Improve tests coverage

2024-06-28 19:32:49 +05:30 · 2019-08-02 18:32:08 +03:00 · 2019-08-02 18:32:08 +03:00 · 967d8b11a0
commit 967d8b11a0
parent d9f2b1a8c9
7 changed files with 133 additions and 10 deletions
--- a/api/components/OAuth2/Entities/RefreshTokenEntity.php
+++ b/api/components/OAuth2/Entities/RefreshTokenEntity.php
@ -1,9 +1,11 @@
 <?php
+declare(strict_types=1);
+
 namespace api\components\OAuth2\Entities;

 use api\components\OAuth2\Storage\SessionStorage;
-use ErrorException;
 use League\OAuth2\Server\Entity\SessionEntity as OriginalSessionEntity;
+use Webmozart\Assert\Assert;

 class RefreshTokenEntity extends \League\OAuth2\Server\Entity\RefreshTokenEntity {

@ -18,10 +20,9 @@ class RefreshTokenEntity extends \League\OAuth2\Server\Entity\RefreshTokenEntity
            return $this->session;
        }

+        /** @var SessionStorage $sessionStorage */
        $sessionStorage = $this->server->getSessionStorage();
-        if (!$sessionStorage instanceof SessionStorage) {
-            throw new ErrorException('SessionStorage must be instance of ' . SessionStorage::class);
-        }
+        Assert::isInstanceOf($sessionStorage, SessionStorage::class);

        return $sessionStorage->getById($this->sessionId);
    }
@ -32,7 +33,7 @@ class RefreshTokenEntity extends \League\OAuth2\Server\Entity\RefreshTokenEntity

    public function setSession(OriginalSessionEntity $session): self {
        parent::setSession($session);
-        $this->setSessionId($session->getId());
+        $this->setSessionId((int)$session->getId());

        return $this;
    }
--- a/api/components/User/IdentityFactory.php
+++ b/api/components/User/IdentityFactory.php
@ -20,7 +20,7 @@ class IdentityFactory {
            return JwtIdentity::findIdentityByAccessToken($token, $type);
        }

-        return Oauth2Identity::findIdentityByAccessToken($token, $type);
+        return OAuth2Identity::findIdentityByAccessToken($token, $type);
    }

 }
--- a/api/components/User/OAuth2Identity.php
+++ b/api/components/User/OAuth2Identity.php
@ -10,7 +10,7 @@ use Yii;
 use yii\base\NotSupportedException;
 use yii\web\UnauthorizedHttpException;

-class Oauth2Identity implements IdentityInterface {
+class OAuth2Identity implements IdentityInterface {

    /**
     * @var AccessTokenEntity
@ -55,6 +55,7 @@ class Oauth2Identity implements IdentityInterface {
        return $this->_accessToken->getId();
    }

+    // @codeCoverageIgnoreStart
    public function getAuthKey() {
        throw new NotSupportedException('This method used for cookie auth, except we using Bearer auth');
    }
@ -67,8 +68,10 @@ class Oauth2Identity implements IdentityInterface {
        throw new NotSupportedException('This method used for cookie auth, except we using Bearer auth');
    }

+    // @codeCoverageIgnoreEnd
+
    private function getSession(): OauthSession {
-        return OauthSession::findOne($this->_accessToken->getSessionId());
+        return OauthSession::findOne(['id' => $this->_accessToken->getSessionId()]);
    }

 }
--- a/api/tests/unit/components/Tokens/ComponentTest.php
+++ b/api/tests/unit/components/Tokens/ComponentTest.php
@ -73,6 +73,10 @@ class ComponentTest extends TestCase {
            (new Parser())->parse('eyJhbGciOiJFUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1NjQ1Mjc0NzYsImV4cCI6MTU2NDUzMTA3Niwic3ViIjoiZWx5fDEiLCJqdGkiOjMwNjk1OTJ9.xxx'),
            false,
        ];
+        yield 'RS256 (unsupported)' => [
+            (new Parser())->parse('eyJhbGciOiJSUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1NjQ1Mjc0NzYsImV4cCI6MTU2NDUzMTA3Niwic3ViIjoiZWx5fDEiLCJqdGkiOjMwNjk1OTJ9.t3c68OMaoWWXxNFuz6SW-RfNmCOwAagyPSedbzJ1K3gR3bY5C8PRP6IEyE-OQvAcSFQcake0brsa4caXAmVlU0c3jQxpjk0bl4fBMd-InpGCoo42G89lgAY-dqWeJqokRORCpUL5Mzptbm5fNDlCrnNhI_6EmQygL3WXh1uorCbcxxO-Lb2Nr7Sge7GV0t24-I61I7ErrFL2ZC9ybSi6V8pdhFZlfO6MSUM0ASyRN994sVmcQEZHDiQFP7zj79zoAFamfYe8JBFAGtC-p4LeVYjrw052VahNXyRuGLxW7y1gX-znpyx0T-7lgKSWVxhJ6k3qt5qT33utdC76w1vihEdYinpEE3VbTMN01bxAFpyDbK11R49FCwCKStPjw_wdoLZChx_zob95yVU6IUCJwPYVc4SBtrAPV0uVe3mL3Gzgtr6MkhJAF3diFevTLGfnOOCAWwhdjVs10VWqcajBwvfFlm_Yw5MYZnetEECqumqFEr_u6CdRxtx0gCiPReDG8XwYHt0EqEw-LoRqxGWp5zqfud7f0DWv6cXlLbnKsB8XQh8EqnKblvNCFilXJIgfknCZ34PAob1pUkXO1geMLw4b8NUnKta1D3ad3AxGW5CEmOjWzEhzMOxIgnouU2ZVtWFDrPVs12Q4494BxTvGKXrG2cT6TK18-XY26DllglY'),
+            false,
+        ];
    }

    protected function _setUp() {
--- a/api/tests/unit/components/User/ComponentTest.php
+++ b/api/tests/unit/components/User/ComponentTest.php
@ -5,7 +5,7 @@ namespace codeception\api\unit\components\User;

 use api\components\User\Component;
 use api\components\User\JwtIdentity;
-use api\components\User\Oauth2Identity;
+use api\components\User\OAuth2Identity;
 use api\tests\unit\TestCase;
 use common\models\Account;
 use common\models\AccountSession;
@ -41,7 +41,7 @@ class ComponentTest extends TestCase {
        $this->assertNull($component->getActiveSession());

        // Identity is a Oauth2Identity
-        $component->setIdentity(mock(Oauth2Identity::class));
+        $component->setIdentity(mock(OAuth2Identity::class));
        $this->assertNull($component->getActiveSession());

        // Identity is correct, but have no jti claim
--- a/api/tests/unit/components/User/IdentityFactoryTest.php
+++ b/api/tests/unit/components/User/IdentityFactoryTest.php
@ -0,0 +1,59 @@
+<?php
+declare(strict_types=1);
+
+namespace api\tests\unit\components\User;
+
+use api\components\OAuth2\Component;
+use api\components\OAuth2\Entities\AccessTokenEntity;
+use api\components\User\IdentityFactory;
+use api\components\User\JwtIdentity;
+use api\components\User\OAuth2Identity;
+use api\tests\unit\TestCase;
+use Carbon\Carbon;
+use League\OAuth2\Server\AbstractServer;
+use League\OAuth2\Server\Storage\AccessTokenInterface;
+use Yii;
+use yii\web\UnauthorizedHttpException;
+
+class IdentityFactoryTest extends TestCase {
+
+    public function testFindIdentityByAccessToken() {
+        // Find identity by jwt token
+        $identity = IdentityFactory::findIdentityByAccessToken('eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1NjQ2MTA1NDIsImV4cCI6MTU2NDYxNDE0Miwic3ViIjoiZWx5fDEifQ.4Oidvuo4spvUf9hkpHR72eeqZUh2Zbxh_L8Od3vcgTj--0iOrcOEp6zwmEW6vF7BTHtjz2b3mXce61bqsCjXjQ');
+        $this->assertInstanceOf(JwtIdentity::class, $identity);
+
+        // Find identity by oauth2 token
+        $accessToken = new AccessTokenEntity(mock(AbstractServer::class));
+        $accessToken->setExpireTime(time() + 3600);
+        $accessToken->setId('mock-token');
+
+        /** @var AccessTokenInterface|\Mockery\MockInterface $accessTokensStorage */
+        $accessTokensStorage = mock(AccessTokenInterface::class);
+        $accessTokensStorage->shouldReceive('get')->with('mock-token')->andReturn($accessToken);
+
+        /** @var Component|\Mockery\MockInterface $component */
+        $component = mock(Component::class);
+        $component->shouldReceive('getAccessTokenStorage')->andReturn($accessTokensStorage);
+        Yii::$app->set('oauth', $component);
+
+        $identity = IdentityFactory::findIdentityByAccessToken('mock-token');
+        $this->assertInstanceOf(OAuth2Identity::class, $identity);
+    }
+
+    public function testFindIdentityByAccessTokenWithEmptyValue() {
+        $this->expectException(UnauthorizedHttpException::class);
+        $this->expectExceptionMessage('Incorrect token');
+        IdentityFactory::findIdentityByAccessToken('');
+    }
+
+    protected function _setUp() {
+        parent::_setUp();
+        Carbon::setTestNow(Carbon::create(2019, 8, 1, 1, 2, 22, 'Europe/Minsk'));
+    }
+
+    protected function _tearDown() {
+        parent::_tearDown();
+        Carbon::setTestNow();
+    }
+
+}
--- a/api/tests/unit/components/User/OAuth2IdentityTest.php
+++ b/api/tests/unit/components/User/OAuth2IdentityTest.php
@ -0,0 +1,56 @@
+<?php
+declare(strict_types=1);
+
+namespace api\tests\unit\components\User;
+
+use api\components\OAuth2\Component;
+use api\components\OAuth2\Entities\AccessTokenEntity;
+use api\components\User\OAuth2Identity;
+use api\tests\unit\TestCase;
+use League\OAuth2\Server\AbstractServer;
+use League\OAuth2\Server\Storage\AccessTokenInterface;
+use Yii;
+use yii\web\UnauthorizedHttpException;
+
+class OAuth2IdentityTest extends TestCase {
+
+    public function testFindIdentityByAccessToken() {
+        $accessToken = new AccessTokenEntity(mock(AbstractServer::class));
+        $accessToken->setExpireTime(time() + 3600);
+        $accessToken->setId('mock-token');
+        $this->mockFoundedAccessToken($accessToken);
+
+        $identity = OAuth2Identity::findIdentityByAccessToken('mock-token');
+        $this->assertSame('mock-token', $identity->getId());
+    }
+
+    public function testFindIdentityByAccessTokenWithNonExistsToken() {
+        $this->expectException(UnauthorizedHttpException::class);
+        $this->expectExceptionMessage('Incorrect token');
+
+        OAuth2Identity::findIdentityByAccessToken('not exists token');
+    }
+
+    public function testFindIdentityByAccessTokenWithExpiredToken() {
+        $this->expectException(UnauthorizedHttpException::class);
+        $this->expectExceptionMessage('Token expired');
+
+        $accessToken = new AccessTokenEntity(mock(AbstractServer::class));
+        $accessToken->setExpireTime(time() - 3600);
+        $this->mockFoundedAccessToken($accessToken);
+
+        OAuth2Identity::findIdentityByAccessToken('mock-token');
+    }
+
+    private function mockFoundedAccessToken(AccessTokenEntity $accessToken) {
+        /** @var AccessTokenInterface|\Mockery\MockInterface $accessTokensStorage */
+        $accessTokensStorage = mock(AccessTokenInterface::class);
+        $accessTokensStorage->shouldReceive('get')->with('mock-token')->andReturn($accessToken);
+
+        /** @var Component|\Mockery\MockInterface $component */
+        $component = mock(Component::class);
+        $component->shouldReceive('getAccessTokenStorage')->andReturn($accessTokensStorage);
+        Yii::$app->set('oauth', $component);
+    }
+
+}