youys
/
Discord.Net
Not watched
1
0
Fork 0
Code
Releases 34 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
2931 Commits
26 Branches
52 MB
6989 Download
Tree: f9c95bc461
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f9c95bc461'
${ noResults }
Discord.Net/test/Discord.Net.Tests/Tests.TokenUtils.cs

Tests.TokenUtils.cs 5.5 kB
Raw Normal View History

Add validation to bot tokens based on string length (#1128) * Add input validation for bot tokens based on their length * Add token validation to BaseDiscordClient#LoginAsync Adds a TokenUtils class which is used to validate that tokens are correct * Revert changes to DiscordRestApiClient * Add Unit tests to the TokenUtils class, fix a logic error that was caught by those tests * Allow for API to throw exceptions Moves the validation of tokens to be inside of LoginInternalAsync, and writes a Warning to the console when the supplied tokens are invalid
7 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.Text;

  4. using Xunit;

  5. 

  6. namespace Discord

  7. {

  8.     public class TokenUtilsTests

  9.     {

  10.         /// <summary>

  11.         ///     Tests the usage of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  12.         ///     to see that when a null, empty or whitespace-only string is passed as the token,

  13.         ///     it will throw an ArgumentNullException.

  14.         /// </summary>

  15.         [Theory]

  16.         [InlineData(null)]

  17.         [InlineData("")] // string.Empty isn't a constant type

  18.         [InlineData(" ")]

  19.         [InlineData("    ")]

  20.         [InlineData("\t")]

  21.         public void TestNullOrWhitespaceToken(string token)

  22.         {

  23.             // an ArgumentNullException should be thrown, regardless of the TokenType

  24.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Bearer, token));

  25.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Bot, token));

  26.             Assert.Throws<ArgumentNullException>(() => TokenUtils.ValidateToken(TokenType.Webhook, token));

  27.         }

  28.         

  29.         /// <summary>

  30.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  31.         ///     to see that valid Webhook tokens do not throw Exceptions.

  32.         /// </summary>

  33.         /// <param name="token"></param>

  34.         [Theory]

  35.         [InlineData("123123123")]

  36.         // bot token

  37.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  38.         // bearer token taken from discord docs

  39.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  40.         // client secret

  41.         [InlineData("937it3ow87i4ery69876wqire")]

  42.         public void TestWebhookTokenDoesNotThrowExceptions(string token)

  43.         {

  44.             TokenUtils.ValidateToken(TokenType.Webhook, token);

  45.         }

  46. 

  47.         // No tests for invalid webhook token behavior, because there is nothing there yet.

  48. 

  49.         /// <summary>

  50.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  51.         ///     to see that valid Webhook tokens do not throw Exceptions.

  52.         /// </summary>

  53.         /// <param name="token"></param>

  54.         [Theory]

  55.         [InlineData("123123123")]

  56.         // bot token

  57.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  58.         // bearer token taken from discord docs

  59.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  60.         // client secret

  61.         [InlineData("937it3ow87i4ery69876wqire")]

  62.         public void TestBearerTokenDoesNotThrowExceptions(string token)

  63.         {

  64.             TokenUtils.ValidateToken(TokenType.Bearer, token);

  65.         }

  66. 

  67.         // No tests for invalid bearer token behavior, because there is nothing there yet.

  68. 

  69.         /// <summary>

  70.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  71.         ///     to see that valid Bot tokens do not throw Exceptions.

  72.         ///     Valid Bot tokens can be strings of length 59 or above.

  73.         /// </summary>

  74.         [Theory]

  75.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  76.         [InlineData("This appears to be completely invalid, however the current validation rules are not very strict.")]

  77.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWss")]

  78.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWsMTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs")]

  79.         public void TestBotTokenDoesNotThrowExceptions(string token)

  80.         {

  81.             // This example token is pulled from the Discord Docs

  82.             // https://discordapp.com/developers/docs/reference#authentication-example-bot-token-authorization-header

  83.             // should not throw any exception

  84.             TokenUtils.ValidateToken(TokenType.Bot, token);

  85.         }

  86. 

  87.         /// <summary>

  88.         ///     Tests the usage of <see cref="TokenUtils.ValidateToken(TokenType, string)"/> with

  89.         ///     a Bot token that is invalid.

  90.         /// </summary>

  91.         [Theory]

  92.         [InlineData("This is invalid")]

  93.         // missing a single character from the end

  94.         [InlineData("MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKW")]

  95.         // bearer token

  96.         [InlineData("6qrZcUqja7812RVdnEKjpzOL4CvHBFG")]

  97.         // client secret

  98.         [InlineData("937it3ow87i4ery69876wqire")]

  99.         public void TestBotTokenInvalidThrowsArgumentException(string token)

  100.         {

  101.             Assert.Throws<ArgumentException>(() => TokenUtils.ValidateToken(TokenType.Bot, token));

  102.         }

  103. 

  104.         /// <summary>

  105.         ///     Tests the behavior of <see cref="TokenUtils.ValidateToken(TokenType, string)"/>

  106.         ///     to see that an <see cref="ArgumentException"/> is thrown when an invalid

  107.         ///     <see cref="TokenType"/> is supplied as a parameter.

  108.         /// </summary>

  109.         /// <remarks>

  110.         ///     The <see cref="TokenType.User"/> type is treated as an invalid <see cref="TokenType"/>.

  111.         /// </remarks>

  112.         [Theory]

  113.         // TokenType.User

  114.         [InlineData(0)]

  115.         // out of range TokenType

  116.         [InlineData(4)]

  117.         [InlineData(7)]

  118.         public void TestUnrecognizedTokenType(int type)

  119.         {

  120.             Assert.Throws<ArgumentException>(() =>

  121.                 TokenUtils.ValidateToken((TokenType)type, "MTk4NjIyNDgzNDcxOTI1MjQ4.Cl2FMQ.ZnCjm1XVW7vRze4b7Cq4se7kKWs"));

  122.         }

  123.     }

  124. }

No Description