mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
8d102ce5d8
This removes a temporary session fallback for unencrypted sessions.
45 lines
1.1 KiB
Go
45 lines
1.1 KiB
Go
package session
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/fasthttp/session/v2"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestShouldEncryptAndDecrypt(t *testing.T) {
|
|
payload := session.Dict{}
|
|
payload.Set("key", "value")
|
|
|
|
dst, err := payload.MarshalMsg(nil)
|
|
require.NoError(t, err)
|
|
|
|
serializer := NewEncryptingSerializer("asecret")
|
|
encryptedDst, err := serializer.Encode(payload)
|
|
require.NoError(t, err)
|
|
|
|
assert.NotEqual(t, dst, encryptedDst)
|
|
|
|
decodedPayload := session.Dict{}
|
|
err = serializer.Decode(&decodedPayload, encryptedDst)
|
|
require.NoError(t, err)
|
|
|
|
assert.Equal(t, "value", decodedPayload.Get("key"))
|
|
}
|
|
|
|
func TestShouldNotSupportUnencryptedSessionForBackwardCompatibility(t *testing.T) {
|
|
payload := session.Dict{}
|
|
payload.Set("key", "value")
|
|
|
|
dst, err := payload.MarshalMsg(nil)
|
|
require.NoError(t, err)
|
|
|
|
serializer := NewEncryptingSerializer("asecret")
|
|
|
|
decodedPayload := session.Dict{}
|
|
err = serializer.Decode(&decodedPayload, dst)
|
|
assert.EqualError(t, err, "unable to decrypt session: cipher: message authentication failed")
|
|
}
|