authlete 1.6.0 → 1.10.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/authlete.gemspec +2 -2
- data/lib/authlete/model/client.rb +163 -145
- data/lib/authlete/model/hsk.rb +67 -0
- data/lib/authlete/model/service.rb +264 -219
- data/lib/authlete/version.rb +1 -1
- data/lib/authlete.rb +1 -0
- data/test/authlete/model/test_client.rb +416 -401
- data/test/authlete/model/test_hsk.rb +108 -0
- data/test/authlete/model/test_service.rb +511 -459
- metadata +14 -12
@@ -21,183 +21,189 @@ require 'minitest/autorun'
|
|
21
21
|
|
22
22
|
|
23
23
|
class ClientTest < Minitest::Test
|
24
|
-
NUMBER
|
25
|
-
SERVICE_NUMBER
|
26
|
-
DEVELOPER
|
27
|
-
CLIENT_ID
|
28
|
-
CLIENT_ID_ALIAS
|
29
|
-
CLIENT_ID_ALIAS_ENABLED
|
30
|
-
CLIENT_SECRET
|
31
|
-
CLIENT_TYPE
|
32
|
-
REDIRECT_URIS
|
33
|
-
RESPONSE_TYPES
|
34
|
-
GRANT_TYPES
|
35
|
-
APPLICATION_TYPE
|
36
|
-
CONTACTS
|
37
|
-
CLIENT_NAME
|
38
|
-
CLIENT_NAME_TAG
|
39
|
-
CLIENT_NAME_VALUE
|
40
|
-
CLIENT_NAMES
|
41
|
-
LOGO_URI
|
42
|
-
LOGO_URI_TAG
|
43
|
-
LOGO_URI_VALUE
|
44
|
-
LOGO_URIS
|
45
|
-
CLIENT_URI
|
46
|
-
CLIENT_URI_TAG
|
47
|
-
CLIENT_URI_VALUE
|
48
|
-
CLIENT_URIS
|
49
|
-
POLICY_URI
|
50
|
-
POLICY_URI_TAG
|
51
|
-
POLICY_URI_VALUE
|
52
|
-
POLICY_URIS
|
53
|
-
TOS_URI
|
54
|
-
TOS_URI_TAG
|
55
|
-
TOS_URI_VALUE
|
56
|
-
TOS_URIS
|
57
|
-
JWKS_URI
|
58
|
-
JWKS
|
59
|
-
DERIVED_SECTOR_IDENTIFIER
|
60
|
-
SECTOR_IDENTIFIER_URI
|
61
|
-
SUBJECT_TYPE
|
62
|
-
ID_TOKEN_SIGN_ALG
|
63
|
-
ID_TOKEN_ENCRYPTION_ALG
|
64
|
-
ID_TOKEN_ENCRYPTION_ENC
|
65
|
-
USER_INFO_SIGN_ALG
|
66
|
-
USER_INFO_ENCRYPTION_ALG
|
67
|
-
USER_INFO_ENCRYPTION_ENC
|
68
|
-
REQUEST_SIGN_ALG
|
69
|
-
REQUEST_ENCRYPTION_ALG
|
70
|
-
REQUEST_ENCRYPTION_ENC
|
71
|
-
TOKEN_AUTH_METHOD
|
72
|
-
TOKEN_AUTH_SIGN_ALG
|
73
|
-
DEFAULT_MAX_AGE
|
74
|
-
DEFAULT_ACRS
|
75
|
-
AUTH_TIME_REQUIRED
|
76
|
-
LOGIN_URI
|
77
|
-
REQUEST_URIS
|
78
|
-
DESCRIPTION
|
79
|
-
DESCRIPTION_TAG
|
80
|
-
DESCRIPTION_VALUE
|
81
|
-
DESCRIPTIONS
|
82
|
-
CREATED_AT
|
83
|
-
MODIFIED_AT
|
84
|
-
REQUESTABLE_SCOPES
|
85
|
-
REQUESTABLE_SCOPES_ENABLED
|
86
|
-
ACCESS_TOKEN_DURATION
|
87
|
-
REFRESH_TOKEN_DURATION
|
88
|
-
EXTENSION
|
89
|
-
|
90
|
-
|
91
|
-
|
92
|
-
|
93
|
-
|
94
|
-
TLS_CLIENT_AUTH_SUBJECT_DN
|
95
|
-
TLS_CLIENT_AUTH_SAN_DNS
|
96
|
-
TLS_CLIENT_AUTH_SAN_URI
|
97
|
-
TLS_CLIENT_AUTH_SAN_IP
|
98
|
-
TLS_CLIENT_AUTH_SAN_EMAIL
|
99
|
-
TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS
|
100
|
-
SELF_SIGNED_CERTIFICATE_KEY_ID
|
101
|
-
SOFTWARE_ID
|
102
|
-
SOFTWARE_VERSION
|
103
|
-
AUTHORIZATION_SIGN_ALG
|
104
|
-
AUTHORIZATION_ENCRYPTION_ALG
|
105
|
-
AUTHORIZATION_ENCRYPTION_ENC
|
106
|
-
BC_DELIVERY_MODE
|
107
|
-
BC_NOTIFICATION_ENDPOINT
|
108
|
-
BC_REQUEST_SIGN_ALG
|
109
|
-
BC_USER_CODE_REQUIRED
|
110
|
-
DYNAMICALLY_REGISTERED
|
111
|
-
REGISTRATION_ACCESS_TOKEN_HASH
|
112
|
-
AUTHORIZATION_DETAILS_TYPES
|
113
|
-
PAR_REQUIRED
|
114
|
-
REQUEST_OBJECT_REQUIRED
|
115
|
-
ATTRIBUTE_KEY
|
116
|
-
ATTRIBUTE_VALUE
|
117
|
-
ATTRIBUTES
|
118
|
-
CUSTOM_METADATA
|
24
|
+
NUMBER = 100
|
25
|
+
SERVICE_NUMBER = 1000
|
26
|
+
DEVELOPER = '<developer>'
|
27
|
+
CLIENT_ID = 12345
|
28
|
+
CLIENT_ID_ALIAS = '<client-id-alias>'
|
29
|
+
CLIENT_ID_ALIAS_ENABLED = true
|
30
|
+
CLIENT_SECRET = '<client-secret>'
|
31
|
+
CLIENT_TYPE = 'PUBLIC'
|
32
|
+
REDIRECT_URIS = [ '<redirect-uri0>', '<redirect-uri1>' ]
|
33
|
+
RESPONSE_TYPES = [ 'NONE', 'CODE', 'TOKEN', 'ID_TOKEN' ]
|
34
|
+
GRANT_TYPES = [ 'AUTHORIZATION_CODE', 'REFRESH_TOKEN' ]
|
35
|
+
APPLICATION_TYPE = 'WEB'
|
36
|
+
CONTACTS = [ '<contact0>', '<contact1>' ]
|
37
|
+
CLIENT_NAME = '<client-name>'
|
38
|
+
CLIENT_NAME_TAG = '<client-name0-tag>'
|
39
|
+
CLIENT_NAME_VALUE = '<client-name0-value>'
|
40
|
+
CLIENT_NAMES = [ Authlete::Model::TaggedValue.new(tag: CLIENT_NAME_TAG, value: CLIENT_NAME_VALUE) ]
|
41
|
+
LOGO_URI = '<logo-uri>'
|
42
|
+
LOGO_URI_TAG = '<logo-uri0-tag>'
|
43
|
+
LOGO_URI_VALUE = '<logo-uri0-value>'
|
44
|
+
LOGO_URIS = [ Authlete::Model::TaggedValue.new(tag: LOGO_URI_TAG, value: LOGO_URI_VALUE) ]
|
45
|
+
CLIENT_URI = '<client-uri>'
|
46
|
+
CLIENT_URI_TAG = '<client-uri0-tag>'
|
47
|
+
CLIENT_URI_VALUE = '<client-uri0-value>'
|
48
|
+
CLIENT_URIS = [ Authlete::Model::TaggedValue.new(tag: CLIENT_URI_TAG, value: CLIENT_URI_VALUE) ]
|
49
|
+
POLICY_URI = '<policy-uri>'
|
50
|
+
POLICY_URI_TAG = '<policy-uri0-tag>'
|
51
|
+
POLICY_URI_VALUE = '<policy-uri0-value>'
|
52
|
+
POLICY_URIS = [ Authlete::Model::TaggedValue.new(tag: POLICY_URI_TAG, value: POLICY_URI_VALUE) ]
|
53
|
+
TOS_URI = '<tos-uri>'
|
54
|
+
TOS_URI_TAG = '<tos-uri0-tag>'
|
55
|
+
TOS_URI_VALUE = '<tos-uri0-value>'
|
56
|
+
TOS_URIS = [ Authlete::Model::TaggedValue.new(tag: TOS_URI_TAG, value: TOS_URI_VALUE) ]
|
57
|
+
JWKS_URI = '<jwks-uri>'
|
58
|
+
JWKS = '<jwks>'
|
59
|
+
DERIVED_SECTOR_IDENTIFIER = '<derived-sector-identifier>'
|
60
|
+
SECTOR_IDENTIFIER_URI = '<sector-identifier-uri>'
|
61
|
+
SUBJECT_TYPE = 'PUBLIC'
|
62
|
+
ID_TOKEN_SIGN_ALG = 'HS256'
|
63
|
+
ID_TOKEN_ENCRYPTION_ALG = 'PBES2_HS256_A128KW'
|
64
|
+
ID_TOKEN_ENCRYPTION_ENC = 'A128CBC_HS256'
|
65
|
+
USER_INFO_SIGN_ALG = 'HS256'
|
66
|
+
USER_INFO_ENCRYPTION_ALG = 'PBES2_HS256_A128KW'
|
67
|
+
USER_INFO_ENCRYPTION_ENC = 'A128CBC_HS256'
|
68
|
+
REQUEST_SIGN_ALG = 'HS256'
|
69
|
+
REQUEST_ENCRYPTION_ALG = 'PBES2_HS256_A128KW'
|
70
|
+
REQUEST_ENCRYPTION_ENC = 'A128CBC_HS256'
|
71
|
+
TOKEN_AUTH_METHOD = 'CLIENT_SECRET_BASIC'
|
72
|
+
TOKEN_AUTH_SIGN_ALG = 'HS256'
|
73
|
+
DEFAULT_MAX_AGE = 1000
|
74
|
+
DEFAULT_ACRS = [ '<default-acr0>', '<default-acr1>' ]
|
75
|
+
AUTH_TIME_REQUIRED = true
|
76
|
+
LOGIN_URI = '<login-uri>'
|
77
|
+
REQUEST_URIS = [ '<request-uri0>', '<request-uri1>' ]
|
78
|
+
DESCRIPTION = '<description>'
|
79
|
+
DESCRIPTION_TAG = '<description0-tag>'
|
80
|
+
DESCRIPTION_VALUE = '<description0-value>'
|
81
|
+
DESCRIPTIONS = [ Authlete::Model::TaggedValue.new(tag: DESCRIPTION_TAG, value: DESCRIPTION_VALUE) ]
|
82
|
+
CREATED_AT = 10000
|
83
|
+
MODIFIED_AT = 10000
|
84
|
+
REQUESTABLE_SCOPES = [ '<requestable-scope0>', '<requestable-scope1>' ]
|
85
|
+
REQUESTABLE_SCOPES_ENABLED = true
|
86
|
+
ACCESS_TOKEN_DURATION = 10000
|
87
|
+
REFRESH_TOKEN_DURATION = 10000
|
88
|
+
EXTENSION = Authlete::Model::ClientExtension.new(
|
89
|
+
requestableScopes: REQUESTABLE_SCOPES,
|
90
|
+
requestableScopesEnabled: REQUESTABLE_SCOPES_ENABLED,
|
91
|
+
accessTokenDuration: ACCESS_TOKEN_DURATION,
|
92
|
+
refreshTokenDuration: REFRESH_TOKEN_DURATION
|
93
|
+
)
|
94
|
+
TLS_CLIENT_AUTH_SUBJECT_DN = '<tls-client-auth-subject-dn>'
|
95
|
+
TLS_CLIENT_AUTH_SAN_DNS = '<tls-client-auth-san-dns>'
|
96
|
+
TLS_CLIENT_AUTH_SAN_URI = '<tls-client-auth-san-uri>'
|
97
|
+
TLS_CLIENT_AUTH_SAN_IP = '<tls-client-auth-san-ip>'
|
98
|
+
TLS_CLIENT_AUTH_SAN_EMAIL = '<tls-client-auth-san-email>'
|
99
|
+
TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS = false
|
100
|
+
SELF_SIGNED_CERTIFICATE_KEY_ID = '<self-signed-certificate-key-id>'
|
101
|
+
SOFTWARE_ID = '<software-id>'
|
102
|
+
SOFTWARE_VERSION = '<software-version>'
|
103
|
+
AUTHORIZATION_SIGN_ALG = 'HS256'
|
104
|
+
AUTHORIZATION_ENCRYPTION_ALG = 'PBES2_HS256_A128KW'
|
105
|
+
AUTHORIZATION_ENCRYPTION_ENC = 'A128CBC_HS256'
|
106
|
+
BC_DELIVERY_MODE = 'POLL'
|
107
|
+
BC_NOTIFICATION_ENDPOINT = '<bc-notification-endpoint>'
|
108
|
+
BC_REQUEST_SIGN_ALG = 'HS256'
|
109
|
+
BC_USER_CODE_REQUIRED = true
|
110
|
+
DYNAMICALLY_REGISTERED = false
|
111
|
+
REGISTRATION_ACCESS_TOKEN_HASH = '<registration-access-token-hash>'
|
112
|
+
AUTHORIZATION_DETAILS_TYPES = [ '<authorization-details-type0>', '<authorization-details-type1>' ]
|
113
|
+
PAR_REQUIRED = false
|
114
|
+
REQUEST_OBJECT_REQUIRED = true
|
115
|
+
ATTRIBUTE_KEY = '<attribute0-key>'
|
116
|
+
ATTRIBUTE_VALUE = '<attribute0-value>'
|
117
|
+
ATTRIBUTES = [ Authlete::Model::Pair.new(key: ATTRIBUTE_KEY, value: ATTRIBUTE_VALUE) ]
|
118
|
+
CUSTOM_METADATA = '<custom-metadata>'
|
119
|
+
FRONT_CHANNEL_REQUEST_OBJECT_ENCRYPTION_REQUIRED = false
|
120
|
+
REQUEST_OBJECT_ENCRYPTION_ALG_MATCH_REQUIRED = false
|
121
|
+
REQUEST_OBJECT_ENCRYPTION_ENC_MATCH_REQUIRED = false
|
119
122
|
|
120
123
|
|
121
124
|
def generate_json
|
122
125
|
return <<~JSON
|
123
126
|
{
|
124
|
-
"number":
|
125
|
-
"serviceNumber":
|
126
|
-
"developer":
|
127
|
-
"clientId":
|
128
|
-
"clientIdAlias":
|
129
|
-
"clientIdAliasEnabled":
|
130
|
-
"clientSecret":
|
131
|
-
"clientType":
|
132
|
-
"redirectUris":
|
133
|
-
"responseTypes":
|
134
|
-
"grantTypes":
|
135
|
-
"applicationType":
|
136
|
-
"contacts":
|
137
|
-
"clientName":
|
138
|
-
"clientNames":
|
139
|
-
"logoUri":
|
140
|
-
"logoUris":
|
141
|
-
"clientUri":
|
142
|
-
"clientUris":
|
143
|
-
"policyUri":
|
144
|
-
"policyUris":
|
145
|
-
"tosUri":
|
146
|
-
"tosUris":
|
147
|
-
"jwksUri":
|
148
|
-
"jwks":
|
149
|
-
"derivedSectorIdentifier":
|
150
|
-
"sectorIdentifierUri":
|
151
|
-
"subjectType":
|
152
|
-
"idTokenSignAlg":
|
153
|
-
"idTokenEncryptionAlg":
|
154
|
-
"idTokenEncryptionEnc":
|
155
|
-
"userInfoSignAlg":
|
156
|
-
"userInfoEncryptionAlg":
|
157
|
-
"userInfoEncryptionEnc":
|
158
|
-
"requestSignAlg":
|
159
|
-
"requestEncryptionAlg":
|
160
|
-
"requestEncryptionEnc":
|
161
|
-
"tokenAuthMethod":
|
162
|
-
"tokenAuthSignAlg":
|
163
|
-
"defaultMaxAge":
|
164
|
-
"defaultAcrs":
|
165
|
-
"authTimeRequired":
|
166
|
-
"loginUri":
|
167
|
-
"requestUris":
|
168
|
-
"description":
|
169
|
-
"descriptions":
|
170
|
-
"createdAt":
|
171
|
-
"modifiedAt":
|
172
|
-
"extension":
|
173
|
-
|
174
|
-
|
175
|
-
|
176
|
-
|
177
|
-
|
178
|
-
"tlsClientAuthSubjectDn":
|
179
|
-
"tlsClientAuthSanDns":
|
180
|
-
"tlsClientAuthSanUri":
|
181
|
-
"tlsClientAuthSanIp":
|
182
|
-
"tlsClientAuthSanEmail":
|
183
|
-
"tlsClientCertificateBoundAccessTokens":
|
184
|
-
"selfSignedCertificateKeyId":
|
185
|
-
"softwareId":
|
186
|
-
"softwareVersion":
|
187
|
-
"authorizationSignAlg":
|
188
|
-
"authorizationEncryptionAlg":
|
189
|
-
"authorizationEncryptionEnc":
|
190
|
-
"bcDeliveryMode":
|
191
|
-
"bcNotificationEndpoint":
|
192
|
-
"bcRequestSignAlg":
|
193
|
-
"bcUserCodeRequired":
|
194
|
-
"dynamicallyRegistered":
|
195
|
-
"registrationAccessTokenHash":
|
196
|
-
"authorizationDetailsTypes":
|
197
|
-
"parRequired":
|
198
|
-
"requestObjectRequired":
|
199
|
-
"attributes":
|
200
|
-
"customMetadata":
|
127
|
+
"number": 100,
|
128
|
+
"serviceNumber": 1000,
|
129
|
+
"developer": "<developer>",
|
130
|
+
"clientId": 12345,
|
131
|
+
"clientIdAlias": "<client-id-alias>",
|
132
|
+
"clientIdAliasEnabled": true,
|
133
|
+
"clientSecret": "<client-secret>",
|
134
|
+
"clientType": "PUBLIC",
|
135
|
+
"redirectUris": [ "<redirect-uri0>", "<redirect-uri1>" ],
|
136
|
+
"responseTypes": [ "NONE", "CODE", "TOKEN", "ID_TOKEN" ],
|
137
|
+
"grantTypes": [ "AUTHORIZATION_CODE", "REFRESH_TOKEN" ],
|
138
|
+
"applicationType": "WEB",
|
139
|
+
"contacts": [ "<contact0>", "<contact1>" ],
|
140
|
+
"clientName": "<client-name>",
|
141
|
+
"clientNames": [ { "tag": "<client-name0-tag>", "value": "<client-name0-value>" } ],
|
142
|
+
"logoUri": "<logo-uri>",
|
143
|
+
"logoUris": [ { "tag": "<logo-uri0-tag>", "value": "<logo-uri0-value>" } ],
|
144
|
+
"clientUri": "<client-uri>",
|
145
|
+
"clientUris": [ { "tag": "<client-uri0-tag>", "value": "<client-uri0-value>" } ],
|
146
|
+
"policyUri": "<policy-uri>",
|
147
|
+
"policyUris": [ { "tag": "<policy-uri0-tag>", "value": "<policy-uri0-value>" } ],
|
148
|
+
"tosUri": "<tos-uri>",
|
149
|
+
"tosUris": [ { "tag": "<tos-uri0-tag>", "value": "<tos-uri0-value>" } ],
|
150
|
+
"jwksUri": "<jwks-uri>",
|
151
|
+
"jwks": "<jwks>",
|
152
|
+
"derivedSectorIdentifier": "<derived-sector-identifier>",
|
153
|
+
"sectorIdentifierUri": "<sector-identifier-uri>",
|
154
|
+
"subjectType": "PUBLIC",
|
155
|
+
"idTokenSignAlg": "HS256",
|
156
|
+
"idTokenEncryptionAlg": "PBES2_HS256_A128KW",
|
157
|
+
"idTokenEncryptionEnc": "A128CBC_HS256",
|
158
|
+
"userInfoSignAlg": "HS256",
|
159
|
+
"userInfoEncryptionAlg": "PBES2_HS256_A128KW",
|
160
|
+
"userInfoEncryptionEnc": "A128CBC_HS256",
|
161
|
+
"requestSignAlg": "HS256",
|
162
|
+
"requestEncryptionAlg": "PBES2_HS256_A128KW",
|
163
|
+
"requestEncryptionEnc": "A128CBC_HS256",
|
164
|
+
"tokenAuthMethod": "CLIENT_SECRET_BASIC",
|
165
|
+
"tokenAuthSignAlg": "HS256",
|
166
|
+
"defaultMaxAge": 1000,
|
167
|
+
"defaultAcrs": [ "<default-acr0>", "<default-acr1>" ],
|
168
|
+
"authTimeRequired": true,
|
169
|
+
"loginUri": "<login-uri>",
|
170
|
+
"requestUris": [ "<request-uri0>", "<request-uri1>" ],
|
171
|
+
"description": "<description>",
|
172
|
+
"descriptions": [ { "tag": "<description0-tag>", "value": "<description0-value>" } ],
|
173
|
+
"createdAt": 10000,
|
174
|
+
"modifiedAt": 10000,
|
175
|
+
"extension": {
|
176
|
+
"requestableScopes": [ "<requestable-scope0>", "<requestable-scope1>" ],
|
177
|
+
"requestableScopesEnabled": true,
|
178
|
+
"accessTokenDuration": 10000,
|
179
|
+
"refreshTokenDuration": 10000
|
180
|
+
},
|
181
|
+
"tlsClientAuthSubjectDn": "<tls-client-auth-subject-dn>",
|
182
|
+
"tlsClientAuthSanDns": "<tls-client-auth-san-dns>",
|
183
|
+
"tlsClientAuthSanUri": "<tls-client-auth-san-uri>",
|
184
|
+
"tlsClientAuthSanIp": "<tls-client-auth-san-ip>",
|
185
|
+
"tlsClientAuthSanEmail": "<tls-client-auth-san-email>",
|
186
|
+
"tlsClientCertificateBoundAccessTokens": false,
|
187
|
+
"selfSignedCertificateKeyId": "<self-signed-certificate-key-id>",
|
188
|
+
"softwareId": "<software-id>",
|
189
|
+
"softwareVersion": "<software-version>",
|
190
|
+
"authorizationSignAlg": "HS256",
|
191
|
+
"authorizationEncryptionAlg": "PBES2_HS256_A128KW",
|
192
|
+
"authorizationEncryptionEnc": "A128CBC_HS256",
|
193
|
+
"bcDeliveryMode": "POLL",
|
194
|
+
"bcNotificationEndpoint": "<bc-notification-endpoint>",
|
195
|
+
"bcRequestSignAlg": "HS256",
|
196
|
+
"bcUserCodeRequired": true,
|
197
|
+
"dynamicallyRegistered": false,
|
198
|
+
"registrationAccessTokenHash": "<registration-access-token-hash>",
|
199
|
+
"authorizationDetailsTypes": [ "<authorization-details-type0>", "<authorization-details-type1>" ],
|
200
|
+
"parRequired": false,
|
201
|
+
"requestObjectRequired": true,
|
202
|
+
"attributes": [ { "key": "<attribute0-key>", "value": "<attribute0-value>" } ],
|
203
|
+
"customMetadata": "<custom-metadata>",
|
204
|
+
"frontChannelRequestObjectEncryptionRequired": false,
|
205
|
+
"requestObjectEncryptionAlgMatchRequired": false,
|
206
|
+
"requestObjectEncryptionEncMatchRequired": false
|
201
207
|
}
|
202
208
|
JSON
|
203
209
|
end
|
@@ -205,244 +211,253 @@ class ClientTest < Minitest::Test
|
|
205
211
|
|
206
212
|
def generate_hash
|
207
213
|
{
|
208
|
-
number:
|
209
|
-
serviceNumber:
|
210
|
-
developer:
|
211
|
-
clientId:
|
212
|
-
clientIdAlias:
|
213
|
-
clientIdAliasEnabled:
|
214
|
-
clientSecret:
|
215
|
-
clientType:
|
216
|
-
redirectUris:
|
217
|
-
responseTypes:
|
218
|
-
grantTypes:
|
219
|
-
applicationType:
|
220
|
-
contacts:
|
221
|
-
clientName:
|
222
|
-
clientNames:
|
223
|
-
logoUri:
|
224
|
-
logoUris:
|
225
|
-
clientUri:
|
226
|
-
clientUris:
|
227
|
-
policyUri:
|
228
|
-
policyUris:
|
229
|
-
tosUri:
|
230
|
-
tosUris:
|
231
|
-
jwksUri:
|
232
|
-
jwks:
|
233
|
-
derivedSectorIdentifier:
|
234
|
-
sectorIdentifierUri:
|
235
|
-
subjectType:
|
236
|
-
idTokenSignAlg:
|
237
|
-
idTokenEncryptionAlg:
|
238
|
-
idTokenEncryptionEnc:
|
239
|
-
userInfoSignAlg:
|
240
|
-
userInfoEncryptionAlg:
|
241
|
-
userInfoEncryptionEnc:
|
242
|
-
requestSignAlg:
|
243
|
-
requestEncryptionAlg:
|
244
|
-
requestEncryptionEnc:
|
245
|
-
tokenAuthMethod:
|
246
|
-
tokenAuthSignAlg:
|
247
|
-
defaultMaxAge:
|
248
|
-
defaultAcrs:
|
249
|
-
authTimeRequired:
|
250
|
-
loginUri:
|
251
|
-
requestUris:
|
252
|
-
description:
|
253
|
-
descriptions:
|
254
|
-
createdAt:
|
255
|
-
modifiedAt:
|
256
|
-
extension:
|
257
|
-
|
258
|
-
|
259
|
-
|
260
|
-
|
261
|
-
|
262
|
-
tlsClientAuthSubjectDn:
|
263
|
-
tlsClientAuthSanDns:
|
264
|
-
tlsClientAuthSanUri:
|
265
|
-
tlsClientAuthSanIp:
|
266
|
-
tlsClientAuthSanEmail:
|
267
|
-
tlsClientCertificateBoundAccessTokens:
|
268
|
-
selfSignedCertificateKeyId:
|
269
|
-
softwareId:
|
270
|
-
softwareVersion:
|
271
|
-
authorizationSignAlg:
|
272
|
-
authorizationEncryptionAlg:
|
273
|
-
authorizationEncryptionEnc:
|
274
|
-
bcDeliveryMode:
|
275
|
-
bcNotificationEndpoint:
|
276
|
-
bcRequestSignAlg:
|
277
|
-
bcUserCodeRequired:
|
278
|
-
dynamicallyRegistered:
|
279
|
-
registrationAccessTokenHash:
|
280
|
-
authorizationDetailsTypes:
|
281
|
-
parRequired:
|
282
|
-
requestObjectRequired:
|
283
|
-
attributes:
|
284
|
-
customMetadata:
|
214
|
+
number: 100,
|
215
|
+
serviceNumber: 1000,
|
216
|
+
developer: '<developer>',
|
217
|
+
clientId: 12345,
|
218
|
+
clientIdAlias: '<client-id-alias>',
|
219
|
+
clientIdAliasEnabled: true,
|
220
|
+
clientSecret: '<client-secret>',
|
221
|
+
clientType: 'PUBLIC',
|
222
|
+
redirectUris: [ '<redirect-uri0>', '<redirect-uri1>' ],
|
223
|
+
responseTypes: [ 'NONE', 'CODE', 'TOKEN', 'ID_TOKEN' ],
|
224
|
+
grantTypes: [ 'AUTHORIZATION_CODE', 'REFRESH_TOKEN' ],
|
225
|
+
applicationType: 'WEB',
|
226
|
+
contacts: [ '<contact0>', '<contact1>' ],
|
227
|
+
clientName: '<client-name>',
|
228
|
+
clientNames: [ { tag: '<client-name0-tag>', value: '<client-name0-value>' } ],
|
229
|
+
logoUri: '<logo-uri>',
|
230
|
+
logoUris: [ { tag: '<logo-uri0-tag>', value: '<logo-uri0-value>' } ],
|
231
|
+
clientUri: '<client-uri>',
|
232
|
+
clientUris: [ { tag: '<client-uri0-tag>', value: '<client-uri0-value>' } ],
|
233
|
+
policyUri: '<policy-uri>',
|
234
|
+
policyUris: [ { tag: '<policy-uri0-tag>', value: '<policy-uri0-value>' } ],
|
235
|
+
tosUri: '<tos-uri>',
|
236
|
+
tosUris: [ { tag: '<tos-uri0-tag>', value: '<tos-uri0-value>' } ],
|
237
|
+
jwksUri: '<jwks-uri>',
|
238
|
+
jwks: '<jwks>',
|
239
|
+
derivedSectorIdentifier: '<derived-sector-identifier>',
|
240
|
+
sectorIdentifierUri: '<sector-identifier-uri>',
|
241
|
+
subjectType: 'PUBLIC',
|
242
|
+
idTokenSignAlg: 'HS256',
|
243
|
+
idTokenEncryptionAlg: 'PBES2_HS256_A128KW',
|
244
|
+
idTokenEncryptionEnc: 'A128CBC_HS256',
|
245
|
+
userInfoSignAlg: 'HS256',
|
246
|
+
userInfoEncryptionAlg: 'PBES2_HS256_A128KW',
|
247
|
+
userInfoEncryptionEnc: 'A128CBC_HS256',
|
248
|
+
requestSignAlg: 'HS256',
|
249
|
+
requestEncryptionAlg: 'PBES2_HS256_A128KW',
|
250
|
+
requestEncryptionEnc: 'A128CBC_HS256',
|
251
|
+
tokenAuthMethod: 'CLIENT_SECRET_BASIC',
|
252
|
+
tokenAuthSignAlg: 'HS256',
|
253
|
+
defaultMaxAge: 1000,
|
254
|
+
defaultAcrs: [ '<default-acr0>', '<default-acr1>' ],
|
255
|
+
authTimeRequired: true,
|
256
|
+
loginUri: '<login-uri>',
|
257
|
+
requestUris: [ '<request-uri0>', '<request-uri1>' ],
|
258
|
+
description: '<description>',
|
259
|
+
descriptions: [ { tag: '<description0-tag>', value: '<description0-value>' } ],
|
260
|
+
createdAt: 10000,
|
261
|
+
modifiedAt: 10000,
|
262
|
+
extension: {
|
263
|
+
requestableScopes: [ '<requestable-scope0>', '<requestable-scope1>' ],
|
264
|
+
requestableScopesEnabled: true,
|
265
|
+
accessTokenDuration: 10000,
|
266
|
+
refreshTokenDuration: 10000
|
267
|
+
},
|
268
|
+
tlsClientAuthSubjectDn: '<tls-client-auth-subject-dn>',
|
269
|
+
tlsClientAuthSanDns: '<tls-client-auth-san-dns>',
|
270
|
+
tlsClientAuthSanUri: '<tls-client-auth-san-uri>',
|
271
|
+
tlsClientAuthSanIp: '<tls-client-auth-san-ip>',
|
272
|
+
tlsClientAuthSanEmail: '<tls-client-auth-san-email>',
|
273
|
+
tlsClientCertificateBoundAccessTokens: false,
|
274
|
+
selfSignedCertificateKeyId: '<self-signed-certificate-key-id>',
|
275
|
+
softwareId: '<software-id>',
|
276
|
+
softwareVersion: '<software-version>',
|
277
|
+
authorizationSignAlg: 'HS256',
|
278
|
+
authorizationEncryptionAlg: 'PBES2_HS256_A128KW',
|
279
|
+
authorizationEncryptionEnc: 'A128CBC_HS256',
|
280
|
+
bcDeliveryMode: 'POLL',
|
281
|
+
bcNotificationEndpoint: '<bc-notification-endpoint>',
|
282
|
+
bcRequestSignAlg: 'HS256',
|
283
|
+
bcUserCodeRequired: true,
|
284
|
+
dynamicallyRegistered: false,
|
285
|
+
registrationAccessTokenHash: '<registration-access-token-hash>',
|
286
|
+
authorizationDetailsTypes: [ '<authorization-details-type0>', '<authorization-details-type1>' ],
|
287
|
+
parRequired: false,
|
288
|
+
requestObjectRequired: true,
|
289
|
+
attributes: [ { key: '<attribute0-key>', value: '<attribute0-value>' } ],
|
290
|
+
customMetadata: '<custom-metadata>',
|
291
|
+
frontChannelRequestObjectEncryptionRequired: false,
|
292
|
+
requestObjectEncryptionAlgMatchRequired: false,
|
293
|
+
requestObjectEncryptionEncMatchRequired: false
|
285
294
|
}
|
286
295
|
end
|
287
296
|
|
288
297
|
|
289
298
|
def set_params(obj)
|
290
|
-
obj.number
|
291
|
-
obj.service_number
|
292
|
-
obj.developer
|
293
|
-
obj.client_id
|
294
|
-
obj.client_id_alias
|
295
|
-
obj.client_id_alias_enabled
|
296
|
-
obj.client_secret
|
297
|
-
obj.client_type
|
298
|
-
obj.redirect_uris
|
299
|
-
obj.response_types
|
300
|
-
obj.grant_types
|
301
|
-
obj.application_type
|
302
|
-
obj.contacts
|
303
|
-
obj.client_name
|
304
|
-
obj.client_names
|
305
|
-
obj.logo_uri
|
306
|
-
obj.logo_uris
|
307
|
-
obj.client_uri
|
308
|
-
obj.client_uris
|
309
|
-
obj.policy_uri
|
310
|
-
obj.policy_uris
|
311
|
-
obj.tos_uri
|
312
|
-
obj.tos_uris
|
313
|
-
obj.jwks_uri
|
314
|
-
obj.jwks
|
315
|
-
obj.derived_sector_identifier
|
316
|
-
obj.sector_identifier_uri
|
317
|
-
obj.subject_type
|
318
|
-
obj.id_token_sign_alg
|
319
|
-
obj.id_token_encryption_alg
|
320
|
-
obj.id_token_encryption_enc
|
321
|
-
obj.user_info_sign_alg
|
322
|
-
obj.user_info_encryption_alg
|
323
|
-
obj.user_info_encryption_enc
|
324
|
-
obj.request_sign_alg
|
325
|
-
obj.request_encryption_alg
|
326
|
-
obj.request_encryption_enc
|
327
|
-
obj.token_auth_method
|
328
|
-
obj.token_auth_sign_alg
|
329
|
-
obj.default_max_age
|
330
|
-
obj.default_acrs
|
331
|
-
obj.auth_time_required
|
332
|
-
obj.login_uri
|
333
|
-
obj.request_uris
|
334
|
-
obj.description
|
335
|
-
obj.descriptions
|
336
|
-
obj.created_at
|
337
|
-
obj.modified_at
|
338
|
-
obj.extension
|
339
|
-
obj.tls_client_auth_subject_dn
|
340
|
-
obj.tls_client_auth_san_dns
|
341
|
-
obj.tls_client_auth_san_uri
|
342
|
-
obj.tls_client_auth_san_ip
|
343
|
-
obj.tls_client_auth_san_email
|
344
|
-
obj.tls_client_certificate_bound_access_tokens
|
345
|
-
obj.self_signed_certificate_key_id
|
346
|
-
obj.software_id
|
347
|
-
obj.software_version
|
348
|
-
obj.authorization_sign_alg
|
349
|
-
obj.authorization_encryption_alg
|
350
|
-
obj.authorization_encryption_enc
|
351
|
-
obj.bc_delivery_mode
|
352
|
-
obj.bc_notification_endpoint
|
353
|
-
obj.bc_request_sign_alg
|
354
|
-
obj.bc_user_code_required
|
355
|
-
obj.dynamically_registered
|
356
|
-
obj.registration_access_token_hash
|
357
|
-
obj.authorization_details_types
|
358
|
-
obj.par_required
|
359
|
-
obj.request_object_required
|
360
|
-
obj.attributes
|
361
|
-
obj.custom_metadata
|
299
|
+
obj.number = NUMBER
|
300
|
+
obj.service_number = SERVICE_NUMBER
|
301
|
+
obj.developer = DEVELOPER
|
302
|
+
obj.client_id = CLIENT_ID
|
303
|
+
obj.client_id_alias = CLIENT_ID_ALIAS
|
304
|
+
obj.client_id_alias_enabled = CLIENT_ID_ALIAS_ENABLED
|
305
|
+
obj.client_secret = CLIENT_SECRET
|
306
|
+
obj.client_type = CLIENT_TYPE
|
307
|
+
obj.redirect_uris = REDIRECT_URIS
|
308
|
+
obj.response_types = RESPONSE_TYPES
|
309
|
+
obj.grant_types = GRANT_TYPES
|
310
|
+
obj.application_type = APPLICATION_TYPE
|
311
|
+
obj.contacts = CONTACTS
|
312
|
+
obj.client_name = CLIENT_NAME
|
313
|
+
obj.client_names = CLIENT_NAMES
|
314
|
+
obj.logo_uri = LOGO_URI
|
315
|
+
obj.logo_uris = LOGO_URIS
|
316
|
+
obj.client_uri = CLIENT_URI
|
317
|
+
obj.client_uris = CLIENT_URIS
|
318
|
+
obj.policy_uri = POLICY_URI
|
319
|
+
obj.policy_uris = POLICY_URIS
|
320
|
+
obj.tos_uri = TOS_URI
|
321
|
+
obj.tos_uris = TOS_URIS
|
322
|
+
obj.jwks_uri = JWKS_URI
|
323
|
+
obj.jwks = JWKS
|
324
|
+
obj.derived_sector_identifier = DERIVED_SECTOR_IDENTIFIER
|
325
|
+
obj.sector_identifier_uri = SECTOR_IDENTIFIER_URI
|
326
|
+
obj.subject_type = SUBJECT_TYPE
|
327
|
+
obj.id_token_sign_alg = ID_TOKEN_SIGN_ALG
|
328
|
+
obj.id_token_encryption_alg = ID_TOKEN_ENCRYPTION_ALG
|
329
|
+
obj.id_token_encryption_enc = ID_TOKEN_ENCRYPTION_ENC
|
330
|
+
obj.user_info_sign_alg = USER_INFO_SIGN_ALG
|
331
|
+
obj.user_info_encryption_alg = USER_INFO_ENCRYPTION_ALG
|
332
|
+
obj.user_info_encryption_enc = USER_INFO_ENCRYPTION_ENC
|
333
|
+
obj.request_sign_alg = REQUEST_SIGN_ALG
|
334
|
+
obj.request_encryption_alg = REQUEST_ENCRYPTION_ALG
|
335
|
+
obj.request_encryption_enc = REQUEST_ENCRYPTION_ENC
|
336
|
+
obj.token_auth_method = TOKEN_AUTH_METHOD
|
337
|
+
obj.token_auth_sign_alg = TOKEN_AUTH_SIGN_ALG
|
338
|
+
obj.default_max_age = DEFAULT_MAX_AGE
|
339
|
+
obj.default_acrs = DEFAULT_ACRS
|
340
|
+
obj.auth_time_required = AUTH_TIME_REQUIRED
|
341
|
+
obj.login_uri = LOGIN_URI
|
342
|
+
obj.request_uris = REQUEST_URIS
|
343
|
+
obj.description = DESCRIPTION
|
344
|
+
obj.descriptions = DESCRIPTIONS
|
345
|
+
obj.created_at = CREATED_AT
|
346
|
+
obj.modified_at = MODIFIED_AT
|
347
|
+
obj.extension = EXTENSION
|
348
|
+
obj.tls_client_auth_subject_dn = TLS_CLIENT_AUTH_SUBJECT_DN
|
349
|
+
obj.tls_client_auth_san_dns = TLS_CLIENT_AUTH_SAN_DNS
|
350
|
+
obj.tls_client_auth_san_uri = TLS_CLIENT_AUTH_SAN_URI
|
351
|
+
obj.tls_client_auth_san_ip = TLS_CLIENT_AUTH_SAN_IP
|
352
|
+
obj.tls_client_auth_san_email = TLS_CLIENT_AUTH_SAN_EMAIL
|
353
|
+
obj.tls_client_certificate_bound_access_tokens = TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS
|
354
|
+
obj.self_signed_certificate_key_id = SELF_SIGNED_CERTIFICATE_KEY_ID
|
355
|
+
obj.software_id = SOFTWARE_ID
|
356
|
+
obj.software_version = SOFTWARE_VERSION
|
357
|
+
obj.authorization_sign_alg = AUTHORIZATION_SIGN_ALG
|
358
|
+
obj.authorization_encryption_alg = AUTHORIZATION_ENCRYPTION_ALG
|
359
|
+
obj.authorization_encryption_enc = AUTHORIZATION_ENCRYPTION_ENC
|
360
|
+
obj.bc_delivery_mode = BC_DELIVERY_MODE
|
361
|
+
obj.bc_notification_endpoint = BC_NOTIFICATION_ENDPOINT
|
362
|
+
obj.bc_request_sign_alg = BC_REQUEST_SIGN_ALG
|
363
|
+
obj.bc_user_code_required = BC_USER_CODE_REQUIRED
|
364
|
+
obj.dynamically_registered = DYNAMICALLY_REGISTERED
|
365
|
+
obj.registration_access_token_hash = REGISTRATION_ACCESS_TOKEN_HASH
|
366
|
+
obj.authorization_details_types = AUTHORIZATION_DETAILS_TYPES
|
367
|
+
obj.par_required = PAR_REQUIRED
|
368
|
+
obj.request_object_required = REQUEST_OBJECT_REQUIRED
|
369
|
+
obj.attributes = ATTRIBUTES
|
370
|
+
obj.custom_metadata = CUSTOM_METADATA
|
371
|
+
obj.frontChannelRequestObjectEncryptionRequired = FRONT_CHANNEL_REQUEST_OBJECT_ENCRYPTION_REQUIRED
|
372
|
+
obj.requestObjectEncryptionAlgMatchRequired = REQUEST_OBJECT_ENCRYPTION_ALG_MATCH_REQUIRED
|
373
|
+
obj.requestObjectEncryptionEncMatchRequired = REQUEST_OBJECT_ENCRYPTION_ENC_MATCH_REQUIRED
|
362
374
|
end
|
363
375
|
|
364
376
|
|
365
377
|
def match(obj)
|
366
|
-
assert_equal NUMBER,
|
367
|
-
assert_equal SERVICE_NUMBER,
|
368
|
-
assert_equal DEVELOPER,
|
369
|
-
assert_equal CLIENT_ID,
|
370
|
-
assert_equal CLIENT_ID_ALIAS,
|
371
|
-
assert_equal CLIENT_ID_ALIAS_ENABLED,
|
372
|
-
assert_equal CLIENT_SECRET,
|
373
|
-
assert_equal CLIENT_TYPE,
|
374
|
-
assert_equal REDIRECT_URIS,
|
375
|
-
assert_equal RESPONSE_TYPES,
|
376
|
-
assert_equal GRANT_TYPES,
|
377
|
-
assert_equal APPLICATION_TYPE,
|
378
|
-
assert_equal CONTACTS,
|
379
|
-
assert_equal CLIENT_NAME,
|
380
|
-
assert_equal CLIENT_NAME_TAG,
|
381
|
-
assert_equal CLIENT_NAME_VALUE,
|
382
|
-
assert_equal LOGO_URI,
|
383
|
-
assert_equal LOGO_URI_TAG,
|
384
|
-
assert_equal LOGO_URI_VALUE,
|
385
|
-
assert_equal CLIENT_URI,
|
386
|
-
assert_equal CLIENT_URI_TAG,
|
387
|
-
assert_equal CLIENT_URI_VALUE,
|
388
|
-
assert_equal POLICY_URI,
|
389
|
-
assert_equal POLICY_URI_TAG,
|
390
|
-
assert_equal POLICY_URI_VALUE,
|
391
|
-
assert_equal TOS_URI,
|
392
|
-
assert_equal TOS_URI_TAG,
|
393
|
-
assert_equal TOS_URI_VALUE,
|
394
|
-
assert_equal JWKS_URI,
|
395
|
-
assert_equal JWKS,
|
396
|
-
assert_equal DERIVED_SECTOR_IDENTIFIER,
|
397
|
-
assert_equal SECTOR_IDENTIFIER_URI,
|
398
|
-
assert_equal SUBJECT_TYPE,
|
399
|
-
assert_equal ID_TOKEN_SIGN_ALG,
|
400
|
-
assert_equal ID_TOKEN_ENCRYPTION_ALG,
|
401
|
-
assert_equal ID_TOKEN_ENCRYPTION_ENC,
|
402
|
-
assert_equal USER_INFO_SIGN_ALG,
|
403
|
-
assert_equal USER_INFO_ENCRYPTION_ALG,
|
404
|
-
assert_equal USER_INFO_ENCRYPTION_ENC,
|
405
|
-
assert_equal REQUEST_SIGN_ALG,
|
406
|
-
assert_equal REQUEST_ENCRYPTION_ALG,
|
407
|
-
assert_equal REQUEST_ENCRYPTION_ENC,
|
408
|
-
assert_equal TOKEN_AUTH_METHOD,
|
409
|
-
assert_equal TOKEN_AUTH_SIGN_ALG,
|
410
|
-
assert_equal DEFAULT_MAX_AGE,
|
411
|
-
assert_equal DEFAULT_ACRS,
|
412
|
-
assert_equal AUTH_TIME_REQUIRED,
|
413
|
-
assert_equal LOGIN_URI,
|
414
|
-
assert_equal REQUEST_URIS,
|
415
|
-
assert_equal DESCRIPTION,
|
416
|
-
assert_equal DESCRIPTION_TAG,
|
417
|
-
assert_equal DESCRIPTION_VALUE,
|
418
|
-
assert_equal CREATED_AT,
|
419
|
-
assert_equal MODIFIED_AT,
|
420
|
-
assert_equal REQUESTABLE_SCOPES,
|
421
|
-
assert_equal REQUESTABLE_SCOPES_ENABLED,
|
422
|
-
assert_equal ACCESS_TOKEN_DURATION,
|
423
|
-
assert_equal REFRESH_TOKEN_DURATION,
|
424
|
-
assert_equal TLS_CLIENT_AUTH_SUBJECT_DN,
|
425
|
-
assert_equal TLS_CLIENT_AUTH_SAN_DNS,
|
426
|
-
assert_equal TLS_CLIENT_AUTH_SAN_URI,
|
427
|
-
assert_equal TLS_CLIENT_AUTH_SAN_IP,
|
428
|
-
assert_equal TLS_CLIENT_AUTH_SAN_EMAIL,
|
429
|
-
assert_equal TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS,
|
430
|
-
assert_equal SELF_SIGNED_CERTIFICATE_KEY_ID,
|
431
|
-
assert_equal AUTHORIZATION_SIGN_ALG,
|
432
|
-
assert_equal AUTHORIZATION_ENCRYPTION_ALG,
|
433
|
-
assert_equal AUTHORIZATION_ENCRYPTION_ENC,
|
434
|
-
assert_equal BC_DELIVERY_MODE,
|
435
|
-
assert_equal BC_NOTIFICATION_ENDPOINT,
|
436
|
-
assert_equal BC_REQUEST_SIGN_ALG,
|
437
|
-
assert_equal BC_USER_CODE_REQUIRED,
|
438
|
-
assert_equal DYNAMICALLY_REGISTERED,
|
439
|
-
assert_equal REGISTRATION_ACCESS_TOKEN_HASH,
|
440
|
-
assert_equal AUTHORIZATION_DETAILS_TYPES,
|
441
|
-
assert_equal PAR_REQUIRED,
|
442
|
-
assert_equal REQUEST_OBJECT_REQUIRED,
|
443
|
-
assert_equal ATTRIBUTE_KEY,
|
444
|
-
assert_equal ATTRIBUTE_VALUE,
|
445
|
-
assert_equal CUSTOM_METADATA,
|
378
|
+
assert_equal NUMBER, obj.number
|
379
|
+
assert_equal SERVICE_NUMBER, obj.serviceNumber
|
380
|
+
assert_equal DEVELOPER, obj.developer
|
381
|
+
assert_equal CLIENT_ID, obj.clientId
|
382
|
+
assert_equal CLIENT_ID_ALIAS, obj.clientIdAlias
|
383
|
+
assert_equal CLIENT_ID_ALIAS_ENABLED, obj.clientIdAliasEnabled
|
384
|
+
assert_equal CLIENT_SECRET, obj.clientSecret
|
385
|
+
assert_equal CLIENT_TYPE, obj.clientType
|
386
|
+
assert_equal REDIRECT_URIS, obj.redirectUris
|
387
|
+
assert_equal RESPONSE_TYPES, obj.responseTypes
|
388
|
+
assert_equal GRANT_TYPES, obj.grantTypes
|
389
|
+
assert_equal APPLICATION_TYPE, obj.applicationType
|
390
|
+
assert_equal CONTACTS, obj.contacts
|
391
|
+
assert_equal CLIENT_NAME, obj.clientName
|
392
|
+
assert_equal CLIENT_NAME_TAG, obj.clientNames[0].tag
|
393
|
+
assert_equal CLIENT_NAME_VALUE, obj.clientNames[0].value
|
394
|
+
assert_equal LOGO_URI, obj.logoUri
|
395
|
+
assert_equal LOGO_URI_TAG, obj.logoUris[0].tag
|
396
|
+
assert_equal LOGO_URI_VALUE, obj.logoUris[0].value
|
397
|
+
assert_equal CLIENT_URI, obj.clientUri
|
398
|
+
assert_equal CLIENT_URI_TAG, obj.clientUris[0].tag
|
399
|
+
assert_equal CLIENT_URI_VALUE, obj.clientUris[0].value
|
400
|
+
assert_equal POLICY_URI, obj.policyUri
|
401
|
+
assert_equal POLICY_URI_TAG, obj.policyUris[0].tag
|
402
|
+
assert_equal POLICY_URI_VALUE, obj.policyUris[0].value
|
403
|
+
assert_equal TOS_URI, obj.tosUri
|
404
|
+
assert_equal TOS_URI_TAG, obj.tosUris[0].tag
|
405
|
+
assert_equal TOS_URI_VALUE, obj.tosUris[0].value
|
406
|
+
assert_equal JWKS_URI, obj.jwksUri
|
407
|
+
assert_equal JWKS, obj.jwks
|
408
|
+
assert_equal DERIVED_SECTOR_IDENTIFIER, obj.derivedSectorIdentifier
|
409
|
+
assert_equal SECTOR_IDENTIFIER_URI, obj.sectorIdentifierUri
|
410
|
+
assert_equal SUBJECT_TYPE, obj.subjectType
|
411
|
+
assert_equal ID_TOKEN_SIGN_ALG, obj.idTokenSignAlg
|
412
|
+
assert_equal ID_TOKEN_ENCRYPTION_ALG, obj.idTokenEncryptionAlg
|
413
|
+
assert_equal ID_TOKEN_ENCRYPTION_ENC, obj.idTokenEncryptionEnc
|
414
|
+
assert_equal USER_INFO_SIGN_ALG, obj.userInfoSignAlg
|
415
|
+
assert_equal USER_INFO_ENCRYPTION_ALG, obj.userInfoEncryptionAlg
|
416
|
+
assert_equal USER_INFO_ENCRYPTION_ENC, obj.userInfoEncryptionEnc
|
417
|
+
assert_equal REQUEST_SIGN_ALG, obj.requestSignAlg
|
418
|
+
assert_equal REQUEST_ENCRYPTION_ALG, obj.requestEncryptionAlg
|
419
|
+
assert_equal REQUEST_ENCRYPTION_ENC, obj.requestEncryptionEnc
|
420
|
+
assert_equal TOKEN_AUTH_METHOD, obj.tokenAuthMethod
|
421
|
+
assert_equal TOKEN_AUTH_SIGN_ALG, obj.tokenAuthSignAlg
|
422
|
+
assert_equal DEFAULT_MAX_AGE, obj.defaultMaxAge
|
423
|
+
assert_equal DEFAULT_ACRS, obj.defaultAcrs
|
424
|
+
assert_equal AUTH_TIME_REQUIRED, obj.authTimeRequired
|
425
|
+
assert_equal LOGIN_URI, obj.loginUri
|
426
|
+
assert_equal REQUEST_URIS, obj.requestUris
|
427
|
+
assert_equal DESCRIPTION, obj.description
|
428
|
+
assert_equal DESCRIPTION_TAG, obj.descriptions[0].tag
|
429
|
+
assert_equal DESCRIPTION_VALUE, obj.descriptions[0].value
|
430
|
+
assert_equal CREATED_AT, obj.createdAt
|
431
|
+
assert_equal MODIFIED_AT, obj.modifiedAt
|
432
|
+
assert_equal REQUESTABLE_SCOPES, obj.extension.requestableScopes
|
433
|
+
assert_equal REQUESTABLE_SCOPES_ENABLED, obj.extension.requestableScopesEnabled
|
434
|
+
assert_equal ACCESS_TOKEN_DURATION, obj.extension.accessTokenDuration
|
435
|
+
assert_equal REFRESH_TOKEN_DURATION, obj.extension.refreshTokenDuration
|
436
|
+
assert_equal TLS_CLIENT_AUTH_SUBJECT_DN, obj.tlsClientAuthSubjectDn
|
437
|
+
assert_equal TLS_CLIENT_AUTH_SAN_DNS, obj.tlsClientAuthSanDns
|
438
|
+
assert_equal TLS_CLIENT_AUTH_SAN_URI, obj.tlsClientAuthSanUri
|
439
|
+
assert_equal TLS_CLIENT_AUTH_SAN_IP, obj.tlsClientAuthSanIp
|
440
|
+
assert_equal TLS_CLIENT_AUTH_SAN_EMAIL, obj.tlsClientAuthSanEmail
|
441
|
+
assert_equal TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS, obj.tlsClientCertificateBoundAccessTokens
|
442
|
+
assert_equal SELF_SIGNED_CERTIFICATE_KEY_ID, obj.selfSignedCertificateKeyId
|
443
|
+
assert_equal AUTHORIZATION_SIGN_ALG, obj.authorizationSignAlg
|
444
|
+
assert_equal AUTHORIZATION_ENCRYPTION_ALG, obj.authorizationEncryptionAlg
|
445
|
+
assert_equal AUTHORIZATION_ENCRYPTION_ENC, obj.authorizationEncryptionEnc
|
446
|
+
assert_equal BC_DELIVERY_MODE, obj.bcDeliveryMode
|
447
|
+
assert_equal BC_NOTIFICATION_ENDPOINT, obj.bcNotificationEndpoint
|
448
|
+
assert_equal BC_REQUEST_SIGN_ALG, obj.bcRequestSignAlg
|
449
|
+
assert_equal BC_USER_CODE_REQUIRED, obj.bcUserCodeRequired
|
450
|
+
assert_equal DYNAMICALLY_REGISTERED, obj.dynamicallyRegistered
|
451
|
+
assert_equal REGISTRATION_ACCESS_TOKEN_HASH, obj.registrationAccessTokenHash
|
452
|
+
assert_equal AUTHORIZATION_DETAILS_TYPES, obj.authorizationDetailsTypes
|
453
|
+
assert_equal PAR_REQUIRED, obj.parRequired
|
454
|
+
assert_equal REQUEST_OBJECT_REQUIRED, obj.requestObjectRequired
|
455
|
+
assert_equal ATTRIBUTE_KEY, obj.attributes[0].key
|
456
|
+
assert_equal ATTRIBUTE_VALUE, obj.attributes[0].value
|
457
|
+
assert_equal CUSTOM_METADATA, obj.customMetadata
|
458
|
+
assert_equal FRONT_CHANNEL_REQUEST_OBJECT_ENCRYPTION_REQUIRED, obj.frontChannelRequestObjectEncryptionRequired
|
459
|
+
assert_equal REQUEST_OBJECT_ENCRYPTION_ALG_MATCH_REQUIRED, obj.requestObjectEncryptionAlgMatchRequired
|
460
|
+
assert_equal REQUEST_OBJECT_ENCRYPTION_ENC_MATCH_REQUIRED, obj.requestObjectEncryptionEncMatchRequired
|
446
461
|
end
|
447
462
|
|
448
463
|
|