Updated implementation and test cases

khanh.nguyen · khanh.nguyen · commit 7de3beb15c7e · 2021-08-03T11:03:21.000+02:00
diff --git a/signature/claims.go b/signature/claims.go
@@ -20,12 +20,12 @@ type Claims struct {
 	// immediately following call to Valid() by jwt-go has *all* necessary information to
 	// determine whether JWT is valid.  These fields should not be overwritten by JSON
 	// unmarshal.
-	receivedTime       time.Time `json:"-"`
-	correctPayloadHash string    `json:"-"`
-	correctURLHash     string    `json:"-"`
+	receivedTime       time.Time
+	correctPayloadHash string
+	correctURLHash     string
 
 	Issuer         string `json:"iss"`
-	IssuedAt       int64  `json:"iat"`
+	NotBefore      int64  `json:"nbf"`
 	ExpirationTime int64  `json:"exp"`
 	JWTID          string `json:"jti"`
 	URLHash        string `json:"url_hash"`
@@ -38,11 +38,11 @@ func (c Claims) Valid() error {
 	var errs []string
 
 	if c.Issuer != "MessageBird" {
-		errs = append(errs, "wrong iss")
+		errs = append(errs, "claim iss has wrong value")
 	}
 
-	if iat := time.Unix(c.IssuedAt, int64(c.receivedTime.Nanosecond())).Add(-maxSkew); c.receivedTime.Before(iat) {
-		errs = append(errs, "claim iat is in the future")
+	if iat := time.Unix(c.NotBefore, int64(c.receivedTime.Nanosecond())).Add(-maxSkew); c.receivedTime.Before(iat) {
+		errs = append(errs, "claim nbf is in the future")
 	}
 
 	if exp := time.Unix(c.ExpirationTime, int64(c.receivedTime.Nanosecond())).Add(maxSkew); c.receivedTime.After(exp) {
diff --git a/signature/signature_test.go b/signature/signature_test.go
@@ -96,7 +96,8 @@ func TestValidSignature(t *testing.T) {
 		Payload   string `json:"payload"`
 		Timestamp string `json:"timestamp"`
 		Token     string `json:"token"`
-		Outcome   string `json:"outcome"`
+		Valid     bool   `json:"valid"`
+		Reason    string `json:"reason"`
 	}
 	if err := json.Unmarshal(testData, &tcs); err != nil {
 		assert.NoError(t, err)
@@ -109,13 +110,13 @@ func TestValidSignature(t *testing.T) {
 				return r
 			}
 
-			v := NewValidator(testSecret)
+			v := NewValidator([]byte(tc.Secret))
 			err := v.ValidSignature(tc.Token, tc.Url, []byte(tc.Payload))
-			if tc.Outcome == "valid" {
+			if tc.Valid {
 				assert.NoError(t, err)
 				return
 			}
-			assert.EqualError(t, err, tc.Outcome)
+			assert.EqualError(t, err, tc.Reason)
 		})
 	}
 }
diff --git a/signature/testdata/reference.json b/signature/testdata/reference.json

Original file line number	Diff line number	Diff line change
`@@ -96,7 +96,8 @@ func TestValidSignature(t *testing.T) {`
`96`	`96`	Payload string `json:"payload"`
`97`	`97`	Timestamp string `json:"timestamp"`
`98`	`98`	Token string `json:"token"`
`99`		- Outcome string `json:"outcome"`
	`99`	+ Valid bool `json:"valid"`
	`100`	+ Reason string `json:"reason"`
`100`	`101`	`}`
`101`	`102`	`if err := json.Unmarshal(testData, &tcs); err != nil {`
`102`	`103`	`assert.NoError(t, err)`
`@@ -109,13 +110,13 @@ func TestValidSignature(t *testing.T) {`
`109`	`110`	`return r`
`110`	`111`	`}`
`111`	`112`
`112`		`- v := NewValidator(testSecret)`
	`113`	`+ v := NewValidator([]byte(tc.Secret))`
`113`	`114`	`err := v.ValidSignature(tc.Token, tc.Url, []byte(tc.Payload))`
`114`		`- if tc.Outcome == "valid" {`
	`115`	`+ if tc.Valid {`
`115`	`116`	`assert.NoError(t, err)`
`116`	`117`	`return`
`117`	`118`	`}`
`118`		`- assert.EqualError(t, err, tc.Outcome)`
	`119`	`+ assert.EqualError(t, err, tc.Reason)`
`119`	`120`	`})`
`120`	`121`	`}`
`121`	`122`	`}`