"5df5e9f17c929a45af5d33624ec052903599958f," .
"112233445566778899aabbccddeeff0011223344," .
"1234567890"),
- 1,
+ WWW::CSRF::CSRF_OK,
"check simple token");
-isnt(check_csrf_token("id", "secret",
- "0000000000000000000000000000000000000000," .
- "112233445566778899aabbccddeeff0011223344," .
- "1234567890"),
- 1,
- "check simple invalid token");
+is(check_csrf_token("id", "secret",
+ "0000000000000000000000000000000000000000," .
+ "112233445566778899aabbccddeeff0011223344," .
+ "1234567890"),
+ WWW::CSRF::CSRF_INVALID_SIGNATURE,
+ "check simple invalid token");
-isnt(check_csrf_token("id", "secret",
- "5df5e9f17c929a45af5d33624ec052903599958f," .
- "112233445566778899aabbccddeeff0011223344"),
- 1,
- "check simple malformed token");
+is(check_csrf_token("id", "secret",
+ "5df5e9f17c929a45af5d33624ec052903599958f," .
+ "112233445566778899aabbccddeeff0011223344"),
+ WWW::CSRF::CSRF_MALFORMED_TOKEN,
+ "check simple malformed token (missing time)");
is(check_csrf_token("id", "secret",
"5df5e9f17c929a45af5d33624ec052903599958f," .
Time => 1234567895,
MaxAge => 10
}),
- 1,
+ WWW::CSRF::CSRF_OK,
"check with maxage");
-isnt(check_csrf_token("id", "secret",
- "5df5e9f17c929a45af5d33624ec052903599958f," .
- "112233445566778899aabbccddeeff0011223344," .
- "1234567890", {
- Time => 1234567895,
- MaxAge => 3
- }),
- 1,
- "check expired with maxage");
+is(check_csrf_token("id", "secret",
+ "5df5e9f17c929a45af5d33624ec052903599958f," .
+ "112233445566778899aabbccddeeff0011223344," .
+ "1234567890", {
+ Time => 1234567895,
+ MaxAge => 3
+ }),
+ WWW::CSRF::CSRF_EXPIRED,
+ "check expired with maxage");
-isnt(check_csrf_token("id", "secret",
- "5df5e9f17c929a45af5d33624ec052903599958f," .
- "112233445566778899aabbccddeeff0011223344," .
- "1234567894", {
- Time => 1234567895,
- MaxAge => 10
- }),
- 1,
- "check falsified timestamp");
+is(check_csrf_token("id", "secret",
+ "5df5e9f17c929a45af5d33624ec052903599958f," .
+ "112233445566778899aabbccddeeff0011223344," .
+ "1234567894", {
+ Time => 1234567895,
+ MaxAge => 10
+ }),
+ WWW::CSRF::CSRF_INVALID_SIGNATURE,
+ "check falsified timestamp");