resloved bug for acceptedScopes and added testcase for that

Infosys · Oct 16, 2023 · ec4b48f · ec4b48f
1 parent 601b7dc
commit ec4b48f
Showing 1 changed file with 35 additions and 0 deletions.
diff --git a/oidc-service-impl/src/test/java/io/mosip/esignet/services/AuthorizationServiceTest.java b/oidc-service-impl/src/test/java/io/mosip/esignet/services/AuthorizationServiceTest.java
@@ -1004,6 +1004,41 @@ public void getAuthCode_withValidInput_thenPass() {
 		Assert.assertEquals(authorizationServiceImpl.getAuthCode(authCodeRequest).getState(), "test-state");
     }
 
+    @Test
+    public void getAuthCode_withInValidInput_thenFail() {
+
+        AuthorizationServiceImpl authService=new AuthorizationServiceImpl();
+        ReflectionTestUtils.setField(authorizationServiceImpl, "autoPermitCredentialScopes", true);
+        AuthCodeRequest authCodeRequest = new AuthCodeRequest();
+        authCodeRequest.setTransactionId("987654321");
+        List<String> scopeList=new ArrayList<>();
+        scopeList.add("fullName");
+        authCodeRequest.setPermittedAuthorizeScopes(scopeList);
+        OIDCTransaction transaction = new OIDCTransaction();
+        transaction.setAuthTransactionId("987654321");
+        List<String> requestedScopeList=new ArrayList<>();
+        requestedScopeList.add("test-scope");
+        transaction.setRequestedAuthorizeScopes(requestedScopeList);
+        transaction.setRedirectUri("http://www.test.com");
+        transaction.setNonce("test-nonce");
+        transaction.setState("test-state");
+        List<String> credentialScopesList=new ArrayList<>();
+        credentialScopesList.add("teat1");
+        credentialScopesList.add("tesqt2");
+        transaction.setRequestedCredentialScopes(credentialScopesList);
+        Claims requestedClaims = new Claims();
+        Map<String, ClaimDetail> userinfo = new HashMap<>();
+        userinfo.put("fullName", new ClaimDetail("test", new String[] {"test"}, true));
+        Mockito.when(cacheUtilService.getAuthenticatedTransaction(Mockito.anyString())).thenReturn(transaction);
+        Mockito.when(cacheUtilService.setAuthCodeGeneratedTransaction(Mockito.anyString(), Mockito.any())).thenReturn(transaction);
+        try {
+            authorizationServiceImpl.getAuthCode(authCodeRequest);
+            Assert.fail();
+        }catch (Exception e) {
+            Assert.assertTrue(e.getMessage().equals(ErrorConstants.INVALID_PERMITTED_SCOPE));
+        }
+    }
+
     private OIDCTransaction createIdpTransaction(String[] acrs) {
         OIDCTransaction oidcTransaction = new OIDCTransaction();
         Map<String, ClaimDetail> idClaims = new HashMap<>();