From ed3141a7ae2a218bd63e9c49f98c94e8b00a0b9c Mon Sep 17 00:00:00 2001
From: Behnam Mozafari <behnam.mozafari@thetradedesk.com>
Date: Wed, 8 Jan 2025 11:16:16 +1100
Subject: [PATCH] Update UIDOperatorVerticleTest Added tests to verify config
 changes are reflected in endpoints

---
 .../operator/UIDOperatorVerticleTest.java     | 97 +++++++++++++++++++
 1 file changed, 97 insertions(+)

diff --git a/src/test/java/com/uid2/operator/UIDOperatorVerticleTest.java b/src/test/java/com/uid2/operator/UIDOperatorVerticleTest.java
index bcb9bfdb3..de105ab48 100644
--- a/src/test/java/com/uid2/operator/UIDOperatorVerticleTest.java
+++ b/src/test/java/com/uid2/operator/UIDOperatorVerticleTest.java
@@ -5090,4 +5090,101 @@ void secureLinkValidationFailsReturnsIdentityError(Vertx vertx, VertxTestContext
             testContext.completeNow();
         });
     }
+
+    @Test
+    void tokenGenerateRespectsConfigValues(Vertx vertx, VertxTestContext testContext) {
+        final int clientSiteId = 201;
+        final String emailAddress = "test@uid2.com";
+        fakeAuth(clientSiteId, Role.GENERATOR);
+        setupSalts();
+        setupKeys();
+
+        String v1Param = "email=" + emailAddress;
+        JsonObject v2Payload = new JsonObject();
+        v2Payload.put("email", emailAddress);
+
+        Duration newIdentityExpiresAfter = Duration.ofMinutes(20);
+        Duration newRefreshExpiresAfter = Duration.ofMinutes(30);
+        Duration newRefreshIdentityAfter = Duration.ofMinutes(10);
+
+        config.put(UIDOperatorService.IDENTITY_TOKEN_EXPIRES_AFTER_SECONDS, newIdentityExpiresAfter.toMillis() / 1000);
+        config.put(UIDOperatorService.REFRESH_TOKEN_EXPIRES_AFTER_SECONDS, newRefreshExpiresAfter.toMillis() / 1000);
+        config.put(UIDOperatorService.REFRESH_IDENTITY_TOKEN_AFTER_SECONDS, newRefreshIdentityAfter.toMillis() / 1000);
+        when(configService.getConfig()).thenReturn(config);
+
+        try {
+            sendTokenGenerate("v2", vertx,
+                    v1Param, v2Payload, 200,
+                    respJson -> {
+                        JsonObject body = respJson.getJsonObject("body");
+                        testContext.verify(() -> {
+                            assertNotNull(body);
+                            assertEquals(now.plusMillis(newIdentityExpiresAfter.toMillis()).toEpochMilli(), body.getLong("identity_expires"));
+                            assertEquals(now.plusMillis(newRefreshExpiresAfter.toMillis()).toEpochMilli(), body.getLong("refresh_expires"));
+                            assertEquals(now.plusMillis(newRefreshIdentityAfter.toMillis()).toEpochMilli(), body.getLong("refresh_from"));
+                        });
+                        testContext.completeNow();
+                    });
+        } catch (Exception e) {
+            testContext.failNow(e);
+        }
+    }
+
+    @Test
+    void keySharingRespectsConfigValues(Vertx vertx, VertxTestContext testContext) {
+        int newSharingTokenExpiry = config.getInteger(Const.Config.SharingTokenExpiryProp) + 1;
+        int newMaxSharingLifetimeSeconds = config.getInteger(Const.Config.SharingTokenExpiryProp) + 1;
+
+        config.put(Const.Config.SharingTokenExpiryProp, newSharingTokenExpiry);
+        config.put(Const.Config.MaxSharingLifetimeProp, newMaxSharingLifetimeSeconds);
+
+        String apiVersion = "v2";
+        int siteId = 5;
+        fakeAuth(siteId, Role.SHARER);
+        Keyset[] keysets = {
+                new Keyset(MasterKeysetId, MasterKeySiteId, "test", null, now.getEpochSecond(), true, true),
+                new Keyset(10, 5, "siteKeyset", null, now.getEpochSecond(), true, true),
+        };
+        KeysetKey[] encryptionKeys = {
+                new KeysetKey(101, "master key".getBytes(), now, now, now.plusSeconds(10), MasterKeysetId),
+                new KeysetKey(102, "site key".getBytes(), now, now, now.plusSeconds(10), 10),
+        };
+        MultipleKeysetsTests test = new MultipleKeysetsTests(Arrays.asList(keysets), Arrays.asList(encryptionKeys));
+        setupSiteDomainAndAppNameMock(true, false, 101, 102, 103, 104, 105);
+        send(apiVersion, vertx, apiVersion + "/key/sharing", true, null, null, 200, respJson -> {
+
+            JsonObject body = respJson.getJsonObject("body");
+            testContext.verify(() -> {
+                assertNotNull(body);
+                assertEquals(newSharingTokenExpiry, Integer.parseInt(body.getString("token_expiry_seconds")));
+                assertEquals(newMaxSharingLifetimeSeconds + TOKEN_LIFETIME_TOLERANCE.toSeconds(), body.getLong(Const.Config.MaxSharingLifetimeProp));
+            });
+            testContext.completeNow();
+        });
+    }
+
+    @Test
+    void keyBidstreamRespectsConfigValues(Vertx vertx, VertxTestContext testContext) {
+        int newMaxBidstreamLifetimeSeconds = 999999;
+        config.put(Const.Config.MaxBidstreamLifetimeSecondsProp, newMaxBidstreamLifetimeSeconds);
+
+        final String apiVersion = "v2";
+        final KeyDownloadEndpoint endpoint = KeyDownloadEndpoint.BIDSTREAM;
+
+        final int clientSiteId = 101;
+        fakeAuth(clientSiteId, Role.ID_READER);
+
+        // Required, sets up mock keys.
+        new MultipleKeysetsTests();
+
+        send(apiVersion, vertx, apiVersion + endpoint.getPath(), true, null, null, 200, respJson -> {
+            JsonObject body = respJson.getJsonObject("body");
+            testContext.verify(() -> {
+                assertNotNull(body);
+                assertEquals(newMaxBidstreamLifetimeSeconds + TOKEN_LIFETIME_TOLERANCE.toSeconds(), body.getLong(Const.Config.MaxBidstreamLifetimeSecondsProp));
+            });
+            testContext.completeNow();
+        });
+    }
+
 }