IdentityShroud/IdentityShroud.Core.Tests/Model/RealmKeyTests.cs

using IdentityShroud.Core.Contracts;
using IdentityShroud.Core.Model;

namespace IdentityShroud.Core.Tests.Model;

public class RealmKeyTests
{
    [Fact]
    public void SetNewKey()
    {
        byte[] privateKey = [5, 6, 7, 8];
        byte[] encryptedPrivateKey = [1, 2, 3, 4];
        
        var encryptionService = Substitute.For<IEncryptionService>();
        encryptionService
            .Encrypt(Arg.Any<byte[]>())
            .Returns(x => encryptedPrivateKey); 
        
        RealmKey realmKey = new();
        realmKey.SetPrivateKey(encryptionService, privateKey);

        // should be able to return original without calling decrypt
        Assert.Equal(privateKey, realmKey.GetPrivateKey(encryptionService));
        Assert.Equal(encryptedPrivateKey, realmKey.PrivateKeyEncrypted);

        encryptionService.Received(1).Encrypt(privateKey);
        encryptionService.DidNotReceive().Decrypt(Arg.Any<byte[]>());
    }
    
    [Fact]
    public void GetDecryptedKey()
    {
        byte[] privateKey = [5, 6, 7, 8];
        byte[] encryptedPrivateKey = [1, 2, 3, 4];
        
        var encryptionService = Substitute.For<IEncryptionService>();
        encryptionService
            .Decrypt(encryptedPrivateKey)
            .Returns(x => privateKey); 
        
        RealmKey realmKey = new();
        realmKey.PrivateKeyEncrypted = encryptedPrivateKey;

        // should be able to return original without calling decrypt
        Assert.Equal(privateKey, realmKey.GetPrivateKey(encryptionService));
        Assert.Equal(encryptedPrivateKey, realmKey.PrivateKeyEncrypted);

        encryptionService.Received(1).Decrypt(encryptedPrivateKey);
    }
    
}