product-is icon indicating copy to clipboard operation
product-is copied to clipboard

Published 20 hours ago verified publisher icon wso2

Add oauth2 PKCE test case

Open Thumimku opened this issue 4 months ago • 2 comments

Public Issue : https://github.com/wso2/product-is/issues/21313

Currently we don't have a test suite to test PKCE scenarios in integration test nodule, but we have one in scenario test which cover legit customer scenario which is not sufficient for testing edge cases and frequent changes in oauth repo. Hence this PR will address above isue.

Verified scenarios are,

  • Default App

    • PKCE "S256" with valid verifier
    • PKCE "S256" with invalid verifier
    • PKCE "S256" without verifier
    • PKCE with invalid challenge method
    • PKCE with plain challenge method

  • Mandate PKCE for the App withot allowing Plain challenge method

    • PKCE "S256" with valid verifier
    • PKCE "S256" with invalid verifier
    • PKCE "S256" without verifier
    • PKCE with invalid challenge method
    • PKCE with plain challenge method

  • Mandate PKCE for the App with allowing Plain challenge method

    • PKCE "S256" with valid verifier
    • PKCE "S256" with invalid verifier
    • PKCE "S256" without verifier
    • PKCE with invalid challenge method
    • PKCE with plain challenge method

Thumimku avatar Oct 17 '24 05:10 Thumimku