Replace separate minecraft access tokens with JWT

2025-05-31 14:11:46 +05:30 · 2019-12-04 21:10:15 +03:00
parent 060a4e960a
commit a81ef5cac2
34 changed files with 432 additions and 303 deletions
--- a/api/tests/functional/authserver/ValidateCest.php
+++ b/api/tests/functional/authserver/ValidateCest.php
@@ -1,34 +1,35 @@
 <?php
+declare(strict_types=1);
+
 namespace api\tests\functional\authserver;

-use api\tests\_pages\AuthserverRoute;
 use api\tests\functional\_steps\AuthserverSteps;
 use Ramsey\Uuid\Uuid;

 class ValidateCest {

-    /**
-     * @var AuthserverRoute
-     */
-    private $route;
-
-    public function _before(AuthserverSteps $I) {
-        $this->route = new AuthserverRoute($I);
-    }
-
    public function validate(AuthserverSteps $I) {
        $I->wantTo('validate my accessToken');
        [$accessToken] = $I->amAuthenticated();
-        $this->route->validate([
+        $I->sendPOST('/api/authserver/authentication/validate', [
            'accessToken' => $accessToken,
        ]);
        $I->seeResponseCodeIs(200);
        $I->canSeeResponseEquals('');
    }

+    public function validateLegacyToken(AuthserverSteps $I) {
+        $I->wantTo('validate my legacy accessToken');
+        $I->sendPOST('/api/authserver/authentication/validate', [
+            'accessToken' => 'e7bb6648-2183-4981-9b86-eba5e7f87b42',
+        ]);
+        $I->seeResponseCodeIs(200);
+        $I->canSeeResponseEquals('');
+    }
+
    public function wrongArguments(AuthserverSteps $I) {
        $I->wantTo('get error on wrong amount of arguments');
-        $this->route->validate([
+        $I->sendPOST('/api/authserver/authentication/validate', [
            'key' => 'value',
        ]);
        $I->canSeeResponseCodeIs(400);
@@ -41,7 +42,7 @@ class ValidateCest {

    public function wrongAccessToken(AuthserverSteps $I) {
        $I->wantTo('get error on wrong accessToken');
-        $this->route->validate([
+        $I->sendPOST('/api/authserver/authentication/validate', [
            'accessToken' => Uuid::uuid4()->toString(),
        ]);
        $I->canSeeResponseCodeIs(401);
@@ -54,9 +55,21 @@ class ValidateCest {

    public function expiredAccessToken(AuthserverSteps $I) {
        $I->wantTo('get error on expired accessToken');
-        $this->route->validate([
-            // Knowingly expired token from the dump
-            'accessToken' => '6042634a-a1e2-4aed-866c-c661fe4e63e2',
+        $I->sendPOST('/api/authserver/authentication/validate', [
+            'accessToken' => 'eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiJ9.eyJpYXQiOjE1NzU0Nzk1NTMsImV4cCI6MTU3NTQ3OTU1MywiZWx5LXNjb3BlcyI6Im1pbmVjcmFmdF9zZXJ2ZXJfc2Vzc2lvbiIsImVseS1jbGllbnQtdG9rZW4iOiJyZW1vdmVkIiwic3ViIjoiZWx5fDEifQ.xDMs5B48nH6p3a1k3WoZKtW4zoNHGGaLD1OGTFte-sUJb2fNMR65LuuBW8DzqO2odgco2xX660zqbhB-tp2OsA',
+        ]);
+        $I->canSeeResponseCodeIs(401);
+        $I->canSeeResponseIsJson();
+        $I->canSeeResponseContainsJson([
+            'error' => 'ForbiddenOperationException',
+            'errorMessage' => 'Token expired.',
+        ]);
+    }
+
+    public function expiredLegacyAccessToken(AuthserverSteps $I) {
+        $I->wantTo('get error on expired legacy accessToken');
+        $I->sendPOST('/api/authserver/authentication/validate', [
+            'accessToken' => '6042634a-a1e2-4aed-866c-c661fe4e63e2', // Already expired token from the fixtures
        ]);
        $I->canSeeResponseCodeIs(401);
        $I->canSeeResponseIsJson();