oauth2-server/tests
Ian Littman 9775c0076b Look at Authorization header directly for HTTP Basic auth check
Should allow for better compatibility with server implementations that aren't sitting on top of a standard SAPI (e.g. persistent web servers building a PSR-7 compatible request from a socket-received message).

One catch here is that I've seen Apache hijack the HTTP Authorization header in the past, though that would probably impact the other aspects of the server just as much as it would this, so I think that risk is manageable.

Added tests to cover all paths through the new code, so the AbstractGrant type still has 100% coverage :)

Did notice that, as of the latest versions of PHPUnit, the mock creation method is deprecated. Maybe that needs to be updated? Haven't checked to see whether the replacements are PHPUnit 4.8 compatible though, so maybe they need to stay in order to test on older PHP versions?
2016-06-21 21:08:38 -05:00
..
Grant Look at Authorization header directly for HTTP Basic auth check 2016-06-21 21:08:38 -05:00
Middleware Applied fixes from StyleCI 2016-04-17 08:06:17 -04:00
ResponseTypes Applied fixes from StyleCI 2016-04-10 06:48:46 -04:00
Stubs Applied fixes from StyleCI 2016-04-09 10:46:40 -04:00
AuthorizationServerTest.php Applied fixes from StyleCI 2016-04-17 08:06:17 -04:00
Bootstrap.php allways extract scopes from repository 2016-03-15 01:10:47 +01:00
CryptTraitTest.php Fix tests and improve code coverate 2016-04-10 15:58:01 +01:00
ResourceServerTest.php Applied fixes from StyleCI 2016-04-17 08:06:17 -04:00