mirror of
https://github.com/elyby/accounts.git
synced 2024-12-15 09:59:00 +05:30
dd2c4bc413
Все действия, связанные с аккаунтами, теперь вызываются через url `/api/v1/accounts/<id>/<action>`. Добавлена вменяемая система разграничения прав на основе RBAC. Теперь oAuth2 токены генерируются как случайная строка в 40 символов длинной, а не UUID. Исправлен баг с неправильным временем жизни токена в ответе успешного запроса аутентификации. Теперь все unit тесты можно успешно прогнать без наличия интернета.
68 lines
2.3 KiB
PHP
68 lines
2.3 KiB
PHP
<?php
|
|
namespace tests\codeception\api\functional\_steps;
|
|
|
|
use api\components\OAuth2\Storage\ScopeStorage as S;
|
|
use tests\codeception\api\_pages\OauthRoute;
|
|
use tests\codeception\api\FunctionalTester;
|
|
|
|
class OauthSteps extends FunctionalTester {
|
|
|
|
public function getAuthCode(array $permissions = []) {
|
|
$this->amAuthenticated();
|
|
$route = new OauthRoute($this);
|
|
$route->complete([
|
|
'client_id' => 'ely',
|
|
'redirect_uri' => 'http://ely.by',
|
|
'response_type' => 'code',
|
|
'scope' => implode(',', $permissions),
|
|
], ['accept' => true]);
|
|
$this->canSeeResponseJsonMatchesJsonPath('$.redirectUri');
|
|
$response = json_decode($this->grabResponse(), true);
|
|
preg_match('/code=([\w-]+)/', $response['redirectUri'], $matches);
|
|
|
|
return $matches[1];
|
|
}
|
|
|
|
public function getAccessToken(array $permissions = []) {
|
|
$authCode = $this->getAuthCode($permissions);
|
|
$response = $this->issueToken($authCode);
|
|
|
|
return $response['access_token'];
|
|
}
|
|
|
|
public function getRefreshToken(array $permissions = []) {
|
|
$authCode = $this->getAuthCode(array_merge([S::OFFLINE_ACCESS], $permissions));
|
|
$response = $this->issueToken($authCode);
|
|
|
|
return $response['refresh_token'];
|
|
}
|
|
|
|
public function issueToken($authCode) {
|
|
$route = new OauthRoute($this);
|
|
$route->issueToken([
|
|
'code' => $authCode,
|
|
'client_id' => 'ely',
|
|
'client_secret' => 'ZuM1vGchJz-9_UZ5HC3H3Z9Hg5PzdbkM',
|
|
'redirect_uri' => 'http://ely.by',
|
|
'grant_type' => 'authorization_code',
|
|
]);
|
|
|
|
return json_decode($this->grabResponse(), true);
|
|
}
|
|
|
|
public function getAccessTokenByClientCredentialsGrant(array $permissions = [], $useTrusted = true) {
|
|
$route = new OauthRoute($this);
|
|
$route->issueToken([
|
|
'client_id' => $useTrusted ? 'trusted-client' : 'default-client',
|
|
'client_secret' => $useTrusted ? 'tXBbyvMcyaOgHMOAXBpN2EC7uFoJAaL9' : 'AzWRy7ZjS1yRQUk2vRBDic8fprOKDB1W',
|
|
'grant_type' => 'client_credentials',
|
|
'scope' => implode(',', $permissions),
|
|
]);
|
|
|
|
$response = json_decode($this->grabResponse(), true);
|
|
|
|
return $response['access_token'];
|
|
}
|
|
|
|
}
|