youys
/
Discord.Net
Not watched
1
0
Fork 0
Code
Releases 34 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
2957 Commits
26 Branches
52 MB
6989 Download
Tree: 0fecdf69bb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0fecdf69bb'
${ noResults }
Discord.Net/test/Discord.Net.Tests/Tests.TokenUtils.cs

Tests.TokenUtils.cs 7.6 kB
Raw Normal View History

Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
fix: Update minimum Bot Token length to 58 char (#1204) * Update the minimum bot token length to 58 char - Updates the minimum length of a bot token to be 58 characters. An older 58 char bot token was found by Moiph - Makes this value an internal const instead of a magic number * update the TokenUtils tests for 58 char min
7 years ago
Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
fix: Update minimum Bot Token length to 58 char (#1204) * Update the minimum bot token length to 58 char - Updates the minimum length of a bot token to be 58 characters. An older 58 char bot token was found by Moiph - Makes this value an internal const instead of a magic number * update the TokenUtils tests for 58 char min
7 years ago
Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
fix: Update minimum Bot Token length to 58 char (#1204) * Update the minimum bot token length to 58 char - Updates the minimum length of a bot token to be 58 characters. An older 58 char bot token was found by Moiph - Makes this value an internal const instead of a magic number * update the TokenUtils tests for 58 char min
7 years ago
fix: Improve validation of Bot Tokens (#1206) * improve bot token validation by trying to decode user id from token Try to decode the user id from the supplied bot token as a way of validating the token. If this should fail, indicate that the token is invalid. * Update the tokenutils tests to pass the new validation checks * Add test case for CheckBotTokenValidity method * lint: clean up whitespace * Add check for null or whitespace string, lint whitespace * fix userid conversion * Add hint to user to check that token is not an oauth client secret * Catch exception that can be thrown by GetString * Refactor token conversion logic into it's own testable method
7 years ago
Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
fix: Update minimum Bot Token length to 58 char (#1204) * Update the minimum bot token length to 58 char - Updates the minimum length of a bot token to be 58 characters. An older 58 char bot token was found by Moiph - Makes this value an internal const instead of a magic number * update the TokenUtils tests for 58 char min
7 years ago
Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
fix: Improve validation of Bot Tokens (#1206) * improve bot token validation by trying to decode user id from token Try to decode the user id from the supplied bot token as a way of validating the token. If this should fail, indicate that the token is invalid. * Update the tokenutils tests to pass the new validation checks * Add test case for CheckBotTokenValidity method * lint: clean up whitespace * Add check for null or whitespace string, lint whitespace * fix userid conversion * Add hint to user to check that token is not an oauth client secret * Catch exception that can be thrown by GetString * Refactor token conversion logic into it's own testable method
7 years ago
Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.Text;

  4. using Xunit;

  5. 

  6. namespace Discord

  7. {

  8.     public class TokenUtilsTests

  9.     {

  10.         /// <summary>

  11.         ///     Tests the usage of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  12.         ///     to see that when a null, empty or whitespace-only string is passed as the token,

  13.         ///     it will throw an ArgumentNullException.

  14.         /// </summary>

  15.         [Theory]

  16.         [InlineData(null)]

  17.         [InlineData("")] // string.Empty isn't a constant type

  18.         [InlineData(" ")]

  19.         [InlineData("    ")]

  20.         [InlineData("\t")]

  21.         public void TestNullOrWhitespaceToken(string token)

  22.         {

  23.             // an ArgumentNullException should be thrown, regardless of the TokenType

  24.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Bearer, token));

  25.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Bot, token));

  26.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Webhook, token));

  27.         }

  28.         

  29.         /// <summary>

  30.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  31.         ///     to see that valid Webhook tokens do not throw Exceptions.

  32.         /// </summary>

  33.         /// <param name="token"></param>

  34.         [Theory]

  35.         [InlineData("123123123")]

  36.         // bot token

  37.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  38.         // bearer token taken from discord docs

  39.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  40.         // client secret

  41.         [InlineData("937it3ow87i4ery69876wqire")]

  42.         public void TestWebhookTokenDoesNotThrowExceptions(string token)

  43.         {

  44.             TokenUtils.ValidateToken(TokenType.Webhook, token);

  45.         }

  46. 

  47.         // No tests for invalid webhook token behavior, because there is nothing there yet.

  48. 

  49.         /// <summary>

  50.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  51.         ///     to see that valid Webhook tokens do not throw Exceptions.

  52.         /// </summary>

  53.         /// <param name="token"></param>

  54.         [Theory]

  55.         [InlineData("123123123")]

  56.         // bot token

  57.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  58.         // bearer token taken from discord docs

  59.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  60.         // client secret

  61.         [InlineData("937it3ow87i4ery69876wqire")]

  62.         public void TestBearerTokenDoesNotThrowExceptions(string token)

  63.         {

  64.             TokenUtils.ValidateToken(TokenType.Bearer, token);

  65.         }

  66. 

  67.         // No tests for invalid bearer token behavior, because there is nothing there yet.

  68. 

  69.         /// <summary>

  70.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  71.         ///     to see that valid Bot tokens do not throw Exceptions.

  72.         ///     Valid Bot tokens can be strings of length 58 or above.

  73.         /// </summary>

  74.         [Theory]

  75.         // missing a single character from the end, 58 char. still should be valid

  76.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKW")]

  77.         // 59 char token

  78.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  79.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWss")]

  80.         public void TestBotTokenDoesNotThrowExceptions(string token)

  81.         {

  82.             // This example token is pulled from the Discord Docs

  83.             // https://discordapp.com/developers/docs/reference#authentication-example-bot-token-authorization-header

  84.             // should not throw any exception

  85.             TokenUtils.ValidateToken(TokenType.Bot, token);

  86.         }

  87. 

  88.         /// <summary>

  89.         ///     Tests the usage of <see cref="TokenUtils.ValidateToken(TokenType, string)"/> with

  90.         ///     a Bot token that is invalid.

  91.         /// </summary>

  92.         [Theory]

  93.         [InlineData("This is invalid")]

  94.         // bearer token

  95.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  96.         // client secret

  97.         [InlineData("937it3ow87i4ery69876wqire")]

  98.         // 57 char bot token

  99.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kK")]

  100.         [InlineData("This is an invalid token, but it passes the check for string length.")]

  101.         // valid token, but passed in twice

  102.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWsMTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  103.         public void TestBotTokenInvalidThrowsArgumentException(string token)

  104.         {

  105.             Assert.Throws<ArgumentException>(() => TokenUtils.ValidateToken(TokenType.Bot, token));

  106.         }

  107. 

  108.         /// <summary>

  109.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  110.         ///     to see that an <see cref="ArgumentException"/> is thrown when an invalid

  111.         ///     <see cref="TokenType"/> is supplied as a parameter.

  112.         /// </summary>

  113.         /// <remarks>

  114.         ///     The <see cref="TokenType.User"/> type is treated as an invalid <see cref="TokenType"/>.

  115.         /// </remarks>

  116.         [Theory]

  117.         // TokenType.User

  118.         [InlineData(0)]

  119.         // out of range TokenType

  120.         [InlineData(-1)]

  121.         [InlineData(4)]

  122.         [InlineData(7)]

  123.         public void TestUnrecognizedTokenType(int type)

  124.         {

  125.             Assert.Throws<ArgumentException>(() =>

  126.                 TokenUtils.ValidateToken((TokenType)type, "MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs"));

  127.         }

  128. 

  129.         /// <summary>

  130.         ///     Checks the <see cref="TokenUtils.CheckBotTokenValidity(string)"/> method for expected output.

  131.         /// </summary>

  132.         /// <param name="token"> The Bot Token to test.</param>

  133.         /// <param name="expected"> The expected result. </param>

  134.         [Theory]

  135.         // this method only checks the first part of the JWT

  136.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4..", true)]

  137.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kK", true)]

  138.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4. this part is invalid. this part is also invalid", true)]

  139.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.", false)]

  140.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4", false)]

  141.         [InlineData("NDI4NDc3OTQ0MDA5MTk1NTIw.xxxx.xxxxx", true)]

  142.         // should not throw an unexpected exception

  143.         [InlineData("", false)]

  144.         [InlineData(null, false)]

  145.         public void TestCheckBotTokenValidity(string token, bool expected)

  146.         {

  147.             Assert.Equal(expected, TokenUtils.CheckBotTokenValidity(token));

  148.         }

  149. 

  150.         [Theory]

  151.         // cannot pass a ulong? as a param in InlineData, so have to have a separate param

  152.         // indicating if a value is null

  153.         [InlineData("NDI4NDc3OTQ0MDA5MTk1NTIw", false, 428477944009195520)]

  154.         // should return null w/o throwing other exceptions

  155.         [InlineData("", true, 0)]

  156.         [InlineData(" ", true, 0)]

  157.         [InlineData(null, true, 0)]

  158.         [InlineData("these chars aren't allowed @U#)*@#!)*", true, 0)]

  159.         public void TestDecodeBase64UserId(string encodedUserId, bool isNull, ulong expectedUserId)

  160.         {

  161.             var result = TokenUtils.DecodeBase64UserId(encodedUserId);

  162.             if (isNull)

  163.                 Assert.Null(result);

  164.             else

  165.                 Assert.Equal(expectedUserId, result);

  166.         }

  167.     }

  168. }

No Description