You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@directory.apache.org by pl...@apache.org on 2015/10/22 08:56:36 UTC

directory-kerby git commit: DIRKRB-435 JWT Audience restriction validation is not working.

Repository: directory-kerby
Updated Branches:
  refs/heads/master b4c2b2ddd -> 3cec9dc02


DIRKRB-435 JWT Audience restriction validation is not working.


Project: http://git-wip-us.apache.org/repos/asf/directory-kerby/repo
Commit: http://git-wip-us.apache.org/repos/asf/directory-kerby/commit/3cec9dc0
Tree: http://git-wip-us.apache.org/repos/asf/directory-kerby/tree/3cec9dc0
Diff: http://git-wip-us.apache.org/repos/asf/directory-kerby/diff/3cec9dc0

Branch: refs/heads/master
Commit: 3cec9dc02ff630d3ad4eea563c384afc84ff6cb7
Parents: b4c2b2d
Author: plusplus_jiajia <ji...@intel.com>
Authored: Thu Oct 22 14:56:16 2015 +0800
Committer: plusplus_jiajia <ji...@intel.com>
Committed: Thu Oct 22 14:56:16 2015 +0800

----------------------------------------------------------------------
 .../apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java    | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/directory-kerby/blob/3cec9dc0/kerby-kdc-test/src/test/java/org/apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java
----------------------------------------------------------------------
diff --git a/kerby-kdc-test/src/test/java/org/apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java b/kerby-kdc-test/src/test/java/org/apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java
index d623098..a119282 100644
--- a/kerby-kdc-test/src/test/java/org/apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java
+++ b/kerby-kdc-test/src/test/java/org/apache/kerby/kerberos/kdc/WithAccessTokenKdcTest.java
@@ -24,6 +24,7 @@ import java.security.PrivateKey;
 
 import org.apache.kerby.kerberos.kerb.KrbException;
 import org.apache.kerby.kerberos.kerb.common.PrivateKeyReader;
+import org.apache.kerby.kerberos.kerb.server.TestKdcServer;
 import org.apache.kerby.kerberos.kerb.spec.ticket.ServiceTicket;
 import org.junit.Assert;
 import org.junit.Test;
@@ -50,14 +51,13 @@ public class WithAccessTokenKdcTest extends WithTokenKdcTestBase {
             Assert.assertTrue(ex instanceof KrbException);
         }
     }
-    
-    // TODO - not failing yet.
+
     @Test
-    @org.junit.Ignore
     public void testBadAudienceRestriction() throws Exception {
         InputStream is = WithTokenKdcTestBase.class.getResourceAsStream("/private_key.pem");
         PrivateKey privateKey = PrivateKeyReader.loadPrivateKey(is);
-        prepareToken(getServerPrincipal(), ISSUER, "krbtgt2@EXAMPLE.COM", privateKey);
+        prepareToken("bad-service" + "/" + getHostname() + "@" + TestKdcServer.KDC_REALM,
+                ISSUER, AUDIENCE, privateKey);
         
         try {
             performTest();