(t *testing.T)
| 62 | } |
| 63 | |
| 64 | func TestPKCES256Generation(t *testing.T) { |
| 65 | t.Parallel() |
| 66 | |
| 67 | // Test that we can generate a valid S256 challenge from a verifier |
| 68 | verifier := "dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk" |
| 69 | expectedChallenge := "E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM" |
| 70 | |
| 71 | // Generate challenge using S256 method |
| 72 | h := sha256.Sum256([]byte(verifier)) |
| 73 | challenge := base64.RawURLEncoding.EncodeToString(h[:]) |
| 74 | |
| 75 | require.Equal(t, expectedChallenge, challenge) |
| 76 | require.True(t, oauth2provider.VerifyPKCE(challenge, verifier)) |
| 77 | } |
| 78 | |
| 79 | func TestValidatePKCECodeChallengeMethod(t *testing.T) { |
| 80 | t.Parallel() |
nothing calls this directly
no test coverage detected