oauth2-server/tests/resource/ResourceServerTest.php

226 lines
6.7 KiB
PHP
Raw Normal View History

2013-02-05 16:20:56 +00:00
<?php
use \Mockery as m;
class Resource_Server_test extends PHPUnit_Framework_TestCase
{
private $session;
public function setUp()
{
$this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface');
2013-02-05 16:20:56 +00:00
}
private function returnDefault()
{
return new League\OAuth2\Server\Resource($this->session);
2013-02-05 16:20:56 +00:00
}
public function test_setRequest()
{
$s = $this->returnDefault();
$request = new League\OAuth2\Server\Util\Request();
2013-02-05 16:20:56 +00:00
$s->setRequest($request);
$reflector = new ReflectionClass($s);
$requestProperty = $reflector->getProperty('request');
$requestProperty->setAccessible(true);
$v = $requestProperty->getValue($s);
$this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface);
2013-02-05 16:20:56 +00:00
}
public function test_getRequest()
{
$s = $this->returnDefault();
$request = new League\OAuth2\Server\Util\Request();
2013-02-05 16:20:56 +00:00
$s->setRequest($request);
$v = $s->getRequest();
$this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface);
2013-02-05 16:20:56 +00:00
}
public function test_getTokenKey()
{
$s = $this->returnDefault();
$this->assertEquals('access_token', $s->getTokenKey());
2013-02-05 16:20:56 +00:00
}
public function test_setTokenKey()
{
$s = $this->returnDefault();
$s->setTokenKey('oauth_token');
2013-02-05 16:20:56 +00:00
$reflector = new ReflectionClass($s);
$requestProperty = $reflector->getProperty('tokenKey');
$requestProperty->setAccessible(true);
$v = $requestProperty->getValue($s);
$this->assertEquals('oauth_token', $v);
2013-02-05 16:20:56 +00:00
}
2013-05-06 11:09:36 -07:00
public function test_getScopes()
{
$s = $this->returnDefault();
$this->assertEquals(array(), $s->getScopes());
}
2013-02-05 16:20:56 +00:00
/**
* @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException
2013-02-05 16:20:56 +00:00
*/
public function test_determineAccessToken_missingToken()
{
$_SERVER['HTTP_AUTHORIZATION'] = 'Bearer';
$request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER);
2013-02-05 16:20:56 +00:00
$s = $this->returnDefault();
$s->setRequest($request);
$reflector = new ReflectionClass($s);
$method = $reflector->getMethod('determineAccessToken');
$method->setAccessible(true);
$method->invoke($s);
2013-02-05 16:20:56 +00:00
}
/**
* @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException
*/
public function test_determineAccessToken_brokenCurlRequest()
{
$_SERVER['HTTP_AUTHORIZATION'] = 'Bearer, Bearer abcdef';
$request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER);
$s = $this->returnDefault();
$s->setRequest($request);
$reflector = new ReflectionClass($s);
$method = $reflector->getMethod('determineAccessToken');
$method->setAccessible(true);
$method->invoke($s);
}
2013-02-05 16:20:56 +00:00
public function test_determineAccessToken_fromHeader()
{
$request = new League\OAuth2\Server\Util\Request();
2013-02-05 16:20:56 +00:00
2013-02-08 11:40:33 +00:00
$requestReflector = new ReflectionClass($request);
$param = $requestReflector->getProperty('headers');
$param->setAccessible(true);
$param->setValue($request, array(
2013-03-22 10:37:01 +00:00
'Authorization' => 'Bearer abcdef'
2013-02-08 11:40:33 +00:00
));
$s = $this->returnDefault();
$s->setRequest($request);
2013-02-05 16:20:56 +00:00
$reflector = new ReflectionClass($s);
2013-02-08 11:40:33 +00:00
2013-02-05 16:20:56 +00:00
$method = $reflector->getMethod('determineAccessToken');
$method->setAccessible(true);
$result = $method->invoke($s);
$this->assertEquals('abcdef', $result);
}
public function test_determineAccessToken_fromBrokenCurlHeader()
{
$request = new League\OAuth2\Server\Util\Request();
$requestReflector = new ReflectionClass($request);
$param = $requestReflector->getProperty('headers');
$param->setAccessible(true);
$param->setValue($request, array(
'Authorization' => 'Bearer abcdef, Bearer abcdef'
));
$s = $this->returnDefault();
$s->setRequest($request);
$reflector = new ReflectionClass($s);
$method = $reflector->getMethod('determineAccessToken');
$method->setAccessible(true);
$result = $method->invoke($s);
$this->assertEquals('abcdef', $result);
}
2013-02-05 16:20:56 +00:00
public function test_determineAccessToken_fromMethod()
{
$s = $this->returnDefault();
$_GET[$s->getTokenKey()] = 'abcdef';
$_SERVER['REQUEST_METHOD'] = 'get';
$request = new League\OAuth2\Server\Util\Request($_GET, array(), array(), array(), $_SERVER);
2013-02-05 16:20:56 +00:00
$s->setRequest($request);
$reflector = new ReflectionClass($s);
$method = $reflector->getMethod('determineAccessToken');
$method->setAccessible(true);
$result = $method->invoke($s);
$this->assertEquals('abcdef', $result);
}
/**
* @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException
*/
2013-02-05 16:20:56 +00:00
public function test_isValid_notValid()
{
$this->session->shouldReceive('validateAccessToken')->andReturn(false);
$request = new League\OAuth2\Server\Util\Request();
2013-02-08 11:40:33 +00:00
$requestReflector = new ReflectionClass($request);
$param = $requestReflector->getProperty('headers');
$param->setAccessible(true);
$param->setValue($request, array(
2013-03-22 10:37:01 +00:00
'Authorization' => 'Bearer abcdef'
2013-02-08 11:40:33 +00:00
));
$s = $this->returnDefault();
$s->setRequest($request);
2013-02-05 16:20:56 +00:00
$s->isValid();
2013-02-05 16:20:56 +00:00
}
public function test_isValid_valid()
{
$this->session->shouldReceive('validateAccessToken')->andReturn(array(
2013-05-06 10:28:49 -07:00
'session_id' => 1,
'owner_type' => 'user',
'owner_id' => 123,
'client_id' => 'testapp'
2013-02-05 16:20:56 +00:00
));
2013-05-06 10:28:49 -07:00
$this->session->shouldReceive('getScopes')->andReturn(array(
array('key' => 'foo'),
array('key' => 'bar')
));
2013-02-05 16:20:56 +00:00
$request = new League\OAuth2\Server\Util\Request();
2013-02-08 11:40:33 +00:00
$requestReflector = new ReflectionClass($request);
$param = $requestReflector->getProperty('headers');
$param->setAccessible(true);
$param->setValue($request, array(
2013-03-22 10:37:01 +00:00
'Authorization' => 'Bearer abcdef'
2013-02-08 11:40:33 +00:00
));
2013-05-06 10:28:49 -07:00
2013-02-08 11:40:33 +00:00
$s = $this->returnDefault();
$s->setRequest($request);
2013-02-05 16:20:56 +00:00
$this->assertTrue($s->isValid());
$this->assertEquals(123, $s->getOwnerId());
$this->assertEquals('user', $s->getOwnerType());
$this->assertEquals('abcdef', $s->getAccessToken());
2013-05-08 18:12:18 -07:00
$this->assertEquals('testapp', $s->getClientId());
2013-02-05 16:20:56 +00:00
$this->assertTrue($s->hasScope('foo'));
$this->assertTrue($s->hasScope('bar'));
$this->assertTrue($s->hasScope(array('foo', 'bar')));
$this->assertFalse($s->hasScope(array('foobar')));
$this->assertFalse($s->hasScope('foobar'));
$this->assertFalse($s->hasScope(new StdClass));
}
}