Добавлены тесты для ответа сервера о истёкшем токене

Добавлены doc-блоки для поведений в базовом контроллере
2024-11-30 10:42:16 +05:30 · 2016-05-30 21:11:22 +03:00 · 2016-05-30 21:11:22 +03:00 · cb038c897b
commit cb038c897b
parent bdc96d82c1
3 changed files with 29 additions and 12 deletions
--- a/api/controllers/Controller.php
+++ b/api/controllers/Controller.php
@ -7,6 +7,11 @@ use yii\filters\auth\HttpBearerAuth;

 /**
 * @property \common\models\Account|null $account
+ *
+ * Поведения:
+ * @mixin \yii\filters\ContentNegotiator
+ * @mixin \yii\filters\VerbFilter
+ * @mixin \yii\filters\auth\CompositeAuth
 */
 class Controller extends \yii\rest\Controller {
    use ApiNormalize;
--- a/tests/codeception/api/functional/AccountsCurrentCest.php
+++ b/tests/codeception/api/functional/AccountsCurrentCest.php
@ -34,4 +34,22 @@ class AccountsCurrentCest {
        $I->canSeeResponseJsonMatchesJsonPath('$.passwordChangedAt');
    }

+    public function testExpiredCurrent(FunctionalTester $I) {
+        // Устанавливаем заведомо истёкший токен
+        $I->amBearerAuthenticated(
+            'eyJhbGciOiJIUzI1NiJ9.eyJhdWQiOiJodHRwOlwvXC9sb2NhbGhvc3QiLCJpc3MiOiJodHRwOlwvXC9sb2NhbGhvc3QiLCJpYXQiO' .
+            'jE0NjQ2Mjc1NDUsImV4cCI6MTQ2NDYzMTE0NSwianRpIjoxfQ.9c1mm0BK-cuW1qh15F12s2Fh37IN43YeeZeU4DFtlrE'
+        );
+
+        $this->route->current();
+        $I->canSeeResponseCodeIs(401);
+        $I->canSeeResponseIsJson();
+        $I->canSeeResponseContainsJson([
+            'name' => 'Unauthorized',
+            'message' => 'Token expired',
+            'code' => 0,
+            'status' => 401,
+        ]);
+    }
+
 }
--- a/tests/codeception/api/unit/models/AccountIdentityTest.php
+++ b/tests/codeception/api/unit/models/AccountIdentityTest.php
@ -18,10 +18,7 @@ class AccountIdentityTest extends DbTestCase {

    public function fixtures() {
        return [
-            'accounts' => [
-                'class' => AccountFixture::class,
-                'dataFile' => '@tests/codeception/common/fixtures/data/accounts.php',
-            ],
+            'accounts' => AccountFixture::class,
        ];
    }

@ -32,16 +29,13 @@ class AccountIdentityTest extends DbTestCase {
            expect($identity->getId())->equals($this->accounts['admin']['id']);
        });

-        // TODO: нормально оттестить исключение, если токен истёк
-        return;
+        $this->specify('get unauthorized exception with "Token expired" message if token valid, but expire', function() {
+            $expiredToken = 'eyJhbGciOiJIUzI1NiJ9.eyJhdWQiOiJodHRwOlwvXC9sb2NhbGhvc3Q6ODA4MCIsImlzcyI6Imh0d' .
+                            'HA6XC9cL2xvY2FsaG9zdDo4MDgwIiwiaWF0IjoxNDY0NTkzMTkzLCJleHAiOjE0NjQ1OTY3OTN9.DV' .
+                            '8uwh0OQhBYXkrNvxwJeO-kEjb9MQeLr3-6GoHM7RY';

-        $this->specify('get unauthorized with "Token expired message if token valid, but expire"', function() {
-            $originalTimezone = date_default_timezone_get();
-            date_default_timezone_set('America/Los_Angeles');
            try {
-                $token = $this->generateToken();
-                date_default_timezone_set($originalTimezone);
-                AccountIdentity::findIdentityByAccessToken($token);
+                AccountIdentity::findIdentityByAccessToken($expiredToken);
            } catch (Exception $e) {
                expect($e)->isInstanceOf(UnauthorizedHttpException::class);
                expect($e->getMessage())->equals('Token expired');