when(tokenServices.getToken("tok")).thenReturn(token);
when(token.isAccessToken()).thenReturn(true);
Authentication userAuthentication = mock(Authentication.class);
when(token.getUserAuthentication()).thenReturn(userAuthentication);
filter.onValidSignature(request, response, chain);
verify(chain).doFilter(request, response);
assertSame(userAuthentication, SecurityContextHolder.getContext().getAuthentication());
SecurityContextHolder.getContext().setAuthentication(null);
}