2016-09-01 13:01:43 +05:30
|
|
|
<?php
|
2019-12-04 23:40:15 +05:30
|
|
|
declare(strict_types=1);
|
|
|
|
|
|
2019-02-21 01:28:52 +05:30
|
|
|
namespace api\tests\functional\authserver;
|
2016-09-01 13:01:43 +05:30
|
|
|
|
2019-02-21 01:28:52 +05:30
|
|
|
use api\tests\functional\_steps\AuthserverSteps;
|
2019-02-23 04:41:57 +05:30
|
|
|
use Ramsey\Uuid\Uuid;
|
2016-09-01 13:01:43 +05:30
|
|
|
|
|
|
|
|
class ValidateCest {
|
|
|
|
|
|
2024-12-02 15:40:55 +05:30
|
|
|
public function validate(AuthserverSteps $I): void {
|
2016-09-01 13:01:43 +05:30
|
|
|
$I->wantTo('validate my accessToken');
|
2017-01-24 04:30:08 +05:30
|
|
|
[$accessToken] = $I->amAuthenticated();
|
2019-12-04 23:40:15 +05:30
|
|
|
$I->sendPOST('/api/authserver/authentication/validate', [
|
2016-09-01 13:01:43 +05:30
|
|
|
'accessToken' => $accessToken,
|
|
|
|
|
]);
|
|
|
|
|
$I->seeResponseCodeIs(200);
|
|
|
|
|
$I->canSeeResponseEquals('');
|
|
|
|
|
}
|
|
|
|
|
|
2024-12-02 15:40:55 +05:30
|
|
|
public function wrongArguments(AuthserverSteps $I): void {
|
2016-09-01 13:01:43 +05:30
|
|
|
$I->wantTo('get error on wrong amount of arguments');
|
2019-12-04 23:40:15 +05:30
|
|
|
$I->sendPOST('/api/authserver/authentication/validate', [
|
2016-09-01 13:01:43 +05:30
|
|
|
'key' => 'value',
|
|
|
|
|
]);
|
|
|
|
|
$I->canSeeResponseCodeIs(400);
|
|
|
|
|
$I->canSeeResponseIsJson();
|
|
|
|
|
$I->canSeeResponseContainsJson([
|
|
|
|
|
'error' => 'IllegalArgumentException',
|
|
|
|
|
'errorMessage' => 'credentials can not be null.',
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
2024-12-02 15:40:55 +05:30
|
|
|
public function wrongAccessToken(AuthserverSteps $I): void {
|
2016-09-01 13:01:43 +05:30
|
|
|
$I->wantTo('get error on wrong accessToken');
|
2019-12-04 23:40:15 +05:30
|
|
|
$I->sendPOST('/api/authserver/authentication/validate', [
|
2016-09-01 13:01:43 +05:30
|
|
|
'accessToken' => Uuid::uuid4()->toString(),
|
|
|
|
|
]);
|
|
|
|
|
$I->canSeeResponseCodeIs(401);
|
|
|
|
|
$I->canSeeResponseIsJson();
|
|
|
|
|
$I->canSeeResponseContainsJson([
|
|
|
|
|
'error' => 'ForbiddenOperationException',
|
|
|
|
|
'errorMessage' => 'Invalid token.',
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
2024-12-02 15:40:55 +05:30
|
|
|
public function expiredAccessToken(AuthserverSteps $I): void {
|
2016-09-01 13:01:43 +05:30
|
|
|
$I->wantTo('get error on expired accessToken');
|
2019-12-04 23:40:15 +05:30
|
|
|
$I->sendPOST('/api/authserver/authentication/validate', [
|
|
|
|
|
'accessToken' => 'eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiJ9.eyJpYXQiOjE1NzU0Nzk1NTMsImV4cCI6MTU3NTQ3OTU1MywiZWx5LXNjb3BlcyI6Im1pbmVjcmFmdF9zZXJ2ZXJfc2Vzc2lvbiIsImVseS1jbGllbnQtdG9rZW4iOiJyZW1vdmVkIiwic3ViIjoiZWx5fDEifQ.xDMs5B48nH6p3a1k3WoZKtW4zoNHGGaLD1OGTFte-sUJb2fNMR65LuuBW8DzqO2odgco2xX660zqbhB-tp2OsA',
|
|
|
|
|
]);
|
|
|
|
|
$I->canSeeResponseCodeIs(401);
|
|
|
|
|
$I->canSeeResponseIsJson();
|
|
|
|
|
$I->canSeeResponseContainsJson([
|
|
|
|
|
'error' => 'ForbiddenOperationException',
|
|
|
|
|
'errorMessage' => 'Token expired.',
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
2024-12-02 15:40:55 +05:30
|
|
|
public function credentialsFromBannedAccount(AuthserverSteps $I): void {
|
2020-06-12 02:57:02 +05:30
|
|
|
$I->wantTo('get error on expired legacy accessToken');
|
|
|
|
|
$I->sendPOST('/api/authserver/authentication/validate', [
|
2024-06-14 09:12:35 +05:30
|
|
|
'accessToken' => 'eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiJ9.eyJpYXQiOjE1MTgzMzQ3NDMsImNsaWVudF9pZCI6ImVseSIsInNjb3BlIjoibWluZWNyYWZ0X3NlcnZlcl9zZXNzaW9uIiwic3ViIjoiZWx5fDE1In0.2qla7RzReBi2WtfgP3x8T6ZA0wn9HOrQo57xaZc2wMKPo1Zc49_o6w-5Ku1tbvzmESZfAxNQpfY4EwclEWjHYA',
|
2020-06-12 02:57:02 +05:30
|
|
|
]);
|
|
|
|
|
$I->canSeeResponseCodeIs(401);
|
|
|
|
|
$I->canSeeResponseContainsJson([
|
|
|
|
|
'error' => 'ForbiddenOperationException',
|
|
|
|
|
'errorMessage' => 'Invalid token.',
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-01 13:01:43 +05:30
|
|
|
}
|
