(test_client, server)
| 161 | |
| 162 | |
| 163 | def test_require_nonce(test_client, server): |
| 164 | register_oidc_code_grant(server, require_nonce=True) |
| 165 | rv = test_client.post( |
| 166 | "/oauth/authorize", |
| 167 | data={ |
| 168 | "response_type": "code", |
| 169 | "client_id": "client-id", |
| 170 | "user_id": "1", |
| 171 | "state": "bar", |
| 172 | "scope": "openid profile", |
| 173 | "redirect_uri": "https://client.test", |
| 174 | }, |
| 175 | ) |
| 176 | params = dict(url_decode(urlparse.urlparse(rv.location).query)) |
| 177 | assert params["error"] == "invalid_request" |
| 178 | assert params["error_description"] == "Missing 'nonce' in request." |
| 179 | |
| 180 | |
| 181 | def test_nonce_replay(test_client, server): |
nothing calls this directly
no test coverage detected
searching dependent graphs…