ljr/wcmtools/openid/perl/Net-OpenID-Server/t/00-all.t

#!/usr/bin/perl

use strict;
use Test::More 'no_plan';
use Data::Dumper;
use Net::OpenID::Server;
use Crypt::OpenSSL::DSA;

use Math::BigInt;
for my $num (1..1080) {
    my $bi = Math::BigInt->new("$num");
    my $bytes = Net::OpenID::Server::_bi2bytes($bi);
    my $bi2 = Net::OpenID::Server::_bytes2bi($bytes);
    is($bi,$bi2);
    printf "$bi = $bi2\n";
}
exit 0;

my ($query_string, %get_vars, $ctype, $content);
my $parse = sub {
    %get_vars = map { durl($_) } split(/[&=]/, $query_string);
};

my $pub_key_file = "test.openid_public.key";
my $priv_key_file = "test.openid_private.key";


my $nos = Net::OpenID::Server->new(
                                   args => \%get_vars,
                                   public_key => $pub_key_file,
                                   private_key => $priv_key_file,
                                   );
ok($nos);

# generate a key
my $dsa = Crypt::OpenSSL::DSA->generate_parameters( 512 );
$dsa->generate_key;
print "done.\n";
$dsa->write_pub_key($pub_key_file);
$dsa->write_priv_key($priv_key_file);

my $read_pub_key = sub {
    open (F, $pub_key_file);
    my $content = do { local $/; <F>; };
    close F;
    return $content;
};

my $read_priv_key = sub {
    open (F, $priv_key_file);
    my $content = do { local $/; <F>; };
    close F;
    return $content;
};


# see if we get our public key back
$query_string = "openid.mode=getpubkey";
$parse->();
$nos->private_key("BOGUS");
for (1..3) {
    $nos->public_key($pub_key_file)     if $_ == 1;
    $nos->public_key($read_pub_key)     if $_ == 2;
    $nos->public_key($read_pub_key->()) if $_ == 3;

    ($ctype, $content) = $nos->handle_page;
    ok($ctype eq "text/plain");
    ok($content =~ /\-\-\-BEGIN/ && $content =~ /\-\-\-END/);
}

# see if we get a user_setup_url vs. signature
$query_string = "openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";
$parse->();
$nos->get_user(sub { return "brad"; });
$nos->is_identity(sub {
    my ($u, $url) = @_;
    return $u eq "brad" && $url eq "http://bradfitz.com/";
});


# first an untrusted case:
$nos->is_trusted(sub { 0; });
$nos->setup_url("http://setup.example.com/?set1=set2");
($ctype, $content) = $nos->handle_page or die $nos->err;
ok($ctype eq "redirect");
ok($content =~ m!user_setup_url=http://setup\.example\.com!);
ok($content =~ m!return\.example\.com/\?foo=bar\&open!);

# now a trusted case, but with bogus private key:
$nos->is_trusted(sub { 1; });
$nos->private_key("BOGUS");
($ctype, $content) = $nos->handle_page;
ok(! $ctype);

$nos->private_key($priv_key_file);
($ctype, $content) = $nos->handle_page;
ok($ctype eq "redirect");
ok($content =~ m!return\.example\.com/\?foo=bar\&open!);
ok($content =~ m!\&openid\.sig=M!);

$nos->private_key($read_priv_key);
($ctype, $content) = $nos->handle_page;
ok($ctype eq "redirect");
ok($content =~ m!return\.example\.com/\?foo=bar\&open!);
ok($content =~ m!\&openid\.sig=M!);

# checking two types of failure cases
$nos->setup_url("http://setup.example.com/");
$nos->is_trusted(sub { 0; });

# immediate mode:
$query_string = "openid.mode=checkid_immediate&openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";
$parse->();
($ctype, $content) = $nos->handle_page;
ok($ctype eq "redirect");

# setup mode:
$query_string = "openid.mode=checkid_setup&openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";
$parse->();
($ctype, $content) = $nos->handle_page;
ok($ctype eq "setup");
ok($content->{return_to} eq "http://return.example.com/?foo=bar");

sub durl
{
    my ($a) = @_;
    $a =~ tr/+/ /;
    $a =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
    return $a;
}
init 2019-02-05 21:49:12 +00:00			`#!/usr/bin/perl`

			`use strict;`
			`use Test::More 'no_plan';`
			`use Data::Dumper;`
			`use Net::OpenID::Server;`
			`use Crypt::OpenSSL::DSA;`

			`use Math::BigInt;`
			`for my $num (1..1080) {`
			`my $bi = Math::BigInt->new("$num");`
			`my $bytes = Net::OpenID::Server::_bi2bytes($bi);`
			`my $bi2 = Net::OpenID::Server::_bytes2bi($bytes);`
			`is($bi,$bi2);`
			`printf "$bi = $bi2\n";`
			`}`
			`exit 0;`

			`my ($query_string, %get_vars, $ctype, $content);`
			`my $parse = sub {`
			`%get_vars = map { durl($_) } split(/[&=]/, $query_string);`
			`};`

			`my $pub_key_file = "test.openid_public.key";`
			`my $priv_key_file = "test.openid_private.key";`


			`my $nos = Net::OpenID::Server->new(`
			`args => \%get_vars,`
			`public_key => $pub_key_file,`
			`private_key => $priv_key_file,`
			`);`
			`ok($nos);`

			`# generate a key`
			`my $dsa = Crypt::OpenSSL::DSA->generate_parameters( 512 );`
			`$dsa->generate_key;`
			`print "done.\n";`
			`$dsa->write_pub_key($pub_key_file);`
			`$dsa->write_priv_key($priv_key_file);`

			`my $read_pub_key = sub {`
			`open (F, $pub_key_file);`
			`my $content = do { local $/; <F>; };`
			`close F;`
			`return $content;`
			`};`

			`my $read_priv_key = sub {`
			`open (F, $priv_key_file);`
			`my $content = do { local $/; <F>; };`
			`close F;`
			`return $content;`
			`};`


			`# see if we get our public key back`
			`$query_string = "openid.mode=getpubkey";`
			`$parse->();`
			`$nos->private_key("BOGUS");`
			`for (1..3) {`
			`$nos->public_key($pub_key_file) if $_ == 1;`
			`$nos->public_key($read_pub_key) if $_ == 2;`
			`$nos->public_key($read_pub_key->()) if $_ == 3;`

			`($ctype, $content) = $nos->handle_page;`
			`ok($ctype eq "text/plain");`
			`ok($content =~ /\-\-\-BEGIN/ && $content =~ /\-\-\-END/);`
			`}`

			`# see if we get a user_setup_url vs. signature`
			`$query_string = "openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";`
			`$parse->();`
			`$nos->get_user(sub { return "brad"; });`
			`$nos->is_identity(sub {`
			`my ($u, $url) = @_;`
			`return $u eq "brad" && $url eq "http://bradfitz.com/";`
			`});`


			`# first an untrusted case:`
			`$nos->is_trusted(sub { 0; });`
			`$nos->setup_url("http://setup.example.com/?set1=set2");`
			`($ctype, $content) = $nos->handle_page or die $nos->err;`
			`ok($ctype eq "redirect");`
			`ok($content =~ m!user_setup_url=http://setup\.example\.com!);`
			`ok($content =~ m!return\.example\.com/\?foo=bar\&open!);`

			`# now a trusted case, but with bogus private key:`
			`$nos->is_trusted(sub { 1; });`
			`$nos->private_key("BOGUS");`
			`($ctype, $content) = $nos->handle_page;`
			`ok(! $ctype);`

			`$nos->private_key($priv_key_file);`
			`($ctype, $content) = $nos->handle_page;`
			`ok($ctype eq "redirect");`
			`ok($content =~ m!return\.example\.com/\?foo=bar\&open!);`
			`ok($content =~ m!\&openid\.sig=M!);`

			`$nos->private_key($read_priv_key);`
			`($ctype, $content) = $nos->handle_page;`
			`ok($ctype eq "redirect");`
			`ok($content =~ m!return\.example\.com/\?foo=bar\&open!);`
			`ok($content =~ m!\&openid\.sig=M!);`

			`# checking two types of failure cases`
			`$nos->setup_url("http://setup.example.com/");`
			`$nos->is_trusted(sub { 0; });`

			`# immediate mode:`
			`$query_string = "openid.mode=checkid_immediate&openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";`
			`$parse->();`
			`($ctype, $content) = $nos->handle_page;`
			`ok($ctype eq "redirect");`

			`# setup mode:`
			`$query_string = "openid.mode=checkid_setup&openid.is_identity=http://bradfitz.com/&openid.return_to=http://return.example.com/%3Ffoo%3Dbar";`
			`$parse->();`
			`($ctype, $content) = $nos->handle_page;`
			`ok($ctype eq "setup");`
			`ok($content->{return_to} eq "http://return.example.com/?foo=bar");`

			`sub durl`
			`{`
			`my ($a) = @_;`
			`$a =~ tr/+/ /;`
			`$a =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;`
			`return $a;`
			`}`