added tests for validateDPOP, fixed some validations

poef · poef · commit bb725c4cbd4d · 2022-09-13T11:02:50.000+02:00
left 2 checks to be implemented (and tested)
diff --git a/src/Utils/DPop.php b/src/Utils/DPop.php
@@ -9,6 +9,7 @@
 use Lcobucci\JWT\Signer\Key\InMemory;
 use Lcobucci\JWT\Signer\Rsa\Sha256;
 use Lcobucci\JWT\Validation\Constraint\LooseValidAt;
+use Lcobucci\JWT\Validation\Constraint\SignedWith;
 
 use Jose\Component\Core\JWK;
 use Jose\Component\Core\Util\ECKey;
@@ -68,7 +69,15 @@ private function validateJwtDpop($jwt, $dpopKey) {
 		return false;
 	}
 
-	private function validateDpop($dpop, $request) {
+	/**
+	 * Validates that the DPOP token matches all requirements from 
+	 * https://datatracker.ietf.org/doc/html/draft-ietf-oauth-dpop#section-4.2
+	 * @param  string $dpop    The DPOP token
+	 * @param  Psr\Http\Message\ServerRequestInterface $request Server Request
+	 * @return bool            True if the DPOP token is valid, false otherwise
+	 * @throws Lcobucci\JWT\Validation\RequiredConstraintsViolated
+	 */
+	public function validateDpop($dpop, $request) {
 		/*
 			4.2.  Checking DPoP Proofs
 			   To check if a string that was received as part of an HTTP Request is
@@ -91,34 +100,43 @@ private function validateDpop($dpop, $request) {
 			   9.  that, within a reasonable consideration of accuracy and resource
 				   utilization, a JWT with the same "jti" value has not been
 				   received previously (see Section 9.1).
+			  10.  that, if used with an access token, it also contains the 'ath' 
+			       claim, with a hash of the access token
 		*/
-		//error_log("1");
 		// 1.  the string value is a well-formed JWT,
 		$jwtConfig = $configuration = Configuration::forUnsecuredSigner();
 		$dpop = $jwtConfig->parser()->parse($dpop);
 		
-		//error_log("2");
 	    // 2.  all required claims are contained in the JWT,
 		$htm = $dpop->claims()->get("htm"); // http method
+		if (!$htm) {
+			throw new \Exception("missing htm");
+		}
 		$htu = $dpop->claims()->get("htu"); // http uri
+		if (!$htu) {
+			throw new \Exception("missing htu");
+		}
 		$typ = $dpop->headers()->get("typ");
+		if (!$typ) {
+			throw new \Exception("missing typ");
+		}
 		$alg = $dpop->headers()->get("alg");
+		if (!$alg) {
+			throw new \Exception("missing alg");
+		}
 
-		//error_log("3");
 		// 3.  the "typ" field in the header has the value "dpop+jwt",
 		if ($typ != "dpop+jwt") {
 			throw new \Exception("typ is not dpop+jwt");
 		}
 
-		//error_log("4");
 		// 4.  the algorithm in the header of the JWT indicates an asymmetric 
 		//	   digital signature algorithm, is not "none", is supported by the
 		//	   application, and is deemed secure,   
 		if ($alg == "none") {
 			throw new \Exception("alg is none");
 		}
 		
-		//error_log("5");
 		// 5.  that the JWT is signed using the public key contained in the
 		//     "jwk" header of the JWT,
 		$jwk = $dpop->headers()->get("jwk");
@@ -130,59 +148,48 @@ private function validateDpop($dpop, $request) {
 			break;
 			case "ES256":
 				$pem = \Jose\Component\Core\Util\ECKey::convertToPEM($webTokenJwk);
-                                $signer = \Lcobucci\JWT\Signer\Ecdsa\Sha256::create();
+                $signer = \Lcobucci\JWT\Signer\Ecdsa\Sha256::create();
 			break;
 			default:
 				throw new \Exception("unsupported algorithm");
 			break;
 		}
 		$key = InMemory::plainText($pem);
-		$jwtConfig = Configuration::forSymmetricSigner($signer, InMemory::plainText($pem));
-
-// FIXME: Add constraints;
-//		$constraint = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
-//		$jwtConfig->setValidationConstraints($constraint);
-//		if (!$jwtConfig->validator()->validate($dpop, ...$jwtConfig->validationConstraints())) {
-//			throw new \Exception("invalid signature");
-//		}
+		$validationConstraints = [];
+		$validationConstraints[] = new SignedWith($signer, $key);
 		
-		//error_log("6");
 		// 6.  the "htm" claim matches the HTTP method value of the HTTP request
 		//	   in which the JWT was received (case-insensitive),
 		if (strtolower($htm) != strtolower($request->getMethod())) {
 			throw new \Exception("htm http method is invalid");
 		}
 
-		//error_log("7");
 		// 7.  the "htu" claims matches the HTTP URI value for the HTTP request
 		//     in which the JWT was received, ignoring any query and fragment
 		// 	   parts,
 		$requestedPath = (string)$request->getUri();
 		$requestedPath = preg_replace("/[?#].*$/", "", $requestedPath);
-		// FIXME: Remove this; it was disabled for testing with a server running on 443 internally but accessible on :444
-		$htu = str_replace(":444", "", $htu);
-		$requestedPath = str_replace(":444", "", $requestedPath);
 
 		//error_log("REQUESTED HTU $htu");
 		//error_log("REQUESTED PATH $requestedPath");
 		if ($htu != $requestedPath) { 
 			throw new \Exception("htu does not match requested path");
 		}
 
-		//error_log("8");
 		// 8.  the token was issued within an acceptable timeframe (see Section 9.1), and
 
 		$leeway = new \DateInterval("PT60S"); // allow 60 seconds clock skew
 		$clock = SystemClock::fromUTC();
-		$constraint = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
-		$jwtConfig->setValidationConstraints($constraint);
-		if (!$jwtConfig->validator()->validate($dpop, ...$jwtConfig->validationConstraints())) {
-			throw new \Exception("token timing is invalid");
+		$validationsConstraints[] = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
+		if (!$jwtConfig->validator()->validate($dpop, ...$validationConstraints)) {
+			$jwtConfig->validator()->assert($dpop, ...$validationConstraints); // throws an explanatory exception
 		}
 
 		// 9.  that, within a reasonable consideration of accuracy and resource utilization, a JWT with the same "jti" value has not been received previously (see Section 9.1).
-		// FIXME: Check if we know the jti;
-		//error_log("9");
+		// TODO: Check if we know the jti;
+
+		// 10. that, if used with an access token, it also contains the 'ath' claim, with a hash of the access token
+		// TODO: implement
 
 		return true;
 	}
diff --git a/src/Utils/Jwks.php b/src/Utils/Jwks.php
@@ -39,13 +39,13 @@ final public function jsonSerialize()
      *
      * @return array
      */
-    private function createKey(string $certificate, $subject) : array
+    private function createKey(string $certificate, $subject, $exponent) : array
     {
         return [
             JwkParameter::ALGORITHM => 'RS256',
             JwkParameter::KEY_ID => md5($certificate),
             JwkParameter::KEY_TYPE => 'RSA',
-            RsaParameter::PUBLIC_EXPONENT => 'AQAB', // Hard-coded as `Base64Url::encode($keyInfo['rsa']['e'])` tends to be empty...
+            RsaParameter::PUBLIC_EXPONENT => Base64Url::encode($exponent),
             RsaParameter::PUBLIC_MODULUS => Base64Url::encode($subject),
             JwkParameter::KEY_OPERATIONS => array("verify"),
         ];
@@ -70,7 +70,7 @@ private function create() : array
             $key = openssl_pkey_get_public($certificate);
             $keyInfo = openssl_pkey_get_details($key);
 
-            $jwks['keys'][] = $this->createKey($certificate, $keyInfo['rsa']['n']);
+            $jwks['keys'][] = $this->createKey($certificate, $keyInfo['rsa']['n'], $keyInfo['rsa']['e']);
         });
 
         return $jwks;
diff --git a/tests/unit/Utils/DPOPTest.php b/tests/unit/Utils/DPOPTest.php
@@ -0,0 +1,155 @@
+<?php
+
+namespace Pdsinterop\Solid\Auth\Utils;
+
+use PHPUnit\Framework\TestCase;
+use Lcobucci\JWT\Validation\RequiredConstraintsViolated;
+
+/**
+ * @covers DPop
+ */
+class DPOPTest extends TestCase
+{
+
+	private $dpop;
+	private $url;
+	private $serverRequest;
+
+	protected function sign($dpop, $privateKey=null)
+	{
+		$keyPath    = dirname(__DIR__) . '/../fixtures/keys';
+		if (!$privateKey) {
+	        $privateKey = file_get_contents($keyPath . '/private.key');
+	    }
+
+		$signature = '';
+        $success = \openssl_sign(
+            Base64Url::encode(json_encode($dpop['header'])).'.'.
+            Base64Url::encode(json_encode($dpop['payload'])), 
+            $signature, 
+            $privateKey, 
+            OPENSSL_ALGO_SHA256
+        );
+
+        if (!$success) {
+        	throw new \Exception('unable to sign dpop');
+        }
+        $token = Base64Url::encode(json_encode($dpop['header'])).'.'.
+            	 Base64Url::encode(json_encode($dpop['payload'])).'.'.
+            	 Base64Url::encode($signature);
+
+        return array_merge($dpop, [
+        	'signature' => $signature,
+        	'token' => $token
+        ]);
+	}
+
+	protected function setUp(): void
+	{
+		$keyPath    = dirname(__DIR__) . '/../fixtures/keys';
+        $privateKey = file_get_contents($keyPath . '/private.key');
+        $publicKey  = file_get_contents($keyPath . '/public.key');
+
+        $keyInfo = \openssl_pkey_get_details(\openssl_pkey_get_public($publicKey));
+        $jwk = [
+            'kty' => 'RSA',
+            'n' => Base64Url::encode($keyInfo['rsa']['n']),
+            'e' => Base64Url::encode($keyInfo['rsa']['e'])
+        ];
+
+        $header = [
+            'typ' => 'dpop+jwt',
+            'alg' => 'RS256',
+            'jwk' => $jwk
+        ];
+
+        $payload = [
+            'iss' => 'example.com',
+            'aud' => 'example.com',
+            'htm' => 'GET',
+            'htu' => 'https://www.example.com',
+            'iat' => time(),
+            'nbf' => time(),
+            'exp' => time()+3600
+        ];
+
+        $this->dpop = $this->sign([
+        	'header'  => $header,
+        	'payload' => $payload
+        ]);
+
+		$this->url = 'https://www.example.com';
+        $this->serverRequest = new \Laminas\Diactoros\ServerRequest(array(),array(), $this->url);
+
+	}
+
+	private function getWrongKey() {
+        $key = <<<EOF
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGzr51tpH6F2HwMUSKCX
+zxyYfZyNJpKZWzNb3AMrNZTGlKDHHuVCkxNmHV0yFIxr3flRNmvxebLxsuYPAmCF
+ccV1r+1Pry244MHOIq3aq5mIRq+smVSPk350WpyO4jn8mOLOiH+CYe9LXmJSPBvO
+zZHwjEp+VmIGp5oDUZc5nnrf/UkQcj6jvKj0TanD8vGpDg9w3WbkQHWbFAMGPQdc
+YF5CZ68QPKPS86/aOdcnyoliSyIMn9BhrSXS8+Q3fCZHsYgejUjD7e0sx/+gBCrW
+MOuzbyD29mgbqETiSCZS1YLxgPnA34NRRKY06G0fMusXSGsXC+y7EU8JjTvTs4/L
+PwIDAQAB
+-----END PUBLIC KEY-----
+EOF;
+        // Get public key  
+        $pubkey=\openssl_pkey_get_details(\openssl_pkey_get_public($key));  
+        return $pubkey;
+    }
+
+	public function testWrongTyp(): void
+    {
+        $this->dpop['header']['typ'] = 'jwt';
+        $token = $this->sign($this->dpop);
+
+        $dpop = new DPop();
+        $this->expectException(\Exception::class);
+        $this->expectExceptionMessage('typ is not dpop+jwt');
+
+        $result = $dpop->validateDpop($token['token'], $this->serverRequest);
+    }
+
+    public function testAlgNone(): void 
+    {
+        $this->dpop['header']['alg'] = 'none';
+        $token = $this->sign($this->dpop);
+
+        $dpop = new DPop();
+        $this->expectException(\Exception::class);
+        $this->expectExceptionMessage('alg is none');
+        $result = $dpop->validateDpop($token['token'], $this->serverRequest);
+    }
+
+    public function testWrongKey(): void
+    {
+        $theWrongKey = $this->getWrongKey();
+        $this->dpop['header']['jwk'] = [
+            'kty' => 'RSA',
+            'n' => Base64Url::encode($theWrongKey['rsa']['n']),
+            'e' => Base64Url::encode($theWrongKey['rsa']['e'])
+        ];
+        $token = $this->sign($this->dpop);
+
+        $dpop = new DPop();
+        try {
+        	$result = $dpop->validateDpop($token['token'], $this->serverRequest);
+	    } catch(RequiredConstraintsViolated $e) {
+	    	$result = false;
+	    	$this->assertSame($e->violations()[0]->getMessage(),'Token signature mismatch');
+    	}
+    	$this->assertFalse($result);
+    }
+
+    public function testCorrectToken(): void
+    {
+        $token = $this->sign($this->dpop);
+
+        $dpop = new DPop();
+        $result = $dpop->validateDpop($token['token'], $this->serverRequest);
+        $this->assertTrue($result);
+    }
+
+}
