options: support multiple signing keys

2025-07-06 11:28:10 +02:00 · 2022-12-20 11:11:52 -07:00 · 2022-12-20 11:11:52 -07:00 · 41b51d04ef
commit 41b51d04ef
parent c048af7523
12 changed files with 223 additions and 67 deletions
--- a/authorize/check_response_test.go
+++ b/authorize/check_response_test.go
@ -33,7 +33,10 @@ func TestAuthorize_handleResult(t *testing.T) {
 	htpkePrivateKey, err := opt.GetHPKEPrivateKey()
 	require.NoError(t, err)

-	authnSrv := httptest.NewServer(handlers.JWKSHandler(opt.SigningKey, htpkePrivateKey.PublicKey()))
+	signingKey, err := opt.GetSigningKey()
+	require.NoError(t, err)
+
+	authnSrv := httptest.NewServer(handlers.JWKSHandler(signingKey, htpkePrivateKey.PublicKey()))
 	t.Cleanup(authnSrv.Close)
 	opt.AuthenticateURLString = authnSrv.URL

@ -198,7 +201,10 @@ func TestRequireLogin(t *testing.T) {
 	htpkePrivateKey, err := opt.GetHPKEPrivateKey()
 	require.NoError(t, err)

-	authnSrv := httptest.NewServer(handlers.JWKSHandler(opt.SigningKey, htpkePrivateKey.PublicKey()))
+	signingKey, err := opt.GetSigningKey()
+	require.NoError(t, err)
+
+	authnSrv := httptest.NewServer(handlers.JWKSHandler(signingKey, htpkePrivateKey.PublicKey()))
 	t.Cleanup(authnSrv.Close)
 	opt.AuthenticateURLString = authnSrv.URL