accounts/tests/codeception/api/unit/components/User/JwtAuthenticationResultTest.php

<?php
namespace tests\codeception\api\unit\components\User;

use api\components\User\AuthenticationResult;
use common\models\Account;
use common\models\AccountSession;
use Emarref\Jwt\Algorithm\Hs256;
use Emarref\Jwt\Claim\Expiration;
use Emarref\Jwt\Encryption\Factory as EncryptionFactory;
use Emarref\Jwt\Jwt;
use Emarref\Jwt\Token;
use tests\codeception\api\unit\TestCase;

class JwtAuthenticationResultTest extends TestCase {

    public function testGetAccount() {
        $account = new Account();
        $account->id = 123;
        $model = new AuthenticationResult($account, '', null);
        $this->assertEquals($account, $model->getAccount());
    }

    public function testGetJwt() {
        $model = new AuthenticationResult(new Account(), 'mocked jwt', null);
        $this->assertEquals('mocked jwt', $model->getJwt());
    }

    public function testGetSession() {
        $model = new AuthenticationResult(new Account(), '', null);
        $this->assertNull($model->getSession());

        $session = new AccountSession();
        $session->id = 321;
        $model = new AuthenticationResult(new Account(), '', $session);
        $this->assertEquals($session, $model->getSession());
    }

    public function testGetAsResponse() {
        $jwtToken = $this->createJwtToken(time() + 3600);
        $model = new AuthenticationResult(new Account(), $jwtToken, null);
        $result = $model->getAsResponse();
        $this->assertEquals($jwtToken, $result['access_token']);
        $this->assertSame(3600, $result['expires_in']);

        /** @noinspection SummerTimeUnsafeTimeManipulationInspection */
        $jwtToken = $this->createJwtToken(time() + 86400);
        $session = new AccountSession();
        $session->refresh_token = 'refresh token';
        $model = new AuthenticationResult(new Account(), $jwtToken, $session);
        $result = $model->getAsResponse();
        $this->assertEquals($jwtToken, $result['access_token']);
        $this->assertEquals('refresh token', $result['refresh_token']);
        $this->assertSame(86400, $result['expires_in']);
    }

    private function createJwtToken(int $expires): string {
        $token = new Token();
        $token->addClaim(new Expiration($expires));

        return (new Jwt())->serialize($token, EncryptionFactory::create(new Hs256('123')));
    }

}
Объединены сущности для авторизации посредством JWT токенов и токенов, выданных через oAuth2. Все действия, связанные с аккаунтами, теперь вызываются через url `/api/v1/accounts/<id>/<action>`. Добавлена вменяемая система разграничения прав на основе RBAC. Теперь oAuth2 токены генерируются как случайная строка в 40 символов длинной, а не UUID. Исправлен баг с неправильным временем жизни токена в ответе успешного запроса аутентификации. Теперь все unit тесты можно успешно прогнать без наличия интернета. 2017-09-19 22:36:16 +05:30			`<?php`
			`namespace tests\codeception\api\unit\components\User;`

			`use api\components\User\AuthenticationResult;`
			`use common\models\Account;`
			`use common\models\AccountSession;`
			`use Emarref\Jwt\Algorithm\Hs256;`
			`use Emarref\Jwt\Claim\Expiration;`
			`use Emarref\Jwt\Encryption\Factory as EncryptionFactory;`
			`use Emarref\Jwt\Jwt;`
			`use Emarref\Jwt\Token;`
			`use tests\codeception\api\unit\TestCase;`

			`class JwtAuthenticationResultTest extends TestCase {`

			`public function testGetAccount() {`
			`$account = new Account();`
			`$account->id = 123;`
			`$model = new AuthenticationResult($account, '', null);`
			`$this->assertEquals($account, $model->getAccount());`
			`}`

			`public function testGetJwt() {`
			`$model = new AuthenticationResult(new Account(), 'mocked jwt', null);`
			`$this->assertEquals('mocked jwt', $model->getJwt());`
			`}`

			`public function testGetSession() {`
			`$model = new AuthenticationResult(new Account(), '', null);`
			`$this->assertNull($model->getSession());`

			`$session = new AccountSession();`
			`$session->id = 321;`
			`$model = new AuthenticationResult(new Account(), '', $session);`
			`$this->assertEquals($session, $model->getSession());`
			`}`

			`public function testGetAsResponse() {`
			`$jwtToken = $this->createJwtToken(time() + 3600);`
			`$model = new AuthenticationResult(new Account(), $jwtToken, null);`
			`$result = $model->getAsResponse();`
			`$this->assertEquals($jwtToken, $result['access_token']);`
			`$this->assertSame(3600, $result['expires_in']);`

			`/** @noinspection SummerTimeUnsafeTimeManipulationInspection */`
			`$jwtToken = $this->createJwtToken(time() + 86400);`
			`$session = new AccountSession();`
			`$session->refresh_token = 'refresh token';`
			`$model = new AuthenticationResult(new Account(), $jwtToken, $session);`
			`$result = $model->getAsResponse();`
			`$this->assertEquals($jwtToken, $result['access_token']);`
			`$this->assertEquals('refresh token', $result['refresh_token']);`
			`$this->assertSame(86400, $result['expires_in']);`
			`}`

			`private function createJwtToken(int $expires): string {`
			`$token = new Token();`
			`$token->addClaim(new Expiration($expires));`

			`return (new Jwt())->serialize($token, EncryptionFactory::create(new Hs256('123')));`
			`}`

			`}`