+func TestVerifySignatureExtraHints(t *testing.T) {
+ PermissionSecret = []byte(knownKey)
+ defer func() { PermissionSecret = nil }()
+
+ if VerifySignature(knownLocator+"+K@xyzzy"+knownSigHint, knownToken) != nil {
+ t.Fatal("Verify cannot handle hint before permission signature")
+ }
+
+ if VerifySignature(knownLocator+knownSigHint+"+Zfoo", knownToken) != nil {
+ t.Fatal("Verify cannot handle hint after permission signature")
+ }
+
+ if VerifySignature(knownLocator+"+K@xyzzy"+knownSigHint+"+Zfoo", knownToken) != nil {
+ t.Fatal("Verify cannot handle hints around permission signature")
+ }
+}
+