IdentityTokenValidator - update wilson dependency

josephdecock · josephdecock · commit f54334329414 · 2024-02-16T20:38:48.000-06:00
diff --git a/src/IdentityTokenValidator/IdentityTokenValidator.csproj b/src/IdentityTokenValidator/IdentityTokenValidator.csproj
@@ -36,7 +36,7 @@
     <ItemGroup>
         <PackageReference Include="minver" Version="4.3.0" PrivateAssets="All" />
 
-        <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="6.30.0" />
+        <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="7.3.1" />
         <PackageReference Include="Microsoft.Extensions.Logging" Version="6.0.0" />
         <PackageReference Include="Microsoft.SourceLink.GitHub" Version="1.1.1" PrivateAssets="All" />
     </ItemGroup>
diff --git a/src/IdentityTokenValidator/JwtHandlerIdentityTokenValidator.cs b/src/IdentityTokenValidator/JwtHandlerIdentityTokenValidator.cs
@@ -81,7 +81,7 @@ public async Task<IdentityTokenValidationResult> ValidateAsync(string identityTo
                 };
             }
 
-            var result = ValidateSignature(identityToken, handler, parameters, options, logger);
+            var result = await ValidateSignatureAsync(identityToken, handler, parameters, options, logger);
             if (result.IsValid == false)
             {
                 if (result.Exception is SecurityTokenSignatureKeyNotFoundException)
@@ -123,7 +123,7 @@ public async Task<IdentityTokenValidationResult> ValidateAsync(string identityTo
             };
         }
 
-        private TokenValidationResult ValidateSignature(string identityToken, JsonWebTokenHandler handler, TokenValidationParameters parameters, OidcClientOptions options, ILogger logger)
+        private async Task<TokenValidationResult> ValidateSignatureAsync(string identityToken, JsonWebTokenHandler handler, TokenValidationParameters parameters, OidcClientOptions options, ILogger logger)
         {
             if (parameters.RequireSignedTokens)
             {
@@ -174,7 +174,7 @@ private TokenValidationResult ValidateSignature(string identityToken, JsonWebTok
                 parameters.IssuerSigningKeys = keys;
             }
             
-            return handler.ValidateToken(identityToken, parameters);
+            return await handler.ValidateTokenAsync(identityToken, parameters);
         }
 
         private static string CheckRequiredClaim(ClaimsPrincipal user)
diff --git a/test/JwtValidationTests/Infrastructure/Crypto.cs b/test/JwtValidationTests/Infrastructure/Crypto.cs
@@ -78,7 +78,7 @@ public static IdentityModel.Jwk.JsonWebKeySet CreateKeySet(RsaSecurityKey key)
         public static string CreateJwt(RsaSecurityKey key, string issuer, string audience, params Claim[] claims)
         {
             var jwtClaims = new List<Claim>(claims);
-            jwtClaims.Add(new Claim(JwtClaimTypes.IssuedAt, "now"));
+            jwtClaims.Add(new Claim(JwtClaimTypes.IssuedAt, DateTime.UtcNow.Ticks.ToString(), ClaimValueTypes.Integer64));
 
             SigningCredentials credentials = null;
             if (key != null)
diff --git a/test/JwtValidationTests/Infrastructure/NetworkHandler.cs b/test/JwtValidationTests/Infrastructure/NetworkHandler.cs
@@ -5,6 +5,7 @@
 using System;
 using System.Net;
 using System.Net.Http;
+using System.Text;
 using System.Threading;
 using System.Threading.Tasks;
 
@@ -86,11 +87,11 @@ protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage
             {
                 if (_selector != null)
                 {
-                    response.Content = new StringContent(_selector(request));
+                    response.Content = new StringContent(_selector(request), Encoding.UTF8, "application/json");
                 }
                 else
                 {
-                    response.Content = new StringContent(_document);
+                    response.Content = new StringContent(_document, Encoding.UTF8, "application/json");
                 }
             }
 

Original file line number	Diff line number	Diff line change
`@@ -81,7 +81,7 @@ public async Task<IdentityTokenValidationResult> ValidateAsync(string identityTo`
`81`	`81`	`};`
`82`	`82`	`}`
`83`	`83`
`84`		`- var result = ValidateSignature(identityToken, handler, parameters, options, logger);`
	`84`	`+ var result = await ValidateSignatureAsync(identityToken, handler, parameters, options, logger);`
`85`	`85`	`if (result.IsValid == false)`
`86`	`86`	`{`
`87`	`87`	`if (result.Exception is SecurityTokenSignatureKeyNotFoundException)`
`@@ -123,7 +123,7 @@ public async Task<IdentityTokenValidationResult> ValidateAsync(string identityTo`
`123`	`123`	`};`
`124`	`124`	`}`
`125`	`125`
`126`		`- private TokenValidationResult ValidateSignature(string identityToken, JsonWebTokenHandler handler, TokenValidationParameters parameters, OidcClientOptions options, ILogger logger)`
	`126`	`+ private async Task<TokenValidationResult> ValidateSignatureAsync(string identityToken, JsonWebTokenHandler handler, TokenValidationParameters parameters, OidcClientOptions options, ILogger logger)`
`127`	`127`	`{`
`128`	`128`	`if (parameters.RequireSignedTokens)`
`129`	`129`	`{`
`@@ -174,7 +174,7 @@ private TokenValidationResult ValidateSignature(string identityToken, JsonWebTok`
`174`	`174`	`parameters.IssuerSigningKeys = keys;`
`175`	`175`	`}`
`176`	`176`
`177`		`- return handler.ValidateToken(identityToken, parameters);`
	`177`	`+ return await handler.ValidateTokenAsync(identityToken, parameters);`
`178`	`178`	`}`
`179`	`179`
`180`	`180`	`private static string CheckRequiredClaim(ClaimsPrincipal user)`
Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ public static IdentityModel.Jwk.JsonWebKeySet CreateKeySet(RsaSecurityKey key)`
`78`	`78`	`public static string CreateJwt(RsaSecurityKey key, string issuer, string audience, params Claim[] claims)`
`79`	`79`	`{`
`80`	`80`	`var jwtClaims = new List<Claim>(claims);`
`81`		`- jwtClaims.Add(new Claim(JwtClaimTypes.IssuedAt, "now"));`
	`81`	`+ jwtClaims.Add(new Claim(JwtClaimTypes.IssuedAt, DateTime.UtcNow.Ticks.ToString(), ClaimValueTypes.Integer64));`
`82`	`82`
`83`	`83`	`SigningCredentials credentials = null;`
`84`	`84`	`if (key != null)`
Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@`
`5`	`5`	`using System;`
`6`	`6`	`using System.Net;`
`7`	`7`	`using System.Net.Http;`
	`8`	`+using System.Text;`
`8`	`9`	`using System.Threading;`
`9`	`10`	`using System.Threading.Tasks;`
`10`	`11`
`@@ -86,11 +87,11 @@ protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage`
`86`	`87`	`{`
`87`	`88`	`if (_selector != null)`
`88`	`89`	`{`
`89`		`- response.Content = new StringContent(_selector(request));`
	`90`	`+ response.Content = new StringContent(_selector(request), Encoding.UTF8, "application/json");`
`90`	`91`	`}`
`91`	`92`	`else`
`92`	`93`	`{`
`93`		`- response.Content = new StringContent(_document);`
	`94`	`+ response.Content = new StringContent(_document, Encoding.UTF8, "application/json");`
`94`	`95`	`}`
`95`	`96`	`}`
`96`	`97`