feat: algorithm in initial keys

ybelMekk · ybelMekk · commit cc42b9bd348f · 2022-05-07T11:39:10.000+02:00
diff --git a/src/main/kotlin/no/nav/security/mock/oauth2/token/KeyGenerator.kt b/src/main/kotlin/no/nav/security/mock/oauth2/token/KeyGenerator.kt
@@ -23,7 +23,7 @@ data class KeyGenerator(
         if (keyGenerator.algorithm != KeyType.RSA.value) {
             return keyGenerator.generateECKey(keyId, algorithm)
         }
-        return keyGenerator.generateRSAKey(keyId)
+        return keyGenerator.generateRSAKey(keyId, algorithm)
     }
 
     private fun KeyPairGenerator.generateECKey(keyId: String, algorithm: JWSAlgorithm): JWK =
@@ -33,6 +33,7 @@ data class KeyGenerator(
                     .privateKey(it.private as ECPrivateKey)
                     .keyUse(KeyUse.SIGNATURE)
                     .keyID(keyId)
+                    .algorithm(algorithm)
                     .build()
             }
 
@@ -44,13 +45,14 @@ data class KeyGenerator(
         }
     }
 
-    private fun KeyPairGenerator.generateRSAKey(keyId: String): JWK =
+    private fun KeyPairGenerator.generateRSAKey(keyId: String, algorithm: JWSAlgorithm): JWK =
         generateKeyPair()
             .let {
                 RSAKey.Builder(it.public as RSAPublicKey)
                     .privateKey(it.private as RSAPrivateKey)
                     .keyUse(KeyUse.SIGNATURE)
                     .keyID(keyId)
+                    .algorithm(algorithm)
                     .build()
             }
 
diff --git a/src/test/kotlin/no/nav/security/mock/oauth2/token/KeyGeneratorTest.kt b/src/test/kotlin/no/nav/security/mock/oauth2/token/KeyGeneratorTest.kt
@@ -11,6 +11,7 @@ import com.nimbusds.jwt.JWTClaimsSet
 import com.nimbusds.jwt.SignedJWT
 import com.nimbusds.oauth2.sdk.id.Issuer
 import io.kotest.assertions.throwables.shouldNotThrow
+import io.kotest.matchers.collections.shouldBeIn
 import io.kotest.matchers.shouldBe
 import no.nav.security.mock.oauth2.extensions.verifySignatureAndIssuer
 import no.nav.security.mock.oauth2.token.KeyGenerator.Companion.ecAlgorithmFamily
@@ -34,6 +35,7 @@ class KeyGeneratorTest {
             keys.keyID shouldBe keyId
             keys.keyType.toString() shouldBe KeyType.RSA.value
             keys.keyUse.toString() shouldBe "sig"
+            keys.algorithm shouldBeIn rsaAlgorithmFamily
 
             val issuer = Issuer("issuer$index")
             val jwt = jwtWith(issuer.value, keyId, JOSEObjectType.JWT.type, jwsAlgorithm)
@@ -61,6 +63,7 @@ class KeyGeneratorTest {
             keys.keyID shouldBe keyId
             keys.keyType.toString() shouldBe KeyType.EC.value
             keys.keyUse.toString() shouldBe "sig"
+            keys.algorithm shouldBeIn ecAlgorithmFamily
 
             val issuer = Issuer("issuer$index")
             val jwt = jwtWith(issuer.value, keyId, JOSEObjectType.JWT.type, jwsAlgorithm)

Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@ data class KeyGenerator(`
`23`	`23`	`if (keyGenerator.algorithm != KeyType.RSA.value) {`
`24`	`24`	`return keyGenerator.generateECKey(keyId, algorithm)`
`25`	`25`	`}`
`26`		`- return keyGenerator.generateRSAKey(keyId)`
	`26`	`+ return keyGenerator.generateRSAKey(keyId, algorithm)`
`27`	`27`	`}`
`28`	`28`
`29`	`29`	`private fun KeyPairGenerator.generateECKey(keyId: String, algorithm: JWSAlgorithm): JWK =`
`@@ -33,6 +33,7 @@ data class KeyGenerator(`
`33`	`33`	`.privateKey(it.private as ECPrivateKey)`
`34`	`34`	`.keyUse(KeyUse.SIGNATURE)`
`35`	`35`	`.keyID(keyId)`
	`36`	`+ .algorithm(algorithm)`
`36`	`37`	`.build()`
`37`	`38`	`}`
`38`	`39`
`@@ -44,13 +45,14 @@ data class KeyGenerator(`
`44`	`45`	`}`
`45`	`46`	`}`
`46`	`47`
`47`		`- private fun KeyPairGenerator.generateRSAKey(keyId: String): JWK =`
	`48`	`+ private fun KeyPairGenerator.generateRSAKey(keyId: String, algorithm: JWSAlgorithm): JWK =`
`48`	`49`	`generateKeyPair()`
`49`	`50`	`.let {`
`50`	`51`	`RSAKey.Builder(it.public as RSAPublicKey)`
`51`	`52`	`.privateKey(it.private as RSAPrivateKey)`
`52`	`53`	`.keyUse(KeyUse.SIGNATURE)`
`53`	`54`	`.keyID(keyId)`
	`55`	`+ .algorithm(algorithm)`
`54`	`56`	`.build()`
`55`	`57`	`}`
`56`	`58`