1 {-# LANGUAGE OverloadedStrings #-}
3 Copyright : (c) 2015 Julien Tanguy
6 Maintainer : julien.tanguy@jhome.fr
9 This test suite is based on the pymacaroons test suite:
10 <https://github.com/ecordell/pymacaroons>
12 module Crypto.Macaroon.Tests where
15 import qualified Data.ByteString.Char8 as B8
18 import Test.Tasty.HUnit
20 import Crypto.Macaroon
21 import Crypto.Macaroon.Serializer.Base64
24 tests = testGroup "Crypto.Macaroon" [ basic
32 m = create secret key loc
34 secret = B8.pack "this is our super secret key; only we should know it"
35 key = B8.pack "we used our secret key"
36 loc = B8.pack "http://mybank/"
39 basic = testGroup "Basic macaroon" [ basicSignature
44 basicSignature = testCase "Signature" $
45 "E3D9E02908526C4C0039AE15114115D97FDD68BF2BA379B342AAF0F617D0552F" @=? (hex . signature) m
47 basicSerialize = testCase "Serialization" $
48 "MDAxY2xvY2F0aW9uIGh0dHA6Ly9teWJhbmsvCjAwMjZpZGVudG\
49 \lmaWVyIHdlIHVzZWQgb3VyIHNlY3JldCBrZXkKMDAyZnNpZ25h\
50 \dHVyZSDj2eApCFJsTAA5rhURQRXZf91ovyujebNCqvD2F9BVLwo" @=? serialize m
52 basicDeserialize = testCase "Deserialization" $
53 Right m @=? (deserialize . serialize) m
56 m2 = addFirstPartyCaveat "test = caveat" m
59 minted = testGroup "Macaroon with first party caveat" [ mintInspect
64 mintInspect = testCase "Inspect" $
65 "location http://mybank/\nidentifier we used\
66 \ our secret key\ncid test = caveat\nsignature\
67 \ 197BAC7A044AF33332865B9266E26D49\
68 \3BDD668A660E44D88CE1A998C23DBD67" @=? inspect m2
71 mintSerialize = testCase "Serialization" $
72 "MDAxY2xvY2F0aW9uIGh0dHA6Ly9teWJhbmsvCjAwMjZpZGVudGlmaWVyIHdlIHVzZ\
73 \WQgb3VyIHNlY3JldCBrZXkKMDAxNmNpZCB0ZXN0ID0gY2F2ZWF0CjAwMmZzaWduYXR1cmUgGXusegR\
74 \K8zMyhluSZuJtSTvdZopmDkTYjOGpmMI9vWcK" @=? serialize m2
76 mintDeserialize = testCase "Deserialization" $
77 Right m2 @=? (deserialize . serialize) m2
81 m3 = addFirstPartyCaveat "test = acaveat" m
84 minted2 = testGroup "Macaroon with first party caveats" [ mint2Trimmed
88 mint2Trimmed = testCase "Serialization" $
89 "MDAxY2xvY2F0aW9uIGh0dHA6Ly9teWJhbmsvCjAwMjZpZGVudGlmaWVyIHdlIHVz\
90 \ZWQgb3VyIHNlY3JldCBrZXkKMDAxN2NpZCB0ZXN0ID0gYWNhdmVhdAowMDJmc2ln\
91 \bmF0dXJlIJRJ_V3WNJQnqlVq5eez7spnltwU_AXs8NIRY739sHooCg" @=? serialize m3
93 mint2Des = testCase "Deserialization" $
94 Right m3 @=? (deserialize . serialize) m3
97 -- m4 = addThirdPartyCaveat caveat_key caveat_id caveat_loc n
99 -- n = addFirstPartyCaveat "account = 3735928559" $ create sec key loc
100 -- key = B8.pack "we used our other secret key"
101 -- loc = B8.pack "http://mybank/"
102 -- sec = B8.pack "this is a different super-secret key; never use the same secret twice"
103 -- caveat_key = B8.pack "4; guaranteed random by a fair toss of the dice"
104 -- caveat_id = B8.pack "this was how we remind auth of key/pred"
105 -- caveat_loc = B8.pack "http://auth.mybank/"
107 -- minted3 :: TestTree
108 -- minted3 = testGroup "Macaroon with first and third party caveats" [ mint3sig ]
111 -- mint3sig = testCase "Signature" $
112 -- "6B99EDB2EC6D7A4382071D7D41A0BF7DFA27D87D2F9FEA86E330D7850FFDA2B2" @=? (hex . signature) m4