Actually return token_str from sign() + tests

Author: davidolrik

src/swt/__init__.py

@@ -169,7 +169,7 @@ class SWT_RSA_SHA256(SWT):
     def algorithm(self):
         return SWT.ALGORITHM_RSA_SHA256
 
-    def sign(self):
+    def sign(self) -> str:
         self._token_claims[self.__class__.exp_claim] = int(time.time()) + self._ttl
         self._token_claims_str = urlencode(self._token_claims)
         key = RSA.importKey(self.get_private_key())
@@ -179,6 +179,8 @@ def sign(self):
         self._token_signature_str = quote(b64encode(self._token_signature))
         self._token_str = self._token_claims_str + f'&{self.algorithm}=' + self._token_signature_str
 
+        return self.token_str
+
 
     @property
     def is_signed(self) -> bool:

tests/test_swt_rsa_sha256.py

@@ -55,12 +55,15 @@ def test_expired_swt_rsa_sha256():
     token.ttl = 1
     token.set_claim('sub', 42)
     token.set_claim('foo', 'bar')
-    token.sign()
+    token_str = token.sign()
     time.sleep(2)
 
     assert token.is_expired == True, "Token is expired"
     assert token.is_signed, "Token is signed"
     assert token.is_valid == False, "Token is invalid (signed but expired)"
+    assert type(token.token_str) == str, "Token serialization is a string (from object)"
+    assert type(token_str) == str, "Token serialization is a string (from sign method)"
+
 
 def test_valid_swt_from_string_without_key_locators():
     token = SWT_RSA_SHA256(pytest.test_token_str)