Add test for SuperOffice token validation

martincostello · martincostello · commit 6636881a5283 · 2020-07-10T13:26:04.000+01:00
Add a test that validates that token validity is checked by the SuperOffice provider.
diff --git a/test/AspNet.Security.OAuth.Providers.Tests/SuperOffice/SuperOfficeTests.cs b/test/AspNet.Security.OAuth.Providers.Tests/SuperOffice/SuperOfficeTests.cs
@@ -92,5 +92,27 @@ static void ConfigureServices(IServiceCollection services)
             // Assert
             AssertClaim(claims, claimType, claimValue);
         }
+
+        [Fact]
+        public async Task Cannot_Sign_In_Using_SuperOffice_With_Invalid_Token_Audience()
+        {
+            // Arrange
+            static void ConfigureServices(IServiceCollection services)
+            {
+                services.AddSingleton<JwtSecurityTokenHandler, FrozenJwtSecurityTokenHandler>();
+                services.PostConfigureAll<SuperOfficeAuthenticationOptions>((options) =>
+                {
+                    options.TokenValidationParameters.ValidAudience = "not-the-right-audience";
+                });
+            }
+
+            using var server = CreateTestServer(ConfigureServices);
+
+            // Act
+            var exception = await Assert.ThrowsAsync<Exception>(() => AuthenticateUserAsync(server));
+
+            // Assert
+            exception.InnerException.ShouldBeOfType<SecurityTokenValidationException>();
+        }
     }
 }
