2016-02-18 16:17:30 +05:30
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace LeagueTests\Grant;
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
use DateInterval;
|
2016-03-28 20:12:34 +05:30
|
|
|
use League\OAuth2\Server\CryptKey;
|
2016-04-09 19:55:45 +05:30
|
|
|
use League\OAuth2\Server\Entities\AccessTokenEntityInterface;
|
|
|
|
use League\OAuth2\Server\Entities\RefreshTokenEntityInterface;
|
2016-02-18 16:17:30 +05:30
|
|
|
use League\OAuth2\Server\Grant\RefreshTokenGrant;
|
|
|
|
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
|
|
|
use League\OAuth2\Server\Repositories\ClientRepositoryInterface;
|
|
|
|
use League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface;
|
2016-02-21 22:10:16 +05:30
|
|
|
use League\OAuth2\Server\Repositories\ScopeRepositoryInterface;
|
2016-04-09 20:16:40 +05:30
|
|
|
use LeagueTests\Stubs\AccessTokenEntity;
|
2016-03-15 05:40:47 +05:30
|
|
|
use LeagueTests\Stubs\ClientEntity;
|
2016-03-18 04:55:32 +05:30
|
|
|
use LeagueTests\Stubs\CryptTraitStub;
|
2016-04-09 20:16:40 +05:30
|
|
|
use LeagueTests\Stubs\RefreshTokenEntity;
|
2016-03-15 05:40:47 +05:30
|
|
|
use LeagueTests\Stubs\ScopeEntity;
|
2016-02-18 16:17:30 +05:30
|
|
|
use LeagueTests\Stubs\StubResponseType;
|
2017-11-08 23:37:07 +05:30
|
|
|
use PHPUnit\Framework\TestCase;
|
2016-02-18 16:17:30 +05:30
|
|
|
use Zend\Diactoros\ServerRequest;
|
|
|
|
|
2017-11-08 23:37:07 +05:30
|
|
|
class RefreshTokenGrantTest extends TestCase
|
2016-02-18 16:17:30 +05:30
|
|
|
{
|
2016-03-18 01:48:28 +05:30
|
|
|
/**
|
2017-07-01 22:41:19 +05:30
|
|
|
* @var CryptTraitStub
|
2016-03-18 01:48:28 +05:30
|
|
|
*/
|
|
|
|
protected $cryptStub;
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
public function setUp(): void
|
2016-03-18 01:48:28 +05:30
|
|
|
{
|
2016-03-18 04:55:32 +05:30
|
|
|
$this->cryptStub = new CryptTraitStub();
|
2016-03-18 01:48:28 +05:30
|
|
|
}
|
|
|
|
|
2016-02-18 16:17:30 +05:30
|
|
|
public function testGetIdentifier()
|
|
|
|
{
|
2016-07-08 18:59:21 +05:30
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
2016-02-18 16:17:30 +05:30
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$this->assertEquals('refresh_token', $grant->getIdentifier());
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequest()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
2016-03-15 05:40:47 +05:30
|
|
|
$scopeEntity = new ScopeEntity();
|
2017-11-14 03:50:42 +05:30
|
|
|
$scopeEntity->setIdentifier('foo');
|
|
|
|
$scopeRepositoryMock = $this->getMockBuilder(ScopeRepositoryInterface::class)->getMock();
|
2016-03-15 05:40:47 +05:30
|
|
|
$scopeRepositoryMock->method('getScopeEntityByIdentifier')->willReturn($scopeEntity);
|
|
|
|
|
2016-02-18 16:17:30 +05:30
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
2016-03-25 18:39:26 +05:30
|
|
|
$accessTokenRepositoryMock->method('getNewToken')->willReturn(new AccessTokenEntity());
|
2017-11-14 03:50:42 +05:30
|
|
|
$accessTokenRepositoryMock->expects($this->once())->method('persistNewAccessToken')->willReturnSelf();
|
2016-02-18 16:17:30 +05:30
|
|
|
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
2016-03-25 18:39:26 +05:30
|
|
|
$refreshTokenRepositoryMock->method('getNewRefreshToken')->willReturn(new RefreshTokenEntity());
|
2017-11-14 03:50:42 +05:30
|
|
|
$refreshTokenRepositoryMock->expects($this->once())->method('persistNewRefreshToken')->willReturnSelf();
|
2016-02-18 16:17:30 +05:30
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
2016-03-15 05:40:47 +05:30
|
|
|
$grant->setScopeRepository($scopeRepositoryMock);
|
2016-02-18 16:17:30 +05:30
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-18 16:17:30 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-18 16:17:30 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
2017-11-07 04:03:28 +05:30
|
|
|
'scopes' => ['foo'],
|
2016-02-18 16:17:30 +05:30
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-18 16:17:30 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:45:37 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
2017-11-14 03:50:42 +05:30
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
]);
|
2016-02-18 16:17:30 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-18 16:17:30 +05:30
|
|
|
|
2017-12-07 01:54:42 +05:30
|
|
|
$this->assertInstanceOf(AccessTokenEntityInterface::class, $responseType->getAccessToken());
|
|
|
|
$this->assertInstanceOf(RefreshTokenEntityInterface::class, $responseType->getRefreshToken());
|
2016-02-18 16:17:30 +05:30
|
|
|
}
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2019-03-08 22:49:16 +05:30
|
|
|
public function testRespondToRequestNullRefreshToken()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$scopeEntity = new ScopeEntity();
|
|
|
|
$scopeEntity->setIdentifier('foo');
|
|
|
|
|
|
|
|
$scopeRepositoryMock = $this->getMockBuilder(ScopeRepositoryInterface::class)->getMock();
|
|
|
|
$scopeRepositoryMock->method('getScopeEntityByIdentifier')->willReturn($scopeEntity);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$accessTokenRepositoryMock->method('getNewToken')->willReturn(new AccessTokenEntity());
|
|
|
|
$accessTokenRepositoryMock->expects($this->once())->method('persistNewAccessToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock->method('getNewRefreshToken')->willReturn(null);
|
|
|
|
$refreshTokenRepositoryMock->expects($this->never())->method('persistNewRefreshToken');
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setScopeRepository($scopeRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
|
|
|
|
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
|
|
|
)
|
|
|
|
);
|
|
|
|
|
2019-06-27 17:45:37 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
2019-03-08 22:49:16 +05:30
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
]);
|
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new \DateInterval('PT5M'));
|
|
|
|
|
|
|
|
$this->assertInstanceOf(AccessTokenEntityInterface::class, $responseType->getAccessToken());
|
|
|
|
$this->assertNull($responseType->getRefreshToken());
|
|
|
|
}
|
|
|
|
|
2016-02-21 22:10:16 +05:30
|
|
|
public function testRespondToReducedScopes()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
2016-03-25 18:39:26 +05:30
|
|
|
$accessTokenRepositoryMock->method('getNewToken')->willReturn(new AccessTokenEntity());
|
2016-02-21 22:10:16 +05:30
|
|
|
$accessTokenRepositoryMock->method('persistNewAccessToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock->method('persistNewRefreshToken')->willReturnSelf();
|
2016-03-25 18:39:26 +05:30
|
|
|
$refreshTokenRepositoryMock->method('getNewRefreshToken')->willReturn(new RefreshTokenEntity());
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$scope = new ScopeEntity();
|
|
|
|
$scope->setIdentifier('foo');
|
|
|
|
$scopeRepositoryMock = $this->getMockBuilder(ScopeRepositoryInterface::class)->getMock();
|
|
|
|
$scopeRepositoryMock->method('getScopeEntityByIdentifier')->willReturn($scope);
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
|
|
|
$grant->setScopeRepository($scopeRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-21 22:10:16 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo', 'bar'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-21 22:10:16 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:45:37 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
'scope' => 'foo',
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2017-12-07 01:54:42 +05:30
|
|
|
$this->assertInstanceOf(AccessTokenEntityInterface::class, $responseType->getAccessToken());
|
|
|
|
$this->assertInstanceOf(RefreshTokenEntityInterface::class, $responseType->getRefreshToken());
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToUnexpectedScope()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$accessTokenRepositoryMock->method('persistNewAccessToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock->method('persistNewRefreshToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$scope = new ScopeEntity();
|
|
|
|
$scope->setIdentifier('foobar');
|
|
|
|
$scopeRepositoryMock = $this->getMockBuilder(ScopeRepositoryInterface::class)->getMock();
|
|
|
|
$scopeRepositoryMock->method('getScopeEntityByIdentifier')->willReturn($scope);
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
|
|
|
$grant->setScopeRepository($scopeRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-21 22:10:16 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo', 'bar'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-21 22:10:16 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
'scope' => 'foobar',
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(5);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequestMissingOldToken()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(3);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequestInvalidOldToken()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$oldRefreshToken = 'foobar';
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(8);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequestClientMismatch()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$accessTokenRepositoryMock->method('persistNewAccessToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock->method('persistNewRefreshToken')->willReturnSelf();
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-21 22:10:16 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'bar',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-21 22:10:16 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(8);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequestExpiredToken()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-21 22:10:16 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() - 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-21 22:10:16 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(8);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
public function testRespondToRequestRevokedToken()
|
|
|
|
{
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('foo');
|
|
|
|
$clientRepositoryMock = $this->getMockBuilder(ClientRepositoryInterface::class)->getMock();
|
|
|
|
$clientRepositoryMock->method('getClientEntity')->willReturn($client);
|
|
|
|
|
|
|
|
$accessTokenRepositoryMock = $this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock = $this->getMockBuilder(RefreshTokenRepositoryInterface::class)->getMock();
|
|
|
|
$refreshTokenRepositoryMock->method('isRefreshTokenRevoked')->willReturn(true);
|
|
|
|
|
|
|
|
$grant = new RefreshTokenGrant($refreshTokenRepositoryMock);
|
|
|
|
$grant->setClientRepository($clientRepositoryMock);
|
|
|
|
$grant->setAccessTokenRepository($accessTokenRepositoryMock);
|
2017-07-01 22:41:19 +05:30
|
|
|
$grant->setEncryptionKey($this->cryptStub->getKey());
|
2016-03-28 20:12:34 +05:30
|
|
|
$grant->setPrivateKey(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-02-21 22:10:16 +05:30
|
|
|
|
2016-03-18 01:48:28 +05:30
|
|
|
$oldRefreshToken = $this->cryptStub->doEncrypt(
|
2016-02-21 22:10:16 +05:30
|
|
|
json_encode(
|
|
|
|
[
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'refresh_token_id' => 'zyxwvu',
|
|
|
|
'access_token_id' => 'abcdef',
|
|
|
|
'scopes' => ['foo'],
|
|
|
|
'user_id' => 123,
|
|
|
|
'expire_time' => time() + 3600,
|
|
|
|
]
|
2016-03-18 04:55:32 +05:30
|
|
|
)
|
2016-02-21 22:10:16 +05:30
|
|
|
);
|
|
|
|
|
2019-06-27 17:24:22 +05:30
|
|
|
$serverRequest = (new ServerRequest())->withParsedBody([
|
|
|
|
'client_id' => 'foo',
|
|
|
|
'client_secret' => 'bar',
|
|
|
|
'refresh_token' => $oldRefreshToken,
|
|
|
|
]);
|
2016-02-21 22:10:16 +05:30
|
|
|
|
|
|
|
$responseType = new StubResponseType();
|
2019-06-27 17:24:22 +05:30
|
|
|
|
|
|
|
$this->expectException(\League\OAuth2\Server\Exception\OAuthServerException::class);
|
|
|
|
$this->expectExceptionCode(8);
|
|
|
|
|
2018-11-08 15:11:01 +05:30
|
|
|
$grant->respondToAccessTokenRequest($serverRequest, $responseType, new DateInterval('PT5M'));
|
2016-02-21 22:10:16 +05:30
|
|
|
}
|
2016-02-18 16:17:30 +05:30
|
|
|
}
|