1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
import pytest
from authlib.jose.errors import InvalidClaimError
from authlib.oidc.registration import ClientMetadataClaims
def test_request_uris():
claims = ClientMetadataClaims(
{"request_uris": ["https://client.test/request_uris"]}, {}
)
claims.validate()
claims = ClientMetadataClaims({"request_uris": ["invalid"]}, {})
with pytest.raises(InvalidClaimError):
claims.validate()
def test_initiate_login_uri():
claims = ClientMetadataClaims(
{"initiate_login_uri": "https://client.test/initiate_login_uri"}, {}
)
claims.validate()
claims = ClientMetadataClaims({"initiate_login_uri": "invalid"}, {})
with pytest.raises(InvalidClaimError):
claims.validate()
def test_token_endpoint_auth_signing_alg():
claims = ClientMetadataClaims({"token_endpoint_auth_signing_alg": "RSA256"}, {})
claims.validate()
# The value none MUST NOT be used.
claims = ClientMetadataClaims({"token_endpoint_auth_signing_alg": "none"}, {})
with pytest.raises(InvalidClaimError):
claims.validate()
def test_id_token_signed_response_alg():
claims = ClientMetadataClaims({"id_token_signed_response_alg": "RSA256"}, {})
claims.validate()
def test_default_max_age():
claims = ClientMetadataClaims({"default_max_age": 1234}, {})
claims.validate()
# The value none MUST NOT be used.
claims = ClientMetadataClaims({"default_max_age": "invalid"}, {})
with pytest.raises(InvalidClaimError):
claims.validate()
|
