fix leeway implementation and tests

divoxx · divoxx · commit 0bb3cc1c9770 · 2017-05-04T16:17:03.000-07:00
diff --git a/token.go b/token.go
@@ -282,8 +282,9 @@ func (t Token) Verify(issuer, subject, audience string, leeway time.Duration) er
 
 // Valid checks if the token is valid yet.
 func (t Token) Valid(leeway time.Duration) bool {
-	now := clock.Now().UTC().Add(leeway)
-	return now.After(t.NotBefore)
+	now := clock.Now().UTC()
+	nbf := t.NotBefore.Add(-leeway)
+	return nbf.Before(now)
 }
 
 // Expired checks if the token has expired.
@@ -296,8 +297,9 @@ func (t Token) Expired(leeway time.Duration) bool {
 		return false
 	}
 
-	now := clock.Now().UTC().Add(leeway)
-	return now.After(t.Expires)
+	now := clock.Now().UTC()
+	exp := t.Expires.Add(leeway)
+	return now.After(exp)
 }
 
 // buildHeader builds a new header map ready for signing.
diff --git a/token_test.go b/token_test.go
@@ -433,10 +433,10 @@ func TestTokenExpired_True(t *testing.T) {
 	}
 }
 
-func TestTokenExpired_LeewayTrue(t *testing.T) {
+func TestTokenExpired_LeewayFalse(t *testing.T) {
 	tkn := NewToken()
 	tkn.Expires = tkn.IssuedAt.Add(1 * time.Hour)
-	if !tkn.Expired(1 * time.Hour) {
+	if tkn.Expired(1 * time.Hour) {
 		t.Fatal("expected true, got false")
 	}
 }

Original file line number	Diff line number	Diff line change
`@@ -282,8 +282,9 @@ func (t Token) Verify(issuer, subject, audience string, leeway time.Duration) er`
`282`	`282`
`283`	`283`	`// Valid checks if the token is valid yet.`
`284`	`284`	`func (t Token) Valid(leeway time.Duration) bool {`
`285`		`- now := clock.Now().UTC().Add(leeway)`
`286`		`- return now.After(t.NotBefore)`
	`285`	`+ now := clock.Now().UTC()`
	`286`	`+ nbf := t.NotBefore.Add(-leeway)`
	`287`	`+ return nbf.Before(now)`
`287`	`288`	`}`
`288`	`289`
`289`	`290`	`// Expired checks if the token has expired.`
`@@ -296,8 +297,9 @@ func (t Token) Expired(leeway time.Duration) bool {`
`296`	`297`	`return false`
`297`	`298`	`}`
`298`	`299`
`299`		`- now := clock.Now().UTC().Add(leeway)`
`300`		`- return now.After(t.Expires)`
	`300`	`+ now := clock.Now().UTC()`
	`301`	`+ exp := t.Expires.Add(leeway)`
	`302`	`+ return now.After(exp)`
`301`	`303`	`}`
`302`	`304`
`303`	`305`	`// buildHeader builds a new header map ready for signing.`
Original file line number	Diff line number	Diff line change
`@@ -433,10 +433,10 @@ func TestTokenExpired_True(t *testing.T) {`
`433`	`433`	`}`
`434`	`434`	`}`
`435`	`435`
`436`		`-func TestTokenExpired_LeewayTrue(t *testing.T) {`
	`436`	`+func TestTokenExpired_LeewayFalse(t *testing.T) {`
`437`	`437`	`tkn := NewToken()`
`438`	`438`	`tkn.Expires = tkn.IssuedAt.Add(1 * time.Hour)`
`439`		`- if !tkn.Expired(1 * time.Hour) {`
	`439`	`+ if tkn.Expired(1 * time.Hour) {`
`440`	`440`	`t.Fatal("expected true, got false")`
`441`	`441`	`}`
`442`	`442`	`}`