oauth2-server/tests/authorization/ClientCredentialsGrantTest.php

411 lines
15 KiB
PHP
Raw Normal View History

2013-02-14 01:42:51 +05:30
<?php
use \Mockery as m;
class Client_Credentials_Grant_Test extends PHPUnit_Framework_TestCase
{
private $client;
private $session;
private $scope;
public function setUp()
{
$this->client = M::mock('League\OAuth2\Server\Storage\ClientInterface');
$this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface');
$this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface');
2013-02-14 01:42:51 +05:30
}
private function returnDefault()
{
return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope);
2013-02-14 01:42:51 +05:30
}
/**
* @expectedException League\OAuth2\Server\Exception\ClientException
2013-02-14 01:42:51 +05:30
* @expectedExceptionCode 0
*/
public function test_issueAccessToken_clientCredentialsGrant_missingClientId()
{
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-02-14 01:42:51 +05:30
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-02-14 01:42:51 +05:30
$a->setRequest($request);
$a->issueAccessToken(array(
2013-02-14 01:42:51 +05:30
'grant_type' => 'client_credentials'
));
}
/**
* @expectedException League\OAuth2\Server\Exception\ClientException
2013-02-14 01:42:51 +05:30
* @expectedExceptionCode 0
*/
public function test_issueAccessToken_clientCredentialsGrant_missingClientPassword()
{
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-02-14 01:42:51 +05:30
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-02-14 01:42:51 +05:30
$a->setRequest($request);
$a->issueAccessToken(array(
2013-02-14 01:42:51 +05:30
'grant_type' => 'client_credentials',
'client_id' => 1234
));
}
/**
* @expectedException League\OAuth2\Server\Exception\ClientException
2013-02-14 01:42:51 +05:30
* @expectedExceptionCode 8
*/
public function test_issueAccessToken_clientCredentialsGrant_badClient()
{
$this->client->shouldReceive('getClient')->andReturn(false);
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-02-14 01:42:51 +05:30
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-02-14 01:42:51 +05:30
$a->setRequest($request);
$a->issueAccessToken(array(
2013-02-14 01:42:51 +05:30
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678
));
}
2013-03-22 18:13:53 +05:30
/**
* @expectedException League\OAuth2\Server\Exception\ClientException
2013-03-22 18:13:53 +05:30
* @expectedExceptionCode 0
*/
public function test_issueAccessToken_clientCredentialsGrant_missingScopes()
{
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->requireScopeParam(true);
$a->issueAccessToken(array(
2013-03-22 18:13:53 +05:30
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678
));
}
public function test_issueAccessToken_clientCredentialsGrant_defaultScope()
{
$this->scope->shouldReceive('getScope')->andReturn(array(
'id' => 1,
2013-05-06 23:39:36 +05:30
'key' => 'foo',
2013-03-22 18:13:53 +05:30
'name' => 'Foo Name',
'description' => 'Foo Name Description'
));
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$this->session->shouldReceive('associateScope')->andReturn(null);
2013-05-06 23:39:36 +05:30
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
2013-03-22 18:13:53 +05:30
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->requireScopeParam(false);
$a->setDefaultScope('foobar');
$v = $a->issueAccessToken(array(
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678,
'scope' => ''
));
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
}
public function test_issueAccessToken_clientCredentialsGrant_defaultScopeArray()
{
$this->scope->shouldReceive('getScope')->andReturn(array(
'id' => 1,
'key' => 'foo',
'name' => 'Foo Name',
'description' => 'Foo Name Description'
));
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$this->session->shouldReceive('associateScope')->andReturn(null);
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
$a->requireScopeParam(false);
$a->setDefaultScope(array('foobar', 'barfoo'));
$v = $a->issueAccessToken(array(
2013-03-22 18:13:53 +05:30
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678,
'scope' => ''
));
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
2013-03-22 18:13:53 +05:30
}
/**
* @expectedException League\OAuth2\Server\Exception\ClientException
2013-03-22 18:13:53 +05:30
* @expectedExceptionCode 4
*/
public function test_issueAccessToken_clientCredentialsGrant_badScope()
{
$this->scope->shouldReceive('getScope')->andReturn(false);
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$this->session->shouldReceive('associateScope')->andReturn(null);
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->issueAccessToken(array(
2013-03-22 18:13:53 +05:30
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678,
'scope' => 'blah'
));
}
public function test_issueAccessToken_clientCredentialsGrant_goodScope()
{
$this->scope->shouldReceive('getScope')->andReturn(array(
'id' => 1,
2013-05-06 23:39:36 +05:30
'key' => 'foo',
2013-03-22 18:13:53 +05:30
'name' => 'Foo Name',
'description' => 'Foo Name Description'
));
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$this->session->shouldReceive('associateScope')->andReturn(null);
2013-05-06 23:39:36 +05:30
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
2013-03-22 18:13:53 +05:30
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$v = $a->issueAccessToken(array(
'grant_type' => 'client_credentials',
'client_id' => 1234,
'client_secret' => 5678,
'scope' => 'blah'
));
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
2013-03-22 18:13:53 +05:30
}
2013-02-14 01:42:51 +05:30
function test_issueAccessToken_clientCredentialsGrant_passedInput()
{
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
2013-05-06 23:39:36 +05:30
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
2013-02-14 01:42:51 +05:30
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->requireScopeParam(false);
2013-02-14 01:42:51 +05:30
$v = $a->issueAccessToken(array(
'grant_type' => 'client_credentials',
'client_id' => 1234,
2013-03-22 18:13:53 +05:30
'client_secret' => 5678,
2013-02-14 01:42:51 +05:30
));
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
$this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']);
2013-02-14 01:42:51 +05:30
}
function test_issueAccessToken_clientCredentialsGrant()
{
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
2013-05-06 23:39:36 +05:30
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
2013-02-14 01:42:51 +05:30
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->requireScopeParam(false);
2013-02-14 01:42:51 +05:30
$_POST['grant_type'] = 'client_credentials';
$_POST['client_id'] = 1234;
$_POST['client_secret'] = 5678;
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-02-14 01:42:51 +05:30
$a->setRequest($request);
$v = $a->issueAccessToken();
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
$this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']);
2013-02-14 01:42:51 +05:30
}
2013-05-07 04:06:59 +05:30
function test_issueAccessToken_clientCredentialsGrant_customExpiresIn()
{
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$grant = new League\OAuth2\Server\Grant\ClientCredentials();
$grant->setAccessTokenTTL(30);
2013-05-07 04:06:59 +05:30
$a->addGrantType($grant);
$a->requireScopeParam(false);
$_POST['grant_type'] = 'client_credentials';
$_POST['client_id'] = 1234;
$_POST['client_secret'] = 5678;
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-05-07 04:06:59 +05:30
$a->setRequest($request);
$v = $a->issueAccessToken();
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
$this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']);
$this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']);
2013-05-07 04:06:59 +05:30
$this->assertEquals(30, $v['expires_in']);
$this->assertEquals(time()+30, $v['expires']);
}
2013-02-14 01:42:51 +05:30
function test_issueAccessToken_clientCredentialsGrant_withRefreshToken()
{
$this->client->shouldReceive('getClient')->andReturn(array(
'client_id' => 1234,
'client_secret' => 5678,
'redirect_uri' => 'http://foo/redirect',
'name' => 'Example Client'
));
$this->client->shouldReceive('validateRefreshToken')->andReturn(1);
$this->session->shouldReceive('validateAuthCode')->andReturn(1);
$this->session->shouldReceive('createSession')->andReturn(1);
$this->session->shouldReceive('deleteSession')->andReturn(null);
2013-05-06 23:39:36 +05:30
$this->session->shouldReceive('associateAccessToken')->andReturn(1);
2013-02-14 01:42:51 +05:30
$a = $this->returnDefault();
2013-12-06 01:55:55 +05:30
$a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials());
2013-03-22 18:13:53 +05:30
$a->requireScopeParam(false);
2013-02-14 01:42:51 +05:30
$_POST['grant_type'] = 'client_credentials';
$_POST['client_id'] = 1234;
$_POST['client_secret'] = 5678;
$request = new League\OAuth2\Server\Util\Request(array(), $_POST);
2013-02-14 01:42:51 +05:30
$a->setRequest($request);
$v = $a->issueAccessToken();
$this->assertArrayHasKey('access_token', $v);
$this->assertArrayHasKey('token_type', $v);
$this->assertArrayHasKey('expires', $v);
$this->assertArrayHasKey('expires_in', $v);
$this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']);
2013-02-14 01:42:51 +05:30
}
}