-
Notifications
You must be signed in to change notification settings - Fork 413
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Validate Audience for SAML2TokenHandler with New Model #2863
Validate Audience for SAML2TokenHandler with New Model #2863
Conversation
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
test/Microsoft.IdentityModel.Tokens.Saml.Tests/SkipValidationDelegates.cs
Outdated
Show resolved
Hide resolved
…ML' of https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet into francofung/NewModelValidateAudienceRegressionTestsForSAML
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Outdated
Show resolved
Hide resolved
...icrosoft.IdentityModel.Tokens.Saml/Saml2/Saml2SecurityTokenHandler.ValidateToken.Internal.cs
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
...tityModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Common.cs
Outdated
Show resolved
Hide resolved
I haven't done a compare yet, but are these regression tests following the same model as the ones from @iNinja for JWT? |
For the most part except if we have a SAML specific case that show up when validating an audience but, so far it was only dealing with TokenValidationParameters.RequireAudience on the new path. We decided to remove it this morning. Update: Simplified the tests in This PR to only account for the comparison between the new and old call graphs to work as expected. |
test/Microsoft.IdentityModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.cs
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
...tyModel.Tokens.Saml.Tests/Saml2SecurityTokenHandlerTests.ValidateTokenAsyncTests.Audience.cs
Outdated
Show resolved
Hide resolved
…kenHandlerTests.ValidateTokenAsyncTests.Audience.cs Co-authored-by: Westin Musser <127992899+westin-m@users.noreply.github.com>
Validate Audience for SAML2TokenHandler with New Model
Description
In order to build the new ValidateTokenAsync method for SAML2TokenHandler we will be taking an integration test approach to validate that both old and new paths function equally while constructing the new methods along the way. This PR validates only cases applicable to audience validation that exists in both JsonWebTokenHandler and Saml2SecurityTokenhandler, a separate PR will be done for Saml2SecurityTokenhandler specific tests.
Follow-up issue for additional testing: #2875