summaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
Diffstat (limited to 'src')
-rw-r--r--src/DotNetOpenAuth.Test/OAuthWrap/MessageFactoryTests.cs4
-rw-r--r--src/DotNetOpenAuth/OAuthWrap/StandardAccessTokenAnalyzer.cs4
2 files changed, 6 insertions, 2 deletions
diff --git a/src/DotNetOpenAuth.Test/OAuthWrap/MessageFactoryTests.cs b/src/DotNetOpenAuth.Test/OAuthWrap/MessageFactoryTests.cs
index e89cc86..3c85bcb 100644
--- a/src/DotNetOpenAuth.Test/OAuthWrap/MessageFactoryTests.cs
+++ b/src/DotNetOpenAuth.Test/OAuthWrap/MessageFactoryTests.cs
@@ -81,7 +81,7 @@ namespace DotNetOpenAuth.Test.OAuthWrap {
var fields = new Dictionary<string, string> {
{ Protocol.error, "user_denied" },
};
- var request = new EndUserAuthorizationRequest(this.recipient.Location, Protocol.Default.Version);
+ var request = new WebServerRequest(this.recipient.Location, Protocol.Default.Version);
Assert.IsInstanceOf(
typeof(WebServerFailedResponse),
this.messageFactory.GetNewResponseMessage(request, fields));
@@ -92,7 +92,7 @@ namespace DotNetOpenAuth.Test.OAuthWrap {
var fields = new Dictionary<string, string> {
{ Protocol.code, "abc" },
};
- var request = new EndUserAuthorizationRequest(this.recipient.Location, Protocol.Default.Version);
+ var request = new WebServerRequest(this.recipient.Location, Protocol.Default.Version);
Assert.IsInstanceOf(
typeof(WebServerSuccessResponse),
this.messageFactory.GetNewResponseMessage(request, fields));
diff --git a/src/DotNetOpenAuth/OAuthWrap/StandardAccessTokenAnalyzer.cs b/src/DotNetOpenAuth/OAuthWrap/StandardAccessTokenAnalyzer.cs
index 3cd138c..be495e0 100644
--- a/src/DotNetOpenAuth/OAuthWrap/StandardAccessTokenAnalyzer.cs
+++ b/src/DotNetOpenAuth/OAuthWrap/StandardAccessTokenAnalyzer.cs
@@ -46,6 +46,10 @@ namespace DotNetOpenAuth.OAuthWrap {
/// <returns>
/// A value indicating whether this access token is valid.
/// </returns>
+ /// <remarks>
+ /// This method also responsible to throw a <see cref="ProtocolException"/> or return
+ /// <c>false</c> when the access token is expired, invalid, or from an untrusted authorization server.
+ /// </remarks>
public bool TryValidateAccessToken(IDirectedProtocolMessage message, string accessToken, out string user, out string scope) {
var accessTokenFormatter = AccessToken.CreateFormatter(this.AuthorizationServerPublicSigningKey, this.ResourceServerPrivateEncryptionKey);
var token = accessTokenFormatter.Deserialize(message, accessToken);
generated by cgit v1.1 at 2025-05-24 13:08:12 +0000