2016-03-10 22:52:48 +05:30
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace LeagueTests\Middleware;
|
|
|
|
|
2016-03-28 20:12:34 +05:30
|
|
|
use League\OAuth2\Server\CryptKey;
|
2016-03-10 22:52:48 +05:30
|
|
|
use League\OAuth2\Server\Middleware\ResourceServerMiddleware;
|
|
|
|
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
2016-04-17 17:24:39 +05:30
|
|
|
use League\OAuth2\Server\ResourceServer;
|
2016-04-09 20:16:40 +05:30
|
|
|
use LeagueTests\Stubs\AccessTokenEntity;
|
2016-03-18 04:55:32 +05:30
|
|
|
use LeagueTests\Stubs\ClientEntity;
|
2016-03-10 22:52:48 +05:30
|
|
|
use Zend\Diactoros\Response;
|
|
|
|
use Zend\Diactoros\ServerRequest;
|
|
|
|
|
|
|
|
class ResourceServerMiddlewareTest extends \PHPUnit_Framework_TestCase
|
|
|
|
{
|
|
|
|
public function testValidResponse()
|
|
|
|
{
|
2016-04-17 17:24:39 +05:30
|
|
|
$server = new ResourceServer(
|
2016-03-10 22:52:48 +05:30
|
|
|
$this->getMock(AccessTokenRepositoryInterface::class),
|
2016-04-17 17:24:39 +05:30
|
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
2016-03-10 22:52:48 +05:30
|
|
|
);
|
|
|
|
|
2016-03-18 04:55:32 +05:30
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('clientName');
|
|
|
|
|
|
|
|
$accessToken = new AccessTokenEntity();
|
|
|
|
$accessToken->setIdentifier('test');
|
|
|
|
$accessToken->setUserIdentifier(123);
|
|
|
|
$accessToken->setExpiryDateTime((new \DateTime())->add(new \DateInterval('PT1H')));
|
|
|
|
$accessToken->setClient($client);
|
|
|
|
|
2016-03-28 20:12:34 +05:30
|
|
|
$token = $accessToken->convertToJWT(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
2016-03-18 04:55:32 +05:30
|
|
|
|
2016-03-10 22:52:48 +05:30
|
|
|
$request = new ServerRequest();
|
2016-03-18 04:55:32 +05:30
|
|
|
$request = $request->withHeader('authorization', sprintf('Bearer %s', $token));
|
2016-03-10 22:52:48 +05:30
|
|
|
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
|
|
$response = $middleware->__invoke(
|
|
|
|
$request,
|
|
|
|
new Response(),
|
|
|
|
function () {
|
|
|
|
$this->assertEquals('test', func_get_args()[0]->getAttribute('oauth_access_token_id'));
|
2016-03-10 23:10:28 +05:30
|
|
|
|
2016-03-10 22:52:48 +05:30
|
|
|
return func_get_args()[1];
|
|
|
|
}
|
|
|
|
);
|
|
|
|
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
|
|
}
|
|
|
|
|
2016-04-10 20:28:01 +05:30
|
|
|
public function testValidResponseExpiredToken()
|
|
|
|
{
|
2016-04-17 17:24:39 +05:30
|
|
|
$server = new ResourceServer(
|
2016-04-10 20:28:01 +05:30
|
|
|
$this->getMock(AccessTokenRepositoryInterface::class),
|
2016-04-17 17:24:39 +05:30
|
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
2016-04-10 20:28:01 +05:30
|
|
|
);
|
|
|
|
|
|
|
|
$client = new ClientEntity();
|
|
|
|
$client->setIdentifier('clientName');
|
|
|
|
|
|
|
|
$accessToken = new AccessTokenEntity();
|
|
|
|
$accessToken->setIdentifier('test');
|
|
|
|
$accessToken->setUserIdentifier(123);
|
|
|
|
$accessToken->setExpiryDateTime((new \DateTime())->sub(new \DateInterval('PT1H')));
|
|
|
|
$accessToken->setClient($client);
|
|
|
|
|
|
|
|
$token = $accessToken->convertToJWT(new CryptKey('file://' . __DIR__ . '/../Stubs/private.key'));
|
|
|
|
|
|
|
|
$request = new ServerRequest();
|
|
|
|
$request = $request->withHeader('authorization', sprintf('Bearer %s', $token));
|
|
|
|
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
|
|
$response = $middleware->__invoke(
|
|
|
|
$request,
|
|
|
|
new Response(),
|
|
|
|
function () {
|
|
|
|
$this->assertEquals('test', func_get_args()[0]->getAttribute('oauth_access_token_id'));
|
|
|
|
|
|
|
|
return func_get_args()[1];
|
|
|
|
}
|
|
|
|
);
|
|
|
|
|
|
|
|
$this->assertEquals(401, $response->getStatusCode());
|
|
|
|
}
|
|
|
|
|
2016-03-10 22:52:48 +05:30
|
|
|
public function testErrorResponse()
|
|
|
|
{
|
2016-04-17 17:24:39 +05:30
|
|
|
$server = new ResourceServer(
|
2016-03-10 22:52:48 +05:30
|
|
|
$this->getMock(AccessTokenRepositoryInterface::class),
|
2016-04-17 17:24:39 +05:30
|
|
|
'file://' . __DIR__ . '/../Stubs/public.key'
|
2016-03-10 22:52:48 +05:30
|
|
|
);
|
|
|
|
|
|
|
|
$request = new ServerRequest();
|
|
|
|
$request = $request->withHeader('authorization', '');
|
|
|
|
|
|
|
|
$middleware = new ResourceServerMiddleware($server);
|
|
|
|
$response = $middleware->__invoke(
|
|
|
|
$request,
|
|
|
|
new Response(),
|
|
|
|
function () {
|
|
|
|
return func_get_args()[1];
|
|
|
|
}
|
|
|
|
);
|
|
|
|
|
|
|
|
$this->assertEquals(401, $response->getStatusCode());
|
|
|
|
}
|
|
|
|
}
|