Refactor tests & Update to JUnit 4.12

Author: hzalaz

.travis.yml

@@ -0,0 +1,6 @@
+language: java
+jdk:
+- oraclejdk7
+branches:
+  only:
+  - master

pom.xml

@@ -73,7 +73,7 @@
     <dependency>
       <groupId>junit</groupId>
       <artifactId>junit</artifactId>
-      <version>4.11</version>
+      <version>4.12</version>
       <scope>test</scope>
     </dependency>
 

src/main/java/com/auth0/jwt/JWTVerifier.java

@@ -94,8 +94,9 @@ public JWTVerifier(final PublicKey publicKey) {
      * @throws JWTAlgorithmException when the algorithm is missing or unsupported
      * @throws IllegalStateException when token's structure is invalid or secret / public key does not match algorithm of token
      */
+    @SuppressWarnings("WeakerAccess")
     public Map<String, Object> verify(final String token) throws NoSuchAlgorithmException, InvalidKeyException, IllegalStateException,
-            IOException, SignatureException, JWTVerifyException, JWTAlgorithmException {
+            IOException, SignatureException, JWTVerifyException {
         if (token == null || "".equals(token)) {
             throw new IllegalStateException("token not set");
         }
@@ -113,7 +114,7 @@ public Map<String, Object> verify(final String token) throws NoSuchAlgorithmExce
         return mapper.treeToValue(jwtPayload, Map.class);
     }
 
-    protected void verifySignature(final String[] pieces, final Algorithm algorithm) throws NoSuchAlgorithmException,
+    void verifySignature(final String[] pieces, final Algorithm algorithm) throws NoSuchAlgorithmException,
             InvalidKeyException, SignatureException, JWTAlgorithmException, IllegalStateException {
         Validate.notNull(pieces);
         Validate.notNull(algorithm);
@@ -136,24 +137,24 @@ protected void verifySignature(final String[] pieces, final Algorithm algorithm)
         }
     }
 
-    void verifyHmac(final Algorithm algorithm, final String[] pieces, final byte[] secret) throws SignatureException, NoSuchAlgorithmException, InvalidKeyException {
+    private void verifyHmac(final Algorithm algorithm, final String[] pieces, final byte[] secret) throws SignatureException, NoSuchAlgorithmException, InvalidKeyException {
         if (secret == null || secret.length == 0) {
             throw new IllegalStateException("Secret cannot be null or empty when using algorithm: " + algorithm.getValue());
         }
         final Mac hmac = Mac.getInstance(algorithm.getValue());
         hmac.init(new SecretKeySpec(secret, algorithm.getValue()));
-        final byte[] sig = hmac.doFinal(new StringBuilder(pieces[0]).append(".").append(pieces[1]).toString().getBytes());
+        final byte[] sig = hmac.doFinal((pieces[0] + "." + pieces[1]).getBytes());
         if (!MessageDigest.isEqual(sig, decoder.decode(pieces[2]))) {
             throw new SignatureException("signature verification failed");
         }
     }
 
-    void verifyRs(final Algorithm algorithm, final String[] pieces, final PublicKey publicKey) throws SignatureException, NoSuchAlgorithmException, InvalidKeyException, JWTAlgorithmException {
+    private void verifyRs(final Algorithm algorithm, final String[] pieces, final PublicKey publicKey) throws SignatureException, NoSuchAlgorithmException, InvalidKeyException, JWTAlgorithmException {
         if (publicKey == null) {
             throw new IllegalStateException("PublicKey cannot be null when using algorithm: " + algorithm.getValue());
         }
         final byte[] decodedSignatureBytes = new Base64(true).decode(pieces[2]);
-        final byte[] headerPayloadBytes = new StringBuilder(pieces[0]).append(".").append(pieces[1]).toString().getBytes();
+        final byte[] headerPayloadBytes = (pieces[0] + "." + pieces[1]).getBytes();
         final boolean verified = verifySignatureWithPublicKey(this.publicKey, headerPayloadBytes, decodedSignatureBytes, algorithm);
         if (!verified) {
             throw new SignatureException("signature verification failed");
@@ -175,15 +176,15 @@ private boolean verifySignatureWithPublicKey(final PublicKey publicKey, final by
         }
     }
 
-    protected void verifyExpiration(final JsonNode jwtClaims) throws JWTExpiredException {
+    void verifyExpiration(final JsonNode jwtClaims) throws JWTExpiredException {
         Validate.notNull(jwtClaims);
         final long expiration = jwtClaims.has("exp") ? jwtClaims.get("exp").asLong(0) : 0;
         if (expiration != 0 && System.currentTimeMillis() / 1000L >= expiration) {
             throw new JWTExpiredException("jwt expired", expiration);
         }
     }
 
-    protected void verifyIssuer(final JsonNode jwtClaims) throws JWTIssuerException {
+    void verifyIssuer(final JsonNode jwtClaims) throws JWTIssuerException {
         Validate.notNull(jwtClaims);
 
         if (this.issuer == null ) {
@@ -197,7 +198,7 @@ protected void verifyIssuer(final JsonNode jwtClaims) throws JWTIssuerException
         }
     }
 
-    protected void verifyAudience(final JsonNode jwtClaims) throws JWTAudienceException {
+    void verifyAudience(final JsonNode jwtClaims) throws JWTAudienceException {
         Validate.notNull(jwtClaims);
         if (audience == null) {
             return;
@@ -220,7 +221,7 @@ protected void verifyAudience(final JsonNode jwtClaims) throws JWTAudienceExcept
         throw new JWTAudienceException("jwt audience invalid", audNode);
     }
 
-    protected Algorithm getAlgorithm(final JsonNode jwtHeader) throws JWTAlgorithmException {
+    Algorithm getAlgorithm(final JsonNode jwtHeader) throws JWTAlgorithmException {
         Validate.notNull(jwtHeader);
         final String algorithmName = jwtHeader.has("alg") ? jwtHeader.get("alg").asText() : null;
         if (jwtHeader.get("alg") == null) {
@@ -229,11 +230,10 @@ protected Algorithm getAlgorithm(final JsonNode jwtHeader) throws JWTAlgorithmEx
         return Algorithm.findByName(algorithmName);
     }
 
-    protected JsonNode decodeAndParse(final String b64String) throws IOException {
+    JsonNode decodeAndParse(final String b64String) throws IOException {
         Validate.notNull(b64String);
         final String jsonString = new String(decoder.decode(b64String), "UTF-8");
-        final JsonNode jwtHeader = mapper.readValue(jsonString, JsonNode.class);
-        return jwtHeader;
+        return mapper.readValue(jsonString, JsonNode.class);
     }
 
 }

src/test/java/com/auth0/jwt/JWTVerifierTest.java

@@ -24,61 +24,70 @@ public class JWTVerifierTest {
     @Rule
     public ExpectedException expectedException = ExpectedException.none();
 
-    @Test(expected = IllegalArgumentException.class)
+    @Test
     public void constructorShouldFailOnEmptySecret() {
+        expectedException.expect(IllegalArgumentException.class);
         new JWTVerifier("");
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailOn1Segments() throws Exception {
-        new JWTVerifier("such secret").verify("crypto");
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().verify("crypto");
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailOn2Segments() throws Exception {
-        new JWTVerifier("such secret").verify("much.crypto");
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().verify("much.crypto");
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailOn4Segments() throws Exception {
-        new JWTVerifier("such secret").verify("much.crypto.so.token");
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().verify("much.crypto.so.token");
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailOnEmptyStringToken() throws Exception {
-        new JWTVerifier("such secret").verify("");
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().verify("");
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailOnNullToken() throws Exception {
-        new JWTVerifier("such secret").verify(null);
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().verify(null);
     }
 
-    @Test(expected = IllegalStateException.class)
+    @Test
     public void shouldFailIfAlgorithmIsNotSetOnToken() throws Exception {
-        new JWTVerifier("such secret").getAlgorithm(JsonNodeFactory.instance.objectNode());
+        expectedException.expect(IllegalStateException.class);
+        signatureVerifier().getAlgorithm(JsonNodeFactory.instance.objectNode());
     }
 
-    @Test(expected = JWTAlgorithmException.class)
+    @Test
     public void shouldFailIfAlgorithmIsNotSupported() throws Exception {
-        new JWTVerifier("such secret").getAlgorithm(createSingletonJSONNode("alg", "doge-crypt"));
+        expectedException.expect(JWTAlgorithmException.class);
+        signatureVerifier().getAlgorithm(createSingletonJSONNode("alg", "doge-crypt"));
     }
 
     @Test
     public void shouldWorkIfAlgorithmIsSupported() throws Exception {
-        new JWTVerifier("such secret").getAlgorithm(createSingletonJSONNode("alg", "HS256"));
+        signatureVerifier().getAlgorithm(createSingletonJSONNode("alg", "HS256"));
     }
 
-    @Test(expected = SignatureException.class)
+    @Test
     public void shouldFailOnInvalidSignature() throws Exception {
+        expectedException.expect(SignatureException.class);
         final String jws = "eyJ0eXAiOiJKV1QiLA0KICJhbGciOiJIUzI1NiJ9" +
                 "." +
                 "eyJpc3MiOiJqb2UiLA0KICJleHAiOjEzMDA4MTkzODAsDQogImh0dHA6Ly9leGFt" +
                 "cGxlLmNvbS9pc19yb290Ijp0cnVlfQ" +
                 "." +
                 "suchsignature_plzvalidate_zomgtokens";
         String secret = "AyM1SysPpbyDfgZld3umj1qzKObwVMkoqQ-EstJQLr_T-1qS0gZH75aKtMN3Yj0iPS4hcgUuTwjAzZr1Z9CAow";
-        new JWTVerifier(secret, "audience").verifySignature(jws.split("\\."), Algorithm.HS256);
+        signatureVerifier(secret).verifySignature(jws.split("\\."), Algorithm.HS256);
     }
 
     @Test
@@ -90,76 +99,80 @@ public void shouldVerifySignature() throws Exception {
                 "." +
                 "dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk";
         byte[] secret = decoder.decode("AyM1SysPpbyDfgZld3umj1qzKObwVMkoqQ-EstJQLr_T-1qS0gZH75aKtMN3Yj0iPS4hcgUuTwjAzZr1Z9CAow");
-        new JWTVerifier(secret, "audience")
+        signatureVerifier(secret)
                 .verifySignature(jws.split("\\."), Algorithm.HS256);
     }
 
-    @Test(expected = JWTExpiredException.class)
+    @Test
     public void shouldFailWhenExpired1SecondAgo() throws Exception {
-        new JWTVerifier("such secret").verifyExpiration(
+        expectedException.expect(JWTExpiredException.class);
+        signatureVerifier().verifyExpiration(
                 createSingletonJSONNode("exp", Long.toString(System.currentTimeMillis() / 1000L - 1L)));
     }
 
     @Test
     public void shouldVerifyExpiration() throws Exception {
-        new JWTVerifier("such secret").verifyExpiration(
+        signatureVerifier().verifyExpiration(
                 createSingletonJSONNode("exp", Long.toString(System.currentTimeMillis() / 1000L + 50L)));
     }
 
     @Test
     public void shouldVerifyIssuer() throws Exception {
-        new JWTVerifier("such secret", "amaze audience", "very issuer")
+        issuerVerifier("very issuer")
                 .verifyIssuer(createSingletonJSONNode("iss", "very issuer"));
     }
 
-    @Test(expected = JWTIssuerException.class)
+    @Test
     public void shouldFailIssuer() throws Exception {
-        new JWTVerifier("such secret", "amaze audience", "very issuer")
+        expectedException.expect(JWTIssuerException.class);
+        issuerVerifier("very issuer")
                 .verifyIssuer(createSingletonJSONNode("iss", "wow"));
     }
 
     @Test
     public void shouldVerifyIssuerWhenNotFoundInClaimsSet() throws Exception {
         expectedException.expect(JWTIssuerException.class);
-        new JWTVerifier("such secret", "amaze audience", "very issuer")
+        issuerVerifier("very issuer")
                 .verifyIssuer(JsonNodeFactory.instance.objectNode());
     }
 
     @Test
     public void shouldVerifyAudience() throws Exception {
-        new JWTVerifier("such secret", "amaze audience")
+        audienceVerifier("amaze audience")
                 .verifyAudience(createSingletonJSONNode("aud", "amaze audience"));
     }
 
-    @Test(expected = JWTAudienceException.class)
+    @Test
     public void shouldFailAudience() throws Exception {
-        new JWTVerifier("such secret", "amaze audience")
+        expectedException.expect(JWTAudienceException.class);
+        audienceVerifier("amaze audience")
                 .verifyAudience(createSingletonJSONNode("aud", "wow"));
     }
 
     @Test
     public void shouldVerifyAudienceWhenNotFoundInClaimsSet() throws Exception {
         expectedException.expect(JWTAudienceException.class);
-        new JWTVerifier("such secret", "amaze audience")
+        audienceVerifier("amaze audience")
                 .verifyAudience(JsonNodeFactory.instance.objectNode());
     }
 
     @Test
     public void shouldVerifyNullAudience() throws Exception {
-        new JWTVerifier("such secret")
+        signatureVerifier()
                 .verifyAudience(createSingletonJSONNode("aud", "wow"));
     }
 
     @Test
     public void shouldVerifyArrayAudience() throws Exception {
-        new JWTVerifier("such secret", "amaze audience")
+        audienceVerifier("amaze audience")
                 .verifyAudience(createSingletonJSONNode("aud",
                         new ObjectMapper().readValue("[ \"foo\", \"amaze audience\" ]", ArrayNode.class)));
     }
 
-    @Test(expected = JWTAudienceException.class)
+    @Test
     public void shouldFailArrayAudience() throws Exception {
-        new JWTVerifier("such secret", "amaze audience")
+        expectedException.expect(JWTAudienceException.class);
+        audienceVerifier("amaze audience")
                 .verifyAudience(createSingletonJSONNode("aud",
                         new ObjectMapper().readValue("[ \"foo\" ]", ArrayNode.class)));
     }
@@ -191,13 +204,33 @@ public void shouldVerifyIssuerFromToken() throws Exception {
         verifier.verify("eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIn0.wLlz9xDltxqKHQC7BeauPi5Q4KQK4nDjlRqQPvKVLYk");
     }
 
-    public static JsonNode createSingletonJSONNode(String key, String value) {
+    private static JWTVerifier signatureVerifier() {
+        return new JWTVerifier("such secret");
+    }
+
+    private static JWTVerifier signatureVerifier(String secret) {
+        return new JWTVerifier(secret);
+    }
+
+    private static JWTVerifier signatureVerifier(byte[] secret) {
+        return new JWTVerifier(secret);
+    }
+
+    private static JWTVerifier issuerVerifier(String issuer) {
+        return new JWTVerifier("such secret", null, issuer);
+    }
+
+    private static JWTVerifier audienceVerifier(String audience) {
+        return new JWTVerifier("such secret", audience);
+    }
+
+    private static JsonNode createSingletonJSONNode(String key, String value) {
         final ObjectNode jsonNodes = JsonNodeFactory.instance.objectNode();
         jsonNodes.put(key, value);
         return jsonNodes;
     }
 
-    public static JsonNode createSingletonJSONNode(String key, JsonNode value) {
+    private static JsonNode createSingletonJSONNode(String key, JsonNode value) {
         final ObjectNode jsonNodes = JsonNodeFactory.instance.objectNode();
         jsonNodes.put(key, value);
         return jsonNodes;