1 files changed, 14 insertions, 2 deletions

diff --git a/src/DotNetOpenAuth.Test/OAuth2/ResourceServerTests.cs b/src/DotNetOpenAuth.Test/OAuth2/ResourceServerTests.cs
index e9a5921..0ac31b5 100644
--- a/src/DotNetOpenAuth.Test/OAuth2/ResourceServerTests.cs
+++ b/src/DotNetOpenAuth.Test/OAuth2/ResourceServerTests.cs
@@ -21,7 +21,7 @@ namespace DotNetOpenAuth.Test.OAuth2 {
 	public class ResourceServerTests : OAuth2TestBase {
 		[Test]
 		public void GetAccessTokenWithMissingAccessToken() {
-			var rsa = new RSACryptoServiceProvider();
+			var rsa = new RSACryptoServiceProvider(512);
 			var resourceServer = new ResourceServer(new StandardAccessTokenAnalyzer(rsa, rsa));
 
 			var requestHeaders = new NameValueCollection {
@@ -33,7 +33,7 @@ namespace DotNetOpenAuth.Test.OAuth2 {
 
 		[Test]
 		public void GetPrincipalWithMissingAccessToken() {
-			var rsa = new RSACryptoServiceProvider();
+			var rsa = new RSACryptoServiceProvider(512);
 			var resourceServer = new ResourceServer(new StandardAccessTokenAnalyzer(rsa, rsa));
 
 			var requestHeaders = new NameValueCollection {
@@ -42,5 +42,17 @@ namespace DotNetOpenAuth.Test.OAuth2 {
 			var request = new HttpRequestInfo("GET", new Uri("http://localhost/resource"), headers: requestHeaders);
 			Assert.That(() => resourceServer.GetPrincipal(request), Throws.InstanceOf<ProtocolException>());
 		}
+
+		[Test]
+		public void GetAccessTokenWithCorruptedToken() {
+			var rsa = new RSACryptoServiceProvider(512);
+			var resourceServer = new ResourceServer(new StandardAccessTokenAnalyzer(rsa, rsa));
+
+			var requestHeaders = new NameValueCollection {
+				{ "Authorization", "Bearer foobar" },
+			};
+			var request = new HttpRequestInfo("GET", new Uri("http://localhost/resource"), headers: requestHeaders);
+			Assert.That(() => resourceServer.GetAccessToken(request), Throws.InstanceOf<ProtocolException>());
+		}
 	}
 }