2017-05-11 16:39:54 +02:00
|
|
|
package sts_test
|
|
|
|
|
|
|
|
import (
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
|
|
"github.com/aws/aws-sdk-go/awstesting/unit"
|
|
|
|
"github.com/aws/aws-sdk-go/service/sts"
|
|
|
|
)
|
|
|
|
|
|
|
|
var svc = sts.New(unit.Session, &aws.Config{
|
|
|
|
Region: aws.String("mock-region"),
|
|
|
|
})
|
|
|
|
|
|
|
|
func TestUnsignedRequest_AssumeRoleWithSAML(t *testing.T) {
|
|
|
|
req, _ := svc.AssumeRoleWithSAMLRequest(&sts.AssumeRoleWithSAMLInput{
|
|
|
|
PrincipalArn: aws.String("ARN01234567890123456789"),
|
|
|
|
RoleArn: aws.String("ARN01234567890123456789"),
|
|
|
|
SAMLAssertion: aws.String("ASSERT"),
|
|
|
|
})
|
|
|
|
|
|
|
|
err := req.Sign()
|
2017-09-30 16:27:27 +02:00
|
|
|
if err != nil {
|
|
|
|
t.Errorf("expect no error, got %v", err)
|
|
|
|
}
|
|
|
|
if e, a := "", req.HTTPRequest.Header.Get("Authorization"); e != a {
|
|
|
|
t.Errorf("expect %v, got %v", e, a)
|
|
|
|
}
|
2017-05-11 16:39:54 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestUnsignedRequest_AssumeRoleWithWebIdentity(t *testing.T) {
|
|
|
|
req, _ := svc.AssumeRoleWithWebIdentityRequest(&sts.AssumeRoleWithWebIdentityInput{
|
|
|
|
RoleArn: aws.String("ARN01234567890123456789"),
|
|
|
|
RoleSessionName: aws.String("SESSION"),
|
|
|
|
WebIdentityToken: aws.String("TOKEN"),
|
|
|
|
})
|
|
|
|
|
|
|
|
err := req.Sign()
|
2017-09-30 16:27:27 +02:00
|
|
|
if err != nil {
|
|
|
|
t.Errorf("expect no error, got %v", err)
|
|
|
|
}
|
|
|
|
if e, a := "", req.HTTPRequest.Header.Get("Authorization"); e != a {
|
|
|
|
t.Errorf("expect %v, got %v", e, a)
|
|
|
|
}
|
2017-05-11 16:39:54 +02:00
|
|
|
}
|