMRpKasKsW%2F%2Fe%2BRinhejgCuzoH26dyF8iY2ZZ%2F5D1ilgeijhV%2FvBka5twt399mXwaYdCwFYE%3D');
$consumer = new Consumer('dpf43f3p2l4k3l03', $this->cert, array());
$ConsumerToken = new ConsumerToken($consumer, '', '');
$options = array('consumer' => $consumer, 'token' => $ConsumerToken, 'uri' => 'http://photos.example.net/photos', 'privateCert' => '', 'publicCert' => $this->cert, 'privateCertPass' => '');
$result = Signature::verify($request, $options);
$this->assertTrue($result);
}
/**
* Check oauth request signature
*
* @params array $config
* @return boolean
*/
public function verifyOauthSignature($config)
{
$proxy =& new RequestProxyController($this->Controller);
$params = $proxy->parameters();
$token = '';
if (isset($params['oauth_token'])) {
$token = $params['oauth_token'];
}
$serverRegistry =& new ServerRegistry();
$this->tokenData = $serverRegistry->AccessServerToken->find(array('AccessServerToken.token' => $token, 'AccessServerToken.authorized' => 1));
try {
$valid = Signature::verify($this->Controller, array('consumer_secret' => $this->tokenData['ServerRegistry']['consumer_secret'], 'token_secret' => $this->tokenData['AccessServerToken']['token_secret']));
} catch (Exception $e) {
$valid = false;
}
if (!empty($config['exit']) && !$valid) {
Configure::write('debug', 0);
header("HTTP/1.1 401 Unauthorized");
echo "Invalid OAuth Request";
exit;
}
return $valid;
}
