2018-05-24 12:19:55 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace LeagueTests\AuthorizationValidators;
|
|
|
|
|
|
|
|
use Lcobucci\JWT\Builder;
|
|
|
|
use League\OAuth2\Server\AuthorizationValidators\BearerTokenValidator;
|
|
|
|
use League\OAuth2\Server\CryptKey;
|
|
|
|
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
|
|
|
use PHPUnit\Framework\TestCase;
|
|
|
|
use Zend\Diactoros\ServerRequest;
|
|
|
|
|
|
|
|
class BearerTokenValidatorTest extends TestCase
|
|
|
|
{
|
|
|
|
public function testThrowExceptionWhenAccessTokenIsNotSigned()
|
|
|
|
{
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
|
|
|
|
$bearerTokenValidator = new BearerTokenValidator($accessTokenRepositoryMock);
|
|
|
|
$bearerTokenValidator->setPublicKey(new CryptKey('file://' . __DIR__ . '/../Stubs/public.key'));
|
|
|
|
|
|
|
|
$unsignedJwt = (new Builder())
|
|
|
|
->setAudience('client-id')
|
|
|
|
->setId('token-id', true)
|
|
|
|
->setIssuedAt(time())
|
|
|
|
->setNotBefore(time())
|
|
|
|
->setExpiration(time())
|
|
|
|
->setSubject('user-id')
|
|
|
|
->set('scopes', 'scope1 scope2 scope3 scope4')
|
|
|
|
->getToken();
|
|
|
|
|
2019-06-27 13:15:37 +01:00
|
|
|
$request = (new ServerRequest())->withHeader('authorization', sprintf('Bearer %s', $unsignedJwt));
|
2018-05-24 12:19:55 +01:00
|
|
|
|
2019-06-27 12:54:22 +01:00
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(9);
|
|
|
|
|
2018-05-24 12:19:55 +01:00
|
|
|
$bearerTokenValidator->validateAuthorization($request);
|
|
|
|
}
|
|
|
|
}
|