Examples of org.springframework.security.core.token.Token

Package org.springframework.security.core.token

Examples of org.springframework.security.core.token.Token

org.springframework.security.core.token.Token
A token issued by {@link TokenService}.
It is important that the keys assigned to tokens are sufficiently randomised and secured that they can serve as identifying a unique user session. Implementations of {@link TokenService}are free to use encryption or encoding strategies of their choice. It is strongly recommended that keys are of sufficient length to balance safety against persistence cost. In relation to persistence cost, it is strongly recommended that returned keys are small enough for encoding in a cookie.
@author Ben Alex @since 2.0.1

    }


    @Test
    public void testOperationWithSimpleExtendedInformation() {
        KeyBasedPersistenceTokenService service = getService();
        Token token = service.allocateToken("Hello world");
        Token result = service.verifyToken(token.getKey());
        Assert.assertEquals(token, result);
    }

View Full Code Here




    @Test
    public void testOperationWithComplexExtendedInformation() {
        KeyBasedPersistenceTokenService service = getService();
        Token token = service.allocateToken("Hello:world:::");
        Token result = service.verifyToken(token.getKey());
        Assert.assertEquals(token, result);
    }

View Full Code Here


    @Test
    public void testOperationWithEmptyRandomNumber() {
        KeyBasedPersistenceTokenService service = getService();
        service.setPseudoRandomNumberBits(0);
        Token token = service.allocateToken("Hello:world:::");
        Token result = service.verifyToken(token.getKey());
        Assert.assertEquals(token, result);
    }

View Full Code Here

    }


    @Test
    public void testOperationWithNoExtendedInformation() {
        KeyBasedPersistenceTokenService service = getService();
        Token token = service.allocateToken("");
        Token result = service.verifyToken(token.getKey());
        Assert.assertEquals(token, result);
    }

View Full Code Here

    }


    @Test(expected=IllegalArgumentException.class)
    public void testOperationWithMissingKey() {
        KeyBasedPersistenceTokenService service = getService();
        Token token = new DefaultToken("", new Date().getTime(), "");
        service.verifyToken(token.getKey());
    }

View Full Code Here

    }


    @Test(expected=IllegalArgumentException.class)
    public void testOperationWithTamperedKey() {
        KeyBasedPersistenceTokenService service = getService();
        Token goodToken = service.allocateToken("");
        String fake = goodToken.getKey().toUpperCase();
        Token token = new DefaultToken(fake, new Date().getTime(), "");
        service.verifyToken(token.getKey());
    }

View Full Code Here

TOP

Related Classes of org.springframework.security.core.token.Token

org.springframework.security.core.token.KeyBasedPersistenceTokenServiceTests

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.