Merge pull request #3 from anfen93/improvements

better error handling, updated tests

Author: anfen93

go.mod

@@ -11,8 +11,11 @@ require (
 require (
 	aidanwoods.dev/go-result v0.1.0 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/kr/pretty v0.3.0 // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
+	github.com/rogpeppe/go-internal v1.12.0 // indirect
 	golang.org/x/crypto v0.17.0 // indirect
 	golang.org/x/sys v0.15.0 // indirect
+	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )

go.sum

@@ -2,19 +2,34 @@ aidanwoods.dev/go-paseto v1.5.1 h1:IvT7wk7jmeTff6wyk7RlS6uAjUIAKU4MU2hkqr95lCo=
 aidanwoods.dev/go-paseto v1.5.1/go.mod h1:9J13iCMdWrkfK1AxAg9QDHLaDMYSEP1ldbFiR+DfmVc=
 aidanwoods.dev/go-result v0.1.0 h1:y/BMIRX6q3HwaorX1Wzrjo3WUdiYeyWbvGe18hKS3K8=
 aidanwoods.dev/go-result v0.1.0/go.mod h1:yridkWghM7AXSFA6wzx0IbsurIm1Lhuro3rYef8FBHM=
+github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/google/uuid v1.5.0 h1:1p67kYwdtXjb0gL0BPiP1Av9wiZPo5A8z2cWkTZ+eyU=
 github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
+github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
+github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
+github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4=
 github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
 golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
 golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
+gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

paseto_maker.go

@@ -6,6 +6,7 @@ package goPasetoV4
 import (
 	"aidanwoods.dev/go-paseto"
 	"crypto/rand"
+	"github.com/anfen93/goPasetoV4/util"
 	"github.com/google/uuid"
 	"os"
 	"strings"
@@ -37,10 +38,28 @@ func NewPasetoMaker() Maker {
 	return &PasetoMaker{paseto.NewV4SymmetricKey(), nonce}
 }
 
+// validateDuration validates the duration of a token. It returns true if the
+// duration is valid or false if it is not. It returns an error if the duration
+// is invalid.
+func validateDuration(duration time.Duration) (bool, error) {
+	if duration == 0 {
+		return false, util.ErrDurationNotSet()
+	}
+	if duration < 0 {
+		return false, util.ErrDurationNegative()
+	}
+	return true, nil
+}
+
 // CreateToken generates a new Paseto token for a given username and duration.
 // It returns an encrypted token string and the Payload struct, or an error if the token generation fails.
 func (maker *PasetoMaker) CreateToken(username string, duration time.Duration) (string, *Payload, error) {
 
+	// Validate the duration
+	_, err := validateDuration(duration)
+	if err != nil {
+		return "", nil, err
+	}
 	token := paseto.NewToken() // Initializes a new Paseto token
 
 	tokenID, err := uuid.NewRandom() // Generates a unique identifier for the token

paseto_maker_test.go

@@ -1,56 +1,93 @@
 package goPasetoV4
 
 import (
-	"github.com/stretchr/testify/require"
 	"testing"
 	"time"
+
+	"github.com/stretchr/testify/require"
 )
 
-func TestPasetoMakerTokenLifecycle(t *testing.T) {
-	// Testing token creation and validation lifecycle
+func TestPasetoMaker(t *testing.T) {
 	maker := NewPasetoMaker()
-	require.NotNil(t, maker, "Maker should not be nil")
 
-	username := "testuser"
-	duration := time.Minute
+	t.Run("CreateToken with Valid Inputs", func(t *testing.T) {
+		username := "testuser"
+		duration := time.Minute
 
-	token, payload, err := maker.CreateToken(username, duration)
-	require.NoError(t, err, "Token creation should not error")
-	require.NotEmpty(t, token, "Token should not be empty")
-	require.NotEmpty(t, payload, "Payload should not be empty")
+		token, payload, err := maker.CreateToken(username, duration)
+		require.NoError(t, err)
+		require.NotEmpty(t, token)
+		require.NotNil(t, payload)
+		require.Equal(t, username, payload.Username)
+	})
 
-	payload, err = maker.VerifyToken(token)
-	require.NoError(t, err, "Token verification should not error")
-	require.NotEmpty(t, payload, "Payload should not be empty")
+	t.Run("VerifyToken with Valid Token", func(t *testing.T) {
+		username := "testuser"
+		duration := time.Minute
 
-	require.NotZero(t, payload.ID, "Payload ID should not be zero")
-	require.Equal(t, username, payload.Username, "Username should match")
-	require.WithinDuration(t, time.Now(), payload.IssuedAt, time.Second, "IssuedAt should be recent")
-	require.WithinDuration(t, time.Now().Add(duration), payload.ExpiredAt, time.Second, "ExpiredAt should be correct")
-}
+		token, _, err := maker.CreateToken(username, duration)
+		require.NoError(t, err)
 
-func TestPasetoMakerExpiredToken(t *testing.T) {
-	// Testing behavior with an expired token
-	maker := NewPasetoMaker()
-	require.NotNil(t, maker, "Maker should not be nil")
+		payload, err := maker.VerifyToken(token)
+		require.NoError(t, err)
+		require.NotNil(t, payload)
+		require.Equal(t, username, payload.Username)
+	})
 
-	token, payload, err := maker.CreateToken("expireduser", -time.Minute)
-	require.NoError(t, err, "Expired token creation should not error")
-	require.NotEmpty(t, token, "Expired token should not be empty")
+	t.Run("VerifyToken with Valid Token and Expiration in 24h", func(t *testing.T) {
+		username := "testuser"
+		//duration is expressed as time.Duration of 24h
+		duration := time.Duration(24) * time.Hour
 
-	payload, err = maker.VerifyToken(token)
-	require.Error(t, err, "Expired token verification should error")
-	require.EqualError(t, err, ErrExpiredToken.Error(), "Error should be ErrExpiredToken")
-	require.Nil(t, payload, "Payload should be nil for an expired token")
-}
+		token, _, err := maker.CreateToken(username, duration)
+		require.NoError(t, err)
 
-func TestPasetoMakerInvalidToken(t *testing.T) {
-	// Testing behavior with an invalid token
-	maker := NewPasetoMaker()
-	require.NotNil(t, maker, "Maker should not be nil")
+		payload, err := maker.VerifyToken(token)
+		require.NoError(t, err)
+		require.NotNil(t, payload)
+		require.Equal(t, username, payload.Username)
+	})
+
+	t.Run("VerifyToken with Expired Token", func(t *testing.T) {
+		username := "testuser"
+		//two minutes ago
+		expiredDuration := -time.Minute * 2
+
+		token, _, err := maker.CreateToken(username, expiredDuration)
+
+		payload, err := maker.VerifyToken(token)
+		require.Error(t, err)
+		require.Nil(t, payload)
+	})
+
+	t.Run("CreateToken with Zero Duration", func(t *testing.T) {
+		username := "testuser"
+
+		token, payload, err := maker.CreateToken(username, 0)
+		require.Error(t, err)
+		require.Empty(t, token)
+		require.Nil(t, payload)
+	})
+
+	t.Run("CreateToken with Negative Duration", func(t *testing.T) {
+		username := "testuser"
+
+		token, payload, err := maker.CreateToken(username, -time.Minute)
+		require.Error(t, err)
+		require.Empty(t, token)
+		require.Nil(t, payload)
+	})
+
+	t.Run("VerifyToken with Altered Token", func(t *testing.T) {
+		username := "testuser"
+		duration := time.Minute
+
+		token, _, err := maker.CreateToken(username, duration)
+		require.NoError(t, err)
 
-	payload, err := maker.VerifyToken("invalidtoken")
-	require.Error(t, err, "Invalid token verification should error")
-	require.EqualError(t, err, ErrInvalidToken.Error(), "Error should be ErrInvalidToken")
-	require.Nil(t, payload, "Payload should be nil for an invalid token")
+		alteredToken := token + "something-extra"
+		payload, err := maker.VerifyToken(alteredToken)
+		require.Error(t, err)
+		require.Nil(t, payload)
+	})
 }

util/errors.go

@@ -0,0 +1,13 @@
+package util
+
+import "errors"
+
+// ErrDurationNotSet is an error for when a duration is not set
+func ErrDurationNotSet() error {
+	return errors.New("duration not set")
+}
+
+// ErrDurationNegative is an error for when a duration is negative
+func ErrDurationNegative() error {
+	return errors.New("duration cannot be negative")
+}