mirror of
https://github.com/elyby/oauth2-server.git
synced 2024-11-30 10:42:02 +05:30
109 lines
3.6 KiB
PHP
109 lines
3.6 KiB
PHP
<?php
|
|
|
|
namespace LeagueTests\Middleware;
|
|
|
|
use League\OAuth2\Server\CryptKey;
|
|
use League\OAuth2\Server\Middleware\ResourceServerMiddleware;
|
|
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
|
use League\OAuth2\Server\ResourceServer;
|
|
use LeagueTests\Stubs\AccessTokenEntity;
|
|
use LeagueTests\Stubs\ClientEntity;
|
|
use PHPUnit\Framework\TestCase;
|
|
use Zend\Diactoros\Response;
|
|
use Zend\Diactoros\ServerRequest;
|
|
|
|
class ResourceServerMiddlewareTest extends TestCase
|
|
{
|
|
public function testValidResponse()
|
|
{
|
|
$server = new ResourceServer(
|
|
$this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock(),
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
|
);
|
|
|
|
$client = new ClientEntity();
|
|
$client->setIdentifier('clientName');
|
|
|
|
$accessToken = new AccessTokenEntity();
|
|
$accessToken->setIdentifier('test');
|
|
$accessToken->setUserIdentifier(123);
|
|
$accessToken->setExpiryDateTime((new \DateTime())->add(new \DateInterval('PT1H')));
|
|
$accessToken->setClient($client);
|
|
|
|
$token = $accessToken->convertToJWT(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
|
|
|
$request = new ServerRequest();
|
|
$request = $request->withHeader('authorization', sprintf('Bearer %s', $token));
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
$response = $middleware->__invoke(
|
|
$request,
|
|
new Response(),
|
|
function () {
|
|
$this->assertEquals('test', func_get_args()[0]->getAttribute('oauth_access_token_id'));
|
|
|
|
return func_get_args()[1];
|
|
}
|
|
);
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
}
|
|
|
|
public function testValidResponseExpiredToken()
|
|
{
|
|
$server = new ResourceServer(
|
|
$this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock(),
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
|
);
|
|
|
|
$client = new ClientEntity();
|
|
$client->setIdentifier('clientName');
|
|
|
|
$accessToken = new AccessTokenEntity();
|
|
$accessToken->setIdentifier('test');
|
|
$accessToken->setUserIdentifier(123);
|
|
$accessToken->setExpiryDateTime((new \DateTime())->sub(new \DateInterval('PT1H')));
|
|
$accessToken->setClient($client);
|
|
|
|
$token = $accessToken->convertToJWT(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
|
|
|
$request = new ServerRequest();
|
|
$request = $request->withHeader('authorization', sprintf('Bearer %s', $token));
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
$response = $middleware->__invoke(
|
|
$request,
|
|
new Response(),
|
|
function () {
|
|
$this->assertEquals('test', func_get_args()[0]->getAttribute('oauth_access_token_id'));
|
|
|
|
return func_get_args()[1];
|
|
}
|
|
);
|
|
|
|
$this->assertEquals(401, $response->getStatusCode());
|
|
}
|
|
|
|
public function testErrorResponse()
|
|
{
|
|
$server = new ResourceServer(
|
|
$this->getMockBuilder(AccessTokenRepositoryInterface::class)->getMock(),
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
|
);
|
|
|
|
$request = new ServerRequest();
|
|
$request = $request->withHeader('authorization', '');
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
$response = $middleware->__invoke(
|
|
$request,
|
|
new Response(),
|
|
function () {
|
|
return func_get_args()[1];
|
|
}
|
|
);
|
|
|
|
$this->assertEquals(401, $response->getStatusCode());
|
|
}
|
|
}
|