Skip to content
This repository has been archived by the owner on Mar 25, 2024. It is now read-only.

Finish deprecation of all U2F-specific classes #36

Open
wants to merge 21 commits into
base: master
Choose a base branch
from
Open

Finish deprecation of all U2F-specific classes #36

Changes from 1 commit
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
6906d77
Deprecate RegisterRequest & SignRequest
Firehed Oct 27, 2021
8f362f8
Deprecate U2F response formats
Firehed Oct 27, 2021
59bf4ef
Mark tests for deprecated classes as also deprecated
Firehed Oct 27, 2021
1507f2b
Deprecate tests for old APIs
Firehed Oct 27, 2021
38434c1
Migrate to new tool
Firehed Oct 27, 2021
393f5dd
Allow overrides for default registration challenge
Firehed Oct 27, 2021
69e7573
Migrate more logic across
Firehed Oct 27, 2021
d5ac233
More test updates
Firehed Oct 27, 2021
d13eb1b
Continue updating out of legacy models
Firehed Oct 27, 2021
b0034c0
More updates
Firehed Oct 27, 2021
287be43
Make default login response configurable
Firehed Oct 27, 2021
0d7c57e
Make registration PK configurable
Firehed Oct 27, 2021
d09d994
Test login with incorrect signature
Firehed Oct 27, 2021
80874ad
Add additional signature mismatch test
Firehed Oct 27, 2021
dd24ca3
Deprecate last couple of legacy format related tests
Firehed Oct 27, 2021
f527132
Remove some now-unused helpers
Firehed Oct 27, 2021
d6cecfd
Add other deprecation markers
Firehed Oct 27, 2021
40eae4f
Mark all traits as internal and deprecate ClientData
Firehed Oct 27, 2021
3878e6f
Deprecate clientdata test
Firehed Oct 27, 2021
50e31d4
Deprecate ResponseTrait too
Firehed Oct 27, 2021
b9b8db5
Line number in baseline
Firehed Oct 27, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
Prev Previous commit
Next Next commit
More test updates
  • Loading branch information
@Firehed
Firehed committed Oct 27, 2021
commit d5ac233b0c64b25ab9f82b7daa07ac5f84d962db
26 changes: 20 additions & 6 deletions tests/ServerTest.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -293,15 +293,24 @@ public function testRegisterDefaultsToTryingEmptyCAList(): void

public function testRegisterThrowsIfChallengeDoesNotMatch(): void
{
// This would have come from a session, database, etc.
$request = (new RegisterRequest())
->setAppId('https://u2f.ericstern.com')
->setChallenge('some-other-challenge');
$challenge = $this->getDefaultRegistrationChallenge();
$response = $this->getDefaultRegistrationResponse([
'getChallenge' => 'some-other-challenge',
]);

$this->expectException(SecurityException::class);
$this->expectExceptionCode(SecurityException::CHALLENGE_MISMATCH);
$this->server->validateRegistration($challenge, $response);
}

public function testRegisterThrowsIfChallengeDoesNotMatchInverse(): void
{
$challenge = new Challenge('some-other-challenge');
$response = $this->getDefaultRegistrationResponse();

$this->expectException(SecurityException::class);
$this->expectExceptionCode(SecurityException::CHALLENGE_MISMATCH);
$this->server->validateRegistration($request, $response);
$this->server->validateRegistration($challenge, $response);
}

public function testRegisterThrowsWithUntrustedDeviceIssuerCertificate(): void
Expand Down Expand Up @@ -345,7 +354,6 @@ public function testRegisterWorksWithCAList(): void
public function testRegisterThrowsWithChangedApplicationParameter(): void
{
$challenge = $this->getDefaultRegistrationChallenge();

$response = $this->getDefaultRegistrationResponse([
'getRpIdHash' => hash('sha256', 'https://some.otherdomain.com', true),
]);
Expand Down Expand Up @@ -655,6 +663,9 @@ public function testRegistrationWithoutCidPubkeyBug14Case2(): void

// -( Helpers )------------------------------------------------------------

/**
* @deprecated
*/
private function getDefaultRegisterRequest(): RegisterRequest
{
// This would have come from a session, database, etc.
Expand Down Expand Up @@ -737,6 +748,9 @@ private function getDefaultRegistrationResponse(array $overrides = []): Registra
return $mock;
}

/**
* @deprecated
*/
private function getDefaultSignRequest(): SignRequest
{
// This would have come from a session, database, etc
Expand Down