keycloak-admin 1.1.3 → 1.1.4

data/spec/representation/identity_provider_representation_spec.rb

@@ -1,113 +1,113 @@
-RSpec.describe KeycloakAdmin::IdentityProviderRepresentation do
-  describe "#from_hash" do
-    before(:each) do
-      json = <<-JSON
-      {
-        "alias": "acme",
-        "displayName": "ACME",
-        "internalId": "20fea77e-ae3d-411e-9467-2b3a20cd3e6d",
-        "providerId": "saml",
-        "enabled": true,
-        "updateProfileFirstLoginMode": "on",
-        "trustEmail": true,
-        "storeToken": false,
-        "addReadTokenRoleOnCreate": false,
-        "authenticateByDefault": false,
-        "linkOnly": false,
-        "firstBrokerLoginFlowAlias": "first broker login",
-        "config": {
-          "hideOnLoginPage": "",
-          "validateSignature": "true",
-          "samlXmlKeyNameTranformer": "KEY_ID",
-          "signingCertificate": "",
-          "postBindingLogout": "false",
-          "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
-          "postBindingResponse": "true",
-          "backchannelSupported": "",
-          "signatureAlgorithm": "RSA_SHA256",
-          "wantAssertionsEncrypted": "false",
-          "xmlSigKeyInfoKeyNameTransformer": "CERT_SUBJECT",
-          "useJwksUrl": "true",
-          "wantAssertionsSigned": "true",
-          "postBindingAuthnRequest": "true",
-          "forceAuthn": "",
-          "wantAuthnRequestsSigned": "true",
-          "singleSignOnServiceUrl": "https://login.microsoftonline.com/test/saml2",
-          "addExtensionsElementWithKeyInfo": "false"
-        }
-      }
-      JSON
-      payload            = JSON.parse(json)
-      @identity_provider = KeycloakAdmin::IdentityProviderRepresentation.from_hash(payload)
-    end
-
-    it "parses the alias" do
-      expect(@identity_provider.alias).to eq "acme"
-    end
-
-    it "parses the display name" do
-      expect(@identity_provider.display_name).to eq "ACME"
-    end
-
-    it "parses the internalId" do
-      expect(@identity_provider.internal_id).to eq "20fea77e-ae3d-411e-9467-2b3a20cd3e6d"
-    end
-
-    it "parses the provider id" do
-      expect(@identity_provider.provider_id).to eq "saml"
-    end
-
-    it "parses the enabled" do
-      expect(@identity_provider.enabled).to eq true
-    end
-
-    it "parses the update_profile_first_login_mode" do
-      expect(@identity_provider.update_profile_first_login_mode).to eq "on"
-    end
-
-    it "parses the trust_email" do
-      expect(@identity_provider.trust_email).to eq true
-    end
-
-    it "parses the store_token" do
-      expect(@identity_provider.store_token).to eq false
-    end
-
-    it "parses the add_read_token_role_on_create" do
-      expect(@identity_provider.add_read_token_role_on_create).to eq false
-    end
-
-    it "parses the authenticate_by_default" do
-      expect(@identity_provider.authenticate_by_default).to eq false
-    end
-
-    it "parses the link_only" do
-      expect(@identity_provider.link_only).to eq false
-    end
-    
-    it "parses the first_broker_login_flow_alias" do
-      expect(@identity_provider.first_broker_login_flow_alias).to eq "first broker login"
-    end
-
-    it "parses the configuration as a hash with camel properties" do
-      expect(@identity_provider.config["hideOnLoginPage"]).to eq ""
-      expect(@identity_provider.config["validateSignature"]).to eq "true"
-      expect(@identity_provider.config["samlXmlKeyNameTranformer"]).to eq "KEY_ID"
-      expect(@identity_provider.config["signingCertificate"]).to eq ""
-      expect(@identity_provider.config["postBindingLogout"]).to eq "false"
-      expect(@identity_provider.config["nameIDPolicyFormat"]).to eq "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"
-      expect(@identity_provider.config["postBindingResponse"]).to eq "true"
-      expect(@identity_provider.config["backchannelSupported"]).to eq ""
-      expect(@identity_provider.config["signatureAlgorithm"]).to eq "RSA_SHA256"
-      expect(@identity_provider.config["wantAssertionsEncrypted"]).to eq "false"
-      expect(@identity_provider.config["xmlSigKeyInfoKeyNameTransformer"]).to eq "CERT_SUBJECT"
-      expect(@identity_provider.config["useJwksUrl"]).to eq "true"
-      expect(@identity_provider.config["wantAssertionsSigned"]).to eq "true"
-      expect(@identity_provider.config["postBindingAuthnRequest"]).to eq "true"
-      expect(@identity_provider.config["forceAuthn"]).to eq ""
-      expect(@identity_provider.config["wantAuthnRequestsSigned"]).to eq "true"
-      expect(@identity_provider.config["singleSignOnServiceUrl"]).to eq "https://login.microsoftonline.com/test/saml2"
-      expect(@identity_provider.config["addExtensionsElementWithKeyInfo"]).to eq "false"
-    end
-  end
-end
+RSpec.describe KeycloakAdmin::IdentityProviderRepresentation do
+  describe "#from_hash" do
+    before(:each) do
+      json = <<-JSON
+      {
+        "alias": "acme",
+        "displayName": "ACME",
+        "internalId": "20fea77e-ae3d-411e-9467-2b3a20cd3e6d",
+        "providerId": "saml",
+        "enabled": true,
+        "updateProfileFirstLoginMode": "on",
+        "trustEmail": true,
+        "storeToken": false,
+        "addReadTokenRoleOnCreate": false,
+        "authenticateByDefault": false,
+        "linkOnly": false,
+        "firstBrokerLoginFlowAlias": "first broker login",
+        "config": {
+          "hideOnLoginPage": "",
+          "validateSignature": "true",
+          "samlXmlKeyNameTranformer": "KEY_ID",
+          "signingCertificate": "",
+          "postBindingLogout": "false",
+          "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+          "postBindingResponse": "true",
+          "backchannelSupported": "",
+          "signatureAlgorithm": "RSA_SHA256",
+          "wantAssertionsEncrypted": "false",
+          "xmlSigKeyInfoKeyNameTransformer": "CERT_SUBJECT",
+          "useJwksUrl": "true",
+          "wantAssertionsSigned": "true",
+          "postBindingAuthnRequest": "true",
+          "forceAuthn": "",
+          "wantAuthnRequestsSigned": "true",
+          "singleSignOnServiceUrl": "https://login.microsoftonline.com/test/saml2",
+          "addExtensionsElementWithKeyInfo": "false"
+        }
+      }
+      JSON
+      payload            = JSON.parse(json)
+      @identity_provider = KeycloakAdmin::IdentityProviderRepresentation.from_hash(payload)
+    end
+
+    it "parses the alias" do
+      expect(@identity_provider.alias).to eq "acme"
+    end
+
+    it "parses the display name" do
+      expect(@identity_provider.display_name).to eq "ACME"
+    end
+
+    it "parses the internalId" do
+      expect(@identity_provider.internal_id).to eq "20fea77e-ae3d-411e-9467-2b3a20cd3e6d"
+    end
+
+    it "parses the provider id" do
+      expect(@identity_provider.provider_id).to eq "saml"
+    end
+
+    it "parses the enabled" do
+      expect(@identity_provider.enabled).to eq true
+    end
+
+    it "parses the update_profile_first_login_mode" do
+      expect(@identity_provider.update_profile_first_login_mode).to eq "on"
+    end
+
+    it "parses the trust_email" do
+      expect(@identity_provider.trust_email).to eq true
+    end
+
+    it "parses the store_token" do
+      expect(@identity_provider.store_token).to eq false
+    end
+
+    it "parses the add_read_token_role_on_create" do
+      expect(@identity_provider.add_read_token_role_on_create).to eq false
+    end
+
+    it "parses the authenticate_by_default" do
+      expect(@identity_provider.authenticate_by_default).to eq false
+    end
+
+    it "parses the link_only" do
+      expect(@identity_provider.link_only).to eq false
+    end
+    
+    it "parses the first_broker_login_flow_alias" do
+      expect(@identity_provider.first_broker_login_flow_alias).to eq "first broker login"
+    end
+
+    it "parses the configuration as a hash with camel properties" do
+      expect(@identity_provider.config["hideOnLoginPage"]).to eq ""
+      expect(@identity_provider.config["validateSignature"]).to eq "true"
+      expect(@identity_provider.config["samlXmlKeyNameTranformer"]).to eq "KEY_ID"
+      expect(@identity_provider.config["signingCertificate"]).to eq ""
+      expect(@identity_provider.config["postBindingLogout"]).to eq "false"
+      expect(@identity_provider.config["nameIDPolicyFormat"]).to eq "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"
+      expect(@identity_provider.config["postBindingResponse"]).to eq "true"
+      expect(@identity_provider.config["backchannelSupported"]).to eq ""
+      expect(@identity_provider.config["signatureAlgorithm"]).to eq "RSA_SHA256"
+      expect(@identity_provider.config["wantAssertionsEncrypted"]).to eq "false"
+      expect(@identity_provider.config["xmlSigKeyInfoKeyNameTransformer"]).to eq "CERT_SUBJECT"
+      expect(@identity_provider.config["useJwksUrl"]).to eq "true"
+      expect(@identity_provider.config["wantAssertionsSigned"]).to eq "true"
+      expect(@identity_provider.config["postBindingAuthnRequest"]).to eq "true"
+      expect(@identity_provider.config["forceAuthn"]).to eq ""
+      expect(@identity_provider.config["wantAuthnRequestsSigned"]).to eq "true"
+      expect(@identity_provider.config["singleSignOnServiceUrl"]).to eq "https://login.microsoftonline.com/test/saml2"
+      expect(@identity_provider.config["addExtensionsElementWithKeyInfo"]).to eq "false"
+    end
+  end
+end

data/spec/representation/impersonation_representation_spec.rb

@@ -1,163 +1,163 @@
-RSpec.describe KeycloakAdmin::ImpersonationRepresentation do
-  describe "#parse_set_cookie_string" do
-
-    let(:origin)            { "http://auth.service.io" }
-    let(:set_cookie_string) { "" }
-
-    before(:each) do
-      @cookie = KeycloakAdmin::ImpersonationRepresentation.parse_set_cookie_string(set_cookie_string, origin)
-    end
-
-    shared_context "common properties are read properly" do
-      it "parses its domain property" do
-        expect(@cookie.domain).to eq "auth.service.io"
-      end
-
-      it "parses its for_domain property" do
-        expect(@cookie.for_domain).to be false
-      end
-
-      it "parses its Path property" do
-        expect(@cookie.path).to eq "/auth/realms/a-realm"
-      end
-
-      it "parses its Secure property" do
-        expect(@cookie.secure).to be false
-      end
-    end
-
-    context "when result is an expiring empty KEYCLOAK_IDENTITY" do
-      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
-      
-      include_examples "common properties are read properly"
-
-      it "parses its name property" do
-        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
-      end
-
-      it "parses its value property" do
-        expect(@cookie.value).to eq ""
-      end
-
-      it "parses its Expires property" do
-        expect(@cookie.expires).to be <= Time.now
-      end
-
-      it "parses its Max-Age property" do
-        expect(@cookie.max_age).to eq 0
-      end
-
-      it "parses its HttpOnly property" do
-        expect(@cookie.httponly).to be true
-      end
-    end
-
-
-    context "when result is an expiring empty KEYCLOAK_SESSION" do
-      let(:set_cookie_string) { "KEYCLOAK_SESSION=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm" }
-      
-      include_examples "common properties are read properly"
-
-      it "parses its name property" do
-        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
-      end
-
-      it "parses its value property" do
-        expect(@cookie.value).to eq ""
-      end
-
-      it "parses its Expires property" do
-        expect(@cookie.expires).to be <= Time.now
-      end
-
-      it "parses its Max-Age property" do
-        expect(@cookie.max_age).to eq 0
-      end
-
-      it "parses its HttpOnly property" do
-        expect(@cookie.httponly).to be false
-      end
-    end
-
-
-    context "when result is an expiring empty KEYCLOAK_REMEMBER_ME" do
-      let(:set_cookie_string) { "KEYCLOAK_REMEMBER_ME=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
-      
-      include_examples "common properties are read properly"
-
-      it "parses its name property" do
-        expect(@cookie.name).to eq "KEYCLOAK_REMEMBER_ME"
-      end
-
-      it "parses its value property" do
-        expect(@cookie.value).to eq ""
-      end
-
-      it "parses its Expires property" do
-        expect(@cookie.expires).to be <= Time.now
-      end
-
-      it "parses its Max-Age property" do
-        expect(@cookie.max_age).to eq 0
-      end
-
-      it "parses its HttpOnly property" do
-        expect(@cookie.httponly).to be true
-      end
-    end
-
-    context "when result is a new KEYCLOAK_IDENTITY" do
-      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E; Version=1; Path=/auth/realms/a-realm; HttpOnly" }
-      
-      include_examples "common properties are read properly"
-
-      it "parses its name property" do
-        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
-      end
-
-      it "parses its value property" do
-        expect(@cookie.value).to eq "eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E"
-      end
-
-      it "parses its Expires property" do
-        expect(@cookie.expires).to be_nil
-      end
-
-      it "parses its Max-Age property" do
-        expect(@cookie.max_age).to be nil
-      end
-
-      it "parses its HttpOnly property" do
-        expect(@cookie.httponly).to be true
-      end
-    end
-
-    context "when result is a new KEYCLOAK_SESSION" do
-      let(:set_cookie_string) { "KEYCLOAK_SESSION=commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88; Version=1; Expires=Tue, 23-Jan-2018 23:56:32 GMT; Max-Age=36000; Path=/auth/realms/a-realm" }
-      
-      include_examples "common properties are read properly"
-
-      it "parses its name property" do
-        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
-      end
-
-      it "parses its value property" do
-        expect(@cookie.value).to eq "commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88"
-      end
-
-      it "parses its Expires property" do
-        expect(@cookie.expires).to_not be_nil
-      end
-
-      it "parses its Max-Age property" do
-        expect(@cookie.max_age).to be 36000
-      end
-
-      it "parses its HttpOnly property" do
-        expect(@cookie.httponly).to be false
-      end
-    end
-  end
-end
-
-
+RSpec.describe KeycloakAdmin::ImpersonationRepresentation do
+  describe "#parse_set_cookie_string" do
+
+    let(:origin)            { "http://auth.service.io" }
+    let(:set_cookie_string) { "" }
+
+    before(:each) do
+      @cookie = KeycloakAdmin::ImpersonationRepresentation.parse_set_cookie_string(set_cookie_string, origin)
+    end
+
+    shared_context "common properties are read properly" do
+      it "parses its domain property" do
+        expect(@cookie.domain).to eq "auth.service.io"
+      end
+
+      it "parses its for_domain property" do
+        expect(@cookie.for_domain).to be false
+      end
+
+      it "parses its Path property" do
+        expect(@cookie.path).to eq "/auth/realms/a-realm"
+      end
+
+      it "parses its Secure property" do
+        expect(@cookie.secure).to be false
+      end
+    end
+
+    context "when result is an expiring empty KEYCLOAK_IDENTITY" do
+      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+
+    context "when result is an expiring empty KEYCLOAK_SESSION" do
+      let(:set_cookie_string) { "KEYCLOAK_SESSION=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be false
+      end
+    end
+
+
+    context "when result is an expiring empty KEYCLOAK_REMEMBER_ME" do
+      let(:set_cookie_string) { "KEYCLOAK_REMEMBER_ME=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_REMEMBER_ME"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+    context "when result is a new KEYCLOAK_IDENTITY" do
+      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E; Version=1; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq "eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E"
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be_nil
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to be nil
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+    context "when result is a new KEYCLOAK_SESSION" do
+      let(:set_cookie_string) { "KEYCLOAK_SESSION=commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88; Version=1; Expires=Tue, 23-Jan-2018 23:56:32 GMT; Max-Age=36000; Path=/auth/realms/a-realm" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq "commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88"
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to_not be_nil
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to be 36000
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be false
+      end
+    end
+  end
+end
+
+