summaryrefslogtreecommitdiffstats
path: root/src/DotNetOpenAuth.Test/OAuth/AppendixScenarios.cs
blob: 88e461c0b81fb1b8304c185a6673b737d7bbbefb (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98

//-----------------------------------------------------------------------
// <copyright file="AppendixScenarios.cs" company="Outercurve Foundation">
//     Copyright (c) Outercurve Foundation. All rights reserved.
// </copyright>
//-----------------------------------------------------------------------

namespace DotNetOpenAuth.Test.OAuth {
	using System;
	using System.IO;
	using System.Net;
	using System.Net.Http;
	using System.Net.Http.Headers;
	using System.Threading.Tasks;
	using DotNetOpenAuth.Messaging;
	using DotNetOpenAuth.OAuth;
	using DotNetOpenAuth.OAuth.ChannelElements;
	using DotNetOpenAuth.Test.Mocks;
	using NUnit.Framework;

	[TestFixture]
	public class AppendixScenarios : TestBase {
		[Test]
		public async Task SpecAppendixAExample() {
			var serviceDescription = new ServiceProviderDescription(
				"https://photos.example.net/request_token",
				"http://photos.example.net/authorize",
				"https://photos.example.net/access_token");
			var serviceHostDescription = new ServiceProviderHostDescription {
				RequestTokenEndpoint = new MessageReceivingEndpoint(serviceDescription.TemporaryCredentialsRequestEndpoint, HttpDeliveryMethods.PostRequest | HttpDeliveryMethods.AuthorizationHeaderRequest),
				UserAuthorizationEndpoint = new MessageReceivingEndpoint(serviceDescription.ResourceOwnerAuthorizationEndpoint, HttpDeliveryMethods.GetRequest),
				AccessTokenEndpoint = new MessageReceivingEndpoint(serviceDescription.TokenRequestEndpoint, HttpDeliveryMethods.PostRequest | HttpDeliveryMethods.AuthorizationHeaderRequest),
				TamperProtectionElements = new ITamperProtectionChannelBindingElement[] { new HmacSha1SigningBindingElement(), },
			};
			var accessPhotoEndpoint = new Uri("http://photos.example.net/photos?file=vacation.jpg&size=original");
			var consumerDescription = new ConsumerDescription("dpf43f3p2l4k3l03", "kd94hf93k423kf44");

			var tokenManager = new InMemoryTokenManager();
			tokenManager.AddConsumer(consumerDescription);
			var sp = new ServiceProvider(serviceHostDescription, tokenManager);

			var coordinator = new CoordinatorBase(
				async (hostFactories, ct) => {
					var consumer = new Consumer(
						consumerDescription.ConsumerKey,
						consumerDescription.ConsumerSecret,
						serviceDescription,
						new MemoryTemporaryCredentialStorage());
					consumer.HostFactories = hostFactories;
					var authorizeUrl = await consumer.RequestUserAuthorizationAsync(new Uri("http://printer.example.com/request_token_ready"));
					Uri authorizeResponseUri;
					using (var httpClient = hostFactories.CreateHttpClient()) {
						using (var response = await httpClient.GetAsync(authorizeUrl, ct)) {
							Assert.That(response.StatusCode, Is.EqualTo(HttpStatusCode.Redirect));
							authorizeResponseUri = response.Headers.Location;
						}
					}

					var accessTokenResponse = await consumer.ProcessUserAuthorizationAsync(authorizeResponseUri, ct);
					Assert.That(accessTokenResponse, Is.Not.Null);

					using (var authorizingClient = consumer.CreateHttpClient(accessTokenResponse.AccessToken)) {
						using (var protectedPhoto = await authorizingClient.GetAsync(accessPhotoEndpoint, ct)) {
							Assert.That(protectedPhoto, Is.Not.Null);
							protectedPhoto.EnsureSuccessStatusCode();
							Assert.That("image/jpeg", Is.EqualTo(protectedPhoto.Content.Headers.ContentType.MediaType));
							Assert.That(protectedPhoto.Content.Headers.ContentLength, Is.Not.EqualTo(0));
						}
					}
				},
				CoordinatorBase.Handle(serviceDescription.TemporaryCredentialsRequestEndpoint).By(
					async (request, ct) => {
						var requestTokenMessage = await sp.ReadTokenRequestAsync(request, ct);
						return await sp.Channel.PrepareResponseAsync(sp.PrepareUnauthorizedTokenMessage(requestTokenMessage));
					}),
				CoordinatorBase.Handle(serviceDescription.ResourceOwnerAuthorizationEndpoint).By(
					async (request, ct) => {
						var authRequest = await sp.ReadAuthorizationRequestAsync(request, ct);
						((InMemoryTokenManager)sp.TokenManager).AuthorizeRequestToken(authRequest.RequestToken);
						return await sp.Channel.PrepareResponseAsync(sp.PrepareAuthorizationResponse(authRequest));
					}),
				CoordinatorBase.Handle(serviceDescription.TokenRequestEndpoint).By(
					async (request, ct) => {
						var accessRequest = await sp.ReadAccessTokenRequestAsync(request, ct);
						return await sp.Channel.PrepareResponseAsync(sp.PrepareAccessTokenMessage(accessRequest), ct);
					}),
				CoordinatorBase.Handle(accessPhotoEndpoint).By(
					async (request, ct) => {
						string accessToken = (await sp.ReadProtectedResourceAuthorizationAsync(request)).AccessToken;
						Assert.That(accessToken, Is.Not.Null.And.Not.Empty);
						var responseMessage = new HttpResponseMessage { Content = new ByteArrayContent(new byte[] { 0x33, 0x66 }), };
						responseMessage.Content.Headers.ContentType = new MediaTypeHeaderValue("image/jpeg");
						return responseMessage;
					}));

			await coordinator.RunAsync();
		}
	}
}
generated by cgit v1.1 at 2025-05-17 07:27:41 +0000