public function testAuthorizeStuff()
{
$DS = new TOGoS_RSAUtil_DataStore();
$key1 = TOGoS_RSAUtil_KeyPair::generate(array('size' => 2048), $DS);
$key2 = TOGoS_RSAUtil_KeyPair::generate(array('size' => 2048), $DS);
$SA = new TOGoS_RSAUtil_SimpleAuthorizer(array($key1->getPublicKeyUri()), $DS);
$msg = "Hello, worlde!";
$sig1 = TOGoS_RSAUtil::sign($msg, $key1);
$sig2 = TOGoS_RSAUtil::sign($msg, $key2);
$this->assertTrue($SA->isAuthorized($sig1));
$this->assertFalse($SA->isAuthorized($sig2));
}
/**
* @return boolean true iff the signature is (A) valid, and (B)
* signed by one of our valid keys
*/
public function isAuthorized(TOGoS_RSAUtil_Signature $sig)
{
$keyUrn = $sig->getPublicKeyUri();
try {
$keyUrn = $this->normalizeUrn($keyUrn);
} catch (TOGoS_RSAUtil_UnparseableURNException $e) {
return false;
}
if (!isset($this->validKeyUrns[$keyUrn])) {
return false;
}
return TOGoS_RSAUtil::verif($sig, $this->blobSource);
}
public function testVerifyValidSignature()
{
$keyPair = TOGoS_RSAUtil_KeyPair::generate(array('size' => 1024));
// For faster unit testing
$DS = new TOGoS_RSAUtil_DataStore();
$pubKeyUri = $DS->store($keyPair->getPublicKeyDer());
// I guess we're also testing generateKeyPair, then.
$this->assertEquals($pubKeyUri, $keyPair->getPublicKeyUri());
$data = "Hello, world!";
$sig = TOGoS_RSAUtil::sign($data, $keyPair);
$this->assertTrue(TOGoS_RSAUtil::verif($sig, $DS), "Signature should have verified!");
// Change the data and make sure the signature's no longer valid!
$badSig = new TOGoS_RSAUtil_Signature($sig->getPublicKeyUri(), Nife_Util::blob($data . '; drop all tables'), $sig->getAlgorithmName(), $sig->getSignatureBytes());
$this->assertFalse(TOGoS_RSAUtil::verif($badSig, $DS), "Signature should have verified!");
}
