Test: apply the google rules

Author: Korbik

src/test/java/org/biscuitsec/biscuit/builder/BuilderTest.java

@@ -1,6 +1,9 @@
 package org.biscuitsec.biscuit.builder;
 
-import static org.junit.jupiter.api.Assertions.*;
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNotEquals;
+import static org.junit.jupiter.api.Assertions.assertNotNull;
+import static org.junit.jupiter.api.Assertions.assertTrue;
 
 import biscuit.format.schema.Schema;
 import java.nio.charset.StandardCharsets;
@@ -28,11 +31,11 @@ public void testBuild() throws Error.Language, Error.SymbolTableOverlap, Error.F
     KeyPair root = KeyPair.generate(Schema.PublicKey.Algorithm.Ed25519, rng);
     SymbolTable symbols = Biscuit.defaultSymbolTable();
 
-    Block authority_builder = new Block();
-    authority_builder.addFact(
+    Block authorityBuilder = new Block();
+    authorityBuilder.addFact(
         Utils.fact("revocation_id", Arrays.asList(Utils.date(Date.from(Instant.now())))));
-    authority_builder.addFact(Utils.fact("right", Arrays.asList(Utils.str("admin"))));
-    authority_builder.addRule(
+    authorityBuilder.addFact(Utils.fact("right", Arrays.asList(Utils.str("admin"))));
+    authorityBuilder.addRule(
         Utils.constrainedRule(
             "right",
             Arrays.asList(
@@ -59,7 +62,7 @@ public void testBuild() throws Error.Language, Error.SymbolTableOverlap, Error.F
                                     Utils.str("create_topic"),
                                     Utils.str("get_topic"),
                                     Utils.str("get_topics")))))))));
-    authority_builder.addRule(
+    authorityBuilder.addRule(
         Utils.constrainedRule(
             "right",
             Arrays.asList(
@@ -84,7 +87,7 @@ public void testBuild() throws Error.Language, Error.SymbolTableOverlap, Error.F
                     new Expression.Value(
                         new Term.Set(new HashSet<>(Arrays.asList(Utils.str("lookup")))))))));
 
-    org.biscuitsec.biscuit.token.Block authority = authority_builder.build(symbols);
+    org.biscuitsec.biscuit.token.Block authority = authorityBuilder.build(symbols);
     Biscuit rootBiscuit = Biscuit.make(rng, root, authority);
 
     System.out.println(rootBiscuit.print());
@@ -93,22 +96,22 @@ public void testBuild() throws Error.Language, Error.SymbolTableOverlap, Error.F
   }
 
   @Test
-  public void testStringValueOfAStringTerm() {
+  public void testStringValueOfStringTerm() {
     assertEquals("\"hello\"", new Term.Str("hello").toString());
   }
 
   @Test
-  public void testStringValueOfAnIntegerTerm() {
+  public void testStringValueOfIntegerTerm() {
     assertEquals("123", new Term.Integer(123).toString());
   }
 
   @Test
-  public void testStringValueOfAVariableTerm() {
+  public void testStringValueOfVariableTerm() {
     assertEquals("$hello", new Term.Variable("hello").toString());
   }
 
   @Test
-  public void testStringValueOfASetTerm() {
+  public void testStringValueOfSetTerm() {
     String actual =
         new Term.Set(Set.of(new Term.Str("a"), new Term.Str("b"), new Term.Integer((3))))
             .toString();
@@ -120,7 +123,7 @@ public void testStringValueOfASetTerm() {
   }
 
   @Test
-  public void testStringValueOfAByteArrayTermIsJustTheArrayReferenceNotTheContents() {
+  public void testStringValueOfByteArrayTermIsJustTheArrayReferenceNotTheContents() {
     String string = new Term.Bytes("Hello".getBytes(StandardCharsets.UTF_8)).toString();
     assertTrue(string.startsWith("hex:"), "starts with hex prefix");
   }

src/test/java/org/biscuitsec/biscuit/builder/parser/ParserTest.java

@@ -1,21 +1,34 @@
 package org.biscuitsec.biscuit.builder.parser;
 
 import static org.biscuitsec.biscuit.datalog.Check.Kind.One;
-import static org.junit.jupiter.api.Assertions.*;
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertTrue;
 
 import biscuit.format.schema.Schema;
 import io.vavr.Tuple2;
 import io.vavr.control.Either;
-import java.util.*;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
 import org.biscuitsec.biscuit.crypto.PublicKey;
 import org.biscuitsec.biscuit.datalog.SymbolTable;
 import org.biscuitsec.biscuit.datalog.TemporarySymbolTable;
 import org.biscuitsec.biscuit.datalog.expressions.Op;
 import org.biscuitsec.biscuit.token.Biscuit;
-import org.biscuitsec.biscuit.token.builder.*;
+import org.biscuitsec.biscuit.token.builder.Block;
+import org.biscuitsec.biscuit.token.builder.Check;
+import org.biscuitsec.biscuit.token.builder.Expression;
+import org.biscuitsec.biscuit.token.builder.Fact;
+import org.biscuitsec.biscuit.token.builder.Predicate;
+import org.biscuitsec.biscuit.token.builder.Rule;
+import org.biscuitsec.biscuit.token.builder.Scope;
+import org.biscuitsec.biscuit.token.builder.Term;
+import org.biscuitsec.biscuit.token.builder.Utils;
 import org.biscuitsec.biscuit.token.builder.parser.Error;
 import org.biscuitsec.biscuit.token.builder.parser.Parser;
-import org.junit.jupiter.api.Assertions;
 import org.junit.jupiter.api.Test;
 
 class ParserTest {
@@ -75,7 +88,8 @@ void testFact() throws org.biscuitsec.biscuit.error.Error.Language {
     assertEquals(
         Either.right(
             new Tuple2<>(
-                "", Utils.fact("n1:right", Arrays.asList(Utils.string("file1"), Utils.str("read"))))),
+                "",
+                Utils.fact("n1:right", Arrays.asList(Utils.string("file1"), Utils.str("read"))))),
         res4);
   }
 
@@ -227,30 +241,30 @@ void ruleWithFreeExpressionVariables() {
         Either.left(
             new Error(
                 " resource($0), operation(\"read\"), $test",
-                "rule head or expressions contains variables that are not used in predicates of the rule's body: [test]")),
+                "rule head or expressions contains variables that are not used in predicates of the"
+                    + " rule's body: [test]")),
         res);
   }
 
   @Test
   void testRuleWithScope() {
     Either<Error, Tuple2<String, Rule>> res =
         Parser.rule(
-            "valid_date(\"file1\") <- resource(\"file1\")  trusting ed25519/6e9e6d5a75cf0c0e87ec1256b4dfed0ca3ba452912d213fcc70f8516583db9db, authority ");
-    assertEquals(
-        Either.right(
-            new Tuple2<>(
-                "",
-                new Rule(
-                    new Predicate("valid_date", List.of(Utils.string("file1"))),
-                    Arrays.asList(Utils.pred("resource", List.of(Utils.string("file1")))),
-                    new ArrayList<>(),
-                    Arrays.asList(
-                        Scope.publicKey(
-                            new PublicKey(
-                                Schema.PublicKey.Algorithm.Ed25519,
-                                "6e9e6d5a75cf0c0e87ec1256b4dfed0ca3ba452912d213fcc70f8516583db9db")),
-                        Scope.authority())))),
-        res);
+            "valid_date(\"file1\") <- resource(\"file1\")  trusting"
+                + " ed25519/6e9e6d5a75cf0c0e87ec1256b4dfed0ca3ba452912d213fcc70f8516583db9db,"
+                + " authority ");
+    Rule refRule =
+        new Rule(
+            new Predicate("valid_date", List.of(Utils.string("file1"))),
+            List.of(Utils.pred("resource", List.of(Utils.string("file1")))),
+            new ArrayList<>(),
+            Arrays.asList(
+                Scope.publicKey(
+                    new PublicKey(
+                        Schema.PublicKey.Algorithm.Ed25519,
+                        "6e9e6d5a75cf0c0e87ec1256b4dfed0ca3ba452912d213fcc70f8516583db9db")),
+                Scope.authority()));
+    assertEquals(Either.right(new Tuple2<>("", refRule)), res);
   }
 
   @Test
@@ -313,7 +327,7 @@ void testExpression() {
 
     SymbolTable s3 = new SymbolTable();
     long test = s3.insert("test");
-    Assertions.assertEquals(
+    assertEquals(
         Arrays.asList(
             new Op.Value(new org.biscuitsec.biscuit.datalog.Term.Integer(1)),
             new Op.Value(new org.biscuitsec.biscuit.datalog.Term.Variable(test)),

src/test/java/org/biscuitsec/biscuit/crypto/SignatureTest.java

@@ -1,6 +1,5 @@
 package org.biscuitsec.biscuit.crypto;
 
-import static biscuit.format.schema.Schema.PublicKey.Algorithm.*;
 import static io.vavr.API.Right;
 import static org.junit.jupiter.api.Assertions.assertArrayEquals;
 import static org.junit.jupiter.api.Assertions.assertDoesNotThrow;
@@ -22,26 +21,33 @@ public class SignatureTest {
 
   @Test
   public void testSerialize() {
-    testSerialize(Ed25519, 32);
-    testSerialize(
-        SECP256R1, 33); // compressed - 0x02 or 0x03 prefix byte, 32 bytes for X coordinate
+    prTestSerialize(Schema.PublicKey.Algorithm.Ed25519, 32);
+    prTestSerialize(
+        // compressed - 0x02 or 0x03 prefix byte, 32 bytes for X coordinate
+        Schema.PublicKey.Algorithm.SECP256R1, 33);
   }
 
   @Test
   public void testThreeMessages()
       throws NoSuchAlgorithmException, SignatureException, InvalidKeyException {
-    testThreeMessages(Ed25519);
-    testThreeMessages(SECP256R1);
+    prTestThreeMessages(Schema.PublicKey.Algorithm.Ed25519);
+    prTestThreeMessages(Schema.PublicKey.Algorithm.SECP256R1);
   }
 
-  /*
   @Test
-  public void testChangeMessages() throws NoSuchAlgorithmException, SignatureException, InvalidKeyException {
-      testChangeMessages(Ed25519);
-      testChangeMessages(SECP256R1);
-  }*/
+  public void testSerializeBiscuit() throws Error {
+    var root = KeyPair.generate(Schema.PublicKey.Algorithm.SECP256R1);
+    var biscuit =
+        Biscuit.builder(root)
+            .addAuthorityFact("user(\"1234\")")
+            .addAuthorityCheck("check if operation(\"read\")")
+            .build();
+    var serialized = biscuit.serialize();
+    var unverified = Biscuit.fromBytes(serialized);
+    assertDoesNotThrow(() -> unverified.verify(root.getPublicKey()));
+  }
 
-  private static void testSerialize(
+  private static void prTestSerialize(
       Schema.PublicKey.Algorithm algorithm, int expectedPublicKeyLength) {
     byte[] seed = {1, 2, 3, 4};
     SecureRandom rng = new SecureRandom(seed);
@@ -52,8 +58,8 @@ private static void testSerialize(
     byte[] serializedSecretKey = keypair.toBytes();
     byte[] serializedPublicKey = pubkey.toBytes();
 
-    KeyPair deserializedSecretKey = KeyPair.generate(algorithm, serializedSecretKey);
-    PublicKey deserializedPublicKey = new PublicKey(algorithm, serializedPublicKey);
+    final KeyPair deserializedSecretKey = KeyPair.generate(algorithm, serializedSecretKey);
+    final PublicKey deserializedPublicKey = new PublicKey(algorithm, serializedPublicKey);
 
     assertEquals(32, serializedSecretKey.length);
     assertEquals(expectedPublicKeyLength, serializedPublicKey.length);
@@ -67,32 +73,7 @@ private static void testSerialize(
     assertEquals(pubkey.toHex(), deserializedPublicKey.toHex());
   }
 
-  /*
-  private static void testChangeMessages(Schema.PublicKey.Algorithm algorithm) throws NoSuchAlgorithmException, SignatureException, InvalidKeyException {
-      byte[] seed = {0, 0, 0, 0};
-      SecureRandom rng = new SecureRandom(seed);
-
-      String message1 = "hello";
-      KeyPair root = KeyPair.generate(algorithm, rng);
-      KeyPair keypair2 = KeyPair.generate(algorithm, rng);
-      Token token1 = new Token(root, message1.getBytes(), keypair2);
-      assertEquals(Right(null), token1.verify(new PublicKey(algorithm, root.getPublicKey().getKey())));
-
-      String message2 = "world";
-      KeyPair keypair3 = KeyPair.generate(algorithm, rng);
-      Token token2 = token1.append(keypair3, message2.getBytes());
-      token2.blocks.set(1, "you".getBytes());
-      assertEquals(Left(new Error.FormatError.Signature.InvalidSignature("signature error: Verification equation was not satisfied")),
-              token2.verify(new PublicKey(algorithm, root.getPublicKey().getKey())));
-
-      String message3 = "!!";
-      KeyPair keypair4 = KeyPair.generate(algorithm, rng);
-      Token token3 = token2.append(keypair4, message3.getBytes());
-      assertEquals(Left(new Error.FormatError.Signature.InvalidSignature("signature error: Verification equation was not satisfied")),
-              token3.verify(new PublicKey(algorithm, root.getPublicKey().getKey())));
-  }*/
-
-  private static void testThreeMessages(Schema.PublicKey.Algorithm algorithm)
+  private static void prTestThreeMessages(Schema.PublicKey.Algorithm algorithm)
       throws NoSuchAlgorithmException, SignatureException, InvalidKeyException {
     byte[] seed = {0, 0, 0, 0};
     SecureRandom rng = new SecureRandom(seed);
@@ -118,17 +99,4 @@ private static void testThreeMessages(Schema.PublicKey.Algorithm algorithm)
     Token token3 = token2.append(keypair4, message3.getBytes());
     assertEquals(Right(null), token3.verify(root.getPublicKey()));
   }
-
-  @Test
-  public void testSerializeBiscuit() throws Error {
-    var root = KeyPair.generate(SECP256R1);
-    var biscuit =
-        Biscuit.builder(root)
-            .addAuthorityFact("user(\"1234\")")
-            .addAuthorityCheck("check if operation(\"read\")")
-            .build();
-    var serialized = biscuit.serialize();
-    var unverified = Biscuit.fromBytes(serialized);
-    assertDoesNotThrow(() -> unverified.verify(root.getPublicKey()));
-  }
 }

src/test/java/org/biscuitsec/biscuit/datalog/WorldTest.java

@@ -4,7 +4,10 @@
 import static org.junit.jupiter.api.Assertions.assertTrue;
 
 import java.time.Instant;
-import java.util.*;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.Iterator;
 import java.util.stream.Collectors;
 import org.biscuitsec.biscuit.datalog.expressions.Expression;
 import org.biscuitsec.biscuit.datalog.expressions.Op;
@@ -51,12 +54,12 @@ public void testFamily() throws Error {
             new ArrayList<>());
 
     System.out.println("testing r1: " + syms.formatRule(r1));
-    FactSet query_rule_result = w.queryRule(r1, (long) 0, new TrustedOrigins(0), syms);
+    FactSet queryRuleResult = w.queryRule(r1, (long) 0, new TrustedOrigins(0), syms);
     System.out.println(
         "grandparents query_rules: ["
             + String.join(
                 ", ",
-                query_rule_result.stream()
+                queryRuleResult.stream()
                     .map((f) -> syms.formatFact(f))
                     .collect(Collectors.toList()))
             + "]");
@@ -593,7 +596,7 @@ public void testSet() throws Error {
                                 new Term.Set(
                                     new HashSet<>(
                                         Arrays.asList(
-                                            new Term.Integer(0l), new Term.Integer(1l))))),
+                                            new Term.Integer(0L), new Term.Integer(1L))))),
                             new Op.Value(new Term.Variable(syms.insert("int"))),
                             new Op.Binary(Op.BinaryOp.Contains))))));
     System.out.println("testing r1: " + syms.formatRule(r1));
@@ -610,8 +613,8 @@ public void testSet() throws Error {
                     new Fact(new Predicate(int_set, Arrays.asList(abc, syms.add("test")))))));
     assertEquals(expected, res);
 
-    final long abc_sym_id = syms.insert("abc");
-    final long ghi_sym_id = syms.insert("ghi");
+    final long abcSymId = syms.insert("abc");
+    final long ghiSymId = syms.insert("ghi");
 
     final Rule r2 =
         new Rule(
@@ -636,7 +639,7 @@ public void testSet() throws Error {
                                 new Term.Set(
                                     new HashSet<>(
                                         Arrays.asList(
-                                            new Term.Str(abc_sym_id), new Term.Str(ghi_sym_id))))),
+                                            new Term.Str(abcSymId), new Term.Str(ghiSymId))))),
                             new Op.Value(new Term.Variable(syms.insert("sym"))),
                             new Op.Binary(Op.BinaryOp.Contains),
                             new Op.Unary(Op.UnaryOp.Negate))))));

src/test/java/org/biscuitsec/biscuit/token/AuthorizerTest.java

@@ -41,7 +41,7 @@ public void testAuthorizerPolicy() throws Parser {
   }
 
   @Test
-  public void testPuttingSomeFactsInABiscuitAndGettingThemBackOutAgain() throws Exception {
+  public void testPuttingSomeFactsInBiscuitAndGettingThemBackOutAgain() throws Exception {
 
     KeyPair keypair = KeyPair.generate(Schema.PublicKey.Algorithm.Ed25519, new SecureRandom());