From b86d1f14064789d517d05da967f842cd432497d8 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 16 Dec 2013 17:15:31 +0000 Subject: [PATCH 001/270] Added symfony/http-foundation as dependency --- composer.json | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/composer.json b/composer.json index ee81767a..78283f94 100644 --- a/composer.json +++ b/composer.json @@ -5,7 +5,8 @@ "homepage": "https://github.com/php-loep/oauth2-server", "license": "MIT", "require": { - "php": ">=5.4.0" + "php": ">=5.4.0", + "symfony/http-foundation": "v2.4.0" }, "require-dev": { "mockery/mockery": ">=0.7.2", From 449ba5005c0956e82b15086a972dbac4d9393dab Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 16 Dec 2013 23:47:03 +0000 Subject: [PATCH 002/270] First commit of updated ResourceServer --- src/League/OAuth2/Server/Resource.php | 200 +++++++++++++++----------- 1 file changed, 119 insertions(+), 81 deletions(-) diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 55339567..9f1720ca 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -13,8 +13,9 @@ namespace League\OAuth2\Server; use OutOfBoundsException; use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Util\RequestInterface; -use League\OAuth2\Server\Util\Request; +use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Storage\ClientInterface; +use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 Resource Server @@ -23,92 +24,100 @@ class Resource { /** * The access token - * @var string + * + * @var League\OAuth2\Server\AccessToken */ protected $accessToken = null; /** - * The session ID - * @var string + * The session + * + * @var \League\OAuth2\Server\Session */ - protected $sessionId = null; - - /** - * The type of the owner of the access token - * @var string - */ - protected $ownerType = null; - - /** - * The ID of the owner of the access token - * @var string - */ - protected $ownerId = null; - - /** - * The scopes associated with the access token - * @var array - */ - protected $sessionScopes = array(); - - /** - * The client, scope and session storage classes - * @var array - */ - protected $storages = array(); + protected $session = null; /** * The request object + * * @var Util\RequestInterface */ protected $request = null; /** * The query string key which is used by clients to present the access token (default: access_token) + * * @var string */ protected $tokenKey = 'access_token'; /** * The client ID - * @var string + * + * @var League\OAuth2\Server\Client */ - protected $clientId = null; + protected $client = null; /** - * Sets up the Resource + * Session storage * - * @param SessionInterface The Session Storage Object + * @var League\OAuth2\Server\Storage\SessionInterface */ - public function __construct(SessionInterface $session) - { - $this->storages['session'] = $session; + protected $sessionStorage = null; + + /** + * Access token storage + * + * @var League\OAuth2\Server\Storage\AccessTokenInterface + */ + protected $accessTokenStorage = null; + + /** + * Client storage + * + * @var League\OAuth2\Server\Storage\ClientInterface + */ + protected $clientStorage = null; + + /** + * Initialise the resource server + * + * @param SessionInterface $sessionStorage [description] + * @param AccessTokenInteface $accessTokenStorage [description] + * @param ClientInterface $clientStorage [description] + * + * @return self + */ + public function __construct( + SessionInterface $sessionStorage, + AccessTokenInteface $accessTokenStorage, + ClientInterface $clientStorage + ) { + $this->sessionStorage = $sessionStorage; + $this->accessTokenStorage = $accessTokenStorage; + $this->clientStorage = $clientStorage; + return $this; } /** * Sets the Request Object * - * @param RequestInterface The Request Object + * @param \Symfony\Component\HttpFoundation\Request The Request Object + * + * @return self */ - public function setRequest(RequestInterface $request) + public function setRequest(Request $request) { $this->request = $request; return $this; } /** - * Gets the Request object. It will create one from the globals if one is not set. + * Gets the Request object. It will create one from the globals if one is not set. * - * @return Util\RequestInterface + * @return Symfony\Component\HttpFoundation\Request */ public function getRequest() { - if ($this->request === null) { - // @codeCoverageIgnoreStart - $this->request = Request::buildFromGlobals(); - } - // @codeCoverageIgnoreEnd - return $this->request; } @@ -126,6 +135,8 @@ class Resource * Sets the query string key for the access token. * * @param $key The new query string key + * + * @return self */ public function setTokenKey($key) { @@ -134,119 +145,147 @@ class Resource } /** - * Gets the access token owner ID. + * Gets the access token owner ID * * @return string */ public function getOwnerId() { - return $this->ownerId; + return $this->session->getOwnerId(); } /** - * Gets the owner type. + * Gets the owner type * * @return string */ public function getOwnerType() { - return $this->ownerType; + return $this->session->getOwnerType(); } /** - * Gets the access token. + * Gets the access token * * @return string */ public function getAccessToken() { - return $this->accessToken; + return $this->accessToken->getId(); } /** * Gets the client ID that created the session + * * @return string */ public function getClientId() { - return $this->clientId; + return $this->client->getId(); } /** - * Checks if the access token is valid or not. + * Checks if the access token is valid or not * * @param $headersOnly Limit Access Token to Authorization header only - * @throws Exception\InvalidAccessTokenException Thrown if the presented access token is not valid + * * @return bool */ public function isValid($headersOnly = false) { - $accessToken = $this->determineAccessToken($headersOnly); + try { + $accessToken = $this->determineAccessToken($headersOnly); + } catch (Exception $e) { + return false; + } - $result = $this->storages['session']->validateAccessToken($accessToken); + // Set the access token + $tokenResult = $this->accessTokenStorage->getToken($accessToken); + if ($tokenResult === null) { + return false; + } - if ( ! $result) { - throw new Exception\InvalidAccessTokenException('Access token is not valid'); + $accessToken = new AccessToken; + $accessToken->setId($token); + $accessToken->setTTL($tokenResult['ttl']); + $accessToken->setTimestamp($tokenResult['created']); + + $scopes = $this->accessTokenStorage->getTokenScopes($token); + foreach ($scopes as $scope => $details) { + $accessToken->associateScope($scope, $details); } $this->accessToken = $accessToken; - $this->sessionId = $result['session_id']; - $this->clientId = $result['client_id']; - $this->ownerType = $result['owner_type']; - $this->ownerId = $result['owner_id']; - $sessionScopes = $this->storages['session']->getScopes($this->accessToken); - foreach ($sessionScopes as $scope) { - $this->sessionScopes[] = $scope['scope']; + + // Set the session + $sessionResult = $this->sessionStorage->getSession($tokenResult['session_id']); + if ($sessionResult === null) { + return false; } + $session = new Session(); + $session->setOwner($sessionResult['owner_type'], $sessionResult['owner_id']); + + $this->session = $session; + + // Set the client + $clientResult = $this->clientStorage->getClient($sessionResult['client_id']); + if ($clientResult === null) { + return false; + } + + $client = new Client(); + $client->setCredentials($clientResult['client_id'], $clientResult['client_secret']); + + $this->client = $client; + return true; } /** * Get the session scopes + * * @return array */ public function getScopes() { - return $this->sessionScopes; + return $this->accessToken->getScopes(); } /** - * Checks if the presented access token has the given scope(s). + * Checks if the presented access token has the given scope(s) * * @param array|string An array of scopes or a single scope as a string + * * @return bool Returns bool if all scopes are found, false if any fail */ public function hasScope($scopes) { if (is_string($scopes)) { - if (in_array($scopes, $this->sessionScopes)) { - return true; - } - return false; + return $this->accessToken->hasScope($scopes); } elseif (is_array($scopes)) { foreach ($scopes as $scope) { - if ( ! in_array($scope, $this->sessionScopes)) { + if (!$this->accessToken->hasScope($scope)) { return false; } } return true; } - - return false; } /** - * Reads in the access token from the headers. + * Reads in the access token from the headers * * @param $headersOnly Limit Access Token to Authorization header only + * * @throws Exception\MissingAccessTokenException Thrown if there is no access token presented + * * @return string */ public function determineAccessToken($headersOnly = false) { - if ($header = $this->getRequest()->header('Authorization')) { + if ($header = $this->getRequest()->headers->get('Authorization')) { // Check for special case, because cURL sometimes does an // internal second request and doubles the authorization header, // which always resulted in an error. @@ -261,8 +300,8 @@ class Resource } $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; } elseif ($headersOnly === false) { - $method = $this->getRequest()->server('REQUEST_METHOD'); - $accessToken = $this->getRequest()->{$method}($this->tokenKey); + $method = $this->getRequest()->server->get('REQUEST_METHOD'); + $accessToken = $this->getRequest()->request->get($this->tokenKey); } if (empty($accessToken)) { @@ -271,5 +310,4 @@ class Resource return $accessToken; } - } From 427ae5070405dd65390075cede1113113ea84bbc Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 16 Dec 2013 23:47:47 +0000 Subject: [PATCH 003/270] First commit of AccessToken --- src/League/OAuth2/Server/AccessToken.php | 118 +++++++++++++++++++++++ 1 file changed, 118 insertions(+) create mode 100644 src/League/OAuth2/Server/AccessToken.php diff --git a/src/League/OAuth2/Server/AccessToken.php b/src/League/OAuth2/Server/AccessToken.php new file mode 100644 index 00000000..692636a2 --- /dev/null +++ b/src/League/OAuth2/Server/AccessToken.php @@ -0,0 +1,118 @@ +storage = $storage; + $this->scopes = new ParameterBag(); + } + + public function setSession(Session $session) + { + $this->session = $session; + } + + public function getSession() + { + return $this->session; + } + + public function setSessionStorage(SessionStorageInterface $sessionStorage) + { + $this->sessionStorage = $sessionStorage; + } + + public function getSessionStorage() + { + return $this->sessionStorage; + } + + public function setTTL($ttl = 0) + { + $this->ttl = $ttl; + } + + public function getTTL() + { + return $this->ttl; + } + + public function setTimestamp($timestamp = 0) + { + $this->timestamp = $timestamp; + } + + public function getTimestamp() + { + return $this->timestamp; + } + + public function setId($id = null) + { + $this->id = ($id !== null) ? $id : SecureKey::make(); + } + + public function getId() + { + return $this->id; + } + + public function associateScope($scope, $details = []) + { + if (!$this->scopes->has($scope)) { + $this->scopes->set($scope, []); + } + + return $this; + } + + public function hasScope($scope) + { + return $this->scopes->has($scope); + } + + public function getScopes() + { + return $this->scopes->all(); + } +} From 9e5bd4cd6763fea2cfff6031f648e946dc41d661 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 16 Dec 2013 23:47:53 +0000 Subject: [PATCH 004/270] First commit of Session --- src/League/OAuth2/Server/Session.php | 134 +++++++++++++++++++++++++++ 1 file changed, 134 insertions(+) create mode 100644 src/League/OAuth2/Server/Session.php diff --git a/src/League/OAuth2/Server/Session.php b/src/League/OAuth2/Server/Session.php new file mode 100644 index 00000000..bf7b0063 --- /dev/null +++ b/src/League/OAuth2/Server/Session.php @@ -0,0 +1,134 @@ +storage = $storage; + $this->scopes = new ParameterBag(); + } + + public function associateScope($scope) + { + if (!$this->scopes->has($scope)) { + $this->scopes->set($scope, 1); + } + + return $this; + } + + public function hasScope($scope) + { + return $this->scopes->has($scope); + } + + public function associateAccessToken(AccessToken $accessToken) + { + $this->accessToken = $accessToken; + } + + public function associateRefreshToken(RefreshToken $refreshToken) + { + $this->refreshToken = $refreshToken; + } + + public function associateAuthCode(AuthCode $authCode) + { + $this->authCode = $authCode; + } + + /** + * Associate a client + * @param League\OAuth2\Server\Client $client The client + * @return self + */ + public function associateClient(Client $client) + { + $this->client = $client; + + return $this; + } + + /** + * Set client + * @param League\OAuth2\Server\Client + */ + public function setClient(Client $client) + { + $this->client = $client; + } + + /** + * Return client + * @return League\OAuth2\Server\Client + */ + public function getClient() + { + return $this->client; + } + + /** + * Set the session owner + * @param string $type The type of the owner (e.g. user, app) + * @param string $id The ID of the owner + * @return self + */ + public function setOwner($type, $id) + { + $this->ownerType = $type; + $this->ownerId = $id; + + return $this; + } + + public function getOwnerId() + { + return $this->ownerId; + } + + public function getOwnerType() + { + return $this->ownerType; + } + + public function getById($id) + { + $params = $this->storage->getSession($id); + + if ($params === null) { + throw new OAuth2Exception('Unrecognised session ID - ' . $id); + } + + $this->id = $params['session_id']; + $this->setOwner($params['owner_type'], $params['owner_id']); + } +} From 337cb088e992a1596f5c16627e6022d0145f23ea Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:01:02 +0000 Subject: [PATCH 005/270] Delete some old files we don't care about --- src/League/OAuth2/Server/AccessToken.php | 118 ----------------- src/League/OAuth2/Server/Session.php | 134 -------------------- src/League/OAuth2/Server/Util/Request.php | 146 ---------------------- 3 files changed, 398 deletions(-) delete mode 100644 src/League/OAuth2/Server/AccessToken.php delete mode 100644 src/League/OAuth2/Server/Session.php delete mode 100644 src/League/OAuth2/Server/Util/Request.php diff --git a/src/League/OAuth2/Server/AccessToken.php b/src/League/OAuth2/Server/AccessToken.php deleted file mode 100644 index 692636a2..00000000 --- a/src/League/OAuth2/Server/AccessToken.php +++ /dev/null @@ -1,118 +0,0 @@ -storage = $storage; - $this->scopes = new ParameterBag(); - } - - public function setSession(Session $session) - { - $this->session = $session; - } - - public function getSession() - { - return $this->session; - } - - public function setSessionStorage(SessionStorageInterface $sessionStorage) - { - $this->sessionStorage = $sessionStorage; - } - - public function getSessionStorage() - { - return $this->sessionStorage; - } - - public function setTTL($ttl = 0) - { - $this->ttl = $ttl; - } - - public function getTTL() - { - return $this->ttl; - } - - public function setTimestamp($timestamp = 0) - { - $this->timestamp = $timestamp; - } - - public function getTimestamp() - { - return $this->timestamp; - } - - public function setId($id = null) - { - $this->id = ($id !== null) ? $id : SecureKey::make(); - } - - public function getId() - { - return $this->id; - } - - public function associateScope($scope, $details = []) - { - if (!$this->scopes->has($scope)) { - $this->scopes->set($scope, []); - } - - return $this; - } - - public function hasScope($scope) - { - return $this->scopes->has($scope); - } - - public function getScopes() - { - return $this->scopes->all(); - } -} diff --git a/src/League/OAuth2/Server/Session.php b/src/League/OAuth2/Server/Session.php deleted file mode 100644 index bf7b0063..00000000 --- a/src/League/OAuth2/Server/Session.php +++ /dev/null @@ -1,134 +0,0 @@ -storage = $storage; - $this->scopes = new ParameterBag(); - } - - public function associateScope($scope) - { - if (!$this->scopes->has($scope)) { - $this->scopes->set($scope, 1); - } - - return $this; - } - - public function hasScope($scope) - { - return $this->scopes->has($scope); - } - - public function associateAccessToken(AccessToken $accessToken) - { - $this->accessToken = $accessToken; - } - - public function associateRefreshToken(RefreshToken $refreshToken) - { - $this->refreshToken = $refreshToken; - } - - public function associateAuthCode(AuthCode $authCode) - { - $this->authCode = $authCode; - } - - /** - * Associate a client - * @param League\OAuth2\Server\Client $client The client - * @return self - */ - public function associateClient(Client $client) - { - $this->client = $client; - - return $this; - } - - /** - * Set client - * @param League\OAuth2\Server\Client - */ - public function setClient(Client $client) - { - $this->client = $client; - } - - /** - * Return client - * @return League\OAuth2\Server\Client - */ - public function getClient() - { - return $this->client; - } - - /** - * Set the session owner - * @param string $type The type of the owner (e.g. user, app) - * @param string $id The ID of the owner - * @return self - */ - public function setOwner($type, $id) - { - $this->ownerType = $type; - $this->ownerId = $id; - - return $this; - } - - public function getOwnerId() - { - return $this->ownerId; - } - - public function getOwnerType() - { - return $this->ownerType; - } - - public function getById($id) - { - $params = $this->storage->getSession($id); - - if ($params === null) { - throw new OAuth2Exception('Unrecognised session ID - ' . $id); - } - - $this->id = $params['session_id']; - $this->setOwner($params['owner_type'], $params['owner_id']); - } -} diff --git a/src/League/OAuth2/Server/Util/Request.php b/src/League/OAuth2/Server/Util/Request.php deleted file mode 100644 index b2f5752c..00000000 --- a/src/League/OAuth2/Server/Util/Request.php +++ /dev/null @@ -1,146 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Util; - -use OutOfBoundsException; -use InvalidMethodCallException; -use InvalidArgumentException; - -class Request implements RequestInterface -{ - protected $get = array(); - protected $post = array(); - protected $cookies = array(); - protected $files = array(); - protected $server = array(); - protected $headers = array(); - - public static function buildFromGlobals() - { - return new static($_GET, $_POST, $_COOKIE, $_FILES, $_SERVER); - } - - public function __construct(array $get = array(), array $post = array(), array $cookies = array(), array $files = array(), array $server = array(), $headers = array()) - { - $this->get = $get; - $this->post = $post; - $this->cookies = $cookies; - $this->files = $files; - $this->server = $server; - - if (empty($headers)) { - $this->headers = $this->readHeaders(); - } else { - $this->headers = $this->normalizeHeaders($headers); - } - } - - public function get($index = null, $default = null) - { - return $this->getPropertyValue('get', $index, $default); - } - - public function post($index = null, $default = null) - { - return $this->getPropertyValue('post', $index, $default); - } - - public function file($index = null, $default = null) - { - return $this->getPropertyValue('files', $index, $default); - } - - public function cookie($index = null, $default = null) - { - return $this->getPropertyValue('cookies', $index, $default); - } - - public function server($index = null, $default = null) - { - return $this->getPropertyValue('server', $index, $default); - } - - public function header($index = null, $default = null) - { - return $this->getPropertyValue('headers', $index, $default); - } - - protected function readHeaders() - { - if (function_exists('getallheaders')) { - // @codeCoverageIgnoreStart - $headers = getallheaders(); - } else { - // @codeCoverageIgnoreEnd - $headers = array(); - foreach ($this->server() as $name => $value) { - if (substr($name, 0, 5) == 'HTTP_') { - $name = str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5))))); - $headers[$name] = $value; - } - } - } - - return $this->normalizeHeaders($headers); - } - - protected function getPropertyValue($property, $index = null, $default = null) - { - if ( ! isset($this->{$property})) { - throw new InvalidArgumentException("Property '$property' does not exist."); - } - if (is_null($index)) { - return $this->{$property}; - } - - if ( ! array_key_exists($index, $this->{$property})) { - return $default; - } - - return $this->{$property}[$index]; - } - - /** - * Takes all of the headers and normalizes them in a canonical form. - * - * @param array $headers The request headers. - * @return array An arry of headers with the header name normalized - */ - protected function normalizeHeaders(array $headers) - { - $normalized = array(); - foreach ($headers as $key => $value) { - $normalized[ucfirst($this->normalizeKey($key))] = $value; - } - - return $normalized; - } - - /** - * Transform header name into canonical form - * - * Taken from the Slim codebase... - * - * @param string $key - * @return string - */ - protected function normalizeKey($key) - { - $key = strtolower($key); - $key = str_replace(array('-', '_'), ' ', $key); - $key = preg_replace('#^http #', '', $key); - $key = ucwords($key); - $key = str_replace(' ', '-', $key); - - return $key; - } -} \ No newline at end of file From bc74aff46db173da01c565d4bc9a3d0868e7543d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:01:11 +0000 Subject: [PATCH 006/270] Added entities --- .../OAuth2/Server/Entities/AbstractToken.php | 188 ++++++++++++++++++ .../OAuth2/Server/Entities/AccessToken.php | 38 ++++ src/League/OAuth2/Server/Entities/Client.php | 58 ++++++ .../OAuth2/Server/Entities/RefreshToken.php | 61 ++++++ src/League/OAuth2/Server/Entities/Scope.php | 58 ++++++ src/League/OAuth2/Server/Entities/Session.php | 188 ++++++++++++++++++ 6 files changed, 591 insertions(+) create mode 100644 src/League/OAuth2/Server/Entities/AbstractToken.php create mode 100644 src/League/OAuth2/Server/Entities/AccessToken.php create mode 100644 src/League/OAuth2/Server/Entities/Client.php create mode 100644 src/League/OAuth2/Server/Entities/RefreshToken.php create mode 100644 src/League/OAuth2/Server/Entities/Scope.php create mode 100644 src/League/OAuth2/Server/Entities/Session.php diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entities/AbstractToken.php new file mode 100644 index 00000000..ad3374d5 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/AbstractToken.php @@ -0,0 +1,188 @@ +storage = $storage; + $this->scopes = new ParameterBag(); + return $this; + } + + /** + * Get storage + * @return AccessTokenInterface + */ + public function getStorage() + { + return $this->storage; + } + + /** + * Set session + * @param \League\OAuth2\Server\Session $session + * @return self + */ + public function setSession(Session $session) + { + $this->session = $session; + return $this; + } + + /** + * Get session + * @return \League\OAuth2\Server\Session + */ + public function getSession() + { + return $this->session; + } + + /** + * Set token TTL + * @param integer $ttl TTL in seconds + * @return self + */ + public function setTTL($ttl = 0) + { + $this->ttl = $ttl; + return $this; + } + + /** + * Get token TTL + * @return integer + */ + public function getTTL() + { + return $this->ttl; + } + + /** + * Set the creation timestamp + * @param integer $timestamp Unix timestamp + * @return self + */ + public function setTimestamp($timestamp = 0) + { + $this->timestamp = $timestamp; + } + + /** + * Get access token creation timestamp + * @return integer Unix timestamp + */ + public function getTimestamp() + { + return $this->timestamp; + } + + /** + * Return creation timestamp + TTL + * @return int + */ + public function getExpireTime() + { + return $this->getTimestamp() + $this->getTTL(); + } + + /** + * Set access token ID + * @param string $id Token ID + * @return self + */ + public function setId($id = null) + { + $this->id = ($id !== null) ? $id : SecureKey::make(); + return $this; + } + + /** + * Get the token ID + * @return string + */ + public function getId() + { + return $this->id; + } + + /** + * Associate a scope + * @param \League\OAuth2\Server\Entities\Scope $scope + * @return self + */ + public function associateScope($scope) + { + if (!$this->scopes->has($scope->getId())) { + $this->scopes->set($scope->getId(), $scope); + } + + return $this; + } + + /** + * Check if access token has an associated scope + * @param string $scope Scope to check + * @return bool + */ + public function hasScope($scope) + { + return $this->scopes->has($scope); + } + + /** + * Return all associated scopes + * @return ParameterBag + */ + public function getScopes() + { + return $this->scopes; + } + + /** + * Save the token to the database + * @return self + */ + abstract function save(); +} diff --git a/src/League/OAuth2/Server/Entities/AccessToken.php b/src/League/OAuth2/Server/Entities/AccessToken.php new file mode 100644 index 00000000..b0ce4bc0 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/AccessToken.php @@ -0,0 +1,38 @@ +getStorage()->createAccessToken( + $this->getId(), + $this->getExpireTime(), + $this->getSession()->getId() + ); + + // Associate the scope with the token + foreach ($this->getScopes() as $scope) { + $this->getStorage()->associateScope($this->getId(), $scope->getId()); + } + + return $this; + } +} diff --git a/src/League/OAuth2/Server/Entities/Client.php b/src/League/OAuth2/Server/Entities/Client.php new file mode 100644 index 00000000..59781892 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/Client.php @@ -0,0 +1,58 @@ +id = $id; + return $this; + } + + public function getId() + { + return $this->id; + } + + public function setSecret($secret) + { + $this->secret = $secret; + return $this; + } + + public function getSecret() + { + return $this->secret; + } + + public function setName($name) + { + $this->name = $name; + return $this; + } + + public function getName() + { + return $this->name; + } + + public function setRedirectUri($redirectUri) + { + $this->redirectUri = $redirectUri; + return $this; + } + + public function getRedirectUri() + { + return $this->redirectUri; + } +} \ No newline at end of file diff --git a/src/League/OAuth2/Server/Entities/RefreshToken.php b/src/League/OAuth2/Server/Entities/RefreshToken.php new file mode 100644 index 00000000..2900bec2 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/RefreshToken.php @@ -0,0 +1,61 @@ +accessToken = $accessToken; + return $this; + } + + /** + * Return access token + * @return AccessToken + */ + public function getAccessToken() + { + return $this->accessToken; + } + + /** + * (@inheritdoc) + */ + public function save() + { + /*$this->getStorage()->createAccessToken( + $this->getId(), + $this->getExpireTime(), + $this->getAccessToken()->getId() + ); + + // Associate the scope with the token + foreach ($this->getScopes() as $scope) { + $this->getStorage()->associateScope($this->getId(), $scope->getId()); + }*/ + } +} diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entities/Scope.php new file mode 100644 index 00000000..acbd86c4 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/Scope.php @@ -0,0 +1,58 @@ +id = $id; + return $this; + } + + public function getId() + { + return $this->id; + } + + public function setScope($scope) + { + $this->scope = $scope; + return $this; + } + + public function getScope() + { + return $this->scope; + } + + public function setName($name) + { + $this->name = $name; + return $this; + } + + public function getName() + { + return $this->name; + } + + public function setDescription($description) + { + $this->description = $description; + return $this; + } + + public function getDescription() + { + return $this->description; + } +} \ No newline at end of file diff --git a/src/League/OAuth2/Server/Entities/Session.php b/src/League/OAuth2/Server/Entities/Session.php new file mode 100644 index 00000000..38b89877 --- /dev/null +++ b/src/League/OAuth2/Server/Entities/Session.php @@ -0,0 +1,188 @@ +storage = $storage; + $this->scopes = new ParameterBag(); + return $this; + } + + /** + * Get storage + * @return SessionInterface + */ + public function getStorage() + { + return $this->storage; + } + + public function setId($id) + { + $this->id = $id; + return $this; + } + + public function getId() + { + return $this->id; + } + + /** + * Associate a scope + * @param \League\OAuth2\Server\Entities\Scope $scope + * @return self + */ + public function associateScope($scope) + { + if (!$this->scopes->has($scope->getId())) { + $this->scopes->set($scope->getId(), $scope); + } + + return $this; + } + + /** + * Check if access token has an associated scope + * @param string $scope Scope to check + * @return bool + */ + public function hasScope($scope) + { + return $this->scopes->has($scope); + } + + public function getScopes() + { + return $this->scopes; + } + + public function associateAccessToken(AccessToken $accessToken) + { + $this->accessToken = $accessToken; + } + + public function associateRefreshToken(RefreshToken $refreshToken) + { + $this->refreshToken = $refreshToken; + } + + public function associateAuthCode(AuthCode $authCode) + { + $this->authCode = $authCode; + } + + /** + * Associate a client + * @param League\OAuth2\Server\Client $client The client + * @return self + */ + public function associateClient(Client $client) + { + $this->client = $client; + + return $this; + } + + /** + * Return client + * @return League\OAuth2\Server\Client + */ + public function getClient() + { + return $this->client; + } + + /** + * Set the session owner + * @param string $type The type of the owner (e.g. user, app) + * @param string $id The ID of the owner + * @return self + */ + public function setOwner($type, $id) + { + $this->ownerType = $type; + $this->ownerId = $id; + + return $this; + } + + /** + * Return session owner ID + * @return string + */ + public function getOwnerId() + { + return $this->ownerId; + } + + /** + * Return session owner type + * @return string + */ + public function getOwnerType() + { + return $this->ownerType; + } + + public function save() + { + // Save the session and get an ID + $id = $this->getStorage()->createSession( + $this->getOwnerType(), + $this->getOwnerId(), + $this->getClient()->getId(), + $this->getClient()->getRedirectUri() + ); + + $this->setId($id); + + // Associate the scope with the session + foreach ($this->getScopes() as $scope) { + $this->getStorage()->associateScope($this->getId(), $scope->getId()); + } + } +} From 40490db27f932441f4a65e0c356eea35580baeae Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:01:29 +0000 Subject: [PATCH 007/270] Added ServerException --- .../Server/Exception/ServerException.php | 20 +++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 src/League/OAuth2/Server/Exception/ServerException.php diff --git a/src/League/OAuth2/Server/Exception/ServerException.php b/src/League/OAuth2/Server/Exception/ServerException.php new file mode 100644 index 00000000..4827f47f --- /dev/null +++ b/src/League/OAuth2/Server/Exception/ServerException.php @@ -0,0 +1,20 @@ + + * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Server Exception + */ +class ServerException extends OAuth2Exception +{ + +} \ No newline at end of file From 7a38187076ec198345a3e88c472483fd740807d5 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:01:56 +0000 Subject: [PATCH 008/270] Updated grants --- .../OAuth2/Server/Grant/ClientCredentials.php | 144 +++++++---------- src/League/OAuth2/Server/Grant/GrantTrait.php | 62 +++++-- .../Server/Grant/GrantTypeInterface.php | 6 +- src/League/OAuth2/Server/Grant/Password.php | 151 ++++++++++-------- 4 files changed, 190 insertions(+), 173 deletions(-) diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index aa072d09..7d9bff3b 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -11,9 +11,12 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Request; use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Exception; +use League\OAuth2\Server\Entities\AccessToken; +use League\OAuth2\Server\Entities\Client; +use League\OAuth2\Server\Entities\Session; +use League\OAuth2\Server\Entities\Scope; +use League\OAuth2\Server\Exception\ClientException; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -22,8 +25,8 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Client credentials grant class */ -class ClientCredentials implements GrantTypeInterface { - +class ClientCredentials implements GrantTypeInterface +{ use GrantTrait; /** @@ -42,7 +45,7 @@ class ClientCredentials implements GrantTypeInterface { * AuthServer instance * @var AuthServer */ - protected $authServer = null; + protected $server = null; /** * Access token expires in override @@ -50,115 +53,78 @@ class ClientCredentials implements GrantTypeInterface { */ protected $accessTokenTTL = null; - /** - * Return the identifier - * @return string - */ - public function getIdentifier() - { - return $this->identifier; - } - - /** - * Return the response type - * @return string - */ - public function getResponseType() - { - return $this->responseType; - } - - /** - * Override the default access token expire time - * @param int $accessTokenTTL - * @return void - */ - public function setAccessTokenTTL($accessTokenTTL) - { - $this->accessTokenTTL = $accessTokenTTL; - } - /** * Complete the client credentials grant * @param null|array $inputParams * @return array */ - public function completeFlow($inputParams = null) + public function completeFlow() { // Get the required params - $authParams = $this->authServer->getParam(array('client_id', 'client_secret'), 'post', $inputParams); - - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_id'), 0); + $clientId = $this->server->getRequest()->request->get('client_id', null); + if (is_null($clientId)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_id'), + 0 + ); } - if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_secret'), 0); + $clientSecret = $this->server->getRequest()->request->get('client_secret', null); + if (is_null($clientSecret)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_secret'), + 0 + ); } // Validate client ID and client secret - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], null, $this->identifier); + $clientDetails = $this->server->getStorage('client')->getClient( + $clientId, + $clientSecret, + null, + $this->getIdentifier() + ); if ($clientDetails === false) { - throw new Exception\ClientException(Authorization::getExceptionMessage('invalid_client'), 8); + throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); } - $authParams['client_details'] = $clientDetails; + $client = new Client; + $client->setId($clientDetails['id']); + $client->setSecret($clientDetails['secret']); // Validate any scopes that are in the request - $scope = $this->authServer->getParam('scope', 'post', $inputParams, ''); - $scopes = explode($this->authServer->getScopeDelimeter(), $scope); - - for ($i = 0; $i < count($scopes); $i++) { - $scopes[$i] = trim($scopes[$i]); - if ($scopes[$i] === '') unset($scopes[$i]); // Remove any junk scopes - } - - if ($this->authServer->scopeParamRequired() === true && $this->authServer->getDefaultScope() === null && count($scopes) === 0) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'scope'), 0); - } elseif (count($scopes) === 0 && $this->authServer->getDefaultScope() !== null) { - if (is_array($this->authServer->getDefaultScope())) { - $scopes = $this->authServer->getDefaultScope(); - } else { - $scopes = array($this->authServer->getDefaultScope()); - } - } - - $authParams['scopes'] = array(); - - foreach ($scopes as $scope) { - $scopeDetails = $this->authServer->getStorage('scope')->getScope($scope, $authParams['client_id'], $this->identifier); - - if ($scopeDetails === false) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_scope'), $scope), 4); - } - - $authParams['scopes'][] = $scopeDetails; - } - - // Generate an access token - $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; + $scopeParam = $this->server->getRequest()->request->get('scope', ''); + $scopes = $this->validateScopes($scopeParam); // Create a new session - $sessionId = $this->authServer->getStorage('session')->createSession($authParams['client_id'], 'client', $authParams['client_id']); + $session = new Session($this->server->getStorage('session')); + $session->setOwner('client', $client->getId()); + $session->associateClient($client); - // Add the access token - $accessTokenId = $this->authServer->getStorage('session')->associateAccessToken($sessionId, $accessToken, $accessTokenExpires); + // Generate an access token + $accessToken = new AccessToken($this->server->getStorage('access_token')); + $accessToken->setId(SecureKey::make()); + $accessToken->setTimestamp(time()); + $accessToken->setTTL($this->server->getAccessTokenTTL()); - // Associate scopes with the new session - foreach ($authParams['scopes'] as $scope) - { - $this->authServer->getStorage('session')->associateScope($accessTokenId, $scope['id']); + // Associate scopes with the session and access token + foreach ($scopes as $scope) { + $accessToken->associateScope($scope); + $session->associateScope($scope); } - $response = array( - 'access_token' => $accessToken, + // Save everything + $session->save(); + $accessToken->setSession($session); + $accessToken->save(); + + $response = [ + 'access_token' => $accessToken->getId(), 'token_type' => 'Bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn - ); + 'expires' => $accessToken->getExpireTime(), + 'expires_in' => $accessToken->getTTL() + ]; return $response; } diff --git a/src/League/OAuth2/Server/Grant/GrantTrait.php b/src/League/OAuth2/Server/Grant/GrantTrait.php index 0d555319..438e34f2 100644 --- a/src/League/OAuth2/Server/Grant/GrantTrait.php +++ b/src/League/OAuth2/Server/Grant/GrantTrait.php @@ -17,18 +17,10 @@ trait GrantTrait { /** * Constructor - * @param Authorization $authServer Authorization server instance * @return void */ - public function __construct(Authorization $authServer = null) + public function __construct() { - // @codeCoverageIgnoreStart - if ($authServer instanceof Authorization) { - trigger_error( - 'Server is now automatically injected into grant as of v3.1 of this library', - E_USER_DEPRECATED - ); - } // @codeCoverageIgnoreEnd } /** @@ -73,13 +65,59 @@ trait GrantTrait { /** * Inject the authorization server into the grant - * @param Authorization $authServer The authorization server instance + * @param Authorization $server The authorization server instance * @return self */ - public function setAuthorizationServer(Authorization $authServer) + public function setAuthorizationServer(Authorization $server) { - $this->authServer = $authServer; + $this->server = $server; return $this; } + public function validateScopes($scopeParam = '') + { + $scopesList = explode($this->server->getScopeDelimeter(), $scopeParam); + + for ($i = 0; $i < count($scopesList); $i++) { + $scopesList[$i] = trim($scopesList[$i]); + if ($scopesList[$i] === '') unset($scopesList[$i]); // Remove any junk scopes + } + + if ( + $this->server->scopeParamRequired() === true && + $this->server->getDefaultScope() === null && + count($scopesList) === 0 + ) { + throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'scope'), 0); + } elseif (count($scopesList) === 0 && $this->server->getDefaultScope() !== null) { + if (is_array($this->server->getDefaultScope())) { + $scopesList = $this->server->getDefaultScope(); + } else { + $scopesList = [0 => $this->server->getDefaultScope()]; + } + } + + $scopes = []; + + foreach ($scopesList as $scopeItem) { + $scopeDetails = $this->server->getStorage('scope')->getScope( + $scopeItem, + $client->getId(), + $this->getIdentifier() + ); + + if ($scopeDetails === false) { + throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_scope'), $scopeItem), 4); + } + + $scope = new Scope($this->server->getStorage('scope')); + $scope->setId($scopeDetails['id']); + $scope->setName($scopeDetails['name']); + + $scopes[] = $scope; + } + + return $scopes; + } + } diff --git a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php index 2301bd4e..18ef774b 100644 --- a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php +++ b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php @@ -23,9 +23,10 @@ interface GrantTypeInterface { /** * Constructor + * * @return void */ - public function __construct(Authorization $authServer = null); + public function __construct(); /** * Complete the grant flow @@ -41,8 +42,7 @@ interface GrantTypeInterface * ) * * - * @param null|array $inputParams Null unless the input parameters have been manually set * @return array An array of parameters to be passed back to the client */ - public function completeFlow($inputParams = null); + public function completeFlow(); } diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index 54410586..91e6e5c3 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -11,9 +11,14 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Request; use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Exception; +use League\OAuth2\Server\Entities\AccessToken; +use League\OAuth2\Server\Entities\Client; +use League\OAuth2\Server\Entities\RefreshToken; +use League\OAuth2\Server\Entities\Session; +use League\OAuth2\Server\Entities\Scope; +use League\OAuth2\Server\Exception\ClientException; +use League\OAuth2\Server\Exception\InvalidGrantTypeException; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -61,7 +66,7 @@ class Password implements GrantTypeInterface { * @param callable $callback The callback function * @return void */ - public function setVerifyCredentialsCallback($callback) + public function setVerifyCredentialsCallback(callable $callback) { $this->callback = $callback; } @@ -73,7 +78,7 @@ class Password implements GrantTypeInterface { protected function getVerifyCredentialsCallback() { if (is_null($this->callback) || ! is_callable($this->callback)) { - throw new Exception\InvalidGrantTypeException('Null or non-callable callback set'); + throw new InvalidGrantTypeException('Null or non-callable callback set on Password grant'); } return $this->callback; @@ -87,100 +92,108 @@ class Password implements GrantTypeInterface { public function completeFlow($inputParams = null) { // Get the required params - $authParams = $this->authServer->getParam(array('client_id', 'client_secret', 'username', 'password'), 'post', $inputParams); - - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_id'), 0); + $clientId = $this->server->getRequest()->request->get('client_id', null); + if (is_null($clientId)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_id'), + 0 + ); } - if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_secret'), 0); + $clientSecret = $this->server->getRequest()->request->get('client_secret', null); + if (is_null($clientSecret)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_secret'), + 0 + ); } - // Validate client credentials - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], null, $this->identifier); + // Validate client ID and client secret + $clientDetails = $this->server->getStorage('client')->getClient( + $clientId, + $clientSecret, + null, + $this->getIdentifier() + ); if ($clientDetails === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_client'), 8); + throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); } - $authParams['client_details'] = $clientDetails; + $client = new Client; + $client->setId($clientDetails['id']); + $client->setSecret($clientDetails['secret']); - if (is_null($authParams['username'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'username'), 0); + + + $username = $this->server->getRequest()->request->get('username', null); + if (is_null($username)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'username'), + 0 + ); } - if (is_null($authParams['password'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'password'), 0); + $password = $this->server->getRequest()->request->get('password', null); + if (is_null($password)) { + throw new ClientException( + sprintf(Authorization::getExceptionMessage('invalid_request'), 'password'), + 0 + ); } // Check if user's username and password are correct - $userId = call_user_func($this->getVerifyCredentialsCallback(), $authParams['username'], $authParams['password']); + $userId = call_user_func($this->getVerifyCredentialsCallback(), $username, $password); if ($userId === false) { throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_credentials'), 0); } // Validate any scopes that are in the request - $scope = $this->authServer->getParam('scope', 'post', $inputParams, ''); - $scopes = explode($this->authServer->getScopeDelimeter(), $scope); - - for ($i = 0; $i < count($scopes); $i++) { - $scopes[$i] = trim($scopes[$i]); - if ($scopes[$i] === '') unset($scopes[$i]); // Remove any junk scopes - } - - if ($this->authServer->scopeParamRequired() === true && $this->authServer->getDefaultScope() === null && count($scopes) === 0) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'scope'), 0); - } elseif (count($scopes) === 0 && $this->authServer->getDefaultScope() !== null) { - if (is_array($this->authServer->getDefaultScope())) { - $scopes = $this->authServer->getDefaultScope(); - } else { - $scopes = array($this->authServer->getDefaultScope()); - } - } - - $authParams['scopes'] = array(); - - foreach ($scopes as $scope) { - $scopeDetails = $this->authServer->getStorage('scope')->getScope($scope, $authParams['client_id'], $this->identifier); - - if ($scopeDetails === false) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_scope'), $scope), 4); - } - - $authParams['scopes'][] = $scopeDetails; - } - - // Generate an access token - $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; + $scopeParam = $this->server->getRequest()->request->get('scope', ''); + $scopes = $this->validateScopes($scopeParam); // Create a new session - $sessionId = $this->authServer->getStorage('session')->createSession($authParams['client_id'], 'user', $userId); + $session = new Session($this->server->getStorage('session')); + $session->setOwner('user', $userId); + $session->associateClient($client); - // Associate an access token with the session - $accessTokenId = $this->authServer->getStorage('session')->associateAccessToken($sessionId, $accessToken, $accessTokenExpires); + // Generate an access token + $accessToken = new AccessToken($this->server->getStorage('access_token')); + $accessToken->setId(SecureKey::make()); + $accessToken->setTimestamp(time()); + $accessToken->setTTL($this->server->getAccessTokenTTL()); - // Associate scopes with the access token - foreach ($authParams['scopes'] as $scope) { - $this->authServer->getStorage('session')->associateScope($accessTokenId, $scope['id']); + // Associate scopes with the session and access token + foreach ($scopes as $scope) { + $accessToken->associateScope($scope); + $session->associateScope($scope); } - $response = array( - 'access_token' => $accessToken, + $response = [ + 'access_token' => $accessToken->getId(), 'token_type' => 'Bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn - ); + 'expires' => $accessToken->getExpireTime(), + 'expires_in' => $accessToken->getTTL() + ]; // Associate a refresh token if set - if ($this->authServer->hasGrantType('refresh_token')) { - $refreshToken = SecureKey::make(); - $refreshTokenTTL = time() + $this->authServer->getGrantType('refresh_token')->getRefreshTokenTTL(); - $this->authServer->getStorage('session')->associateRefreshToken($accessTokenId, $refreshToken, $refreshTokenTTL, $authParams['client_id']); - $response['refresh_token'] = $refreshToken; + if ($this->server->hasGrantType('refresh_token')) { + $refreshToken = new RefreshToken($this->server->getStorage('refresh_token')); + $refreshToken->setId(SecureKey::make()); + $refreshToken->setTimestamp(time()); + $refreshToken->setTTL($this->server->getGrantType('refresh_token')->getRefreshTokenTTL()); + $response['refresh_token'] = $refreshToken->getId(); + } + + // Save everything + $session->save(); + $accessToken->setSession($session); + $accessToken->save(); + + if ($this->server->hasGrantType('refresh_token')) { + $refreshToken->setAccessToken($accessToken); + $refreshToken->save(); } return $response; From e62bc4e98df80564455d7196e1230c85f84ce0a4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:02:34 +0000 Subject: [PATCH 009/270] Updated storage interfaces --- .../Server/Storage/AccessTokenInterface.php | 24 ++ .../Server/Storage/AuthCodeInterface.php | 18 + .../OAuth2/Server/Storage/ClientInterface.php | 30 +- .../Server/Storage/RefreshTokenInterface.php | 18 + .../Server/Storage/SessionInterface.php | 346 ++---------------- 5 files changed, 112 insertions(+), 324 deletions(-) create mode 100644 src/League/OAuth2/Server/Storage/AccessTokenInterface.php create mode 100644 src/League/OAuth2/Server/Storage/AuthCodeInterface.php create mode 100644 src/League/OAuth2/Server/Storage/RefreshTokenInterface.php diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php new file mode 100644 index 00000000..e2e5086d --- /dev/null +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -0,0 +1,24 @@ + + * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Storage; + +interface AccessTokenInterface +{ + public function getToken($token); + + public function getTokenScopes($token); + + public function createAccessToken($token, $expireTime, $sessionId); + + public function associateScope($token, $scopeId); +} diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php new file mode 100644 index 00000000..c8e4831f --- /dev/null +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -0,0 +1,18 @@ + + * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Storage; + +interface AuthCodeInterface +{ + public function getCode($code); +} diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index ac1a485c..2732976b 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -20,21 +20,22 @@ interface ClientInterface * * * # Client ID + redirect URI - * SELECT oauth_clients.id, oauth_clients.secret, oauth_client_endpoints.redirect_uri, oauth_clients.name, - * oauth_clients.auto_approve - * FROM oauth_clients LEFT JOIN oauth_client_endpoints ON oauth_client_endpoints.client_id = oauth_clients.id + * SELECT oauth_clients.id, oauth_clients.secret, oauth_endpoints.redirect_uri, oauth_clients.name + * FROM oauth_clients + * LEFT JOIN oauth_client_endpoints ON oauth_client_endpoints.client_id = oauth_clients.id * WHERE oauth_clients.id = :clientId AND oauth_client_endpoints.redirect_uri = :redirectUri * * # Client ID + client secret - * SELECT oauth_clients.id, oauth_clients.secret, oauth_clients.name, oauth_clients.auto_approve FROM oauth_clients - * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret + * SELECT oauth_clients.id, oauth_clients.secret, oauth_clients.name + * FROM oauth_clients + * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret * * # Client ID + client secret + redirect URI - * SELECT oauth_clients.id, oauth_clients.secret, oauth_client_endpoints.redirect_uri, oauth_clients.name, - * oauth_clients.auto_approve FROM oauth_clients LEFT JOIN oauth_client_endpoints - * ON oauth_client_endpoints.client_id = oauth_clients.id - * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret AND - * oauth_client_endpoints.redirect_uri = :redirectUri + * SELECT oauth_clients.id, oauth_clients.secret, oauth_client_endpoints.redirect_uri, oauth_clients.name + * FROM oauth_clients LEFT JOIN oauth_client_endpoints + * ON oauth_client_endpoints.client_id = oauth_clients.id + * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret AND + * oauth_client_endpoints.redirect_uri = :redirectUri * * * Response: @@ -42,11 +43,10 @@ interface ClientInterface * * Array * ( - * [client_id] => (string) The client ID - * [client secret] => (string) The client secret - * [redirect_uri] => (string) The redirect URI used in this request - * [name] => (string) The name of the client - * [auto_approve] => (bool) Whether the client should auto approve + * [id] => (string) The client ID + * [secret] => (string) The client secret + * [redirect_uri] => (string) The redirect URI used in this request + * [name] => (string) The name of the client * ) * * diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php new file mode 100644 index 00000000..68026121 --- /dev/null +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -0,0 +1,18 @@ + + * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Storage; + +interface RefreshTokenInterface +{ + public function getToken($token, $clientId); +} diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index 051c4dbb..a5cd62f7 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -1,4 +1,5 @@ + * + * + * + * @param int $sessionId + * @return array (As described above) + */ + public function getSession($sessionId); + + /** + * Get a session's scopes + * + * Response: + * + * + * + * + * @param int $sessionId + * @return array (As described aboce) + */ + public function getSessionScopes($sessionId); + /** * Create a new session - * - * Example SQL query: - * - * - * INSERT INTO oauth_sessions (client_id, owner_type, owner_id) - * VALUE (:clientId, :ownerType, :ownerId) - * - * - * @param string $clientId The client ID - * @param string $ownerType The type of the session owner (e.g. "user") - * @param string $ownerId The ID of the session owner (e.g. "123") - * @return int The session ID + * @param string $ownerType Session owner's type (user, client) + * @param string $ownerId Session owner's ID + * @param string $clientId Client ID + * @param string $clientRedirectUri Client redirect URI (default = null) + * @return int Session ID */ - public function createSession($clientId, $ownerType, $ownerId); + public function createSession($ownerType, $ownerId, $clientId, $clientRedirectUri = null); /** - * Delete a session - * - * Example SQL query: - * - * - * DELETE FROM oauth_sessions WHERE client_id = :clientId AND owner_type = :type AND owner_id = :typeId - * - * - * @param string $clientId The client ID - * @param string $ownerType The type of the session owner (e.g. "user") - * @param string $ownerId The ID of the session owner (e.g. "123") + * Associate a scope with a session + * @param int $sessionId + * @param int|string $scopeId The scopes ID might be an integer or string * @return void */ - public function deleteSession($clientId, $ownerType, $ownerId); - - /** - * Associate a redirect URI with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_redirects (session_id, redirect_uri) VALUE (:sessionId, :redirectUri) - * - * - * @param int $sessionId The session ID - * @param string $redirectUri The redirect URI - * @return void - */ - public function associateRedirectUri($sessionId, $redirectUri); - - /** - * Associate an access token with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_access_tokens (session_id, access_token, access_token_expires) - * VALUE (:sessionId, :accessToken, :accessTokenExpire) - * - * - * @param int $sessionId The session ID - * @param string $accessToken The access token - * @param int $expireTime Unix timestamp of the access token expiry time - * @return int The access token ID - */ - public function associateAccessToken($sessionId, $accessToken, $expireTime); - - /** - * Associate a refresh token with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_refresh_tokens (session_access_token_id, refresh_token, refresh_token_expires, - * client_id) VALUE (:accessTokenId, :refreshToken, :expireTime, :clientId) - * - * - * @param int $accessTokenId The access token ID - * @param string $refreshToken The refresh token - * @param int $expireTime Unix timestamp of the refresh token expiry time - * @param string $clientId The client ID - * @return void - */ - public function associateRefreshToken($accessTokenId, $refreshToken, $expireTime, $clientId); - - /** - * Assocate an authorization code with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_authcodes (session_id, auth_code, auth_code_expires) - * VALUE (:sessionId, :authCode, :authCodeExpires) - * - * - * @param int $sessionId The session ID - * @param string $authCode The authorization code - * @param int $expireTime Unix timestamp of the access token expiry time - * @return int The auth code ID - */ - public function associateAuthCode($sessionId, $authCode, $expireTime); - - /** - * Remove an associated authorization token from a session - * - * Example SQL query: - * - * - * DELETE FROM oauth_session_authcodes WHERE session_id = :sessionId - * - * - * @param int $sessionId The session ID - * @return void - */ - public function removeAuthCode($sessionId); - - /** - * Validate an authorization code - * - * Example SQL query: - * - * - * SELECT oauth_sessions.id AS session_id, oauth_session_authcodes.id AS authcode_id FROM oauth_sessions - * JOIN oauth_session_authcodes ON oauth_session_authcodes.`session_id` = oauth_sessions.id - * JOIN oauth_session_redirects ON oauth_session_redirects.`session_id` = oauth_sessions.id WHERE - * oauth_sessions.client_id = :clientId AND oauth_session_authcodes.`auth_code` = :authCode - * AND `oauth_session_authcodes`.`auth_code_expires` >= :time AND - * `oauth_session_redirects`.`redirect_uri` = :redirectUri - * - * - * Expected response: - * - * - * array( - * 'session_id' => (int) - * 'authcode_id' => (int) - * ) - * - * - * @param string $clientId The client ID - * @param string $redirectUri The redirect URI - * @param string $authCode The authorization code - * @return array|bool False if invalid or array as above - */ - public function validateAuthCode($clientId, $redirectUri, $authCode); - - /** - * Validate an access token - * - * Example SQL query: - * - * - * SELECT session_id, oauth_sessions.`client_id`, oauth_sessions.`owner_id`, oauth_sessions.`owner_type` - * FROM `oauth_session_access_tokens` JOIN oauth_sessions ON oauth_sessions.`id` = session_id WHERE - * access_token = :accessToken AND access_token_expires >= UNIX_TIMESTAMP(NOW()) - * - * - * Expected response: - * - * - * array( - * 'session_id' => (int), - * 'client_id' => (string), - * 'owner_id' => (string), - * 'owner_type' => (string) - * ) - * - * - * @param string $accessToken The access token - * @return array|bool False if invalid or an array as above - */ - public function validateAccessToken($accessToken); - - /** - * Removes a refresh token - * - * Example SQL query: - * - * - * DELETE FROM `oauth_session_refresh_tokens` WHERE refresh_token = :refreshToken - * - * - * @param string $refreshToken The refresh token to be removed - * @return void - */ - public function removeRefreshToken($refreshToken); - - /** - * Validate a refresh token - * - * Example SQL query: - * - * - * SELECT session_access_token_id FROM `oauth_session_refresh_tokens` WHERE refresh_token = :refreshToken - * AND refresh_token_expires >= UNIX_TIMESTAMP(NOW()) AND client_id = :clientId - * - * - * @param string $refreshToken The access token - * @param string $clientId The client ID - * @return int|bool The ID of the access token the refresh token is linked to (or false if invalid) - */ - public function validateRefreshToken($refreshToken, $clientId); - - /** - * Get an access token by ID - * - * Example SQL query: - * - * - * SELECT * FROM `oauth_session_access_tokens` WHERE `id` = :accessTokenId - * - * - * Expected response: - * - * - * array( - * 'id' => (int), - * 'session_id' => (int), - * 'access_token' => (string), - * 'access_token_expires' => (int) - * ) - * - * - * @param int $accessTokenId The access token ID - * @return array - */ - public function getAccessToken($accessTokenId); - - /** - * Associate scopes with an auth code (bound to the session) - * - * Example SQL query: - * - * - * INSERT INTO `oauth_session_authcode_scopes` (`oauth_session_authcode_id`, `scope_id`) VALUES - * (:authCodeId, :scopeId) - * - * - * @param int $authCodeId The auth code ID - * @param int $scopeId The scope ID - * @return void - */ - public function associateAuthCodeScope($authCodeId, $scopeId); - - /** - * Get the scopes associated with an auth code - * - * Example SQL query: - * - * - * SELECT scope_id FROM `oauth_session_authcode_scopes` WHERE oauth_session_authcode_id = :authCodeId - * - * - * Expected response: - * - * - * array( - * array( - * 'scope_id' => (int) - * ), - * array( - * 'scope_id' => (int) - * ), - * ... - * ) - * - * - * @param int $oauthSessionAuthCodeId The session ID - * @return array - */ - public function getAuthCodeScopes($oauthSessionAuthCodeId); - - /** - * Associate a scope with an access token - * - * Example SQL query: - * - * - * INSERT INTO `oauth_session_token_scopes` (`session_access_token_id`, `scope_id`) VALUE (:accessTokenId, :scopeId) - * - * - * @param int $accessTokenId The ID of the access token - * @param int $scopeId The ID of the scope - * @return void - */ - public function associateScope($accessTokenId, $scopeId); - - /** - * Get all associated access tokens for an access token - * - * Example SQL query: - * - * - * SELECT oauth_scopes.* FROM oauth_session_token_scopes JOIN oauth_session_access_tokens - * ON oauth_session_access_tokens.`id` = `oauth_session_token_scopes`.`session_access_token_id` - * JOIN oauth_scopes ON oauth_scopes.id = `oauth_session_token_scopes`.`scope_id` - * WHERE access_token = :accessToken - * - * - * Expected response: - * - * - * array ( - * array( - * 'id' => (int), - * 'scope' => (string), - * 'name' => (string), - * 'description' => (string) - * ), - * ... - * ... - * ) - * - * - * @param string $accessToken The access token - * @return array - */ - public function getScopes($accessToken); + public function associateScope($sessionId, $scopeId); } From 5cd420bd5d90e447c1ca665f2386501177e4ae66 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:02:49 +0000 Subject: [PATCH 010/270] Updated resource server --- src/League/OAuth2/Server/Resource.php | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 9f1720ca..ab9b91e6 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -11,7 +11,6 @@ namespace League\OAuth2\Server; -use OutOfBoundsException; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -114,10 +113,14 @@ class Resource /** * Gets the Request object. It will create one from the globals if one is not set. * - * @return Symfony\Component\HttpFoundation\Request + * @return \Symfony\Component\HttpFoundation\Request */ public function getRequest() { + if ($this->request = null) { + return Symfony\Component\HttpFoundation\Request::createFromGlobals(); + } + return $this->request; } @@ -217,7 +220,6 @@ class Resource $this->accessToken = $accessToken; - // Set the session $sessionResult = $this->sessionStorage->getSession($tokenResult['session_id']); if ($sessionResult === null) { @@ -300,7 +302,6 @@ class Resource } $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; } elseif ($headersOnly === false) { - $method = $this->getRequest()->server->get('REQUEST_METHOD'); $accessToken = $this->getRequest()->request->get($this->tokenKey); } From a3863fec2e8ee29e50f54d9204d561bd5cedda3c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 24 Dec 2013 17:02:58 +0000 Subject: [PATCH 011/270] Updated authorisation server --- src/League/OAuth2/Server/Authorization.php | 134 ++++++++++----------- 1 file changed, 64 insertions(+), 70 deletions(-) diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index c5d63d2e..88865282 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -11,12 +11,18 @@ namespace League\OAuth2\Server; -use League\OAuth2\Server\Util\Request; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Grant\GrantTypeInterface; +use League\OAuth2\Server\Exception\ClientException; +use League\OAuth2\Server\Exception\ServerException; +use League\OAuth2\Server\Exception\InvalidGrantTypeException; +use League\OAuth2\Server\Storage\ClientInterface; +use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Storage\AuthCodeInterface; +use League\OAuth2\Server\Storage\RefreshTokenInterface; +use League\OAuth2\Server\Storage\SessionInterface; +use League\OAuth2\Server\Storage\ScopeInterface; +use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 authorization server class @@ -25,7 +31,6 @@ class Authorization { /** * The delimeter between scopes specified in the scope query string parameter - * * The OAuth 2 specification states it should be a space but most use a comma * @var string */ @@ -118,7 +123,6 @@ class Authorization /** * Exception error HTTP status codes * @var array - * * RFC 6749, section 4.1.2.1.: * No 503 status code for 'temporarily_unavailable', because * "a 503 Service Unavailable HTTP status code cannot be @@ -141,7 +145,6 @@ class Authorization /** * Get all headers that have to be send with the error response - * * @param string $error The error message key * @return array Array with header values */ @@ -198,7 +201,6 @@ class Authorization /** * Get an exception message - * * @param string $error The error message key * @return string The error message */ @@ -209,7 +211,6 @@ class Authorization /** * Get an exception code - * * @param integer $code The exception code * @return string The exception code type */ @@ -220,24 +221,47 @@ class Authorization /** * Create a new OAuth2 authorization server - * - * @param ClientInterface $client A class which inherits from Storage/ClientInterface - * @param SessionInterface $session A class which inherits from Storage/SessionInterface - * @param ScopeInterface $scope A class which inherits from Storage/ScopeInterface */ - public function __construct(ClientInterface $client, SessionInterface $session, ScopeInterface $scope) + public function __construct() { - $this->storages = array( - 'client' => $client, - 'session' => $session, - 'scope' => $scope - ); + $this->storages = []; + } + + public function setClientStorage(ClientInterface $client) + { + $this->storages['client'] = $client; + } + + public function setSessionStorage(SessionInterface $session) + { + $this->storages['session'] = $session; + } + + public function setAccessTokenStorage(AccessTokenInterface $accessToken) + { + $this->storages['access_token'] = $accessToken; + } + + public function setRefreshTokenStorage(RefreshTokenInterface $refreshToken) + { + $this->storages['refresh_token'] = $refreshToken; + } + + public function setAuthCodeStorage(AuthCodeInterface $authCode) + { + $this->storages['auth_code'] = $authCode; + } + + public function setScopeStorage(ScopeInterface $scope) + { + $this->storages['scope'] = $scope; } /** * Enable support for a grant * @param GrantTypeInterface $grantType A grant class which conforms to Interface/GrantTypeInterface * @param null|string $identifier An identifier for the grant (autodetected if not passed) + * @return self */ public function addGrantType(GrantTypeInterface $grantType, $identifier = null) { @@ -253,12 +277,14 @@ class Authorization if ( ! is_null($grantType->getResponseType())) { $this->responseTypes[] = $grantType->getResponseType(); } + + return $this; } /** * Check if a grant type has been enabled * @param string $identifier The grant type identifier - * @return boolean Returns "true" if enabled, "false" if not + * @return boolean Returns "true" if enabled, "false" if not */ public function hasGrantType($identifier) { @@ -267,7 +293,6 @@ class Authorization /** * Returns response types - * * @return array */ public function getResponseTypes() @@ -278,11 +303,12 @@ class Authorization /** * Require the "scope" paremter in checkAuthoriseParams() * @param boolean $require - * @return void + * @return self */ public function requireScopeParam($require = true) { $this->requireScopeParam = $require; + return $this; } /** @@ -296,7 +322,7 @@ class Authorization /** * Default scope to be used if none is provided and requireScopeParam is false - * @param string|array $default + * @param self */ public function setDefaultScope($default = null) { @@ -336,7 +362,6 @@ class Authorization /** * Get the scope delimeter - * * @return string The scope delimiter (default: ",") */ public function getScopeDelimeter() @@ -346,7 +371,6 @@ class Authorization /** * Set the scope delimiter - * * @param string $scopeDelimeter */ public function setScopeDelimeter($scopeDelimeter = ' ') @@ -376,27 +400,24 @@ class Authorization /** * Sets the Request Object - * - * @param Util\RequestInterface The Request Object + * @param \Symfony\Component\HttpFoundation\Request The Request Object + * @return self */ - public function setRequest(Util\RequestInterface $request) + public function setRequest(Request $request) { $this->request = $request; return $this; } /** - * Gets the Request object. It will create one from the globals if one is not set. - * - * @return Util\RequestInterface + * Gets the Request object. It will create one from the globals if one is not set. + * @return \Symfony\Component\HttpFoundation\Request */ public function getRequest() { if ($this->request === null) { - // @codeCoverageIgnoreStart - $this->request = Request::buildFromGlobals(); + $this->request = \Symfony\Component\HttpFoundation\Request::createFromGlobals(); } - // @codeCoverageIgnoreEnd return $this->request; } @@ -408,26 +429,28 @@ class Authorization */ public function getStorage($obj) { + if (!isset($this->storages[$obj])) { + throw new ServerException('The `'.$obj.'` storage interface has not been registered with the authorization + server'); + } return $this->storages[$obj]; } /** * Issue an access token - * * @param array $inputParams Optional array of parsed $_POST keys - * @return array Authorise request parameters + * @return array Authorise request parameters */ public function issueAccessToken($inputParams = array()) { - $grantType = $this->getParam('grant_type', 'post', $inputParams); - + $grantType = $this->getRequest()->request->get('grant_type'); if (is_null($grantType)) { - throw new Exception\ClientException(sprintf(self::$exceptionMessages['invalid_request'], 'grant_type'), 0); + throw new ClientException(sprintf(self::$exceptionMessages['invalid_request'], 'grant_type'), 0); } // Ensure grant type is one that is recognised and is enabled if ( ! in_array($grantType, array_keys($this->grantTypes))) { - throw new Exception\ClientException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 7); + throw new ClientException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 7); } // Complete the flow @@ -445,35 +468,6 @@ class Authorization return $this->grantTypes[$grantType]; } - throw new Exception\InvalidGrantTypeException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 9); - } - - /** - * Get a parameter from passed input parameters or the Request class - * @param string|array $param Required parameter - * @param string $method Get/put/post/delete - * @param array $inputParams Passed input parameters - * @return mixed 'Null' if parameter is missing - */ - public function getParam($param = '', $method = 'get', $inputParams = array(), $default = null) - { - if (is_string($param)) { - if (isset($inputParams[$param])) { - return $inputParams[$param]; - } elseif ($param === 'client_id' && ! is_null($clientId = $this->getRequest()->server('PHP_AUTH_USER'))) { - return $clientId; - } elseif ($param === 'client_secret' && ! is_null($clientSecret = $this->getRequest()->server('PHP_AUTH_PW'))) { - return $clientSecret; - } else { - return $this->getRequest()->{$method}($param, $default); - } - } else { - $response = array(); - foreach ($param as $p) { - $response[$p] = $this->getParam($p, $method, $inputParams); - } - return $response; - } + throw new InvalidGrantTypeException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 9); } - } From 9d6ecfae46a647a7aae70e8fc23bf4e3e529313b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 26 Dec 2013 20:22:31 +0000 Subject: [PATCH 012/270] Little changes --- src/League/OAuth2/Server/Authorization.php | 58 ++++++++++++++++++---- 1 file changed, 48 insertions(+), 10 deletions(-) diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index 88865282..7466e4f8 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -46,19 +46,19 @@ class Authorization * The registered grant response types * @var array */ - protected $responseTypes = array(); + protected $responseTypes = []; /** * The client, scope and session storage classes * @var array */ - protected $storages = array(); + protected $storages = []; /** * The registered grant types * @var array */ - protected $grantTypes = array(); + protected $grantTypes = []; /** * Require the "scope" parameter to be in checkAuthoriseParams() @@ -88,7 +88,7 @@ class Authorization * Exception error codes * @var array */ - protected static $exceptionCodes = array( + protected static $exceptionCodes = [ 0 => 'invalid_request', 1 => 'unauthorized_client', 2 => 'access_denied', @@ -99,13 +99,13 @@ class Authorization 7 => 'unsupported_grant_type', 8 => 'invalid_client', 9 => 'invalid_grant' - ); + ]; /** * Exception error messages * @var array */ - protected static $exceptionMessages = array( + protected static $exceptionMessages = [ 'invalid_request' => 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', 'unauthorized_client' => 'The client is not authorized to request an access token using this method.', 'access_denied' => 'The resource owner or authorization server denied the request.', @@ -118,7 +118,7 @@ class Authorization 'invalid_grant' => 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. Check the "%s" parameter.', 'invalid_credentials' => 'The user credentials were incorrect.', 'invalid_refresh' => 'The refresh token is invalid.', - ); + ]; /** * Exception error HTTP status codes @@ -128,7 +128,7 @@ class Authorization * "a 503 Service Unavailable HTTP status code cannot be * returned to the client via an HTTP redirect" */ - protected static $exceptionHttpStatusCodes = array( + protected static $exceptionHttpStatusCodes = [ 'invalid_request' => 400, 'unauthorized_client' => 400, 'access_denied' => 401, @@ -150,7 +150,7 @@ class Authorization */ public static function getExceptionHttpHeaders($error) { - $headers = array(); + $headers = []; switch (self::$exceptionHttpStatusCodes[$error]) { case 401: $headers[] = 'HTTP/1.1 401 Unauthorized'; @@ -221,40 +221,78 @@ class Authorization /** * Create a new OAuth2 authorization server + * @return self */ public function __construct() { $this->storages = []; + return $this; } + /** + * Set the client storage + * @param ClientInterface $client + * @return self + */ public function setClientStorage(ClientInterface $client) { $this->storages['client'] = $client; + return $this; } + /** + * Set the session storage + * @param SessionInterface $session + * @return self + */ public function setSessionStorage(SessionInterface $session) { $this->storages['session'] = $session; + return $this; } + /** + * Set the access token storage + * @param AccessTokenInterface $accessToken + * @return self + */ public function setAccessTokenStorage(AccessTokenInterface $accessToken) { $this->storages['access_token'] = $accessToken; + return $this; } + /** + * Set the refresh token storage + * @param RefreshTokenInteface $refreshToken + * @return self + */ public function setRefreshTokenStorage(RefreshTokenInterface $refreshToken) { $this->storages['refresh_token'] = $refreshToken; + return $this; } + /** + * Set the auth code storage + * @param AuthCodeInterface $authCode + * @return self + */ public function setAuthCodeStorage(AuthCodeInterface $authCode) { $this->storages['auth_code'] = $authCode; + return $this; } + /** + * Set the scope storage + * @param ScopeInterface $scope + * @return self + */ public function setScopeStorage(ScopeInterface $scope) { $this->storages['scope'] = $scope; + return $this; } /** @@ -441,7 +479,7 @@ class Authorization * @param array $inputParams Optional array of parsed $_POST keys * @return array Authorise request parameters */ - public function issueAccessToken($inputParams = array()) + public function issueAccessToken($inputParams = []) { $grantType = $this->getRequest()->request->get('grant_type'); if (is_null($grantType)) { From ca4763483dc62a37ba9ed82aee4d82a21870be3b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 26 Dec 2013 20:24:02 +0000 Subject: [PATCH 013/270] Removed old SQL tables --- sql/index.html | 0 sql/mysql.sql | 95 -------------------------------------------------- 2 files changed, 95 deletions(-) delete mode 100644 sql/index.html delete mode 100644 sql/mysql.sql diff --git a/sql/index.html b/sql/index.html deleted file mode 100644 index e69de29b..00000000 diff --git a/sql/mysql.sql b/sql/mysql.sql deleted file mode 100644 index 552b5e02..00000000 --- a/sql/mysql.sql +++ /dev/null @@ -1,95 +0,0 @@ -CREATE TABLE `oauth_clients` ( - `id` CHAR(40) NOT NULL, - `secret` CHAR(40) NOT NULL, - `name` VARCHAR(255) NOT NULL, - `auto_approve` TINYINT(1) NOT NULL DEFAULT '0', - PRIMARY KEY (`id`), - UNIQUE KEY `u_oacl_clse_clid` (`secret`,`id`) -) ENGINE=INNODB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_client_endpoints` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `client_id` char(40) NOT NULL, - `redirect_uri` varchar(255) NOT NULL, - PRIMARY KEY (`id`), - KEY `i_oaclen_clid` (`client_id`), - CONSTRAINT `f_oaclen_clid` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE ON UPDATE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_sessions` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `client_id` char(40) NOT NULL, - `owner_type` enum('user','client') NOT NULL DEFAULT 'user', - `owner_id` varchar(255) NOT NULL, - PRIMARY KEY (`id`), - KEY `i_uase_clid_owty_owid` (`client_id`,`owner_type`,`owner_id`), - CONSTRAINT `f_oase_clid` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE ON UPDATE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_access_tokens` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `session_id` int(10) unsigned NOT NULL, - `access_token` char(40) NOT NULL, - `access_token_expires` int(10) unsigned NOT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_oaseacto_acto_seid` (`access_token`,`session_id`), - KEY `f_oaseto_seid` (`session_id`), - CONSTRAINT `f_oaseto_seid` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_authcodes` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `session_id` int(10) unsigned NOT NULL, - `auth_code` char(40) NOT NULL, - `auth_code_expires` int(10) unsigned NOT NULL, - PRIMARY KEY (`id`), - KEY `session_id` (`session_id`), - CONSTRAINT `oauth_session_authcodes_ibfk_1` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_redirects` ( - `session_id` int(10) unsigned NOT NULL, - `redirect_uri` varchar(255) NOT NULL, - PRIMARY KEY (`session_id`), - CONSTRAINT `f_oasere_seid` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_refresh_tokens` ( - `session_access_token_id` int(10) unsigned NOT NULL, - `refresh_token` char(40) NOT NULL, - `refresh_token_expires` int(10) unsigned NOT NULL, - `client_id` char(40) NOT NULL, - PRIMARY KEY (`session_access_token_id`), - KEY `client_id` (`client_id`), - CONSTRAINT `oauth_session_refresh_tokens_ibfk_1` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE, - CONSTRAINT `f_oasetore_setoid` FOREIGN KEY (`session_access_token_id`) REFERENCES `oauth_session_access_tokens` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_scopes` ( - `id` smallint(5) unsigned NOT NULL AUTO_INCREMENT, - `scope` varchar(255) NOT NULL, - `name` varchar(255) NOT NULL, - `description` varchar(255) DEFAULT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_oasc_sc` (`scope`) -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_token_scopes` ( - `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT, - `session_access_token_id` int(10) unsigned DEFAULT NULL, - `scope_id` smallint(5) unsigned NOT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_setosc_setoid_scid` (`session_access_token_id`,`scope_id`), - KEY `f_oasetosc_scid` (`scope_id`), - CONSTRAINT `f_oasetosc_scid` FOREIGN KEY (`scope_id`) REFERENCES `oauth_scopes` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION, - CONSTRAINT `f_oasetosc_setoid` FOREIGN KEY (`session_access_token_id`) REFERENCES `oauth_session_access_tokens` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8; - -CREATE TABLE `oauth_session_authcode_scopes` ( - `oauth_session_authcode_id` int(10) unsigned NOT NULL, - `scope_id` smallint(5) unsigned NOT NULL, - KEY `oauth_session_authcode_id` (`oauth_session_authcode_id`), - KEY `scope_id` (`scope_id`), - CONSTRAINT `oauth_session_authcode_scopes_ibfk_2` FOREIGN KEY (`scope_id`) REFERENCES `oauth_scopes` (`id`) ON DELETE CASCADE, - CONSTRAINT `oauth_session_authcode_scopes_ibfk_1` FOREIGN KEY (`oauth_session_authcode_id`) REFERENCES `oauth_session_authcodes` (`id`) ON DELETE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8; \ No newline at end of file From 0b1221ac14626d7e9e638dacdbfc949ac76e7996 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 31 Dec 2013 15:35:04 +0000 Subject: [PATCH 014/270] Use http-foundation 2.4.* --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 78283f94..f7e2407b 100644 --- a/composer.json +++ b/composer.json @@ -6,7 +6,7 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "v2.4.0" + "symfony/http-foundation": "v2.4.*" }, "require-dev": { "mockery/mockery": ">=0.7.2", From 2c732a66476e4177fab392ec1057371131b341e1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 31 Dec 2013 15:35:13 +0000 Subject: [PATCH 015/270] PHP error fix --- src/League/OAuth2/Server/Authorization.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index 7466e4f8..8c7337cf 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -141,7 +141,7 @@ class Authorization 'invalid_grant' => 400, 'invalid_credentials' => 400, 'invalid_refresh' => 400, - ); + ]; /** * Get all headers that have to be send with the error response From e9d867ba95fcc69477287bf6a91ea22142784cb0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 31 Dec 2013 15:35:51 +0000 Subject: [PATCH 016/270] Removed `id` property from token entities, just use `token` now --- src/League/OAuth2/Server/Entities/AbstractToken.php | 12 ++++++------ src/League/OAuth2/Server/Entities/AccessToken.php | 4 ++-- src/League/OAuth2/Server/Entities/RefreshToken.php | 10 +++++----- 3 files changed, 13 insertions(+), 13 deletions(-) diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entities/AbstractToken.php index ad3374d5..7a839a9d 100644 --- a/src/League/OAuth2/Server/Entities/AbstractToken.php +++ b/src/League/OAuth2/Server/Entities/AbstractToken.php @@ -12,7 +12,7 @@ abstract class AbstractToken * Access token ID * @var string */ - protected $id = null; + protected $token = null; /** * Access token storage @@ -129,12 +129,12 @@ abstract class AbstractToken /** * Set access token ID - * @param string $id Token ID + * @param string $token Token ID * @return self */ - public function setId($id = null) + public function setToken($token = null) { - $this->id = ($id !== null) ? $id : SecureKey::make(); + $this->token = ($token !== null) ? $token : SecureKey::make(); return $this; } @@ -142,9 +142,9 @@ abstract class AbstractToken * Get the token ID * @return string */ - public function getId() + public function getToken() { - return $this->id; + return $this->token; } /** diff --git a/src/League/OAuth2/Server/Entities/AccessToken.php b/src/League/OAuth2/Server/Entities/AccessToken.php index b0ce4bc0..4f52d32f 100644 --- a/src/League/OAuth2/Server/Entities/AccessToken.php +++ b/src/League/OAuth2/Server/Entities/AccessToken.php @@ -23,14 +23,14 @@ class AccessToken extends AbstractToken public function save() { $this->getStorage()->createAccessToken( - $this->getId(), + $this->getToken(), $this->getExpireTime(), $this->getSession()->getId() ); // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->getStorage()->associateScope($this->getId(), $scope->getId()); + $this->getStorage()->associateScope($this->getToken(), $scope->getId()); } return $this; diff --git a/src/League/OAuth2/Server/Entities/RefreshToken.php b/src/League/OAuth2/Server/Entities/RefreshToken.php index 2900bec2..e8a89d59 100644 --- a/src/League/OAuth2/Server/Entities/RefreshToken.php +++ b/src/League/OAuth2/Server/Entities/RefreshToken.php @@ -47,15 +47,15 @@ class RefreshToken extends AbstractToken */ public function save() { - /*$this->getStorage()->createAccessToken( - $this->getId(), + $this->getStorage()->createAccessToken( + $this->getToken(), $this->getExpireTime(), - $this->getAccessToken()->getId() + $this->getAccessToken()->getToken() ); // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->getStorage()->associateScope($this->getId(), $scope->getId()); - }*/ + $this->getStorage()->associateScope($this->getToken(), $scope->getId()); + } } } From 2d90a09f65391f45be9e930badb78e035901ee47 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 31 Dec 2013 15:36:02 +0000 Subject: [PATCH 017/270] Scopes no longer have names --- src/League/OAuth2/Server/Entities/Scope.php | 26 --------------------- 1 file changed, 26 deletions(-) diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entities/Scope.php index acbd86c4..0b7be0fd 100644 --- a/src/League/OAuth2/Server/Entities/Scope.php +++ b/src/League/OAuth2/Server/Entities/Scope.php @@ -6,10 +6,6 @@ class Scope { protected $id = null; - protected $scope = null; - - protected $name = null; - protected $description = null; public function setId($id) @@ -23,28 +19,6 @@ class Scope return $this->id; } - public function setScope($scope) - { - $this->scope = $scope; - return $this; - } - - public function getScope() - { - return $this->scope; - } - - public function setName($name) - { - $this->name = $name; - return $this; - } - - public function getName() - { - return $this->name; - } - public function setDescription($description) { $this->description = $description; From 0250d8d4d171e3ff5b54a962fb99b5ff8390faf8 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 8 Jan 2014 16:15:29 +0000 Subject: [PATCH 018/270] Too many changes to describe --- composer.json | 6 +- src/League/OAuth2/Server/Authorization.php | 44 ++-- .../OAuth2/Server/Entities/AbstractToken.php | 128 +++++------ .../OAuth2/Server/Entities/AccessToken.php | 27 ++- src/League/OAuth2/Server/Entities/Client.php | 88 +++++++- .../OAuth2/Server/Entities/RefreshToken.php | 36 +-- src/League/OAuth2/Server/Entities/Scope.php | 61 ++++- src/League/OAuth2/Server/Entities/Session.php | 178 ++++++++++----- .../Server/Exception/ClientException.php | 4 +- .../Exception/InvalidAccessTokenException.php | 4 +- .../Exception/InvalidGrantTypeException.php | 4 +- .../Server/Exception/OAuth2Exception.php | 4 +- .../Server/Exception/ServerException.php | 4 +- .../{GrantTrait.php => AbstractGrant.php} | 77 +++++-- src/League/OAuth2/Server/Grant/AuthCode.php | 4 +- .../OAuth2/Server/Grant/ClientCredentials.php | 34 ++- .../Server/Grant/GrantTypeInterface.php | 28 +-- src/League/OAuth2/Server/Grant/Implicit.php | 7 +- src/League/OAuth2/Server/Grant/Password.php | 50 ++--- .../OAuth2/Server/Grant/RefreshToken.php | 211 +++++++----------- src/League/OAuth2/Server/Resource.php | 10 +- .../Server/Storage/AccessTokenInterface.php | 40 +++- src/League/OAuth2/Server/Storage/Adapter.php | 43 ++++ .../Server/Storage/AuthCodeInterface.php | 15 +- .../OAuth2/Server/Storage/ClientInterface.php | 21 +- .../Server/Storage/RefreshTokenInterface.php | 31 ++- .../OAuth2/Server/Storage/ScopeInterface.php | 22 +- .../Server/Storage/SessionInterface.php | 13 +- src/League/OAuth2/Server/Util/RedirectUri.php | 4 +- .../OAuth2/Server/Util/RequestInterface.php | 29 --- src/League/OAuth2/Server/Util/SecureKey.php | 4 +- 31 files changed, 742 insertions(+), 489 deletions(-) rename src/League/OAuth2/Server/Grant/{GrantTrait.php => AbstractGrant.php} (58%) create mode 100644 src/League/OAuth2/Server/Storage/Adapter.php delete mode 100644 src/League/OAuth2/Server/Util/RequestInterface.php diff --git a/composer.json b/composer.json index f7e2407b..69ee3c1a 100644 --- a/composer.json +++ b/composer.json @@ -6,11 +6,11 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "v2.4.*" + "symfony/http-foundation": "2.4.*" }, "require-dev": { - "mockery/mockery": ">=0.7.2", - "league/phpunit-coverage-listener": "~1.0" + "league/phpunit-coverage-listener": "~1.0", + "phpdocumentor/phpdocumentor": "2.*" }, "repositories": [ { diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index 8c7337cf..a4b91d10 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Authorization Server * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -16,6 +16,7 @@ use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Exception\ClientException; use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\Exception\InvalidGrantTypeException; +use League\OAuth2\Server\Storage\StorageWrapper; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\AuthCodeInterface; @@ -231,45 +232,49 @@ class Authorization /** * Set the client storage - * @param ClientInterface $client + * @param ClientInterface $storage * @return self */ - public function setClientStorage(ClientInterface $client) + public function setClientStorage(ClientInterface $storage) { - $this->storages['client'] = $client; + $storage->setServer($this); + $this->storages['client'] = $storage; return $this; } /** * Set the session storage - * @param SessionInterface $session + * @param SessionInterface $storage * @return self */ - public function setSessionStorage(SessionInterface $session) + public function setSessionStorage(SessionInterface $storage) { - $this->storages['session'] = $session; + $storage->setServer($this); + $this->storages['session'] = $storage; return $this; } /** * Set the access token storage - * @param AccessTokenInterface $accessToken + * @param AccessTokenInterface $storage * @return self */ - public function setAccessTokenStorage(AccessTokenInterface $accessToken) + public function setAccessTokenStorage(AccessTokenInterface $storage) { - $this->storages['access_token'] = $accessToken; + $storage->setServer($this); + $this->storages['access_token'] = $storage; return $this; } /** * Set the refresh token storage - * @param RefreshTokenInteface $refreshToken + * @param RefreshTokenInteface $storage * @return self */ - public function setRefreshTokenStorage(RefreshTokenInterface $refreshToken) + public function setRefreshTokenStorage(RefreshTokenInterface $storage) { - $this->storages['refresh_token'] = $refreshToken; + $storage->setServer($this); + $this->storages['refresh_token'] = $storage; return $this; } @@ -280,18 +285,20 @@ class Authorization */ public function setAuthCodeStorage(AuthCodeInterface $authCode) { + $storage->setServer($this); $this->storages['auth_code'] = $authCode; return $this; } /** * Set the scope storage - * @param ScopeInterface $scope + * @param ScopeInterface $storage * @return self */ - public function setScopeStorage(ScopeInterface $scope) + public function setScopeStorage(ScopeInterface $storage) { - $this->storages['scope'] = $scope; + $storage->setServer($this); + $this->storages['scope'] = $storage; return $this; } @@ -359,7 +366,8 @@ class Authorization } /** - * Default scope to be used if none is provided and requireScopeParam is false + * Default scope to be used if none is provided and requireScopeParam() is false + * @param string $default Name of the default scope * @param self */ public function setDefaultScope($default = null) diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entities/AbstractToken.php index 7a839a9d..c5b5b391 100644 --- a/src/League/OAuth2/Server/Entities/AbstractToken.php +++ b/src/League/OAuth2/Server/Entities/AbstractToken.php @@ -1,64 +1,80 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Storage\SessionStorageInterface; -use Symfony\Component\HttpFoundation\ParameterBag; use League\OAuth2\Server\Util\SecureKey; +use League\OAuth2\Server\Exception\ServerException; +use \League\OAuth2\Server\Authorization; +use \League\OAuth2\Server\Resource; +use Symfony\Component\HttpFoundation\ParameterBag; +/** + * Abstract token class + */ abstract class AbstractToken { /** * Access token ID * @var string */ - protected $token = null; + protected $token; /** - * Access token storage - * @var \League\OAuth2\Server\Storage\AccessTokenInterface + * Session ID + * @var string */ - protected $storage = null; - - /** - * Session storage - * @var \League\OAuth2\Server\Storage\SessionInterface - */ - protected $sessionStorage = null; + protected $sessionId; /** * Associated session * @var \League\OAuth2\Server\Session */ - protected $session = null; + protected $session; /** * Session scopes * @var \Symfony\Component\HttpFoundation\ParameterBag */ - protected $scopes = null; + protected $scopes; + + /** + * Token expire time + * @var int + */ + protected $expireTime = 0; + + /** + * Authorization or resource server + * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + */ + protected $server; /** * __construct - * @param mixed $storage + * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server * @return self */ - public function __construct($storage) + public function __construct($server) { - $this->storage = $storage; + if (! $server instanceof Authorization && ! $server instanceof Resource) { + throw new ServerException('No instance of Authorization or Resource server injected'); + } + + $this->server = $server; $this->scopes = new ParameterBag(); return $this; } - /** - * Get storage - * @return AccessTokenInterface - */ - public function getStorage() - { - return $this->storage; - } - /** * Set session * @param \League\OAuth2\Server\Session $session @@ -76,55 +92,35 @@ abstract class AbstractToken */ public function getSession() { - return $this->session; + if ($this->session instanceof Session) { + return $this->session; + } + + if ($this->sessionId !== null) { + $session = $this->server->getStorage('session')->getSession($this->sessionId); + } + + throw new ServerException('No session ID set for this token'); } /** - * Set token TTL - * @param integer $ttl TTL in seconds + * Set the expire time of the token + * @param integer $expireTime Unix time stamp * @return self */ - public function setTTL($ttl = 0) + public function setExpireTime($expireTime) { - $this->ttl = $ttl; + $this->expireTime = $expireTime; return $this; } /** - * Get token TTL - * @return integer - */ - public function getTTL() - { - return $this->ttl; - } - - /** - * Set the creation timestamp - * @param integer $timestamp Unix timestamp - * @return self - */ - public function setTimestamp($timestamp = 0) - { - $this->timestamp = $timestamp; - } - - /** - * Get access token creation timestamp - * @return integer Unix timestamp - */ - public function getTimestamp() - { - return $this->timestamp; - } - - /** - * Return creation timestamp + TTL + * Return token expire time * @return int */ public function getExpireTime() { - return $this->getTimestamp() + $this->getTTL(); + return $this->expireTime; } /** @@ -181,8 +177,14 @@ abstract class AbstractToken } /** - * Save the token to the database - * @return self + * Expire the token + * @return void */ - abstract function save(); + abstract public function expire(); + + /** + * Save the token + * @return void + */ + abstract public function save(); } diff --git a/src/League/OAuth2/Server/Entities/AccessToken.php b/src/League/OAuth2/Server/Entities/AccessToken.php index 4f52d32f..5c48c2d4 100644 --- a/src/League/OAuth2/Server/Entities/AccessToken.php +++ b/src/League/OAuth2/Server/Entities/AccessToken.php @@ -1,28 +1,33 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; -use Symfony\Component\HttpFoundation\ParameterBag; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Exception\InvalidAccessTokenException; +use Symfony\Component\HttpFoundation\ParameterBag; +/** + * Access token entity class + */ class AccessToken extends AbstractToken { /** - * __construct - * @param AccessTokenInterface $storage - * @return self + * {@inheritdoc} */ - public function __construct(AccessTokenInterface $storage) - { - parent::__construct($storage); - } - public function save() { - $this->getStorage()->createAccessToken( + $this->server->getStorage('access_token')->createAccessToken( $this->getToken(), $this->getExpireTime(), $this->getSession()->getId() @@ -30,7 +35,7 @@ class AccessToken extends AbstractToken // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->getStorage()->associateScope($this->getToken(), $scope->getId()); + $this->server->getStorage('access_token')->associateScope($this->getToken(), $scope->getId()); } return $this; diff --git a/src/League/OAuth2/Server/Entities/Client.php b/src/League/OAuth2/Server/Entities/Client.php index 59781892..684a86db 100644 --- a/src/League/OAuth2/Server/Entities/Client.php +++ b/src/League/OAuth2/Server/Entities/Client.php @@ -1,58 +1,144 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; +use League\OAuth2\Server\Exception\ServerException; +use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\Resource; + +/** + * Client entity class + */ class Client { + /** + * Client identifier + * @var string + */ protected $id = null; + /** + * Client secret + * @var string + */ protected $secret = null; + /** + * Client name + * @var string + */ protected $name = null; + /** + * Client redirect URI + * @var string + */ protected $redirectUri = null; + /** + * Authorization or resource server + * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + */ + protected $server; + + /** + * __construct + * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @return self + */ + public function __construct($server) + { + if (! $server instanceof Authorization && ! $server instanceof Resource) { + throw new ServerException('No instance of Authorization or Resource server injected'); + } + } + + /** + * Set the client identifier + * @param string $id + * @return self + */ public function setId($id) { $this->id = $id; return $this; } + /** + * Return the client identifier + * @return string + */ public function getId() { return $this->id; } + /** + * Set the client secret + * @param string $secret + * @return self + */ public function setSecret($secret) { $this->secret = $secret; return $this; } + /** + * Return the client secret + * @return string + */ public function getSecret() { return $this->secret; } + /** + * Set the client name + * @param string $name + * @return self + */ public function setName($name) { $this->name = $name; return $this; } + /** + * Get the client name + * @return string + */ public function getName() { return $this->name; } + /** + * Set the client redirect URI + * @param string $redirectUri + * @return self + */ public function setRedirectUri($redirectUri) { $this->redirectUri = $redirectUri; return $this; } + /** + * Returnt the client redirect URI + * @return string + */ public function getRedirectUri() { return $this->redirectUri; } -} \ No newline at end of file +} diff --git a/src/League/OAuth2/Server/Entities/RefreshToken.php b/src/League/OAuth2/Server/Entities/RefreshToken.php index e8a89d59..8be3fc43 100644 --- a/src/League/OAuth2/Server/Entities/RefreshToken.php +++ b/src/League/OAuth2/Server/Entities/RefreshToken.php @@ -1,30 +1,36 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Storage\RefreshTokenInterface; -use Symfony\Component\HttpFoundation\ParameterBag; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Exception\InvalidAccessTokenException; +use Symfony\Component\HttpFoundation\ParameterBag; +/** + * Refresh token entity class + */ class RefreshToken extends AbstractToken { + /** + * Access token associated to refresh token + * @var \League\OAuth2\Server\Entities\AccessToken + */ protected $accessToken; - /** - * __construct - * @param RefreshTokenInterface $storage - * @return self - */ - public function __construct(RefreshTokenInterface $storage) - { - parent::__construct($storage); - } - /** * Associate an access token - * @param AccessToken $accessToken + * @param \League\OAuth2\Server\Entities\AccessToken $accessToken * @return self */ public function setAccessToken(AccessToken $accessToken) @@ -43,11 +49,11 @@ class RefreshToken extends AbstractToken } /** - * (@inheritdoc) + * {@inheritdoc} */ public function save() { - $this->getStorage()->createAccessToken( + $this->server->getStorage('refresh_token')->createAccessToken( $this->getToken(), $this->getExpireTime(), $this->getAccessToken()->getToken() @@ -55,7 +61,7 @@ class RefreshToken extends AbstractToken // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->getStorage()->associateScope($this->getToken(), $scope->getId()); + $this->server->getStorage('refresh_token')->associateScope($this->getToken(), $scope->getId()); } } } diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entities/Scope.php index 0b7be0fd..8d6ec4bd 100644 --- a/src/League/OAuth2/Server/Entities/Scope.php +++ b/src/League/OAuth2/Server/Entities/Scope.php @@ -1,30 +1,87 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; +/** + * Scope entity class + */ class Scope { - protected $id = null; + /** + * Scope identifier + * @var string + */ + protected $id; - protected $description = null; + /** + * Scope description + * @var string + */ + protected $description; + /** + * Authorization or resource server + * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + */ + protected $server; + + /** + * __construct + * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @return self + */ + public function __construct($server) + { + if (! $server instanceof Authorization && ! $server instanceof Resource) { + throw new ServerException('No instance of Authorization or Resource server injected'); + } + return $this; + } + + /** + * Set the scope identifer + * @param string $id The scope identifier + * @return self + */ public function setId($id) { $this->id = $id; return $this; } + /** + * Return the scope identifer + * @return string + */ public function getId() { return $this->id; } + /** + * Set the scope's descripton + * @param string $description + * @return self + */ public function setDescription($description) { $this->description = $description; return $this; } + /** + * Return the scope's description + * @return string + */ public function getDescription() { return $this->description; diff --git a/src/League/OAuth2/Server/Entities/Session.php b/src/League/OAuth2/Server/Entities/Session.php index 38b89877..050f4c5e 100644 --- a/src/League/OAuth2/Server/Entities/Session.php +++ b/src/League/OAuth2/Server/Entities/Session.php @@ -1,71 +1,112 @@ + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ namespace League\OAuth2\Server\Entities; -use OutOfBoundsException; use League\OAuth2\Server\Exception\OAuth2Exception; use League\OAuth2\Server\Storage\SessionInterface; +use League\OAuth2\Server\Exception\ServerException; +use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\Resource; use Symfony\Component\HttpFoundation\ParameterBag; +/** + * Session entity grant + */ class Session { /** - * Session ID + * Session identifier * @var string */ - protected $id = null; - - protected $clientId = null; - - protected $ownerId = null; - - protected $ownerType = null; - - protected $authCode = null; - - protected $accessToken = null; - - protected $refreshToken = null; + protected $id; /** - * Session storage - * @var \League\OAuth2\Server\Storage\SessionInterface + * Client identifier + * @var string */ - protected $storage = null; + protected $clientId; + + /** + * Session owner identifier + * @var string + */ + protected $ownerId; + + /** + * Session owner type (e.g. "user") + * @var string + */ + protected $ownerType; + + /** + * Auth code + * @var \League\OAuth2\Server\Entities\AuthCode + */ + protected $authCode; + + /** + * Access token + * @var \League\OAuth2\Server\Entities\AccessToken + */ + protected $accessToken; + + /** + * Refresh token + * @var \League\OAuth2\Server\Entities\RefreshToken + */ + protected $refreshToken; /** * Session scopes * @var \Symfony\Component\HttpFoundation\ParameterBag */ - protected $scopes = null; + protected $scopes; /** - * Constuctor - * @param SessionInterface $storage + * Authorization or resource server + * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + */ + protected $server; + + /** + * __construct + * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server * @return self */ - public function __construct(SessionInterface $storage) + public function __construct($server) { - $this->storage = $storage; + if (! $server instanceof Authorization && ! $server instanceof Resource) { + throw new ServerException('No instance of Authorization or Resource server injected'); + } + $this->scopes = new ParameterBag(); return $this; } /** - * Get storage - * @return SessionInterface + * Set the session identifier + * @param string $id + * @return self */ - public function getStorage() - { - return $this->storage; - } - public function setId($id) { $this->id = $id; return $this; } + /** + * Return the session identifier + * @return string + */ public function getId() { return $this->id; @@ -95,41 +136,62 @@ class Session return $this->scopes->has($scope); } + /** + * Return all scopes associated with the session + * @return array Array of \League\OAuth2\Server\Entities\Scope + */ public function getScopes() { - return $this->scopes; - } - - public function associateAccessToken(AccessToken $accessToken) - { - $this->accessToken = $accessToken; - } - - public function associateRefreshToken(RefreshToken $refreshToken) - { - $this->refreshToken = $refreshToken; - } - - public function associateAuthCode(AuthCode $authCode) - { - $this->authCode = $authCode; + return $this->scopes->all(); } /** - * Associate a client - * @param League\OAuth2\Server\Client $client The client + * Associate an access token with the session + * @param \League\OAuth2\Server\Entities\AccessToken $accessToken + * @return self + */ + public function associateAccessToken(AccessToken $accessToken) + { + $this->accessToken = $accessToken; + return $this; + } + + /** + * Associate a refresh token with the session + * @param \League\OAuth2\Server\Entities\RefreshToken $refreshToken + * @return self + */ + public function associateRefreshToken(RefreshToken $refreshToken) + { + $this->refreshToken = $refreshToken; + return $this; + } + + /** + * Associate an authorization code with the session + * @param \League\OAuth2\Server\Entities\AuthCode $authCode + * @return self + */ + public function associateAuthCode(AuthCode $authCode) + { + $this->authCode = $authCode; + return $this; + } + + /** + * Associate a client with the session + * @param League\OAuth2\Server\Entities\Client $client The client * @return self */ public function associateClient(Client $client) { $this->client = $client; - return $this; } /** - * Return client - * @return League\OAuth2\Server\Client + * Return the session client + * @return League\OAuth2\Server\Entities\Client */ public function getClient() { @@ -139,7 +201,7 @@ class Session /** * Set the session owner * @param string $type The type of the owner (e.g. user, app) - * @param string $id The ID of the owner + * @param string $id The identifier of the owner * @return self */ public function setOwner($type, $id) @@ -151,7 +213,7 @@ class Session } /** - * Return session owner ID + * Return session owner identifier * @return string */ public function getOwnerId() @@ -168,10 +230,14 @@ class Session return $this->ownerType; } + /** + * Save the session + * @return void + */ public function save() { - // Save the session and get an ID - $id = $this->getStorage()->createSession( + // Save the session and get an identifier + $id = $this->server->getStorage('session')->createSession( $this->getOwnerType(), $this->getOwnerId(), $this->getClient()->getId(), @@ -182,7 +248,7 @@ class Session // Associate the scope with the session foreach ($this->getScopes() as $scope) { - $this->getStorage()->associateScope($this->getId(), $scope->getId()); + $this->server->getStorage('session')->associateScope($this->getId(), $scope->getId()); } } } diff --git a/src/League/OAuth2/Server/Exception/ClientException.php b/src/League/OAuth2/Server/Exception/ClientException.php index e9839a74..e7f60dd9 100644 --- a/src/League/OAuth2/Server/Exception/ClientException.php +++ b/src/League/OAuth2/Server/Exception/ClientException.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Client Exception * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php index b9bb5462..2f285094 100644 --- a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php +++ b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Invalid Access Token Exception * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php index c6318f8f..7d797c7f 100644 --- a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php +++ b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Invalid Grant Type Exception * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/OAuth2Exception.php b/src/League/OAuth2/Server/Exception/OAuth2Exception.php index 0b8f68a8..d618a47d 100644 --- a/src/League/OAuth2/Server/Exception/OAuth2Exception.php +++ b/src/League/OAuth2/Server/Exception/OAuth2Exception.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Base Exception * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/ServerException.php b/src/League/OAuth2/Server/Exception/ServerException.php index 4827f47f..8f7adcfa 100644 --- a/src/League/OAuth2/Server/Exception/ServerException.php +++ b/src/League/OAuth2/Server/Exception/ServerException.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Server Exception * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/GrantTrait.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php similarity index 58% rename from src/League/OAuth2/Server/Grant/GrantTrait.php rename to src/League/OAuth2/Server/Grant/AbstractGrant.php index 438e34f2..cb27b2ca 100644 --- a/src/League/OAuth2/Server/Grant/GrantTrait.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -1,10 +1,10 @@ - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -12,16 +12,42 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\Entities\Scope; -trait GrantTrait { +/** + * Abstract grant class + */ +abstract class AbstractGrant implements GrantTypeInterface +{ + /** + * Grant identifier + * @var string + */ + protected $identifier = ''; /** - * Constructor - * @return void + * Response type + * @var string */ - public function __construct() - { - } + protected $responseType = null; + + /** + * Callback to authenticate a user's name and password + * @var function + */ + protected $callback = null; + + /** + * AuthServer instance + * @var AuthServer + */ + protected $server = null; + + /** + * Access token expires in override + * @var int + */ + protected $accessTokenTTL = null; /** * Return the identifier @@ -74,6 +100,12 @@ trait GrantTrait { return $this; } + /** + * Given a list of scopes, validate them and return an arrary of Scope entities + * @param string $scopeParam A string of scopes (e.g. "profile email birthday") + * @return array + * @throws ClientException If scope is invalid, or no scopes passed when required + */ public function validateScopes($scopeParam = '') { $scopesList = explode($this->server->getScopeDelimeter(), $scopeParam); @@ -100,24 +132,37 @@ trait GrantTrait { $scopes = []; foreach ($scopesList as $scopeItem) { - $scopeDetails = $this->server->getStorage('scope')->getScope( + $scope = $this->server->getStorage('scope')->getScope( $scopeItem, - $client->getId(), $this->getIdentifier() ); - if ($scopeDetails === false) { + if (($scope instanceof Scope) === false) { throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_scope'), $scopeItem), 4); } - $scope = new Scope($this->server->getStorage('scope')); - $scope->setId($scopeDetails['id']); - $scope->setName($scopeDetails['name']); - $scopes[] = $scope; } return $scopes; } + /** + * Complete the grant flow + * + * Example response: + *
+     *  array(
+     *      'access_token'  =>  (string),   // The access token
+     *      'refresh_token' =>  (string),   // The refresh token (only set if the refresh token grant is enabled)
+     *      'token_type'    =>  'bearer',   // Almost always "bearer" (exceptions: JWT, SAML)
+     *      'expires'       =>  (int),      // The timestamp of when the access token will expire
+     *      'expires_in'    =>  (int)       // The number of seconds before the access token will expire
+     *  )
+     * 
+ * + * @return array An array of parameters to be passed back to the client + */ + abstract public function completeFlow(); + } diff --git a/src/League/OAuth2/Server/Grant/AuthCode.php b/src/League/OAuth2/Server/Grant/AuthCode.php index bf968980..41f0de13 100644 --- a/src/League/OAuth2/Server/Grant/AuthCode.php +++ b/src/League/OAuth2/Server/Grant/AuthCode.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Auth code grant * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index 7d9bff3b..5e718e1d 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Client credentials grant * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -25,10 +25,8 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Client credentials grant class */ -class ClientCredentials implements GrantTypeInterface +class ClientCredentials extends AbstractGrant { - use GrantTrait; - /** * Grant identifier * @var string @@ -78,35 +76,30 @@ class ClientCredentials implements GrantTypeInterface } // Validate client ID and client secret - $clientDetails = $this->server->getStorage('client')->getClient( + $client = $this->server->getStorage('client')->getClient( $clientId, $clientSecret, null, $this->getIdentifier() ); - if ($clientDetails === false) { + if (($client instanceof Client) === false) { throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); } - $client = new Client; - $client->setId($clientDetails['id']); - $client->setSecret($clientDetails['secret']); - // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->request->get('scope', ''); $scopes = $this->validateScopes($scopeParam); // Create a new session - $session = new Session($this->server->getStorage('session')); + $session = new Session(); $session->setOwner('client', $client->getId()); $session->associateClient($client); // Generate an access token - $accessToken = new AccessToken($this->server->getStorage('access_token')); - $accessToken->setId(SecureKey::make()); - $accessToken->setTimestamp(time()); - $accessToken->setTTL($this->server->getAccessTokenTTL()); + $accessToken = new AccessToken(); + $accessToken->setToken(SecureKey::make()); + $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token foreach ($scopes as $scope) { @@ -115,18 +108,17 @@ class ClientCredentials implements GrantTypeInterface } // Save everything - $session->save(); + $session->save($this->server->getStorage('session')); $accessToken->setSession($session); - $accessToken->save(); + $accessToken->save($this->server->getStorage('access_token')); $response = [ - 'access_token' => $accessToken->getId(), + 'access_token' => $accessToken->getToken(), 'token_type' => 'Bearer', 'expires' => $accessToken->getExpireTime(), - 'expires_in' => $accessToken->getTTL() + 'expires_in' => $this->server->getAccessTokenTTL() ]; return $response; } - } diff --git a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php index 18ef774b..f71d6186 100644 --- a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php +++ b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Grant type interface * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -19,30 +19,14 @@ use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; +/** + * Grant type interface + */ interface GrantTypeInterface { - /** - * Constructor - * - * @return void - */ - public function __construct(); - /** * Complete the grant flow - * - * Example response: - * - * array( - * 'access_token' => (string), // The access token - * 'refresh_token' => (string), // The refresh token (only set if the refresh token grant is enabled) - * 'token_type' => 'bearer', // Almost always "bearer" (exceptions: JWT, SAML) - * 'expires' => (int), // The timestamp of when the access token will expire - * 'expires_in' => (int) // The number of seconds before the access token will expire - * ) - * - * - * @return array An array of parameters to be passed back to the client + * @return array */ public function completeFlow(); } diff --git a/src/League/OAuth2/Server/Grant/Implicit.php b/src/League/OAuth2/Server/Grant/Implicit.php index a41c05a6..33eb3491 100644 --- a/src/League/OAuth2/Server/Grant/Implicit.php +++ b/src/League/OAuth2/Server/Grant/Implicit.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 implicit grant * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -52,10 +52,9 @@ class Implicit implements GrantTypeInterface { /** * Complete the client credentials grant - * @param null|array $inputParams * @return array */ - public function completeFlow($authParams = null) + public function completeFlow() { // Remove any old sessions the user might have $this->authServer->getStorage('session')->deleteSession($authParams['client_id'], 'user', $authParams['user_id']); diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index 91e6e5c3..85231dff 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Password grant * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -27,10 +27,8 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Password grant class */ -class Password implements GrantTypeInterface { - - use GrantTrait; - +class Password extends AbstractGrant +{ /** * Grant identifier * @var string @@ -109,23 +107,17 @@ class Password implements GrantTypeInterface { } // Validate client ID and client secret - $clientDetails = $this->server->getStorage('client')->getClient( + $client = $this->server->getStorage('client')->getClient( $clientId, $clientSecret, null, $this->getIdentifier() ); - if ($clientDetails === false) { + if (($client instanceof Client) === false) { throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); } - $client = new Client; - $client->setId($clientDetails['id']); - $client->setSecret($clientDetails['secret']); - - - $username = $this->server->getRequest()->request->get('username', null); if (is_null($username)) { throw new ClientException( @@ -146,7 +138,7 @@ class Password implements GrantTypeInterface { $userId = call_user_func($this->getVerifyCredentialsCallback(), $username, $password); if ($userId === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_credentials'), 0); + throw new ClientException($this->server->getExceptionMessage('invalid_credentials'), 0); } // Validate any scopes that are in the request @@ -154,15 +146,14 @@ class Password implements GrantTypeInterface { $scopes = $this->validateScopes($scopeParam); // Create a new session - $session = new Session($this->server->getStorage('session')); + $session = new Session($this->server); $session->setOwner('user', $userId); $session->associateClient($client); // Generate an access token - $accessToken = new AccessToken($this->server->getStorage('access_token')); - $accessToken->setId(SecureKey::make()); - $accessToken->setTimestamp(time()); - $accessToken->setTTL($this->server->getAccessTokenTTL()); + $accessToken = new AccessToken($this->server); + $accessToken->setToken(SecureKey::make()); + $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token foreach ($scopes as $scope) { @@ -171,29 +162,28 @@ class Password implements GrantTypeInterface { } $response = [ - 'access_token' => $accessToken->getId(), + 'access_token' => $accessToken->getToken(), 'token_type' => 'Bearer', 'expires' => $accessToken->getExpireTime(), - 'expires_in' => $accessToken->getTTL() + 'expires_in' => $this->server->getAccessTokenTTL() ]; // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { - $refreshToken = new RefreshToken($this->server->getStorage('refresh_token')); - $refreshToken->setId(SecureKey::make()); - $refreshToken->setTimestamp(time()); - $refreshToken->setTTL($this->server->getGrantType('refresh_token')->getRefreshTokenTTL()); - $response['refresh_token'] = $refreshToken->getId(); + $refreshToken = new RefreshToken($this->server); + $refreshToken->setToken(SecureKey::make()); + $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); + $response['refresh_token'] = $refreshToken->getToken(); } // Save everything - $session->save(); + $session->save($this->server->getStorage('session')); $accessToken->setSession($session); - $accessToken->save(); + $accessToken->save($this->server->getStorage('access_token')); if ($this->server->hasGrantType('refresh_token')) { $refreshToken->setAccessToken($accessToken); - $refreshToken->save(); + $refreshToken->save($this->server->getStorage('refresh_token')); } return $response; diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index baea674a..067aaa8a 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Refresh token grant * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -18,50 +18,27 @@ use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; +use League\OAuth2\Server\Entities\RefreshToken as RT; +use League\OAuth2\Server\Entities\AccessToken; +use League\OAuth2\Server\Entities\Session; +use League\OAuth2\Server\Exception\ClientException; /** * Referesh token grant */ -class RefreshToken implements GrantTypeInterface { - - use GrantTrait; - +class RefreshToken extends AbstractGrant +{ /** - * Grant identifier - * @var string + * {@inheritdoc} */ protected $identifier = 'refresh_token'; /** - * Response type - * @var string - */ - protected $responseType = null; - - /** - * AuthServer instance - * @var AuthServer - */ - protected $authServer = null; - - /** - * Access token expires in override - * @var int - */ - protected $accessTokenTTL = null; - - /** - * Refresh token TTL + * Refresh token TTL (default = 604800 | 1 week) * @var integer */ protected $refreshTokenTTL = 604800; - /** - * Rotate refresh tokens - * @var boolean - */ - protected $rotateRefreshTokens = false; - /** * Set the TTL of the refresh token * @param int $refreshTokenTTL @@ -82,126 +59,110 @@ class RefreshToken implements GrantTypeInterface { } /** - * When a new access is token, expire the refresh token used and issue a new one. - * @param boolean $rotateRefreshTokens Set to true to enable (default = false) - * @return void + * {@inheritdoc} */ - public function rotateRefreshTokens($rotateRefreshTokens = false) + public function completeFlow() { - $this->rotateRefreshTokens = $rotateRefreshTokens; - } - - /** - * Complete the refresh token grant - * @param null|array $inputParams - * @return array - */ - public function completeFlow($inputParams = null) - { - // Get the required params - $authParams = $this->authServer->getParam(array('client_id', 'client_secret', 'refresh_token', 'scope'), 'post', $inputParams); - - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_id'), 0); + $clientId = $this->server->getRequest()->request->get('client_id', null); + if (is_null($clientId)) { + throw new Exception\ClientException( + sprintf($this->server->getExceptionMessage('invalid_request'), 'client_id'), + 0 + ); } - if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_secret'), 0); + $clientSecret = $this->server->getRequest()->request->get('client_secret', null); + if (is_null($clientSecret)) { + throw new Exception\ClientException( + sprintf($this->server->getExceptionMessage('invalid_request'), 'client_secret'), + 0 + ); } // Validate client ID and client secret - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], null, $this->identifier); + $client = $this->server->getStorage('client')->getClient( + $clientId, + $clientSecret, + null, + $this->getIdentifier() + ); - if ($clientDetails === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_client'), 8); + if ($client === null) { + throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); } - $authParams['client_details'] = $clientDetails; - - if (is_null($authParams['refresh_token'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'refresh_token'), 0); + $oldRefreshTokenParam = $this->server->getRequest()->request->get('refresh_token', null); + if ($oldRefreshTokenParam === null) { + throw new Exception\ClientException( + sprintf($this->server->getExceptionMessage('invalid_request'), 'refresh_token'), + 0 + ); } // Validate refresh token - $accessTokenId = $this->authServer->getStorage('session')->validateRefreshToken($authParams['refresh_token'], $authParams['client_id']); + $oldRefreshToken = $this->server->getStorage('refresh_token')->getToken($oldRefreshTokenParam); - if ($accessTokenId === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_refresh'), 0); + if (($oldRefreshToken instanceof RT) === false) { + throw new Exception\ClientException($this->server->getExceptionMessage('invalid_refresh'), 0); } - // Get the existing access token - $accessTokenDetails = $this->authServer->getStorage('session')->getAccessToken($accessTokenId); + $oldAccessToken = $oldRefreshToken->getAccessToken(); - // Get the scopes for the existing access token - $scopes = $this->authServer->getStorage('session')->getScopes($accessTokenDetails['access_token']); + // Get the scopes for the original session + $session = $oldAccessToken->getSession(); + $scopes = $session->getScopes(); - // Generate new tokens and associate them to the session - $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; + // Get and validate any requested scopes + $requestedScopesString = $this->server->getRequest()->request->get('scope', ''); + $requestedScopes = $this->validateScopes($requestedScopesString); - // Associate the new access token with the session - $newAccessTokenId = $this->authServer->getStorage('session')->associateAccessToken($accessTokenDetails['session_id'], $accessToken, $accessTokenExpires); + // If no new scopes are requested then give the access token the original session scopes + if (count($requestedScopes) === 0) { + $newScopes = $scopes; + } else { + // The OAuth spec says that a refreshed access token can have the original scopes or fewer so ensure + // the request doesn't include any new scopes - if ($this->rotateRefreshTokens === true) { + foreach ($requestedScopes as $requestedScope) { + // if () + } - // Generate a new refresh token - $refreshToken = SecureKey::make(); - $refreshTokenExpires = time() + $this->getRefreshTokenTTL(); - - // Revoke the old refresh token - $this->authServer->getStorage('session')->removeRefreshToken($authParams['refresh_token']); - - // Associate the new refresh token with the new access token - $this->authServer->getStorage('session')->associateRefreshToken($newAccessTokenId, $refreshToken, $refreshTokenExpires, $authParams['client_id']); + $newScopes = $requestedScopes; } - // There isn't a request for reduced scopes so assign the original ones (or we're not rotating scopes) - if ( ! isset($authParams['scope'])) { + // Generate a new access token and assign it the correct sessions + $newAccessToken = new AccessToken(); + $newAccessToken->setToken(SecureKey::make()); + $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + $newAccessToken->setSession($session); - foreach ($scopes as $scope) { - $this->authServer->getStorage('session')->associateScope($newAccessTokenId, $scope['id']); - } - - } elseif ( isset($authParams['scope']) && $this->rotateRefreshTokens === true) { - - // The request is asking for reduced scopes and rotate tokens is enabled - $reqestedScopes = explode($this->authServer->getScopeDelimeter(), $authParams['scope']); - - for ($i = 0; $i < count($reqestedScopes); $i++) { - $reqestedScopes[$i] = trim($reqestedScopes[$i]); - if ($reqestedScopes[$i] === '') unset($reqestedScopes[$i]); // Remove any junk scopes - } - - // Check that there aren't any new scopes being included - $existingScopes = array(); - foreach ($scopes as $s) { - $existingScopes[] = $s['scope']; - } - - foreach ($reqestedScopes as $reqScope) { - if ( ! in_array($reqScope, $existingScopes)) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'scope'), 0); - } - - // Associate with the new access token - $scopeDetails = $this->authServer->getStorage('scope')->getScope($reqScope, $authParams['client_id'], $this->identifier); - $this->authServer->getStorage('session')->associateScope($newAccessTokenId, $scopeDetails['id']); - } + foreach ($newScopes as $newScope) { + $newAccessToken->associateScope($newScope); } - $response = array( - 'access_token' => $accessToken, - 'token_type' => 'bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn - ); + // Expire the old token and save the new one + $oldAccessToken->expire($this->server->getStorage('access_token')); + $newAccessToken->save($this->server->getStorage('access_token')); - if ($this->rotateRefreshTokens === true) { - $response['refresh_token'] = $refreshToken; - } + $response = [ + 'access_token' => $newAccessToken->getToken(), + 'token_type' => 'Bearer', + 'expires' => $newAccessToken->getExpireTime(), + 'expires_in' => $this->server->getAccessTokenTTL() + ]; + + // Expire the old refresh token + $oldRefreshToken->expire($this->server->getStorage('refresh_token')); + + // Generate a new refresh token + $newRefreshToken = new RT(); + $newRefreshToken->setToken(SecureKey::make()); + $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); + $newRefreshToken->setAccessToken($newAccessToken); + $newRefreshToken->save($this->server->getStorage('refresh_token')); + + $response['refresh_token'] = $newRefreshToken->getToken(); return $response; } - } diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index ab9b91e6..1e2ea1f4 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Resource Server * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -257,10 +257,8 @@ class Resource /** * Checks if the presented access token has the given scope(s) - * - * @param array|string An array of scopes or a single scope as a string - * - * @return bool Returns bool if all scopes are found, false if any fail + * @param array|string $scopes An array of scopes or a single scope as a string + * @return bool Returns bool if all scopes are found, false if any fail */ public function hasScope($scopes) { diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php index e2e5086d..79d2edb9 100644 --- a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -1,24 +1,56 @@ - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Access token interface + */ interface AccessTokenInterface { + /** + * Get an instance of Entites\AccessToken + * @param string $token The access token + * @return \League\OAuth2\Server\Entities\AccessToken + */ public function getToken($token); + /** + * Get the scopes for an access token + * @param string $token The access token + * @return array Array of \League\OAuth2\Server\Entities\Scope + */ public function getTokenScopes($token); + /** + * Creates a new access token + * @param string $token The access token + * @param integer $expireTime The expire time expressed as a unix timestamp + * @param string|integer $sessionId The session ID + * @return \League\OAuth2\Server\Entities\AccessToken + */ public function createAccessToken($token, $expireTime, $sessionId); - public function associateScope($token, $scopeId); + /** + * Associate a scope with an acess token + * @param string $token The access token + * @param string $scope The scope + * @return void + */ + public function associateScope($token, $scope); + + /** + * Delete an access token + * @param string $token The access token to delete + * @return void + */ + public function delete($token); } diff --git a/src/League/OAuth2/Server/Storage/Adapter.php b/src/League/OAuth2/Server/Storage/Adapter.php new file mode 100644 index 00000000..07414491 --- /dev/null +++ b/src/League/OAuth2/Server/Storage/Adapter.php @@ -0,0 +1,43 @@ + + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Storage; + +/** + * Storage adapter class + */ +class Adapter +{ + /** + * Server + * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + */ + protected $server; + + /** + * Set the server + * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + */ + public function setServer($server) + { + $this->server = $server; + return $this; + } + + /** + * Return the server + * @return \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + */ + protected function getServer() + { + return $this->server; + } +} diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php index c8e4831f..58add25d 100644 --- a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -1,18 +1,25 @@ - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Auth code storage interface + */ interface AuthCodeInterface { + /** + * Get the auth code + * @param string $code + * @return \League\OAuth2\Server\Entities\AuthCode + */ public function getCode($code); } diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index 2732976b..b21e4194 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -2,15 +2,18 @@ /** * OAuth 2.0 Client storage interface * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Client storage interface + */ interface ClientInterface { /** @@ -38,23 +41,11 @@ interface ClientInterface * oauth_client_endpoints.redirect_uri = :redirectUri * * - * Response: - * - * - * Array - * ( - * [id] => (string) The client ID - * [secret] => (string) The client secret - * [redirect_uri] => (string) The redirect URI used in this request - * [name] => (string) The name of the client - * ) - * - * * @param string $clientId The client's ID * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") * @param string $grantType The grant type used in the request (default = "null") - * @return bool|array Returns false if the validation fails, array on success + * @return League\OAuth2\Server\Entities\Client|null */ public function getClient($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); } diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php index 68026121..e77fe37d 100644 --- a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -1,18 +1,41 @@ - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Refresh token interface + */ interface RefreshTokenInterface { - public function getToken($token, $clientId); + /** + * Return a new instance of \League\OAuth2\Server\Entities\RefreshToken + * @param string $token + * @return \League\OAuth2\Server\Entities\RefreshToken + */ + public function getToken($token); + + /** + * Create a new refresh token_name + * @param string $token + * @param integer $expireTime + * @param string $accessToken + * @return \League\OAuth2\Server\Entities\RefreshToken + */ + public function createRefreshToken($token, $expireTime, $accessToken); + + /** + * Delete the refresh token + * @param string $token + * @return void + */ + public function delete($token); } diff --git a/src/League/OAuth2/Server/Storage/ScopeInterface.php b/src/League/OAuth2/Server/Storage/ScopeInterface.php index 60efd9ca..a6d8b6ac 100644 --- a/src/League/OAuth2/Server/Storage/ScopeInterface.php +++ b/src/League/OAuth2/Server/Storage/ScopeInterface.php @@ -2,15 +2,18 @@ /** * OAuth 2.0 Scope storage interface * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Scope interface + */ interface ScopeInterface { /** @@ -22,22 +25,9 @@ interface ScopeInterface * SELECT * FROM oauth_scopes WHERE scope = :scope * * - * Response: - * - * - * Array - * ( - * [id] => (int) The scope's ID - * [scope] => (string) The scope itself - * [name] => (string) The scope's name - * [description] => (string) The scope's description - * ) - * - * * @param string $scope The scope - * @param string $clientId The client ID (default = "null") * @param string $grantType The grant type used in the request (default = "null") * @return bool|array If the scope doesn't exist return false */ - public function getScope($scope, $clientId = null, $grantType = null); + public function getScope($scope, $grantType = null); } diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index a5cd62f7..c5bc767e 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -1,27 +1,24 @@ - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Storage; +/** + * Session storage interface + */ interface SessionInterface { /** * Get a session * - * Response: - * - * - * - * * @param int $sessionId * @return array (As described above) */ diff --git a/src/League/OAuth2/Server/Util/RedirectUri.php b/src/League/OAuth2/Server/Util/RedirectUri.php index ced04113..517fca1a 100644 --- a/src/League/OAuth2/Server/Util/RedirectUri.php +++ b/src/League/OAuth2/Server/Util/RedirectUri.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Redirect URI generator * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Util/RequestInterface.php b/src/League/OAuth2/Server/Util/RequestInterface.php deleted file mode 100644 index 00b8dc8e..00000000 --- a/src/League/OAuth2/Server/Util/RequestInterface.php +++ /dev/null @@ -1,29 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Util; - -interface RequestInterface -{ - - public function get($index = null); - - public function post($index = null); - - public function cookie($index = null); - - public function file($index = null); - - public function server($index = null); - - public function header($index = null); - -} diff --git a/src/League/OAuth2/Server/Util/SecureKey.php b/src/League/OAuth2/Server/Util/SecureKey.php index 8ff762c3..6aee6dc1 100644 --- a/src/League/OAuth2/Server/Util/SecureKey.php +++ b/src/League/OAuth2/Server/Util/SecureKey.php @@ -2,9 +2,9 @@ /** * OAuth 2.0 Secure key generator * - * @package php-loep/oauth2-server + * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages + * @copyright Copyright (c) PHP League of Extraordinary Packages * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ From ac2beb08d6bc06ec4d0c6875c15ca90ad9182551 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 10 Jan 2014 12:30:13 +0000 Subject: [PATCH 019/270] Lots of logic implementation fixes --- src/League/OAuth2/Server/Authorization.php | 10 ++-- .../OAuth2/Server/Entities/AbstractToken.php | 56 ++++++++++++------- .../OAuth2/Server/Entities/AccessToken.php | 10 +++- .../OAuth2/Server/Entities/RefreshToken.php | 13 ++++- src/League/OAuth2/Server/Entities/Scope.php | 4 ++ src/League/OAuth2/Server/Entities/Session.php | 38 ++++++++++--- .../OAuth2/Server/Grant/AbstractGrant.php | 28 ++++++++-- .../OAuth2/Server/Grant/ClientCredentials.php | 6 +- src/League/OAuth2/Server/Grant/Password.php | 20 +++---- .../OAuth2/Server/Grant/RefreshToken.php | 17 ++++-- .../Server/Storage/AccessTokenInterface.php | 8 ++- .../Server/Storage/AuthCodeInterface.php | 2 +- .../OAuth2/Server/Storage/ClientInterface.php | 25 +-------- .../Server/Storage/RefreshTokenInterface.php | 4 +- .../OAuth2/Server/Storage/ScopeInterface.php | 2 +- .../Server/Storage/SessionInterface.php | 36 ++++++------ 16 files changed, 168 insertions(+), 111 deletions(-) diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index a4b91d10..3f3342b0 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -476,18 +476,18 @@ class Authorization public function getStorage($obj) { if (!isset($this->storages[$obj])) { - throw new ServerException('The `'.$obj.'` storage interface has not been registered with the authorization - server'); + throw new ServerException( + 'The `'.$obj.'` storage interface has not been registered with the authorization server' + ); } return $this->storages[$obj]; } /** * Issue an access token - * @param array $inputParams Optional array of parsed $_POST keys * @return array Authorise request parameters */ - public function issueAccessToken($inputParams = []) + public function issueAccessToken() { $grantType = $this->getRequest()->request->get('grant_type'); if (is_null($grantType)) { @@ -500,7 +500,7 @@ class Authorization } // Complete the flow - return $this->getGrantType($grantType)->completeFlow($inputParams); + return $this->getGrantType($grantType)->completeFlow(); } /** diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entities/AbstractToken.php index c5b5b391..ddc31140 100644 --- a/src/League/OAuth2/Server/Entities/AbstractToken.php +++ b/src/League/OAuth2/Server/Entities/AbstractToken.php @@ -14,8 +14,8 @@ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Exception\ServerException; -use \League\OAuth2\Server\Authorization; -use \League\OAuth2\Server\Resource; +use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\Resource; use Symfony\Component\HttpFoundation\ParameterBag; /** @@ -29,12 +29,6 @@ abstract class AbstractToken */ protected $token; - /** - * Session ID - * @var string - */ - protected $sessionId; - /** * Associated session * @var \League\OAuth2\Server\Session @@ -71,7 +65,6 @@ abstract class AbstractToken } $this->server = $server; - $this->scopes = new ParameterBag(); return $this; } @@ -96,11 +89,8 @@ abstract class AbstractToken return $this->session; } - if ($this->sessionId !== null) { - $session = $this->server->getStorage('session')->getSession($this->sessionId); - } - - throw new ServerException('No session ID set for this token'); + $this->session = $this->server->getStorage('session')->getByAccessToken($this->token); + return $this->session; } /** @@ -148,10 +138,10 @@ abstract class AbstractToken * @param \League\OAuth2\Server\Entities\Scope $scope * @return self */ - public function associateScope($scope) + public function associateScope(Scope $scope) { - if (!$this->scopes->has($scope->getId())) { - $this->scopes->set($scope->getId(), $scope); + if (!isset($this->scopes[$scope->getId()])) { + $this->scopes[$scope->getId()] = $scope; } return $this; @@ -164,18 +154,44 @@ abstract class AbstractToken */ public function hasScope($scope) { - return $this->scopes->has($scope); + if ($this->scopes === null) { + $this->getScopes(); + } + + return isset($this->scopes[$scope]); } /** - * Return all associated scopes - * @return ParameterBag + * Return all scopes associated with the session + * @return array Array of \League\OAuth2\Server\Entities\Scope */ public function getScopes() { + if ($this->scopes === null) { + $this->scopes = $this->formatScopes( + $this->server->getStorage('access_token')->getScopes($this->getToken()) + ); + } + return $this->scopes; } + /** + * Format the local scopes array + * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @return array + */ + private function formatScopes($unformated = []) + { + $scopes = []; + foreach ($unformated as $scope) { + if ($scope instanceof Scope) { + $scopes[$scope->getId()] = $scope; + } + } + return $scopes; + } + /** * Expire the token * @return void diff --git a/src/League/OAuth2/Server/Entities/AccessToken.php b/src/League/OAuth2/Server/Entities/AccessToken.php index 5c48c2d4..57805674 100644 --- a/src/League/OAuth2/Server/Entities/AccessToken.php +++ b/src/League/OAuth2/Server/Entities/AccessToken.php @@ -27,7 +27,7 @@ class AccessToken extends AbstractToken */ public function save() { - $this->server->getStorage('access_token')->createAccessToken( + $this->server->getStorage('access_token')->create( $this->getToken(), $this->getExpireTime(), $this->getSession()->getId() @@ -40,4 +40,12 @@ class AccessToken extends AbstractToken return $this; } + + /** + * {@inheritdoc} + */ + public function expire() + { + $this->server->getStorage('access_token')->delete($this->getToken()); + } } diff --git a/src/League/OAuth2/Server/Entities/RefreshToken.php b/src/League/OAuth2/Server/Entities/RefreshToken.php index 8be3fc43..7d91f0ad 100644 --- a/src/League/OAuth2/Server/Entities/RefreshToken.php +++ b/src/League/OAuth2/Server/Entities/RefreshToken.php @@ -45,6 +45,9 @@ class RefreshToken extends AbstractToken */ public function getAccessToken() { + if (! $this->accessToken instanceof AccessToken) { + $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this->getToken()); + } return $this->accessToken; } @@ -53,7 +56,7 @@ class RefreshToken extends AbstractToken */ public function save() { - $this->server->getStorage('refresh_token')->createAccessToken( + $this->server->getStorage('refresh_token')->create( $this->getToken(), $this->getExpireTime(), $this->getAccessToken()->getToken() @@ -64,4 +67,12 @@ class RefreshToken extends AbstractToken $this->server->getStorage('refresh_token')->associateScope($this->getToken(), $scope->getId()); } } + + /** + * {@inheritdoc} + */ + public function expire() + { + $this->server->getStorage('refresh_token')->delete($this->getToken()); + } } diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entities/Scope.php index 8d6ec4bd..3e52d203 100644 --- a/src/League/OAuth2/Server/Entities/Scope.php +++ b/src/League/OAuth2/Server/Entities/Scope.php @@ -11,6 +11,10 @@ namespace League\OAuth2\Server\Entities; +use League\OAuth2\Server\Exception\ServerException; +use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\Resource; + /** * Scope entity class */ diff --git a/src/League/OAuth2/Server/Entities/Session.php b/src/League/OAuth2/Server/Entities/Session.php index 050f4c5e..8c1b0d72 100644 --- a/src/League/OAuth2/Server/Entities/Session.php +++ b/src/League/OAuth2/Server/Entities/Session.php @@ -88,7 +88,7 @@ class Session throw new ServerException('No instance of Authorization or Resource server injected'); } - $this->scopes = new ParameterBag(); + $this->server = $server; return $this; } @@ -117,10 +117,10 @@ class Session * @param \League\OAuth2\Server\Entities\Scope $scope * @return self */ - public function associateScope($scope) + public function associateScope(Scope $scope) { - if (!$this->scopes->has($scope->getId())) { - $this->scopes->set($scope->getId(), $scope); + if (!isset($this->scopes[$scope->getId()])) { + $this->scopes[$scope->getId()] = $scope; } return $this; @@ -133,7 +133,11 @@ class Session */ public function hasScope($scope) { - return $this->scopes->has($scope); + if ($this->scopes === null) { + $this->getScopes(); + } + + return isset($this->scopes[$scope]); } /** @@ -142,7 +146,27 @@ class Session */ public function getScopes() { - return $this->scopes->all(); + if ($this->scopes === null) { + $this->scopes = $this->formatScopes($this->server->getStorage('session')->getScopes($this->getId())); + } + + return $this->scopes; + } + + /** + * Format the local scopes array + * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @return array + */ + private function formatScopes($unformated = []) + { + $scopes = []; + foreach ($unformated as $scope) { + if ($scope instanceof Scope) { + $scopes[$scope->getId()] = $scope; + } + } + return $scopes; } /** @@ -237,7 +261,7 @@ class Session public function save() { // Save the session and get an identifier - $id = $this->server->getStorage('session')->createSession( + $id = $this->server->getStorage('session')->create( $this->getOwnerType(), $this->getOwnerId(), $this->getClient()->getId(), diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index cb27b2ca..c800d53c 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -29,25 +29,25 @@ abstract class AbstractGrant implements GrantTypeInterface * Response type * @var string */ - protected $responseType = null; + protected $responseType; /** * Callback to authenticate a user's name and password * @var function */ - protected $callback = null; + protected $callback; /** * AuthServer instance * @var AuthServer */ - protected $server = null; + protected $server; /** * Access token expires in override * @var int */ - protected $accessTokenTTL = null; + protected $accessTokenTTL; /** * Return the identifier @@ -132,7 +132,7 @@ abstract class AbstractGrant implements GrantTypeInterface $scopes = []; foreach ($scopesList as $scopeItem) { - $scope = $this->server->getStorage('scope')->getScope( + $scope = $this->server->getStorage('scope')->get( $scopeItem, $this->getIdentifier() ); @@ -141,12 +141,28 @@ abstract class AbstractGrant implements GrantTypeInterface throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_scope'), $scopeItem), 4); } - $scopes[] = $scope; + $scopes[$scope->getId()] = $scope; } return $scopes; } + /** + * Format the local scopes array + * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @return array + */ + protected function formatScopes($unformated = []) + { + $scopes = []; + foreach ($unformated as $scope) { + if ($scope instanceof Scope) { + $scopes[$scope->getId()] = $scope; + } + } + return $scopes; + } + /** * Complete the grant flow * diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index 5e718e1d..8c573fa5 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -76,7 +76,7 @@ class ClientCredentials extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->getClient( + $client = $this->server->getStorage('client')->get( $clientId, $clientSecret, null, @@ -92,12 +92,12 @@ class ClientCredentials extends AbstractGrant $scopes = $this->validateScopes($scopeParam); // Create a new session - $session = new Session(); + $session = new Session($this->server); $session->setOwner('client', $client->getId()); $session->associateClient($client); // Generate an access token - $accessToken = new AccessToken(); + $accessToken = new AccessToken($this->server); $accessToken->setToken(SecureKey::make()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index 85231dff..a4842ec1 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -39,25 +39,19 @@ class Password extends AbstractGrant * Response type * @var string */ - protected $responseType = null; + protected $responseType; /** * Callback to authenticate a user's name and password * @var function */ - protected $callback = null; - - /** - * AuthServer instance - * @var AuthServer - */ - protected $authServer = null; + protected $callback; /** * Access token expires in override * @var int */ - protected $accessTokenTTL = null; + protected $accessTokenTTL; /** * Set the callback to verify a user's username and password @@ -107,7 +101,7 @@ class Password extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->getClient( + $client = $this->server->getStorage('client')->get( $clientId, $clientSecret, null, @@ -177,13 +171,13 @@ class Password extends AbstractGrant } // Save everything - $session->save($this->server->getStorage('session')); + $session->save(); $accessToken->setSession($session); - $accessToken->save($this->server->getStorage('access_token')); + $accessToken->save(); if ($this->server->hasGrantType('refresh_token')) { $refreshToken->setAccessToken($accessToken); - $refreshToken->save($this->server->getStorage('refresh_token')); + $refreshToken->save(); } return $response; diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index 067aaa8a..b816f277 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -80,7 +80,7 @@ class RefreshToken extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->getClient( + $client = $this->server->getStorage('client')->get( $clientId, $clientSecret, null, @@ -100,7 +100,7 @@ class RefreshToken extends AbstractGrant } // Validate refresh token - $oldRefreshToken = $this->server->getStorage('refresh_token')->getToken($oldRefreshTokenParam); + $oldRefreshToken = $this->server->getStorage('refresh_token')->get($oldRefreshTokenParam); if (($oldRefreshToken instanceof RT) === false) { throw new Exception\ClientException($this->server->getExceptionMessage('invalid_refresh'), 0); @@ -110,7 +110,7 @@ class RefreshToken extends AbstractGrant // Get the scopes for the original session $session = $oldAccessToken->getSession(); - $scopes = $session->getScopes(); + $scopes = $this->formatScopes($session->getScopes()); // Get and validate any requested scopes $requestedScopesString = $this->server->getRequest()->request->get('scope', ''); @@ -124,14 +124,19 @@ class RefreshToken extends AbstractGrant // the request doesn't include any new scopes foreach ($requestedScopes as $requestedScope) { - // if () + if (!isset($scopes[$requestedScope->getId()])) { + throw new Exception\ClientException( + sprintf($this->server->getExceptionMessage('invalid_scope'), $requestedScope->getId()), + 0 + ); + } } $newScopes = $requestedScopes; } // Generate a new access token and assign it the correct sessions - $newAccessToken = new AccessToken(); + $newAccessToken = new AccessToken($this->server); $newAccessToken->setToken(SecureKey::make()); $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); $newAccessToken->setSession($session); @@ -155,7 +160,7 @@ class RefreshToken extends AbstractGrant $oldRefreshToken->expire($this->server->getStorage('refresh_token')); // Generate a new refresh token - $newRefreshToken = new RT(); + $newRefreshToken = new RT($this->server); $newRefreshToken->setToken(SecureKey::make()); $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); $newRefreshToken->setAccessToken($newAccessToken); diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php index 79d2edb9..1e4afdf9 100644 --- a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -21,14 +21,16 @@ interface AccessTokenInterface * @param string $token The access token * @return \League\OAuth2\Server\Entities\AccessToken */ - public function getToken($token); + public function get($token); + + public function getByRefreshToken($refreshToken); /** * Get the scopes for an access token * @param string $token The access token * @return array Array of \League\OAuth2\Server\Entities\Scope */ - public function getTokenScopes($token); + public function getScopes($token); /** * Creates a new access token @@ -37,7 +39,7 @@ interface AccessTokenInterface * @param string|integer $sessionId The session ID * @return \League\OAuth2\Server\Entities\AccessToken */ - public function createAccessToken($token, $expireTime, $sessionId); + public function create($token, $expireTime, $sessionId); /** * Associate a scope with an acess token diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php index 58add25d..e3d2b876 100644 --- a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -21,5 +21,5 @@ interface AuthCodeInterface * @param string $code * @return \League\OAuth2\Server\Entities\AuthCode */ - public function getCode($code); + public function get($code); } diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index b21e4194..705e89f9 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -18,34 +18,11 @@ interface ClientInterface { /** * Validate a client - * - * Example SQL query: - * - * - * # Client ID + redirect URI - * SELECT oauth_clients.id, oauth_clients.secret, oauth_endpoints.redirect_uri, oauth_clients.name - * FROM oauth_clients - * LEFT JOIN oauth_client_endpoints ON oauth_client_endpoints.client_id = oauth_clients.id - * WHERE oauth_clients.id = :clientId AND oauth_client_endpoints.redirect_uri = :redirectUri - * - * # Client ID + client secret - * SELECT oauth_clients.id, oauth_clients.secret, oauth_clients.name - * FROM oauth_clients - * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret - * - * # Client ID + client secret + redirect URI - * SELECT oauth_clients.id, oauth_clients.secret, oauth_client_endpoints.redirect_uri, oauth_clients.name - * FROM oauth_clients LEFT JOIN oauth_client_endpoints - * ON oauth_client_endpoints.client_id = oauth_clients.id - * WHERE oauth_clients.id = :clientId AND oauth_clients.secret = :clientSecret AND - * oauth_client_endpoints.redirect_uri = :redirectUri - * - * * @param string $clientId The client's ID * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") * @param string $grantType The grant type used in the request (default = "null") * @return League\OAuth2\Server\Entities\Client|null */ - public function getClient($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); + public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); } diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php index e77fe37d..eed16f3f 100644 --- a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -21,7 +21,7 @@ interface RefreshTokenInterface * @param string $token * @return \League\OAuth2\Server\Entities\RefreshToken */ - public function getToken($token); + public function get($token); /** * Create a new refresh token_name @@ -30,7 +30,7 @@ interface RefreshTokenInterface * @param string $accessToken * @return \League\OAuth2\Server\Entities\RefreshToken */ - public function createRefreshToken($token, $expireTime, $accessToken); + public function create($token, $expireTime, $accessToken); /** * Delete the refresh token diff --git a/src/League/OAuth2/Server/Storage/ScopeInterface.php b/src/League/OAuth2/Server/Storage/ScopeInterface.php index a6d8b6ac..26454389 100644 --- a/src/League/OAuth2/Server/Storage/ScopeInterface.php +++ b/src/League/OAuth2/Server/Storage/ScopeInterface.php @@ -29,5 +29,5 @@ interface ScopeInterface * @param string $grantType The grant type used in the request (default = "null") * @return bool|array If the scope doesn't exist return false */ - public function getScope($scope, $grantType = null); + public function get($scope, $grantType = null); } diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index c5bc767e..1be23ba8 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -17,25 +17,25 @@ namespace League\OAuth2\Server\Storage; interface SessionInterface { /** - * Get a session - * - * @param int $sessionId - * @return array (As described above) + * Get a session from it's identifier + * @param string $sessionId + * @return \League\OAuth2\Server\Entities\Session */ - public function getSession($sessionId); + public function get($sessionId); + + /** + * Get a session from an access token + * @param string $accessToken The access token + * @return \League\OAuth2\Server\Entities\Session + */ + public function getByAccessToken($accessToken); /** * Get a session's scopes - * - * Response: - * - * - * - * - * @param int $sessionId - * @return array (As described aboce) + * @param integer $sessionId + * @return array Array of \League\OAuth2\Server\Entities\Scope */ - public function getSessionScopes($sessionId); + public function getScopes($sessionId); /** * Create a new session @@ -43,14 +43,14 @@ interface SessionInterface * @param string $ownerId Session owner's ID * @param string $clientId Client ID * @param string $clientRedirectUri Client redirect URI (default = null) - * @return int Session ID + * @return integer The session's ID */ - public function createSession($ownerType, $ownerId, $clientId, $clientRedirectUri = null); + public function create($ownerType, $ownerId, $clientId, $clientRedirectUri = null); /** * Associate a scope with a session - * @param int $sessionId - * @param int|string $scopeId The scopes ID might be an integer or string + * @param integer $sessionId + * @param string $scopeId The scopes ID might be an integer or string * @return void */ public function associateScope($sessionId, $scopeId); From ca3b7d51df8e9819a7992b7d8bd218cea5c736e1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 10 Jan 2014 17:30:12 +0000 Subject: [PATCH 020/270] Added abstract server --- src/League/OAuth2/Server/AbstractServer.php | 73 ++++++++ src/League/OAuth2/Server/Authorization.php | 55 +----- src/League/OAuth2/Server/Resource.php | 180 ++++---------------- 3 files changed, 109 insertions(+), 199 deletions(-) create mode 100644 src/League/OAuth2/Server/AbstractServer.php diff --git a/src/League/OAuth2/Server/AbstractServer.php b/src/League/OAuth2/Server/AbstractServer.php new file mode 100644 index 00000000..3cf125ef --- /dev/null +++ b/src/League/OAuth2/Server/AbstractServer.php @@ -0,0 +1,73 @@ + + * @copyright Copyright (c) PHP League of Extraordinary Packages + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server; + +use Symfony\Component\HttpFoundation\Request; + +/** + * OAuth 2.0 Resource Server + */ + +abstract class AbstractServer +{ + /** + * The request object + * + * @var Util\RequestInterface + */ + protected $request; + + /** + * Storage classes + * @var array + */ + protected $storages = []; + + /** + * Sets the Request Object + * @param \Symfony\Component\HttpFoundation\Request The Request Object + * @return self + */ + public function setRequest(Request $request) + { + $this->request = $request; + return $this; + } + + /** + * Gets the Request object. It will create one from the globals if one is not set. + * @return \Symfony\Component\HttpFoundation\Request + */ + public function getRequest() + { + if ($this->request === null) { + $this->request = \Symfony\Component\HttpFoundation\Request::createFromGlobals(); + } + + return $this->request; + } + + /** + * Return a storage class + * @param string $obj The class required + * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface + */ + public function getStorage($obj) + { + if (!isset($this->storages[$obj])) { + throw new ServerException( + 'The `'.$obj.'` storage interface has not been registered with the authorization server' + ); + } + return $this->storages[$obj]; + } +} \ No newline at end of file diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/Authorization.php index 3f3342b0..ad5ff2f5 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/Authorization.php @@ -28,7 +28,7 @@ use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 authorization server class */ -class Authorization +class Authorization extends AbstractServer { /** * The delimeter between scopes specified in the scope query string parameter @@ -49,12 +49,6 @@ class Authorization */ protected $responseTypes = []; - /** - * The client, scope and session storage classes - * @var array - */ - protected $storages = []; - /** * The registered grant types * @var array @@ -71,7 +65,7 @@ class Authorization * Default scope(s) to be used if none is provided * @var string|array */ - protected $defaultScope = null; + protected $defaultScope; /** * Require the "state" parameter to be in checkAuthoriseParams() @@ -79,12 +73,6 @@ class Authorization */ protected $requireStateParam = false; - /** - * The request object - * @var Util\RequestInterface - */ - protected $request = null; - /** * Exception error codes * @var array @@ -444,45 +432,6 @@ class Authorization return $this; } - /** - * Sets the Request Object - * @param \Symfony\Component\HttpFoundation\Request The Request Object - * @return self - */ - public function setRequest(Request $request) - { - $this->request = $request; - return $this; - } - - /** - * Gets the Request object. It will create one from the globals if one is not set. - * @return \Symfony\Component\HttpFoundation\Request - */ - public function getRequest() - { - if ($this->request === null) { - $this->request = \Symfony\Component\HttpFoundation\Request::createFromGlobals(); - } - - return $this->request; - } - - /** - * Return a storage class - * @param string $obj The class required - * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface - */ - public function getStorage($obj) - { - if (!isset($this->storages[$obj])) { - throw new ServerException( - 'The `'.$obj.'` storage interface has not been registered with the authorization server' - ); - } - return $this->storages[$obj]; - } - /** * Issue an access token * @return array Authorise request parameters diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 1e2ea1f4..028c7f9e 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -11,134 +11,78 @@ namespace League\OAuth2\Server; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Storage\StorageWrapper; use League\OAuth2\Server\Storage\ClientInterface; +use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Storage\AuthCodeInterface; +use League\OAuth2\Server\Storage\SessionInterface; +use League\OAuth2\Server\Storage\ScopeInterface; use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 Resource Server */ -class Resource +class Resource extends AbstractServer { /** * The access token - * * @var League\OAuth2\Server\AccessToken */ - protected $accessToken = null; - - /** - * The session - * - * @var \League\OAuth2\Server\Session - */ - protected $session = null; - - /** - * The request object - * - * @var Util\RequestInterface - */ - protected $request = null; + protected $accessToken; /** * The query string key which is used by clients to present the access token (default: access_token) - * * @var string */ protected $tokenKey = 'access_token'; - /** - * The client ID - * - * @var League\OAuth2\Server\Client - */ - protected $client = null; - - /** - * Session storage - * - * @var League\OAuth2\Server\Storage\SessionInterface - */ - protected $sessionStorage = null; - - /** - * Access token storage - * - * @var League\OAuth2\Server\Storage\AccessTokenInterface - */ - protected $accessTokenStorage = null; - - /** - * Client storage - * - * @var League\OAuth2\Server\Storage\ClientInterface - */ - protected $clientStorage = null; - /** * Initialise the resource server - * - * @param SessionInterface $sessionStorage [description] - * @param AccessTokenInteface $accessTokenStorage [description] - * @param ClientInterface $clientStorage [description] - * + * @param SessionInterface $sessionStorage + * @param AccessTokenInteface $accessTokenStorage + * @param ClientInterface $clientStorage + * @param ScopeInterface $scopeStorage * @return self */ public function __construct( SessionInterface $sessionStorage, - AccessTokenInteface $accessTokenStorage, - ClientInterface $clientStorage + AccessTokenInterface $accessTokenStorage, + ClientInterface $clientStorage, + ScopeInterface $scopeStorage ) { - $this->sessionStorage = $sessionStorage; - $this->accessTokenStorage = $accessTokenStorage; - $this->clientStorage = $clientStorage; + $this->setStorage('session', $sessionStorage); + $this->setStorage('access_token', $accessTokenStorage); + $this->setStorage('client', $clientStorage); + $this->setStorage('scope', $scopeStorage); + return $this; } /** - * Sets the Request Object - * - * @param \Symfony\Component\HttpFoundation\Request The Request Object - * + * Set the storage + * @param string $type Storage type + * @param mixed $storage Storage class * @return self */ - public function setRequest(Request $request) + protected function setStorage($type, $storage) { - $this->request = $request; + $storage->setServer($this); + $this->storages[$type] = $storage; return $this; } - /** - * Gets the Request object. It will create one from the globals if one is not set. - * - * @return \Symfony\Component\HttpFoundation\Request - */ - public function getRequest() - { - if ($this->request = null) { - return Symfony\Component\HttpFoundation\Request::createFromGlobals(); - } - - return $this->request; - } - /** * Returns the query string key for the access token. - * * @return string */ public function getTokenKey() { - return $this->tokenKey; + return $this->accessToken->getToken(); } /** * Sets the query string key for the access token. - * * @param $key The new query string key - * * @return self */ public function setTokenKey($key) @@ -149,105 +93,61 @@ class Resource /** * Gets the access token owner ID - * * @return string */ public function getOwnerId() { - return $this->session->getOwnerId(); + return $this->accessToken->getSession()->getOwnerId(); } /** * Gets the owner type - * * @return string */ public function getOwnerType() { - return $this->session->getOwnerType(); + return $this->accessToken->getSession()->getOwnerType(); } /** * Gets the access token - * * @return string */ public function getAccessToken() { - return $this->accessToken->getId(); + return $this->accessToken->getToken(); } /** * Gets the client ID that created the session - * * @return string */ public function getClientId() { - return $this->client->getId(); + return $this->accessToken->getSession()->getClient()->getId(); } /** * Checks if the access token is valid or not - * * @param $headersOnly Limit Access Token to Authorization header only - * * @return bool */ public function isValid($headersOnly = false) { try { - $accessToken = $this->determineAccessToken($headersOnly); + $accessTokenString = $this->determineAccessToken($headersOnly); } catch (Exception $e) { return false; } // Set the access token - $tokenResult = $this->accessTokenStorage->getToken($accessToken); - if ($tokenResult === null) { - return false; - } + $this->accessToken = $this->storages['access_token']->get($accessTokenString); - $accessToken = new AccessToken; - $accessToken->setId($token); - $accessToken->setTTL($tokenResult['ttl']); - $accessToken->setTimestamp($tokenResult['created']); - - $scopes = $this->accessTokenStorage->getTokenScopes($token); - foreach ($scopes as $scope => $details) { - $accessToken->associateScope($scope, $details); - } - - $this->accessToken = $accessToken; - - // Set the session - $sessionResult = $this->sessionStorage->getSession($tokenResult['session_id']); - if ($sessionResult === null) { - return false; - } - - $session = new Session(); - $session->setOwner($sessionResult['owner_type'], $sessionResult['owner_id']); - - $this->session = $session; - - // Set the client - $clientResult = $this->clientStorage->getClient($sessionResult['client_id']); - if ($clientResult === null) { - return false; - } - - $client = new Client(); - $client->setCredentials($clientResult['client_id'], $clientResult['client_secret']); - - $this->client = $client; - - return true; + return ($this->accessToken instanceof AccessToken); } /** * Get the session scopes - * * @return array */ public function getScopes() @@ -262,25 +162,13 @@ class Resource */ public function hasScope($scopes) { - if (is_string($scopes)) { - return $this->accessToken->hasScope($scopes); - } elseif (is_array($scopes)) { - foreach ($scopes as $scope) { - if (!$this->accessToken->hasScope($scope)) { - return false; - } - } - return true; - } + return $this->accessToken->hasScope($scopes); } /** * Reads in the access token from the headers - * * @param $headersOnly Limit Access Token to Authorization header only - * * @throws Exception\MissingAccessTokenException Thrown if there is no access token presented - * * @return string */ public function determineAccessToken($headersOnly = false) From 69571bc8ef278ab3203297e9e31847e7b9f96ee6 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 10 Jan 2014 17:30:18 +0000 Subject: [PATCH 021/270] Little fixes --- src/League/OAuth2/Server/Entities/AbstractToken.php | 11 +++-------- src/League/OAuth2/Server/Entities/Client.php | 12 +++++------- src/League/OAuth2/Server/Entities/Scope.php | 11 ++++------- src/League/OAuth2/Server/Entities/Session.php | 11 +++-------- 4 files changed, 15 insertions(+), 30 deletions(-) diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entities/AbstractToken.php index ddc31140..eb775c7b 100644 --- a/src/League/OAuth2/Server/Entities/AbstractToken.php +++ b/src/League/OAuth2/Server/Entities/AbstractToken.php @@ -14,8 +14,7 @@ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Exception\ServerException; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Resource; +use League\OAuth2\Server\AbstractServer; use Symfony\Component\HttpFoundation\ParameterBag; /** @@ -55,15 +54,11 @@ abstract class AbstractToken /** * __construct - * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ - public function __construct($server) + public function __construct(AbstractServer $server) { - if (! $server instanceof Authorization && ! $server instanceof Resource) { - throw new ServerException('No instance of Authorization or Resource server injected'); - } - $this->server = $server; return $this; } diff --git a/src/League/OAuth2/Server/Entities/Client.php b/src/League/OAuth2/Server/Entities/Client.php index 684a86db..c4232dab 100644 --- a/src/League/OAuth2/Server/Entities/Client.php +++ b/src/League/OAuth2/Server/Entities/Client.php @@ -12,8 +12,7 @@ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Exception\ServerException; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Resource; +use League\OAuth2\Server\AbstractServer; /** * Client entity class @@ -52,14 +51,13 @@ class Client /** * __construct - * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ - public function __construct($server) + public function __construct(AbstractServer $server) { - if (! $server instanceof Authorization && ! $server instanceof Resource) { - throw new ServerException('No instance of Authorization or Resource server injected'); - } + $this->server = $server; + return $this; } /** diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entities/Scope.php index 3e52d203..8abc3801 100644 --- a/src/League/OAuth2/Server/Entities/Scope.php +++ b/src/League/OAuth2/Server/Entities/Scope.php @@ -12,8 +12,7 @@ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Exception\ServerException; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Resource; +use League\OAuth2\Server\AbstractServer; /** * Scope entity class @@ -40,14 +39,12 @@ class Scope /** * __construct - * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ - public function __construct($server) + public function __construct(AbstractServer $server) { - if (! $server instanceof Authorization && ! $server instanceof Resource) { - throw new ServerException('No instance of Authorization or Resource server injected'); - } + $this->server = $server; return $this; } diff --git a/src/League/OAuth2/Server/Entities/Session.php b/src/League/OAuth2/Server/Entities/Session.php index 8c1b0d72..69dec964 100644 --- a/src/League/OAuth2/Server/Entities/Session.php +++ b/src/League/OAuth2/Server/Entities/Session.php @@ -14,8 +14,7 @@ namespace League\OAuth2\Server\Entities; use League\OAuth2\Server\Exception\OAuth2Exception; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Exception\ServerException; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Resource; +use League\OAuth2\Server\AbstractServer; use Symfony\Component\HttpFoundation\ParameterBag; /** @@ -79,15 +78,11 @@ class Session /** * __construct - * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ - public function __construct($server) + public function __construct(AbstractServer $server) { - if (! $server instanceof Authorization && ! $server instanceof Resource) { - throw new ServerException('No instance of Authorization or Resource server injected'); - } - $this->server = $server; return $this; } From 603efeb80de038c8f9b199ef97c572eab7164118 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 10 Jan 2014 18:01:15 +0000 Subject: [PATCH 022/270] Dropped http-foundation support down to just 2.* --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 69ee3c1a..bdf2423d 100644 --- a/composer.json +++ b/composer.json @@ -6,7 +6,7 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "2.4.*" + "symfony/http-foundation": "2.*" }, "require-dev": { "league/phpunit-coverage-listener": "~1.0", From 3cd5f50e64d626edadf337ea277341a8a06c7c9c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:49:46 +0000 Subject: [PATCH 023/270] Renamed Entities/ folder to Entity/ --- .../{Entities => Entity}/AbstractToken.php | 8 ++--- .../{Entities => Entity}/AccessToken.php | 2 +- .../Server/{Entities => Entity}/Client.php | 4 +-- .../{Entities => Entity}/RefreshToken.php | 6 ++-- .../Server/{Entities => Entity}/Scope.php | 2 +- .../Server/{Entities => Entity}/Session.php | 31 +++++++++++-------- 6 files changed, 29 insertions(+), 24 deletions(-) rename src/League/OAuth2/Server/{Entities => Entity}/AbstractToken.php (94%) rename src/League/OAuth2/Server/{Entities => Entity}/AccessToken.php (96%) rename src/League/OAuth2/Server/{Entities => Entity}/Client.php (95%) rename src/League/OAuth2/Server/{Entities => Entity}/RefreshToken.php (92%) rename src/League/OAuth2/Server/{Entities => Entity}/Scope.php (97%) rename src/League/OAuth2/Server/{Entities => Entity}/Session.php (86%) diff --git a/src/League/OAuth2/Server/Entities/AbstractToken.php b/src/League/OAuth2/Server/Entity/AbstractToken.php similarity index 94% rename from src/League/OAuth2/Server/Entities/AbstractToken.php rename to src/League/OAuth2/Server/Entity/AbstractToken.php index eb775c7b..12d91367 100644 --- a/src/League/OAuth2/Server/Entities/AbstractToken.php +++ b/src/League/OAuth2/Server/Entity/AbstractToken.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Util\SecureKey; @@ -130,7 +130,7 @@ abstract class AbstractToken /** * Associate a scope - * @param \League\OAuth2\Server\Entities\Scope $scope + * @param \League\OAuth2\Server\Entity\Scope $scope * @return self */ public function associateScope(Scope $scope) @@ -158,7 +158,7 @@ abstract class AbstractToken /** * Return all scopes associated with the session - * @return array Array of \League\OAuth2\Server\Entities\Scope + * @return array Array of \League\OAuth2\Server\Entity\Scope */ public function getScopes() { @@ -173,7 +173,7 @@ abstract class AbstractToken /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @param array $unformated Array of \League\OAuth2\Server\Entity\Scope * @return array */ private function formatScopes($unformated = []) diff --git a/src/League/OAuth2/Server/Entities/AccessToken.php b/src/League/OAuth2/Server/Entity/AccessToken.php similarity index 96% rename from src/League/OAuth2/Server/Entities/AccessToken.php rename to src/League/OAuth2/Server/Entity/AccessToken.php index 57805674..b6206b95 100644 --- a/src/League/OAuth2/Server/Entities/AccessToken.php +++ b/src/League/OAuth2/Server/Entity/AccessToken.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; diff --git a/src/League/OAuth2/Server/Entities/Client.php b/src/League/OAuth2/Server/Entity/Client.php similarity index 95% rename from src/League/OAuth2/Server/Entities/Client.php rename to src/League/OAuth2/Server/Entity/Client.php index c4232dab..35f1ebdf 100644 --- a/src/League/OAuth2/Server/Entities/Client.php +++ b/src/League/OAuth2/Server/Entity/Client.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; @@ -45,7 +45,7 @@ class Client /** * Authorization or resource server - * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + * @var \League\OAuth2\Server\AbstractServer */ protected $server; diff --git a/src/League/OAuth2/Server/Entities/RefreshToken.php b/src/League/OAuth2/Server/Entity/RefreshToken.php similarity index 92% rename from src/League/OAuth2/Server/Entities/RefreshToken.php rename to src/League/OAuth2/Server/Entity/RefreshToken.php index 7d91f0ad..2bcb7d8b 100644 --- a/src/League/OAuth2/Server/Entities/RefreshToken.php +++ b/src/League/OAuth2/Server/Entity/RefreshToken.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Storage\RefreshTokenInterface; @@ -24,13 +24,13 @@ class RefreshToken extends AbstractToken { /** * Access token associated to refresh token - * @var \League\OAuth2\Server\Entities\AccessToken + * @var \League\OAuth2\Server\Entity\AccessToken */ protected $accessToken; /** * Associate an access token - * @param \League\OAuth2\Server\Entities\AccessToken $accessToken + * @param \League\OAuth2\Server\Entity\AccessToken $accessToken * @return self */ public function setAccessToken(AccessToken $accessToken) diff --git a/src/League/OAuth2/Server/Entities/Scope.php b/src/League/OAuth2/Server/Entity/Scope.php similarity index 97% rename from src/League/OAuth2/Server/Entities/Scope.php rename to src/League/OAuth2/Server/Entity/Scope.php index 8abc3801..3ffc97d5 100644 --- a/src/League/OAuth2/Server/Entities/Scope.php +++ b/src/League/OAuth2/Server/Entity/Scope.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; diff --git a/src/League/OAuth2/Server/Entities/Session.php b/src/League/OAuth2/Server/Entity/Session.php similarity index 86% rename from src/League/OAuth2/Server/Entities/Session.php rename to src/League/OAuth2/Server/Entity/Session.php index 69dec964..c79a88b0 100644 --- a/src/League/OAuth2/Server/Entities/Session.php +++ b/src/League/OAuth2/Server/Entity/Session.php @@ -9,7 +9,7 @@ * @link http://github.com/php-loep/oauth2-server */ -namespace League\OAuth2\Server\Entities; +namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Exception\OAuth2Exception; use League\OAuth2\Server\Storage\SessionInterface; @@ -32,7 +32,7 @@ class Session * Client identifier * @var string */ - protected $clientId; + protected $client; /** * Session owner identifier @@ -48,19 +48,19 @@ class Session /** * Auth code - * @var \League\OAuth2\Server\Entities\AuthCode + * @var \League\OAuth2\Server\Entity\AuthCode */ protected $authCode; /** * Access token - * @var \League\OAuth2\Server\Entities\AccessToken + * @var \League\OAuth2\Server\Entity\AccessToken */ protected $accessToken; /** * Refresh token - * @var \League\OAuth2\Server\Entities\RefreshToken + * @var \League\OAuth2\Server\Entity\RefreshToken */ protected $refreshToken; @@ -109,7 +109,7 @@ class Session /** * Associate a scope - * @param \League\OAuth2\Server\Entities\Scope $scope + * @param \League\OAuth2\Server\Entity\Scope $scope * @return self */ public function associateScope(Scope $scope) @@ -137,7 +137,7 @@ class Session /** * Return all scopes associated with the session - * @return array Array of \League\OAuth2\Server\Entities\Scope + * @return array Array of \League\OAuth2\Server\Entity\Scope */ public function getScopes() { @@ -150,7 +150,7 @@ class Session /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\Scope * @return array */ private function formatScopes($unformated = []) @@ -166,7 +166,7 @@ class Session /** * Associate an access token with the session - * @param \League\OAuth2\Server\Entities\AccessToken $accessToken + * @param \League\OAuth2\Server\Entity\AccessToken $accessToken * @return self */ public function associateAccessToken(AccessToken $accessToken) @@ -177,7 +177,7 @@ class Session /** * Associate a refresh token with the session - * @param \League\OAuth2\Server\Entities\RefreshToken $refreshToken + * @param \League\OAuth2\Server\Entity\RefreshToken $refreshToken * @return self */ public function associateRefreshToken(RefreshToken $refreshToken) @@ -188,7 +188,7 @@ class Session /** * Associate an authorization code with the session - * @param \League\OAuth2\Server\Entities\AuthCode $authCode + * @param \League\OAuth2\Server\Entity\AuthCode $authCode * @return self */ public function associateAuthCode(AuthCode $authCode) @@ -199,7 +199,7 @@ class Session /** * Associate a client with the session - * @param League\OAuth2\Server\Entities\Client $client The client + * @param League\OAuth2\Server\Entity\Client $client The client * @return self */ public function associateClient(Client $client) @@ -210,10 +210,15 @@ class Session /** * Return the session client - * @return League\OAuth2\Server\Entities\Client + * @return League\OAuth2\Server\Entity\Client */ public function getClient() { + if ($this->client instanceof Client) { + return $this->client; + } + + $this->client = $this->server->getStorage('client')->getBySession($this->getId()); return $this->client; } From a2db7e1929765405ad974661bcc8ff40057f7f97 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:50:03 +0000 Subject: [PATCH 024/270] Removed old tests --- tests/authorization/AuthCodeGrantTest.php | 428 ------------ tests/authorization/AuthServerTest.php | 513 --------------- .../ClientCredentialsGrantTest.php | 411 ------------ tests/authorization/PasswordGrantTest.php | 613 ------------------ tests/authorization/RefreshTokenTest.php | 421 ------------ tests/resource/ResourceServerTest.php | 226 ------- tests/util/RequestTest.php | 87 --- 7 files changed, 2699 deletions(-) delete mode 100644 tests/authorization/AuthCodeGrantTest.php delete mode 100644 tests/authorization/AuthServerTest.php delete mode 100644 tests/authorization/ClientCredentialsGrantTest.php delete mode 100644 tests/authorization/PasswordGrantTest.php delete mode 100644 tests/authorization/RefreshTokenTest.php delete mode 100644 tests/resource/ResourceServerTest.php delete mode 100644 tests/util/RequestTest.php diff --git a/tests/authorization/AuthCodeGrantTest.php b/tests/authorization/AuthCodeGrantTest.php deleted file mode 100644 index fadf90f2..00000000 --- a/tests/authorization/AuthCodeGrantTest.php +++ /dev/null @@ -1,428 +0,0 @@ -client = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope); - } - - /** - * @expectedException PHPUnit_Framework_Error - */ - public function test__construct() - { - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\AuthCode($a); - } - - public function test_setIdentifier() - { - $grant = new League\OAuth2\Server\Grant\AuthCode(); - $grant->setIdentifier('foobar'); - $this->assertEquals($grant->getIdentifier(), 'foobar'); - } - - public function test_setAuthTokenTTL() - { - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\AuthCode(); - $grant->setAuthTokenTTL(30); - - $reflector = new ReflectionClass($grant); - $requestProperty = $reflector->getProperty('authTokenTTL'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($grant); - - $this->assertEquals(30, $v); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_checkAuthoriseParams_noClientId() - { - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $g->checkAuthoriseParams(); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_checkAuthoriseParams_noRedirectUri() - { - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $g->checkAuthoriseParams(array( - 'client_id' => 1234 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_checkAuthoriseParams_noRequiredState() - { - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->requireStateParam(true); - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect' - )); - } - - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 8 - */ - public function test_checkAuthoriseParams_badClient() - { - $this->client->shouldReceive('getClient')->andReturn(false); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_checkAuthoriseParams_missingResponseType() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 3 - */ - public function test_checkAuthoriseParams_badResponseType() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'foo' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_checkAuthoriseParams_missingScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - $a->requireScopeParam(true); - - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'code', - 'scope' => '' - )); - } - - public function test_checkAuthoriseParams_defaultScope() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - $a->setDefaultScope('test.scope'); - $a->requireScopeParam(false); - - $params = $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'code', - 'scope' => '' - )); - - $this->assertArrayHasKey('scopes', $params); - $this->assertEquals(1, count($params['scopes'])); - } - - public function test_checkAuthoriseParams_defaultScopeArray() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - $a->setDefaultScope(array('test.scope', 'test.scope2')); - $a->requireScopeParam(false); - - $params = $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'code', - 'scope' => '' - )); - - $this->assertArrayHasKey('scopes', $params); - $this->assertEquals(2, count($params['scopes'])); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 4 - */ - public function test_checkAuthoriseParams_badScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->scope->shouldReceive('getScope')->andReturn(false); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'code', - 'scope' => 'foo' - )); - } - - public function test_checkAuthoriseParams_passedInput() - { - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $v = $g->checkAuthoriseParams(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'response_type' => 'code', - 'scope' => 'foo', - 'state' => 'xyz' - )); - - $this->assertEquals(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'client_details' => array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - ), - 'response_type' => 'code', - 'scopes' => array( - array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - ) - ), - 'scope' => 'foo', - 'state' => 'xyz' - ), $v); - } - - public function test_checkAuthoriseParams() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $_GET['client_id'] = 1234; - $_GET['redirect_uri'] = 'http://foo/redirect'; - $_GET['response_type'] = 'code'; - $_GET['scope'] = 'foo'; - $_GET['state'] = 'xyz'; - - $request = new League\OAuth2\Server\Util\Request($_GET); - $a->setRequest($request); - - $v = $g->checkAuthoriseParams(); - - $this->assertEquals(array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'client_details' => array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - ), - 'response_type' => 'code', - 'scopes' => array( - array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - ) - ), - 'scope' => 'foo', - 'state' => 'xyz' - ), $v); - } - - - function test_newAuthoriseRequest() - { - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateRedirectUri')->andReturn(null); - $this->session->shouldReceive('associateAuthCode')->andReturn(1); - $this->session->shouldReceive('associateAuthCodeScope')->andReturn(null); - - $a = $this->returnDefault(); - $g = new League\OAuth2\Server\Grant\AuthCode(); - $a->addGrantType($g); - - $params = array( - 'client_id' => 1234, - 'redirect_uri' => 'http://foo/redirect', - 'client_details' => array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - ), - 'response_type' => 'code', - 'scopes' => array( - array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - ) - ) - ); - - $v = $g->newAuthoriseRequest('user', 123, $params); - - $this->assertEquals(40, strlen($v)); - } - - -} \ No newline at end of file diff --git a/tests/authorization/AuthServerTest.php b/tests/authorization/AuthServerTest.php deleted file mode 100644 index 2646fc75..00000000 --- a/tests/authorization/AuthServerTest.php +++ /dev/null @@ -1,513 +0,0 @@ -client = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope); - } - - /** - * @expectedException PHPUnit_Framework_Error - */ - public function test__construct_NoStorage() - { - new League\OAuth2\Server\Authorization; - } - - public function test__contruct_WithStorage() - { - $this->returnDefault(); - } - - public function test_getExceptionMessage() - { - $m = League\OAuth2\Server\Authorization::getExceptionMessage('access_denied'); - - $reflector = new ReflectionClass($this->returnDefault()); - $exceptionMessages = $reflector->getProperty('exceptionMessages'); - $exceptionMessages->setAccessible(true); - $v = $exceptionMessages->getValue(); - - $this->assertEquals($v['access_denied'], $m); - } - - public function test_getExceptionCode() - { - $this->assertEquals('access_denied', League\OAuth2\Server\Authorization::getExceptionType(2)); - } - - public function test_getExceptionHttpHeaders() - { - $this->assertEquals(array('HTTP/1.1 401 Unauthorized'), League\OAuth2\Server\Authorization::getExceptionHttpHeaders('access_denied')); - $this->assertEquals(array('HTTP/1.1 500 Internal Server Error'), League\OAuth2\Server\Authorization::getExceptionHttpHeaders('server_error')); - $this->assertEquals(array('HTTP/1.1 501 Not Implemented'), League\OAuth2\Server\Authorization::getExceptionHttpHeaders('unsupported_grant_type')); - $this->assertEquals(array('HTTP/1.1 400 Bad Request'), League\OAuth2\Server\Authorization::getExceptionHttpHeaders('invalid_refresh')); - } - - public function test_hasGrantType() - { - $a = $this->returnDefault(); - $this->assertFalse($a->hasGrantType('test')); - } - - public function test_addGrantType() - { - $a = $this->returnDefault(); - $grant = M::mock('League\OAuth2\Server\Grant\GrantTypeInterface'); - $grant->shouldReceive('getResponseType')->andReturn('test'); - $grant->shouldReceive('setAuthorizationServer')->andReturn($grant); - $a->addGrantType($grant, 'test'); - - $this->assertTrue($a->hasGrantType('test')); - } - - public function test_addGrantType_noIdentifier() - { - $a = $this->returnDefault(); - $grant = M::mock('League\OAuth2\Server\Grant\GrantTypeInterface'); - $grant->shouldReceive('getIdentifier')->andReturn('test'); - $grant->shouldReceive('getResponseType')->andReturn('test'); - $grant->shouldReceive('setAuthorizationServer')->andReturn($grant); - $a->addGrantType($grant); - - $this->assertTrue($a->hasGrantType('test')); - } - - public function test_getScopeDelimeter() - { - $a = $this->returnDefault(); - $this->assertEquals(' ', $a->getScopeDelimeter()); - } - - public function test_setScopeDelimeter() - { - $a = $this->returnDefault(); - $a->setScopeDelimeter(','); - $this->assertEquals(',', $a->getScopeDelimeter()); - } - - public function test_requireScopeParam() - { - $a = $this->returnDefault(); - $a->requireScopeParam(false); - - $reflector = new ReflectionClass($a); - $requestProperty = $reflector->getProperty('requireScopeParam'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($a); - - $this->assertFalse($v); - } - - public function test_scopeParamRequired() - { - $a = $this->returnDefault(); - $a->requireScopeParam(false); - - $this->assertFalse($a->scopeParamRequired()); - } - - public function test_setDefaultScope() - { - $a = $this->returnDefault(); - $a->setDefaultScope('test.default'); - - $reflector = new ReflectionClass($a); - $requestProperty = $reflector->getProperty('defaultScope'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($a); - - $this->assertEquals('test.default', $v); - } - - public function test_getDefaultScope() - { - $a = $this->returnDefault(); - $a->setDefaultScope('test.default'); - $this->assertEquals('test.default', $a->getDefaultScope()); - } - - public function test_requireStateParam() - { - $a = $this->returnDefault(); - $a->requireStateParam(true); - - $reflector = new ReflectionClass($a); - $requestProperty = $reflector->getProperty('requireStateParam'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($a); - - $this->assertTrue($v); - } - - public function test_getAccessTokenTTL() - { - $a = $this->returnDefault(); - $a->setAccessTokenTTL(7200); - $this->assertEquals(7200, $a->getAccessTokenTTL()); - } - - public function test_setAccessTokenTTL() - { - $a = $this->returnDefault(); - $a->setScopeDelimeter(';'); - $this->assertEquals(';', $a->getScopeDelimeter()); - } - - public function test_setRequest() - { - $a = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $a->setRequest($request); - - $reflector = new ReflectionClass($a); - $requestProperty = $reflector->getProperty('request'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($a); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getRequest() - { - $a = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $a->setRequest($request); - $v = $a->getRequest(); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getStorage() - { - $a = $this->returnDefault(); - $this->assertTrue($a->getStorage('session') instanceof League\OAuth2\Server\Storage\SessionInterface); - } - - public function test_getGrantType() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $reflector = new ReflectionClass($a); - $method = $reflector->getMethod('getGrantType'); - $method->setAccessible(true); - - $result = $method->invoke($a, 'authorization_code'); - - $this->assertTrue($result instanceof League\OAuth2\Server\Grant\GrantTypeInterface); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidGrantTypeException - * @expectedExceptionCode 9 - */ - public function test_getGrantType_fail() - { - $a = $this->returnDefault(); - $a->getGrantType('blah'); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_missingGrantType() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 7 - */ - public function test_issueAccessToken_badGrantType() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array('grant_type' => 'foo')); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_missingClientId() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_missingClientSecret() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_missingRedirectUri() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 8 - */ - public function test_issueAccessToken_badClient() - { - $this->client->shouldReceive('getClient')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_missingCode() - { - $this->client->shouldReceive('getClient')->andReturn(array()); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 9 - */ - public function test_issueAccessToken_badCode() - { - $this->client->shouldReceive('getClient')->andReturn(array()); - $this->session->shouldReceive('validateAuthCode')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'code' => 'foobar' - )); - } - - public function test_issueAccessToken_passedInput() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateAuthCode')->andReturn(array( - 'session_id' => 1, - 'authcode_id' => 1 - )); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('removeAuthCode')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('getAuthCodeScopes')->andReturn(array('scope_id' => 1)); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'authorization_code', - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'code' => 'foobar' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function test_issueAccessToken() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('removeAuthCode')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('getAuthCodeScopes')->andReturn(array('scope_id' => 1)); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $_POST['grant_type'] = 'authorization_code'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['redirect_uri'] = 'http://foo/redirect'; - $_POST['code'] = 'foobar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function test_issueAccessToken_customExpiresIn() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('removeAuthCode')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('getAuthCodeScopes')->andReturn(array('scope_id' => 1)); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\AuthCode(); - $grant->setAccessTokenTTL(30); - $a->addGrantType($grant); - - $_POST['grant_type'] = 'authorization_code'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['redirect_uri'] = 'http://foo/redirect'; - $_POST['code'] = 'foobar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']); - $this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']); - $this->assertEquals(30, $v['expires_in']); - $this->assertEquals(time()+30, $v['expires']); - } - - public function test_issueAccessToken_HTTP_auth() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('removeAuthCode')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('getAuthCodeScopes')->andReturn(array('scope_id' => 1)); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - - $_POST['grant_type'] = 'authorization_code'; - $_SERVER['PHP_AUTH_USER'] = 1234; - $_SERVER['PHP_AUTH_PW'] = 5678; - $_POST['redirect_uri'] = 'http://foo/redirect'; - $_POST['code'] = 'foobar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST, array(), array(), $_SERVER); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function tearDown() { - M::close(); - } -} \ No newline at end of file diff --git a/tests/authorization/ClientCredentialsGrantTest.php b/tests/authorization/ClientCredentialsGrantTest.php deleted file mode 100644 index 0883a825..00000000 --- a/tests/authorization/ClientCredentialsGrantTest.php +++ /dev/null @@ -1,411 +0,0 @@ -client = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_clientCredentialsGrant_missingClientId() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'client_credentials' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_clientCredentialsGrant_missingClientPassword() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 8 - */ - public function test_issueAccessToken_clientCredentialsGrant_badClient() - { - $this->client->shouldReceive('getClient')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_clientCredentialsGrant_missingScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(true); - - $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - public function test_issueAccessToken_clientCredentialsGrant_defaultScope() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'key' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(false); - $a->setDefaultScope('foobar'); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678, - 'scope' => '' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - public function test_issueAccessToken_clientCredentialsGrant_defaultScopeArray() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'key' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(false); - $a->setDefaultScope(array('foobar', 'barfoo')); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678, - 'scope' => '' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 4 - */ - public function test_issueAccessToken_clientCredentialsGrant_badScope() - { - $this->scope->shouldReceive('getScope')->andReturn(false); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - - $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678, - 'scope' => 'blah' - )); - } - - public function test_issueAccessToken_clientCredentialsGrant_goodScope() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'key' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678, - 'scope' => 'blah' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - function test_issueAccessToken_clientCredentialsGrant_passedInput() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(false); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'client_credentials', - 'client_id' => 1234, - 'client_secret' => 5678, - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - function test_issueAccessToken_clientCredentialsGrant() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'client_credentials'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - function test_issueAccessToken_clientCredentialsGrant_customExpiresIn() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\ClientCredentials(); - $grant->setAccessTokenTTL(30); - $a->addGrantType($grant); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'client_credentials'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']); - $this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']); - $this->assertEquals(30, $v['expires_in']); - $this->assertEquals(time()+30, $v['expires']); - } - - function test_issueAccessToken_clientCredentialsGrant_withRefreshToken() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\ClientCredentials()); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'client_credentials'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - -} \ No newline at end of file diff --git a/tests/authorization/PasswordGrantTest.php b/tests/authorization/PasswordGrantTest.php deleted file mode 100644 index fcd45c7a..00000000 --- a/tests/authorization/PasswordGrantTest.php +++ /dev/null @@ -1,613 +0,0 @@ -client = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_passwordGrant_missingClientId() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\Password()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'password' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_passwordGrant_missingClientPassword() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\Password()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 8 - */ - public function test_issueAccessToken_passwordGrant_badClient() - { - $this->client->shouldReceive('getClient')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\Password()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidGrantTypeException - */ - function test_issueAccessToken_passwordGrant_invalidCallback() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = null; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - function test_issueAccessToken_passwordGrant_missingUsername() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = function() { return false; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - function test_issueAccessToken_passwordGrant_missingPassword() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = function() { return false; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - function test_issueAccessToken_passwordGrant_badCredentials() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = function() { return false; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 4 - */ - public function test_issueAccessToken_passwordGrant_badScopes() - { - $this->scope->shouldReceive('getScope')->andReturn(false); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar', - 'scope' => 'blah' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_passwordGrant_missingScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->requireScopeParam(true); - - $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar' - )); - } - - public function test_issueAccessToken_passwordGrant_defaultScope() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->requireScopeParam(false); - $a->setDefaultScope('foobar'); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar', - 'scope' => '' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - public function test_issueAccessToken_passwordGrant_defaultScopeArray() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->requireScopeParam(false); - $a->setDefaultScope(array('foobar', 'barfoo')); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar', - 'scope' => '' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - public function test_issueAccessToken_passwordGrant_goodScope() - { - $this->scope->shouldReceive('getScope')->andReturn(array( - 'id' => 1, - 'scope' => 'foo', - 'name' => 'Foo Name', - 'description' => 'Foo Name Description' - )); - - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar', - 'scope' => 'blah' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - } - - function test_issueAccessToken_passwordGrant_passedInput() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->requireScopeParam(false); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'password', - 'client_id' => 1234, - 'client_secret' => 5678, - 'username' => 'foo', - 'password' => 'bar' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - function test_issueAccessToken_passwordGrant() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'password'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['username'] = 'foo'; - $_POST['password'] = 'bar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - function test_issueAccessToken_passwordGrant_customExpiresIn() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $pgrant->setAccessTokenTTL(30); - $a->addGrantType($pgrant); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'password'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['username'] = 'foo'; - $_POST['password'] = 'bar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']); - $this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']); - $this->assertEquals(30, $v['expires_in']); - $this->assertEquals(time()+30, $v['expires']); - } - - function test_issueAccessToken_passwordGrant_withRefreshToken() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->client->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('createSession')->andReturn(1); - $this->session->shouldReceive('deleteSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(null); - - $testCredentials = function() { return 1; }; - - $a = $this->returnDefault(); - $pgrant = new League\OAuth2\Server\Grant\Password(); - $pgrant->setVerifyCredentialsCallback($testCredentials); - $a->addGrantType($pgrant); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - $a->requireScopeParam(false); - - $_POST['grant_type'] = 'password'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['username'] = 'foo'; - $_POST['password'] = 'bar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - $this->assertArrayHasKey('refresh_token', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } -} \ No newline at end of file diff --git a/tests/authorization/RefreshTokenTest.php b/tests/authorization/RefreshTokenTest.php deleted file mode 100644 index 572b50cb..00000000 --- a/tests/authorization/RefreshTokenTest.php +++ /dev/null @@ -1,421 +0,0 @@ -client = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $this->session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $this->scope = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Authorization($this->client, $this->session, $this->scope); - } - - public function test_setRefreshTokenTTL() - { - $a = $this->returnDefault(); - $rt = new League\OAuth2\Server\Grant\RefreshToken(); - $rt->setRefreshTokenTTL(30); - $this->assertEquals(30, $rt->getRefreshTokenTTL()); - } - - public function test_issueAccessToken_with_refresh_token() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('removeAuthCode')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->session->shouldReceive('getAuthCodeScopes')->andReturn(array('scope_id' => 1)); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\AuthCode()); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $_POST['grant_type'] = 'authorization_code'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['redirect_uri'] = 'http://foo/redirect'; - $_POST['code'] = 'foobar'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - $this->assertArrayHasKey('refresh_token', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_refreshTokenGrant_missingClientId() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token' - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_refreshTokenGrant_missingClientSecret() - { - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 8 - */ - public function test_issueAccessToken_refreshTokenGrant_badClient() - { - $this->client->shouldReceive('getClient')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_refreshTokenGrant_missingRefreshToken() - { - $this->client->shouldReceive('getClient')->andReturn(array()); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678 - )); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_refreshTokenGrant_badRefreshToken() - { - $this->client->shouldReceive('getClient')->andReturn(array()); - $this->session->shouldReceive('validateRefreshToken')->andReturn(false); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef' - )); - } - - public function test_issueAccessToken_refreshTokenGrant_passedInput() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array()); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $_POST['grant_type'] = 'refresh_token'; - $_POST['client_id'] = 1234; - $_POST['client_secret'] = 5678; - $_POST['refresh_token'] = 'abcdef'; - - $request = new League\OAuth2\Server\Util\Request(array(), $_POST); - $a->setRequest($request); - - $v = $a->issueAccessToken(); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function test_issueAccessToken_refreshTokenGrant() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array('id' => 1)); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $a->addGrantType(new League\OAuth2\Server\Grant\RefreshToken()); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef', - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function test_issueAccessToken_refreshTokenGrant_rotateTokens() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array('id' => 1)); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - - $rt = new League\OAuth2\Server\Grant\RefreshToken(); - $rt->rotateRefreshTokens(true); - $a->addGrantType($rt); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef', - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - $this->assertArrayHasKey('refresh_token', $v); - - $this->assertEquals($a->getAccessTokenTTL(), $v['expires_in']); - } - - public function test_issueAccessToken_refreshTokenGrant_customExpiresIn() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array('id' => 1)); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\RefreshToken(); - $grant->setAccessTokenTTL(30); - $a->addGrantType($grant); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef', - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - - $this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']); - $this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']); - $this->assertEquals(30, $v['expires_in']); - $this->assertEquals(time()+30, $v['expires']); - } - - public function test_issueAccessToken_refreshTokenGrant_newScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array(array('id' => 1, 'scope' => 'foo'), array('id' => 2, 'scope' => 'bar'))); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->scope->shouldReceive('getScope')->andReturn(array('id' => 1, 'scope' => 'foo')); - - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\RefreshToken(); - $grant->setAccessTokenTTL(30); - $grant->rotateRefreshTokens(true); - $a->addGrantType($grant); - - $v = $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef', - 'scope' => 'foo' - )); - - $this->assertArrayHasKey('access_token', $v); - $this->assertArrayHasKey('token_type', $v); - $this->assertArrayHasKey('expires', $v); - $this->assertArrayHasKey('expires_in', $v); - $this->assertArrayHasKey('refresh_token', $v); - - $this->assertNotEquals($a->getAccessTokenTTL(), $v['expires_in']); - $this->assertNotEquals(time()+$a->getAccessTokenTTL(), $v['expires']); - $this->assertEquals(30, $v['expires_in']); - $this->assertEquals(time()+30, $v['expires']); - } - - /** - * @expectedException League\OAuth2\Server\Exception\ClientException - * @expectedExceptionCode 0 - */ - public function test_issueAccessToken_refreshTokenGrant_badNewScopes() - { - $this->client->shouldReceive('getClient')->andReturn(array( - 'client_id' => 1234, - 'client_secret' => 5678, - 'redirect_uri' => 'http://foo/redirect', - 'name' => 'Example Client' - )); - - $this->session->shouldReceive('validateRefreshToken')->andReturn(1); - $this->session->shouldReceive('validateAuthCode')->andReturn(1); - $this->session->shouldReceive('updateSession')->andReturn(null); - $this->session->shouldReceive('updateRefreshToken')->andReturn(null); - $this->session->shouldReceive('getAccessToken')->andReturn(null); - $this->session->shouldReceive('getScopes')->andReturn(array(array('id' => 1, 'scope' => 'foo'), array('id' => 2, 'scope' => 'bar'))); - $this->session->shouldReceive('associateAccessToken')->andReturn(1); - $this->session->shouldReceive('associateRefreshToken')->andReturn(1); - $this->session->shouldReceive('removeRefreshToken')->andReturn(1); - $this->session->shouldReceive('associateScope')->andReturn(null); - $this->scope->shouldReceive('getScope')->andReturn(array('id' => 1, 'scope' => 'foo')); - - $a = $this->returnDefault(); - $grant = new League\OAuth2\Server\Grant\RefreshToken(); - $grant->setAccessTokenTTL(30); - $grant->rotateRefreshTokens(true); - $a->addGrantType($grant); - - $a->issueAccessToken(array( - 'grant_type' => 'refresh_token', - 'client_id' => 1234, - 'client_secret' => 5678, - 'refresh_token' => 'abcdef', - 'scope' => 'foobar' - )); - } -} \ No newline at end of file diff --git a/tests/resource/ResourceServerTest.php b/tests/resource/ResourceServerTest.php deleted file mode 100644 index 04f988ca..00000000 --- a/tests/resource/ResourceServerTest.php +++ /dev/null @@ -1,226 +0,0 @@ -session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Resource($this->session); - } - - public function test_setRequest() - { - $s = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $requestProperty = $reflector->getProperty('request'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($s); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getRequest() - { - $s = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $s->setRequest($request); - $v = $s->getRequest(); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getTokenKey() - { - $s = $this->returnDefault(); - $this->assertEquals('access_token', $s->getTokenKey()); - } - - public function test_setTokenKey() - { - $s = $this->returnDefault(); - $s->setTokenKey('oauth_token'); - - $reflector = new ReflectionClass($s); - $requestProperty = $reflector->getProperty('tokenKey'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($s); - - $this->assertEquals('oauth_token', $v); - } - - public function test_getScopes() - { - $s = $this->returnDefault(); - $this->assertEquals(array(), $s->getScopes()); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException - */ - public function test_determineAccessToken_missingToken() - { - $_SERVER['HTTP_AUTHORIZATION'] = 'Bearer'; - $request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $method->invoke($s); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException - */ - public function test_determineAccessToken_brokenCurlRequest() - { - $_SERVER['HTTP_AUTHORIZATION'] = 'Bearer, Bearer abcdef'; - $request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $method->invoke($s); - } - - public function test_determineAccessToken_fromHeader() - { - $request = new League\OAuth2\Server\Util\Request(); - - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - public function test_determineAccessToken_fromBrokenCurlHeader() - { - $request = new League\OAuth2\Server\Util\Request(); - - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef, Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - public function test_determineAccessToken_fromMethod() - { - $s = $this->returnDefault(); - - $_GET[$s->getTokenKey()] = 'abcdef'; - $_SERVER['REQUEST_METHOD'] = 'get'; - - $request = new League\OAuth2\Server\Util\Request($_GET, array(), array(), array(), $_SERVER); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException - */ - public function test_isValid_notValid() - { - $this->session->shouldReceive('validateAccessToken')->andReturn(false); - - $request = new League\OAuth2\Server\Util\Request(); - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $s->isValid(); - } - - public function test_isValid_valid() - { - $this->session->shouldReceive('validateAccessToken')->andReturn(array( - 'session_id' => 1, - 'owner_type' => 'user', - 'owner_id' => 123, - 'client_id' => 'testapp' - )); - - $this->session->shouldReceive('getScopes')->andReturn(array( - array('scope' => 'foo'), - array('scope' => 'bar') - )); - - $request = new League\OAuth2\Server\Util\Request(); - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $this->assertTrue($s->isValid()); - $this->assertEquals(123, $s->getOwnerId()); - $this->assertEquals('user', $s->getOwnerType()); - $this->assertEquals('abcdef', $s->getAccessToken()); - $this->assertEquals('testapp', $s->getClientId()); - $this->assertTrue($s->hasScope('foo')); - $this->assertTrue($s->hasScope('bar')); - $this->assertTrue($s->hasScope(array('foo', 'bar'))); - $this->assertFalse($s->hasScope(array('foobar'))); - $this->assertFalse($s->hasScope('foobar')); - $this->assertFalse($s->hasScope(new StdClass)); - } -} \ No newline at end of file diff --git a/tests/util/RequestTest.php b/tests/util/RequestTest.php deleted file mode 100644 index 205c70ad..00000000 --- a/tests/util/RequestTest.php +++ /dev/null @@ -1,87 +0,0 @@ -request = new League\OAuth2\Server\Util\Request( - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('HTTP_HOST' => 'foobar.com') - ); - } - - function test_buildFromIndex() - { - $r = new League\OAuth2\Server\Util\Request(); - $r->buildFromGlobals(); - - $this->assertTrue($r instanceof League\OAuth2\Server\Util\Request); - } - - function test_get() - { - $this->assertEquals('bar', $this->request->get('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->get()); - } - - function test_post() - { - $this->assertEquals('bar', $this->request->post('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->post()); - } - - function test_file() - { - $this->assertEquals('bar', $this->request->file('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->file()); - } - - function test_cookie() - { - $this->assertEquals('bar', $this->request->cookie('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->cookie()); - } - - function test_server() - { - $this->assertEquals('foobar.com', $this->request->server('HTTP_HOST')); - $this->assertEquals(array('HTTP_HOST' => 'foobar.com'), $this->request->server()); - } - - function test_header() - { - $this->assertEquals('foobar.com', $this->request->header('Host')); - $this->assertEquals(array('Host' => 'foobar.com'), $this->request->header()); - } - - function test_canonical_header() - { - $request = new League\OAuth2\Server\Util\Request( - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('HTTP_HOST' => 'foobar.com'), - array('authorization' => 'Bearer ajdfkljadslfjasdlkj') - ); - - $this->assertEquals('Bearer ajdfkljadslfjasdlkj', $request->header('Authorization')); - } - - /** - * @expectedException InvalidArgumentException - */ - function test_unknownProperty() - { - $reflector = new ReflectionClass($this->request); - $method = $reflector->getMethod('getPropertyValue'); - $method->setAccessible(true); - - $method->invoke($this->request, 'blah'); - } -} \ No newline at end of file From 11e0b004bd646a227ccadccde290016b1c53615e Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:50:16 +0000 Subject: [PATCH 025/270] Numerous updates --- src/League/OAuth2/Server/AbstractServer.php | 5 +++-- .../OAuth2/Server/Grant/AbstractGrant.php | 4 ++-- .../OAuth2/Server/Grant/ClientCredentials.php | 8 +++---- src/League/OAuth2/Server/Grant/Password.php | 10 ++++----- .../OAuth2/Server/Grant/RefreshToken.php | 6 +++--- src/League/OAuth2/Server/Resource.php | 21 ++++++++++++++----- .../Server/Storage/AccessTokenInterface.php | 6 +++--- src/League/OAuth2/Server/Storage/Adapter.php | 6 +++--- .../Server/Storage/AuthCodeInterface.php | 2 +- .../OAuth2/Server/Storage/ClientInterface.php | 2 +- .../Server/Storage/RefreshTokenInterface.php | 6 +++--- .../Server/Storage/SessionInterface.php | 6 +++--- 12 files changed, 47 insertions(+), 35 deletions(-) diff --git a/src/League/OAuth2/Server/AbstractServer.php b/src/League/OAuth2/Server/AbstractServer.php index 3cf125ef..6665ab28 100644 --- a/src/League/OAuth2/Server/AbstractServer.php +++ b/src/League/OAuth2/Server/AbstractServer.php @@ -11,6 +11,7 @@ namespace League\OAuth2\Server; +use League\OAuth2\Server\Exception; use Symfony\Component\HttpFoundation\Request; /** @@ -64,8 +65,8 @@ abstract class AbstractServer public function getStorage($obj) { if (!isset($this->storages[$obj])) { - throw new ServerException( - 'The `'.$obj.'` storage interface has not been registered with the authorization server' + throw new Exception\ServerException( + 'The `'.$obj.'` storage interface has not been registered with the server' ); } return $this->storages[$obj]; diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index c800d53c..e7e40132 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -12,7 +12,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Entities\Scope; +use League\OAuth2\Server\Entity\Scope; /** * Abstract grant class @@ -149,7 +149,7 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entities\Scope + * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\Scope * @return array */ protected function formatScopes($unformated = []) diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index 8c573fa5..a3149d95 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -12,10 +12,10 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Entities\AccessToken; -use League\OAuth2\Server\Entities\Client; -use League\OAuth2\Server\Entities\Session; -use League\OAuth2\Server\Entities\Scope; +use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\Client; +use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Exception\ClientException; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index a4842ec1..a61fe923 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -12,11 +12,11 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Entities\AccessToken; -use League\OAuth2\Server\Entities\Client; -use League\OAuth2\Server\Entities\RefreshToken; -use League\OAuth2\Server\Entities\Session; -use League\OAuth2\Server\Entities\Scope; +use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\Client; +use League\OAuth2\Server\Entity\RefreshToken; +use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Exception\ClientException; use League\OAuth2\Server\Exception\InvalidGrantTypeException; use League\OAuth2\Server\Util\SecureKey; diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index b816f277..d5de5190 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -18,9 +18,9 @@ use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; -use League\OAuth2\Server\Entities\RefreshToken as RT; -use League\OAuth2\Server\Entities\AccessToken; -use League\OAuth2\Server\Entities\Session; +use League\OAuth2\Server\Entity\RefreshToken as RT; +use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Exception\ClientException; /** diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 028c7f9e..61d80229 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -17,6 +17,7 @@ use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\AuthCodeInterface; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; +use League\OAuth2\Server\Entity\AccessToken; use Symfony\Component\HttpFoundation\Request; /** @@ -28,7 +29,7 @@ class Resource extends AbstractServer * The access token * @var League\OAuth2\Server\AccessToken */ - protected $accessToken; + public $accessToken; /** * The query string key which is used by clients to present the access token (default: access_token) @@ -77,7 +78,7 @@ class Resource extends AbstractServer */ public function getTokenKey() { - return $this->accessToken->getToken(); + return $this->tokenKey; } /** @@ -136,13 +137,12 @@ class Resource extends AbstractServer { try { $accessTokenString = $this->determineAccessToken($headersOnly); - } catch (Exception $e) { + } catch (\Exception $e) { return false; } // Set the access token $this->accessToken = $this->storages['access_token']->get($accessTokenString); - return ($this->accessToken instanceof AccessToken); } @@ -162,7 +162,18 @@ class Resource extends AbstractServer */ public function hasScope($scopes) { - return $this->accessToken->hasScope($scopes); + if (is_string($scopes)) { + return $this->accessToken->hasScope($scopes); + } + + if (is_array($scopes)) { + foreach ($scopes as $scope) { + if (!$this->accessToken->hasScope($scope)) { + return false; + } + } + } + return true; } /** diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php index 1e4afdf9..c0eaf5a2 100644 --- a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -19,7 +19,7 @@ interface AccessTokenInterface /** * Get an instance of Entites\AccessToken * @param string $token The access token - * @return \League\OAuth2\Server\Entities\AccessToken + * @return \League\OAuth2\Server\Entity\AccessToken */ public function get($token); @@ -28,7 +28,7 @@ interface AccessTokenInterface /** * Get the scopes for an access token * @param string $token The access token - * @return array Array of \League\OAuth2\Server\Entities\Scope + * @return array Array of \League\OAuth2\Server\Entity\Scope */ public function getScopes($token); @@ -37,7 +37,7 @@ interface AccessTokenInterface * @param string $token The access token * @param integer $expireTime The expire time expressed as a unix timestamp * @param string|integer $sessionId The session ID - * @return \League\OAuth2\Server\Entities\AccessToken + * @return \League\OAuth2\Server\Entity\AccessToken */ public function create($token, $expireTime, $sessionId); diff --git a/src/League/OAuth2/Server/Storage/Adapter.php b/src/League/OAuth2/Server/Storage/Adapter.php index 07414491..9535f18f 100644 --- a/src/League/OAuth2/Server/Storage/Adapter.php +++ b/src/League/OAuth2/Server/Storage/Adapter.php @@ -18,13 +18,13 @@ class Adapter { /** * Server - * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @var \League\OAuth2\Server\AbstractServer $server */ protected $server; /** * Set the server - * @param \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource $server + * @param \League\OAuth2\Server\AbstractServer $server */ public function setServer($server) { @@ -34,7 +34,7 @@ class Adapter /** * Return the server - * @return \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + * @return \League\OAuth2\Server\AbstractServer */ protected function getServer() { diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php index e3d2b876..35805352 100644 --- a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -19,7 +19,7 @@ interface AuthCodeInterface /** * Get the auth code * @param string $code - * @return \League\OAuth2\Server\Entities\AuthCode + * @return \League\OAuth2\Server\Entity\AuthCode */ public function get($code); } diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index 705e89f9..9ea2f0c2 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -22,7 +22,7 @@ interface ClientInterface * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") * @param string $grantType The grant type used in the request (default = "null") - * @return League\OAuth2\Server\Entities\Client|null + * @return League\OAuth2\Server\Entity\Client|null */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); } diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php index eed16f3f..6c7d6f0d 100644 --- a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -17,9 +17,9 @@ namespace League\OAuth2\Server\Storage; interface RefreshTokenInterface { /** - * Return a new instance of \League\OAuth2\Server\Entities\RefreshToken + * Return a new instance of \League\OAuth2\Server\Entity\RefreshToken * @param string $token - * @return \League\OAuth2\Server\Entities\RefreshToken + * @return \League\OAuth2\Server\Entity\RefreshToken */ public function get($token); @@ -28,7 +28,7 @@ interface RefreshTokenInterface * @param string $token * @param integer $expireTime * @param string $accessToken - * @return \League\OAuth2\Server\Entities\RefreshToken + * @return \League\OAuth2\Server\Entity\RefreshToken */ public function create($token, $expireTime, $accessToken); diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index 1be23ba8..f07013fe 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -19,21 +19,21 @@ interface SessionInterface /** * Get a session from it's identifier * @param string $sessionId - * @return \League\OAuth2\Server\Entities\Session + * @return \League\OAuth2\Server\Entity\Session */ public function get($sessionId); /** * Get a session from an access token * @param string $accessToken The access token - * @return \League\OAuth2\Server\Entities\Session + * @return \League\OAuth2\Server\Entity\Session */ public function getByAccessToken($accessToken); /** * Get a session's scopes * @param integer $sessionId - * @return array Array of \League\OAuth2\Server\Entities\Scope + * @return array Array of \League\OAuth2\Server\Entity\Scope */ public function getScopes($sessionId); From 36760a07cce5752287827a72dc3bb6d499816eca Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:50:30 +0000 Subject: [PATCH 026/270] Updated util tests --- tests/util/RedirectUriTest.php | 15 ++++++++++----- tests/util/SecureKeyTest.php | 15 ++++++++++----- 2 files changed, 20 insertions(+), 10 deletions(-) diff --git a/tests/util/RedirectUriTest.php b/tests/util/RedirectUriTest.php index 9ae67f0b..eb620ddd 100644 --- a/tests/util/RedirectUriTest.php +++ b/tests/util/RedirectUriTest.php @@ -1,12 +1,17 @@ 'bar')); - $v2 = League\OAuth2\Server\Util\RedirectUri::make('https://foobar/', array('foo'=>'bar'), '#'); - $v3 = League\OAuth2\Server\Util\RedirectUri::make('https://foobar/', array('foo'=>'bar', 'bar' => 'foo')); + $v1 = RedirectUri::make('https://foobar/', array('foo'=>'bar')); + $v2 = RedirectUri::make('https://foobar/', array('foo'=>'bar'), '#'); + $v3 = RedirectUri::make('https://foobar/', array('foo'=>'bar', 'bar' => 'foo')); $this->assertEquals('https://foobar/?foo=bar', $v1); $this->assertEquals('https://foobar/#foo=bar', $v2); diff --git a/tests/util/SecureKeyTest.php b/tests/util/SecureKeyTest.php index 3d60f6db..2be3e12b 100644 --- a/tests/util/SecureKeyTest.php +++ b/tests/util/SecureKeyTest.php @@ -1,12 +1,17 @@ assertEquals(40, strlen($v1)); $this->assertTrue($v1 !== $v2); From add1aa59495230af6750facad0b98c80abeabb0c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:51:06 +0000 Subject: [PATCH 027/270] Updated tests --- phpunit.xml | 26 +--- tests/AbstractServerTest.php | 26 ++++ tests/AuthorizationTest.php | 107 ++++++++++++++ tests/Entities/AbstractTokenTest.php | 102 +++++++++++++ tests/Entities/AccessTokenTest.php | 51 +++++++ tests/Entities/ClientTest.php | 24 +++ tests/Entities/RefreshTokenTest.php | 75 ++++++++++ tests/Entities/ScopeTest.php | 20 +++ tests/Entities/SessionTest.php | 130 ++++++++++++++++ tests/ResourceTest.php | 214 +++++++++++++++++++++++++++ tests/Storage/AdapterTest.php | 24 +++ tests/Stubs/StubAbstractServer.php | 8 + tests/Stubs/StubAbstractToken.php | 16 ++ 13 files changed, 805 insertions(+), 18 deletions(-) create mode 100644 tests/AbstractServerTest.php create mode 100644 tests/AuthorizationTest.php create mode 100644 tests/Entities/AbstractTokenTest.php create mode 100644 tests/Entities/AccessTokenTest.php create mode 100644 tests/Entities/ClientTest.php create mode 100644 tests/Entities/RefreshTokenTest.php create mode 100644 tests/Entities/ScopeTest.php create mode 100644 tests/Entities/SessionTest.php create mode 100644 tests/ResourceTest.php create mode 100644 tests/Storage/AdapterTest.php create mode 100644 tests/Stubs/StubAbstractServer.php create mode 100644 tests/Stubs/StubAbstractToken.php diff --git a/phpunit.xml b/phpunit.xml index ec749a08..723a1f1f 100644 --- a/phpunit.xml +++ b/phpunit.xml @@ -1,27 +1,17 @@ - - tests/authorization - - - tests/resource - - - tests/util - + + ./tests/ + - - PEAR_INSTALL_DIR - PHP_LIBDIR - vendor - tests - testing - + + src + - - + + diff --git a/tests/AbstractServerTest.php b/tests/AbstractServerTest.php new file mode 100644 index 00000000..231105dc --- /dev/null +++ b/tests/AbstractServerTest.php @@ -0,0 +1,26 @@ +assertTrue($server->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); + + $server2 = new StubAbstractServer(); + $server2->setRequest((new \Symfony\Component\HttpFoundation\Request)); + $this->assertTrue($server2->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); + } + + function testGetStorageException() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ServerException'); + $server = new StubAbstractServer(); + $server->getStorage('foobar'); + } +} \ No newline at end of file diff --git a/tests/AuthorizationTest.php b/tests/AuthorizationTest.php new file mode 100644 index 00000000..b267da90 --- /dev/null +++ b/tests/AuthorizationTest.php @@ -0,0 +1,107 @@ +getProperty('exceptionMessages'); + $exceptionMessages->setAccessible(true); + $v = $exceptionMessages->getValue(); + + $this->assertEquals($v['access_denied'], $m); + } + + public function testGetExceptionCode() + { + $this->assertEquals('access_denied', Authorization::getExceptionType(2)); + } + + public function testGetExceptionHttpHeaders() + { + $this->assertEquals(array('HTTP/1.1 401 Unauthorized'), Authorization::getExceptionHttpHeaders('access_denied')); + $this->assertEquals(array('HTTP/1.1 500 Internal Server Error'), Authorization::getExceptionHttpHeaders('server_error')); + $this->assertEquals(array('HTTP/1.1 501 Not Implemented'), Authorization::getExceptionHttpHeaders('unsupported_grant_type')); + $this->assertEquals(array('HTTP/1.1 400 Bad Request'), Authorization::getExceptionHttpHeaders('invalid_refresh')); + } + + public function testSetGet() + { + $server = new Authorization; + $server->requireScopeParam(true); + $server->requireStateParam(true); + $server->setDefaultScope('foobar'); + $server->setScopeDelimeter(','); + $server->setAccessTokenTTL(1); + + $grant = M::mock('League\OAuth2\Server\Grant\GrantTypeInterface'); + $grant->shouldReceive('getIdentifier')->andReturn('foobar'); + $grant->shouldReceive('getResponseType')->andReturn('foobar'); + $grant->shouldReceive('setAuthorizationServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server->addGrantType($grant); + $server->setScopeStorage($scopeStorage); + + $this->assertTrue($server->hasGrantType('foobar')); + $this->assertTrue($server->getGrantType('foobar') instanceof GrantTypeInterface); + $this->assertSame($server->getResponseTypes(), ['foobar']); + $this->assertTrue($server->scopeParamRequired()); + $this->assertTrue($server->stateParamRequired()); + $this->assertTrue($server->getStorage('scope') instanceof ScopeInterface); + $this->assertEquals('foobar', $server->getDefaultScope()); + $this->assertEquals(',', $server->getScopeDelimeter()); + $this->assertEquals(1, $server->getAccessTokenTTL()); + } + + public function testInvalidGrantType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException'); + $server = new Authorization; + $server->getGrantType('foobar'); + } + + public function testIssueAccessToken() + { + $grant = M::mock('League\OAuth2\Server\Grant\GrantTypeInterface'); + $grant->shouldReceive('getIdentifier')->andReturn('foobar'); + $grant->shouldReceive('getResponseType')->andReturn('foobar'); + $grant->shouldReceive('setAuthorizationServer'); + $grant->shouldReceive('completeFlow')->andReturn(true); + + $_POST['grant_type'] = 'foobar'; + + $server = new Authorization; + $server->addGrantType($grant); + + $this->assertTrue($server->issueAccessToken()); + } + + public function testIssueAccessTokenEmptyGrantType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $server = new Authorization; + $this->assertTrue($server->issueAccessToken()); + } + + public function testIssueAccessTokenInvalidGrantType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST['grant_type'] = 'foobar'; + + $server = new Authorization; + $this->assertTrue($server->issueAccessToken()); + } +} diff --git a/tests/Entities/AbstractTokenTest.php b/tests/Entities/AbstractTokenTest.php new file mode 100644 index 00000000..099a05d5 --- /dev/null +++ b/tests/Entities/AbstractTokenTest.php @@ -0,0 +1,102 @@ +setToken('foobar'); + $entity->setExpireTime($time); + $entity->setSession((new Session($server))); + $entity->associateScope((new Scope($server))->setId('foo')); + + $this->assertEquals('foobar', $entity->getToken()); + $this->assertEquals($time, $entity->getExpireTime()); + $this->assertTrue($entity->getSession() instanceof Session); + $this->assertTrue($entity->hasScope('foo')); + + $result = $entity->getScopes(); + $this->assertTrue(isset($result['foo'])); + } + + public function testGetSession() + { + $server = new Authorization(); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new Session($server)) + ); + $sessionStorage->shouldReceive('setServer'); + + $server->setSessionStorage($sessionStorage); + + $entity = new StubAbstractToken($server); + $this->assertTrue($entity->getSession() instanceof Session); + } + + public function testGetScopes() + { + $server = new Authorization(); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn( + [] + ); + $accessTokenStorage->shouldReceive('setServer'); + + $server->setAccessTokenStorage($accessTokenStorage); + + $entity = new StubAbstractToken($server); + $this->assertEquals($entity->getScopes(), []); + } + + public function testHasScopes() + { + $server = new Authorization(); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn( + [] + ); + $accessTokenStorage->shouldReceive('setServer'); + + $server->setAccessTokenStorage($accessTokenStorage); + + $entity = new StubAbstractToken($server); + $this->assertFalse($entity->hasScope('foo')); + } + + public function testFormatScopes() + { + $server = M::mock('League\OAuth2\Server\AbstractServer'); + + $entity = new StubAbstractToken($server); + $reflectedEntity = new \ReflectionClass('LeagueTests\Stubs\StubAbstractToken'); + $method = $reflectedEntity->getMethod('formatScopes'); + $method->setAccessible(true); + + $scopes = [ + (new Scope($server))->setId('scope1')->setDescription('foo'), + (new Scope($server))->setId('scope2')->setDescription('bar') + ]; + + $result = $method->invokeArgs($entity, [$scopes]); + + $this->assertTrue(isset($result['scope1'])); + $this->assertTrue(isset($result['scope2'])); + $this->assertTrue($result['scope1'] instanceof Scope); + $this->assertTrue($result['scope2'] instanceof Scope); + } +} diff --git a/tests/Entities/AccessTokenTest.php b/tests/Entities/AccessTokenTest.php new file mode 100644 index 00000000..027fd633 --- /dev/null +++ b/tests/Entities/AccessTokenTest.php @@ -0,0 +1,51 @@ +shouldReceive('create'); + $accessTokenStorage->shouldReceive('associateScope'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new Session($server)) + ); + $sessionStorage->shouldReceive('setServer'); + + $server->setAccessTokenStorage($accessTokenStorage); + $server->setSessionStorage($sessionStorage); + + $entity = new AccessToken($server); + $this->assertTrue($entity->save() instanceof AccessToken); + } + + function testExpire() + { + $server = new Authorization(); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('delete'); + $accessTokenStorage->shouldReceive('setServer'); + + $server->setAccessTokenStorage($accessTokenStorage); + + $entity = new AccessToken($server); + $this->assertSame($entity->expire(), null); + } +} diff --git a/tests/Entities/ClientTest.php b/tests/Entities/ClientTest.php new file mode 100644 index 00000000..71e39fe5 --- /dev/null +++ b/tests/Entities/ClientTest.php @@ -0,0 +1,24 @@ +setId('foobar'); + $client->setSecret('barfoo'); + $client->setName('Test Client'); + $client->setRedirectUri('http://foo/bar'); + + $this->assertEquals('foobar', $client->getId()); + $this->assertEquals('barfoo', $client->getSecret()); + $this->assertEquals('Test Client', $client->getName()); + $this->assertEquals('http://foo/bar', $client->getRedirectUri()); + } +} \ No newline at end of file diff --git a/tests/Entities/RefreshTokenTest.php b/tests/Entities/RefreshTokenTest.php new file mode 100644 index 00000000..e762326c --- /dev/null +++ b/tests/Entities/RefreshTokenTest.php @@ -0,0 +1,75 @@ +$property; + }, $object, $object)->__invoke(); + + return $value; + }; + + $server = M::mock('League\OAuth2\Server\AbstractServer'); + $entity = new RefreshToken($server); + $entity->setAccessToken((new AccessToken($server))); + + $this->assertTrue($reader($entity, 'accessToken') instanceof AccessToken); + } + + function testSave() + { + $server = new Authorization(); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + (new AccessToken($server))->setToken('foobar') + ); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new Session($server)) + ); + $sessionStorage->shouldReceive('setServer'); + + $server->setAccessTokenStorage($accessTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $entity = new RefreshToken($server); + $this->assertSame(null, $entity->save()); + } + + function testExpire() + { + $server = new Authorization(); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('delete'); + $refreshTokenStorage->shouldReceive('setServer'); + + $server->setRefreshTokenStorage($refreshTokenStorage); + + $entity = new RefreshToken($server); + $this->assertSame($entity->expire(), null); + } +} diff --git a/tests/Entities/ScopeTest.php b/tests/Entities/ScopeTest.php new file mode 100644 index 00000000..372c7c67 --- /dev/null +++ b/tests/Entities/ScopeTest.php @@ -0,0 +1,20 @@ +setId('foobar'); + $scope->setDescription('barfoo'); + + $this->assertEquals('foobar', $scope->getId()); + $this->assertEquals('barfoo', $scope->getDescription()); + } +} \ No newline at end of file diff --git a/tests/Entities/SessionTest.php b/tests/Entities/SessionTest.php new file mode 100644 index 00000000..100001dd --- /dev/null +++ b/tests/Entities/SessionTest.php @@ -0,0 +1,130 @@ +setId('foobar'); + $entity->setOwner('user', 123); + $entity->associateAccessToken((new AccessToken($server))); + $entity->associateRefreshToken((new RefreshToken($server))); + $entity->associateClient((new Client($server))); + $entity->associateScope((new Scope($server))->setId('foo')); + // $entity->associateAuthCode((new AuthCode($server))); + + $reader = function & ($object, $property) { + $value = & \Closure::bind(function & () use ($property) { + return $this->$property; + }, $object, $object)->__invoke(); + + return $value; + }; + + $this->assertEquals('foobar', $entity->getId()); + $this->assertEquals('user', $entity->getOwnerType()); + $this->assertEquals(123, $entity->getOwnerId()); + $this->assertTrue($reader($entity, 'accessToken') instanceof AccessToken); + $this->assertTrue($reader($entity, 'refreshToken') instanceof RefreshToken); + $this->assertTrue($entity->getClient() instanceof Client); + $this->assertTrue($entity->hasScope('foo')); + // $this->assertTrue($reader($entity, 'authCode') instanceof AuthCode); + } + + public function testFormatScopes() + { + $server = M::mock('League\OAuth2\Server\AbstractServer'); + + $entity = new Session($server); + $reflectedEntity = new \ReflectionClass('League\OAuth2\Server\Entity\Session'); + $method = $reflectedEntity->getMethod('formatScopes'); + $method->setAccessible(true); + + $scopes = [ + (new Scope($server))->setId('scope1')->setDescription('foo'), + (new Scope($server))->setId('scope2')->setDescription('bar') + ]; + + $result = $method->invokeArgs($entity, [$scopes]); + + $this->assertTrue(isset($result['scope1'])); + $this->assertTrue(isset($result['scope2'])); + $this->assertTrue($result['scope1'] instanceof Scope); + $this->assertTrue($result['scope2'] instanceof Scope); + } + + public function testGetScopes() + { + $server = new Authorization(); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $server->setAccessTokenStorage($accessTokenStorage); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getScopes')->andReturn( + [] + ); + $sessionStorage->shouldReceive('setServer'); + $server->setSessionStorage($sessionStorage); + + $entity = new Session($server); + $this->assertEquals($entity->getScopes(), []); + } + + public function testHasScopes() + { + $server = new Authorization(); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $server->setAccessTokenStorage($accessTokenStorage); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getScopes')->andReturn( + [] + ); + $sessionStorage->shouldReceive('setServer'); + $server->setSessionStorage($sessionStorage); + + $entity = new Session($server); + $this->assertFalse($entity->hasScope('foo')); + } + + function testSave() + { + $server = new Authorization(); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('getBySession')->andReturn( + (new Client($server))->setId('foo') + ); + $clientStorage->shouldReceive('setServer'); + + $server->setSessionStorage($sessionStorage); + $server->setClientStorage($clientStorage); + + $entity = new Session($server); + $this->assertEquals(null, $entity->save()); + } +} \ No newline at end of file diff --git a/tests/ResourceTest.php b/tests/ResourceTest.php new file mode 100644 index 00000000..aaf276e0 --- /dev/null +++ b/tests/ResourceTest.php @@ -0,0 +1,214 @@ +shouldReceive('setServer'); + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + return $server; + } + + function testGetSet() + { + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + } + + public function testDetermineAccessTokenMissingToken() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidAccessTokenException'); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('get')->andReturn(false); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + $request = new \Symfony\Component\HttpFoundation\Request(); + $request->headers = new \Symfony\Component\HttpFoundation\ParameterBag([ + 'HTTP_AUTHORIZATION' => 'Bearer' + ]); + $server->setRequest($request); + + $reflector = new \ReflectionClass($server); + $method = $reflector->getMethod('determineAccessToken'); + $method->setAccessible(true); + + $method->invoke($server); + } + + public function testDetermineAccessTokenBrokenCurlRequest() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidAccessTokenException'); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('get')->andReturn(false); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + $request = new \Symfony\Component\HttpFoundation\Request(); + $request->headers = new \Symfony\Component\HttpFoundation\ParameterBag([ + 'Authorization' => 'Bearer, Bearer abcdef' + ]); + $server->setRequest($request); + + $reflector = new \ReflectionClass($server); + $method = $reflector->getMethod('determineAccessToken'); + $method->setAccessible(true); + + $method->invoke($server); + } + + public function testIsValidNotValid() + { + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('get')->andReturn(false); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + $this->assertFalse($server->isValid()); + } + + public function testIsValid() + { + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Resource( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + $server->setTokenKey('at'); + + $accessTokenStorage->shouldReceive('get')->andReturn( + (new AccessToken($server))->setToken('abcdef') + ); + + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo'), + (new Scope($server))->setId('bar') + ]); + + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new Session($server))->setId('foobar')->setOwner('user', 123) + ); + + $clientStorage->shouldReceive('getBySession')->andReturn( + (new Client($server))->setId('testapp') + ); + + $request = new \Symfony\Component\HttpFoundation\Request(); + $request->headers = new \Symfony\Component\HttpFoundation\ParameterBag([ + 'Authorization' => 'Bearer abcdef' + ]); + $server->setRequest($request); + + $this->assertTrue($server->isValid()); + $this->assertEquals('at', $server->getTokenKey()); + $this->assertEquals(123, $server->getOwnerId()); + $this->assertEquals('user', $server->getOwnerType()); + $this->assertEquals('abcdef', $server->getAccessToken()); + $this->assertEquals('testapp', $server->getClientId()); + $this->assertTrue($server->hasScope('foo')); + $this->assertTrue($server->hasScope('bar')); + $this->assertTrue($server->hasScope(['foo', 'bar'])); + $this->assertTrue(isset($server->getScopes()['foo'])); + $this->assertTrue(isset($server->getScopes()['bar'])); + $this->assertFalse($server->hasScope(['foobar'])); + $this->assertFalse($server->hasScope('foobar')); + } +} diff --git a/tests/Storage/AdapterTest.php b/tests/Storage/AdapterTest.php new file mode 100644 index 00000000..a96f1564 --- /dev/null +++ b/tests/Storage/AdapterTest.php @@ -0,0 +1,24 @@ +getMethod('setServer'); + $setMethod->setAccessible(true); + $setMethod->invokeArgs($adapter, [new StubAbstractServer]); + $getMethod = $reflector->getMethod('getServer'); + $getMethod->setAccessible(true); + + $this->assertTrue($getMethod->invoke($adapter) instanceof StubAbstractServer); + } +} \ No newline at end of file diff --git a/tests/Stubs/StubAbstractServer.php b/tests/Stubs/StubAbstractServer.php new file mode 100644 index 00000000..31a6641e --- /dev/null +++ b/tests/Stubs/StubAbstractServer.php @@ -0,0 +1,8 @@ + Date: Thu, 16 Jan 2014 16:51:21 +0000 Subject: [PATCH 028/270] Updated tests --- composer.json | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/composer.json b/composer.json index bdf2423d..6d395a4f 100644 --- a/composer.json +++ b/composer.json @@ -10,7 +10,8 @@ }, "require-dev": { "league/phpunit-coverage-listener": "~1.0", - "phpdocumentor/phpdocumentor": "2.*" + "phpdocumentor/phpdocumentor": "2.*", + "mockery/mockery": "0.8" }, "repositories": [ { @@ -44,8 +45,11 @@ }, "autoload": { "psr-0": { - "League\\OAuth2\\Server": "src/" - } + "League\\OAuth2\\Server": "src/" + }, + "psr-4": { + "LeagueTests\\": "tests/" + } }, "suggest": { From 115ca30f5afbc24abca760b5530af07037f43ac7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:53:44 +0000 Subject: [PATCH 029/270] Added hhvm testing --- .travis.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.travis.yml b/.travis.yml index d1d13c3b..4ad0ff67 100644 --- a/.travis.yml +++ b/.travis.yml @@ -3,6 +3,11 @@ language: php php: - 5.4 - 5.5 + - hhvm + +matrix: + allow_failures: + - php: hhvm before_script: composer install --prefer-source script: phpunit --configuration phpunit.xml.dist From 0c4a45f3291313eb05d8ef6de66f4ea438ea4d57 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 16:59:40 +0000 Subject: [PATCH 030/270] Updated phpunit.xml.dist --- phpunit.xml.dist | 28 +++++++++------------------- 1 file changed, 9 insertions(+), 19 deletions(-) diff --git a/phpunit.xml.dist b/phpunit.xml.dist index bc2e166c..8e19d2b6 100644 --- a/phpunit.xml.dist +++ b/phpunit.xml.dist @@ -1,25 +1,15 @@ - - tests/authorization - - - tests/resource - - - tests/util - - - - - PEAR_INSTALL_DIR - PHP_LIBDIR - vendor - tests - testing - - + + ./tests/ + + + + + src + + From e71eb8074c38d09f8a87da671afd050073ae5afd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 17:09:51 +0000 Subject: [PATCH 031/270] Update composer before running --- .travis.yml | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index 4ad0ff67..3d572ae5 100644 --- a/.travis.yml +++ b/.travis.yml @@ -9,7 +9,11 @@ matrix: allow_failures: - php: hhvm -before_script: composer install --prefer-source +before_script: + - composer self-update + - composer --version + - composer install --prefer-source + script: phpunit --configuration phpunit.xml.dist cache: From a5b4198cb7759f1355a8570c2d6e354d895deed0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 17:14:47 +0000 Subject: [PATCH 032/270] Removed PHP Documentor from composer.json --- composer.json | 2 -- 1 file changed, 2 deletions(-) diff --git a/composer.json b/composer.json index 6d395a4f..d8498d59 100644 --- a/composer.json +++ b/composer.json @@ -1,7 +1,6 @@ { "name": "league/oauth2-server", "description": "A lightweight and powerful OAuth 2.0 authorization and resource server library with support for all the core specification grants. This library will allow you to secure your API with OAuth and allow your applications users to approve apps that want to access their data from your API.", - "version": "3.1.1", "homepage": "https://github.com/php-loep/oauth2-server", "license": "MIT", "require": { @@ -10,7 +9,6 @@ }, "require-dev": { "league/phpunit-coverage-listener": "~1.0", - "phpdocumentor/phpdocumentor": "2.*", "mockery/mockery": "0.8" }, "repositories": [ From 40ea409aedb51801b3e11dc1c34128a8a03c9310 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 16 Jan 2014 17:27:05 +0000 Subject: [PATCH 033/270] Removed private property reader hack --- tests/Entities/RefreshTokenTest.php | 14 +++++--------- tests/Entities/SessionTest.php | 19 +++++++++---------- 2 files changed, 14 insertions(+), 19 deletions(-) diff --git a/tests/Entities/RefreshTokenTest.php b/tests/Entities/RefreshTokenTest.php index e762326c..067e976c 100644 --- a/tests/Entities/RefreshTokenTest.php +++ b/tests/Entities/RefreshTokenTest.php @@ -13,19 +13,15 @@ class RefreshTokenTests extends \PHPUnit_Framework_TestCase { function testSetAccessToken() { - $reader = function & ($object, $property) { - $value = & \Closure::bind(function & () use ($property) { - return $this->$property; - }, $object, $object)->__invoke(); - - return $value; - }; - $server = M::mock('League\OAuth2\Server\AbstractServer'); $entity = new RefreshToken($server); $entity->setAccessToken((new AccessToken($server))); - $this->assertTrue($reader($entity, 'accessToken') instanceof AccessToken); + $reflector = new \ReflectionClass($entity); + $accessTokenProperty = $reflector->getProperty('accessToken'); + $accessTokenProperty->setAccessible(true); + + $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessToken); } function testSave() diff --git a/tests/Entities/SessionTest.php b/tests/Entities/SessionTest.php index 100001dd..b9a97490 100644 --- a/tests/Entities/SessionTest.php +++ b/tests/Entities/SessionTest.php @@ -25,21 +25,20 @@ class SessionTests extends \PHPUnit_Framework_TestCase $entity->associateScope((new Scope($server))->setId('foo')); // $entity->associateAuthCode((new AuthCode($server))); - $reader = function & ($object, $property) { - $value = & \Closure::bind(function & () use ($property) { - return $this->$property; - }, $object, $object)->__invoke(); - - return $value; - }; - $this->assertEquals('foobar', $entity->getId()); $this->assertEquals('user', $entity->getOwnerType()); $this->assertEquals(123, $entity->getOwnerId()); - $this->assertTrue($reader($entity, 'accessToken') instanceof AccessToken); - $this->assertTrue($reader($entity, 'refreshToken') instanceof RefreshToken); $this->assertTrue($entity->getClient() instanceof Client); $this->assertTrue($entity->hasScope('foo')); + + $reflector = new \ReflectionClass($entity); + $accessTokenProperty = $reflector->getProperty('accessToken'); + $accessTokenProperty->setAccessible(true); + $refreshTokenProperty = $reflector->getProperty('refreshToken'); + $refreshTokenProperty->setAccessible(true); + + $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessToken); + $this->assertTrue($refreshTokenProperty->getValue($entity) instanceof RefreshToken); // $this->assertTrue($reader($entity, 'authCode') instanceof AuthCode); } From 20df1f50a648accd2208a022078d0dec2f03d194 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 17 Jan 2014 10:36:57 +0000 Subject: [PATCH 034/270] Some initial grant testing --- .../OAuth2/Server/Grant/AbstractGrant.php | 1 + tests/Grant/AbstractGrantTest.php | 150 +++++++++++++ tests/Grant/ClientCredentialsTest.php | 202 ++++++++++++++++++ tests/Stubs/StubAbstractGrant.php | 23 ++ 4 files changed, 376 insertions(+) create mode 100644 tests/Grant/AbstractGrantTest.php create mode 100644 tests/Grant/ClientCredentialsTest.php create mode 100644 tests/Stubs/StubAbstractGrant.php diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index e7e40132..e418da61 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -13,6 +13,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Authorization; use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Exception\ClientException; /** * Abstract grant class diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php new file mode 100644 index 00000000..41f9a0c7 --- /dev/null +++ b/tests/Grant/AbstractGrantTest.php @@ -0,0 +1,150 @@ +setIdentifier('foobar'); + $grant->setAccessTokenTTL(300); + $grant->setAuthorizationServer($server); + + $this->assertEquals('foobar', $grant->getIdentifier()); + $this->assertEquals('foobar', $grant->getResponseType()); + $this->assertEquals(300, $grant->getAccessTokenTTL()); + $this->assertTrue($grant->getAuthorizationServer() instanceof Authorization); + } + + public function testFormatScopes() + { + $server = M::mock('League\OAuth2\Server\AbstractServer'); + + $grant = new StubAbstractGrant; + $reflectedGrant = new \ReflectionClass('LeagueTests\Stubs\StubAbstractGrant'); + $method = $reflectedGrant->getMethod('formatScopes'); + $method->setAccessible(true); + + $scopes = [ + (new Scope($server))->setId('scope1')->setDescription('foo'), + (new Scope($server))->setId('scope2')->setDescription('bar') + ]; + + $result = $method->invokeArgs($grant, [$scopes]); + + $this->assertTrue(isset($result['scope1'])); + $this->assertTrue(isset($result['scope2'])); + $this->assertTrue($result['scope1'] instanceof Scope); + $this->assertTrue($result['scope2'] instanceof Scope); + } + + public function testValidateScopes() + { + $server = new Authorization; + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setScopeStorage($scopeStorage); + + $grant = new StubAbstractGrant; + $grant->setAuthorizationServer($server); + + $this->assertEquals( + [ + 'foo' => (new Scope($server))->setId('foo') + ], + + $grant->validateScopes('foo') + ); + } + + public function testValidateScopesMissingScope() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new Authorization; + $server->requireScopeParam(true); + $server->setScopeStorage($scopeStorage); + + $grant = new StubAbstractGrant; + $grant->setAuthorizationServer($server); + + $grant->validateScopes(); + } + + public function testValidateScopesInvalidScope() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server = new Authorization; + $server->setScopeStorage($scopeStorage); + + $grant = new StubAbstractGrant; + $grant->setAuthorizationServer($server); + + $grant->validateScopes('blah'); + } + + public function testValidateScopesDefaultScope() + { + $server = new Authorization; + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + $server->setScopeStorage($scopeStorage); + + $server->requireScopeParam(true); + $server->setScopeStorage($scopeStorage); + $server->setDefaultScope('foo'); + + $grant = new StubAbstractGrant; + $grant->setAuthorizationServer($server); + + $grant->validateScopes(); + } + + public function testValidateScopesDefaultScopeArray() + { + $server = new Authorization; + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + $server->setScopeStorage($scopeStorage); + + $server->requireScopeParam(true); + $server->setScopeStorage($scopeStorage); + $server->setDefaultScope(['foo', 'bar']); + + $grant = new StubAbstractGrant; + $grant->setAuthorizationServer($server); + + $grant->validateScopes(); + } +} diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php new file mode 100644 index 00000000..cb6ee601 --- /dev/null +++ b/tests/Grant/ClientCredentialsTest.php @@ -0,0 +1,202 @@ +setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST['grant_type'] = 'client_credentials'; + + $server = new Authorization; + $grant = new ClientCredentials; + + $server->addGrantType($grant); + $server->issueAccessToken(); + + } + + function testCompleteFlowMissingClientSecret() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp' + ]; + + $server = new Authorization; + $grant = new ClientCredentials; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidClient() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new Authorization; + $grant = new ClientCredentials; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidScope() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo' + ]; + + $server = new Authorization; + $grant = new ClientCredentials; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowNoScopes() + { + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new Authorization; + $grant = new ClientCredentials; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + // $scopeStorage->shouldReceive('get')->andReturn( + // // (new Scope($server))->setId('foo') + // ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlow() + { + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo' + ]; + + $server = new Authorization; + $grant = new ClientCredentials; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } +} \ No newline at end of file diff --git a/tests/Stubs/StubAbstractGrant.php b/tests/Stubs/StubAbstractGrant.php new file mode 100644 index 00000000..31dda299 --- /dev/null +++ b/tests/Stubs/StubAbstractGrant.php @@ -0,0 +1,23 @@ +accessTokenTTL; + } + + public function getAuthorizationServer() + { + return $this->server; + } +} \ No newline at end of file From 9de979a4ee0538bd09f19d8cea2f2268a0c296e6 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 17 Jan 2014 10:37:05 +0000 Subject: [PATCH 035/270] Little bug fix --- src/League/OAuth2/Server/Entity/Session.php | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/src/League/OAuth2/Server/Entity/Session.php b/src/League/OAuth2/Server/Entity/Session.php index c79a88b0..d42c482b 100644 --- a/src/League/OAuth2/Server/Entity/Session.php +++ b/src/League/OAuth2/Server/Entity/Session.php @@ -156,9 +156,11 @@ class Session private function formatScopes($unformated = []) { $scopes = []; - foreach ($unformated as $scope) { - if ($scope instanceof Scope) { - $scopes[$scope->getId()] = $scope; + if (is_array($unformated)) { + foreach ($unformated as $scope) { + if ($scope instanceof Scope) { + $scopes[$scope->getId()] = $scope; + } } } return $scopes; From c5f48782e6a25cdaece05b3923aaf27475c15118 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 17 Jan 2014 17:16:52 +0000 Subject: [PATCH 036/270] $accessToken should be protected not public --- src/League/OAuth2/Server/Resource.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 61d80229..8c7af57c 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -29,7 +29,7 @@ class Resource extends AbstractServer * The access token * @var League\OAuth2\Server\AccessToken */ - public $accessToken; + protected $accessToken; /** * The query string key which is used by clients to present the access token (default: access_token) From e4622b1f65ee550056ce14f480c1d642d182dfc2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 17 Jan 2014 17:17:13 +0000 Subject: [PATCH 037/270] Check for headers only by default, also allow a token to be passed in --- src/League/OAuth2/Server/Resource.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php index 8c7af57c..5160bf70 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/Resource.php @@ -133,10 +133,10 @@ class Resource extends AbstractServer * @param $headersOnly Limit Access Token to Authorization header only * @return bool */ - public function isValid($headersOnly = false) + public function isValid($headersOnly = true, $accessToken = null) { try { - $accessTokenString = $this->determineAccessToken($headersOnly); + $accessTokenString = ($accessToken !== null) ? $accessToken : $this->determineAccessToken($headersOnly, $accessToken); } catch (\Exception $e) { return false; } From a85feb1a3267bece58eb81800fba795d5c7a27c3 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 23 Jan 2014 08:18:00 +0000 Subject: [PATCH 038/270] Update composer.json --- composer.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/composer.json b/composer.json index d8498d59..400d8fe2 100644 --- a/composer.json +++ b/composer.json @@ -14,7 +14,7 @@ "repositories": [ { "type": "git", - "url": "https://github.com/php-loep/oauth2-server.git" + "url": "https://github.com/thephpleague/oauth2-server.git" } ], "keywords": [ @@ -52,4 +52,4 @@ "suggest": { } -} \ No newline at end of file +} From 064d4d967cdfb990889ac4c83e56008e99c20f51 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 23 Jan 2014 08:18:21 +0000 Subject: [PATCH 039/270] Update composer.json --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 400d8fe2..f8f0d54a 100644 --- a/composer.json +++ b/composer.json @@ -9,7 +9,7 @@ }, "require-dev": { "league/phpunit-coverage-listener": "~1.0", - "mockery/mockery": "0.8" + "mockery/mockery": "0.8" }, "repositories": [ { From e07e0dba78f18f4e768d24a8e74c9683cac1ee89 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 12 Feb 2014 09:57:58 +0000 Subject: [PATCH 040/270] Added PHP 5.6 testing --- .travis.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index 3d572ae5..9ced8226 100644 --- a/.travis.yml +++ b/.travis.yml @@ -3,6 +3,7 @@ language: php php: - 5.4 - 5.5 + - 5.6 - hhvm matrix: @@ -18,4 +19,4 @@ script: phpunit --configuration phpunit.xml.dist cache: directories: - - vendor \ No newline at end of file + - vendor From 5254c9d2254104e0840887633288ea596d9f7679 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 24 Feb 2014 14:42:22 +0000 Subject: [PATCH 041/270] Renamed Authorization to AuthorizationServer --- ...Authorization.php => AuthorizationServer.php} | 2 +- src/League/OAuth2/Server/Grant/AbstractGrant.php | 6 +++--- tests/Entities/AbstractTokenTest.php | 2 +- tests/Entities/AccessTokenTest.php | 2 +- tests/Entities/RefreshTokenTest.php | 2 +- tests/Entities/SessionTest.php | 2 +- tests/Grant/AbstractGrantTest.php | 16 ++++++++-------- tests/Grant/ClientCredentialsTest.php | 2 +- 8 files changed, 17 insertions(+), 17 deletions(-) rename src/League/OAuth2/Server/{Authorization.php => AuthorizationServer.php} (99%) diff --git a/src/League/OAuth2/Server/Authorization.php b/src/League/OAuth2/Server/AuthorizationServer.php similarity index 99% rename from src/League/OAuth2/Server/Authorization.php rename to src/League/OAuth2/Server/AuthorizationServer.php index ad5ff2f5..f43a857e 100644 --- a/src/League/OAuth2/Server/Authorization.php +++ b/src/League/OAuth2/Server/AuthorizationServer.php @@ -28,7 +28,7 @@ use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 authorization server class */ -class Authorization extends AbstractServer +class AuthorizationServer extends AbstractServer { /** * The delimeter between scopes specified in the scope query string parameter diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index e418da61..0efee277 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Exception\ClientException; @@ -92,10 +92,10 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Inject the authorization server into the grant - * @param Authorization $server The authorization server instance + * @param AuthorizationServer $server The authorization server instance * @return self */ - public function setAuthorizationServer(Authorization $server) + public function setAuthorizationServer(AuthorizationServer $server) { $this->server = $server; return $this; diff --git a/tests/Entities/AbstractTokenTest.php b/tests/Entities/AbstractTokenTest.php index 099a05d5..ea85fb16 100644 --- a/tests/Entities/AbstractTokenTest.php +++ b/tests/Entities/AbstractTokenTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Entities; use LeagueTests\Stubs\StubAbstractToken; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer as Authorization; use \Mockery as M; class AbstractTokenTests extends \PHPUnit_Framework_TestCase diff --git a/tests/Entities/AccessTokenTest.php b/tests/Entities/AccessTokenTest.php index 027fd633..597d7de1 100644 --- a/tests/Entities/AccessTokenTest.php +++ b/tests/Entities/AccessTokenTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Entities; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer as Authorization; use \Mockery as M; class AccessTokenTests extends \PHPUnit_Framework_TestCase diff --git a/tests/Entities/RefreshTokenTest.php b/tests/Entities/RefreshTokenTest.php index 067e976c..1cc275b4 100644 --- a/tests/Entities/RefreshTokenTest.php +++ b/tests/Entities/RefreshTokenTest.php @@ -6,7 +6,7 @@ use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\RefreshToken; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer as Authorization; use \Mockery as M; class RefreshTokenTests extends \PHPUnit_Framework_TestCase diff --git a/tests/Entities/SessionTest.php b/tests/Entities/SessionTest.php index b9a97490..1e2d1d70 100644 --- a/tests/Entities/SessionTest.php +++ b/tests/Entities/SessionTest.php @@ -8,7 +8,7 @@ use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\RefreshToken; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer as Authorization; use \Mockery as M; class SessionTests extends \PHPUnit_Framework_TestCase diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index 41f9a0c7..60b28979 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -4,7 +4,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Grant\ClientException; use LeagueTests\Stubs\StubAbstractGrant; use Mockery as M; @@ -13,7 +13,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase { function testSetGet() { - $server = new Authorization; + $server = new AuthorizationServer; $grant = new StubAbstractGrant; $grant->setIdentifier('foobar'); @@ -23,7 +23,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $this->assertEquals('foobar', $grant->getIdentifier()); $this->assertEquals('foobar', $grant->getResponseType()); $this->assertEquals(300, $grant->getAccessTokenTTL()); - $this->assertTrue($grant->getAuthorizationServer() instanceof Authorization); + $this->assertTrue($grant->getAuthorizationServer() instanceof AuthorizationServer); } public function testFormatScopes() @@ -50,7 +50,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase public function testValidateScopes() { - $server = new Authorization; + $server = new AuthorizationServer; $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); @@ -79,7 +79,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Authorization; + $server = new AuthorizationServer; $server->requireScopeParam(true); $server->setScopeStorage($scopeStorage); @@ -97,7 +97,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn(null); - $server = new Authorization; + $server = new AuthorizationServer; $server->setScopeStorage($scopeStorage); $grant = new StubAbstractGrant; @@ -108,7 +108,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase public function testValidateScopesDefaultScope() { - $server = new Authorization; + $server = new AuthorizationServer; $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); @@ -129,7 +129,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase public function testValidateScopesDefaultScopeArray() { - $server = new Authorization; + $server = new AuthorizationServer; $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index cb6ee601..cdc74df9 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\ClientCredentials; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer as Authorization; use League\OAuth2\Server\Grant\ClientException; use Mockery as M; From 013b1b53b451d6b12264e4e250ef90a52adac3e1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 24 Feb 2014 14:43:00 +0000 Subject: [PATCH 042/270] Renamed Authorization to AuthorizationServer --- .../OAuth2/Server/Grant/ClientCredentials.php | 8 +++--- tests/AuthorizationTest.php | 26 +++++++++---------- 2 files changed, 17 insertions(+), 17 deletions(-) diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index a3149d95..6e85cc30 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\Session; @@ -62,7 +62,7 @@ class ClientCredentials extends AbstractGrant $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_id'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), 0 ); } @@ -70,7 +70,7 @@ class ClientCredentials extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_secret'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), 0 ); } @@ -84,7 +84,7 @@ class ClientCredentials extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); + throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); } // Validate any scopes that are in the request diff --git a/tests/AuthorizationTest.php b/tests/AuthorizationTest.php index b267da90..26110571 100644 --- a/tests/AuthorizationTest.php +++ b/tests/AuthorizationTest.php @@ -2,7 +2,7 @@ namespace LeagueTests; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Storage\ScopeInterface; use \Mockery as M; @@ -11,9 +11,9 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase { public function testGetExceptionMessage() { - $m = Authorization::getExceptionMessage('access_denied'); + $m = AuthorizationServer::getExceptionMessage('access_denied'); - $reflector = new \ReflectionClass('League\OAuth2\Server\Authorization'); + $reflector = new \ReflectionClass('League\OAuth2\Server\AuthorizationServer'); $exceptionMessages = $reflector->getProperty('exceptionMessages'); $exceptionMessages->setAccessible(true); $v = $exceptionMessages->getValue(); @@ -23,20 +23,20 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase public function testGetExceptionCode() { - $this->assertEquals('access_denied', Authorization::getExceptionType(2)); + $this->assertEquals('access_denied', AuthorizationServer::getExceptionType(2)); } public function testGetExceptionHttpHeaders() { - $this->assertEquals(array('HTTP/1.1 401 Unauthorized'), Authorization::getExceptionHttpHeaders('access_denied')); - $this->assertEquals(array('HTTP/1.1 500 Internal Server Error'), Authorization::getExceptionHttpHeaders('server_error')); - $this->assertEquals(array('HTTP/1.1 501 Not Implemented'), Authorization::getExceptionHttpHeaders('unsupported_grant_type')); - $this->assertEquals(array('HTTP/1.1 400 Bad Request'), Authorization::getExceptionHttpHeaders('invalid_refresh')); + $this->assertEquals(array('HTTP/1.1 401 Unauthorized'), AuthorizationServer::getExceptionHttpHeaders('access_denied')); + $this->assertEquals(array('HTTP/1.1 500 Internal Server Error'), AuthorizationServer::getExceptionHttpHeaders('server_error')); + $this->assertEquals(array('HTTP/1.1 501 Not Implemented'), AuthorizationServer::getExceptionHttpHeaders('unsupported_grant_type')); + $this->assertEquals(array('HTTP/1.1 400 Bad Request'), AuthorizationServer::getExceptionHttpHeaders('invalid_refresh')); } public function testSetGet() { - $server = new Authorization; + $server = new AuthorizationServer; $server->requireScopeParam(true); $server->requireStateParam(true); $server->setDefaultScope('foobar'); @@ -68,7 +68,7 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase public function testInvalidGrantType() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException'); - $server = new Authorization; + $server = new AuthorizationServer; $server->getGrantType('foobar'); } @@ -82,7 +82,7 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'foobar'; - $server = new Authorization; + $server = new AuthorizationServer; $server->addGrantType($grant); $this->assertTrue($server->issueAccessToken()); @@ -91,7 +91,7 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase public function testIssueAccessTokenEmptyGrantType() { $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); - $server = new Authorization; + $server = new AuthorizationServer; $this->assertTrue($server->issueAccessToken()); } @@ -101,7 +101,7 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'foobar'; - $server = new Authorization; + $server = new AuthorizationServer; $this->assertTrue($server->issueAccessToken()); } } From 468acbc3693dcbf813bf29ec85b119284db5a851 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 24 Feb 2014 14:43:26 +0000 Subject: [PATCH 043/270] Renamed Resource to ResourceServer --- .../Server/{Resource.php => ResourceServer.php} | 2 +- tests/ResourceTest.php | 16 ++++++++-------- 2 files changed, 9 insertions(+), 9 deletions(-) rename src/League/OAuth2/Server/{Resource.php => ResourceServer.php} (99%) diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/ResourceServer.php similarity index 99% rename from src/League/OAuth2/Server/Resource.php rename to src/League/OAuth2/Server/ResourceServer.php index 5160bf70..2f304541 100644 --- a/src/League/OAuth2/Server/Resource.php +++ b/src/League/OAuth2/Server/ResourceServer.php @@ -23,7 +23,7 @@ use Symfony\Component\HttpFoundation\Request; /** * OAuth 2.0 Resource Server */ -class Resource extends AbstractServer +class ResourceServer extends AbstractServer { /** * The access token diff --git a/tests/ResourceTest.php b/tests/ResourceTest.php index aaf276e0..eb7662ca 100644 --- a/tests/ResourceTest.php +++ b/tests/ResourceTest.php @@ -2,7 +2,7 @@ namespace LeagueTests; -use League\OAuth2\Server\Resource; +use League\OAuth2\Server\ResourceServer; use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Session; @@ -10,7 +10,7 @@ use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\Scope; use \Mockery as M; -class ResourceTests extends \PHPUnit_Framework_TestCase +class ResourceServerTests extends \PHPUnit_Framework_TestCase { private function returnDefault() { @@ -23,7 +23,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, @@ -44,7 +44,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, @@ -69,7 +69,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, @@ -106,7 +106,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, @@ -141,7 +141,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, @@ -165,7 +165,7 @@ class ResourceTests extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); - $server = new Resource( + $server = new ResourceServer( $sessionStorage, $accessTokenStorage, $clientStorage, From d10cc5040d3c5f7c3c0ea2440ac833997726f601 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 24 Feb 2014 16:50:19 +0000 Subject: [PATCH 044/270] Inject server into storage --- src/League/OAuth2/Server/ResourceServer.php | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/src/League/OAuth2/Server/ResourceServer.php b/src/League/OAuth2/Server/ResourceServer.php index 2f304541..bae49991 100644 --- a/src/League/OAuth2/Server/ResourceServer.php +++ b/src/League/OAuth2/Server/ResourceServer.php @@ -51,9 +51,16 @@ class ResourceServer extends AbstractServer ClientInterface $clientStorage, ScopeInterface $scopeStorage ) { + $sessionStorage->setServer($this); $this->setStorage('session', $sessionStorage); + + $accessTokenStorage->setServer($this); $this->setStorage('access_token', $accessTokenStorage); + + $clientStorage->setServer($this); $this->setStorage('client', $clientStorage); + + $scopeStorage->setServer($this); $this->setStorage('scope', $scopeStorage); return $this; From aef86227da8e0c6960d65c1045d7368a07cb9779 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 19:34:23 +0000 Subject: [PATCH 045/270] Updated copyright --- src/League/OAuth2/Server/AbstractServer.php | 2 +- .../OAuth2/Server/AuthorizationServer.php | 2 +- .../OAuth2/Server/Entity/AbstractToken.php | 2 +- .../OAuth2/Server/Entity/AccessToken.php | 2 +- src/League/OAuth2/Server/Entity/Client.php | 2 +- .../OAuth2/Server/Entity/RefreshToken.php | 2 +- src/League/OAuth2/Server/Entity/Scope.php | 2 +- src/League/OAuth2/Server/Entity/Session.php | 2 +- .../Server/Exception/ClientException.php | 2 +- .../Exception/InvalidAccessTokenException.php | 2 +- .../Exception/InvalidGrantTypeException.php | 2 +- .../Server/Exception/OAuth2Exception.php | 2 +- .../Server/Exception/ServerException.php | 2 +- .../OAuth2/Server/Grant/AbstractGrant.php | 2 +- src/League/OAuth2/Server/Grant/AuthCode.php | 156 +++++++++--------- .../Server/Grant/GrantTypeInterface.php | 2 +- src/League/OAuth2/Server/Grant/Password.php | 2 +- .../OAuth2/Server/Grant/RefreshToken.php | 2 +- src/League/OAuth2/Server/ResourceServer.php | 2 +- .../Server/Storage/AccessTokenInterface.php | 2 +- src/League/OAuth2/Server/Storage/Adapter.php | 2 +- .../Server/Storage/AuthCodeInterface.php | 2 +- .../OAuth2/Server/Storage/ClientInterface.php | 2 +- .../Server/Storage/RefreshTokenInterface.php | 2 +- .../OAuth2/Server/Storage/ScopeInterface.php | 2 +- .../Server/Storage/SessionInterface.php | 2 +- src/League/OAuth2/Server/Util/RedirectUri.php | 2 +- src/League/OAuth2/Server/Util/SecureKey.php | 2 +- 28 files changed, 105 insertions(+), 105 deletions(-) diff --git a/src/League/OAuth2/Server/AbstractServer.php b/src/League/OAuth2/Server/AbstractServer.php index 6665ab28..8ecd4394 100644 --- a/src/League/OAuth2/Server/AbstractServer.php +++ b/src/League/OAuth2/Server/AbstractServer.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/AuthorizationServer.php b/src/League/OAuth2/Server/AuthorizationServer.php index f43a857e..81f2377b 100644 --- a/src/League/OAuth2/Server/AuthorizationServer.php +++ b/src/League/OAuth2/Server/AuthorizationServer.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/AbstractToken.php b/src/League/OAuth2/Server/Entity/AbstractToken.php index 12d91367..145e3dda 100644 --- a/src/League/OAuth2/Server/Entity/AbstractToken.php +++ b/src/League/OAuth2/Server/Entity/AbstractToken.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/AccessToken.php b/src/League/OAuth2/Server/Entity/AccessToken.php index b6206b95..468b6afe 100644 --- a/src/League/OAuth2/Server/Entity/AccessToken.php +++ b/src/League/OAuth2/Server/Entity/AccessToken.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/Client.php b/src/League/OAuth2/Server/Entity/Client.php index 35f1ebdf..36527f89 100644 --- a/src/League/OAuth2/Server/Entity/Client.php +++ b/src/League/OAuth2/Server/Entity/Client.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/RefreshToken.php b/src/League/OAuth2/Server/Entity/RefreshToken.php index 2bcb7d8b..f46d94c3 100644 --- a/src/League/OAuth2/Server/Entity/RefreshToken.php +++ b/src/League/OAuth2/Server/Entity/RefreshToken.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/Scope.php b/src/League/OAuth2/Server/Entity/Scope.php index 3ffc97d5..3f5d362f 100644 --- a/src/League/OAuth2/Server/Entity/Scope.php +++ b/src/League/OAuth2/Server/Entity/Scope.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Entity/Session.php b/src/League/OAuth2/Server/Entity/Session.php index d42c482b..9a7c168a 100644 --- a/src/League/OAuth2/Server/Entity/Session.php +++ b/src/League/OAuth2/Server/Entity/Session.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/ClientException.php b/src/League/OAuth2/Server/Exception/ClientException.php index e7f60dd9..41e8bf94 100644 --- a/src/League/OAuth2/Server/Exception/ClientException.php +++ b/src/League/OAuth2/Server/Exception/ClientException.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php index 2f285094..25cd2e5f 100644 --- a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php +++ b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php index 7d797c7f..6e490356 100644 --- a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php +++ b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/OAuth2Exception.php b/src/League/OAuth2/Server/Exception/OAuth2Exception.php index d618a47d..397801cb 100644 --- a/src/League/OAuth2/Server/Exception/OAuth2Exception.php +++ b/src/League/OAuth2/Server/Exception/OAuth2Exception.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Exception/ServerException.php b/src/League/OAuth2/Server/Exception/ServerException.php index 8f7adcfa..27faa241 100644 --- a/src/League/OAuth2/Server/Exception/ServerException.php +++ b/src/League/OAuth2/Server/Exception/ServerException.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index 0efee277..efc7df17 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/AuthCode.php b/src/League/OAuth2/Server/Grant/AuthCode.php index 41f0de13..9ad66234 100644 --- a/src/League/OAuth2/Server/Grant/AuthCode.php +++ b/src/League/OAuth2/Server/Grant/AuthCode.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ @@ -42,7 +42,7 @@ class AuthCode implements GrantTypeInterface { * AuthServer instance * @var AuthServer */ - protected $authServer = null; + protected $server = null; /** * Access token expires in override @@ -69,76 +69,77 @@ class AuthCode implements GrantTypeInterface { /** * Check authorise parameters * - * @param array $inputParams Optional array of parsed $_GET keys - * @throws \OAuth2\Exception\ClientException - * @return array Authorise request parameters + * @throws + * @return array Authorise request parameters */ - public function checkAuthoriseParams($inputParams = array()) + public function checkAuthoriseParams() { // Auth params - $authParams = $this->authServer->getParam(array('client_id', 'redirect_uri', 'response_type', 'scope', 'state'), 'get', $inputParams); + $authParams = $this->server->getParam(array('client_id', 'redirect_uri', 'response_type', 'scope', 'state'), 'get', $inputParams); - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_id'), 0); + $clientId = $this->server->getRequest()->request->get('client_id', null); + if (is_null($clientId)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), + 0 + ); } - if (is_null($authParams['redirect_uri'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'redirect_uri'), 0); + $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); + if (is_null($redirectUri)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), + 0 + ); } - if ($this->authServer->stateParamRequired() === true && is_null($authParams['state'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'state'), 0); + $state = $this->server->getRequest()->request->get('state', null); + if ($this->server->stateParamRequired() === true && is_null($state)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'state'), + 0 + ); } - // Validate client ID and redirect URI - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], null, $authParams['redirect_uri'], $this->identifier); - - if ($clientDetails === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_client'), 8); - } - - $authParams['client_details'] = $clientDetails; - - if (is_null($authParams['response_type'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'response_type'), 0); + $responseType = $this->server->getRequest()->request->get('response_type', null); + if (is_null($responseType)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'response_type'), + 0 + ); } // Ensure response type is one that is recognised - if ( ! in_array($authParams['response_type'], $this->authServer->getResponseTypes())) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('unsupported_response_type'), 3); + if ( ! in_array($responseType, $this->server->getResponseTypes())) { + throw new ClientException( + $this->server->getExceptionMessage('unsupported_response_type'), + 3 + ); } - // Validate scopes - $scopes = explode($this->authServer->getScopeDelimeter(), $authParams['scope']); + // Validate client ID and redirect URI + $client = $this->server->getStorage('client')->get( + $clientId, + null, + $redirectUri, + $this->getIdentifier() + ); - for ($i = 0; $i < count($scopes); $i++) { - $scopes[$i] = trim($scopes[$i]); - if ($scopes[$i] === '') unset($scopes[$i]); // Remove any junk scopes + if (($client instanceof Client) === false) { + throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); } - if ($this->authServer->scopeParamRequired() === true && $this->authServer->getDefaultScope() === null && count($scopes) === 0) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'scope'), 0); - } elseif (count($scopes) === 0 && $this->authServer->getDefaultScope() !== null) { - if (is_array($this->authServer->getDefaultScope())) { - $scopes = $this->authServer->getDefaultScope(); - } else { - $scopes = array($this->authServer->getDefaultScope()); - } - } + // Validate any scopes that are in the request + $scopeParam = $this->server->getRequest()->request->get('scope', ''); + $scopes = $this->validateScopes($scopeParam); - $authParams['scopes'] = array(); - - foreach ($scopes as $scope) { - $scopeDetails = $this->authServer->getStorage('scope')->getScope($scope, $authParams['client_id'], $this->identifier); - - if ($scopeDetails === false) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_scope'), $scope), 4); - } - - $authParams['scopes'][] = $scopeDetails; - } - - return $authParams; + return [ + 'client' => $client, + 'redirect_uri' => $redirectUri, + 'state' => $state, + 'response_type' => $responseType, + 'scopes' => $scopes + ]; } /** @@ -149,26 +150,25 @@ class AuthCode implements GrantTypeInterface { * @param array $authParams The authorise request $_GET parameters * @return string An authorisation code */ - public function newAuthoriseRequest($type, $typeId, $authParams = array()) + public function newAuthoriseRequest($type =, $typeId, $authParams = []) { // Generate an auth code $authCode = SecureKey::make(); - // Remove any old sessions the user might have - $this->authServer->getStorage('session')->deleteSession($authParams['client_id'], $type, $typeId); - // Create a new session - $sessionId = $this->authServer->getStorage('session')->createSession($authParams['client_id'], $type, $typeId); + $session = new Session($this->server); + $session->setOwner($type, $typeId); + $session->associateClient($authParams['client']); // Associate a redirect URI - $this->authServer->getStorage('session')->associateRedirectUri($sessionId, $authParams['redirect_uri']); + $this->server->getStorage('session')->associateRedirectUri($sessionId, $authParams['redirect_uri']); // Associate the auth code - $authCodeId = $this->authServer->getStorage('session')->associateAuthCode($sessionId, $authCode, time() + $this->authTokenTTL); + $authCodeId = $this->server->getStorage('session')->associateAuthCode($sessionId, $authCode, time() + $this->authTokenTTL); // Associate the scopes to the auth code foreach ($authParams['scopes'] as $scope) { - $this->authServer->getStorage('session')->associateAuthCodeScope($authCodeId, $scope['id']); + $this->server->getStorage('session')->associateAuthCodeScope($authCodeId, $scope['id']); } return $authCode; @@ -182,59 +182,59 @@ class AuthCode implements GrantTypeInterface { public function completeFlow($inputParams = null) { // Get the required params - $authParams = $this->authServer->getParam(array('client_id', 'client_secret', 'redirect_uri', 'code'), 'post', $inputParams); + $authParams = $this->server->getParam(array('client_id', 'client_secret', 'redirect_uri', 'code'), 'post', $inputParams); if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_id'), 0); + throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'client_id'), 0); } if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_secret'), 0); + throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'client_secret'), 0); } if (is_null($authParams['redirect_uri'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'redirect_uri'), 0); + throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'redirect_uri'), 0); } // Validate client ID and redirect URI - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], $authParams['redirect_uri'], $this->identifier); + $clientDetails = $this->server->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], $authParams['redirect_uri'], $this->identifier); if ($clientDetails === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_client'), 8); + throw new Exception\ClientException($this->server->getExceptionMessage('invalid_client'), 8); } $authParams['client_details'] = $clientDetails; // Validate the authorization code if (is_null($authParams['code'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'code'), 0); + throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'code'), 0); } // Verify the authorization code matches the client_id and the request_uri - $authCodeDetails = $this->authServer->getStorage('session')->validateAuthCode($authParams['client_id'], $authParams['redirect_uri'], $authParams['code']); + $authCodeDetails = $this->server->getStorage('session')->validateAuthCode($authParams['client_id'], $authParams['redirect_uri'], $authParams['code']); if ( ! $authCodeDetails) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_grant'), 'code'), 9); + throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_grant'), 'code'), 9); } // Get any associated scopes - $scopes = $this->authServer->getStorage('session')->getAuthCodeScopes($authCodeDetails['authcode_id']); + $scopes = $this->server->getStorage('session')->getAuthCodeScopes($authCodeDetails['authcode_id']); // A session ID was returned so update it with an access token and remove the authorisation code $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); + $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->server->getAccessTokenTTL(); $accessTokenExpires = time() + $accessTokenExpiresIn; // Remove the auth code - $this->authServer->getStorage('session')->removeAuthCode($authCodeDetails['session_id']); + $this->server->getStorage('session')->removeAuthCode($authCodeDetails['session_id']); // Create an access token - $accessTokenId = $this->authServer->getStorage('session')->associateAccessToken($authCodeDetails['session_id'], $accessToken, $accessTokenExpires); + $accessTokenId = $this->server->getStorage('session')->associateAccessToken($authCodeDetails['session_id'], $accessToken, $accessTokenExpires); // Associate scopes with the access token if (count($scopes) > 0) { foreach ($scopes as $scope) { - $this->authServer->getStorage('session')->associateScope($accessTokenId, $scope['scope_id']); + $this->server->getStorage('session')->associateScope($accessTokenId, $scope['scope_id']); } } @@ -246,10 +246,10 @@ class AuthCode implements GrantTypeInterface { ); // Associate a refresh token if set - if ($this->authServer->hasGrantType('refresh_token')) { + if ($this->server->hasGrantType('refresh_token')) { $refreshToken = SecureKey::make(); - $refreshTokenTTL = time() + $this->authServer->getGrantType('refresh_token')->getRefreshTokenTTL(); - $this->authServer->getStorage('session')->associateRefreshToken($accessTokenId, $refreshToken, $refreshTokenTTL, $authParams['client_id']); + $refreshTokenTTL = time() + $this->server->getGrantType('refresh_token')->getRefreshTokenTTL(); + $this->server->getStorage('session')->associateRefreshToken($accessTokenId, $refreshToken, $refreshTokenTTL, $authParams['client_id']); $response['refresh_token'] = $refreshToken; } diff --git a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php index f71d6186..da2d123e 100644 --- a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php +++ b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index a61fe923..1f265081 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index d5de5190..d1415b1a 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/ResourceServer.php b/src/League/OAuth2/Server/ResourceServer.php index bae49991..ae9b3e9e 100644 --- a/src/League/OAuth2/Server/ResourceServer.php +++ b/src/League/OAuth2/Server/ResourceServer.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php index c0eaf5a2..bf789a2d 100644 --- a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/Adapter.php b/src/League/OAuth2/Server/Storage/Adapter.php index 9535f18f..39084d6d 100644 --- a/src/League/OAuth2/Server/Storage/Adapter.php +++ b/src/League/OAuth2/Server/Storage/Adapter.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php index 35805352..5cfa616c 100644 --- a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index 9ea2f0c2..85b0d1cf 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php index 6c7d6f0d..c08dcbb2 100644 --- a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/ScopeInterface.php b/src/League/OAuth2/Server/Storage/ScopeInterface.php index 26454389..a6405f89 100644 --- a/src/League/OAuth2/Server/Storage/ScopeInterface.php +++ b/src/League/OAuth2/Server/Storage/ScopeInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index f07013fe..136e6e6e 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Util/RedirectUri.php b/src/League/OAuth2/Server/Util/RedirectUri.php index 517fca1a..15e691b7 100644 --- a/src/League/OAuth2/Server/Util/RedirectUri.php +++ b/src/League/OAuth2/Server/Util/RedirectUri.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ diff --git a/src/League/OAuth2/Server/Util/SecureKey.php b/src/League/OAuth2/Server/Util/SecureKey.php index 6aee6dc1..95b81db2 100644 --- a/src/League/OAuth2/Server/Util/SecureKey.php +++ b/src/League/OAuth2/Server/Util/SecureKey.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ From af06f9f3eabc7fa653d0f9d49e97f3d8058e5992 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 19:34:37 +0000 Subject: [PATCH 046/270] Updated copyright --- src/League/OAuth2/Server/Grant/ClientCredentials.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index 6e85cc30..1e3b6eee 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -4,7 +4,7 @@ * * @package league/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) PHP League of Extraordinary Packages + * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ * @link http://github.com/php-loep/oauth2-server */ From 4e37d9bb611a9874b22349b38b9843daeb7c0785 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 19:35:23 +0000 Subject: [PATCH 047/270] Updated Refresh Token and Password grants --- src/League/OAuth2/Server/Grant/Password.php | 12 +- .../OAuth2/Server/Grant/RefreshToken.php | 5 +- tests/Grant/PasswordTest.php | 474 ++++++++++++++++++ tests/Grant/RefreshTokenTest.php | 359 +++++++++++++ 4 files changed, 841 insertions(+), 9 deletions(-) create mode 100644 tests/Grant/PasswordTest.php create mode 100644 tests/Grant/RefreshTokenTest.php diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index 1f265081..e87da146 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\RefreshToken; @@ -87,7 +87,7 @@ class Password extends AbstractGrant $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_id'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), 0 ); } @@ -95,7 +95,7 @@ class Password extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'client_secret'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), 0 ); } @@ -109,13 +109,13 @@ class Password extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); + throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); } $username = $this->server->getRequest()->request->get('username', null); if (is_null($username)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'username'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'username'), 0 ); } @@ -123,7 +123,7 @@ class Password extends AbstractGrant $password = $this->server->getRequest()->request->get('password', null); if (is_null($password)) { throw new ClientException( - sprintf(Authorization::getExceptionMessage('invalid_request'), 'password'), + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'password'), 0 ); } diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index d1415b1a..87f2563e 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -12,7 +12,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Request; -use League\OAuth2\Server\Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; @@ -88,7 +88,7 @@ class RefreshToken extends AbstractGrant ); if ($client === null) { - throw new ClientException(Authorization::getExceptionMessage('invalid_client'), 8); + throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); } $oldRefreshTokenParam = $this->server->getRequest()->request->get('refresh_token', null); @@ -122,7 +122,6 @@ class RefreshToken extends AbstractGrant } else { // The OAuth spec says that a refreshed access token can have the original scopes or fewer so ensure // the request doesn't include any new scopes - foreach ($requestedScopes as $requestedScope) { if (!isset($scopes[$requestedScope->getId()])) { throw new Exception\ClientException( diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php new file mode 100644 index 00000000..38b33b32 --- /dev/null +++ b/tests/Grant/PasswordTest.php @@ -0,0 +1,474 @@ +setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST['grant_type'] = 'password'; + + $server = new AuthorizationServer; + $grant = new Password; + + $server->addGrantType($grant); + $server->issueAccessToken(); + + } + + function testCompleteFlowMissingClientSecret() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidClient() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testNoUsername() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testNoPassword() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'username' => 'foo' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testNoCallable() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'username' => 'foo', + 'password' => 'foobar' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidScope() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $grant->setVerifyCredentialsCallback(function () { + return 123; + }); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowNoScopes() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'username' => 'username', + 'password' => 'password' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->requireScopeParam(true); + $grant->setVerifyCredentialsCallback(function () { + return 123; + }); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidCredentials() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo', + 'username' => 'username', + 'password' => 'password' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $grant->setVerifyCredentialsCallback(function () { + return false; + }); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlow() + { + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo', + 'username' => 'username', + 'password' => 'password' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $grant->setVerifyCredentialsCallback(function () { + return 123; + }); + + $server->addGrantType($grant); + $response = $server->issueAccessToken(); + + $this->assertTrue(isset($response['access_token'])); + $this->assertTrue(isset($response['token_type'])); + $this->assertTrue(isset($response['expires_in'])); + $this->assertTrue(isset($response['expires'])); + } + + function testCompleteFlowRefreshToken() + { + $_POST = [ + 'grant_type' => 'password', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo', + 'username' => 'username', + 'password' => 'password' + ]; + + $server = new AuthorizationServer; + $grant = new Password; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('associateScope'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $grant->setVerifyCredentialsCallback(function () { + return 123; + }); + + $server->addGrantType($grant); + $server->addGrantType(new RefreshToken); + $response = $server->issueAccessToken(); + + $this->assertTrue(isset($response['access_token'])); + $this->assertTrue(isset($response['refresh_token'])); + $this->assertTrue(isset($response['token_type'])); + $this->assertTrue(isset($response['expires_in'])); + $this->assertTrue(isset($response['expires'])); + } +} \ No newline at end of file diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php new file mode 100644 index 00000000..d0c2785e --- /dev/null +++ b/tests/Grant/RefreshTokenTest.php @@ -0,0 +1,359 @@ +setRefreshTokenTTL(86400); + + $property = new \ReflectionProperty($grant, 'refreshTokenTTL'); + $property->setAccessible(true); + + $this->assertEquals(86400, $property->getValue($grant)); + } + + function testCompleteFlowMissingClientId() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST['grant_type'] = 'refresh_token'; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowMissingClientSecret() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidClient() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowMissingRefreshToken() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->requireScopeParam(true); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowInvalidRefreshToken() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'refresh_token' => 'meh' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('get'); + $refreshTokenStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + $server->requireScopeParam(true); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + function testCompleteFlowExistingScopes() + { + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'refresh_token' => 'refresh_token' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new Session($server)) + ); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + (new AccessToken($server)) + ); + $accessTokenStorage->shouldReceive('delete'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('associateScope'); + $refreshTokenStorage->shouldReceive('delete'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('get')->andReturn( + (new RT($server)) + ); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $server->addGrantType($grant); + $response = $server->issueAccessToken(); + + $this->assertTrue(isset($response['access_token'])); + $this->assertTrue(isset($response['refresh_token'])); + $this->assertTrue(isset($response['token_type'])); + $this->assertTrue(isset($response['expires_in'])); + $this->assertTrue(isset($response['expires'])); + } + + function testCompleteFlowRequestScopes() + { + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'refresh_token' => 'refresh_token', + 'scope' => 'foo' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $oldSession = (new Session($server))->associateScope((new Scope($server))->setId('foo')); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + $oldSession + ); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + (new AccessToken($server)) + ); + $accessTokenStorage->shouldReceive('delete'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('associateScope'); + $refreshTokenStorage->shouldReceive('delete'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('get')->andReturn( + (new RT($server)) + ); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $server->addGrantType($grant); + $response = $server->issueAccessToken(); + + $this->assertTrue(isset($response['access_token'])); + $this->assertTrue(isset($response['refresh_token'])); + $this->assertTrue(isset($response['token_type'])); + $this->assertTrue(isset($response['expires_in'])); + $this->assertTrue(isset($response['expires'])); + } + + function testCompleteFlowRequestScopesInvalid() + { + $_POST = [ + 'grant_type' => 'refresh_token', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'refresh_token' => 'refresh_token', + 'scope' => 'blah' + ]; + + $server = new AuthorizationServer; + $grant = new RefreshToken; + + $oldSession = (new Session($server))->associateScope((new Scope($server))->setId('foo')); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + $oldSession + ); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + (new AccessToken($server)) + ); + $accessTokenStorage->shouldReceive('delete'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('associateScope'); + $refreshTokenStorage->shouldReceive('delete'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('get')->andReturn( + (new RT($server)) + ); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('blah') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $server->addGrantType($grant); + + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + + $server->issueAccessToken(); + } +} \ No newline at end of file From 22794d49d19b5bf3c533d10fffab0604f8e94a50 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 19:35:53 +0000 Subject: [PATCH 048/270] Removed old implicit grant --- src/League/OAuth2/Server/Grant/Implicit.php | 90 --------------------- 1 file changed, 90 deletions(-) delete mode 100644 src/League/OAuth2/Server/Grant/Implicit.php diff --git a/src/League/OAuth2/Server/Grant/Implicit.php b/src/League/OAuth2/Server/Grant/Implicit.php deleted file mode 100644 index 33eb3491..00000000 --- a/src/League/OAuth2/Server/Grant/Implicit.php +++ /dev/null @@ -1,90 +0,0 @@ - - * @copyright Copyright (c) PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Grant; - -use League\OAuth2\Server\Request; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Exception; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; - -/** - * Client credentials grant class - */ -class Implicit implements GrantTypeInterface { - - use GrantTrait; - - /** - * Grant identifier - * @var string - */ - protected $identifier = 'implicit'; - - /** - * Response type - * @var string - */ - protected $responseType = 'token'; - - /** - * AuthServer instance - * @var AuthServer - */ - protected $authServer = null; - - /** - * Access token expires in override - * @var int - */ - protected $accessTokenTTL = null; - - /** - * Complete the client credentials grant - * @return array - */ - public function completeFlow() - { - // Remove any old sessions the user might have - $this->authServer->getStorage('session')->deleteSession($authParams['client_id'], 'user', $authParams['user_id']); - - // Generate a new access token - $accessToken = SecureKey::make(); - - // Compute expiry time - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; - - // Create a new session - $sessionId = $this->authServer->getStorage('session')->createSession($authParams['client_id'], 'user', $authParams['user_id']); - - // Create an access token - $accessTokenId = $this->authServer->getStorage('session')->associateAccessToken($sessionId, $accessToken, $accessTokenExpires); - - // Associate scopes with the access token - foreach ($authParams['scopes'] as $scope) { - $this->authServer->getStorage('session')->associateScope($accessTokenId, $scope['id']); - } - - $response = array( - 'access_token' => $accessToken, - 'token_type' => 'Bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn, - ); - - return $response; - } - -} From c8c69829f06740aa5564fc84455aff462428f0ff Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 20:02:06 +0000 Subject: [PATCH 049/270] Copyright change --- license.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/license.txt b/license.txt index 15242b16..7bfce8c8 100644 --- a/license.txt +++ b/license.txt @@ -1,6 +1,6 @@ MIT License -Copyright (C) 2013 PHP League of Extraordinary Packages +Copyright (C) 2013 Alex Bilbie Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in From 2a524efff553b0e0ec22deb37a73987c444e2b0a Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 20:02:22 +0000 Subject: [PATCH 050/270] Bug fix --- src/League/OAuth2/Server/AuthorizationServer.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/League/OAuth2/Server/AuthorizationServer.php b/src/League/OAuth2/Server/AuthorizationServer.php index 81f2377b..5155e7e0 100644 --- a/src/League/OAuth2/Server/AuthorizationServer.php +++ b/src/League/OAuth2/Server/AuthorizationServer.php @@ -271,10 +271,10 @@ class AuthorizationServer extends AbstractServer * @param AuthCodeInterface $authCode * @return self */ - public function setAuthCodeStorage(AuthCodeInterface $authCode) + public function setAuthCodeStorage(AuthCodeInterface $storage) { $storage->setServer($this); - $this->storages['auth_code'] = $authCode; + $this->storages['auth_code'] = $storage; return $this; } From c60b29d201b5ec51146a1d28bff3f9bbbdcf4f4e Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 20:03:05 +0000 Subject: [PATCH 051/270] First commit of AuthCode grant and entity --- .../OAuth2/Server/Entity/AbstractToken.php | 2 +- src/League/OAuth2/Server/Entity/AuthCode.php | 78 +++++++++++++++++++ tests/Entities/AuthCodeTest.php | 51 ++++++++++++ 3 files changed, 130 insertions(+), 1 deletion(-) create mode 100644 src/League/OAuth2/Server/Entity/AuthCode.php create mode 100644 tests/Entities/AuthCodeTest.php diff --git a/src/League/OAuth2/Server/Entity/AbstractToken.php b/src/League/OAuth2/Server/Entity/AbstractToken.php index 145e3dda..07cfe988 100644 --- a/src/League/OAuth2/Server/Entity/AbstractToken.php +++ b/src/League/OAuth2/Server/Entity/AbstractToken.php @@ -176,7 +176,7 @@ abstract class AbstractToken * @param array $unformated Array of \League\OAuth2\Server\Entity\Scope * @return array */ - private function formatScopes($unformated = []) + protected function formatScopes($unformated = []) { $scopes = []; foreach ($unformated as $scope) { diff --git a/src/League/OAuth2/Server/Entity/AuthCode.php b/src/League/OAuth2/Server/Entity/AuthCode.php new file mode 100644 index 00000000..70f2052d --- /dev/null +++ b/src/League/OAuth2/Server/Entity/AuthCode.php @@ -0,0 +1,78 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link http://github.com/php-loep/oauth2-server + */ + +namespace League\OAuth2\Server\Entity; + +use League\OAuth2\Server\Storage\SessionStorageInterface; +use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Util\SecureKey; +use League\OAuth2\Server\Exception\InvalidAccessTokenException; +use Symfony\Component\HttpFoundation\ParameterBag; + +/** + * Access token entity class + */ +class AuthCode extends AbstractToken +{ + /** + * {@inheritdoc} + */ + public function getSession() + { + if ($this->session instanceof Session) { + return $this->session; + } + + $this->session = $this->server->getStorage('session')->getByAuthCode($this->token); + return $this->session; + } + + /** + * {@inheritdoc} + */ + public function getScopes() + { + if ($this->scopes === null) { + $this->scopes = $this->formatScopes( + $this->server->getStorage('auth_code')->getScopes($this->getToken()) + ); + } + + return $this->scopes; + } + + /** + * {@inheritdoc} + */ + public function save() + { + $this->server->getStorage('auth_code')->create( + $this->getToken(), + $this->getExpireTime(), + $this->getSession()->getId() + ); + + // Associate the scope with the token + foreach ($this->getScopes() as $scope) { + $this->server->getStorage('auth_code')->associateScope($this->getToken(), $scope->getId()); + } + + return $this; + } + + /** + * {@inheritdoc} + */ + public function expire() + { + $this->server->getStorage('auth_code')->delete($this->getToken()); + } +} diff --git a/tests/Entities/AuthCodeTest.php b/tests/Entities/AuthCodeTest.php new file mode 100644 index 00000000..0d325ea6 --- /dev/null +++ b/tests/Entities/AuthCodeTest.php @@ -0,0 +1,51 @@ +shouldReceive('create'); + $authCodeStorage->shouldReceive('associateScope'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('getByAuthCode')->andReturn( + (new Session($server)) + ); + $sessionStorage->shouldReceive('setServer'); + + $server->setAuthCodeStorage($authCodeStorage); + $server->setSessionStorage($sessionStorage); + + $entity = new AuthCode($server); + $this->assertTrue($entity->save() instanceof AuthCode); + } + + function testExpire() + { + $server = new Authorization(); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('delete'); + $authCodeStorage->shouldReceive('setServer'); + + $server->setAuthCodeStorage($authCodeStorage); + + $entity = new AuthCode($server); + $this->assertSame($entity->expire(), null); + } +} From 9ac56ad5470e944fbef4b20896d85c43c14d9e64 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 9 Mar 2014 20:05:38 +0000 Subject: [PATCH 052/270] Updated @link --- src/League/OAuth2/Server/AbstractServer.php | 2 +- src/League/OAuth2/Server/AuthorizationServer.php | 2 +- src/League/OAuth2/Server/Entity/AbstractToken.php | 2 +- src/League/OAuth2/Server/Entity/AccessToken.php | 2 +- src/League/OAuth2/Server/Entity/AuthCode.php | 2 +- src/League/OAuth2/Server/Entity/Client.php | 2 +- src/League/OAuth2/Server/Entity/RefreshToken.php | 2 +- src/League/OAuth2/Server/Entity/Scope.php | 2 +- src/League/OAuth2/Server/Entity/Session.php | 2 +- src/League/OAuth2/Server/Exception/ClientException.php | 2 +- .../OAuth2/Server/Exception/InvalidAccessTokenException.php | 2 +- .../OAuth2/Server/Exception/InvalidGrantTypeException.php | 2 +- src/League/OAuth2/Server/Exception/OAuth2Exception.php | 2 +- src/League/OAuth2/Server/Exception/ServerException.php | 2 +- src/League/OAuth2/Server/Grant/AbstractGrant.php | 2 +- src/League/OAuth2/Server/Grant/AuthCode.php | 2 +- src/League/OAuth2/Server/Grant/ClientCredentials.php | 2 +- src/League/OAuth2/Server/Grant/GrantTypeInterface.php | 2 +- src/League/OAuth2/Server/Grant/Password.php | 2 +- src/League/OAuth2/Server/Grant/RefreshToken.php | 2 +- src/League/OAuth2/Server/ResourceServer.php | 2 +- src/League/OAuth2/Server/Storage/AccessTokenInterface.php | 2 +- src/League/OAuth2/Server/Storage/Adapter.php | 2 +- src/League/OAuth2/Server/Storage/AuthCodeInterface.php | 2 +- src/League/OAuth2/Server/Storage/ClientInterface.php | 2 +- src/League/OAuth2/Server/Storage/RefreshTokenInterface.php | 2 +- src/League/OAuth2/Server/Storage/ScopeInterface.php | 2 +- src/League/OAuth2/Server/Storage/SessionInterface.php | 2 +- src/League/OAuth2/Server/Util/RedirectUri.php | 2 +- src/League/OAuth2/Server/Util/SecureKey.php | 2 +- 30 files changed, 30 insertions(+), 30 deletions(-) diff --git a/src/League/OAuth2/Server/AbstractServer.php b/src/League/OAuth2/Server/AbstractServer.php index 8ecd4394..030c5de5 100644 --- a/src/League/OAuth2/Server/AbstractServer.php +++ b/src/League/OAuth2/Server/AbstractServer.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server; diff --git a/src/League/OAuth2/Server/AuthorizationServer.php b/src/League/OAuth2/Server/AuthorizationServer.php index 5155e7e0..50407072 100644 --- a/src/League/OAuth2/Server/AuthorizationServer.php +++ b/src/League/OAuth2/Server/AuthorizationServer.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server; diff --git a/src/League/OAuth2/Server/Entity/AbstractToken.php b/src/League/OAuth2/Server/Entity/AbstractToken.php index 07cfe988..1ca91048 100644 --- a/src/League/OAuth2/Server/Entity/AbstractToken.php +++ b/src/League/OAuth2/Server/Entity/AbstractToken.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/AccessToken.php b/src/League/OAuth2/Server/Entity/AccessToken.php index 468b6afe..c4ad126b 100644 --- a/src/League/OAuth2/Server/Entity/AccessToken.php +++ b/src/League/OAuth2/Server/Entity/AccessToken.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/AuthCode.php b/src/League/OAuth2/Server/Entity/AuthCode.php index 70f2052d..7bfcae10 100644 --- a/src/League/OAuth2/Server/Entity/AuthCode.php +++ b/src/League/OAuth2/Server/Entity/AuthCode.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/Client.php b/src/League/OAuth2/Server/Entity/Client.php index 36527f89..d7589a44 100644 --- a/src/League/OAuth2/Server/Entity/Client.php +++ b/src/League/OAuth2/Server/Entity/Client.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/RefreshToken.php b/src/League/OAuth2/Server/Entity/RefreshToken.php index f46d94c3..4fc2cc92 100644 --- a/src/League/OAuth2/Server/Entity/RefreshToken.php +++ b/src/League/OAuth2/Server/Entity/RefreshToken.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/Scope.php b/src/League/OAuth2/Server/Entity/Scope.php index 3f5d362f..b2ad9f4e 100644 --- a/src/League/OAuth2/Server/Entity/Scope.php +++ b/src/League/OAuth2/Server/Entity/Scope.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Entity/Session.php b/src/League/OAuth2/Server/Entity/Session.php index 9a7c168a..ac83b336 100644 --- a/src/League/OAuth2/Server/Entity/Session.php +++ b/src/League/OAuth2/Server/Entity/Session.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Entity; diff --git a/src/League/OAuth2/Server/Exception/ClientException.php b/src/League/OAuth2/Server/Exception/ClientException.php index 41e8bf94..40e4bf43 100644 --- a/src/League/OAuth2/Server/Exception/ClientException.php +++ b/src/League/OAuth2/Server/Exception/ClientException.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Exception; diff --git a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php index 25cd2e5f..e32d67f4 100644 --- a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php +++ b/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Exception; diff --git a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php index 6e490356..8a4a462e 100644 --- a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php +++ b/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Exception; diff --git a/src/League/OAuth2/Server/Exception/OAuth2Exception.php b/src/League/OAuth2/Server/Exception/OAuth2Exception.php index 397801cb..586c7fd5 100644 --- a/src/League/OAuth2/Server/Exception/OAuth2Exception.php +++ b/src/League/OAuth2/Server/Exception/OAuth2Exception.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Exception; diff --git a/src/League/OAuth2/Server/Exception/ServerException.php b/src/League/OAuth2/Server/Exception/ServerException.php index 27faa241..2b5879e2 100644 --- a/src/League/OAuth2/Server/Exception/ServerException.php +++ b/src/League/OAuth2/Server/Exception/ServerException.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Exception; diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/League/OAuth2/Server/Grant/AbstractGrant.php index efc7df17..c559656c 100644 --- a/src/League/OAuth2/Server/Grant/AbstractGrant.php +++ b/src/League/OAuth2/Server/Grant/AbstractGrant.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/Grant/AuthCode.php b/src/League/OAuth2/Server/Grant/AuthCode.php index 9ad66234..9d6549a9 100644 --- a/src/League/OAuth2/Server/Grant/AuthCode.php +++ b/src/League/OAuth2/Server/Grant/AuthCode.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/League/OAuth2/Server/Grant/ClientCredentials.php index 1e3b6eee..319530cb 100644 --- a/src/League/OAuth2/Server/Grant/ClientCredentials.php +++ b/src/League/OAuth2/Server/Grant/ClientCredentials.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php index da2d123e..3c2b22c4 100644 --- a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php +++ b/src/League/OAuth2/Server/Grant/GrantTypeInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index e87da146..80901678 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php index 87f2563e..7fe15632 100644 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ b/src/League/OAuth2/Server/Grant/RefreshToken.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Grant; diff --git a/src/League/OAuth2/Server/ResourceServer.php b/src/League/OAuth2/Server/ResourceServer.php index ae9b3e9e..35ed1e37 100644 --- a/src/League/OAuth2/Server/ResourceServer.php +++ b/src/League/OAuth2/Server/ResourceServer.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server; diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php index bf789a2d..e5d724f2 100644 --- a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/AccessTokenInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/Adapter.php b/src/League/OAuth2/Server/Storage/Adapter.php index 39084d6d..a8ac1f1f 100644 --- a/src/League/OAuth2/Server/Storage/Adapter.php +++ b/src/League/OAuth2/Server/Storage/Adapter.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php index 5cfa616c..aaf1898c 100644 --- a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php +++ b/src/League/OAuth2/Server/Storage/AuthCodeInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/League/OAuth2/Server/Storage/ClientInterface.php index 85b0d1cf..8b4643b8 100644 --- a/src/League/OAuth2/Server/Storage/ClientInterface.php +++ b/src/League/OAuth2/Server/Storage/ClientInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php index c08dcbb2..f87f8abd 100644 --- a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php +++ b/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/ScopeInterface.php b/src/League/OAuth2/Server/Storage/ScopeInterface.php index a6405f89..59bfcdd9 100644 --- a/src/League/OAuth2/Server/Storage/ScopeInterface.php +++ b/src/League/OAuth2/Server/Storage/ScopeInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php index 136e6e6e..0da92233 100644 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ b/src/League/OAuth2/Server/Storage/SessionInterface.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Storage; diff --git a/src/League/OAuth2/Server/Util/RedirectUri.php b/src/League/OAuth2/Server/Util/RedirectUri.php index 15e691b7..01475b05 100644 --- a/src/League/OAuth2/Server/Util/RedirectUri.php +++ b/src/League/OAuth2/Server/Util/RedirectUri.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Util; diff --git a/src/League/OAuth2/Server/Util/SecureKey.php b/src/League/OAuth2/Server/Util/SecureKey.php index 95b81db2..7f579d41 100644 --- a/src/League/OAuth2/Server/Util/SecureKey.php +++ b/src/League/OAuth2/Server/Util/SecureKey.php @@ -6,7 +6,7 @@ * @author Alex Bilbie * @copyright Copyright (c) Alex Bilbie * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server + * @link https://github.com/thephpleague/oauth2-server */ namespace League\OAuth2\Server\Util; From b5217271b0cf378227e738f908da2192e3b41607 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:13:45 +0100 Subject: [PATCH 053/270] Added exception message testing --- tests/Grant/ClientCredentialsTest.php | 8 ++++---- tests/Grant/PasswordTest.php | 20 +++++++++++--------- tests/Grant/RefreshTokenTest.php | 12 ++++++------ 3 files changed, 21 insertions(+), 19 deletions(-) diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index cdc74df9..0ba342c7 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -13,7 +13,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase { function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); $_POST['grant_type'] = 'client_credentials'; @@ -27,7 +27,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); $_POST = [ 'grant_type' => 'client_credentials', @@ -43,7 +43,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); $_POST = [ 'grant_type' => 'client_credentials', @@ -66,7 +66,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); $_POST = [ 'grant_type' => 'client_credentials', diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index 38b33b32..9941761c 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -14,7 +14,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase { function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); $_POST['grant_type'] = 'password'; @@ -28,7 +28,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); $_POST = [ 'grant_type' => 'password', @@ -44,7 +44,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); $_POST = [ 'grant_type' => 'password', @@ -67,7 +67,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoUsername() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "username" parameter.'); $_POST = [ 'grant_type' => 'password', @@ -109,7 +109,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoPassword() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "password" parameter.'); $_POST = [ 'grant_type' => 'password', @@ -152,7 +152,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoCallable() { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException', 'Null or non-callable callback set on Password grant'); $_POST = [ 'grant_type' => 'password', @@ -196,12 +196,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); $_POST = [ 'grant_type' => 'password', 'client_id' => 'testapp', 'client_secret' => 'foobar', + 'username' => 'foo', + 'password' => 'foobar', 'scope' => 'foo' ]; @@ -242,7 +244,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowNoScopes() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "scope" parameter.'); $_POST = [ 'grant_type' => 'password', @@ -291,7 +293,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidCredentials() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The user credentials were incorrect.'); $_POST = [ 'grant_type' => 'password', diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index d0c2785e..c6b0bc36 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -27,7 +27,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); $_POST['grant_type'] = 'refresh_token'; @@ -40,7 +40,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); $_POST = [ 'grant_type' => 'refresh_token', @@ -56,7 +56,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); $_POST = [ 'grant_type' => 'refresh_token', @@ -79,7 +79,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingRefreshToken() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "refresh_token" parameter.'); $_POST = [ 'grant_type' => 'refresh_token', @@ -113,7 +113,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidRefreshToken() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The refresh token is invalid.'); $_POST = [ 'grant_type' => 'refresh_token', @@ -352,7 +352,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "blah" scope.'); $server->issueAccessToken(); } From de681b1ebfafa54c9ac826c07bd86e27b808a93c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:14:16 +0100 Subject: [PATCH 054/270] RefreshToken is already taken so use RT --- src/League/OAuth2/Server/Grant/Password.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/League/OAuth2/Server/Grant/Password.php index 80901678..46bc8160 100644 --- a/src/League/OAuth2/Server/Grant/Password.php +++ b/src/League/OAuth2/Server/Grant/Password.php @@ -14,7 +14,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\RefreshToken; +use League\OAuth2\Server\Entity\RefreshToken as RT; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Exception\ClientException; @@ -164,7 +164,7 @@ class Password extends AbstractGrant // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { - $refreshToken = new RefreshToken($this->server); + $refreshToken = new RT($this->server); $refreshToken->setToken(SecureKey::make()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); $response['refresh_token'] = $refreshToken->getToken(); From 2d9054053125148f2a98659e22277b1a345e6cd7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:14:29 +0100 Subject: [PATCH 055/270] Spelling fix --- src/League/OAuth2/Server/Entity/AbstractToken.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/League/OAuth2/Server/Entity/AbstractToken.php b/src/League/OAuth2/Server/Entity/AbstractToken.php index 1ca91048..02c8efee 100644 --- a/src/League/OAuth2/Server/Entity/AbstractToken.php +++ b/src/League/OAuth2/Server/Entity/AbstractToken.php @@ -173,13 +173,13 @@ abstract class AbstractToken /** * Format the local scopes array - * @param array $unformated Array of \League\OAuth2\Server\Entity\Scope + * @param array $unformatted Array of \League\OAuth2\Server\Entity\Scope * @return array */ - protected function formatScopes($unformated = []) + protected function formatScopes($unformatted = []) { $scopes = []; - foreach ($unformated as $scope) { + foreach ($unformatted as $scope) { if ($scope instanceof Scope) { $scopes[$scope->getId()] = $scope; } From 82f7c7abaf4da30deeb2c3a31dffd8d2bbc4e562 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:14:37 +0100 Subject: [PATCH 056/270] Removed unused method --- src/League/OAuth2/Server/Entity/Session.php | 11 ----------- 1 file changed, 11 deletions(-) diff --git a/src/League/OAuth2/Server/Entity/Session.php b/src/League/OAuth2/Server/Entity/Session.php index ac83b336..767403c4 100644 --- a/src/League/OAuth2/Server/Entity/Session.php +++ b/src/League/OAuth2/Server/Entity/Session.php @@ -188,17 +188,6 @@ class Session return $this; } - /** - * Associate an authorization code with the session - * @param \League\OAuth2\Server\Entity\AuthCode $authCode - * @return self - */ - public function associateAuthCode(AuthCode $authCode) - { - $this->authCode = $authCode; - return $this; - } - /** * Associate a client with the session * @param League\OAuth2\Server\Entity\Client $client The client From 2aa318cfd732ada3cf5623a5918e75203a033764 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:14:46 +0100 Subject: [PATCH 057/270] AuthCode grant --- src/League/OAuth2/Server/Entity/AuthCode.php | 42 ++ src/League/OAuth2/Server/Grant/AuthCode.php | 191 +++--- tests/Entities/AuthCodeTest.php | 21 +- tests/Grant/AuthCodeTest.php | 615 +++++++++++++++++++ 4 files changed, 786 insertions(+), 83 deletions(-) create mode 100644 tests/Grant/AuthCodeTest.php diff --git a/src/League/OAuth2/Server/Entity/AuthCode.php b/src/League/OAuth2/Server/Entity/AuthCode.php index 7bfcae10..ea0ec9de 100644 --- a/src/League/OAuth2/Server/Entity/AuthCode.php +++ b/src/League/OAuth2/Server/Entity/AuthCode.php @@ -22,6 +22,48 @@ use Symfony\Component\HttpFoundation\ParameterBag; */ class AuthCode extends AbstractToken { + /** + * Redirect URI + * @var string + */ + protected $redirectUri = ''; + + /** + * Set the redirect URI for the authorization request + * @param string $redirectUri + * @return self + */ + public function setRedirectUri($redirectUri) + { + $this->redirectUri = $redirectUri; + return $this; + } + + /** + * Get the redirect URI + * @return string + */ + public function getRedirectUri() + { + return $this->redirectUri; + } + + /** + * [generateRedirectUri description] + * @param string $state The state parameter if set by the client + * @param string $queryDelimeter The query delimiter ('?' for auth code grant, '#' for implicit grant) + * @return string + */ + public function generateRedirectUri($state = null, $queryDelimeter = '?') + { + $uri = $this->getRedirectUri(); + $uri .= (strstr($this->getRedirectUri(), $queryDelimeter) === false) ? $queryDelimeter : '&'; + return $uri.http_build_query([ + 'code' => $this->getToken(), + 'state' => $state + ]); + } + /** * {@inheritdoc} */ diff --git a/src/League/OAuth2/Server/Grant/AuthCode.php b/src/League/OAuth2/Server/Grant/AuthCode.php index 9d6549a9..39271433 100644 --- a/src/League/OAuth2/Server/Grant/AuthCode.php +++ b/src/League/OAuth2/Server/Grant/AuthCode.php @@ -11,21 +11,26 @@ namespace League\OAuth2\Server\Grant; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Request; -use League\OAuth2\Server\Authorization; use League\OAuth2\Server\Exception; +use League\OAuth2\Server\Entity\Client; +use League\OAuth2\Server\Entity\RefreshToken; +use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\AuthCode as AC; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; +use League\OAuth2\Server\Exception\ClientException; /** * Auth code grant class */ -class AuthCode implements GrantTypeInterface { - - use GrantTrait; - +class AuthCode extends AbstractGrant +{ /** * Grant identifier * @var string @@ -74,9 +79,7 @@ class AuthCode implements GrantTypeInterface { */ public function checkAuthoriseParams() { - // Auth params - $authParams = $this->server->getParam(array('client_id', 'redirect_uri', 'response_type', 'scope', 'state'), 'get', $inputParams); - + // Get required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { throw new ClientException( @@ -150,28 +153,27 @@ class AuthCode implements GrantTypeInterface { * @param array $authParams The authorise request $_GET parameters * @return string An authorisation code */ - public function newAuthoriseRequest($type =, $typeId, $authParams = []) + public function newAuthoriseRequest($type, $typeId, $authParams = []) { - // Generate an auth code - $authCode = SecureKey::make(); - // Create a new session $session = new Session($this->server); $session->setOwner($type, $typeId); $session->associateClient($authParams['client']); + $session->save(); - // Associate a redirect URI - $this->server->getStorage('session')->associateRedirectUri($sessionId, $authParams['redirect_uri']); + // Create a new auth code + $authCode = new AC($this->server); + $authCode->setToken(SecureKey::make()); + $authCode->setRedirectUri($authParams['redirect_uri']); - // Associate the auth code - $authCodeId = $this->server->getStorage('session')->associateAuthCode($sessionId, $authCode, time() + $this->authTokenTTL); - - // Associate the scopes to the auth code foreach ($authParams['scopes'] as $scope) { - $this->server->getStorage('session')->associateAuthCodeScope($authCodeId, $scope['id']); + $authCode->associateScope($scope); } - return $authCode; + $authCode->setSession($session); + $authCode->save(); + + return $authCode->generateRedirectUri($authParams['state']); } /** @@ -182,78 +184,107 @@ class AuthCode implements GrantTypeInterface { public function completeFlow($inputParams = null) { // Get the required params - $authParams = $this->server->getParam(array('client_id', 'client_secret', 'redirect_uri', 'code'), 'post', $inputParams); - - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'client_id'), 0); + $clientId = $this->server->getRequest()->request->get('client_id', null); + if (is_null($clientId)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), + 0 + ); } - if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'client_secret'), 0); + $clientSecret = $this->server->getRequest()->request->get('client_secret', null); + if (is_null($clientSecret)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), + 0 + ); } - if (is_null($authParams['redirect_uri'])) { - throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'redirect_uri'), 0); + $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); + if (is_null($redirectUri)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), + 0 + ); } - // Validate client ID and redirect URI - $clientDetails = $this->server->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], $authParams['redirect_uri'], $this->identifier); - - if ($clientDetails === false) { - throw new Exception\ClientException($this->server->getExceptionMessage('invalid_client'), 8); - } - - $authParams['client_details'] = $clientDetails; - - // Validate the authorization code - if (is_null($authParams['code'])) { - throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'code'), 0); - } - - // Verify the authorization code matches the client_id and the request_uri - $authCodeDetails = $this->server->getStorage('session')->validateAuthCode($authParams['client_id'], $authParams['redirect_uri'], $authParams['code']); - - if ( ! $authCodeDetails) { - throw new Exception\ClientException(sprintf($this->server->getExceptionMessage('invalid_grant'), 'code'), 9); - } - - // Get any associated scopes - $scopes = $this->server->getStorage('session')->getAuthCodeScopes($authCodeDetails['authcode_id']); - - // A session ID was returned so update it with an access token and remove the authorisation code - $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->server->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; - - // Remove the auth code - $this->server->getStorage('session')->removeAuthCode($authCodeDetails['session_id']); - - // Create an access token - $accessTokenId = $this->server->getStorage('session')->associateAccessToken($authCodeDetails['session_id'], $accessToken, $accessTokenExpires); - - // Associate scopes with the access token - if (count($scopes) > 0) { - foreach ($scopes as $scope) { - $this->server->getStorage('session')->associateScope($accessTokenId, $scope['scope_id']); - } - } - - $response = array( - 'access_token' => $accessToken, - 'token_type' => 'Bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn + // Validate client ID and client secret + $client = $this->server->getStorage('client')->get( + $clientId, + $clientSecret, + $redirectUri, + $this->getIdentifier() ); + if (($client instanceof Client) === false) { + throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + } + + // Validate the auth code + $authCode = $this->server->getRequest()->request->get('code', null); + if (is_null($authCode)) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'code'), + 0 + ); + } + + $code = $this->server->getStorage('auth_code')->get($authCode); + if (($code instanceof AC) === false) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'code'), + 9 + ); + } + + // Check redirect URI presented matches redirect URI originally used in authorise request + if ($code->getRedirectUri() !== $redirectUri) { + throw new ClientException( + sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), + 9 + ); + } + + $session = $code->getSession(); + $authCodeScopes = $code->getScopes(); + + // Generate the access token + $accessToken = new AccessToken($this->server); + $accessToken->setToken(SecureKey::make()); + $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + + foreach ($authCodeScopes as $authCodeScope) { + $session->associateScope($authCodeScope); + } + + $response = [ + 'access_token' => $accessToken->getToken(), + 'token_type' => 'Bearer', + 'expires' => $accessToken->getExpireTime(), + 'expires_in' => $this->server->getAccessTokenTTL() + ]; + // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { - $refreshToken = SecureKey::make(); - $refreshTokenTTL = time() + $this->server->getGrantType('refresh_token')->getRefreshTokenTTL(); - $this->server->getStorage('session')->associateRefreshToken($accessTokenId, $refreshToken, $refreshTokenTTL, $authParams['client_id']); - $response['refresh_token'] = $refreshToken; + $refreshToken = new RefreshToken($this->server); + $refreshToken->setToken(SecureKey::make()); + $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); + $response['refresh_token'] = $refreshToken->getToken(); + } + + // Expire the auth code + $code->expire(); + + // Save all the things + $session->save(); + $accessToken->setSession($session); + $accessToken->save(); + + if ($this->server->hasGrantType('refresh_token')) { + $refreshToken->setAccessToken($accessToken); + $refreshToken->save(); } return $response; } - } diff --git a/tests/Entities/AuthCodeTest.php b/tests/Entities/AuthCodeTest.php index 0d325ea6..6499f76f 100644 --- a/tests/Entities/AuthCodeTest.php +++ b/tests/Entities/AuthCodeTest.php @@ -5,14 +5,29 @@ namespace LeagueTests\Entities; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\AuthCode; -use League\OAuth2\Server\AuthorizationServer as Authorization; +use League\OAuth2\Server\AuthorizationServer; use \Mockery as M; class AuthCodeTest extends \PHPUnit_Framework_TestCase { + function testSetGet() + { + $server = new AuthorizationServer; + $session = M::mock('League\OAuth2\Server\Entity\Session'); + + $code = new AuthCode($server); + $code->setRedirectUri('http://foo/bar'); + $code->setToken('foobar'); + $code->setSession($session); + + $this->assertEquals('http://foo/bar', $code->getRedirectUri()); + $this->assertEquals('http://foo/bar?code=foobar', $code->generateRedirectUri()); + $this->assertTrue($code->getSession() instanceof \League\OAuth2\Server\Entity\Session); + } + function testSave() { - $server = new Authorization(); + $server = new AuthorizationServer(); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('create'); @@ -37,7 +52,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase function testExpire() { - $server = new Authorization(); + $server = new AuthorizationServer(); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('delete'); diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php new file mode 100644 index 00000000..ecd04309 --- /dev/null +++ b/tests/Grant/AuthCodeTest.php @@ -0,0 +1,615 @@ +setAuthTokenTTL(100); + + $class = new \ReflectionClass($grant); + $property = $class->getProperty('authTokenTTL'); + $property->setAccessible(true); + $this->assertEquals(100, $property->getValue($grant)); + } + + public function testCheckAuthoriseParamsMissingClientId() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + + $_POST = []; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + + } + + public function testCheckAuthoriseParamsMissingRedirectUri() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + + $_POST = [ + 'client_id' => 'testapp' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParamsMissingStateParam() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "state" parameter.'); + + $_POST = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar' + ]; + + $server = new Authorization; + $server->requireStateParam(true); + $grant = new AuthCode; + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParamsMissingResponseType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "response_type" parameter.'); + + $_POST = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParamsInvalidResponseType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The authorization server does not support obtaining an access token using this method.'); + + $_POST = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar', + 'response_type' => 'foobar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParamsInvalidClient() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + + $_POST = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar', + 'response_type' => 'code' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParamsInvalidScope() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); + + $_POST = [ + 'response_type' => 'code', + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar', + 'scope' => 'foo' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $grant->checkAuthoriseParams(); + } + + public function testCheckAuthoriseParams() + { + $_POST = [ + 'response_type' => 'code', + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar', + 'scope' => 'foo' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + + $result = $grant->checkAuthoriseParams(); + + $this->assertTrue($result['client'] instanceof Client); + $this->assertTrue($result['redirect_uri'] === $_POST['redirect_uri']); + $this->assertTrue($result['state'] === null); + $this->assertTrue($result['response_type'] === 'code'); + $this->assertTrue($result['scopes']['foo'] instanceof Scope); + } + + public function testNewAuthoriseRequest() + { + $server = new Authorization; + + $client = (new Client($server))->setId('testapp'); + $scope = (new Scope($server))->setId('foo'); + + $grant = new AuthCode; + $server->addGrantType($grant); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([$scope]); + $sessionStorage->shouldReceive('associateScope'); + $server->setSessionStorage($sessionStorage); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('get'); + $authCodeStorage->shouldReceive('create'); + $authCodeStorage->shouldReceive('associateScope'); + $server->setAuthCodeStorage($authCodeStorage); + + $grant->newAuthoriseRequest('user', 123, [ + 'client' => $client, + 'redirect_uri' => 'http://foo/bar', + 'scopes' => [$scope], + 'state' => 'foobar' + ]); + } + + public function testCompleteFlowMissingClientId() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + + $_POST['grant_type'] = 'authorization_code'; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $server->issueAccessToken(); + + } + + public function testCompleteFlowMissingClientSecret() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowMissingRedirectUri() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowInvalidClient() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn(null); + + $server->setClientStorage($clientStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowMissingCode() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "code" parameter.'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('get'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowInvalidCode() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "code" parameter.'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar', + 'code' => 'foobar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('get'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowRedirectUriMismatch() + { + $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar', + 'code' => 'foobar' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('get')->andReturn( + (new AC($server))->setToken('foobar')->setRedirectUri('http://fail/face') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlow() + { + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar', + 'code' => 'foo' + ]; + + $server = new Authorization; + $grant = new AuthCode; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('getBySession')->andReturn( + (new Client($server))->setId('testapp') + ); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('getByAuthCode')->andReturn( + (new Session($server))->setId('foobar') + ); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('associateScope'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('delete'); + $authCodeStorage->shouldReceive('get')->andReturn( + (new AC($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + ); + $authCodeStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + + public function testCompleteFlowWithRefreshToken() + { + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar', + 'code' => 'foo' + ]; + + $server = new Authorization; + $grant = new AuthCode; + $rtgrant = new RefreshToken; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('getBySession')->andReturn( + (new Client($server))->setId('testapp') + ); + $clientStorage->shouldReceive('get')->andReturn( + (new Client($server))->setId('testapp') + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create')->andreturn(123); + $sessionStorage->shouldReceive('associateScope'); + $sessionStorage->shouldReceive('getByAuthCode')->andReturn( + (new Session($server))->setId('foobar') + ); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('associateScope'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new Scope($server))->setId('foo') + ); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('delete'); + $authCodeStorage->shouldReceive('get')->andReturn( + (new AC($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + ); + $authCodeStorage->shouldReceive('getScopes')->andReturn([ + (new Scope($server))->setId('foo') + ]); + + $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); + $refreshTokenStorage->shouldReceive('setServer'); + $refreshTokenStorage->shouldReceive('create'); + $refreshTokenStorage->shouldReceive('associateScope'); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); + + $server->addGrantType($grant); + $server->addGrantType($rtgrant); + $server->issueAccessToken(); + } +} From 29b0389a7591fdb639cebd3e8a3e51a8b72afaf7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:17:56 +0100 Subject: [PATCH 058/270] PSR-4 baby! --- composer.json | 4 +--- src/{League/OAuth2/Server => }/AbstractServer.php | 0 src/{League/OAuth2/Server => }/AuthorizationServer.php | 0 src/{League/OAuth2/Server => }/Entity/AbstractToken.php | 0 src/{League/OAuth2/Server => }/Entity/AccessToken.php | 0 src/{League/OAuth2/Server => }/Entity/AuthCode.php | 0 src/{League/OAuth2/Server => }/Entity/Client.php | 0 src/{League/OAuth2/Server => }/Entity/RefreshToken.php | 0 src/{League/OAuth2/Server => }/Entity/Scope.php | 0 src/{League/OAuth2/Server => }/Entity/Session.php | 0 src/{League/OAuth2/Server => }/Exception/ClientException.php | 0 .../Server => }/Exception/InvalidAccessTokenException.php | 0 .../Server => }/Exception/InvalidGrantTypeException.php | 0 src/{League/OAuth2/Server => }/Exception/OAuth2Exception.php | 0 src/{League/OAuth2/Server => }/Exception/ServerException.php | 0 src/{League/OAuth2/Server => }/Grant/AbstractGrant.php | 0 src/{League/OAuth2/Server => }/Grant/AuthCode.php | 0 src/{League/OAuth2/Server => }/Grant/ClientCredentials.php | 0 src/{League/OAuth2/Server => }/Grant/GrantTypeInterface.php | 0 src/{League/OAuth2/Server => }/Grant/Password.php | 0 src/{League/OAuth2/Server => }/Grant/RefreshToken.php | 0 src/{League/OAuth2/Server => }/ResourceServer.php | 0 .../OAuth2/Server => }/Storage/AccessTokenInterface.php | 0 src/{League/OAuth2/Server => }/Storage/Adapter.php | 0 src/{League/OAuth2/Server => }/Storage/AuthCodeInterface.php | 0 src/{League/OAuth2/Server => }/Storage/ClientInterface.php | 0 .../OAuth2/Server => }/Storage/RefreshTokenInterface.php | 0 src/{League/OAuth2/Server => }/Storage/ScopeInterface.php | 0 src/{League/OAuth2/Server => }/Storage/SessionInterface.php | 0 src/{League/OAuth2/Server => }/Util/RedirectUri.php | 0 src/{League/OAuth2/Server => }/Util/SecureKey.php | 0 31 files changed, 1 insertion(+), 3 deletions(-) rename src/{League/OAuth2/Server => }/AbstractServer.php (100%) rename src/{League/OAuth2/Server => }/AuthorizationServer.php (100%) rename src/{League/OAuth2/Server => }/Entity/AbstractToken.php (100%) rename src/{League/OAuth2/Server => }/Entity/AccessToken.php (100%) rename src/{League/OAuth2/Server => }/Entity/AuthCode.php (100%) rename src/{League/OAuth2/Server => }/Entity/Client.php (100%) rename src/{League/OAuth2/Server => }/Entity/RefreshToken.php (100%) rename src/{League/OAuth2/Server => }/Entity/Scope.php (100%) rename src/{League/OAuth2/Server => }/Entity/Session.php (100%) rename src/{League/OAuth2/Server => }/Exception/ClientException.php (100%) rename src/{League/OAuth2/Server => }/Exception/InvalidAccessTokenException.php (100%) rename src/{League/OAuth2/Server => }/Exception/InvalidGrantTypeException.php (100%) rename src/{League/OAuth2/Server => }/Exception/OAuth2Exception.php (100%) rename src/{League/OAuth2/Server => }/Exception/ServerException.php (100%) rename src/{League/OAuth2/Server => }/Grant/AbstractGrant.php (100%) rename src/{League/OAuth2/Server => }/Grant/AuthCode.php (100%) rename src/{League/OAuth2/Server => }/Grant/ClientCredentials.php (100%) rename src/{League/OAuth2/Server => }/Grant/GrantTypeInterface.php (100%) rename src/{League/OAuth2/Server => }/Grant/Password.php (100%) rename src/{League/OAuth2/Server => }/Grant/RefreshToken.php (100%) rename src/{League/OAuth2/Server => }/ResourceServer.php (100%) rename src/{League/OAuth2/Server => }/Storage/AccessTokenInterface.php (100%) rename src/{League/OAuth2/Server => }/Storage/Adapter.php (100%) rename src/{League/OAuth2/Server => }/Storage/AuthCodeInterface.php (100%) rename src/{League/OAuth2/Server => }/Storage/ClientInterface.php (100%) rename src/{League/OAuth2/Server => }/Storage/RefreshTokenInterface.php (100%) rename src/{League/OAuth2/Server => }/Storage/ScopeInterface.php (100%) rename src/{League/OAuth2/Server => }/Storage/SessionInterface.php (100%) rename src/{League/OAuth2/Server => }/Util/RedirectUri.php (100%) rename src/{League/OAuth2/Server => }/Util/SecureKey.php (100%) diff --git a/composer.json b/composer.json index f8f0d54a..5ca4867a 100644 --- a/composer.json +++ b/composer.json @@ -42,10 +42,8 @@ "league/oauth2server": "*" }, "autoload": { - "psr-0": { - "League\\OAuth2\\Server": "src/" - }, "psr-4": { + "League\\OAuth2\\Server\\": "src/", "LeagueTests\\": "tests/" } }, diff --git a/src/League/OAuth2/Server/AbstractServer.php b/src/AbstractServer.php similarity index 100% rename from src/League/OAuth2/Server/AbstractServer.php rename to src/AbstractServer.php diff --git a/src/League/OAuth2/Server/AuthorizationServer.php b/src/AuthorizationServer.php similarity index 100% rename from src/League/OAuth2/Server/AuthorizationServer.php rename to src/AuthorizationServer.php diff --git a/src/League/OAuth2/Server/Entity/AbstractToken.php b/src/Entity/AbstractToken.php similarity index 100% rename from src/League/OAuth2/Server/Entity/AbstractToken.php rename to src/Entity/AbstractToken.php diff --git a/src/League/OAuth2/Server/Entity/AccessToken.php b/src/Entity/AccessToken.php similarity index 100% rename from src/League/OAuth2/Server/Entity/AccessToken.php rename to src/Entity/AccessToken.php diff --git a/src/League/OAuth2/Server/Entity/AuthCode.php b/src/Entity/AuthCode.php similarity index 100% rename from src/League/OAuth2/Server/Entity/AuthCode.php rename to src/Entity/AuthCode.php diff --git a/src/League/OAuth2/Server/Entity/Client.php b/src/Entity/Client.php similarity index 100% rename from src/League/OAuth2/Server/Entity/Client.php rename to src/Entity/Client.php diff --git a/src/League/OAuth2/Server/Entity/RefreshToken.php b/src/Entity/RefreshToken.php similarity index 100% rename from src/League/OAuth2/Server/Entity/RefreshToken.php rename to src/Entity/RefreshToken.php diff --git a/src/League/OAuth2/Server/Entity/Scope.php b/src/Entity/Scope.php similarity index 100% rename from src/League/OAuth2/Server/Entity/Scope.php rename to src/Entity/Scope.php diff --git a/src/League/OAuth2/Server/Entity/Session.php b/src/Entity/Session.php similarity index 100% rename from src/League/OAuth2/Server/Entity/Session.php rename to src/Entity/Session.php diff --git a/src/League/OAuth2/Server/Exception/ClientException.php b/src/Exception/ClientException.php similarity index 100% rename from src/League/OAuth2/Server/Exception/ClientException.php rename to src/Exception/ClientException.php diff --git a/src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php b/src/Exception/InvalidAccessTokenException.php similarity index 100% rename from src/League/OAuth2/Server/Exception/InvalidAccessTokenException.php rename to src/Exception/InvalidAccessTokenException.php diff --git a/src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php b/src/Exception/InvalidGrantTypeException.php similarity index 100% rename from src/League/OAuth2/Server/Exception/InvalidGrantTypeException.php rename to src/Exception/InvalidGrantTypeException.php diff --git a/src/League/OAuth2/Server/Exception/OAuth2Exception.php b/src/Exception/OAuth2Exception.php similarity index 100% rename from src/League/OAuth2/Server/Exception/OAuth2Exception.php rename to src/Exception/OAuth2Exception.php diff --git a/src/League/OAuth2/Server/Exception/ServerException.php b/src/Exception/ServerException.php similarity index 100% rename from src/League/OAuth2/Server/Exception/ServerException.php rename to src/Exception/ServerException.php diff --git a/src/League/OAuth2/Server/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php similarity index 100% rename from src/League/OAuth2/Server/Grant/AbstractGrant.php rename to src/Grant/AbstractGrant.php diff --git a/src/League/OAuth2/Server/Grant/AuthCode.php b/src/Grant/AuthCode.php similarity index 100% rename from src/League/OAuth2/Server/Grant/AuthCode.php rename to src/Grant/AuthCode.php diff --git a/src/League/OAuth2/Server/Grant/ClientCredentials.php b/src/Grant/ClientCredentials.php similarity index 100% rename from src/League/OAuth2/Server/Grant/ClientCredentials.php rename to src/Grant/ClientCredentials.php diff --git a/src/League/OAuth2/Server/Grant/GrantTypeInterface.php b/src/Grant/GrantTypeInterface.php similarity index 100% rename from src/League/OAuth2/Server/Grant/GrantTypeInterface.php rename to src/Grant/GrantTypeInterface.php diff --git a/src/League/OAuth2/Server/Grant/Password.php b/src/Grant/Password.php similarity index 100% rename from src/League/OAuth2/Server/Grant/Password.php rename to src/Grant/Password.php diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/Grant/RefreshToken.php similarity index 100% rename from src/League/OAuth2/Server/Grant/RefreshToken.php rename to src/Grant/RefreshToken.php diff --git a/src/League/OAuth2/Server/ResourceServer.php b/src/ResourceServer.php similarity index 100% rename from src/League/OAuth2/Server/ResourceServer.php rename to src/ResourceServer.php diff --git a/src/League/OAuth2/Server/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/AccessTokenInterface.php rename to src/Storage/AccessTokenInterface.php diff --git a/src/League/OAuth2/Server/Storage/Adapter.php b/src/Storage/Adapter.php similarity index 100% rename from src/League/OAuth2/Server/Storage/Adapter.php rename to src/Storage/Adapter.php diff --git a/src/League/OAuth2/Server/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/AuthCodeInterface.php rename to src/Storage/AuthCodeInterface.php diff --git a/src/League/OAuth2/Server/Storage/ClientInterface.php b/src/Storage/ClientInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/ClientInterface.php rename to src/Storage/ClientInterface.php diff --git a/src/League/OAuth2/Server/Storage/RefreshTokenInterface.php b/src/Storage/RefreshTokenInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/RefreshTokenInterface.php rename to src/Storage/RefreshTokenInterface.php diff --git a/src/League/OAuth2/Server/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/ScopeInterface.php rename to src/Storage/ScopeInterface.php diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/Storage/SessionInterface.php similarity index 100% rename from src/League/OAuth2/Server/Storage/SessionInterface.php rename to src/Storage/SessionInterface.php diff --git a/src/League/OAuth2/Server/Util/RedirectUri.php b/src/Util/RedirectUri.php similarity index 100% rename from src/League/OAuth2/Server/Util/RedirectUri.php rename to src/Util/RedirectUri.php diff --git a/src/League/OAuth2/Server/Util/SecureKey.php b/src/Util/SecureKey.php similarity index 100% rename from src/League/OAuth2/Server/Util/SecureKey.php rename to src/Util/SecureKey.php From f78bb954d03a8f5c5a8b0cc9c34fe9b0c9355547 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:18:31 +0100 Subject: [PATCH 059/270] Removed weird spacing --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 5ca4867a..0656f501 100644 --- a/composer.json +++ b/composer.json @@ -9,7 +9,7 @@ }, "require-dev": { "league/phpunit-coverage-listener": "~1.0", - "mockery/mockery": "0.8" + "mockery/mockery": "0.8" }, "repositories": [ { From ac29fc4a627414e3f7d4cd5a15ffd5f7e6baa8c5 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 19:20:17 +0100 Subject: [PATCH 060/270] Added more keywords, removed suggest key --- composer.json | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/composer.json b/composer.json index 0656f501..cb93ac31 100644 --- a/composer.json +++ b/composer.json @@ -19,9 +19,13 @@ ], "keywords": [ "oauth", - "oauth2", + "oauth2", + "oauth 2", + "oauth 2.0", "server", - "authorization", + "auth", + "authorization", + "authorisation", "authentication", "resource", "api", @@ -46,8 +50,5 @@ "League\\OAuth2\\Server\\": "src/", "LeagueTests\\": "tests/" } - }, - "suggest": { - } } From b2c07aa68f1ed2bd16c199b8be2b3b71375607e7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 21:08:20 +0100 Subject: [PATCH 061/270] Renamed method `make` to `generate` --- src/Entity/AbstractToken.php | 2 +- src/Grant/AuthCode.php | 6 +++--- src/Grant/ClientCredentials.php | 2 +- src/Grant/Password.php | 4 ++-- src/Grant/RefreshToken.php | 4 ++-- 5 files changed, 9 insertions(+), 9 deletions(-) diff --git a/src/Entity/AbstractToken.php b/src/Entity/AbstractToken.php index 02c8efee..18e3c5e8 100644 --- a/src/Entity/AbstractToken.php +++ b/src/Entity/AbstractToken.php @@ -115,7 +115,7 @@ abstract class AbstractToken */ public function setToken($token = null) { - $this->token = ($token !== null) ? $token : SecureKey::make(); + $this->token = ($token !== null) ? $token : SecureKey::generate(); return $this; } diff --git a/src/Grant/AuthCode.php b/src/Grant/AuthCode.php index 39271433..5a2250d0 100644 --- a/src/Grant/AuthCode.php +++ b/src/Grant/AuthCode.php @@ -163,7 +163,7 @@ class AuthCode extends AbstractGrant // Create a new auth code $authCode = new AC($this->server); - $authCode->setToken(SecureKey::make()); + $authCode->setToken(SecureKey::generate()); $authCode->setRedirectUri($authParams['redirect_uri']); foreach ($authParams['scopes'] as $scope) { @@ -250,7 +250,7 @@ class AuthCode extends AbstractGrant // Generate the access token $accessToken = new AccessToken($this->server); - $accessToken->setToken(SecureKey::make()); + $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); foreach ($authCodeScopes as $authCodeScope) { @@ -267,7 +267,7 @@ class AuthCode extends AbstractGrant // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshToken($this->server); - $refreshToken->setToken(SecureKey::make()); + $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); $response['refresh_token'] = $refreshToken->getToken(); } diff --git a/src/Grant/ClientCredentials.php b/src/Grant/ClientCredentials.php index 319530cb..655fafac 100644 --- a/src/Grant/ClientCredentials.php +++ b/src/Grant/ClientCredentials.php @@ -98,7 +98,7 @@ class ClientCredentials extends AbstractGrant // Generate an access token $accessToken = new AccessToken($this->server); - $accessToken->setToken(SecureKey::make()); + $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token diff --git a/src/Grant/Password.php b/src/Grant/Password.php index 46bc8160..7dcc083c 100644 --- a/src/Grant/Password.php +++ b/src/Grant/Password.php @@ -146,7 +146,7 @@ class Password extends AbstractGrant // Generate an access token $accessToken = new AccessToken($this->server); - $accessToken->setToken(SecureKey::make()); + $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token @@ -165,7 +165,7 @@ class Password extends AbstractGrant // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RT($this->server); - $refreshToken->setToken(SecureKey::make()); + $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); $response['refresh_token'] = $refreshToken->getToken(); } diff --git a/src/Grant/RefreshToken.php b/src/Grant/RefreshToken.php index 7fe15632..b1993161 100644 --- a/src/Grant/RefreshToken.php +++ b/src/Grant/RefreshToken.php @@ -136,7 +136,7 @@ class RefreshToken extends AbstractGrant // Generate a new access token and assign it the correct sessions $newAccessToken = new AccessToken($this->server); - $newAccessToken->setToken(SecureKey::make()); + $newAccessToken->setToken(SecureKey::generate()); $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); $newAccessToken->setSession($session); @@ -160,7 +160,7 @@ class RefreshToken extends AbstractGrant // Generate a new refresh token $newRefreshToken = new RT($this->server); - $newRefreshToken->setToken(SecureKey::make()); + $newRefreshToken->setToken(SecureKey::generate()); $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); $newRefreshToken->setAccessToken($newAccessToken); $newRefreshToken->save($this->server->getStorage('refresh_token')); From 5893ba4e8e0659b45ceea5fd798cbfbfe85858fe Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 21:08:35 +0100 Subject: [PATCH 062/270] Fixes #151 --- src/Util/KeyAlgorithm/DefaultAlgorithm.php | 36 ++++++++++++++++ .../KeyAlgorithm/KeyAlgorithmInterface.php | 22 ++++++++++ src/Util/SecureKey.php | 43 ++++++++++++------- tests/util/SecureKeyTest.php | 37 +++++++++++----- 4 files changed, 113 insertions(+), 25 deletions(-) create mode 100644 src/Util/KeyAlgorithm/DefaultAlgorithm.php create mode 100644 src/Util/KeyAlgorithm/KeyAlgorithmInterface.php diff --git a/src/Util/KeyAlgorithm/DefaultAlgorithm.php b/src/Util/KeyAlgorithm/DefaultAlgorithm.php new file mode 100644 index 00000000..a03c4e1d --- /dev/null +++ b/src/Util/KeyAlgorithm/DefaultAlgorithm.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Util\KeyAlgorithm; + + +class DefaultAlgorithm implements KeyAlgorithmInterface +{ + /** + * {@inheritdoc} + */ + public function generate($len = 40) + { + // We generate twice as many bytes here because we want to ensure we have + // enough after we base64 encode it to get the length we need because we + // take out the "/", "+", and "=" characters. + $bytes = openssl_random_pseudo_bytes($len * 2, $strong); + + // We want to stop execution if the key fails because, well, that is bad. + if ($bytes === false || $strong === false) { + // @codeCoverageIgnoreStart + throw new \Exception('Error Generating Key'); + // @codeCoverageIgnoreEnd + } + + return substr(str_replace(array('/', '+', '='), '', base64_encode($bytes)), 0, $len); + } +} diff --git a/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php new file mode 100644 index 00000000..a2ba7f51 --- /dev/null +++ b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php @@ -0,0 +1,22 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Util\KeyAlgorithm; + +interface KeyAlgorithmInterface +{ + /** + * Generate a new unique code + * @param integer $len Length of the generated code + * @return string + */ + public function generate($len = 40); +} diff --git a/src/Util/SecureKey.php b/src/Util/SecureKey.php index 7f579d41..51767d7c 100644 --- a/src/Util/SecureKey.php +++ b/src/Util/SecureKey.php @@ -2,39 +2,52 @@ /** * OAuth 2.0 Secure key generator * - * @package league/oauth2-server + * @package php-loep/oauth2-server * @author Alex Bilbie - * @copyright Copyright (c) Alex Bilbie + * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server + * @link http://github.com/php-loep/oauth2-server */ namespace League\OAuth2\Server\Util; +use League\OAuth2\Server\Util\KeyAlgorithm\DefaultAlgorithm; +use League\OAuth2\Server\Util\KeyAlgorithm\KeyAlgorithmInterface; + /** * SecureKey class */ class SecureKey { + protected static $algorithm; + /** * Generate a new unique code * @param integer $len Length of the generated code * @return string */ - public static function make($len = 40) + public static function generate($len = 40) { - // We generate twice as many bytes here because we want to ensure we have - // enough after we base64 encode it to get the length we need because we - // take out the "/", "+", and "=" characters. - $bytes = openssl_random_pseudo_bytes($len * 2, $strong); + return self::getAlgorithm()->generate($len); + } - // We want to stop execution if the key fails because, well, that is bad. - if ($bytes === false || $strong === false) { - // @codeCoverageIgnoreStart - throw new \Exception('Error Generating Key'); - // @codeCoverageIgnoreEnd + /** + * @param KeyAlgorithmInterface $algorithm + */ + public static function setAlgorithm(KeyAlgorithmInterface $algorithm) + { + self::$algorithm = $algorithm; + } + + /** + * @return KeyAlgorithmInterface + */ + public static function getAlgorithm() + { + if (is_null(self::$algorithm)) { + self::$algorithm = new DefaultAlgorithm(); } - return substr(str_replace(array('/', '+', '='), '', base64_encode($bytes)), 0, $len); + return self::$algorithm; } -} \ No newline at end of file +} diff --git a/tests/util/SecureKeyTest.php b/tests/util/SecureKeyTest.php index 2be3e12b..f3b59483 100644 --- a/tests/util/SecureKeyTest.php +++ b/tests/util/SecureKeyTest.php @@ -2,19 +2,36 @@ namespace LeagueTests\Util; -use League\OAuth2\Server\Util\SecureKey; +use \League\OAuth2\Server\Util\SecureKey; use \Mockery as M; class SecureKeyTest extends \PHPUnit_Framework_TestCase { - function testMake() - { - $v1 = SecureKey::make(); - $v2 = SecureKey::make(); - $v3 = SecureKey::make(50); + function testGenerate() + { + $v1 = SecureKey::generate(); + $v2 = SecureKey::generate(); + $v3 = SecureKey::generate(50); - $this->assertEquals(40, strlen($v1)); - $this->assertTrue($v1 !== $v2); - $this->assertEquals(50, strlen($v3)); - } + $this->assertEquals(40, strlen($v1)); + $this->assertTrue($v1 !== $v2); + $this->assertEquals(50, strlen($v3)); + } + + public function testGenerateWithDifferentAlgorithm() + { + $algorithm = $this->getMock('League\OAuth2\Server\Util\KeyAlgorithm\KeyAlgorithmInterface'); + + $result = 'dasdsdsaads'; + $algorithm + ->expects($this->once()) + ->method('generate') + ->with(11) + ->will($this->returnValue($result)) + ; + + SecureKey::setAlgorithm($algorithm); + $this->assertSame($algorithm, SecureKey::getAlgorithm()); + $this->assertEquals($result, SecureKey::generate(11)); + } } \ No newline at end of file From ed10cbb4dc79283c6a59f11e48722910fb2a0085 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 6 Apr 2014 22:04:12 +0100 Subject: [PATCH 063/270] Updated change log for 3.2 --- CHANGELOG.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 13f45c16..af06df1d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,13 @@ # Changelog +## 3.2 (released 2014-04-16) + +* Added the ability to change the algorithm that is used to generate the token strings (Issue #151) + +## 3.1.2 (released 2014-02-26) + +* Support Authorization being an environment variable. [See more](http://fortrabbit.com/docs/essentials/quirks-and-constraints#authorization-header) + ## 3.1.1 (released 2013-12-05) * Normalize headers when `getallheaders()` is available (Issues #108 and #114) From 647de842ff0f2773611680b42953ba8c804abfc0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 10:01:01 +0100 Subject: [PATCH 064/270] Updated exceptions --- src/Exception/AccessDeniedException.php | 36 ++++++++ src/Exception/ClientException.php | 20 ---- src/Exception/InvalidAccessTokenException.php | 20 ---- src/Exception/InvalidClientException.php | 36 ++++++++ src/Exception/InvalidCredentialsException.php | 36 ++++++++ src/Exception/InvalidGrantException.php | 37 ++++++++ src/Exception/InvalidGrantTypeException.php | 20 ---- src/Exception/InvalidRefreshException.php | 36 ++++++++ src/Exception/InvalidRequestException.php | 37 ++++++++ src/Exception/InvalidScopeException.php | 37 ++++++++ src/Exception/OAuth2Exception.php | 20 ---- src/Exception/OAuthException.php | 92 +++++++++++++++++++ src/Exception/ServerErrorException.php | 36 ++++++++ src/Exception/ServerException.php | 20 ---- src/Exception/UnauthorizedClientException.php | 36 ++++++++ .../UnsupportedGrantTypeException.php | 37 ++++++++ .../UnsupportedResponseTypeException.php | 36 ++++++++ 17 files changed, 492 insertions(+), 100 deletions(-) create mode 100644 src/Exception/AccessDeniedException.php delete mode 100644 src/Exception/ClientException.php delete mode 100644 src/Exception/InvalidAccessTokenException.php create mode 100644 src/Exception/InvalidClientException.php create mode 100644 src/Exception/InvalidCredentialsException.php create mode 100644 src/Exception/InvalidGrantException.php delete mode 100644 src/Exception/InvalidGrantTypeException.php create mode 100644 src/Exception/InvalidRefreshException.php create mode 100644 src/Exception/InvalidRequestException.php create mode 100644 src/Exception/InvalidScopeException.php delete mode 100644 src/Exception/OAuth2Exception.php create mode 100644 src/Exception/OAuthException.php create mode 100644 src/Exception/ServerErrorException.php delete mode 100644 src/Exception/ServerException.php create mode 100644 src/Exception/UnauthorizedClientException.php create mode 100644 src/Exception/UnsupportedGrantTypeException.php create mode 100644 src/Exception/UnsupportedResponseTypeException.php diff --git a/src/Exception/AccessDeniedException.php b/src/Exception/AccessDeniedException.php new file mode 100644 index 00000000..b8516ba3 --- /dev/null +++ b/src/Exception/AccessDeniedException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class AccessDeniedException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 401; + + /** + * {@inheritdoc} + */ + public $errorType = 'access_denied'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('The resource owner or authorization server denied the request.'); + } +} diff --git a/src/Exception/ClientException.php b/src/Exception/ClientException.php deleted file mode 100644 index 40e4bf43..00000000 --- a/src/Exception/ClientException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * ClientException Exception - */ -class ClientException extends OAuth2Exception -{ - -} \ No newline at end of file diff --git a/src/Exception/InvalidAccessTokenException.php b/src/Exception/InvalidAccessTokenException.php deleted file mode 100644 index e32d67f4..00000000 --- a/src/Exception/InvalidAccessTokenException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * InvalidAccessToken Exception - */ -class InvalidAccessTokenException extends OAuth2Exception -{ - -} diff --git a/src/Exception/InvalidClientException.php b/src/Exception/InvalidClientException.php new file mode 100644 index 00000000..c09b70b5 --- /dev/null +++ b/src/Exception/InvalidClientException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidClientException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 401; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_client'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('Client authentication failed.'); + } +} diff --git a/src/Exception/InvalidCredentialsException.php b/src/Exception/InvalidCredentialsException.php new file mode 100644 index 00000000..0aae7431 --- /dev/null +++ b/src/Exception/InvalidCredentialsException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidCredentialsException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 401; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_credentials'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('The user credentials were incorrect..'); + } +} diff --git a/src/Exception/InvalidGrantException.php b/src/Exception/InvalidGrantException.php new file mode 100644 index 00000000..1fde9dee --- /dev/null +++ b/src/Exception/InvalidGrantException.php @@ -0,0 +1,37 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidGrantException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_grant'; + + /** + * {@inheritdoc} + */ + + public function __construct($parameter) + { + parent::__construct(sprintf('The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. Check the "%s" parameter.', $parameter)); + } +} diff --git a/src/Exception/InvalidGrantTypeException.php b/src/Exception/InvalidGrantTypeException.php deleted file mode 100644 index 8a4a462e..00000000 --- a/src/Exception/InvalidGrantTypeException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * InvalidGrantTypeException Exception - */ -class InvalidGrantTypeException extends OAuth2Exception -{ - -} diff --git a/src/Exception/InvalidRefreshException.php b/src/Exception/InvalidRefreshException.php new file mode 100644 index 00000000..c1fd1bd5 --- /dev/null +++ b/src/Exception/InvalidRefreshException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidRefreshException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 401; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_client'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('The refresh token is invalid.'); + } +} diff --git a/src/Exception/InvalidRequestException.php b/src/Exception/InvalidRequestException.php new file mode 100644 index 00000000..b42a90fa --- /dev/null +++ b/src/Exception/InvalidRequestException.php @@ -0,0 +1,37 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidRequestException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_request'; + + /** + * {@inheritdoc} + */ + + public function __construct($parameter) + { + parent::__construct(sprintf('The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', $parameter)); + } +} diff --git a/src/Exception/InvalidScopeException.php b/src/Exception/InvalidScopeException.php new file mode 100644 index 00000000..613ed6c6 --- /dev/null +++ b/src/Exception/InvalidScopeException.php @@ -0,0 +1,37 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class InvalidScopeException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'invalid_scope'; + + /** + * {@inheritdoc} + */ + + public function __construct($parameter) + { + parent::__construct(sprintf('The requested scope is invalid, unknown, or malformed. Check the "%s" scope.', $parameter)); + } +} diff --git a/src/Exception/OAuth2Exception.php b/src/Exception/OAuth2Exception.php deleted file mode 100644 index 586c7fd5..00000000 --- a/src/Exception/OAuth2Exception.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * Exception class - */ -class OAuth2Exception extends \Exception -{ - -} diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php new file mode 100644 index 00000000..bee1bce4 --- /dev/null +++ b/src/Exception/OAuthException.php @@ -0,0 +1,92 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class OAuthException extends \Exception +{ + /** + * The HTTP status code for this exception that should be sent in the response + */ + public $httpStatusCode = 400; + + /** + * The exception type + */ + public $errorType = ''; + + /** + * Throw a new exception + */ + public function __construct() + { + parent::__construct('An error occured'); + } + + /** + * Get all headers that have to be send with the error response + * @return array Array with header values + */ + public function getHttpHeaders() + { + $headers = []; + switch ($this->httpStatusCode) { + case 401: + $headers[] = 'HTTP/1.1 401 Unauthorized'; + break; + case 500: + $headers[] = 'HTTP/1.1 500 Internal Server Error'; + break; + case 501: + $headers[] = 'HTTP/1.1 501 Not Implemented'; + break; + case 400: + default: + $headers[] = 'HTTP/1.1 400 Bad Request'; + break; + } + + // Add "WWW-Authenticate" header + // + // RFC 6749, section 5.2.: + // "If the client attempted to authenticate via the 'Authorization' + // request header field, the authorization server MUST + // respond with an HTTP 401 (Unauthorized) status code and + // include the "WWW-Authenticate" response header field + // matching the authentication scheme used by the client. + // @codeCoverageIgnoreStart + if ($error === 'invalid_client') { + $authScheme = null; + $request = new Request(); + if ($request->server('PHP_AUTH_USER') !== null) { + $authScheme = 'Basic'; + } else { + $authHeader = $request->header('Authorization'); + if ($authHeader !== null) { + if (strpos($authHeader, 'Bearer') === 0) { + $authScheme = 'Bearer'; + } elseif (strpos($authHeader, 'Basic') === 0) { + $authScheme = 'Basic'; + } + } + } + if ($authScheme !== null) { + $headers[] = 'WWW-Authenticate: '.$authScheme.' realm=""'; + } + } + // @codeCoverageIgnoreEnd + + return $headers; + } +} diff --git a/src/Exception/ServerErrorException.php b/src/Exception/ServerErrorException.php new file mode 100644 index 00000000..13a7cd63 --- /dev/null +++ b/src/Exception/ServerErrorException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class ServerErrorException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 500; + + /** + * {@inheritdoc} + */ + public $errorType = 'server_error'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter = 'The authorization server encountered an unexpected condition which prevented it from fulfilling the request.') + { + parent::__construct($parameter); + } +} diff --git a/src/Exception/ServerException.php b/src/Exception/ServerException.php deleted file mode 100644 index 2b5879e2..00000000 --- a/src/Exception/ServerException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * Server Exception - */ -class ServerException extends OAuth2Exception -{ - -} \ No newline at end of file diff --git a/src/Exception/UnauthorizedClientException.php b/src/Exception/UnauthorizedClientException.php new file mode 100644 index 00000000..ac3485c7 --- /dev/null +++ b/src/Exception/UnauthorizedClientException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class UnauthorizedClientException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'unauthorized_client'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('The client is not authorized to request an access token using this method.'); + } +} diff --git a/src/Exception/UnsupportedGrantTypeException.php b/src/Exception/UnsupportedGrantTypeException.php new file mode 100644 index 00000000..c79aa367 --- /dev/null +++ b/src/Exception/UnsupportedGrantTypeException.php @@ -0,0 +1,37 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class UnsupportedGrantTypeException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'unsupported_grant_type'; + + /** + * {@inheritdoc} + */ + + public function __construct($parameter) + { + parent::__construct(sprintf('The authorization grant type "%s" is not supported by the authorization server.', $parameter)); + } +} diff --git a/src/Exception/UnsupportedResponseTypeException.php b/src/Exception/UnsupportedResponseTypeException.php new file mode 100644 index 00000000..05677686 --- /dev/null +++ b/src/Exception/UnsupportedResponseTypeException.php @@ -0,0 +1,36 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Exception; + +/** + * Exception class + */ +class UnsupportedResponseTypeException extends OAuthException +{ + /** + * {@inheritdoc} + */ + public $httpStatusCode = 400; + + /** + * {@inheritdoc} + */ + public $errorType = 'unsupported_response_type'; + + /** + * {@inheritdoc} + */ + public function __construct($parameter) + { + parent::__construct('The authorization server does not support obtaining an access token using this method.'); + } +} From 04277aeaa0827ac200fbd21d039834e7307a08f2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 10:04:04 +0100 Subject: [PATCH 065/270] Updated .gitignore --- .gitignore | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index ee1d55c7..ece21373 100644 --- a/.gitignore +++ b/.gitignore @@ -2,4 +2,6 @@ /composer.lock /tests/coverage /docs -/testing \ No newline at end of file +/testing +/examples/relational/vendor +/examples/relational/config/oauth2.sqlite3 \ No newline at end of file From 6250daabd34a406f5a40fe7a454dd6d67b84f5a1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 11:18:43 +0100 Subject: [PATCH 066/270] Updated .gitignore --- .gitignore | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index ece21373..674b2d38 100644 --- a/.gitignore +++ b/.gitignore @@ -4,4 +4,6 @@ /docs /testing /examples/relational/vendor -/examples/relational/config/oauth2.sqlite3 \ No newline at end of file +/examples/relational/config/oauth2.sqlite3 +/examples/nosql/vendor +/examples/nosql/config/oauth2.sqlite3 \ No newline at end of file From e1a7f576e47b675a2f12ec80e2641ff71e96ceca Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 11:24:25 +0100 Subject: [PATCH 067/270] Moved exception code into new exception classes --- src/AuthorizationServer.php | 135 ------------------------------------ 1 file changed, 135 deletions(-) diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index 50407072..568574d7 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -73,141 +73,6 @@ class AuthorizationServer extends AbstractServer */ protected $requireStateParam = false; - /** - * Exception error codes - * @var array - */ - protected static $exceptionCodes = [ - 0 => 'invalid_request', - 1 => 'unauthorized_client', - 2 => 'access_denied', - 3 => 'unsupported_response_type', - 4 => 'invalid_scope', - 5 => 'server_error', - 6 => 'temporarily_unavailable', - 7 => 'unsupported_grant_type', - 8 => 'invalid_client', - 9 => 'invalid_grant' - ]; - - /** - * Exception error messages - * @var array - */ - protected static $exceptionMessages = [ - 'invalid_request' => 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', - 'unauthorized_client' => 'The client is not authorized to request an access token using this method.', - 'access_denied' => 'The resource owner or authorization server denied the request.', - 'unsupported_response_type' => 'The authorization server does not support obtaining an access token using this method.', - 'invalid_scope' => 'The requested scope is invalid, unknown, or malformed. Check the "%s" scope.', - 'server_error' => 'The authorization server encountered an unexpected condition which prevented it from fulfilling the request.', - 'temporarily_unavailable' => 'The authorization server is currently unable to handle the request due to a temporary overloading or maintenance of the server.', - 'unsupported_grant_type' => 'The authorization grant type "%s" is not supported by the authorization server', - 'invalid_client' => 'Client authentication failed', - 'invalid_grant' => 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. Check the "%s" parameter.', - 'invalid_credentials' => 'The user credentials were incorrect.', - 'invalid_refresh' => 'The refresh token is invalid.', - ]; - - /** - * Exception error HTTP status codes - * @var array - * RFC 6749, section 4.1.2.1.: - * No 503 status code for 'temporarily_unavailable', because - * "a 503 Service Unavailable HTTP status code cannot be - * returned to the client via an HTTP redirect" - */ - protected static $exceptionHttpStatusCodes = [ - 'invalid_request' => 400, - 'unauthorized_client' => 400, - 'access_denied' => 401, - 'unsupported_response_type' => 400, - 'invalid_scope' => 400, - 'server_error' => 500, - 'temporarily_unavailable' => 400, - 'unsupported_grant_type' => 501, - 'invalid_client' => 401, - 'invalid_grant' => 400, - 'invalid_credentials' => 400, - 'invalid_refresh' => 400, - ]; - - /** - * Get all headers that have to be send with the error response - * @param string $error The error message key - * @return array Array with header values - */ - public static function getExceptionHttpHeaders($error) - { - $headers = []; - switch (self::$exceptionHttpStatusCodes[$error]) { - case 401: - $headers[] = 'HTTP/1.1 401 Unauthorized'; - break; - case 500: - $headers[] = 'HTTP/1.1 500 Internal Server Error'; - break; - case 501: - $headers[] = 'HTTP/1.1 501 Not Implemented'; - break; - case 400: - default: - $headers[] = 'HTTP/1.1 400 Bad Request'; - } - - // Add "WWW-Authenticate" header - // - // RFC 6749, section 5.2.: - // "If the client attempted to authenticate via the 'Authorization' - // request header field, the authorization server MUST - // respond with an HTTP 401 (Unauthorized) status code and - // include the "WWW-Authenticate" response header field - // matching the authentication scheme used by the client. - // @codeCoverageIgnoreStart - if ($error === 'invalid_client') { - $authScheme = null; - $request = new Request(); - if ($request->server('PHP_AUTH_USER') !== null) { - $authScheme = 'Basic'; - } else { - $authHeader = $request->header('Authorization'); - if ($authHeader !== null) { - if (strpos($authHeader, 'Bearer') === 0) { - $authScheme = 'Bearer'; - } elseif (strpos($authHeader, 'Basic') === 0) { - $authScheme = 'Basic'; - } - } - } - if ($authScheme !== null) { - $headers[] = 'WWW-Authenticate: '.$authScheme.' realm=""'; - } - } - // @codeCoverageIgnoreEnd - - return $headers; - } - - /** - * Get an exception message - * @param string $error The error message key - * @return string The error message - */ - public static function getExceptionMessage($error = '') - { - return self::$exceptionMessages[$error]; - } - - /** - * Get an exception code - * @param integer $code The exception code - * @return string The exception code type - */ - public static function getExceptionType($code = 0) - { - return self::$exceptionCodes[$code]; - } - /** * Create a new OAuth2 authorization server * @return self From 7f6ca35628ad9ecc1b30c142bc3cd6fb4907efbc Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 11:24:33 +0100 Subject: [PATCH 068/270] Updated exceptions --- src/AuthorizationServer.php | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index 568574d7..6febc0f4 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -13,9 +13,7 @@ namespace League\OAuth2\Server; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Grant\GrantTypeInterface; -use League\OAuth2\Server\Exception\ClientException; -use League\OAuth2\Server\Exception\ServerException; -use League\OAuth2\Server\Exception\InvalidGrantTypeException; +use League\OAuth2\Server\Exception; use League\OAuth2\Server\Storage\StorageWrapper; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; @@ -305,12 +303,12 @@ class AuthorizationServer extends AbstractServer { $grantType = $this->getRequest()->request->get('grant_type'); if (is_null($grantType)) { - throw new ClientException(sprintf(self::$exceptionMessages['invalid_request'], 'grant_type'), 0); + throw new Exception\InvalidRequestException('grant_type'); } // Ensure grant type is one that is recognised and is enabled if ( ! in_array($grantType, array_keys($this->grantTypes))) { - throw new ClientException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 7); + throw new Exception\UnsupportedGrantTypeException($grantType); } // Complete the flow @@ -320,7 +318,7 @@ class AuthorizationServer extends AbstractServer /** * Return a grant type class * @param string $grantType The grant type identifer - * @return Grant\AuthCode|Grant\ClientCredentials|Grant\Implict|Grant\Password|Grant\RefreshToken + * @return Grant\GrantTypeInterface */ public function getGrantType($grantType) { @@ -328,6 +326,6 @@ class AuthorizationServer extends AbstractServer return $this->grantTypes[$grantType]; } - throw new InvalidGrantTypeException(sprintf(self::$exceptionMessages['unsupported_grant_type'], $grantType), 9); + throw new Exception\InvalidGrantException($grantType); } } From 019dfa88366518423c2f98dbe76cf8c87240e5fc Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 11:24:42 +0100 Subject: [PATCH 069/270] Updated thrown exceptions --- src/AbstractServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 030c5de5..9da091ee 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -65,7 +65,7 @@ abstract class AbstractServer public function getStorage($obj) { if (!isset($this->storages[$obj])) { - throw new Exception\ServerException( + throw new Exception\ServerErrorException( 'The `'.$obj.'` storage interface has not been registered with the server' ); } From 6981ced972127ed1fc7f3ad3ff1f7e77f384cbff Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 25 Apr 2014 11:24:48 +0100 Subject: [PATCH 070/270] Updated thrown exceptions --- src/Grant/AbstractGrant.php | 6 ++-- src/Grant/AuthCode.php | 60 ++++++++----------------------------- 2 files changed, 16 insertions(+), 50 deletions(-) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index c559656c..bd0794b3 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -13,7 +13,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Exception\ClientException; +use League\OAuth2\Server\Exception; /** * Abstract grant class @@ -121,7 +121,7 @@ abstract class AbstractGrant implements GrantTypeInterface $this->server->getDefaultScope() === null && count($scopesList) === 0 ) { - throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_request'), 'scope'), 0); + throw new Exception\InvalidRequestException('scope'); } elseif (count($scopesList) === 0 && $this->server->getDefaultScope() !== null) { if (is_array($this->server->getDefaultScope())) { $scopesList = $this->server->getDefaultScope(); @@ -139,7 +139,7 @@ abstract class AbstractGrant implements GrantTypeInterface ); if (($scope instanceof Scope) === false) { - throw new ClientException(sprintf($this->server->getExceptionMessage('invalid_scope'), $scopeItem), 4); + throw new Exception\InvalidScopeException($scopeItem); } $scopes[$scope->getId()] = $scope; diff --git a/src/Grant/AuthCode.php b/src/Grant/AuthCode.php index 5a2250d0..b374b07e 100644 --- a/src/Grant/AuthCode.php +++ b/src/Grant/AuthCode.php @@ -24,7 +24,6 @@ use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; -use League\OAuth2\Server\Exception\ClientException; /** * Auth code grant class @@ -82,42 +81,27 @@ class AuthCode extends AbstractGrant // Get required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), - 0 - ); + throw new Exception\InvalidRequestException('client_id'); } $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); if (is_null($redirectUri)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), - 0 - ); + throw new Exception\InvalidRequestException('redirect_uri'); } $state = $this->server->getRequest()->request->get('state', null); if ($this->server->stateParamRequired() === true && is_null($state)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'state'), - 0 - ); + throw new Exception\InvalidRequestException('state'); } $responseType = $this->server->getRequest()->request->get('response_type', null); if (is_null($responseType)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'response_type'), - 0 - ); + throw new Exception\InvalidRequestException('response_type'); } // Ensure response type is one that is recognised if ( ! in_array($responseType, $this->server->getResponseTypes())) { - throw new ClientException( - $this->server->getExceptionMessage('unsupported_response_type'), - 3 - ); + throw new Exception\UnsupportedResponseTypeException(); } // Validate client ID and redirect URI @@ -129,7 +113,7 @@ class AuthCode extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + throw new Exception\InvalidClientException(); } // Validate any scopes that are in the request @@ -186,26 +170,17 @@ class AuthCode extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), - 0 - ); + throw new Exception\InvalidRequestException('client_id'); } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), - 0 - ); + throw new Exception\InvalidRequestException('client_secret'); } $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); if (is_null($redirectUri)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), - 0 - ); + throw new Exception\InvalidRequestException('redirect_uri'); } // Validate client ID and client secret @@ -217,32 +192,23 @@ class AuthCode extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + throw new Exception\InvalidClientException(); } // Validate the auth code $authCode = $this->server->getRequest()->request->get('code', null); if (is_null($authCode)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'code'), - 0 - ); + throw new Exception\InvalidRequestException('code'); } $code = $this->server->getStorage('auth_code')->get($authCode); if (($code instanceof AC) === false) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'code'), - 9 - ); + throw new Exception\InvalidRequestException('code'); } // Check redirect URI presented matches redirect URI originally used in authorise request if ($code->getRedirectUri() !== $redirectUri) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'redirect_uri'), - 9 - ); + throw new Exception\InvalidRequestException('redirect_uri'); } $session = $code->getSession(); From 9f1f0cc3bcd5afda41bd569a8728ea2238c1555c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:32:54 +0100 Subject: [PATCH 071/270] Updates to exceptions --- src/Exception/InvalidClientException.php | 2 +- src/Exception/InvalidCredentialsException.php | 4 +-- src/Exception/InvalidRefreshException.php | 2 +- src/Grant/AuthCode.php | 2 +- src/Grant/ClientCredentials.php | 14 +++------ src/Grant/Password.php | 29 +++++-------------- src/Grant/RefreshToken.php | 25 ++++------------ src/ResourceServer.php | 2 +- 8 files changed, 24 insertions(+), 56 deletions(-) diff --git a/src/Exception/InvalidClientException.php b/src/Exception/InvalidClientException.php index c09b70b5..ba01d277 100644 --- a/src/Exception/InvalidClientException.php +++ b/src/Exception/InvalidClientException.php @@ -29,7 +29,7 @@ class InvalidClientException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct() { parent::__construct('Client authentication failed.'); } diff --git a/src/Exception/InvalidCredentialsException.php b/src/Exception/InvalidCredentialsException.php index 0aae7431..40c4ce7e 100644 --- a/src/Exception/InvalidCredentialsException.php +++ b/src/Exception/InvalidCredentialsException.php @@ -29,8 +29,8 @@ class InvalidCredentialsException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct() { - parent::__construct('The user credentials were incorrect..'); + parent::__construct('The user credentials were incorrect.'); } } diff --git a/src/Exception/InvalidRefreshException.php b/src/Exception/InvalidRefreshException.php index c1fd1bd5..5c116f84 100644 --- a/src/Exception/InvalidRefreshException.php +++ b/src/Exception/InvalidRefreshException.php @@ -29,7 +29,7 @@ class InvalidRefreshException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct() { parent::__construct('The refresh token is invalid.'); } diff --git a/src/Grant/AuthCode.php b/src/Grant/AuthCode.php index b374b07e..b0980a72 100644 --- a/src/Grant/AuthCode.php +++ b/src/Grant/AuthCode.php @@ -101,7 +101,7 @@ class AuthCode extends AbstractGrant // Ensure response type is one that is recognised if ( ! in_array($responseType, $this->server->getResponseTypes())) { - throw new Exception\UnsupportedResponseTypeException(); + throw new Exception\UnsupportedResponseTypeException($responseType); } // Validate client ID and redirect URI diff --git a/src/Grant/ClientCredentials.php b/src/Grant/ClientCredentials.php index 655fafac..2c4e38d9 100644 --- a/src/Grant/ClientCredentials.php +++ b/src/Grant/ClientCredentials.php @@ -16,7 +16,7 @@ use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Exception\ClientException; +use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -61,18 +61,12 @@ class ClientCredentials extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), - 0 - ); + throw new Exception\InvalidRequestException('client_id'); } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), - 0 - ); + throw new Exception\InvalidRequestException('client_secret'); } // Validate client ID and client secret @@ -84,7 +78,7 @@ class ClientCredentials extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + throw new Exception\InvalidClientException(); } // Validate any scopes that are in the request diff --git a/src/Grant/Password.php b/src/Grant/Password.php index 7dcc083c..baaff116 100644 --- a/src/Grant/Password.php +++ b/src/Grant/Password.php @@ -17,8 +17,7 @@ use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\RefreshToken as RT; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Exception\ClientException; -use League\OAuth2\Server\Exception\InvalidGrantTypeException; +use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -70,7 +69,7 @@ class Password extends AbstractGrant protected function getVerifyCredentialsCallback() { if (is_null($this->callback) || ! is_callable($this->callback)) { - throw new InvalidGrantTypeException('Null or non-callable callback set on Password grant'); + throw new Exception\ServerErrorException('Null or non-callable callback set on Password grant'); } return $this->callback; @@ -86,18 +85,12 @@ class Password extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_id'), - 0 - ); + throw new Exception\InvalidRequestException('client_id'); } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'client_secret'), - 0 - ); + throw new Exception\InvalidRequestException('client_secret'); } // Validate client ID and client secret @@ -109,30 +102,24 @@ class Password extends AbstractGrant ); if (($client instanceof Client) === false) { - throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + throw new Exception\InvalidClientException(); } $username = $this->server->getRequest()->request->get('username', null); if (is_null($username)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'username'), - 0 - ); + throw new Exception\InvalidRequestException('username'); } $password = $this->server->getRequest()->request->get('password', null); if (is_null($password)) { - throw new ClientException( - sprintf(AuthorizationServer::getExceptionMessage('invalid_request'), 'password'), - 0 - ); + throw new Exception\InvalidRequestException('password'); } // Check if user's username and password are correct $userId = call_user_func($this->getVerifyCredentialsCallback(), $username, $password); if ($userId === false) { - throw new ClientException($this->server->getExceptionMessage('invalid_credentials'), 0); + throw new Exception\InvalidCredentialsException(); } // Validate any scopes that are in the request diff --git a/src/Grant/RefreshToken.php b/src/Grant/RefreshToken.php index b1993161..80e514f4 100644 --- a/src/Grant/RefreshToken.php +++ b/src/Grant/RefreshToken.php @@ -21,7 +21,6 @@ use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Entity\RefreshToken as RT; use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Session; -use League\OAuth2\Server\Exception\ClientException; /** * Referesh token grant @@ -65,18 +64,12 @@ class RefreshToken extends AbstractGrant { $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new Exception\ClientException( - sprintf($this->server->getExceptionMessage('invalid_request'), 'client_id'), - 0 - ); + throw new Exception\InvalidRequestException('client_id'); } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new Exception\ClientException( - sprintf($this->server->getExceptionMessage('invalid_request'), 'client_secret'), - 0 - ); + throw new Exception\InvalidRequestException('client_secret'); } // Validate client ID and client secret @@ -88,22 +81,19 @@ class RefreshToken extends AbstractGrant ); if ($client === null) { - throw new ClientException(AuthorizationServer::getExceptionMessage('invalid_client'), 8); + throw new Exception\InvalidClientException(); } $oldRefreshTokenParam = $this->server->getRequest()->request->get('refresh_token', null); if ($oldRefreshTokenParam === null) { - throw new Exception\ClientException( - sprintf($this->server->getExceptionMessage('invalid_request'), 'refresh_token'), - 0 - ); + throw new Exception\InvalidRequestException('refresh_token'); } // Validate refresh token $oldRefreshToken = $this->server->getStorage('refresh_token')->get($oldRefreshTokenParam); if (($oldRefreshToken instanceof RT) === false) { - throw new Exception\ClientException($this->server->getExceptionMessage('invalid_refresh'), 0); + throw new Exception\InvalidRefreshException(); } $oldAccessToken = $oldRefreshToken->getAccessToken(); @@ -124,10 +114,7 @@ class RefreshToken extends AbstractGrant // the request doesn't include any new scopes foreach ($requestedScopes as $requestedScope) { if (!isset($scopes[$requestedScope->getId()])) { - throw new Exception\ClientException( - sprintf($this->server->getExceptionMessage('invalid_scope'), $requestedScope->getId()), - 0 - ); + throw new Exception\InvalidScopeException($requestedScope->getId()); } } diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 35ed1e37..f3723dbf 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -210,7 +210,7 @@ class ResourceServer extends AbstractServer } if (empty($accessToken)) { - throw new Exception\InvalidAccessTokenException('Access token is missing'); + throw new Exception\InvalidRequestException('access token'); } return $accessToken; From 1183fe80c64411c105cd80dd3c15d7c9008d6b8f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:33:11 +0100 Subject: [PATCH 072/270] Lots of fixes for tests following exceptions changes --- tests/AbstractServerTest.php | 4 +- ...onTest.php => AuthorizationServerTest.php} | 33 ++------------ tests/Grant/AbstractGrantTest.php | 6 +-- tests/Grant/AuthCodeTest.php | 30 ++++++------- tests/Grant/ClientCredentialsTest.php | 8 ++-- tests/Grant/PasswordTest.php | 19 ++++---- tests/Grant/RefreshTokenTest.php | 13 +++--- ...esourceTest.php => ResourceServerTest.php} | 45 ++----------------- 8 files changed, 47 insertions(+), 111 deletions(-) rename tests/{AuthorizationTest.php => AuthorizationServerTest.php} (68%) rename tests/{ResourceTest.php => ResourceServerTest.php} (80%) diff --git a/tests/AbstractServerTest.php b/tests/AbstractServerTest.php index 231105dc..a25b8f13 100644 --- a/tests/AbstractServerTest.php +++ b/tests/AbstractServerTest.php @@ -5,7 +5,7 @@ namespace LeagueTests; use LeagueTests\Stubs\StubAbstractServer; use \Mockery as M; -class AbstractTokenTests extends \PHPUnit_Framework_TestCase +class AbstractTokenTest extends \PHPUnit_Framework_TestCase { function testSetGet() { @@ -19,7 +19,7 @@ class AbstractTokenTests extends \PHPUnit_Framework_TestCase function testGetStorageException() { - $this->setExpectedException('League\OAuth2\Server\Exception\ServerException'); + $this->setExpectedException('League\OAuth2\Server\Exception\ServerErrorException'); $server = new StubAbstractServer(); $server->getStorage('foobar'); } diff --git a/tests/AuthorizationTest.php b/tests/AuthorizationServerTest.php similarity index 68% rename from tests/AuthorizationTest.php rename to tests/AuthorizationServerTest.php index 26110571..fd447b6c 100644 --- a/tests/AuthorizationTest.php +++ b/tests/AuthorizationServerTest.php @@ -7,33 +7,8 @@ use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Storage\ScopeInterface; use \Mockery as M; -class AuthorizationTests extends \PHPUnit_Framework_TestCase +class AuthorizationTest extends \PHPUnit_Framework_TestCase { - public function testGetExceptionMessage() - { - $m = AuthorizationServer::getExceptionMessage('access_denied'); - - $reflector = new \ReflectionClass('League\OAuth2\Server\AuthorizationServer'); - $exceptionMessages = $reflector->getProperty('exceptionMessages'); - $exceptionMessages->setAccessible(true); - $v = $exceptionMessages->getValue(); - - $this->assertEquals($v['access_denied'], $m); - } - - public function testGetExceptionCode() - { - $this->assertEquals('access_denied', AuthorizationServer::getExceptionType(2)); - } - - public function testGetExceptionHttpHeaders() - { - $this->assertEquals(array('HTTP/1.1 401 Unauthorized'), AuthorizationServer::getExceptionHttpHeaders('access_denied')); - $this->assertEquals(array('HTTP/1.1 500 Internal Server Error'), AuthorizationServer::getExceptionHttpHeaders('server_error')); - $this->assertEquals(array('HTTP/1.1 501 Not Implemented'), AuthorizationServer::getExceptionHttpHeaders('unsupported_grant_type')); - $this->assertEquals(array('HTTP/1.1 400 Bad Request'), AuthorizationServer::getExceptionHttpHeaders('invalid_refresh')); - } - public function testSetGet() { $server = new AuthorizationServer; @@ -67,7 +42,7 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase public function testInvalidGrantType() { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantException'); $server = new AuthorizationServer; $server->getGrantType('foobar'); } @@ -90,14 +65,14 @@ class AuthorizationTests extends \PHPUnit_Framework_TestCase public function testIssueAccessTokenEmptyGrantType() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $server = new AuthorizationServer; $this->assertTrue($server->issueAccessToken()); } public function testIssueAccessTokenInvalidGrantType() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\UnsupportedGrantTypeException'); $_POST['grant_type'] = 'foobar'; diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index 60b28979..9d4d6523 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Grant\ClientException; +use League\OAuth2\Server\Exception\InvalidRequestException; use LeagueTests\Stubs\StubAbstractGrant; use Mockery as M; @@ -74,7 +74,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase public function testValidateScopesMissingScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); @@ -91,7 +91,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase public function testValidateScopesInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php index ecd04309..eb15238c 100644 --- a/tests/Grant/AuthCodeTest.php +++ b/tests/Grant/AuthCodeTest.php @@ -9,7 +9,7 @@ use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\AuthCode as AC; use League\OAuth2\Server\AuthorizationServer as Authorization; -use League\OAuth2\Server\Grant\ClientException; +use League\OAuth2\Server\Exception\InvalidRequestException; use Mockery as M; class AuthCodeTest extends \PHPUnit_Framework_TestCase @@ -27,7 +27,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = []; @@ -41,7 +41,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsMissingRedirectUri() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'client_id' => 'testapp' @@ -56,7 +56,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsMissingStateParam() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "state" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'client_id' => 'testapp', @@ -73,7 +73,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsMissingResponseType() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "response_type" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'client_id' => 'testapp', @@ -89,7 +89,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsInvalidResponseType() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The authorization server does not support obtaining an access token using this method.'); + $this->setExpectedException('League\OAuth2\Server\Exception\UnsupportedResponseTypeException'); $_POST = [ 'client_id' => 'testapp', @@ -106,7 +106,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); $_POST = [ 'client_id' => 'testapp', @@ -129,7 +129,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParamsInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); $_POST = [ 'response_type' => 'code', @@ -260,7 +260,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST['grant_type'] = 'authorization_code'; @@ -274,7 +274,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'authorization_code', @@ -290,7 +290,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowMissingRedirectUri() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'authorization_code', @@ -307,7 +307,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); $_POST = [ 'grant_type' => 'authorization_code', @@ -331,7 +331,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowMissingCode() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "code" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'authorization_code', @@ -379,7 +379,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowInvalidCode() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "code" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'authorization_code', @@ -428,7 +428,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase public function testCompleteFlowRedirectUriMismatch() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "redirect_uri" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'authorization_code', diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index 0ba342c7..1686c611 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -13,7 +13,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase { function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST['grant_type'] = 'client_credentials'; @@ -27,7 +27,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'client_credentials', @@ -43,7 +43,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); $_POST = [ 'grant_type' => 'client_credentials', @@ -66,7 +66,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); $_POST = [ 'grant_type' => 'client_credentials', diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index 9941761c..85110223 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -7,14 +7,13 @@ use League\OAuth2\Server\Grant\RefreshToken; use League\OAuth2\Server\Entity\Scope; use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Grant\ClientException; use Mockery as M; class PasswordTest extends \PHPUnit_Framework_TestCase { function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST['grant_type'] = 'password'; @@ -28,7 +27,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'password', @@ -44,7 +43,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); $_POST = [ 'grant_type' => 'password', @@ -67,7 +66,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoUsername() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "username" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'password', @@ -109,7 +108,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoPassword() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "password" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'password', @@ -152,7 +151,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testNoCallable() { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidGrantTypeException', 'Null or non-callable callback set on Password grant'); + $this->setExpectedException('League\OAuth2\Server\Exception\ServerErrorException'); $_POST = [ 'grant_type' => 'password', @@ -196,7 +195,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidScope() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "foo" scope.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); $_POST = [ 'grant_type' => 'password', @@ -244,7 +243,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowNoScopes() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "scope" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'password', @@ -293,7 +292,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidCredentials() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The user credentials were incorrect.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidCredentialsException'); $_POST = [ 'grant_type' => 'password', diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index c6b0bc36..539f0d8d 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -9,7 +9,6 @@ use League\OAuth2\Server\Entity\AccessToken; use League\OAuth2\Server\Entity\Session; use League\OAuth2\Server\Entity\RefreshToken as RT; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Grant\ClientException; use Mockery as M; class RefreshTokenTest extends \PHPUnit_Framework_TestCase @@ -27,7 +26,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientId() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_id" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST['grant_type'] = 'refresh_token'; @@ -40,7 +39,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingClientSecret() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "client_secret" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'refresh_token', @@ -56,7 +55,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidClient() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'Client authentication failed'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); $_POST = [ 'grant_type' => 'refresh_token', @@ -79,7 +78,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowMissingRefreshToken() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "refresh_token" parameter.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = [ 'grant_type' => 'refresh_token', @@ -113,7 +112,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase function testCompleteFlowInvalidRefreshToken() { - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The refresh token is invalid.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRefreshException'); $_POST = [ 'grant_type' => 'refresh_token', @@ -352,7 +351,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); - $this->setExpectedException('League\OAuth2\Server\Exception\ClientException', 'The requested scope is invalid, unknown, or malformed. Check the "blah" scope.'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); $server->issueAccessToken(); } diff --git a/tests/ResourceTest.php b/tests/ResourceServerTest.php similarity index 80% rename from tests/ResourceTest.php rename to tests/ResourceServerTest.php index eb7662ca..5d80f78f 100644 --- a/tests/ResourceTest.php +++ b/tests/ResourceServerTest.php @@ -10,7 +10,7 @@ use League\OAuth2\Server\Entity\Client; use League\OAuth2\Server\Entity\Scope; use \Mockery as M; -class ResourceServerTests extends \PHPUnit_Framework_TestCase +class ResourceServerTest extends \PHPUnit_Framework_TestCase { private function returnDefault() { @@ -54,7 +54,7 @@ class ResourceServerTests extends \PHPUnit_Framework_TestCase public function testDetermineAccessTokenMissingToken() { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidAccessTokenException'); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); @@ -89,43 +89,6 @@ class ResourceServerTests extends \PHPUnit_Framework_TestCase $method->invoke($server); } - public function testDetermineAccessTokenBrokenCurlRequest() - { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidAccessTokenException'); - - $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - $sessionStorage->shouldReceive('setServer'); - - $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); - $accessTokenStorage->shouldReceive('setServer'); - $accessTokenStorage->shouldReceive('get')->andReturn(false); - - $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); - $clientStorage->shouldReceive('setServer'); - - $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); - $scopeStorage->shouldReceive('setServer'); - - $server = new ResourceServer( - $sessionStorage, - $accessTokenStorage, - $clientStorage, - $scopeStorage - ); - - $request = new \Symfony\Component\HttpFoundation\Request(); - $request->headers = new \Symfony\Component\HttpFoundation\ParameterBag([ - 'Authorization' => 'Bearer, Bearer abcdef' - ]); - $server->setRequest($request); - - $reflector = new \ReflectionClass($server); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $method->invoke($server); - } - public function testIsValidNotValid() { $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -148,7 +111,7 @@ class ResourceServerTests extends \PHPUnit_Framework_TestCase $scopeStorage ); - $this->assertFalse($server->isValid()); + $this->assertFalse($server->isValidRequest()); } public function testIsValid() @@ -197,7 +160,7 @@ class ResourceServerTests extends \PHPUnit_Framework_TestCase ]); $server->setRequest($request); - $this->assertTrue($server->isValid()); + $this->assertTrue($server->isValidRequest()); $this->assertEquals('at', $server->getTokenKey()); $this->assertEquals(123, $server->getOwnerId()); $this->assertEquals('user', $server->getOwnerType()); From b5f02d07394bf6d6a2b1a03cb1288bec99212d32 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:44:13 +0100 Subject: [PATCH 073/270] Inject the access token object --- src/Storage/SessionInterface.php | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/src/Storage/SessionInterface.php b/src/Storage/SessionInterface.php index 0da92233..40f8873f 100644 --- a/src/Storage/SessionInterface.php +++ b/src/Storage/SessionInterface.php @@ -25,11 +25,18 @@ interface SessionInterface /** * Get a session from an access token - * @param string $accessToken The access token + * @param \League\OAuth2\Server\Entity\AccessToken $accessToken The access token * @return \League\OAuth2\Server\Entity\Session */ public function getByAccessToken($accessToken); + /** + * Get a session from an auth code + * @param \League\OAuth2\Server\Entity\AuthCode $authCode The auth code + * @return \League\OAuth2\Server\Entity\Session + */ + public function getByAuthCode($authCode); + /** * Get a session's scopes * @param integer $sessionId From 16bdc36ccb83467bff1ab1807638e395fdc315ae Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:45:38 +0100 Subject: [PATCH 074/270] Accept token instead of strings --- src/Entity/AbstractToken.php | 2 +- src/Entity/AccessToken.php | 4 ++-- src/Storage/AccessTokenInterface.php | 29 +++++++++++++++++++--------- 3 files changed, 23 insertions(+), 12 deletions(-) diff --git a/src/Entity/AbstractToken.php b/src/Entity/AbstractToken.php index 18e3c5e8..4a186e9f 100644 --- a/src/Entity/AbstractToken.php +++ b/src/Entity/AbstractToken.php @@ -164,7 +164,7 @@ abstract class AbstractToken { if ($this->scopes === null) { $this->scopes = $this->formatScopes( - $this->server->getStorage('access_token')->getScopes($this->getToken()) + $this->server->getStorage('access_token')->getScopes($this) ); } diff --git a/src/Entity/AccessToken.php b/src/Entity/AccessToken.php index c4ad126b..68c75cb3 100644 --- a/src/Entity/AccessToken.php +++ b/src/Entity/AccessToken.php @@ -35,7 +35,7 @@ class AccessToken extends AbstractToken // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->server->getStorage('access_token')->associateScope($this->getToken(), $scope->getId()); + $this->server->getStorage('access_token')->associateScope($this, $scope); } return $this; @@ -46,6 +46,6 @@ class AccessToken extends AbstractToken */ public function expire() { - $this->server->getStorage('access_token')->delete($this->getToken()); + $this->server->getStorage('access_token')->delete($this); } } diff --git a/src/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php index e5d724f2..482eb818 100644 --- a/src/Storage/AccessTokenInterface.php +++ b/src/Storage/AccessTokenInterface.php @@ -11,26 +11,37 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\AbstractToken; +use League\OAuth2\Server\Entity\RefreshToken; +use League\OAuth2\Server\Entity\AuthCode; +use League\OAuth2\Server\Entity\Scope; + /** * Access token interface */ interface AccessTokenInterface { /** - * Get an instance of Entites\AccessToken + * Get an instance of Entity\AccessToken * @param string $token The access token * @return \League\OAuth2\Server\Entity\AccessToken */ public function get($token); - public function getByRefreshToken($refreshToken); + /** + * Get the access token associated with an access token + * @param \League\OAuth2\Server\Entity\RefreshToken $refreshToken + * @return \League\OAuth2\Server\Entity\AccessToken + */ + public function getByRefreshToken(RefreshToken $refreshToken); /** * Get the scopes for an access token - * @param string $token The access token + * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token * @return array Array of \League\OAuth2\Server\Entity\Scope */ - public function getScopes($token); + public function getScopes(AbstractToken $token); /** * Creates a new access token @@ -43,16 +54,16 @@ interface AccessTokenInterface /** * Associate a scope with an acess token - * @param string $token The access token - * @param string $scope The scope + * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token + * @param \League\OAuth2\Server\Entity\Scope $scope The scope * @return void */ - public function associateScope($token, $scope); + public function associateScope(AbstractToken $token, Scope $scope); /** * Delete an access token - * @param string $token The access token to delete + * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token to delete * @return void */ - public function delete($token); + public function delete(AbstractToken $token); } From 797ed66edab4d29b7a1e11e20e474ab1f90efc73 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:46:22 +0100 Subject: [PATCH 075/270] Added getBySession --- src/Storage/ClientInterface.php | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index 8b4643b8..fa881356 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -22,7 +22,14 @@ interface ClientInterface * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") * @param string $grantType The grant type used in the request (default = "null") - * @return League\OAuth2\Server\Entity\Client|null + * @return League\OAuth2\Server\Entity\Client */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); + + /** + * Get the client associated with a session + * @param \League\OAuth2\Server\Entity\Session $session The session + * @return \League\OAuth2\Server\Entity\Client + */ + public function getBySession(Session $session); } From 79b1e397988fb2f6a03762bfbb24c7fe1eb86381 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:46:35 +0100 Subject: [PATCH 076/270] Removed special case for cURL --- src/ResourceServer.php | 13 +------------ 1 file changed, 1 insertion(+), 12 deletions(-) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index f3723dbf..780da8d6 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -192,18 +192,7 @@ class ResourceServer extends AbstractServer public function determineAccessToken($headersOnly = false) { if ($header = $this->getRequest()->headers->get('Authorization')) { - // Check for special case, because cURL sometimes does an - // internal second request and doubles the authorization header, - // which always resulted in an error. - // - // 1st request: Authorization: Bearer XXX - // 2nd request: Authorization: Bearer XXX, Bearer XXX - if (strpos($header, ',') !== false) { - $headerPart = explode(',', $header); - $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $headerPart[0])); - } else { - $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); - } + $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; } elseif ($headersOnly === false) { $accessToken = $this->getRequest()->request->get($this->tokenKey); From f78caa24bbd9740021f626f1a268e9dfaaffd4ad Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:46:43 +0100 Subject: [PATCH 077/270] Renamed method to be more obvious --- src/ResourceServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 780da8d6..c78c795c 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -140,7 +140,7 @@ class ResourceServer extends AbstractServer * @param $headersOnly Limit Access Token to Authorization header only * @return bool */ - public function isValid($headersOnly = true, $accessToken = null) + public function isValidRequest($headersOnly = true, $accessToken = null) { try { $accessTokenString = ($accessToken !== null) ? $accessToken : $this->determineAccessToken($headersOnly, $accessToken); From 8b4b884a03d27aaeddd66e3b127b1a549132c087 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:47:01 +0100 Subject: [PATCH 078/270] Pass the token instead of string --- src/Entity/RefreshToken.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Entity/RefreshToken.php b/src/Entity/RefreshToken.php index 4fc2cc92..a41c1991 100644 --- a/src/Entity/RefreshToken.php +++ b/src/Entity/RefreshToken.php @@ -46,7 +46,7 @@ class RefreshToken extends AbstractToken public function getAccessToken() { if (! $this->accessToken instanceof AccessToken) { - $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this->getToken()); + $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this); } return $this->accessToken; } From e5315dc016ddee35676513b9bbf8e1899e5fff4c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 1 May 2014 14:57:12 +0100 Subject: [PATCH 079/270] Test fixes --- src/Entity/Session.php | 2 +- src/Storage/ClientInterface.php | 2 ++ 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/src/Entity/Session.php b/src/Entity/Session.php index 767403c4..ab166253 100644 --- a/src/Entity/Session.php +++ b/src/Entity/Session.php @@ -209,7 +209,7 @@ class Session return $this->client; } - $this->client = $this->server->getStorage('client')->getBySession($this->getId()); + $this->client = $this->server->getStorage('client')->getBySession($this); return $this->client; } diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index fa881356..267888f0 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\Entity\Session; + /** * Client storage interface */ From bdd2bc322cea396fb5fe62af2768425925b0b174 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:12:00 +0100 Subject: [PATCH 080/270] Renamed entities (added Entity to the end of class name) --- ...tractToken.php => AbstractTokenEntity.php} | 59 +++---------------- ...{AccessToken.php => AccessTokenEntity.php} | 45 +++++++++++++- .../{AuthCode.php => AuthCodeEntity.php} | 8 +-- src/Entity/{Client.php => ClientEntity.php} | 2 +- ...efreshToken.php => RefreshTokenEntity.php} | 8 +-- src/Entity/{Scope.php => ScopeEntity.php} | 4 +- src/Entity/{Session.php => SessionEntity.php} | 28 ++++----- 7 files changed, 77 insertions(+), 77 deletions(-) rename src/Entity/{AbstractToken.php => AbstractTokenEntity.php} (67%) rename src/Entity/{AccessToken.php => AccessTokenEntity.php} (52%) rename src/Entity/{AuthCode.php => AuthCodeEntity.php} (94%) rename src/Entity/{Client.php => ClientEntity.php} (99%) rename src/Entity/{RefreshToken.php => RefreshTokenEntity.php} (87%) rename src/Entity/{Scope.php => ScopeEntity.php} (94%) rename src/Entity/{Session.php => SessionEntity.php} (86%) diff --git a/src/Entity/AbstractToken.php b/src/Entity/AbstractTokenEntity.php similarity index 67% rename from src/Entity/AbstractToken.php rename to src/Entity/AbstractTokenEntity.php index 4a186e9f..2af5314c 100644 --- a/src/Entity/AbstractToken.php +++ b/src/Entity/AbstractTokenEntity.php @@ -20,7 +20,7 @@ use Symfony\Component\HttpFoundation\ParameterBag; /** * Abstract token class */ -abstract class AbstractToken +abstract class AbstractTokenEntity { /** * Access token ID @@ -30,7 +30,7 @@ abstract class AbstractToken /** * Associated session - * @var \League\OAuth2\Server\Session + * @var \League\OAuth2\Server\SessionEntity */ protected $session; @@ -48,7 +48,7 @@ abstract class AbstractToken /** * Authorization or resource server - * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + * @var \League\OAuth2\Server\AbstractServer */ protected $server; @@ -65,29 +65,15 @@ abstract class AbstractToken /** * Set session - * @param \League\OAuth2\Server\Session $session + * @param \League\OAuth2\Server\SessionEntity $session * @return self */ - public function setSession(Session $session) + public function setSession(SessionEntity $session) { $this->session = $session; return $this; } - /** - * Get session - * @return \League\OAuth2\Server\Session - */ - public function getSession() - { - if ($this->session instanceof Session) { - return $this->session; - } - - $this->session = $this->server->getStorage('session')->getByAccessToken($this->token); - return $this->session; - } - /** * Set the expire time of the token * @param integer $expireTime Unix time stamp @@ -130,10 +116,10 @@ abstract class AbstractToken /** * Associate a scope - * @param \League\OAuth2\Server\Entity\Scope $scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope * @return self */ - public function associateScope(Scope $scope) + public function associateScope(ScopeEntity $scope) { if (!isset($this->scopes[$scope->getId()])) { $this->scopes[$scope->getId()] = $scope; @@ -142,35 +128,6 @@ abstract class AbstractToken return $this; } - /** - * Check if access token has an associated scope - * @param string $scope Scope to check - * @return bool - */ - public function hasScope($scope) - { - if ($this->scopes === null) { - $this->getScopes(); - } - - return isset($this->scopes[$scope]); - } - - /** - * Return all scopes associated with the session - * @return array Array of \League\OAuth2\Server\Entity\Scope - */ - public function getScopes() - { - if ($this->scopes === null) { - $this->scopes = $this->formatScopes( - $this->server->getStorage('access_token')->getScopes($this) - ); - } - - return $this->scopes; - } - /** * Format the local scopes array * @param array $unformatted Array of \League\OAuth2\Server\Entity\Scope @@ -180,7 +137,7 @@ abstract class AbstractToken { $scopes = []; foreach ($unformatted as $scope) { - if ($scope instanceof Scope) { + if ($scope instanceof ScopeEntity) { $scopes[$scope->getId()] = $scope; } } diff --git a/src/Entity/AccessToken.php b/src/Entity/AccessTokenEntity.php similarity index 52% rename from src/Entity/AccessToken.php rename to src/Entity/AccessTokenEntity.php index 68c75cb3..163545d2 100644 --- a/src/Entity/AccessToken.php +++ b/src/Entity/AccessTokenEntity.php @@ -20,8 +20,51 @@ use Symfony\Component\HttpFoundation\ParameterBag; /** * Access token entity class */ -class AccessToken extends AbstractToken +class AccessTokenEntity extends AbstractTokenEntity { + /** + * Get session + * @return \League\OAuth2\Server\SessionEntity + */ + public function getSession() + { + if ($this->session instanceof SessionEntity) { + return $this->session; + } + + $this->session = $this->server->getStorage('session')->getByAccessToken($this); + return $this->session; + } + + /** + * Check if access token has an associated scope + * @param string $scope Scope to check + * @return bool + */ + public function hasScope($scope) + { + if ($this->scopes === null) { + $this->getScopes(); + } + + return isset($this->scopes[$scope]); + } + + /** + * Return all scopes associated with the session + * @return array Array of \League\OAuth2\Server\Entity\Scope + */ + public function getScopes() + { + if ($this->scopes === null) { + $this->scopes = $this->formatScopes( + $this->server->getStorage('access_token')->getScopes($this) + ); + } + + return $this->scopes; + } + /** * {@inheritdoc} */ diff --git a/src/Entity/AuthCode.php b/src/Entity/AuthCodeEntity.php similarity index 94% rename from src/Entity/AuthCode.php rename to src/Entity/AuthCodeEntity.php index ea0ec9de..514b87bc 100644 --- a/src/Entity/AuthCode.php +++ b/src/Entity/AuthCodeEntity.php @@ -20,7 +20,7 @@ use Symfony\Component\HttpFoundation\ParameterBag; /** * Access token entity class */ -class AuthCode extends AbstractToken +class AuthCodeEntity extends AbstractTokenEntity { /** * Redirect URI @@ -49,7 +49,7 @@ class AuthCode extends AbstractToken } /** - * [generateRedirectUri description] + * Generate a redirect URI * @param string $state The state parameter if set by the client * @param string $queryDelimeter The query delimiter ('?' for auth code grant, '#' for implicit grant) * @return string @@ -69,11 +69,11 @@ class AuthCode extends AbstractToken */ public function getSession() { - if ($this->session instanceof Session) { + if ($this->session instanceof SessionEntity) { return $this->session; } - $this->session = $this->server->getStorage('session')->getByAuthCode($this->token); + $this->session = $this->server->getStorage('session')->getByAuthCode($this); return $this->session; } diff --git a/src/Entity/Client.php b/src/Entity/ClientEntity.php similarity index 99% rename from src/Entity/Client.php rename to src/Entity/ClientEntity.php index d7589a44..40e0e542 100644 --- a/src/Entity/Client.php +++ b/src/Entity/ClientEntity.php @@ -17,7 +17,7 @@ use League\OAuth2\Server\AbstractServer; /** * Client entity class */ -class Client +class ClientEntity { /** * Client identifier diff --git a/src/Entity/RefreshToken.php b/src/Entity/RefreshTokenEntity.php similarity index 87% rename from src/Entity/RefreshToken.php rename to src/Entity/RefreshTokenEntity.php index a41c1991..ce230283 100644 --- a/src/Entity/RefreshToken.php +++ b/src/Entity/RefreshTokenEntity.php @@ -20,7 +20,7 @@ use Symfony\Component\HttpFoundation\ParameterBag; /** * Refresh token entity class */ -class RefreshToken extends AbstractToken +class RefreshTokenEntity extends AbstractTokenEntity { /** * Access token associated to refresh token @@ -30,10 +30,10 @@ class RefreshToken extends AbstractToken /** * Associate an access token - * @param \League\OAuth2\Server\Entity\AccessToken $accessToken + * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken * @return self */ - public function setAccessToken(AccessToken $accessToken) + public function setAccessToken(AccessTokenEntity $accessToken) { $this->accessToken = $accessToken; return $this; @@ -45,7 +45,7 @@ class RefreshToken extends AbstractToken */ public function getAccessToken() { - if (! $this->accessToken instanceof AccessToken) { + if (! $this->accessToken instanceof AccessTokenEntity) { $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this); } return $this->accessToken; diff --git a/src/Entity/Scope.php b/src/Entity/ScopeEntity.php similarity index 94% rename from src/Entity/Scope.php rename to src/Entity/ScopeEntity.php index b2ad9f4e..7e4019aa 100644 --- a/src/Entity/Scope.php +++ b/src/Entity/ScopeEntity.php @@ -17,7 +17,7 @@ use League\OAuth2\Server\AbstractServer; /** * Scope entity class */ -class Scope +class ScopeEntity { /** * Scope identifier @@ -33,7 +33,7 @@ class Scope /** * Authorization or resource server - * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + * @var \League\OAuth2\Server\AbstractServer */ protected $server; diff --git a/src/Entity/Session.php b/src/Entity/SessionEntity.php similarity index 86% rename from src/Entity/Session.php rename to src/Entity/SessionEntity.php index ab166253..95721cf7 100644 --- a/src/Entity/Session.php +++ b/src/Entity/SessionEntity.php @@ -20,7 +20,7 @@ use Symfony\Component\HttpFoundation\ParameterBag; /** * Session entity grant */ -class Session +class SessionEntity { /** * Session identifier @@ -48,19 +48,19 @@ class Session /** * Auth code - * @var \League\OAuth2\Server\Entity\AuthCode + * @var \League\OAuth2\Server\Entity\AuthCodeEntity */ protected $authCode; /** * Access token - * @var \League\OAuth2\Server\Entity\AccessToken + * @var \League\OAuth2\Server\Entity\AccessTokenEntity */ protected $accessToken; /** * Refresh token - * @var \League\OAuth2\Server\Entity\RefreshToken + * @var \League\OAuth2\Server\Entity\RefreshTokenEntity */ protected $refreshToken; @@ -109,10 +109,10 @@ class Session /** * Associate a scope - * @param \League\OAuth2\Server\Entity\Scope $scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope * @return self */ - public function associateScope(Scope $scope) + public function associateScope(ScopeEntity $scope) { if (!isset($this->scopes[$scope->getId()])) { $this->scopes[$scope->getId()] = $scope; @@ -158,7 +158,7 @@ class Session $scopes = []; if (is_array($unformated)) { foreach ($unformated as $scope) { - if ($scope instanceof Scope) { + if ($scope instanceof ScopeEntity) { $scopes[$scope->getId()] = $scope; } } @@ -168,10 +168,10 @@ class Session /** * Associate an access token with the session - * @param \League\OAuth2\Server\Entity\AccessToken $accessToken + * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken * @return self */ - public function associateAccessToken(AccessToken $accessToken) + public function associateAccessToken(AccessTokenEntity $accessToken) { $this->accessToken = $accessToken; return $this; @@ -179,10 +179,10 @@ class Session /** * Associate a refresh token with the session - * @param \League\OAuth2\Server\Entity\RefreshToken $refreshToken + * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $refreshToken * @return self */ - public function associateRefreshToken(RefreshToken $refreshToken) + public function associateRefreshToken(RefreshTokenEntity $refreshToken) { $this->refreshToken = $refreshToken; return $this; @@ -190,10 +190,10 @@ class Session /** * Associate a client with the session - * @param League\OAuth2\Server\Entity\Client $client The client + * @param League\OAuth2\Server\Entity\ClientEntity $client The client * @return self */ - public function associateClient(Client $client) + public function associateClient(ClientEntity $client) { $this->client = $client; return $this; @@ -205,7 +205,7 @@ class Session */ public function getClient() { - if ($this->client instanceof Client) { + if ($this->client instanceof ClientEntity) { return $this->client; } From 5206d77167e67f067f8cfb7308c92e1f56343735 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:12:15 +0100 Subject: [PATCH 081/270] Renamed test classes --- .../AbstractTokenTest.php | 68 ++++++++++--------- .../{Entities => Entity}/AccessTokenTest.php | 33 +++++---- tests/{Entities => Entity}/AuthCodeTest.php | 35 ++++++---- tests/{Entities => Entity}/ClientTest.php | 4 +- .../{Entities => Entity}/RefreshTokenTest.php | 10 +-- tests/{Entities => Entity}/ScopeTest.php | 4 +- tests/{Entities => Entity}/SessionTest.php | 14 ++-- 7 files changed, 94 insertions(+), 74 deletions(-) rename tests/{Entities => Entity}/AbstractTokenTest.php (52%) rename tests/{Entities => Entity}/AccessTokenTest.php (54%) rename tests/{Entities => Entity}/AuthCodeTest.php (61%) rename tests/{Entities => Entity}/ClientTest.php (89%) rename tests/{Entities => Entity}/RefreshTokenTest.php (91%) rename tests/{Entities => Entity}/ScopeTest.php (85%) rename tests/{Entities => Entity}/SessionTest.php (93%) diff --git a/tests/Entities/AbstractTokenTest.php b/tests/Entity/AbstractTokenTest.php similarity index 52% rename from tests/Entities/AbstractTokenTest.php rename to tests/Entity/AbstractTokenTest.php index ea85fb16..e1070d75 100644 --- a/tests/Entities/AbstractTokenTest.php +++ b/tests/Entity/AbstractTokenTest.php @@ -1,11 +1,11 @@ setToken('foobar'); $entity->setExpireTime($time); - $entity->setSession((new Session($server))); - $entity->associateScope((new Scope($server))->setId('foo')); + $entity->setSession((new SessionEntity($server))); + $entity->associateScope((new ScopeEntity($server))->setId('foo')); $this->assertEquals('foobar', $entity->getToken()); $this->assertEquals($time, $entity->getExpireTime()); - $this->assertTrue($entity->getSession() instanceof Session); - $this->assertTrue($entity->hasScope('foo')); + // $this->assertTrue($entity->getSession() instanceof SessionEntity); + // $this->assertTrue($entity->hasScope('foo')); - $result = $entity->getScopes(); - $this->assertTrue(isset($result['foo'])); + // $result = $entity->getScopes(); + // $this->assertTrue(isset($result['foo'])); } - public function testGetSession() + /*public function testGetSession() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); + $server->shouldReceive('setSessionStorage'); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( - (new Session($server)) + (new SessionEntity($server)) ); $sessionStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->andReturn($sessionStorage); + $server->setSessionStorage($sessionStorage); - $entity = new StubAbstractToken($server); - $this->assertTrue($entity->getSession() instanceof Session); - } + $entity = new StubAbstractTokenEntity($server); + $this->assertTrue($entity->getSession() instanceof SessionEntity); + }*/ - public function testGetScopes() + /*public function testGetScopes() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); + $server->shouldReceive('setAccessTokenStorage'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('getScopes')->andReturn( @@ -58,13 +62,13 @@ class AbstractTokenTests extends \PHPUnit_Framework_TestCase $server->setAccessTokenStorage($accessTokenStorage); - $entity = new StubAbstractToken($server); + $entity = new StubAbstractTokenEntity($server); $this->assertEquals($entity->getScopes(), []); - } + }*/ - public function testHasScopes() + /*public function testHasScopes() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('getScopes')->andReturn( @@ -74,29 +78,29 @@ class AbstractTokenTests extends \PHPUnit_Framework_TestCase $server->setAccessTokenStorage($accessTokenStorage); - $entity = new StubAbstractToken($server); + $entity = new StubAbstractTokenEntity($server); $this->assertFalse($entity->hasScope('foo')); - } + }*/ public function testFormatScopes() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $entity = new StubAbstractToken($server); - $reflectedEntity = new \ReflectionClass('LeagueTests\Stubs\StubAbstractToken'); + $entity = new StubAbstractTokenEntity($server); + $reflectedEntity = new \ReflectionClass('LeagueTests\Stubs\StubAbstractTokenEntity'); $method = $reflectedEntity->getMethod('formatScopes'); $method->setAccessible(true); $scopes = [ - (new Scope($server))->setId('scope1')->setDescription('foo'), - (new Scope($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), + (new ScopeEntity($server))->setId('scope2')->setDescription('bar') ]; $result = $method->invokeArgs($entity, [$scopes]); $this->assertTrue(isset($result['scope1'])); $this->assertTrue(isset($result['scope2'])); - $this->assertTrue($result['scope1'] instanceof Scope); - $this->assertTrue($result['scope2'] instanceof Scope); + $this->assertTrue($result['scope1'] instanceof ScopeEntity); + $this->assertTrue($result['scope2'] instanceof ScopeEntity); } } diff --git a/tests/Entities/AccessTokenTest.php b/tests/Entity/AccessTokenTest.php similarity index 54% rename from tests/Entities/AccessTokenTest.php rename to tests/Entity/AccessTokenTest.php index 597d7de1..f28b40b9 100644 --- a/tests/Entities/AccessTokenTest.php +++ b/tests/Entity/AccessTokenTest.php @@ -1,51 +1,60 @@ shouldReceive('setAccessTokenStorage'); + $server->shouldReceive('setSessionStorage'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( - (new Session($server)) + (new SessionEntity($server)) ); $sessionStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->setAccessTokenStorage($accessTokenStorage); $server->setSessionStorage($sessionStorage); - $entity = new AccessToken($server); - $this->assertTrue($entity->save() instanceof AccessToken); + $entity = new AccessTokenEntity($server); + $this->assertTrue($entity->save() instanceof AccessTokenEntity); } function testExpire() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AbstractServer'); + + $server->shouldReceive('setAccessTokenStorage'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->setAccessTokenStorage($accessTokenStorage); - $entity = new AccessToken($server); + $entity = new AccessTokenEntity($server); $this->assertSame($entity->expire(), null); } } diff --git a/tests/Entities/AuthCodeTest.php b/tests/Entity/AuthCodeTest.php similarity index 61% rename from tests/Entities/AuthCodeTest.php rename to tests/Entity/AuthCodeTest.php index 6499f76f..e8472499 100644 --- a/tests/Entities/AuthCodeTest.php +++ b/tests/Entity/AuthCodeTest.php @@ -1,10 +1,10 @@ setRedirectUri('http://foo/bar'); $code->setToken('foobar'); $code->setSession($session); $this->assertEquals('http://foo/bar', $code->getRedirectUri()); $this->assertEquals('http://foo/bar?code=foobar', $code->generateRedirectUri()); - $this->assertTrue($code->getSession() instanceof \League\OAuth2\Server\Entity\Session); + $this->assertTrue($code->getSession() instanceof \League\OAuth2\Server\Entity\SessionEntity); } function testSave() { - $server = new AuthorizationServer(); + $server = M::mock('League\OAuth2\Server\AbstractServer'); + $server->shouldReceive('setAuthCodeStorage'); + $server->shouldReceive('setSessionStorage'); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('create'); $authCodeStorage->shouldReceive('associateScope'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); + $server->shouldReceive('getStorage')->with('auth_code')->andReturn($authCodeStorage); + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAuthCode')->andReturn( - (new Session($server)) + (new SessionEntity($server)) ); $sessionStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->setAuthCodeStorage($authCodeStorage); $server->setSessionStorage($sessionStorage); - $entity = new AuthCode($server); - $this->assertTrue($entity->save() instanceof AuthCode); + $entity = new AuthCodeEntity($server); + $this->assertTrue($entity->save() instanceof AuthCodeEntity); } function testExpire() @@ -60,7 +67,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $server->setAuthCodeStorage($authCodeStorage); - $entity = new AuthCode($server); + $entity = new AuthCodeEntity($server); $this->assertSame($entity->expire(), null); } } diff --git a/tests/Entities/ClientTest.php b/tests/Entity/ClientTest.php similarity index 89% rename from tests/Entities/ClientTest.php rename to tests/Entity/ClientTest.php index 71e39fe5..cf76fe0e 100644 --- a/tests/Entities/ClientTest.php +++ b/tests/Entity/ClientTest.php @@ -1,8 +1,8 @@ Date: Fri, 2 May 2014 15:12:45 +0100 Subject: [PATCH 082/270] Renamed StubAbstractToken --- .../{StubAbstractToken.php => StubAbstractTokenEntity.php} | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) rename tests/Stubs/{StubAbstractToken.php => StubAbstractTokenEntity.php} (52%) diff --git a/tests/Stubs/StubAbstractToken.php b/tests/Stubs/StubAbstractTokenEntity.php similarity index 52% rename from tests/Stubs/StubAbstractToken.php rename to tests/Stubs/StubAbstractTokenEntity.php index eacb5d72..5a11674e 100644 --- a/tests/Stubs/StubAbstractToken.php +++ b/tests/Stubs/StubAbstractTokenEntity.php @@ -2,7 +2,9 @@ namespace LeagueTests\Stubs; -class StubAbstractToken extends \League\OAuth2\Server\Entity\AbstractToken +use \League\OAuth2\Server\Entity\AbstractTokenEntity; + +class StubAbstractTokenEntity extends AbstractTokenEntity { public function expire() { From 782f43c73a6e7aa8ae3b0a9eca2770d1de460259 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:14:12 +0100 Subject: [PATCH 083/270] Updated entity class names --- src/Storage/AccessTokenInterface.php | 36 +++++++++++++-------------- src/Storage/AuthCodeInterface.php | 2 +- src/Storage/ClientInterface.php | 10 ++++---- src/Storage/RefreshTokenInterface.php | 12 +++++---- src/Storage/ScopeInterface.php | 2 +- src/Storage/SessionInterface.php | 31 +++++++++++++---------- tests/Grant/AbstractGrantTest.php | 2 +- tests/Grant/AuthCodeTest.php | 6 ++--- tests/Grant/ClientCredentialsTest.php | 4 +-- tests/Grant/PasswordTest.php | 4 +-- tests/Grant/RefreshTokenTest.php | 8 +++--- tests/ResourceServerTest.php | 8 +++--- 12 files changed, 66 insertions(+), 59 deletions(-) diff --git a/src/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php index 482eb818..38ad4cbd 100644 --- a/src/Storage/AccessTokenInterface.php +++ b/src/Storage/AccessTokenInterface.php @@ -11,11 +11,11 @@ namespace League\OAuth2\Server\Storage; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\AbstractToken; -use League\OAuth2\Server\Entity\RefreshToken; -use League\OAuth2\Server\Entity\AuthCode; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\AbstractTokenEntity; +use League\OAuth2\Server\Entity\RefreshTokenEntity; +use League\OAuth2\Server\Entity\AuthCodeEntity; +use League\OAuth2\Server\Entity\ScopeEntity; /** * Access token interface @@ -23,25 +23,25 @@ use League\OAuth2\Server\Entity\Scope; interface AccessTokenInterface { /** - * Get an instance of Entity\AccessToken + * Get an instance of Entity\AccessTokenEntity * @param string $token The access token - * @return \League\OAuth2\Server\Entity\AccessToken + * @return \League\OAuth2\Server\Entity\AccessTokenEntity */ public function get($token); /** * Get the access token associated with an access token - * @param \League\OAuth2\Server\Entity\RefreshToken $refreshToken - * @return \League\OAuth2\Server\Entity\AccessToken + * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $refreshToken + * @return \League\OAuth2\Server\Entity\AccessTokenEntity */ - public function getByRefreshToken(RefreshToken $refreshToken); + public function getByRefreshToken(RefreshTokenEntity $refreshToken); /** * Get the scopes for an access token - * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token - * @return array Array of \League\OAuth2\Server\Entity\Scope + * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token + * @return array Array of \League\OAuth2\Server\Entity\ScopeEntity */ - public function getScopes(AbstractToken $token); + public function getScopes(AbstractTokenEntity $token); /** * Creates a new access token @@ -54,16 +54,16 @@ interface AccessTokenInterface /** * Associate a scope with an acess token - * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token - * @param \League\OAuth2\Server\Entity\Scope $scope The scope + * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope * @return void */ - public function associateScope(AbstractToken $token, Scope $scope); + public function associateScope(AbstractTokenEntity $token, ScopeEntity $scope); /** * Delete an access token - * @param \League\OAuth2\Server\Entity\AbstractToken $token The access token to delete + * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token to delete * @return void */ - public function delete(AbstractToken $token); + public function delete(AbstractTokenEntity $token); } diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index aaf1898c..41da4e7f 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -19,7 +19,7 @@ interface AuthCodeInterface /** * Get the auth code * @param string $code - * @return \League\OAuth2\Server\Entity\AuthCode + * @return \League\OAuth2\Server\Entity\AuthCodeEntity */ public function get($code); } diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index 267888f0..00ede1ab 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\Storage; -use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\SessionEntity; /** * Client storage interface @@ -24,14 +24,14 @@ interface ClientInterface * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") * @param string $grantType The grant type used in the request (default = "null") - * @return League\OAuth2\Server\Entity\Client + * @return League\OAuth2\Server\Entity\ClientEntity */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); /** * Get the client associated with a session - * @param \League\OAuth2\Server\Entity\Session $session The session - * @return \League\OAuth2\Server\Entity\Client + * @param \League\OAuth2\Server\Entity\SessionEntity $session The session + * @return \League\OAuth2\Server\Entity\ClientEntity */ - public function getBySession(Session $session); + public function getBySession(SessionEntity $session); } diff --git a/src/Storage/RefreshTokenInterface.php b/src/Storage/RefreshTokenInterface.php index f87f8abd..42693c6f 100644 --- a/src/Storage/RefreshTokenInterface.php +++ b/src/Storage/RefreshTokenInterface.php @@ -11,15 +11,17 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\Entity\RefreshTokenEntity; + /** * Refresh token interface */ interface RefreshTokenInterface { /** - * Return a new instance of \League\OAuth2\Server\Entity\RefreshToken + * Return a new instance of \League\OAuth2\Server\Entity\RefreshTokenEntity * @param string $token - * @return \League\OAuth2\Server\Entity\RefreshToken + * @return \League\OAuth2\Server\Entity\RefreshTokenEntity */ public function get($token); @@ -28,14 +30,14 @@ interface RefreshTokenInterface * @param string $token * @param integer $expireTime * @param string $accessToken - * @return \League\OAuth2\Server\Entity\RefreshToken + * @return \League\OAuth2\Server\Entity\RefreshTokenEntity */ public function create($token, $expireTime, $accessToken); /** * Delete the refresh token - * @param string $token + * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $token * @return void */ - public function delete($token); + public function delete(RefreshTokenEntity $token); } diff --git a/src/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php index 59bfcdd9..ffc87953 100644 --- a/src/Storage/ScopeInterface.php +++ b/src/Storage/ScopeInterface.php @@ -27,7 +27,7 @@ interface ScopeInterface * * @param string $scope The scope * @param string $grantType The grant type used in the request (default = "null") - * @return bool|array If the scope doesn't exist return false + * @return \League\OAuth2\Server\Entity\ScopeEntity */ public function get($scope, $grantType = null); } diff --git a/src/Storage/SessionInterface.php b/src/Storage/SessionInterface.php index 40f8873f..5e9fc965 100644 --- a/src/Storage/SessionInterface.php +++ b/src/Storage/SessionInterface.php @@ -11,6 +11,11 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\AuthCodeEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\ScopeEntity; + /** * Session storage interface */ @@ -19,30 +24,30 @@ interface SessionInterface /** * Get a session from it's identifier * @param string $sessionId - * @return \League\OAuth2\Server\Entity\Session + * @return \League\OAuth2\Server\Entity\SessionEntity */ public function get($sessionId); /** * Get a session from an access token - * @param \League\OAuth2\Server\Entity\AccessToken $accessToken The access token - * @return \League\OAuth2\Server\Entity\Session + * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken The access token + * @return \League\OAuth2\Server\Entity\SessionEntity */ - public function getByAccessToken($accessToken); + public function getByAccessToken(AccessTokenEntity $accessToken); /** * Get a session from an auth code - * @param \League\OAuth2\Server\Entity\AuthCode $authCode The auth code - * @return \League\OAuth2\Server\Entity\Session + * @param \League\OAuth2\Server\Entity\AuthCodeEntity $authCode The auth code + * @return \League\OAuth2\Server\Entity\SessionEntity */ - public function getByAuthCode($authCode); + public function getByAuthCode(AuthCodeEntity $authCode); /** * Get a session's scopes - * @param integer $sessionId - * @return array Array of \League\OAuth2\Server\Entity\Scope + * @param \League\OAuth2\Server\Entity\SessionEntity + * @return array Array of \League\OAuth2\Server\Entity\ScopeEntity */ - public function getScopes($sessionId); + public function getScopes(SessionEntity $session); /** * Create a new session @@ -56,9 +61,9 @@ interface SessionInterface /** * Associate a scope with a session - * @param integer $sessionId - * @param string $scopeId The scopes ID might be an integer or string + * @param \League\OAuth2\Server\Entity\SessionEntity $scope The scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope * @return void */ - public function associateScope($sessionId, $scopeId); + public function associateScope(SessionEntity $session, ScopeEntity $scope); } diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index 9d4d6523..351aec8b 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -3,7 +3,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception\InvalidRequestException; use LeagueTests\Stubs\StubAbstractGrant; diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php index eb15238c..2b0830b3 100644 --- a/tests/Grant/AuthCodeTest.php +++ b/tests/Grant/AuthCodeTest.php @@ -4,9 +4,9 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\AuthCode; use League\OAuth2\Server\Grant\RefreshToken; -use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\AuthCode as AC; use League\OAuth2\Server\AuthorizationServer as Authorization; use League\OAuth2\Server\Exception\InvalidRequestException; diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index 1686c611..8ab2332f 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -3,8 +3,8 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\ClientCredentials; -use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Entity\Client; +use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer as Authorization; use League\OAuth2\Server\Grant\ClientException; use Mockery as M; diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index 85110223..cb771e94 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -4,8 +4,8 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\Password; use League\OAuth2\Server\Grant\RefreshToken; -use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Entity\Client; +use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index 539f0d8d..397ed7d5 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -3,10 +3,10 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\RefreshToken; -use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\RefreshToken as RT; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 5d80f78f..794cebb1 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -4,10 +4,10 @@ namespace LeagueTests; use League\OAuth2\Server\ResourceServer; use League\OAuth2\Server\Grant\GrantTypeInterface; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Session; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\ScopeEntity; use \Mockery as M; class ResourceServerTest extends \PHPUnit_Framework_TestCase From 82c10c32fd2c7f4a238ea01d95c32c691ce149ba Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:14:25 +0100 Subject: [PATCH 084/270] Removed FQN --- src/AbstractServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 9da091ee..ae3beaed 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -51,7 +51,7 @@ abstract class AbstractServer public function getRequest() { if ($this->request === null) { - $this->request = \Symfony\Component\HttpFoundation\Request::createFromGlobals(); + $this->request = Request::createFromGlobals(); } return $this->request; From 184fac507ba4c83988d637895e986e0f53c68b09 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:14:36 +0100 Subject: [PATCH 085/270] Bug fix for OAuthException --- src/Exception/OAuthException.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index bee1bce4..73358a8f 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -29,9 +29,9 @@ class OAuthException extends \Exception /** * Throw a new exception */ - public function __construct() + public function __construct($msg = 'An error occured') { - parent::__construct('An error occured'); + parent::__construct($msg); } /** @@ -66,7 +66,7 @@ class OAuthException extends \Exception // include the "WWW-Authenticate" response header field // matching the authentication scheme used by the client. // @codeCoverageIgnoreStart - if ($error === 'invalid_client') { + if ($this->errorType === 'invalid_client') { $authScheme = null; $request = new Request(); if ($request->server('PHP_AUTH_USER') !== null) { From 228144a7018e00a466bc24f4d899332861f7ca34 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:14:46 +0100 Subject: [PATCH 086/270] Inject server --- src/Storage/Adapter.php | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/src/Storage/Adapter.php b/src/Storage/Adapter.php index a8ac1f1f..a6ea0792 100644 --- a/src/Storage/Adapter.php +++ b/src/Storage/Adapter.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\AbstractServer; + /** * Storage adapter class */ @@ -26,7 +28,7 @@ class Adapter * Set the server * @param \League\OAuth2\Server\AbstractServer $server */ - public function setServer($server) + public function setServer(AbstractServer $server) { $this->server = $server; return $this; From 8fbbc7bd072761587ff7621e667aaf9c2e9ef12b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 15:15:03 +0100 Subject: [PATCH 087/270] isValidRequest now throws exception --- tests/ResourceServerTest.php | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 794cebb1..791e8a41 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -111,7 +111,8 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $scopeStorage ); - $this->assertFalse($server->isValidRequest()); + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); + $server->isValidRequest(); } public function testIsValid() From 97fd115530da6d4f1576d9ed894e0debd27cfeda Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 17:21:53 +0100 Subject: [PATCH 088/270] Updated with new entity names --- src/Entity/RefreshTokenEntity.php | 9 +-- src/Entity/SessionEntity.php | 4 +- src/Grant/AbstractGrant.php | 8 +-- src/Grant/AuthCode.php | 28 ++++---- src/Grant/ClientCredentials.php | 14 ++-- src/Grant/Password.php | 18 ++--- src/Grant/RefreshToken.php | 15 +++-- src/ResourceServer.php | 38 +++++------ tests/Entity/ClientTest.php | 2 +- tests/Entity/RefreshTokenTest.php | 31 ++++++--- tests/Entity/ScopeTest.php | 2 +- tests/Entity/SessionTest.php | 64 +++++++++++------- tests/Grant/AbstractGrantTest.php | 16 ++--- tests/Grant/AuthCodeTest.php | 97 ++++++++++++++------------- tests/Grant/ClientCredentialsTest.php | 28 ++++---- tests/Grant/PasswordTest.php | 36 +++++----- tests/Grant/RefreshTokenTest.php | 42 ++++++------ tests/ResourceServerTest.php | 10 +-- 18 files changed, 244 insertions(+), 218 deletions(-) diff --git a/src/Entity/RefreshTokenEntity.php b/src/Entity/RefreshTokenEntity.php index ce230283..ec9abf28 100644 --- a/src/Entity/RefreshTokenEntity.php +++ b/src/Entity/RefreshTokenEntity.php @@ -24,7 +24,7 @@ class RefreshTokenEntity extends AbstractTokenEntity { /** * Access token associated to refresh token - * @var \League\OAuth2\Server\Entity\AccessToken + * @var \League\OAuth2\Server\Entity\AccessTokenEntity */ protected $accessToken; @@ -61,11 +61,6 @@ class RefreshTokenEntity extends AbstractTokenEntity $this->getExpireTime(), $this->getAccessToken()->getToken() ); - - // Associate the scope with the token - foreach ($this->getScopes() as $scope) { - $this->server->getStorage('refresh_token')->associateScope($this->getToken(), $scope->getId()); - } } /** @@ -73,6 +68,6 @@ class RefreshTokenEntity extends AbstractTokenEntity */ public function expire() { - $this->server->getStorage('refresh_token')->delete($this->getToken()); + $this->server->getStorage('refresh_token')->delete($this); } } diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index 95721cf7..2a68bf74 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -142,7 +142,7 @@ class SessionEntity public function getScopes() { if ($this->scopes === null) { - $this->scopes = $this->formatScopes($this->server->getStorage('session')->getScopes($this->getId())); + $this->scopes = $this->formatScopes($this->server->getStorage('session')->getScopes($this)); } return $this->scopes; @@ -263,7 +263,7 @@ class SessionEntity // Associate the scope with the session foreach ($this->getScopes() as $scope) { - $this->server->getStorage('session')->associateScope($this->getId(), $scope->getId()); + $this->server->getStorage('session')->associateScope($this, $scope); } } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index bd0794b3..d28c360b 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -12,7 +12,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Exception; /** @@ -138,7 +138,7 @@ abstract class AbstractGrant implements GrantTypeInterface $this->getIdentifier() ); - if (($scope instanceof Scope) === false) { + if (($scope instanceof ScopeEntity) === false) { throw new Exception\InvalidScopeException($scopeItem); } @@ -150,14 +150,14 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\Scope + * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\ScopeEntity * @return array */ protected function formatScopes($unformated = []) { $scopes = []; foreach ($unformated as $scope) { - if ($scope instanceof Scope) { + if ($scope instanceof ScopeEntity) { $scopes[$scope->getId()] = $scope; } } diff --git a/src/Grant/AuthCode.php b/src/Grant/AuthCode.php index b0980a72..931beb8b 100644 --- a/src/Grant/AuthCode.php +++ b/src/Grant/AuthCode.php @@ -14,12 +14,12 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Request; use League\OAuth2\Server\Exception; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\RefreshToken; -use League\OAuth2\Server\Entity\Session; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Scope; -use League\OAuth2\Server\Entity\AuthCode as AC; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\RefreshTokenEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; @@ -100,7 +100,7 @@ class AuthCode extends AbstractGrant } // Ensure response type is one that is recognised - if ( ! in_array($responseType, $this->server->getResponseTypes())) { + if (!in_array($responseType, $this->server->getResponseTypes())) { throw new Exception\UnsupportedResponseTypeException($responseType); } @@ -112,7 +112,7 @@ class AuthCode extends AbstractGrant $this->getIdentifier() ); - if (($client instanceof Client) === false) { + if (($client instanceof ClientEntity) === false) { throw new Exception\InvalidClientException(); } @@ -140,13 +140,13 @@ class AuthCode extends AbstractGrant public function newAuthoriseRequest($type, $typeId, $authParams = []) { // Create a new session - $session = new Session($this->server); + $session = new SessionEntity($this->server); $session->setOwner($type, $typeId); $session->associateClient($authParams['client']); $session->save(); // Create a new auth code - $authCode = new AC($this->server); + $authCode = new AuthCodeEntity($this->server); $authCode->setToken(SecureKey::generate()); $authCode->setRedirectUri($authParams['redirect_uri']); @@ -191,7 +191,7 @@ class AuthCode extends AbstractGrant $this->getIdentifier() ); - if (($client instanceof Client) === false) { + if (($client instanceof ClientEntity) === false) { throw new Exception\InvalidClientException(); } @@ -202,7 +202,7 @@ class AuthCode extends AbstractGrant } $code = $this->server->getStorage('auth_code')->get($authCode); - if (($code instanceof AC) === false) { + if (($code instanceof AuthCodeEntity) === false) { throw new Exception\InvalidRequestException('code'); } @@ -215,7 +215,7 @@ class AuthCode extends AbstractGrant $authCodeScopes = $code->getScopes(); // Generate the access token - $accessToken = new AccessToken($this->server); + $accessToken = new AccessTokenEntity($this->server); $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); @@ -232,7 +232,7 @@ class AuthCode extends AbstractGrant // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { - $refreshToken = new RefreshToken($this->server); + $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); $response['refresh_token'] = $refreshToken->getToken(); diff --git a/src/Grant/ClientCredentials.php b/src/Grant/ClientCredentials.php index 2c4e38d9..d0bfb72a 100644 --- a/src/Grant/ClientCredentials.php +++ b/src/Grant/ClientCredentials.php @@ -12,10 +12,10 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\Session; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; @@ -77,7 +77,7 @@ class ClientCredentials extends AbstractGrant $this->getIdentifier() ); - if (($client instanceof Client) === false) { + if (($client instanceof ClientEntity) === false) { throw new Exception\InvalidClientException(); } @@ -86,12 +86,12 @@ class ClientCredentials extends AbstractGrant $scopes = $this->validateScopes($scopeParam); // Create a new session - $session = new Session($this->server); + $session = new SessionEntity($this->server); $session->setOwner('client', $client->getId()); $session->associateClient($client); // Generate an access token - $accessToken = new AccessToken($this->server); + $accessToken = new AccessTokenEntity($this->server); $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); diff --git a/src/Grant/Password.php b/src/Grant/Password.php index baaff116..63284ee3 100644 --- a/src/Grant/Password.php +++ b/src/Grant/Password.php @@ -12,11 +12,11 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Client; -use League\OAuth2\Server\Entity\RefreshToken as RT; -use League\OAuth2\Server\Entity\Session; -use League\OAuth2\Server\Entity\Scope; +use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\RefreshTokenEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; @@ -101,7 +101,7 @@ class Password extends AbstractGrant $this->getIdentifier() ); - if (($client instanceof Client) === false) { + if (($client instanceof ClientEntity) === false) { throw new Exception\InvalidClientException(); } @@ -127,12 +127,12 @@ class Password extends AbstractGrant $scopes = $this->validateScopes($scopeParam); // Create a new session - $session = new Session($this->server); + $session = new SessionEntity($this->server); $session->setOwner('user', $userId); $session->associateClient($client); // Generate an access token - $accessToken = new AccessToken($this->server); + $accessToken = new AccessTokenEntity($this->server); $accessToken->setToken(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); @@ -151,7 +151,7 @@ class Password extends AbstractGrant // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { - $refreshToken = new RT($this->server); + $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); $response['refresh_token'] = $refreshToken->getToken(); diff --git a/src/Grant/RefreshToken.php b/src/Grant/RefreshToken.php index 80e514f4..e5a9281a 100644 --- a/src/Grant/RefreshToken.php +++ b/src/Grant/RefreshToken.php @@ -18,9 +18,10 @@ use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\ScopeInterface; -use League\OAuth2\Server\Entity\RefreshToken as RT; -use League\OAuth2\Server\Entity\AccessToken; -use League\OAuth2\Server\Entity\Session; +use League\OAuth2\Server\Entity\RefreshTokenEntity; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\Entity\ClientEntity; /** * Referesh token grant @@ -80,7 +81,7 @@ class RefreshToken extends AbstractGrant $this->getIdentifier() ); - if ($client === null) { + if (($client instanceof ClientEntity) === false) { throw new Exception\InvalidClientException(); } @@ -92,7 +93,7 @@ class RefreshToken extends AbstractGrant // Validate refresh token $oldRefreshToken = $this->server->getStorage('refresh_token')->get($oldRefreshTokenParam); - if (($oldRefreshToken instanceof RT) === false) { + if (($oldRefreshToken instanceof RefreshTokenEntity) === false) { throw new Exception\InvalidRefreshException(); } @@ -122,7 +123,7 @@ class RefreshToken extends AbstractGrant } // Generate a new access token and assign it the correct sessions - $newAccessToken = new AccessToken($this->server); + $newAccessToken = new AccessTokenEntity($this->server); $newAccessToken->setToken(SecureKey::generate()); $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); $newAccessToken->setSession($session); @@ -146,7 +147,7 @@ class RefreshToken extends AbstractGrant $oldRefreshToken->expire($this->server->getStorage('refresh_token')); // Generate a new refresh token - $newRefreshToken = new RT($this->server); + $newRefreshToken = new RefreshTokenEntity($this->server); $newRefreshToken->setToken(SecureKey::generate()); $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); $newRefreshToken->setAccessToken($newAccessToken); diff --git a/src/ResourceServer.php b/src/ResourceServer.php index c78c795c..840da810 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -17,7 +17,7 @@ use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\AuthCodeInterface; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; -use League\OAuth2\Server\Entity\AccessToken; +use League\OAuth2\Server\Entity\AccessTokenEntity; use Symfony\Component\HttpFoundation\Request; /** @@ -135,24 +135,6 @@ class ResourceServer extends AbstractServer return $this->accessToken->getSession()->getClient()->getId(); } - /** - * Checks if the access token is valid or not - * @param $headersOnly Limit Access Token to Authorization header only - * @return bool - */ - public function isValidRequest($headersOnly = true, $accessToken = null) - { - try { - $accessTokenString = ($accessToken !== null) ? $accessToken : $this->determineAccessToken($headersOnly, $accessToken); - } catch (\Exception $e) { - return false; - } - - // Set the access token - $this->accessToken = $this->storages['access_token']->get($accessTokenString); - return ($this->accessToken instanceof AccessToken); - } - /** * Get the session scopes * @return array @@ -183,6 +165,20 @@ class ResourceServer extends AbstractServer return true; } + /** + * Checks if the access token is valid or not + * @param $headersOnly Limit Access Token to Authorization header only + * @return bool + */ + public function isValidRequest($headersOnly = true, $accessToken = null) + { + $accessTokenString = ($accessToken !== null) ? $accessToken : $this->determineAccessToken($headersOnly, $accessToken); + + // Set the access token + $this->accessToken = $this->storages['access_token']->get($accessTokenString); + return ($this->accessToken instanceof AccessTokenEntity); + } + /** * Reads in the access token from the headers * @param $headersOnly Limit Access Token to Authorization header only @@ -195,7 +191,9 @@ class ResourceServer extends AbstractServer $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; } elseif ($headersOnly === false) { - $accessToken = $this->getRequest()->request->get($this->tokenKey); + $accessToken = ($this->getRequest()->server->get('REQUEST_METHOD') === 'GET') ? + $this->getRequest()->query->get($this->tokenKey) : + $this->getRequest()->request->get($this->tokenKey); } if (empty($accessToken)) { diff --git a/tests/Entity/ClientTest.php b/tests/Entity/ClientTest.php index cf76fe0e..4feb77d6 100644 --- a/tests/Entity/ClientTest.php +++ b/tests/Entity/ClientTest.php @@ -10,7 +10,7 @@ class ClientTest extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $client = new Client($server); + $client = new ClientEntity($server); $client->setId('foobar'); $client->setSecret('barfoo'); $client->setName('Test Client'); diff --git a/tests/Entity/RefreshTokenTest.php b/tests/Entity/RefreshTokenTest.php index 18520b9d..15877044 100644 --- a/tests/Entity/RefreshTokenTest.php +++ b/tests/Entity/RefreshTokenTest.php @@ -14,58 +14,69 @@ class RefreshTokenTests extends \PHPUnit_Framework_TestCase function testSetAccessToken() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $entity = new RefreshToken($server); - $entity->setAccessToken((new AccessToken($server))); + $entity = new RefreshTokenEntity($server); + $entity->setAccessToken((new AccessTokenEntity($server))); $reflector = new \ReflectionClass($entity); $accessTokenProperty = $reflector->getProperty('accessToken'); $accessTokenProperty->setAccessible(true); - $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessToken); + $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessTokenEntity); } function testSave() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AbstractServer'); + $server->shouldReceive('setAccessTokenStorage'); + $server->shouldReceive('setRefreshTokenStorage'); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); $refreshTokenStorage->shouldReceive('create'); $refreshTokenStorage->shouldReceive('setServer'); $refreshTokenStorage->shouldReceive('associateScope'); + $server->shouldReceive('getStorage')->with('refresh_token')->andReturn($refreshTokenStorage); + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( - (new AccessToken($server))->setToken('foobar') + (new AccessTokenEntity($server))->setToken('foobar') ); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); + $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( - (new Session($server)) + (new SessionEntity($server)) ); $sessionStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); $server->setRefreshTokenStorage($refreshTokenStorage); - $entity = new RefreshToken($server); + $entity = new RefreshTokenEntity($server); $this->assertSame(null, $entity->save()); } function testExpire() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AbstractServer'); + $server->shouldReceive('setRefreshTokenStorage'); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); $refreshTokenStorage->shouldReceive('delete'); $refreshTokenStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('refresh_token')->andReturn($refreshTokenStorage); + $server->setRefreshTokenStorage($refreshTokenStorage); - $entity = new RefreshToken($server); + $entity = new RefreshTokenEntity($server); $this->assertSame($entity->expire(), null); } } diff --git a/tests/Entity/ScopeTest.php b/tests/Entity/ScopeTest.php index 3a4704bd..39c06f1f 100644 --- a/tests/Entity/ScopeTest.php +++ b/tests/Entity/ScopeTest.php @@ -10,7 +10,7 @@ class ScopeTests extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $scope = new Scope($server); + $scope = new ScopeEntity($server); $scope->setId('foobar'); $scope->setDescription('barfoo'); diff --git a/tests/Entity/SessionTest.php b/tests/Entity/SessionTest.php index c8d55bcc..e7a66521 100644 --- a/tests/Entity/SessionTest.php +++ b/tests/Entity/SessionTest.php @@ -8,7 +8,7 @@ use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\ScopeEntity; -use League\OAuth2\Server\AuthorizationServer as Authorization; +use League\OAuth2\Server\AuthorizationServer; use \Mockery as M; class SessionTests extends \PHPUnit_Framework_TestCase @@ -16,19 +16,19 @@ class SessionTests extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $entity = new Session($server); + $entity = new SessionEntity($server); $entity->setId('foobar'); $entity->setOwner('user', 123); - $entity->associateAccessToken((new AccessToken($server))); - $entity->associateRefreshToken((new RefreshToken($server))); - $entity->associateClient((new Client($server))); - $entity->associateScope((new Scope($server))->setId('foo')); + $entity->associateAccessToken((new AccessTokenEntity($server))); + $entity->associateRefreshToken((new RefreshTokenEntity($server))); + $entity->associateClient((new ClientEntity($server))); + $entity->associateScope((new ScopeEntity($server))->setId('foo')); // $entity->associateAuthCode((new AuthCode($server))); $this->assertEquals('foobar', $entity->getId()); $this->assertEquals('user', $entity->getOwnerType()); $this->assertEquals(123, $entity->getOwnerId()); - $this->assertTrue($entity->getClient() instanceof Client); + $this->assertTrue($entity->getClient() instanceof ClientEntity); $this->assertTrue($entity->hasScope('foo')); $reflector = new \ReflectionClass($entity); @@ -37,8 +37,8 @@ class SessionTests extends \PHPUnit_Framework_TestCase $refreshTokenProperty = $reflector->getProperty('refreshToken'); $refreshTokenProperty->setAccessible(true); - $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessToken); - $this->assertTrue($refreshTokenProperty->getValue($entity) instanceof RefreshToken); + $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessTokenEntity); + $this->assertTrue($refreshTokenProperty->getValue($entity) instanceof RefreshTokenEntity); // $this->assertTrue($reader($entity, 'authCode') instanceof AuthCode); } @@ -46,32 +46,36 @@ class SessionTests extends \PHPUnit_Framework_TestCase { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $entity = new Session($server); - $reflectedEntity = new \ReflectionClass('League\OAuth2\Server\Entity\Session'); + $entity = new SessionEntity($server); + $reflectedEntity = new \ReflectionClass('League\OAuth2\Server\Entity\SessionEntity'); $method = $reflectedEntity->getMethod('formatScopes'); $method->setAccessible(true); $scopes = [ - (new Scope($server))->setId('scope1')->setDescription('foo'), - (new Scope($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), + (new ScopeEntity($server))->setId('scope2')->setDescription('bar') ]; $result = $method->invokeArgs($entity, [$scopes]); $this->assertTrue(isset($result['scope1'])); $this->assertTrue(isset($result['scope2'])); - $this->assertTrue($result['scope1'] instanceof Scope); - $this->assertTrue($result['scope2'] instanceof Scope); + $this->assertTrue($result['scope1'] instanceof ScopeEntity); + $this->assertTrue($result['scope2'] instanceof ScopeEntity); } public function testGetScopes() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); + $server->shouldReceive('setAccessTokenStorage'); + $server->shouldReceive('setSessionStorage'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $server->setAccessTokenStorage($accessTokenStorage); + $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getScopes')->andReturn( [] @@ -79,18 +83,24 @@ class SessionTests extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('setServer'); $server->setSessionStorage($sessionStorage); - $entity = new Session($server); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + + $entity = new SessionEntity($server); $this->assertEquals($entity->getScopes(), []); } public function testHasScopes() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); + $server->shouldReceive('setAccessTokenStorage'); + $server->shouldReceive('setSessionStorage'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $server->setAccessTokenStorage($accessTokenStorage); + $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getScopes')->andReturn( [] @@ -98,32 +108,40 @@ class SessionTests extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('setServer'); $server->setSessionStorage($sessionStorage); - $entity = new Session($server); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + + $entity = new SessionEntity($server); $this->assertFalse($entity->hasScope('foo')); } function testSave() { - $server = new Authorization(); + $server = M::mock('League\OAuth2\Server\AuthorizationServer'); + $server->shouldReceive('setSessionStorage'); + $server->shouldReceive('setClientStorage'); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('create'); $sessionStorage->shouldReceive('associateScope'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); + $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new Client($server))->setId('foo') + (new ClientEntity($server))->setId('foo') ); $clientStorage->shouldReceive('setServer'); + $server->shouldReceive('getStorage')->with('client')->andReturn($clientStorage); + $server->setSessionStorage($sessionStorage); $server->setClientStorage($clientStorage); - $entity = new Session($server); + $entity = new SessionEntity($server); $this->assertEquals(null, $entity->save()); } } \ No newline at end of file diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index 351aec8b..d7bf03c9 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -36,16 +36,16 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $method->setAccessible(true); $scopes = [ - (new Scope($server))->setId('scope1')->setDescription('foo'), - (new Scope($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), + (new ScopeEntity($server))->setId('scope2')->setDescription('bar') ]; $result = $method->invokeArgs($grant, [$scopes]); $this->assertTrue(isset($result['scope1'])); $this->assertTrue(isset($result['scope2'])); - $this->assertTrue($result['scope1'] instanceof Scope); - $this->assertTrue($result['scope2'] instanceof Scope); + $this->assertTrue($result['scope1'] instanceof ScopeEntity); + $this->assertTrue($result['scope2'] instanceof ScopeEntity); } public function testValidateScopes() @@ -55,7 +55,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setScopeStorage($scopeStorage); @@ -65,7 +65,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $this->assertEquals( [ - 'foo' => (new Scope($server))->setId('foo') + 'foo' => (new ScopeEntity($server))->setId('foo') ], $grant->validateScopes('foo') @@ -113,7 +113,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setScopeStorage($scopeStorage); @@ -134,7 +134,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setScopeStorage($scopeStorage); diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php index 2b0830b3..ff14fa0a 100644 --- a/tests/Grant/AuthCodeTest.php +++ b/tests/Grant/AuthCodeTest.php @@ -7,8 +7,8 @@ use League\OAuth2\Server\Grant\RefreshToken; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\SessionEntity; -use League\OAuth2\Server\Entity\AuthCode as AC; -use League\OAuth2\Server\AuthorizationServer as Authorization; +use League\OAuth2\Server\Entity\AuthCodeEntity; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception\InvalidRequestException; use Mockery as M; @@ -30,8 +30,8 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $_POST = []; + $server = new AuthorizationServer; - $server = new Authorization; $grant = new AuthCode; $server->addGrantType($grant); @@ -43,11 +43,11 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); + $server = new AuthorizationServer; $_POST = [ 'client_id' => 'testapp' ]; - $server = new Authorization; $grant = new AuthCode; $server->addGrantType($grant); @@ -62,10 +62,10 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar' ]; + $server = new AuthorizationServer; - $server = new Authorization; - $server->requireStateParam(true); $grant = new AuthCode; + $server->requireStateParam(true); $server->addGrantType($grant); $grant->checkAuthoriseParams(); @@ -79,8 +79,8 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar' ]; + $server = new AuthorizationServer; - $server = new Authorization; $grant = new AuthCode; $server->addGrantType($grant); @@ -96,8 +96,8 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'redirect_uri' => 'http://foo/bar', 'response_type' => 'foobar' ]; + $server = new AuthorizationServer; - $server = new Authorization; $grant = new AuthCode; $server->addGrantType($grant); @@ -113,14 +113,15 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'redirect_uri' => 'http://foo/bar', 'response_type' => 'code' ]; + $server = new AuthorizationServer; - $server = new Authorization; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn(null); + $server->setClientStorage($clientStorage); $server->addGrantType($grant); @@ -138,13 +139,13 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'scope' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -179,20 +180,20 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'scope' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage->shouldReceive('associateScope'); @@ -200,14 +201,14 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); @@ -219,19 +220,19 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $result = $grant->checkAuthoriseParams(); - $this->assertTrue($result['client'] instanceof Client); + $this->assertTrue($result['client'] instanceof ClientEntity); $this->assertTrue($result['redirect_uri'] === $_POST['redirect_uri']); $this->assertTrue($result['state'] === null); $this->assertTrue($result['response_type'] === 'code'); - $this->assertTrue($result['scopes']['foo'] instanceof Scope); + $this->assertTrue($result['scopes']['foo'] instanceof ScopeEntity); } public function testNewAuthoriseRequest() { - $server = new Authorization; + $server = new AuthorizationServer; - $client = (new Client($server))->setId('testapp'); - $scope = (new Scope($server))->setId('foo'); + $client = (new ClientEntity($server))->setId('testapp'); + $scope = (new ScopeEntity($server))->setId('foo'); $grant = new AuthCode; $server->addGrantType($grant); @@ -264,7 +265,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'authorization_code'; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $server->addGrantType($grant); @@ -281,7 +282,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'client_id' => 'testapp' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $server->addGrantType($grant); @@ -298,7 +299,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'client_secret' => 'foobar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $server->addGrantType($grant); @@ -316,7 +317,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'redirect_uri' => 'http://foo/bar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); @@ -340,13 +341,13 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'redirect_uri' => 'http://foo/bar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -389,13 +390,13 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'code' => 'foobar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -438,13 +439,13 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'code' => 'foobar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -464,7 +465,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AC($server))->setToken('foobar')->setRedirectUri('http://fail/face') + (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://fail/face') ); $server->setClientStorage($clientStorage); @@ -487,16 +488,16 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'code' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -504,7 +505,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('associateScope'); $sessionStorage->shouldReceive('getByAuthCode')->andReturn( - (new Session($server))->setId('foobar') + (new SessionEntity($server))->setId('foobar') ); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); @@ -512,23 +513,23 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AC($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://foo/bar') ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $server->setClientStorage($clientStorage); @@ -551,17 +552,17 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'code' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new AuthCode; $rtgrant = new RefreshToken; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -569,7 +570,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('associateScope'); $sessionStorage->shouldReceive('getByAuthCode')->andReturn( - (new Session($server))->setId('foobar') + (new SessionEntity($server))->setId('foobar') ); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); @@ -577,23 +578,23 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AC($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://foo/bar') ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index 8ab2332f..e3c66bc9 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\ClientCredentials; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; -use League\OAuth2\Server\AuthorizationServer as Authorization; +use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Grant\ClientException; use Mockery as M; @@ -17,7 +17,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'client_credentials'; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $server->addGrantType($grant); @@ -34,7 +34,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase 'client_id' => 'testapp' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $server->addGrantType($grant); @@ -51,7 +51,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase 'client_secret' => 'foobar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); @@ -75,13 +75,13 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase 'scope' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -115,13 +115,13 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase 'client_secret' => 'foobar' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -139,7 +139,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); // $scopeStorage->shouldReceive('get')->andReturn( - // // (new Scope($server))->setId('foo') + // // (new ScopeEntity($server))->setId('foo') // ); $server->setClientStorage($clientStorage); @@ -160,20 +160,20 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase 'scope' => 'foo' ]; - $server = new Authorization; + $server = new AuthorizationServer; $grant = new ClientCredentials; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage->shouldReceive('associateScope'); @@ -181,14 +181,14 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index cb771e94..3732c51c 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -5,6 +5,8 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\Password; use League\OAuth2\Server\Grant\RefreshToken; use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; @@ -80,7 +82,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -123,7 +125,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -167,7 +169,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -212,7 +214,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -259,7 +261,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -309,14 +311,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage->shouldReceive('associateScope'); @@ -324,14 +326,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); @@ -363,14 +365,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage->shouldReceive('associateScope'); @@ -378,14 +380,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); @@ -422,14 +424,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $sessionStorage->shouldReceive('associateScope'); @@ -437,14 +439,14 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index 397ed7d5..26701261 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -7,7 +7,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; -use League\OAuth2\Server\Entity\RefreshToken as RT; +use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; @@ -92,7 +92,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -127,7 +127,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); @@ -161,7 +161,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -169,18 +169,18 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); $sessionStorage->shouldReceive('associateScope'); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( - (new Session($server)) + (new SessionEntity($server)) ); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( - (new AccessToken($server)) + (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -190,13 +190,13 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $refreshTokenStorage->shouldReceive('delete'); $refreshTokenStorage->shouldReceive('create'); $refreshTokenStorage->shouldReceive('get')->andReturn( - (new RT($server)) + (new RefreshTokenEntity($server)) ); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); @@ -228,12 +228,12 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server = new AuthorizationServer; $grant = new RefreshToken; - $oldSession = (new Session($server))->associateScope((new Scope($server))->setId('foo')); + $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -247,12 +247,12 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( - (new AccessToken($server)) + (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -262,13 +262,13 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $refreshTokenStorage->shouldReceive('delete'); $refreshTokenStorage->shouldReceive('create'); $refreshTokenStorage->shouldReceive('get')->andReturn( - (new RT($server)) + (new RefreshTokenEntity($server)) ); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ); $server->setClientStorage($clientStorage); @@ -300,12 +300,12 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server = new AuthorizationServer; $grant = new RefreshToken; - $oldSession = (new Session($server))->associateScope((new Scope($server))->setId('foo')); + $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -319,12 +319,12 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( - (new AccessToken($server)) + (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo') + (new ScopeEntity($server))->setId('foo') ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -334,13 +334,13 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $refreshTokenStorage->shouldReceive('delete'); $refreshTokenStorage->shouldReceive('create'); $refreshTokenStorage->shouldReceive('get')->andReturn( - (new RT($server)) + (new RefreshTokenEntity($server)) ); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new Scope($server))->setId('blah') + (new ScopeEntity($server))->setId('blah') ); $server->setClientStorage($clientStorage); diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 791e8a41..8fea0646 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -139,20 +139,20 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $server->setTokenKey('at'); $accessTokenStorage->shouldReceive('get')->andReturn( - (new AccessToken($server))->setToken('abcdef') + (new AccessTokenEntity($server))->setToken('abcdef') ); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new Scope($server))->setId('foo'), - (new Scope($server))->setId('bar') + (new ScopeEntity($server))->setId('foo'), + (new ScopeEntity($server))->setId('bar') ]); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( - (new Session($server))->setId('foobar')->setOwner('user', 123) + (new SessionEntity($server))->setId('foobar')->setOwner('user', 123) ); $clientStorage->shouldReceive('getBySession')->andReturn( - (new Client($server))->setId('testapp') + (new ClientEntity($server))->setId('testapp') ); $request = new \Symfony\Component\HttpFoundation\Request(); From ffc25fb276513a9c100b80f805e64ac4769cae59 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 17:24:55 +0100 Subject: [PATCH 089/270] Renamed Grants --- src/Grant/{AuthCode.php => AuthCodeGrant.php} | 2 +- src/Grant/{ClientCredentials.php => ClientCredentialsGrant.php} | 2 +- src/Grant/{Password.php => PasswordGrant.php} | 2 +- src/Grant/{RefreshToken.php => RefreshTokenGrant.php} | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) rename src/Grant/{AuthCode.php => AuthCodeGrant.php} (99%) rename src/Grant/{ClientCredentials.php => ClientCredentialsGrant.php} (98%) rename src/Grant/{Password.php => PasswordGrant.php} (99%) rename src/Grant/{RefreshToken.php => RefreshTokenGrant.php} (99%) diff --git a/src/Grant/AuthCode.php b/src/Grant/AuthCodeGrant.php similarity index 99% rename from src/Grant/AuthCode.php rename to src/Grant/AuthCodeGrant.php index 931beb8b..fa192c8d 100644 --- a/src/Grant/AuthCode.php +++ b/src/Grant/AuthCodeGrant.php @@ -28,7 +28,7 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Auth code grant class */ -class AuthCode extends AbstractGrant +class AuthCodeGrant extends AbstractGrant { /** * Grant identifier diff --git a/src/Grant/ClientCredentials.php b/src/Grant/ClientCredentialsGrant.php similarity index 98% rename from src/Grant/ClientCredentials.php rename to src/Grant/ClientCredentialsGrant.php index d0bfb72a..891200d9 100644 --- a/src/Grant/ClientCredentials.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -25,7 +25,7 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Client credentials grant class */ -class ClientCredentials extends AbstractGrant +class ClientCredentialsGrant extends AbstractGrant { /** * Grant identifier diff --git a/src/Grant/Password.php b/src/Grant/PasswordGrant.php similarity index 99% rename from src/Grant/Password.php rename to src/Grant/PasswordGrant.php index 63284ee3..c20b3a85 100644 --- a/src/Grant/Password.php +++ b/src/Grant/PasswordGrant.php @@ -26,7 +26,7 @@ use League\OAuth2\Server\Storage\ScopeInterface; /** * Password grant class */ -class Password extends AbstractGrant +class PasswordGrant extends AbstractGrant { /** * Grant identifier diff --git a/src/Grant/RefreshToken.php b/src/Grant/RefreshTokenGrant.php similarity index 99% rename from src/Grant/RefreshToken.php rename to src/Grant/RefreshTokenGrant.php index e5a9281a..f8c8ad00 100644 --- a/src/Grant/RefreshToken.php +++ b/src/Grant/RefreshTokenGrant.php @@ -26,7 +26,7 @@ use League\OAuth2\Server\Entity\ClientEntity; /** * Referesh token grant */ -class RefreshToken extends AbstractGrant +class RefreshTokenGrant extends AbstractGrant { /** * {@inheritdoc} From 107991b0a71e74b80e112a8740defb1cc2d27e03 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 2 May 2014 17:25:04 +0100 Subject: [PATCH 090/270] Updated grant tests with new grant name --- tests/Grant/AuthCodeTest.php | 44 +++++++++++++-------------- tests/Grant/ClientCredentialsTest.php | 16 +++++----- tests/Grant/PasswordTest.php | 28 ++++++++--------- tests/Grant/RefreshTokenTest.php | 20 ++++++------ 4 files changed, 54 insertions(+), 54 deletions(-) diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php index ff14fa0a..d54fe66a 100644 --- a/tests/Grant/AuthCodeTest.php +++ b/tests/Grant/AuthCodeTest.php @@ -2,8 +2,8 @@ namespace LeagueTests\Grant; -use League\OAuth2\Server\Grant\AuthCode; -use League\OAuth2\Server\Grant\RefreshToken; +use League\OAuth2\Server\Grant\AuthCodeGrant; +use League\OAuth2\Server\Grant\RefreshTokenGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\SessionEntity; @@ -16,7 +16,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase { public function testSetAuthTokenTTL() { - $grant = new AuthCode; + $grant = new AuthCodeGrant; $grant->setAuthTokenTTL(100); $class = new \ReflectionClass($grant); @@ -32,7 +32,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $_POST = []; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $grant->checkAuthoriseParams(); @@ -48,7 +48,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase 'client_id' => 'testapp' ]; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $grant->checkAuthoriseParams(); @@ -64,7 +64,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->requireStateParam(true); $server->addGrantType($grant); @@ -81,7 +81,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $grant->checkAuthoriseParams(); @@ -98,7 +98,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $grant->checkAuthoriseParams(); @@ -115,7 +115,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -140,7 +140,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -181,7 +181,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -234,7 +234,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $client = (new ClientEntity($server))->setId('testapp'); $scope = (new ScopeEntity($server))->setId('foo'); - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -266,7 +266,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'authorization_code'; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -283,7 +283,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -300,7 +300,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -318,7 +318,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -342,7 +342,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -391,7 +391,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -440,7 +440,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -489,7 +489,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; + $grant = new AuthCodeGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -553,8 +553,8 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new AuthCode; - $rtgrant = new RefreshToken; + $grant = new AuthCodeGrant; + $rtgrant = new RefreshTokenGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index e3c66bc9..1cbbb38c 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -2,14 +2,14 @@ namespace LeagueTests\Grant; -use League\OAuth2\Server\Grant\ClientCredentials; +use League\OAuth2\Server\Grant\ClientCredentialsGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Grant\ClientException; use Mockery as M; -class ClientCredentialsTest extends \PHPUnit_Framework_TestCase +class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase { function testCompleteFlowMissingClientId() { @@ -18,7 +18,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'client_credentials'; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -35,7 +35,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -52,7 +52,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -76,7 +76,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -116,7 +116,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -161,7 +161,7 @@ class ClientCredentialsTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new ClientCredentials; + $grant = new ClientCredentialsGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index 3732c51c..f7a88bb4 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -2,8 +2,8 @@ namespace LeagueTests\Grant; -use League\OAuth2\Server\Grant\Password; -use League\OAuth2\Server\Grant\RefreshToken; +use League\OAuth2\Server\Grant\PasswordGrant; +use League\OAuth2\Server\Grant\RefreshTokenGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; @@ -20,7 +20,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'password'; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -37,7 +37,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -54,7 +54,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -77,7 +77,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -120,7 +120,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -164,7 +164,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -209,7 +209,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -256,7 +256,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -306,7 +306,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -360,7 +360,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -419,7 +419,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new Password; + $grant = new PasswordGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -465,7 +465,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase }); $server->addGrantType($grant); - $server->addGrantType(new RefreshToken); + $server->addGrantType(new RefreshTokenGrant); $response = $server->issueAccessToken(); $this->assertTrue(isset($response['access_token'])); diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index 26701261..78977d30 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -2,7 +2,7 @@ namespace LeagueTests\Grant; -use League\OAuth2\Server\Grant\RefreshToken; +use League\OAuth2\Server\Grant\RefreshTokenGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; @@ -15,7 +15,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase { function testSetRefreshTokenTTL() { - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $grant->setRefreshTokenTTL(86400); $property = new \ReflectionProperty($grant, 'refreshTokenTTL'); @@ -31,7 +31,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $_POST['grant_type'] = 'refresh_token'; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -47,7 +47,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $server->addGrantType($grant); $server->issueAccessToken(); @@ -64,7 +64,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -87,7 +87,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -122,7 +122,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -156,7 +156,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); @@ -226,7 +226,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); @@ -298,7 +298,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase ]; $server = new AuthorizationServer; - $grant = new RefreshToken; + $grant = new RefreshTokenGrant; $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); From 9f6576c0fa3cc7f14ca7c9ff87acabfeddce81fb Mon Sep 17 00:00:00 2001 From: Graham Campbell Date: Sat, 3 May 2014 10:27:40 +0100 Subject: [PATCH 091/270] Updated composer.json --- composer.json | 100 +++++++++++++++++++++++++++----------------------- 1 file changed, 55 insertions(+), 45 deletions(-) diff --git a/composer.json b/composer.json index cb93ac31..b0319b0d 100644 --- a/composer.json +++ b/composer.json @@ -1,54 +1,64 @@ { - "name": "league/oauth2-server", - "description": "A lightweight and powerful OAuth 2.0 authorization and resource server library with support for all the core specification grants. This library will allow you to secure your API with OAuth and allow your applications users to approve apps that want to access their data from your API.", - "homepage": "https://github.com/php-loep/oauth2-server", - "license": "MIT", - "require": { - "php": ">=5.4.0", - "symfony/http-foundation": "2.*" - }, - "require-dev": { - "league/phpunit-coverage-listener": "~1.0", - "mockery/mockery": "0.8" - }, - "repositories": [ - { - "type": "git", - "url": "https://github.com/thephpleague/oauth2-server.git" - } - ], - "keywords": [ - "oauth", + "name": "league/oauth2-server", + "description": "A lightweight and powerful OAuth 2.0 authorization and resource server library with support for all the core specification grants. This library will allow you to secure your API with OAuth and allow your applications users to approve apps that want to access their data from your API.", + "homepage": "https://github.com/php-loep/oauth2-server", + "license": "MIT", + "require": { + "php": ">=5.4.0", + "symfony/http-foundation": "~2.1" + }, + "require-dev": { + "phpunit/phpunit": "~4.0", + "mockery/mockery": "~0.9", + "league/phpunit-coverage-listener": "~1.0" + }, + "repositories": [ + { + "type": "git", + "url": "https://github.com/thephpleague/oauth2-server.git" + } + ], + "keywords": [ + "oauth", "oauth2", "oauth 2", - "oauth 2.0", - "server", + "oauth 2.0", + "server", "auth", "authorization", - "authorisation", - "authentication", - "resource", - "api", - "auth", - "protect", - "secure" - ], - "authors": [ - { - "name": "Alex Bilbie", - "email": "hello@alexbilbie.com", - "homepage": "http://www.alexbilbie.com", - "role": "Developer" - } - ], - "replace": { - "lncd/oauth2": "*", - "league/oauth2server": "*" - }, - "autoload": { + "authorisation", + "authentication", + "resource", + "api", + "auth", + "protect", + "secure" + ], + "authors": [ + { + "name": "Alex Bilbie", + "email": "hello@alexbilbie.com", + "homepage": "http://www.alexbilbie.com", + "role": "Developer" + } + ], + "replace": { + "lncd/oauth2": "*", + "league/oauth2server": "*" + }, + "autoload": { + "psr-4": { + "League\\OAuth2\\Server\\": "src/" + } + }, + "autoload-dev": { "psr-4": { - "League\\OAuth2\\Server\\": "src/", "LeagueTests\\": "tests/" } - } + }, + "extra": { + "branch-alias": { + "dev-v4.0.0-WIP": "4.0-dev" + } + } } From 97e7a00bca3f6c16d5fdc9df94b0dbda2bbfa30c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 10:53:43 +0100 Subject: [PATCH 092/270] CS fixer changes --- src/AbstractServer.php | 7 ++++--- src/AuthorizationServer.php | 33 +++++++++++++++++++----------- src/Entity/AbstractTokenEntity.php | 17 ++++++++------- src/Entity/AccessTokenEntity.php | 9 ++------ src/Entity/AuthCodeEntity.php | 15 ++++++-------- src/Entity/ClientEntity.php | 16 +++++++++------ src/Entity/RefreshTokenEntity.php | 10 +++------ src/Entity/ScopeEntity.php | 12 ++++++----- src/Entity/SessionEntity.php | 22 ++++++++++++-------- src/Exception/OAuthException.php | 3 +-- src/Grant/AbstractGrant.php | 24 +++++++++++++--------- src/Grant/AuthCodeGrant.php | 15 +++++--------- 12 files changed, 96 insertions(+), 87 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index ae3beaed..828bee39 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -11,7 +11,6 @@ namespace League\OAuth2\Server; -use League\OAuth2\Server\Exception; use Symfony\Component\HttpFoundation\Request; /** @@ -41,6 +40,7 @@ abstract class AbstractServer public function setRequest(Request $request) { $this->request = $request; + return $this; } @@ -59,7 +59,7 @@ abstract class AbstractServer /** * Return a storage class - * @param string $obj The class required + * @param string $obj The class required * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface */ public function getStorage($obj) @@ -69,6 +69,7 @@ abstract class AbstractServer 'The `'.$obj.'` storage interface has not been registered with the server' ); } + return $this->storages[$obj]; } -} \ No newline at end of file +} diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index 6febc0f4..b04462c3 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -11,10 +11,7 @@ namespace League\OAuth2\Server; -use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Grant\GrantTypeInterface; -use League\OAuth2\Server\Exception; -use League\OAuth2\Server\Storage\StorageWrapper; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\AuthCodeInterface; @@ -78,85 +75,92 @@ class AuthorizationServer extends AbstractServer public function __construct() { $this->storages = []; + return $this; } /** * Set the client storage - * @param ClientInterface $storage + * @param ClientInterface $storage * @return self */ public function setClientStorage(ClientInterface $storage) { $storage->setServer($this); $this->storages['client'] = $storage; + return $this; } /** * Set the session storage - * @param SessionInterface $storage + * @param SessionInterface $storage * @return self */ public function setSessionStorage(SessionInterface $storage) { $storage->setServer($this); $this->storages['session'] = $storage; + return $this; } /** * Set the access token storage - * @param AccessTokenInterface $storage + * @param AccessTokenInterface $storage * @return self */ public function setAccessTokenStorage(AccessTokenInterface $storage) { $storage->setServer($this); $this->storages['access_token'] = $storage; + return $this; } /** * Set the refresh token storage - * @param RefreshTokenInteface $storage + * @param RefreshTokenInteface $storage * @return self */ public function setRefreshTokenStorage(RefreshTokenInterface $storage) { $storage->setServer($this); $this->storages['refresh_token'] = $storage; + return $this; } /** * Set the auth code storage - * @param AuthCodeInterface $authCode + * @param AuthCodeInterface $authCode * @return self */ public function setAuthCodeStorage(AuthCodeInterface $storage) { $storage->setServer($this); $this->storages['auth_code'] = $storage; + return $this; } /** * Set the scope storage - * @param ScopeInterface $storage + * @param ScopeInterface $storage * @return self */ public function setScopeStorage(ScopeInterface $storage) { $storage->setServer($this); $this->storages['scope'] = $storage; + return $this; } /** * Enable support for a grant - * @param GrantTypeInterface $grantType A grant class which conforms to Interface/GrantTypeInterface - * @param null|string $identifier An identifier for the grant (autodetected if not passed) + * @param GrantTypeInterface $grantType A grant class which conforms to Interface/GrantTypeInterface + * @param null|string $identifier An identifier for the grant (autodetected if not passed) * @return self */ public function addGrantType(GrantTypeInterface $grantType, $identifier = null) @@ -204,6 +208,7 @@ class AuthorizationServer extends AbstractServer public function requireScopeParam($require = true) { $this->requireScopeParam = $require; + return $this; } @@ -224,6 +229,7 @@ class AuthorizationServer extends AbstractServer public function setDefaultScope($default = null) { $this->defaultScope = $default; + return $this; } @@ -254,6 +260,7 @@ class AuthorizationServer extends AbstractServer public function requireStateParam($require = true) { $this->requireStateParam = $require; + return $this; } @@ -273,6 +280,7 @@ class AuthorizationServer extends AbstractServer public function setScopeDelimeter($scopeDelimeter = ' ') { $this->scopeDelimeter = $scopeDelimeter; + return $this; } @@ -292,6 +300,7 @@ class AuthorizationServer extends AbstractServer public function setAccessTokenTTL($accessTokenTTL = 3600) { $this->accessTokenTTL = $accessTokenTTL; + return $this; } @@ -317,7 +326,7 @@ class AuthorizationServer extends AbstractServer /** * Return a grant type class - * @param string $grantType The grant type identifer + * @param string $grantType The grant type identifer * @return Grant\GrantTypeInterface */ public function getGrantType($grantType) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 2af5314c..94fd82a9 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -11,9 +11,7 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Storage\SessionStorageInterface; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; use Symfony\Component\HttpFoundation\ParameterBag; @@ -54,34 +52,37 @@ abstract class AbstractTokenEntity /** * __construct - * @param \League\OAuth2\Server\AbstractServer $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ public function __construct(AbstractServer $server) { $this->server = $server; + return $this; } /** * Set session - * @param \League\OAuth2\Server\SessionEntity $session + * @param \League\OAuth2\Server\SessionEntity $session * @return self */ public function setSession(SessionEntity $session) { $this->session = $session; + return $this; } /** * Set the expire time of the token - * @param integer $expireTime Unix time stamp + * @param integer $expireTime Unix time stamp * @return self */ public function setExpireTime($expireTime) { $this->expireTime = $expireTime; + return $this; } @@ -96,12 +97,13 @@ abstract class AbstractTokenEntity /** * Set access token ID - * @param string $token Token ID + * @param string $token Token ID * @return self */ public function setToken($token = null) { $this->token = ($token !== null) ? $token : SecureKey::generate(); + return $this; } @@ -116,7 +118,7 @@ abstract class AbstractTokenEntity /** * Associate a scope - * @param \League\OAuth2\Server\Entity\ScopeEntity $scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope * @return self */ public function associateScope(ScopeEntity $scope) @@ -141,6 +143,7 @@ abstract class AbstractTokenEntity $scopes[$scope->getId()] = $scope; } } + return $scopes; } diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index 163545d2..0f040816 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -11,12 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Storage\SessionStorageInterface; -use League\OAuth2\Server\Storage\AccessTokenInterface; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Exception\InvalidAccessTokenException; -use Symfony\Component\HttpFoundation\ParameterBag; - /** * Access token entity class */ @@ -33,12 +27,13 @@ class AccessTokenEntity extends AbstractTokenEntity } $this->session = $this->server->getStorage('session')->getByAccessToken($this); + return $this->session; } /** * Check if access token has an associated scope - * @param string $scope Scope to check + * @param string $scope Scope to check * @return bool */ public function hasScope($scope) diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index 514b87bc..e140fa29 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -11,12 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Storage\SessionStorageInterface; -use League\OAuth2\Server\Storage\AccessTokenInterface; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Exception\InvalidAccessTokenException; -use Symfony\Component\HttpFoundation\ParameterBag; - /** * Access token entity class */ @@ -30,18 +24,19 @@ class AuthCodeEntity extends AbstractTokenEntity /** * Set the redirect URI for the authorization request - * @param string $redirectUri - * @return self + * @param string $redirectUri + * @return self */ public function setRedirectUri($redirectUri) { $this->redirectUri = $redirectUri; + return $this; } /** * Get the redirect URI - * @return string + * @return string */ public function getRedirectUri() { @@ -58,6 +53,7 @@ class AuthCodeEntity extends AbstractTokenEntity { $uri = $this->getRedirectUri(); $uri .= (strstr($this->getRedirectUri(), $queryDelimeter) === false) ? $queryDelimeter : '&'; + return $uri.http_build_query([ 'code' => $this->getToken(), 'state' => $state @@ -74,6 +70,7 @@ class AuthCodeEntity extends AbstractTokenEntity } $this->session = $this->server->getStorage('session')->getByAuthCode($this); + return $this->session; } diff --git a/src/Entity/ClientEntity.php b/src/Entity/ClientEntity.php index 40e0e542..9656a066 100644 --- a/src/Entity/ClientEntity.php +++ b/src/Entity/ClientEntity.php @@ -11,7 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; /** @@ -51,23 +50,25 @@ class ClientEntity /** * __construct - * @param \League\OAuth2\Server\AbstractServer $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ public function __construct(AbstractServer $server) { $this->server = $server; + return $this; } /** * Set the client identifier - * @param string $id + * @param string $id * @return self */ public function setId($id) { $this->id = $id; + return $this; } @@ -82,12 +83,13 @@ class ClientEntity /** * Set the client secret - * @param string $secret + * @param string $secret * @return self */ public function setSecret($secret) { $this->secret = $secret; + return $this; } @@ -102,12 +104,13 @@ class ClientEntity /** * Set the client name - * @param string $name + * @param string $name * @return self */ public function setName($name) { $this->name = $name; + return $this; } @@ -122,12 +125,13 @@ class ClientEntity /** * Set the client redirect URI - * @param string $redirectUri + * @param string $redirectUri * @return self */ public function setRedirectUri($redirectUri) { $this->redirectUri = $redirectUri; + return $this; } diff --git a/src/Entity/RefreshTokenEntity.php b/src/Entity/RefreshTokenEntity.php index ec9abf28..a1b1dde4 100644 --- a/src/Entity/RefreshTokenEntity.php +++ b/src/Entity/RefreshTokenEntity.php @@ -11,12 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Storage\SessionStorageInterface; -use League\OAuth2\Server\Storage\RefreshTokenInterface; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Exception\InvalidAccessTokenException; -use Symfony\Component\HttpFoundation\ParameterBag; - /** * Refresh token entity class */ @@ -30,12 +24,13 @@ class RefreshTokenEntity extends AbstractTokenEntity /** * Associate an access token - * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken + * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken * @return self */ public function setAccessToken(AccessTokenEntity $accessToken) { $this->accessToken = $accessToken; + return $this; } @@ -48,6 +43,7 @@ class RefreshTokenEntity extends AbstractTokenEntity if (! $this->accessToken instanceof AccessTokenEntity) { $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this); } + return $this->accessToken; } diff --git a/src/Entity/ScopeEntity.php b/src/Entity/ScopeEntity.php index 7e4019aa..a4d7f735 100644 --- a/src/Entity/ScopeEntity.php +++ b/src/Entity/ScopeEntity.php @@ -11,7 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; /** @@ -39,23 +38,25 @@ class ScopeEntity /** * __construct - * @param \League\OAuth2\Server\AbstractServer $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ public function __construct(AbstractServer $server) { $this->server = $server; + return $this; } /** * Set the scope identifer - * @param string $id The scope identifier + * @param string $id The scope identifier * @return self */ public function setId($id) { $this->id = $id; + return $this; } @@ -70,12 +71,13 @@ class ScopeEntity /** * Set the scope's descripton - * @param string $description + * @param string $description * @return self */ public function setDescription($description) { $this->description = $description; + return $this; } @@ -87,4 +89,4 @@ class ScopeEntity { return $this->description; } -} \ No newline at end of file +} diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index 2a68bf74..f8c14301 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -11,9 +11,6 @@ namespace League\OAuth2\Server\Entity; -use League\OAuth2\Server\Exception\OAuth2Exception; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Exception\ServerException; use League\OAuth2\Server\AbstractServer; use Symfony\Component\HttpFoundation\ParameterBag; @@ -78,23 +75,25 @@ class SessionEntity /** * __construct - * @param \League\OAuth2\Server\AbstractServer $server + * @param \League\OAuth2\Server\AbstractServer $server * @return self */ public function __construct(AbstractServer $server) { $this->server = $server; + return $this; } /** * Set the session identifier - * @param string $id + * @param string $id * @return self */ public function setId($id) { $this->id = $id; + return $this; } @@ -109,7 +108,7 @@ class SessionEntity /** * Associate a scope - * @param \League\OAuth2\Server\Entity\ScopeEntity $scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope * @return self */ public function associateScope(ScopeEntity $scope) @@ -123,7 +122,7 @@ class SessionEntity /** * Check if access token has an associated scope - * @param string $scope Scope to check + * @param string $scope Scope to check * @return bool */ public function hasScope($scope) @@ -163,6 +162,7 @@ class SessionEntity } } } + return $scopes; } @@ -174,6 +174,7 @@ class SessionEntity public function associateAccessToken(AccessTokenEntity $accessToken) { $this->accessToken = $accessToken; + return $this; } @@ -185,6 +186,7 @@ class SessionEntity public function associateRefreshToken(RefreshTokenEntity $refreshToken) { $this->refreshToken = $refreshToken; + return $this; } @@ -196,6 +198,7 @@ class SessionEntity public function associateClient(ClientEntity $client) { $this->client = $client; + return $this; } @@ -210,13 +213,14 @@ class SessionEntity } $this->client = $this->server->getStorage('client')->getBySession($this); + return $this->client; } /** * Set the session owner - * @param string $type The type of the owner (e.g. user, app) - * @param string $id The identifier of the owner + * @param string $type The type of the owner (e.g. user, app) + * @param string $id The identifier of the owner * @return self */ public function setOwner($type, $id) diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index 73358a8f..b842bffe 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -36,7 +36,7 @@ class OAuthException extends \Exception /** * Get all headers that have to be send with the error response - * @return array Array with header values + * @return array Array with header values */ public function getHttpHeaders() { @@ -86,7 +86,6 @@ class OAuthException extends \Exception } } // @codeCoverageIgnoreEnd - return $headers; } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index d28c360b..089a54a9 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -61,12 +61,13 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Return the identifier - * @param string $identifier + * @param string $identifier * @return self */ public function setIdentifier($identifier) { $this->identifier = $identifier; + return $this; } @@ -81,29 +82,31 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Override the default access token expire time - * @param int $accessTokenTTL + * @param int $accessTokenTTL * @return self */ public function setAccessTokenTTL($accessTokenTTL) { $this->accessTokenTTL = $accessTokenTTL; + return $this; } /** * Inject the authorization server into the grant - * @param AuthorizationServer $server The authorization server instance - * @return self + * @param AuthorizationServer $server The authorization server instance + * @return self */ public function setAuthorizationServer(AuthorizationServer $server) { $this->server = $server; + return $this; } /** * Given a list of scopes, validate them and return an arrary of Scope entities - * @param string $scopeParam A string of scopes (e.g. "profile email birthday") + * @param string $scopeParam A string of scopes (e.g. "profile email birthday") * @return array * @throws ClientException If scope is invalid, or no scopes passed when required */ @@ -161,6 +164,7 @@ abstract class AbstractGrant implements GrantTypeInterface $scopes[$scope->getId()] = $scope; } } + return $scopes; } @@ -170,15 +174,15 @@ abstract class AbstractGrant implements GrantTypeInterface * Example response: *
      *  array(
-     *      'access_token'  =>  (string),   // The access token
-     *      'refresh_token' =>  (string),   // The refresh token (only set if the refresh token grant is enabled)
+     *      'access_token'  =>  (string) ,   // The access token
+     *      'refresh_token' =>  (string) ,   // The refresh token (only set if the refresh token grant is enabled)
      *      'token_type'    =>  'bearer',   // Almost always "bearer" (exceptions: JWT, SAML)
-     *      'expires'       =>  (int),      // The timestamp of when the access token will expire
-     *      'expires_in'    =>  (int)       // The number of seconds before the access token will expire
+     *      'expires'       =>  (int) ,      // The timestamp of when the access token will expire
+     *      'expires_in'    =>  (int) // The number of seconds before the access token will expire
      *  )
      * 
* - * @return array An array of parameters to be passed back to the client + * @return array An array of parameters to be passed back to the client */ abstract public function completeFlow(); diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index fa192c8d..1494defe 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -11,19 +11,14 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Request; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; -use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; /** * Auth code grant class @@ -62,7 +57,7 @@ class AuthCodeGrant extends AbstractGrant /** * Override the default access token expire time - * @param int $authTokenTTL + * @param int $authTokenTTL * @return void */ public function setAuthTokenTTL($authTokenTTL) @@ -132,10 +127,10 @@ class AuthCodeGrant extends AbstractGrant /** * Parse a new authorise request * - * @param string $type The session owner's type - * @param string $typeId The session owner's ID - * @param array $authParams The authorise request $_GET parameters - * @return string An authorisation code + * @param string $type The session owner's type + * @param string $typeId The session owner's ID + * @param array $authParams The authorise request $_GET parameters + * @return string An authorisation code */ public function newAuthoriseRequest($type, $typeId, $authParams = []) { From ed7f5370cae2581cb6c9ea8c0316e86e8fa1aecf Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 10:53:57 +0100 Subject: [PATCH 093/270] More CS fixer changes --- src/Grant/ClientCredentialsGrant.php | 5 ----- src/Grant/GrantTypeInterface.php | 10 +-------- src/Grant/PasswordGrant.php | 7 +------ src/Grant/RefreshTokenGrant.php | 7 +------ src/ResourceServer.php | 24 ++++++++++++---------- src/Storage/AccessTokenInterface.php | 15 +++++++------- src/Storage/Adapter.php | 1 + src/Storage/AuthCodeInterface.php | 2 +- src/Storage/ClientInterface.php | 8 ++++---- src/Storage/RefreshTokenInterface.php | 8 ++++---- src/Storage/ScopeInterface.php | 4 ++-- src/Storage/SessionInterface.php | 12 +++++------ src/Util/KeyAlgorithm/DefaultAlgorithm.php | 1 - src/Util/RedirectUri.php | 17 +++++++-------- 14 files changed, 50 insertions(+), 71 deletions(-) diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 891200d9..cd0a6acf 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -11,16 +11,11 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\SessionEntity; -use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; /** * Client credentials grant class diff --git a/src/Grant/GrantTypeInterface.php b/src/Grant/GrantTypeInterface.php index 3c2b22c4..5bad669c 100644 --- a/src/Grant/GrantTypeInterface.php +++ b/src/Grant/GrantTypeInterface.php @@ -11,14 +11,6 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\Request; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Exception; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; - /** * Grant type interface */ @@ -26,7 +18,7 @@ interface GrantTypeInterface { /** * Complete the grant flow - * @return array + * @return array */ public function completeFlow(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index c20b3a85..99b80b9d 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -11,17 +11,12 @@ namespace League\OAuth2\Server\Grant; -use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; -use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; /** * Password grant class @@ -54,7 +49,7 @@ class PasswordGrant extends AbstractGrant /** * Set the callback to verify a user's username and password - * @param callable $callback The callback function + * @param callable $callback The callback function * @return void */ public function setVerifyCredentialsCallback(callable $callback) diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index f8c8ad00..1f5ee111 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -12,15 +12,10 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\Request; -use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; -use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\ClientEntity; /** @@ -41,7 +36,7 @@ class RefreshTokenGrant extends AbstractGrant /** * Set the TTL of the refresh token - * @param int $refreshTokenTTL + * @param int $refreshTokenTTL * @return void */ public function setRefreshTokenTTL($refreshTokenTTL) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 840da810..d5b99837 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -11,10 +11,8 @@ namespace League\OAuth2\Server; -use League\OAuth2\Server\Storage\StorageWrapper; use League\OAuth2\Server\Storage\ClientInterface; use League\OAuth2\Server\Storage\AccessTokenInterface; -use League\OAuth2\Server\Storage\AuthCodeInterface; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Entity\AccessTokenEntity; @@ -39,10 +37,10 @@ class ResourceServer extends AbstractServer /** * Initialise the resource server - * @param SessionInterface $sessionStorage - * @param AccessTokenInteface $accessTokenStorage - * @param ClientInterface $clientStorage - * @param ScopeInterface $scopeStorage + * @param SessionInterface $sessionStorage + * @param AccessTokenInteface $accessTokenStorage + * @param ClientInterface $clientStorage + * @param ScopeInterface $scopeStorage * @return self */ public function __construct( @@ -68,14 +66,15 @@ class ResourceServer extends AbstractServer /** * Set the storage - * @param string $type Storage type - * @param mixed $storage Storage class + * @param string $type Storage type + * @param mixed $storage Storage class * @return self */ protected function setStorage($type, $storage) { $storage->setServer($this); $this->storages[$type] = $storage; + return $this; } @@ -96,6 +95,7 @@ class ResourceServer extends AbstractServer public function setTokenKey($key) { $this->tokenKey = $key; + return $this; } @@ -146,8 +146,8 @@ class ResourceServer extends AbstractServer /** * Checks if the presented access token has the given scope(s) - * @param array|string $scopes An array of scopes or a single scope as a string - * @return bool Returns bool if all scopes are found, false if any fail + * @param array|string $scopes An array of scopes or a single scope as a string + * @return bool Returns bool if all scopes are found, false if any fail */ public function hasScope($scopes) { @@ -162,6 +162,7 @@ class ResourceServer extends AbstractServer } } } + return true; } @@ -176,13 +177,14 @@ class ResourceServer extends AbstractServer // Set the access token $this->accessToken = $this->storages['access_token']->get($accessTokenString); + return ($this->accessToken instanceof AccessTokenEntity); } /** * Reads in the access token from the headers * @param $headersOnly Limit Access Token to Authorization header only - * @throws Exception\MissingAccessTokenException Thrown if there is no access token presented + * @throws Exception\MissingAccessTokenException Thrown if there is no access token presented * @return string */ public function determineAccessToken($headersOnly = false) diff --git a/src/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php index 38ad4cbd..29477818 100644 --- a/src/Storage/AccessTokenInterface.php +++ b/src/Storage/AccessTokenInterface.php @@ -14,7 +14,6 @@ namespace League\OAuth2\Server\Storage; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\AbstractTokenEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; -use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Entity\ScopeEntity; /** @@ -24,14 +23,14 @@ interface AccessTokenInterface { /** * Get an instance of Entity\AccessTokenEntity - * @param string $token The access token + * @param string $token The access token * @return \League\OAuth2\Server\Entity\AccessTokenEntity */ public function get($token); /** * Get the access token associated with an access token - * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $refreshToken + * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $refreshToken * @return \League\OAuth2\Server\Entity\AccessTokenEntity */ public function getByRefreshToken(RefreshTokenEntity $refreshToken); @@ -39,15 +38,15 @@ interface AccessTokenInterface /** * Get the scopes for an access token * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token - * @return array Array of \League\OAuth2\Server\Entity\ScopeEntity + * @return array Array of \League\OAuth2\Server\Entity\ScopeEntity */ public function getScopes(AbstractTokenEntity $token); /** * Creates a new access token - * @param string $token The access token - * @param integer $expireTime The expire time expressed as a unix timestamp - * @param string|integer $sessionId The session ID + * @param string $token The access token + * @param integer $expireTime The expire time expressed as a unix timestamp + * @param string|integer $sessionId The session ID * @return \League\OAuth2\Server\Entity\AccessToken */ public function create($token, $expireTime, $sessionId); @@ -55,7 +54,7 @@ interface AccessTokenInterface /** * Associate a scope with an acess token * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token - * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope * @return void */ public function associateScope(AbstractTokenEntity $token, ScopeEntity $scope); diff --git a/src/Storage/Adapter.php b/src/Storage/Adapter.php index a6ea0792..e9f3f1d6 100644 --- a/src/Storage/Adapter.php +++ b/src/Storage/Adapter.php @@ -31,6 +31,7 @@ class Adapter public function setServer(AbstractServer $server) { $this->server = $server; + return $this; } diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index 41da4e7f..0350abc5 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -18,7 +18,7 @@ interface AuthCodeInterface { /** * Get the auth code - * @param string $code + * @param string $code * @return \League\OAuth2\Server\Entity\AuthCodeEntity */ public function get($code); diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index 00ede1ab..b825c06c 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -20,10 +20,10 @@ interface ClientInterface { /** * Validate a client - * @param string $clientId The client's ID - * @param string $clientSecret The client's secret (default = "null") - * @param string $redirectUri The client's redirect URI (default = "null") - * @param string $grantType The grant type used in the request (default = "null") + * @param string $clientId The client's ID + * @param string $clientSecret The client's secret (default = "null") + * @param string $redirectUri The client's redirect URI (default = "null") + * @param string $grantType The grant type used in the request (default = "null") * @return League\OAuth2\Server\Entity\ClientEntity */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); diff --git a/src/Storage/RefreshTokenInterface.php b/src/Storage/RefreshTokenInterface.php index 42693c6f..38621295 100644 --- a/src/Storage/RefreshTokenInterface.php +++ b/src/Storage/RefreshTokenInterface.php @@ -20,16 +20,16 @@ interface RefreshTokenInterface { /** * Return a new instance of \League\OAuth2\Server\Entity\RefreshTokenEntity - * @param string $token + * @param string $token * @return \League\OAuth2\Server\Entity\RefreshTokenEntity */ public function get($token); /** * Create a new refresh token_name - * @param string $token - * @param integer $expireTime - * @param string $accessToken + * @param string $token + * @param integer $expireTime + * @param string $accessToken * @return \League\OAuth2\Server\Entity\RefreshTokenEntity */ public function create($token, $expireTime, $accessToken); diff --git a/src/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php index ffc87953..836737d0 100644 --- a/src/Storage/ScopeInterface.php +++ b/src/Storage/ScopeInterface.php @@ -25,8 +25,8 @@ interface ScopeInterface * SELECT * FROM oauth_scopes WHERE scope = :scope * * - * @param string $scope The scope - * @param string $grantType The grant type used in the request (default = "null") + * @param string $scope The scope + * @param string $grantType The grant type used in the request (default = "null") * @return \League\OAuth2\Server\Entity\ScopeEntity */ public function get($scope, $grantType = null); diff --git a/src/Storage/SessionInterface.php b/src/Storage/SessionInterface.php index 5e9fc965..dddb2b63 100644 --- a/src/Storage/SessionInterface.php +++ b/src/Storage/SessionInterface.php @@ -23,7 +23,7 @@ interface SessionInterface { /** * Get a session from it's identifier - * @param string $sessionId + * @param string $sessionId * @return \League\OAuth2\Server\Entity\SessionEntity */ public function get($sessionId); @@ -51,10 +51,10 @@ interface SessionInterface /** * Create a new session - * @param string $ownerType Session owner's type (user, client) - * @param string $ownerId Session owner's ID - * @param string $clientId Client ID - * @param string $clientRedirectUri Client redirect URI (default = null) + * @param string $ownerType Session owner's type (user, client) + * @param string $ownerId Session owner's ID + * @param string $clientId Client ID + * @param string $clientRedirectUri Client redirect URI (default = null) * @return integer The session's ID */ public function create($ownerType, $ownerId, $clientId, $clientRedirectUri = null); @@ -62,7 +62,7 @@ interface SessionInterface /** * Associate a scope with a session * @param \League\OAuth2\Server\Entity\SessionEntity $scope The scope - * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope * @return void */ public function associateScope(SessionEntity $session, ScopeEntity $scope); diff --git a/src/Util/KeyAlgorithm/DefaultAlgorithm.php b/src/Util/KeyAlgorithm/DefaultAlgorithm.php index a03c4e1d..fc07b0cb 100644 --- a/src/Util/KeyAlgorithm/DefaultAlgorithm.php +++ b/src/Util/KeyAlgorithm/DefaultAlgorithm.php @@ -11,7 +11,6 @@ namespace League\OAuth2\Server\Util\KeyAlgorithm; - class DefaultAlgorithm implements KeyAlgorithmInterface { /** diff --git a/src/Util/RedirectUri.php b/src/Util/RedirectUri.php index 01475b05..b05b92bc 100644 --- a/src/Util/RedirectUri.php +++ b/src/Util/RedirectUri.php @@ -16,16 +16,17 @@ namespace League\OAuth2\Server\Util; */ class RedirectUri { - /** - * Generate a new redirect uri - * @param string $uri The base URI - * @param array $params The query string parameters - * @param string $queryDelimeter The query string delimeter (default: "?") - * @return string The updated URI - */ + /** + * Generate a new redirect uri + * @param string $uri The base URI + * @param array $params The query string parameters + * @param string $queryDelimeter The query string delimeter (default: "?") + * @return string The updated URI + */ public static function make($uri, $params = array(), $queryDelimeter = '?') { $uri .= (strstr($uri, $queryDelimeter) === false) ? $queryDelimeter : '&'; + return $uri.http_build_query($params); } -} \ No newline at end of file +} From 5c8ed58c67577807dbc558289840cea8d82d7f81 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 10:55:25 +0100 Subject: [PATCH 094/270] Cleaned up tests --- tests/AbstractServerTest.php | 9 ++++----- tests/AuthorizationServerTest.php | 2 +- tests/Bootstrap.php | 5 ++--- tests/Entity/AbstractTokenTest.php | 2 +- tests/Entity/AccessTokenTest.php | 7 +++---- tests/Entity/AuthCodeTest.php | 6 +++--- tests/Entity/ClientTest.php | 2 +- tests/Entity/RefreshTokenTest.php | 9 ++++----- tests/Entity/ScopeTest.php | 4 ++-- tests/Entity/SessionTest.php | 7 +++---- tests/Grant/AbstractGrantTest.php | 2 +- tests/Grant/AuthCodeTest.php | 1 - tests/Grant/ClientCredentialsTest.php | 17 ++++++++-------- tests/Grant/PasswordTest.php | 26 ++++++++++++------------- tests/Grant/RefreshTokenTest.php | 20 +++++++++---------- tests/ResourceServerTest.php | 3 +-- tests/Storage/AdapterTest.php | 5 ++--- tests/Stubs/StubAbstractGrant.php | 2 +- tests/Stubs/StubAbstractServer.php | 2 +- tests/Stubs/StubAbstractTokenEntity.php | 2 +- tests/util/RedirectUriTest.php | 23 +++++++++++----------- tests/util/SecureKeyTest.php | 7 +++---- 22 files changed, 75 insertions(+), 88 deletions(-) diff --git a/tests/AbstractServerTest.php b/tests/AbstractServerTest.php index a25b8f13..5ac009e3 100644 --- a/tests/AbstractServerTest.php +++ b/tests/AbstractServerTest.php @@ -3,11 +3,10 @@ namespace LeagueTests; use LeagueTests\Stubs\StubAbstractServer; -use \Mockery as M; -class AbstractTokenTest extends \PHPUnit_Framework_TestCase +class AbstractServerTest extends \PHPUnit_Framework_TestCase { - function testSetGet() + public function testSetGet() { $server = new StubAbstractServer(); $this->assertTrue($server->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); @@ -17,10 +16,10 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $this->assertTrue($server2->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); } - function testGetStorageException() + public function testGetStorageException() { $this->setExpectedException('League\OAuth2\Server\Exception\ServerErrorException'); $server = new StubAbstractServer(); $server->getStorage('foobar'); } -} \ No newline at end of file +} diff --git a/tests/AuthorizationServerTest.php b/tests/AuthorizationServerTest.php index fd447b6c..90298d3a 100644 --- a/tests/AuthorizationServerTest.php +++ b/tests/AuthorizationServerTest.php @@ -7,7 +7,7 @@ use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Storage\ScopeInterface; use \Mockery as M; -class AuthorizationTest extends \PHPUnit_Framework_TestCase +class AuthorizationServerTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { diff --git a/tests/Bootstrap.php b/tests/Bootstrap.php index ff9fb28e..7f8cf458 100644 --- a/tests/Bootstrap.php +++ b/tests/Bootstrap.php @@ -1,6 +1,5 @@ wget http://getcomposer.org/composer.phar\n> php composer.phar install\n"); -} \ No newline at end of file +} diff --git a/tests/Entity/AbstractTokenTest.php b/tests/Entity/AbstractTokenTest.php index e1070d75..2f16ea2e 100644 --- a/tests/Entity/AbstractTokenTest.php +++ b/tests/Entity/AbstractTokenTest.php @@ -8,7 +8,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\AuthorizationServer; use \Mockery as M; -class AbstractTokenTests extends \PHPUnit_Framework_TestCase +class AbstractTokenTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { diff --git a/tests/Entity/AccessTokenTest.php b/tests/Entity/AccessTokenTest.php index f28b40b9..c1a748bd 100644 --- a/tests/Entity/AccessTokenTest.php +++ b/tests/Entity/AccessTokenTest.php @@ -5,12 +5,11 @@ namespace LeagueTests\Entity; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; -use League\OAuth2\Server\AuthorizationServer; use \Mockery as M; -class AccessTokenTests extends \PHPUnit_Framework_TestCase +class AccessTokenTest extends \PHPUnit_Framework_TestCase { - function testSave() + public function testSave() { $server = M::mock('League\OAuth2\Server\AbstractServer'); $server->shouldReceive('setAccessTokenStorage'); @@ -40,7 +39,7 @@ class AccessTokenTests extends \PHPUnit_Framework_TestCase $this->assertTrue($entity->save() instanceof AccessTokenEntity); } - function testExpire() + public function testExpire() { $server = M::mock('League\OAuth2\Server\AbstractServer'); diff --git a/tests/Entity/AuthCodeTest.php b/tests/Entity/AuthCodeTest.php index e8472499..5510b9cf 100644 --- a/tests/Entity/AuthCodeTest.php +++ b/tests/Entity/AuthCodeTest.php @@ -10,7 +10,7 @@ use \Mockery as M; class AuthCodeTest extends \PHPUnit_Framework_TestCase { - function testSetGet() + public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); @@ -26,7 +26,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $this->assertTrue($code->getSession() instanceof \League\OAuth2\Server\Entity\SessionEntity); } - function testSave() + public function testSave() { $server = M::mock('League\OAuth2\Server\AbstractServer'); $server->shouldReceive('setAuthCodeStorage'); @@ -57,7 +57,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $this->assertTrue($entity->save() instanceof AuthCodeEntity); } - function testExpire() + public function testExpire() { $server = new AuthorizationServer(); diff --git a/tests/Entity/ClientTest.php b/tests/Entity/ClientTest.php index 4feb77d6..2f627c1b 100644 --- a/tests/Entity/ClientTest.php +++ b/tests/Entity/ClientTest.php @@ -21,4 +21,4 @@ class ClientTest extends \PHPUnit_Framework_TestCase $this->assertEquals('Test Client', $client->getName()); $this->assertEquals('http://foo/bar', $client->getRedirectUri()); } -} \ No newline at end of file +} diff --git a/tests/Entity/RefreshTokenTest.php b/tests/Entity/RefreshTokenTest.php index 15877044..26ad72b8 100644 --- a/tests/Entity/RefreshTokenTest.php +++ b/tests/Entity/RefreshTokenTest.php @@ -6,12 +6,11 @@ use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; -use League\OAuth2\Server\AuthorizationServer as Authorization; use \Mockery as M; -class RefreshTokenTests extends \PHPUnit_Framework_TestCase +class RefreshTokenTest extends \PHPUnit_Framework_TestCase { - function testSetAccessToken() + public function testSetAccessToken() { $server = M::mock('League\OAuth2\Server\AbstractServer'); $entity = new RefreshTokenEntity($server); @@ -24,7 +23,7 @@ class RefreshTokenTests extends \PHPUnit_Framework_TestCase $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessTokenEntity); } - function testSave() + public function testSave() { $server = M::mock('League\OAuth2\Server\AbstractServer'); $server->shouldReceive('setAccessTokenStorage'); @@ -63,7 +62,7 @@ class RefreshTokenTests extends \PHPUnit_Framework_TestCase $this->assertSame(null, $entity->save()); } - function testExpire() + public function testExpire() { $server = M::mock('League\OAuth2\Server\AbstractServer'); $server->shouldReceive('setRefreshTokenStorage'); diff --git a/tests/Entity/ScopeTest.php b/tests/Entity/ScopeTest.php index 39c06f1f..a734c310 100644 --- a/tests/Entity/ScopeTest.php +++ b/tests/Entity/ScopeTest.php @@ -5,7 +5,7 @@ namespace LeagueTests\Entity; use League\OAuth2\Server\Entity\ScopeEntity; use \Mockery as M; -class ScopeTests extends \PHPUnit_Framework_TestCase +class ScopeTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { @@ -17,4 +17,4 @@ class ScopeTests extends \PHPUnit_Framework_TestCase $this->assertEquals('foobar', $scope->getId()); $this->assertEquals('barfoo', $scope->getDescription()); } -} \ No newline at end of file +} diff --git a/tests/Entity/SessionTest.php b/tests/Entity/SessionTest.php index e7a66521..4b7158e9 100644 --- a/tests/Entity/SessionTest.php +++ b/tests/Entity/SessionTest.php @@ -3,7 +3,6 @@ namespace LeagueTests\Entity; use League\OAuth2\Server\Entity\AccessTokenEntity; -use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; @@ -11,7 +10,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\AuthorizationServer; use \Mockery as M; -class SessionTests extends \PHPUnit_Framework_TestCase +class SessionTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { @@ -114,7 +113,7 @@ class SessionTests extends \PHPUnit_Framework_TestCase $this->assertFalse($entity->hasScope('foo')); } - function testSave() + public function testSave() { $server = M::mock('League\OAuth2\Server\AuthorizationServer'); $server->shouldReceive('setSessionStorage'); @@ -144,4 +143,4 @@ class SessionTests extends \PHPUnit_Framework_TestCase $entity = new SessionEntity($server); $this->assertEquals(null, $entity->save()); } -} \ No newline at end of file +} diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index d7bf03c9..f50b43bd 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -11,7 +11,7 @@ use Mockery as M; class AbstractGrantTest extends \PHPUnit_Framework_TestCase { - function testSetGet() + public function testSetGet() { $server = new AuthorizationServer; diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeTest.php index d54fe66a..8f060f5c 100644 --- a/tests/Grant/AuthCodeTest.php +++ b/tests/Grant/AuthCodeTest.php @@ -121,7 +121,6 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn(null); - $server->setClientStorage($clientStorage); $server->addGrantType($grant); diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsTest.php index 1cbbb38c..017670c9 100644 --- a/tests/Grant/ClientCredentialsTest.php +++ b/tests/Grant/ClientCredentialsTest.php @@ -6,12 +6,11 @@ use League\OAuth2\Server\Grant\ClientCredentialsGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; -use League\OAuth2\Server\Grant\ClientException; use Mockery as M; -class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase +class ClientCredentialsTest extends \PHPUnit_Framework_TestCase { - function testCompleteFlowMissingClientId() + public function testCompleteFlowMissingClientId() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -25,7 +24,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase } - function testCompleteFlowMissingClientSecret() + public function testCompleteFlowMissingClientSecret() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -41,7 +40,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidClient() + public function testCompleteFlowInvalidClient() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); @@ -64,7 +63,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidScope() + public function testCompleteFlowInvalidScope() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); @@ -107,7 +106,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowNoScopes() + public function testCompleteFlowNoScopes() { $_POST = [ 'grant_type' => 'client_credentials', @@ -151,7 +150,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlow() + public function testCompleteFlow() { $_POST = [ 'grant_type' => 'client_credentials', @@ -199,4 +198,4 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); $server->issueAccessToken(); } -} \ No newline at end of file +} diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordTest.php index f7a88bb4..52f08c4a 100644 --- a/tests/Grant/PasswordTest.php +++ b/tests/Grant/PasswordTest.php @@ -5,15 +5,13 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\PasswordGrant; use League\OAuth2\Server\Grant\RefreshTokenGrant; use League\OAuth2\Server\Entity\ScopeEntity; -use League\OAuth2\Server\Entity\AccessTokenEntity; -use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; class PasswordTest extends \PHPUnit_Framework_TestCase { - function testCompleteFlowMissingClientId() + public function testCompleteFlowMissingClientId() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -27,7 +25,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase } - function testCompleteFlowMissingClientSecret() + public function testCompleteFlowMissingClientSecret() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -43,7 +41,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidClient() + public function testCompleteFlowInvalidClient() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); @@ -66,7 +64,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testNoUsername() + public function testNoUsername() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -108,7 +106,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testNoPassword() + public function testNoPassword() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -151,7 +149,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testNoCallable() + public function testNoCallable() { $this->setExpectedException('League\OAuth2\Server\Exception\ServerErrorException'); @@ -195,7 +193,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidScope() + public function testCompleteFlowInvalidScope() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); @@ -243,7 +241,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowNoScopes() + public function testCompleteFlowNoScopes() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -292,7 +290,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidCredentials() + public function testCompleteFlowInvalidCredentials() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidCredentialsException'); @@ -348,7 +346,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlow() + public function testCompleteFlow() { $_POST = [ 'grant_type' => 'password', @@ -407,7 +405,7 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $this->assertTrue(isset($response['expires'])); } - function testCompleteFlowRefreshToken() + public function testCompleteFlowRefreshToken() { $_POST = [ 'grant_type' => 'password', @@ -474,4 +472,4 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $this->assertTrue(isset($response['expires_in'])); $this->assertTrue(isset($response['expires'])); } -} \ No newline at end of file +} diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenTest.php index 78977d30..9550998d 100644 --- a/tests/Grant/RefreshTokenTest.php +++ b/tests/Grant/RefreshTokenTest.php @@ -13,7 +13,7 @@ use Mockery as M; class RefreshTokenTest extends \PHPUnit_Framework_TestCase { - function testSetRefreshTokenTTL() + public function testSetRefreshTokenTTL() { $grant = new RefreshTokenGrant; $grant->setRefreshTokenTTL(86400); @@ -24,7 +24,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $this->assertEquals(86400, $property->getValue($grant)); } - function testCompleteFlowMissingClientId() + public function testCompleteFlowMissingClientId() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -37,7 +37,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowMissingClientSecret() + public function testCompleteFlowMissingClientSecret() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -53,7 +53,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidClient() + public function testCompleteFlowInvalidClient() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); @@ -76,7 +76,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowMissingRefreshToken() + public function testCompleteFlowMissingRefreshToken() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -110,7 +110,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowInvalidRefreshToken() + public function testCompleteFlowInvalidRefreshToken() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRefreshException'); @@ -146,7 +146,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } - function testCompleteFlowExistingScopes() + public function testCompleteFlowExistingScopes() { $_POST = [ 'grant_type' => 'refresh_token', @@ -215,7 +215,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $this->assertTrue(isset($response['expires'])); } - function testCompleteFlowRequestScopes() + public function testCompleteFlowRequestScopes() { $_POST = [ 'grant_type' => 'refresh_token', @@ -287,7 +287,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $this->assertTrue(isset($response['expires'])); } - function testCompleteFlowRequestScopesInvalid() + public function testCompleteFlowRequestScopesInvalid() { $_POST = [ 'grant_type' => 'refresh_token', @@ -355,4 +355,4 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } -} \ No newline at end of file +} diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 8fea0646..8c723a90 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -3,7 +3,6 @@ namespace LeagueTests; use League\OAuth2\Server\ResourceServer; -use League\OAuth2\Server\Grant\GrantTypeInterface; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\ClientEntity; @@ -33,7 +32,7 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase return $server; } - function testGetSet() + public function testGetSet() { $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); diff --git a/tests/Storage/AdapterTest.php b/tests/Storage/AdapterTest.php index a96f1564..1610b4d0 100644 --- a/tests/Storage/AdapterTest.php +++ b/tests/Storage/AdapterTest.php @@ -4,11 +4,10 @@ namespace LeagueTests\Storage; use League\OAuth2\Server\Storage\Adapter; use LeagueTests\Stubs\StubAbstractServer; -use \Mockery as M; class AdapterTest extends \PHPUnit_Framework_TestCase { - function testSetGet() + public function testSetGet() { $adapter = new Adapter; @@ -21,4 +20,4 @@ class AdapterTest extends \PHPUnit_Framework_TestCase $this->assertTrue($getMethod->invoke($adapter) instanceof StubAbstractServer); } -} \ No newline at end of file +} diff --git a/tests/Stubs/StubAbstractGrant.php b/tests/Stubs/StubAbstractGrant.php index 31dda299..b409500c 100644 --- a/tests/Stubs/StubAbstractGrant.php +++ b/tests/Stubs/StubAbstractGrant.php @@ -20,4 +20,4 @@ class StubAbstractGrant extends \League\OAuth2\Server\Grant\AbstractGrant { return $this->server; } -} \ No newline at end of file +} diff --git a/tests/Stubs/StubAbstractServer.php b/tests/Stubs/StubAbstractServer.php index 31a6641e..70d78d9e 100644 --- a/tests/Stubs/StubAbstractServer.php +++ b/tests/Stubs/StubAbstractServer.php @@ -5,4 +5,4 @@ namespace LeagueTests\Stubs; class StubAbstractServer extends \League\OAuth2\Server\AbstractServer { -} \ No newline at end of file +} diff --git a/tests/Stubs/StubAbstractTokenEntity.php b/tests/Stubs/StubAbstractTokenEntity.php index 5a11674e..e04c76fd 100644 --- a/tests/Stubs/StubAbstractTokenEntity.php +++ b/tests/Stubs/StubAbstractTokenEntity.php @@ -15,4 +15,4 @@ class StubAbstractTokenEntity extends AbstractTokenEntity { } -} \ No newline at end of file +} diff --git a/tests/util/RedirectUriTest.php b/tests/util/RedirectUriTest.php index eb620ddd..415ca3d7 100644 --- a/tests/util/RedirectUriTest.php +++ b/tests/util/RedirectUriTest.php @@ -1,20 +1,19 @@ 'bar')); - $v2 = RedirectUri::make('https://foobar/', array('foo'=>'bar'), '#'); - $v3 = RedirectUri::make('https://foobar/', array('foo'=>'bar', 'bar' => 'foo')); + public function testMake() + { + $v1 = RedirectUri::make('https://foobar/', array('foo'=>'bar')); + $v2 = RedirectUri::make('https://foobar/', array('foo'=>'bar'), '#'); + $v3 = RedirectUri::make('https://foobar/', array('foo'=>'bar', 'bar' => 'foo')); - $this->assertEquals('https://foobar/?foo=bar', $v1); - $this->assertEquals('https://foobar/#foo=bar', $v2); - $this->assertEquals('https://foobar/?foo=bar&bar=foo', $v3); - } -} \ No newline at end of file + $this->assertEquals('https://foobar/?foo=bar', $v1); + $this->assertEquals('https://foobar/#foo=bar', $v2); + $this->assertEquals('https://foobar/?foo=bar&bar=foo', $v3); + } +} diff --git a/tests/util/SecureKeyTest.php b/tests/util/SecureKeyTest.php index f3b59483..edfbb538 100644 --- a/tests/util/SecureKeyTest.php +++ b/tests/util/SecureKeyTest.php @@ -1,13 +1,12 @@ assertSame($algorithm, SecureKey::getAlgorithm()); $this->assertEquals($result, SecureKey::generate(11)); } -} \ No newline at end of file +} From b82551c97dcb22e2b9e50b953929f65d7bbfffb0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:08:33 +0100 Subject: [PATCH 095/270] PHPCS fixes --- src/AuthorizationServer.php | 4 ++-- src/Exception/InvalidGrantException.php | 8 +++++++- src/Exception/InvalidRequestException.php | 8 +++++++- src/Exception/InvalidScopeException.php | 7 ++++++- src/Exception/ServerErrorException.php | 6 ++++-- src/Exception/UnsupportedGrantTypeException.php | 7 ++++++- src/Grant/AbstractGrant.php | 11 ++++++----- src/Grant/PasswordGrant.php | 1 - src/ResourceServer.php | 4 +++- src/Storage/ClientInterface.php | 2 +- 10 files changed, 42 insertions(+), 16 deletions(-) diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index b04462c3..eddfe6f0 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -174,7 +174,7 @@ class AuthorizationServer extends AbstractServer $this->grantTypes[$identifier] = $grantType; - if ( ! is_null($grantType->getResponseType())) { + if (!is_null($grantType->getResponseType())) { $this->responseTypes[] = $grantType->getResponseType(); } @@ -316,7 +316,7 @@ class AuthorizationServer extends AbstractServer } // Ensure grant type is one that is recognised and is enabled - if ( ! in_array($grantType, array_keys($this->grantTypes))) { + if (!in_array($grantType, array_keys($this->grantTypes))) { throw new Exception\UnsupportedGrantTypeException($grantType); } diff --git a/src/Exception/InvalidGrantException.php b/src/Exception/InvalidGrantException.php index 1fde9dee..3b9f5d79 100644 --- a/src/Exception/InvalidGrantException.php +++ b/src/Exception/InvalidGrantException.php @@ -32,6 +32,12 @@ class InvalidGrantException extends OAuthException public function __construct($parameter) { - parent::__construct(sprintf('The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. Check the "%s" parameter.', $parameter)); + parent::__construct( + sprintf( + 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used + in the authorization request, or was issued to another client. Check the "%s" parameter.', + $parameter + ) + ); } } diff --git a/src/Exception/InvalidRequestException.php b/src/Exception/InvalidRequestException.php index b42a90fa..d47d6fb4 100644 --- a/src/Exception/InvalidRequestException.php +++ b/src/Exception/InvalidRequestException.php @@ -32,6 +32,12 @@ class InvalidRequestException extends OAuthException public function __construct($parameter) { - parent::__construct(sprintf('The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', $parameter)); + parent::__construct( + sprintf( + 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter + more than once, or is otherwise malformed. Check the "%s" parameter.', + $parameter + ) + ); } } diff --git a/src/Exception/InvalidScopeException.php b/src/Exception/InvalidScopeException.php index 613ed6c6..eb74213d 100644 --- a/src/Exception/InvalidScopeException.php +++ b/src/Exception/InvalidScopeException.php @@ -32,6 +32,11 @@ class InvalidScopeException extends OAuthException public function __construct($parameter) { - parent::__construct(sprintf('The requested scope is invalid, unknown, or malformed. Check the "%s" scope.', $parameter)); + parent::__construct( + sprintf( + 'The requested scope is invalid, unknown, or malformed. Check the "%s" scope.', + $parameter + ) + ); } } diff --git a/src/Exception/ServerErrorException.php b/src/Exception/ServerErrorException.php index 13a7cd63..e524c520 100644 --- a/src/Exception/ServerErrorException.php +++ b/src/Exception/ServerErrorException.php @@ -29,8 +29,10 @@ class ServerErrorException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter = 'The authorization server encountered an unexpected condition which prevented it from fulfilling the request.') - { + public function __construct( + $parameter = 'The authorization server encountered an unexpected condition which prevented it from fulfilling' + . 'the request.' + ) { parent::__construct($parameter); } } diff --git a/src/Exception/UnsupportedGrantTypeException.php b/src/Exception/UnsupportedGrantTypeException.php index c79aa367..5a4f1d90 100644 --- a/src/Exception/UnsupportedGrantTypeException.php +++ b/src/Exception/UnsupportedGrantTypeException.php @@ -32,6 +32,11 @@ class UnsupportedGrantTypeException extends OAuthException public function __construct($parameter) { - parent::__construct(sprintf('The authorization grant type "%s" is not supported by the authorization server.', $parameter)); + parent::__construct( + sprintf( + 'The authorization grant type "%s" is not supported by the authorization server.', + $parameter + ) + ); } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 089a54a9..10195c79 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -116,13 +116,15 @@ abstract class AbstractGrant implements GrantTypeInterface for ($i = 0; $i < count($scopesList); $i++) { $scopesList[$i] = trim($scopesList[$i]); - if ($scopesList[$i] === '') unset($scopesList[$i]); // Remove any junk scopes + if ($scopesList[$i] === '') { + unset($scopesList[$i]); // Remove any junk scopes + } } if ( - $this->server->scopeParamRequired() === true && - $this->server->getDefaultScope() === null && - count($scopesList) === 0 + $this->server->scopeParamRequired() === true + && $this->server->getDefaultScope() === null + && count($scopesList) === 0 ) { throw new Exception\InvalidRequestException('scope'); } elseif (count($scopesList) === 0 && $this->server->getDefaultScope() !== null) { @@ -185,5 +187,4 @@ abstract class AbstractGrant implements GrantTypeInterface * @return array An array of parameters to be passed back to the client */ abstract public function completeFlow(); - } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 99b80b9d..4a1215df 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -164,5 +164,4 @@ class PasswordGrant extends AbstractGrant return $response; } - } diff --git a/src/ResourceServer.php b/src/ResourceServer.php index d5b99837..49859205 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -173,7 +173,9 @@ class ResourceServer extends AbstractServer */ public function isValidRequest($headersOnly = true, $accessToken = null) { - $accessTokenString = ($accessToken !== null) ? $accessToken : $this->determineAccessToken($headersOnly, $accessToken); + $accessTokenString = ($accessToken !== null) + ? $accessToken + : $this->determineAccessToken($headersOnly, $accessToken); // Set the access token $this->accessToken = $this->storages['access_token']->get($accessTokenString); diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index b825c06c..202e4b02 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -23,7 +23,7 @@ interface ClientInterface * @param string $clientId The client's ID * @param string $clientSecret The client's secret (default = "null") * @param string $redirectUri The client's redirect URI (default = "null") - * @param string $grantType The grant type used in the request (default = "null") + * @param string $grantType The grant type used (default = "null") * @return League\OAuth2\Server\Entity\ClientEntity */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null); From 7fada0964dca4a224f6b355f3639a4e9fd0b103c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:08:43 +0100 Subject: [PATCH 096/270] Run codesniffer --- .travis.yml | 7 ++----- composer.json | 3 ++- 2 files changed, 4 insertions(+), 6 deletions(-) diff --git a/.travis.yml b/.travis.yml index 9ced8226..b2287569 100644 --- a/.travis.yml +++ b/.travis.yml @@ -14,9 +14,6 @@ before_script: - composer self-update - composer --version - composer install --prefer-source + - ./vendor/bin/phpcs src --standard=psr2 -script: phpunit --configuration phpunit.xml.dist - -cache: - directories: - - vendor +script: phpunit --configuration phpunit.xml.dist \ No newline at end of file diff --git a/composer.json b/composer.json index b0319b0d..24bffa85 100644 --- a/composer.json +++ b/composer.json @@ -10,7 +10,8 @@ "require-dev": { "phpunit/phpunit": "~4.0", "mockery/mockery": "~0.9", - "league/phpunit-coverage-listener": "~1.0" + "league/phpunit-coverage-listener": "~1.0", + "squizlabs/php_codesniffer": "1.*" }, "repositories": [ { From 19bd4763959a705956e069338504adff32d3ed6b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:13:36 +0100 Subject: [PATCH 097/270] Fix silly mistake --- src/Exception/ServerErrorException.php | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/src/Exception/ServerErrorException.php b/src/Exception/ServerErrorException.php index e524c520..bdcec4dc 100644 --- a/src/Exception/ServerErrorException.php +++ b/src/Exception/ServerErrorException.php @@ -29,10 +29,10 @@ class ServerErrorException extends OAuthException /** * {@inheritdoc} */ - public function __construct( - $parameter = 'The authorization server encountered an unexpected condition which prevented it from fulfilling' - . 'the request.' - ) { + public function __construct($parameter = null) + { + $parameter = is_null($parameter) ? 'The authorization server encountered an unexpected condition which prevented + it from fulfilling the request.' : $parameter; parent::__construct($parameter); } } From 8e0b525ba22637f38569cd2a57e29d661a4e8238 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:17:59 +0100 Subject: [PATCH 098/270] Updated phpunit.xml --- phpunit.xml | 16 ++++++++-------- phpunit.xml.dist | 43 ------------------------------------------- 2 files changed, 8 insertions(+), 51 deletions(-) delete mode 100644 phpunit.xml.dist diff --git a/phpunit.xml b/phpunit.xml index 723a1f1f..23497901 100644 --- a/phpunit.xml +++ b/phpunit.xml @@ -1,17 +1,17 @@ - + - ./tests/ - + ./tests/ + - - src - + + src + - - + + diff --git a/phpunit.xml.dist b/phpunit.xml.dist deleted file mode 100644 index 8e19d2b6..00000000 --- a/phpunit.xml.dist +++ /dev/null @@ -1,43 +0,0 @@ - - - - - ./tests/ - - - - - src - - - - - - - - - - - - - - - - - - League\OAuth2\Server - - - DtNuuOrBh1QBXVyRqmVldC2Au11DVti9n - - - https://coveralls.io/api/v1/jobs - - - /tmp - - - - - - From 1f61f45f5f58ad8ab654d51ccd323f6c88cbb271 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:18:09 +0100 Subject: [PATCH 099/270] Fixed broken .travis.yml file --- .travis.yml | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index b2287569..497fa174 100644 --- a/.travis.yml +++ b/.travis.yml @@ -12,8 +12,15 @@ matrix: before_script: - composer self-update - - composer --version + - composer require satooshi/php-coveralls:dev-master --no-update --dev - composer install --prefer-source - - ./vendor/bin/phpcs src --standard=psr2 + +script: + - mkdir -p build/logs + - phpunit --coverage-text + - ./vendor/bin/phpcs src --standard=psr2 + +after_script: + - php vendor/bin/coveralls script: phpunit --configuration phpunit.xml.dist \ No newline at end of file From f46c1d2aa41ef5daecee2495829b7c267c8f3040 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:21:05 +0100 Subject: [PATCH 100/270] Removed old phpunit command --- .travis.yml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.travis.yml b/.travis.yml index 497fa174..12b2d401 100644 --- a/.travis.yml +++ b/.travis.yml @@ -21,6 +21,4 @@ script: - ./vendor/bin/phpcs src --standard=psr2 after_script: - - php vendor/bin/coveralls - -script: phpunit --configuration phpunit.xml.dist \ No newline at end of file + - php vendor/bin/coveralls \ No newline at end of file From 62f57669080eacbe60142ec4f8404eb719fbedb0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:25:37 +0100 Subject: [PATCH 101/270] Removed bit deli [skip ci] --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index d9cb7adb..3786a261 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,6 @@ # PHP OAuth 2.0 Server -[![Latest Stable Version](https://poser.pugx.org/league/oauth2-server/v/stable.png)](https://packagist.org/packages/league/oauth2-server) [![Coverage Status](https://coveralls.io/repos/php-loep/oauth2-server/badge.png?branch=master)](https://coveralls.io/r/php-loep/oauth2-server?branch=master) [![Total Downloads](https://poser.pugx.org/league/oauth2-server/downloads.png)](https://packagist.org/packages/league/oauth2-server) [![Bitdeli Badge](https://d2weczhvl823v0.cloudfront.net/php-loep/oauth2-server/trend.png)](https://bitdeli.com/free "Bitdeli Badge") +[![Latest Stable Version](https://poser.pugx.org/league/oauth2-server/v/stable.png)](https://packagist.org/packages/league/oauth2-server) [![Coverage Status](https://coveralls.io/repos/thephpleague/oauth2-server/badge.png?branch=v4.0.0-WIP)](https://coveralls.io/r/thephpleague/oauth2-server?branch=v4.0.0-WIP) [![Total Downloads](https://poser.pugx.org/league/oauth2-server/downloads.png)](https://packagist.org/packages/league/oauth2-server) A standards compliant [OAuth 2.0](http://tools.ietf.org/wg/oauth/draft-ietf-oauth-v2/) authorization server and resource server written in PHP. From 719b87a40cd8b08a11c932bcb38b87243a9f2674 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:39:11 +0100 Subject: [PATCH 102/270] Added missing methods to auth code storage interface --- src/Storage/AuthCodeInterface.php | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index 0350abc5..78dcc703 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -11,6 +11,9 @@ namespace League\OAuth2\Server\Storage; +use League\OAuth2\Server\Entity\AuthCodeEntity; +use League\OAuth2\Server\Entity\ScopeEntity; + /** * Auth code storage interface */ @@ -22,4 +25,26 @@ interface AuthCodeInterface * @return \League\OAuth2\Server\Entity\AuthCodeEntity */ public function get($code); + + /** + * Get the scopes for an access token + * @param \League\OAuth2\Server\Entity\AuthCodeEntity $token The auth code + * @return array Array of \League\OAuth2\Server\Entity\ScopeEntity + */ + public function getScopes(AuthCodeEntity $token); + + /** + * Associate a scope with an acess token + * @param \League\OAuth2\Server\Entity\AuthCodeEntity $token The auth code + * @param \League\OAuth2\Server\Entity\ScopeEntity $scope The scope + * @return void + */ + public function associateScope(AuthCodeEntity $token, ScopeEntity $scope); + + /** + * Delete an access token + * @param \League\OAuth2\Server\Entity\AuthCodeEntity $token The access token to delete + * @return void + */ + public function delete(AuthCodeEntity $token); } From f7e68d6e10af9f0024b2928449a8b49b0c581b14 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:40:39 +0100 Subject: [PATCH 103/270] Fixed auth code entity storage calls --- src/Entity/AuthCodeEntity.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index e140fa29..e07d35a2 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -81,7 +81,7 @@ class AuthCodeEntity extends AbstractTokenEntity { if ($this->scopes === null) { $this->scopes = $this->formatScopes( - $this->server->getStorage('auth_code')->getScopes($this->getToken()) + $this->server->getStorage('auth_code')->getScopes($this) ); } @@ -101,7 +101,7 @@ class AuthCodeEntity extends AbstractTokenEntity // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->server->getStorage('auth_code')->associateScope($this->getToken(), $scope->getId()); + $this->server->getStorage('auth_code')->associateScope($this, $scope); } return $this; @@ -112,6 +112,6 @@ class AuthCodeEntity extends AbstractTokenEntity */ public function expire() { - $this->server->getStorage('auth_code')->delete($this->getToken()); + $this->server->getStorage('auth_code')->delete($this); } } From b8e2c5a3f825b10aad8fdded669fd48a5ee88402 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 11:47:06 +0100 Subject: [PATCH 104/270] Ignore build folder [ci-skip] --- .gitignore | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index 674b2d38..96c5df74 100644 --- a/.gitignore +++ b/.gitignore @@ -1,6 +1,7 @@ /vendor /composer.lock -/tests/coverage +/tests +/build /docs /testing /examples/relational/vendor From 7356c5ad74dc21c4a68261d4ccfd14c9fa9ab267 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 13:54:30 +0100 Subject: [PATCH 105/270] Renamed test classes --- .../Entity/{AbstractTokenTest.php => AbstractTokenEntityTest.php} | 0 tests/Entity/{AccessTokenTest.php => AccessTokenEntityTest.php} | 0 tests/Entity/{AuthCodeTest.php => AuthCodeEntityTest.php} | 0 tests/Entity/{ClientTest.php => ClientEntityTest.php} | 0 tests/Entity/{RefreshTokenTest.php => RefreshTokenEntityTest.php} | 0 tests/Entity/{ScopeTest.php => ScopeEntityTest.php} | 0 tests/Entity/{SessionTest.php => SessionEntityTest.php} | 0 tests/Grant/{AuthCodeTest.php => AuthCodeGrantTest.php} | 0 .../{ClientCredentialsTest.php => ClientCredentialsGrantTest.php} | 0 tests/Grant/{PasswordTest.php => PasswordGrantTest.php} | 0 tests/Grant/{RefreshTokenTest.php => RefreshTokenGrantTest.php} | 0 11 files changed, 0 insertions(+), 0 deletions(-) rename tests/Entity/{AbstractTokenTest.php => AbstractTokenEntityTest.php} (100%) rename tests/Entity/{AccessTokenTest.php => AccessTokenEntityTest.php} (100%) rename tests/Entity/{AuthCodeTest.php => AuthCodeEntityTest.php} (100%) rename tests/Entity/{ClientTest.php => ClientEntityTest.php} (100%) rename tests/Entity/{RefreshTokenTest.php => RefreshTokenEntityTest.php} (100%) rename tests/Entity/{ScopeTest.php => ScopeEntityTest.php} (100%) rename tests/Entity/{SessionTest.php => SessionEntityTest.php} (100%) rename tests/Grant/{AuthCodeTest.php => AuthCodeGrantTest.php} (100%) rename tests/Grant/{ClientCredentialsTest.php => ClientCredentialsGrantTest.php} (100%) rename tests/Grant/{PasswordTest.php => PasswordGrantTest.php} (100%) rename tests/Grant/{RefreshTokenTest.php => RefreshTokenGrantTest.php} (100%) diff --git a/tests/Entity/AbstractTokenTest.php b/tests/Entity/AbstractTokenEntityTest.php similarity index 100% rename from tests/Entity/AbstractTokenTest.php rename to tests/Entity/AbstractTokenEntityTest.php diff --git a/tests/Entity/AccessTokenTest.php b/tests/Entity/AccessTokenEntityTest.php similarity index 100% rename from tests/Entity/AccessTokenTest.php rename to tests/Entity/AccessTokenEntityTest.php diff --git a/tests/Entity/AuthCodeTest.php b/tests/Entity/AuthCodeEntityTest.php similarity index 100% rename from tests/Entity/AuthCodeTest.php rename to tests/Entity/AuthCodeEntityTest.php diff --git a/tests/Entity/ClientTest.php b/tests/Entity/ClientEntityTest.php similarity index 100% rename from tests/Entity/ClientTest.php rename to tests/Entity/ClientEntityTest.php diff --git a/tests/Entity/RefreshTokenTest.php b/tests/Entity/RefreshTokenEntityTest.php similarity index 100% rename from tests/Entity/RefreshTokenTest.php rename to tests/Entity/RefreshTokenEntityTest.php diff --git a/tests/Entity/ScopeTest.php b/tests/Entity/ScopeEntityTest.php similarity index 100% rename from tests/Entity/ScopeTest.php rename to tests/Entity/ScopeEntityTest.php diff --git a/tests/Entity/SessionTest.php b/tests/Entity/SessionEntityTest.php similarity index 100% rename from tests/Entity/SessionTest.php rename to tests/Entity/SessionEntityTest.php diff --git a/tests/Grant/AuthCodeTest.php b/tests/Grant/AuthCodeGrantTest.php similarity index 100% rename from tests/Grant/AuthCodeTest.php rename to tests/Grant/AuthCodeGrantTest.php diff --git a/tests/Grant/ClientCredentialsTest.php b/tests/Grant/ClientCredentialsGrantTest.php similarity index 100% rename from tests/Grant/ClientCredentialsTest.php rename to tests/Grant/ClientCredentialsGrantTest.php diff --git a/tests/Grant/PasswordTest.php b/tests/Grant/PasswordGrantTest.php similarity index 100% rename from tests/Grant/PasswordTest.php rename to tests/Grant/PasswordGrantTest.php diff --git a/tests/Grant/RefreshTokenTest.php b/tests/Grant/RefreshTokenGrantTest.php similarity index 100% rename from tests/Grant/RefreshTokenTest.php rename to tests/Grant/RefreshTokenGrantTest.php From b3c367638114b80860b156bb0298d003f1438894 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 3 May 2014 13:54:39 +0100 Subject: [PATCH 106/270] Removed /tests from .gitignore. Fool --- .gitignore | 1 - 1 file changed, 1 deletion(-) diff --git a/.gitignore b/.gitignore index 96c5df74..e26a243d 100644 --- a/.gitignore +++ b/.gitignore @@ -1,6 +1,5 @@ /vendor /composer.lock -/tests /build /docs /testing From c5ffd05eeee07db056bb0ea53b7f36dd02ad4987 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 23 Apr 2014 17:02:50 +0100 Subject: [PATCH 107/270] First commit of token types --- src/AbstractServer.php | 27 +++++++++++++++ src/Grant/AuthCodeGrant.php | 13 +++----- src/Grant/ClientCredentialsGrant.php | 11 +++---- src/Grant/PasswordGrant.php | 13 +++----- src/Grant/RefreshTokenGrant.php | 13 +++----- src/TokenType/AbstractTokenType.php | 41 +++++++++++++++++++++++ src/TokenType/Bearer.php | 49 ++++++++++++++++++++++++++++ src/TokenType/Mac.php | 17 ++++++++++ src/TokenType/TokenTypeInterface.php | 21 ++++++++++++ 9 files changed, 174 insertions(+), 31 deletions(-) create mode 100644 src/TokenType/AbstractTokenType.php create mode 100644 src/TokenType/Bearer.php create mode 100644 src/TokenType/Mac.php create mode 100644 src/TokenType/TokenTypeInterface.php diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 828bee39..8439fa85 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server; +use League\OAuth2\Server\Exception; +use League\OAuth2\Server\TokenType\TokenTypeInterface; use Symfony\Component\HttpFoundation\Request; /** @@ -32,6 +34,12 @@ abstract class AbstractServer */ protected $storages = []; + /** + * Token type + * @var TokenTypeInterface + */ + protected $tokenType; + /** * Sets the Request Object * @param \Symfony\Component\HttpFoundation\Request The Request Object @@ -72,4 +80,23 @@ abstract class AbstractServer return $this->storages[$obj]; } + + /** + * Set the access token type + * @param TokenTypeInterface $tokenType The token type + * @return void + */ + public function setTokenType(TokenTypeInterface $tokenType) + { + $this->tokenType = $tokenType; + } + + /** + * Get the access token type + * @return TokenTypeInterface + */ + public function getTokenType() + { + return $this->tokenType; + } } diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 1494defe..e5f31624 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -218,19 +218,16 @@ class AuthCodeGrant extends AbstractGrant $session->associateScope($authCodeScope); } - $response = [ - 'access_token' => $accessToken->getToken(), - 'token_type' => 'Bearer', - 'expires' => $accessToken->getExpireTime(), - 'expires_in' => $this->server->getAccessTokenTTL() - ]; + $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); + $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $response['refresh_token'] = $refreshToken->getToken(); + $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); } // Expire the auth code @@ -246,6 +243,6 @@ class AuthCodeGrant extends AbstractGrant $refreshToken->save(); } - return $response; + return $this->server->getTokenType()->generateResponse(); } } diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index cd0a6acf..786d5d2c 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -101,13 +101,10 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->setSession($session); $accessToken->save($this->server->getStorage('access_token')); - $response = [ - 'access_token' => $accessToken->getToken(), - 'token_type' => 'Bearer', - 'expires' => $accessToken->getExpireTime(), - 'expires_in' => $this->server->getAccessTokenTTL() - ]; + $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); + $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); - return $response; + return $this->server->getTokenType()->generateResponse(); } } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 4a1215df..9c2b27e3 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -137,19 +137,16 @@ class PasswordGrant extends AbstractGrant $session->associateScope($scope); } - $response = [ - 'access_token' => $accessToken->getToken(), - 'token_type' => 'Bearer', - 'expires' => $accessToken->getExpireTime(), - 'expires_in' => $this->server->getAccessTokenTTL() - ]; + $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); + $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setToken(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $response['refresh_token'] = $refreshToken->getToken(); + $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); } // Save everything @@ -162,6 +159,6 @@ class PasswordGrant extends AbstractGrant $refreshToken->save(); } - return $response; + return $this->server->getTokenType()->generateResponse(); } } diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 1f5ee111..c84503c0 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -131,12 +131,9 @@ class RefreshTokenGrant extends AbstractGrant $oldAccessToken->expire($this->server->getStorage('access_token')); $newAccessToken->save($this->server->getStorage('access_token')); - $response = [ - 'access_token' => $newAccessToken->getToken(), - 'token_type' => 'Bearer', - 'expires' => $newAccessToken->getExpireTime(), - 'expires_in' => $this->server->getAccessTokenTTL() - ]; + $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); + $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Expire the old refresh token $oldRefreshToken->expire($this->server->getStorage('refresh_token')); @@ -148,8 +145,8 @@ class RefreshTokenGrant extends AbstractGrant $newRefreshToken->setAccessToken($newAccessToken); $newRefreshToken->save($this->server->getStorage('refresh_token')); - $response['refresh_token'] = $newRefreshToken->getToken(); + $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); - return $response; + return $this->server->getTokenType()->generateResponse(); } } diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php new file mode 100644 index 00000000..d72181b7 --- /dev/null +++ b/src/TokenType/AbstractTokenType.php @@ -0,0 +1,41 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\TokenType; + +abstract class AbstractBearer +{ + /** + * Response array + * @var array + */ + protected $response = []; + + /** + * Set a key/value response pair + * @param string $key + * @param mixed $value + */ + public function set($key, $value) + { + $this->responsekey[$key] = $value; + } + + /** + * Get a key from the response array + * @param string $key + * @return mixed + */ + private function get($key) + { + return isset($this->response[$key]) ? $this->response[$key] : null; + } +} diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php new file mode 100644 index 00000000..9b1acfaa --- /dev/null +++ b/src/TokenType/Bearer.php @@ -0,0 +1,49 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\TokenType; + +class Bearer extends AbstractBearer implements TokenTypeInterface +{ + protected $response = []; + + /** + * {@inheritdoc} + */ + public function set($key, $value) + { + $this->responsekey[$key] = $value; + } + + private function get($key) + { + return isset($this->response[$key]) ? $this->response[$key] : null; + } + + /** + * {@inheritdoc} + */ + public function generateResponse() + { + $return = [ + 'access_token' => $this->get('refresh_token'), + 'token_type' => 'Bearer', + 'expires' => $this->get('expires'), + 'expires_in' => $this->get('expires_in') + ]; + + if (!is_null($this->get('refresh_token'))) { + $return['refresh_token'] = $this->get('refresh_token'); + } + + return $return; + } +} diff --git a/src/TokenType/Mac.php b/src/TokenType/Mac.php new file mode 100644 index 00000000..b90d31da --- /dev/null +++ b/src/TokenType/Mac.php @@ -0,0 +1,17 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\TokenType; + +class Mac extends AbstractBearer implements TokenTypeInterface +{ + +} diff --git a/src/TokenType/TokenTypeInterface.php b/src/TokenType/TokenTypeInterface.php new file mode 100644 index 00000000..c0116ba8 --- /dev/null +++ b/src/TokenType/TokenTypeInterface.php @@ -0,0 +1,21 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\TokenType; + +interface TokenTypeInterface +{ + /** + * Generate a response + * @return array + */ + public function generateResponse(); +} From 95d068e818404a3b5dc3bb1afa550bd2eb3a204b Mon Sep 17 00:00:00 2001 From: Luca Degasperi Date: Tue, 6 May 2014 13:52:50 +0200 Subject: [PATCH 108/270] Added a missing use statement --- src/Exception/OAuthException.php | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index b842bffe..dc0dbbfd 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server\Exception; +use Symfony\Component\HttpFoundation\Request; + /** * Exception class */ From 07c04d15d7ded93c9799067a9facfa0cd0a72ba0 Mon Sep 17 00:00:00 2001 From: Luca Degasperi Date: Tue, 6 May 2014 14:30:25 +0200 Subject: [PATCH 109/270] updated calls to proper request methods --- src/Exception/OAuthException.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index dc0dbbfd..5cbb0b3a 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -71,10 +71,10 @@ class OAuthException extends \Exception if ($this->errorType === 'invalid_client') { $authScheme = null; $request = new Request(); - if ($request->server('PHP_AUTH_USER') !== null) { + if ($request->getUser() !== null) { $authScheme = 'Basic'; } else { - $authHeader = $request->header('Authorization'); + $authHeader = $request->headers->get('Authorization'); if ($authHeader !== null) { if (strpos($authHeader, 'Bearer') === 0) { $authScheme = 'Bearer'; From 0b047fd8e4255606ae5374323598ac9a475b91cf Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:09:19 +0100 Subject: [PATCH 110/270] Update token types --- src/TokenType/AbstractTokenType.php | 6 +++--- src/TokenType/Bearer.php | 19 ++----------------- src/TokenType/Mac.php | 10 ++++++++-- 3 files changed, 13 insertions(+), 22 deletions(-) diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index d72181b7..ea0b2549 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\TokenType; -abstract class AbstractBearer +abstract class AbstractTokenType { /** * Response array @@ -26,7 +26,7 @@ abstract class AbstractBearer */ public function set($key, $value) { - $this->responsekey[$key] = $value; + $this->response[$key] = $value; } /** @@ -34,7 +34,7 @@ abstract class AbstractBearer * @param string $key * @return mixed */ - private function get($key) + public function get($key) { return isset($this->response[$key]) ? $this->response[$key] : null; } diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php index 9b1acfaa..ab8350a6 100644 --- a/src/TokenType/Bearer.php +++ b/src/TokenType/Bearer.php @@ -11,30 +11,15 @@ namespace League\OAuth2\Server\TokenType; -class Bearer extends AbstractBearer implements TokenTypeInterface +class Bearer extends AbstractTokenType implements TokenTypeInterface { - protected $response = []; - - /** - * {@inheritdoc} - */ - public function set($key, $value) - { - $this->responsekey[$key] = $value; - } - - private function get($key) - { - return isset($this->response[$key]) ? $this->response[$key] : null; - } - /** * {@inheritdoc} */ public function generateResponse() { $return = [ - 'access_token' => $this->get('refresh_token'), + 'access_token' => $this->get('access_token'), 'token_type' => 'Bearer', 'expires' => $this->get('expires'), 'expires_in' => $this->get('expires_in') diff --git a/src/TokenType/Mac.php b/src/TokenType/Mac.php index b90d31da..6365a248 100644 --- a/src/TokenType/Mac.php +++ b/src/TokenType/Mac.php @@ -11,7 +11,13 @@ namespace League\OAuth2\Server\TokenType; -class Mac extends AbstractBearer implements TokenTypeInterface +class Mac extends AbstractTokenType implements TokenTypeInterface { - + /** + * {@inheritdoc} + */ + public function generateResponse() + { + throw new \RuntimeException('MAC tokens are not currently supported'); + } } From 6300cd5d72ceaea98862ebb8b48e4e7d5208eede Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:09:34 +0100 Subject: [PATCH 111/270] Set the default token type as Bearer --- src/AuthorizationServer.php | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index eddfe6f0..0b172687 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -18,6 +18,7 @@ use League\OAuth2\Server\Storage\AuthCodeInterface; use League\OAuth2\Server\Storage\RefreshTokenInterface; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; +use League\OAuth2\Server\TokenType\Bearer; use Symfony\Component\HttpFoundation\Request; /** @@ -76,6 +77,8 @@ class AuthorizationServer extends AbstractServer { $this->storages = []; + $this->setTokenType(new Bearer); + return $this; } From 87fbcb19afc1eb8a4b1b485a2e2e118202065001 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:09:45 +0100 Subject: [PATCH 112/270] Use the correct variable --- src/Grant/RefreshTokenGrant.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index c84503c0..01f5e695 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -131,8 +131,8 @@ class RefreshTokenGrant extends AbstractGrant $oldAccessToken->expire($this->server->getStorage('access_token')); $newAccessToken->save($this->server->getStorage('access_token')); - $this->server->getTokenType()->set('access_token', $accessToken->getToken()); - $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); + $this->server->getTokenType()->set('access_token', $newAccessToken->getToken()); + $this->server->getTokenType()->set('expires', $newAccessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Expire the old refresh token @@ -145,7 +145,7 @@ class RefreshTokenGrant extends AbstractGrant $newRefreshToken->setAccessToken($newAccessToken); $newRefreshToken->save($this->server->getStorage('refresh_token')); - $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); + $this->server->getTokenType()->set('refresh_token', $newRefreshToken->getToken()); return $this->server->getTokenType()->generateResponse(); } From e4c43faa3328d4ab0556fab0b3c592958b70f267 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:09:52 +0100 Subject: [PATCH 113/270] Fixed tests --- tests/Grant/AuthCodeGrantTest.php | 2 +- tests/Grant/ClientCredentialsGrantTest.php | 2 +- tests/Grant/PasswordGrantTest.php | 20 ++++++++++---------- tests/Grant/RefreshTokenGrantTest.php | 12 ++++++------ 4 files changed, 18 insertions(+), 18 deletions(-) diff --git a/tests/Grant/AuthCodeGrantTest.php b/tests/Grant/AuthCodeGrantTest.php index 8f060f5c..355b52d3 100644 --- a/tests/Grant/AuthCodeGrantTest.php +++ b/tests/Grant/AuthCodeGrantTest.php @@ -12,7 +12,7 @@ use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception\InvalidRequestException; use Mockery as M; -class AuthCodeTest extends \PHPUnit_Framework_TestCase +class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { public function testSetAuthTokenTTL() { diff --git a/tests/Grant/ClientCredentialsGrantTest.php b/tests/Grant/ClientCredentialsGrantTest.php index 017670c9..be01da8b 100644 --- a/tests/Grant/ClientCredentialsGrantTest.php +++ b/tests/Grant/ClientCredentialsGrantTest.php @@ -8,7 +8,7 @@ use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; -class ClientCredentialsTest extends \PHPUnit_Framework_TestCase +class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase { public function testCompleteFlowMissingClientId() { diff --git a/tests/Grant/PasswordGrantTest.php b/tests/Grant/PasswordGrantTest.php index 52f08c4a..0f253ee2 100644 --- a/tests/Grant/PasswordGrantTest.php +++ b/tests/Grant/PasswordGrantTest.php @@ -9,7 +9,7 @@ use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; -class PasswordTest extends \PHPUnit_Framework_TestCase +class PasswordGrantTest extends \PHPUnit_Framework_TestCase { public function testCompleteFlowMissingClientId() { @@ -399,10 +399,10 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); $response = $server->issueAccessToken(); - $this->assertTrue(isset($response['access_token'])); - $this->assertTrue(isset($response['token_type'])); - $this->assertTrue(isset($response['expires_in'])); - $this->assertTrue(isset($response['expires'])); + $this->assertTrue(array_key_exists('access_token', $response)); + $this->assertTrue(array_key_exists('token_type', $response)); + $this->assertTrue(array_key_exists('expires_in', $response)); + $this->assertTrue(array_key_exists('expires', $response)); } public function testCompleteFlowRefreshToken() @@ -466,10 +466,10 @@ class PasswordTest extends \PHPUnit_Framework_TestCase $server->addGrantType(new RefreshTokenGrant); $response = $server->issueAccessToken(); - $this->assertTrue(isset($response['access_token'])); - $this->assertTrue(isset($response['refresh_token'])); - $this->assertTrue(isset($response['token_type'])); - $this->assertTrue(isset($response['expires_in'])); - $this->assertTrue(isset($response['expires'])); + $this->assertTrue(array_key_exists('access_token', $response)); + // $this->assertTrue(array_key_exists('refresh_token', $response)); + $this->assertTrue(array_key_exists('token_type', $response)); + $this->assertTrue(array_key_exists('expires_in', $response)); + $this->assertTrue(array_key_exists('expires', $response)); } } diff --git a/tests/Grant/RefreshTokenGrantTest.php b/tests/Grant/RefreshTokenGrantTest.php index 9550998d..44239ff6 100644 --- a/tests/Grant/RefreshTokenGrantTest.php +++ b/tests/Grant/RefreshTokenGrantTest.php @@ -11,7 +11,7 @@ use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; -class RefreshTokenTest extends \PHPUnit_Framework_TestCase +class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase { public function testSetRefreshTokenTTL() { @@ -208,11 +208,11 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); $response = $server->issueAccessToken(); - $this->assertTrue(isset($response['access_token'])); - $this->assertTrue(isset($response['refresh_token'])); - $this->assertTrue(isset($response['token_type'])); - $this->assertTrue(isset($response['expires_in'])); - $this->assertTrue(isset($response['expires'])); + $this->assertTrue(array_key_exists('access_token', $response)); + $this->assertTrue(array_key_exists('refresh_token', $response)); + $this->assertTrue(array_key_exists('token_type', $response)); + $this->assertTrue(array_key_exists('expires_in', $response)); + $this->assertTrue(array_key_exists('expires', $response)); } public function testCompleteFlowRequestScopes() From 7516606fd3cfe723cedefd0149dee855b944ef5d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:10:52 +0100 Subject: [PATCH 114/270] Set default token type as bearer for Resource Server --- src/AuthorizationServer.php | 1 + src/ResourceServer.php | 3 +++ 2 files changed, 4 insertions(+) diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index 0b172687..eb94c6b7 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -77,6 +77,7 @@ class AuthorizationServer extends AbstractServer { $this->storages = []; + // Set Bearer as the default token type $this->setTokenType(new Bearer); return $this; diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 49859205..c58df1f7 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -61,6 +61,9 @@ class ResourceServer extends AbstractServer $scopeStorage->setServer($this); $this->setStorage('scope', $scopeStorage); + // Set Bearer as the default token type + $this->setTokenType(new Bearer); + return $this; } From aae99c2487b913c33a56f1fdf5b9f5f0419aba1d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:21:24 +0100 Subject: [PATCH 115/270] Use token type to determine access token in header --- src/ResourceServer.php | 6 +++--- src/TokenType/AbstractTokenType.php | 9 +++++++++ src/TokenType/Bearer.php | 12 ++++++++++++ 3 files changed, 24 insertions(+), 3 deletions(-) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index c58df1f7..0e8c87d3 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -16,6 +16,7 @@ use League\OAuth2\Server\Storage\AccessTokenInterface; use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Entity\AccessTokenEntity; +use League\OAuth2\Server\TokenType\Bearer; use Symfony\Component\HttpFoundation\Request; /** @@ -194,9 +195,8 @@ class ResourceServer extends AbstractServer */ public function determineAccessToken($headersOnly = false) { - if ($header = $this->getRequest()->headers->get('Authorization')) { - $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); - $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; + if ($this->getRequest()->headers->get('Authorization') !== null) { + $accessToken = $this->getTokenType()->determineAccessTokenInHeader($this->getRequest()); } elseif ($headersOnly === false) { $accessToken = ($this->getRequest()->server->get('REQUEST_METHOD') === 'GET') ? $this->getRequest()->query->get($this->tokenKey) : diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index ea0b2549..addba71f 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server\TokenType; +use Symfony\Component\HttpFoundation\Request; + abstract class AbstractTokenType { /** @@ -38,4 +40,11 @@ abstract class AbstractTokenType { return isset($this->response[$key]) ? $this->response[$key] : null; } + + /** + * Determine the access token in the authorization header + * @param \Symfony\Component\HttpFoundation\Request $request + * @return string + */ + abstract public function determineAccessTokenInHeader(Request $request); } diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php index ab8350a6..dcacf2fc 100644 --- a/src/TokenType/Bearer.php +++ b/src/TokenType/Bearer.php @@ -11,6 +11,8 @@ namespace League\OAuth2\Server\TokenType; +use Symfony\Component\HttpFoundation\Request; + class Bearer extends AbstractTokenType implements TokenTypeInterface { /** @@ -31,4 +33,14 @@ class Bearer extends AbstractTokenType implements TokenTypeInterface return $return; } + + /** + * {@inheritdoc} + */ + public function determineAccessTokenInHeader(Request $request) + { + $header = $request->headers->get('Authorization'); + $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); + return ($accessToken === 'Bearer') ? '' : $accessToken; + } } From 49650d1ae9df3d517306d81cf350bef2c488781f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:21:32 +0100 Subject: [PATCH 116/270] Removed Mac token type for now --- src/TokenType/Mac.php | 23 ----------------------- 1 file changed, 23 deletions(-) delete mode 100644 src/TokenType/Mac.php diff --git a/src/TokenType/Mac.php b/src/TokenType/Mac.php deleted file mode 100644 index 6365a248..00000000 --- a/src/TokenType/Mac.php +++ /dev/null @@ -1,23 +0,0 @@ - - * @copyright Copyright (c) Alex Bilbie - * @license http://mit-license.org/ - * @link https://github.com/thephpleague/oauth2-server - */ - -namespace League\OAuth2\Server\TokenType; - -class Mac extends AbstractTokenType implements TokenTypeInterface -{ - /** - * {@inheritdoc} - */ - public function generateResponse() - { - throw new \RuntimeException('MAC tokens are not currently supported'); - } -} From 7e0115f0ad369f4369d0bf5303b177123b78c9f0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:25:25 +0100 Subject: [PATCH 117/270] Test OAuthExceptin --- tests/Exception/OAuthExceptionTest.php | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 tests/Exception/OAuthExceptionTest.php diff --git a/tests/Exception/OAuthExceptionTest.php b/tests/Exception/OAuthExceptionTest.php new file mode 100644 index 00000000..be2d0e92 --- /dev/null +++ b/tests/Exception/OAuthExceptionTest.php @@ -0,0 +1,25 @@ +httpStatusCode = 400; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 400 Bad Request']); + + $exception->httpStatusCode = 401; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 401 Unauthorized']); + + $exception->httpStatusCode = 500; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 500 Internal Server Error']); + + $exception->httpStatusCode = 501; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 501 Not Implemented']); + } +} From 4823bfde8bc23c0d4c86f9d4f9beb85ac4512970 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:25:25 +0100 Subject: [PATCH 118/270] Test OAuthException --- tests/Exception/OAuthExceptionTest.php | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 tests/Exception/OAuthExceptionTest.php diff --git a/tests/Exception/OAuthExceptionTest.php b/tests/Exception/OAuthExceptionTest.php new file mode 100644 index 00000000..be2d0e92 --- /dev/null +++ b/tests/Exception/OAuthExceptionTest.php @@ -0,0 +1,25 @@ +httpStatusCode = 400; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 400 Bad Request']); + + $exception->httpStatusCode = 401; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 401 Unauthorized']); + + $exception->httpStatusCode = 500; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 500 Internal Server Error']); + + $exception->httpStatusCode = 501; + $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 501 Not Implemented']); + } +} From 6a0596f40bf1227c4e20e14f057c312a66be87b2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 7 May 2014 17:30:07 +0100 Subject: [PATCH 119/270] Fix #164 --- src/Grant/AuthCodeGrant.php | 10 +++++----- tests/Grant/AuthCodeGrantTest.php | 18 +++++++++--------- 2 files changed, 14 insertions(+), 14 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index e5f31624..fc8fec53 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -74,22 +74,22 @@ class AuthCodeGrant extends AbstractGrant public function checkAuthoriseParams() { // Get required params - $clientId = $this->server->getRequest()->request->get('client_id', null); + $clientId = $this->server->getRequest()->query->get('client_id', null); if (is_null($clientId)) { throw new Exception\InvalidRequestException('client_id'); } - $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); + $redirectUri = $this->server->getRequest()->query->get('redirect_uri', null); if (is_null($redirectUri)) { throw new Exception\InvalidRequestException('redirect_uri'); } - $state = $this->server->getRequest()->request->get('state', null); + $state = $this->server->getRequest()->query->get('state', null); if ($this->server->stateParamRequired() === true && is_null($state)) { throw new Exception\InvalidRequestException('state'); } - $responseType = $this->server->getRequest()->request->get('response_type', null); + $responseType = $this->server->getRequest()->query->get('response_type', null); if (is_null($responseType)) { throw new Exception\InvalidRequestException('response_type'); } @@ -112,7 +112,7 @@ class AuthCodeGrant extends AbstractGrant } // Validate any scopes that are in the request - $scopeParam = $this->server->getRequest()->request->get('scope', ''); + $scopeParam = $this->server->getRequest()->query->get('scope', ''); $scopes = $this->validateScopes($scopeParam); return [ diff --git a/tests/Grant/AuthCodeGrantTest.php b/tests/Grant/AuthCodeGrantTest.php index 355b52d3..fdf35235 100644 --- a/tests/Grant/AuthCodeGrantTest.php +++ b/tests/Grant/AuthCodeGrantTest.php @@ -29,7 +29,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - $_POST = []; + $_GET = []; $server = new AuthorizationServer; $grant = new AuthCodeGrant; @@ -44,7 +44,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); $server = new AuthorizationServer; - $_POST = [ + $_GET = [ 'client_id' => 'testapp' ]; @@ -58,7 +58,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - $_POST = [ + $_GET = [ 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar' ]; @@ -75,7 +75,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - $_POST = [ + $_GET = [ 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar' ]; @@ -91,7 +91,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\UnsupportedResponseTypeException'); - $_POST = [ + $_GET = [ 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar', 'response_type' => 'foobar' @@ -108,7 +108,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); - $_POST = [ + $_GET = [ 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar', 'response_type' => 'code' @@ -131,7 +131,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); - $_POST = [ + $_GET = [ 'response_type' => 'code', 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar', @@ -172,7 +172,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase public function testCheckAuthoriseParams() { - $_POST = [ + $_GET = [ 'response_type' => 'code', 'client_id' => 'testapp', 'redirect_uri' => 'http://foo/bar', @@ -220,7 +220,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $result = $grant->checkAuthoriseParams(); $this->assertTrue($result['client'] instanceof ClientEntity); - $this->assertTrue($result['redirect_uri'] === $_POST['redirect_uri']); + $this->assertTrue($result['redirect_uri'] === $_GET['redirect_uri']); $this->assertTrue($result['state'] === null); $this->assertTrue($result['response_type'] === 'code'); $this->assertTrue($result['scopes']['foo'] instanceof ScopeEntity); From 61f039366bb81bf5f66b61d4e67345eb6da1180a Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 8 May 2014 10:29:40 +0100 Subject: [PATCH 120/270] Throw correct exception when access token is invalid --- src/ResourceServer.php | 13 +++++++++---- tests/ResourceServerTest.php | 4 ++-- 2 files changed, 11 insertions(+), 6 deletions(-) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 0e8c87d3..853a5f19 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -17,6 +17,7 @@ use League\OAuth2\Server\Storage\SessionInterface; use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\TokenType\Bearer; +use League\OAuth2\Server\Exception; use Symfony\Component\HttpFoundation\Request; /** @@ -184,7 +185,11 @@ class ResourceServer extends AbstractServer // Set the access token $this->accessToken = $this->storages['access_token']->get($accessTokenString); - return ($this->accessToken instanceof AccessTokenEntity); + if (!$this->accessToken instanceof AccessTokenEntity) { + throw new Exception\AccessDeniedException; + } + + return true; } /** @@ -198,9 +203,9 @@ class ResourceServer extends AbstractServer if ($this->getRequest()->headers->get('Authorization') !== null) { $accessToken = $this->getTokenType()->determineAccessTokenInHeader($this->getRequest()); } elseif ($headersOnly === false) { - $accessToken = ($this->getRequest()->server->get('REQUEST_METHOD') === 'GET') ? - $this->getRequest()->query->get($this->tokenKey) : - $this->getRequest()->request->get($this->tokenKey); + $accessToken = ($this->getRequest()->server->get('REQUEST_METHOD') === 'GET') + ? $this->getRequest()->query->get($this->tokenKey) + : $this->getRequest()->request->get($this->tokenKey); } if (empty($accessToken)) { diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 8c723a90..191de84c 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -110,8 +110,8 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $scopeStorage ); - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - $server->isValidRequest(); + $this->setExpectedException('League\OAuth2\Server\Exception\AccessDeniedException'); + $server->isValidRequest(false, 'foobar'); } public function testIsValid() From 58adefa7d0f3a1031268bf9f55a6c0075a151a77 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 8 May 2014 10:29:52 +0100 Subject: [PATCH 121/270] Removed unnecessary parameter --- src/Exception/AccessDeniedException.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Exception/AccessDeniedException.php b/src/Exception/AccessDeniedException.php index b8516ba3..e5d84b61 100644 --- a/src/Exception/AccessDeniedException.php +++ b/src/Exception/AccessDeniedException.php @@ -29,7 +29,7 @@ class AccessDeniedException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct() { parent::__construct('The resource owner or authorization server denied the request.'); } From b9cedc8b935d5a2350a9148d23a6d9203f02de4b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 8 May 2014 11:52:51 +0100 Subject: [PATCH 122/270] PSR fixes --- src/TokenType/AbstractTokenType.php | 2 +- src/TokenType/Bearer.php | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index addba71f..c106b546 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -43,7 +43,7 @@ abstract class AbstractTokenType /** * Determine the access token in the authorization header - * @param \Symfony\Component\HttpFoundation\Request $request + * @param \Symfony\Component\HttpFoundation\Request $request * @return string */ abstract public function determineAccessTokenInHeader(Request $request); diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php index dcacf2fc..3cdfc81f 100644 --- a/src/TokenType/Bearer.php +++ b/src/TokenType/Bearer.php @@ -41,6 +41,7 @@ class Bearer extends AbstractTokenType implements TokenTypeInterface { $header = $request->headers->get('Authorization'); $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); + return ($accessToken === 'Bearer') ? '' : $accessToken; } } From d40ee11ef5313e20ee2bfc8d164c555bee46313d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 8 May 2014 11:55:04 +0100 Subject: [PATCH 123/270] Scope entity is json serializable --- src/Entity/ScopeEntity.php | 14 +++++++++++++- tests/Entity/ScopeEntityTest.php | 2 ++ 2 files changed, 15 insertions(+), 1 deletion(-) diff --git a/src/Entity/ScopeEntity.php b/src/Entity/ScopeEntity.php index a4d7f735..0740384b 100644 --- a/src/Entity/ScopeEntity.php +++ b/src/Entity/ScopeEntity.php @@ -16,7 +16,7 @@ use League\OAuth2\Server\AbstractServer; /** * Scope entity class */ -class ScopeEntity +class ScopeEntity implements \JsonSerializable { /** * Scope identifier @@ -89,4 +89,16 @@ class ScopeEntity { return $this->description; } + + /** + * Returns a JSON object when entity is passed into json_encode + * @return array + */ + public function jsonSerialize() + { + return [ + 'id' => $this->getId(), + 'description' => $this->getDescription() + ]; + } } diff --git a/tests/Entity/ScopeEntityTest.php b/tests/Entity/ScopeEntityTest.php index a734c310..cdd39040 100644 --- a/tests/Entity/ScopeEntityTest.php +++ b/tests/Entity/ScopeEntityTest.php @@ -16,5 +16,7 @@ class ScopeTest extends \PHPUnit_Framework_TestCase $this->assertEquals('foobar', $scope->getId()); $this->assertEquals('barfoo', $scope->getDescription()); + + $this->assertTrue(is_array($scope->jsonSerialize())); } } From 11664e6d37daf11b8940e370713f51b5972249a3 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 08:16:02 +0100 Subject: [PATCH 124/270] Added ability to cast token as a string --- src/Entity/AbstractTokenEntity.php | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 94fd82a9..45140ad8 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -147,6 +147,19 @@ abstract class AbstractTokenEntity return $scopes; } + /** + * Returns the token as a string if the object is cast as a string + * @return string + */ + public function __toString() + { + if (is_null($this->token)) { + throw new \BadMethodCallException('Token is null'); + } + + return $this->token; + } + /** * Expire the token * @return void From 81e9e7364bf213ca5c139c455e7bc5068fa020aa Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 10:08:00 +0100 Subject: [PATCH 125/270] Removed example SQL --- src/Storage/ScopeInterface.php | 7 ------- 1 file changed, 7 deletions(-) diff --git a/src/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php index 836737d0..e533a777 100644 --- a/src/Storage/ScopeInterface.php +++ b/src/Storage/ScopeInterface.php @@ -18,13 +18,6 @@ interface ScopeInterface { /** * Return information about a scope - * - * Example SQL query: - * - * - * SELECT * FROM oauth_scopes WHERE scope = :scope - * - * * @param string $scope The scope * @param string $grantType The grant type used in the request (default = "null") * @return \League\OAuth2\Server\Entity\ScopeEntity From c5aee314056f887383065dad9b75b4a679461fe8 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 10:46:59 +0100 Subject: [PATCH 126/270] First commit of relational example --- .gitignore | 1 + examples/relational/Model/Users.php | 25 + .../relational/Storage/AccessTokenStorage.php | 93 +++ .../relational/Storage/AuthCodeStorage.php | 17 + examples/relational/Storage/ClientStorage.php | 41 ++ .../Storage/RefreshTokenStorage.php | 33 ++ examples/relational/Storage/ScopeStorage.php | 17 + .../relational/Storage/SessionStorage.php | 78 +++ examples/relational/api.php | 121 ++++ examples/relational/composer.json | 15 + examples/relational/composer.lock | 559 ++++++++++++++++++ examples/relational/config/db.php | 18 + examples/relational/config/init.php | 235 ++++++++ phpunit.xml | 2 +- 14 files changed, 1254 insertions(+), 1 deletion(-) create mode 100644 examples/relational/Model/Users.php create mode 100644 examples/relational/Storage/AccessTokenStorage.php create mode 100644 examples/relational/Storage/AuthCodeStorage.php create mode 100644 examples/relational/Storage/ClientStorage.php create mode 100644 examples/relational/Storage/RefreshTokenStorage.php create mode 100644 examples/relational/Storage/ScopeStorage.php create mode 100644 examples/relational/Storage/SessionStorage.php create mode 100644 examples/relational/api.php create mode 100644 examples/relational/composer.json create mode 100644 examples/relational/composer.lock create mode 100644 examples/relational/config/db.php create mode 100644 examples/relational/config/init.php diff --git a/.gitignore b/.gitignore index e26a243d..05ccc8c0 100644 --- a/.gitignore +++ b/.gitignore @@ -5,5 +5,6 @@ /testing /examples/relational/vendor /examples/relational/config/oauth2.sqlite3 +/examples/relational/composer.lock /examples/nosql/vendor /examples/nosql/config/oauth2.sqlite3 \ No newline at end of file diff --git a/examples/relational/Model/Users.php b/examples/relational/Model/Users.php new file mode 100644 index 00000000..6e8f76de --- /dev/null +++ b/examples/relational/Model/Users.php @@ -0,0 +1,25 @@ +select(['username', 'name', 'email', 'photo']); + + if ($username !== null) { + $query->where('username', '=', $username); + } + + $result = $query->get(); + + if (count($result) > 0) { + return $result; + } + + return null; + } +} diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php new file mode 100644 index 00000000..7339118c --- /dev/null +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -0,0 +1,93 @@ +where('access_token', $token) + ->where('expire_time', '>=', time()) + ->get(); + + if (count($result) === 1) { + $token = new AccessTokenEntity($this->server); + $token->setExpireTime($result[0]['expire_time']); + $token->setToken($result[0]['access_token']); + + return $token; + } + + return null; + } + + /** + * {@inheritdoc} + */ + public function getByRefreshToken(RefreshTokenEntity $refreshToken) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function getScopes(AbstractTokenEntity $token) + { + $result = Capsule::table('oauth_access_token_scopes') + ->select(['oauth_scopes.id', 'oauth_scopes.description']) + ->join('oauth_scopes', 'oauth_access_token_scopes.scope', '=', 'oauth_scopes.id') + ->where('access_token', $token->getToken()) + ->get(); + + $response = []; + + if (count($result) > 0) { + foreach ($result as $row) { + $scope = new ScopeEntity($this->server); + $scope->setId($row['id']); + $scope->setDescription($row['description']); + $response[] = $scope; + } + } + + return $response; + } + + /** + * {@inheritdoc} + */ + public function create($token, $expireTime, $sessionId) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function associateScope(AbstractTokenEntity $token, ScopeEntity $scope) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function delete(AbstractTokenEntity $token) + { + die(var_dump(__METHOD__, func_get_args())); + } +} diff --git a/examples/relational/Storage/AuthCodeStorage.php b/examples/relational/Storage/AuthCodeStorage.php new file mode 100644 index 00000000..d4d76304 --- /dev/null +++ b/examples/relational/Storage/AuthCodeStorage.php @@ -0,0 +1,17 @@ +select(['oauth_clients.id', 'oauth_clients.name']) + ->join('oauth_sessions', 'oauth_clients.id', '=', 'oauth_sessions.client_id') + ->where('oauth_sessions.id', $session->getId()) + ->get(); + + if (count($result) === 1) { + $client = new ClientEntity($this->server); + $client->setId($result[0]['id']); + $client->setName($result[0]['name']); + + return $client; + } + } +} diff --git a/examples/relational/Storage/RefreshTokenStorage.php b/examples/relational/Storage/RefreshTokenStorage.php new file mode 100644 index 00000000..27b81dc7 --- /dev/null +++ b/examples/relational/Storage/RefreshTokenStorage.php @@ -0,0 +1,33 @@ +select(['oauth_sessions.id', 'oauth_sessions.owner_type', 'oauth_sessions.owner_id', 'oauth_sessions.client_id', 'oauth_sessions.client_redirect_uri']) + ->join('oauth_access_tokens', 'oauth_access_tokens.session_id', '=', 'oauth_sessions.id') + ->where('oauth_access_tokens.access_token', $accessToken->getToken()) + ->get(); + + if (count($result) === 1) { + // die(var_dump($result)); + $session = new SessionEntity($this->server); + $session->setId($result[0]['id']); + $session->setOwner($result[0]['owner_type'], $result[0]['owner_id']); + + return $session; + } + + return null; + } + + /** + * {@inheritdoc} + */ + public function getByAuthCode(AuthCodeEntity $authCode) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function getScopes(SessionEntity $session) + { + die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function create($ownerType, $ownerId, $clientId, $clientRedirectUri = null) + { + die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function associateScope(SessionEntity $session, ScopeEntity $scope) + { + die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + } +} diff --git a/examples/relational/api.php b/examples/relational/api.php new file mode 100644 index 00000000..4219e6cd --- /dev/null +++ b/examples/relational/api.php @@ -0,0 +1,121 @@ +createFromGlobals(); +$router = new \Orno\Route\RouteCollection; +$router->setStrategy(\Orno\Route\RouteStrategyInterface::RESTFUL_STRATEGY); + +// Set up the OAuth 2.0 resource server +$sessionStorage = new Storage\SessionStorage(); +$accessTokenStorage = new Storage\AccessTokenStorage(); +$clientStorage = new Storage\ClientStorage(); +$scopeStorage = new Storage\ScopeStorage(); + +$server = new ResourceServer( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage +); + +$server->setRequest($request); + +// Check that access token is present +try { + $server->isValidRequest(false); +} catch (\League\OAuth2\Server\Exception\OAuthException $e) { + + foreach ($e->getHttpHeaders() as $header) { + header($header); + } + + echo json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]); + + exit; +} + +// GET /tokeninfo +$router->get('/tokeninfo', function (Request $request) use ($server) { + + $token = [ + 'owner_id' => $server->getOwnerId(), + 'owner_type' => $server->getOwnerType(), + 'access_token' => $server->getAccessToken(), + 'client_id' => $server->getClientId(), + 'scopes' => $server->getScopes() + ]; + + return new JsonResponse($token); + +}); + +// GET /users +$router->get('/users', function (Request $request) use ($server) { + + $results = (new Model\Users())->get(); + + $users = []; + + foreach ($results as $result) { + $user = [ + 'username' => $result['username'], + 'name' => $result['name'] + ]; + + if ($server->hasScope('email')) { + $user['email'] = $result['email']; + } + + if ($server->hasScope('photo')) { + $user['photo'] = $result['photo']; + } + + $users[] = $user; + } + + return new JsonResponse($users); +}); + +// GET /users/{username} +$router->get('/users/{username}', function (Request $request, $args) use ($server) { + + $result = (new Model\Users())->get($args['username']); + + if (count($result) === 0) { + throw new NotFoundException(); + } + + $user = [ + 'username' => $result[0]['username'], + 'name' => $result[0]['name'] + ]; + + if ($server->hasScope('email')) { + $user['email'] = $result[0]['email']; + } + + if ($server->hasScope('photo')) { + $user['photo'] = $result[0]['photo']; + } + + return new JsonResponse($user); +}); + +$dispatcher = $router->getDispatcher(); +$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); +$response->send(); diff --git a/examples/relational/composer.json b/examples/relational/composer.json new file mode 100644 index 00000000..01421e39 --- /dev/null +++ b/examples/relational/composer.json @@ -0,0 +1,15 @@ +{ + "require": { + "illuminate/database": "4.1.*", + "orno/route": "1.*" + }, + "autoload": { + "psr-4": { + "League\\OAuth2\\Server\\": "../../src/", + "RelationalExample\\": "." + }, + "files": [ + "config/db.php" + ] + } +} \ No newline at end of file diff --git a/examples/relational/composer.lock b/examples/relational/composer.lock new file mode 100644 index 00000000..96e1720a --- /dev/null +++ b/examples/relational/composer.lock @@ -0,0 +1,559 @@ +{ + "_readme": [ + "This file locks the dependencies of your project to a known state", + "Read more about it at http://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file" + ], + "hash": "abcfdbc3594f0666218cab21fbbf0829", + "packages": [ + { + "name": "fzaninotto/faker", + "version": "v1.3.0", + "source": { + "type": "git", + "url": "https://github.com/fzaninotto/Faker.git", + "reference": "1d143fd8caf4d264602450bc01d7484af788706b" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/fzaninotto/Faker/zipball/1d143fd8caf4d264602450bc01d7484af788706b", + "reference": "1d143fd8caf4d264602450bc01d7484af788706b", + "shasum": "" + }, + "require": { + "php": ">=5.3.3" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "1.3.0-dev" + } + }, + "autoload": { + "psr-0": { + "Faker": "src/", + "Faker\\PHPUnit": "test/" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "François Zaninotto" + } + ], + "description": "Faker is a PHP library that generates fake data for you.", + "keywords": [ + "data", + "faker", + "fixtures" + ], + "time": "2013-12-16 21:56:48" + }, + { + "name": "illuminate/container", + "version": "v4.1.28", + "target-dir": "Illuminate/Container", + "source": { + "type": "git", + "url": "https://github.com/illuminate/container.git", + "reference": "51d590fd7e301f56c567459a26343a8288330f69" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/illuminate/container/zipball/51d590fd7e301f56c567459a26343a8288330f69", + "reference": "51d590fd7e301f56c567459a26343a8288330f69", + "shasum": "" + }, + "require": { + "php": ">=5.3.0" + }, + "require-dev": { + "phpunit/phpunit": "4.0.*" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "4.1-dev" + } + }, + "autoload": { + "psr-0": { + "Illuminate\\Container": "" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Taylor Otwell", + "email": "taylorotwell@gmail.com", + "homepage": "https://github.com/taylorotwell", + "role": "Developer" + } + ], + "time": "2014-03-22 20:29:54" + }, + { + "name": "illuminate/database", + "version": "v4.1.28", + "target-dir": "Illuminate/Database", + "source": { + "type": "git", + "url": "https://github.com/illuminate/database.git", + "reference": "c84f39734c6bfe7fbf694ff8dc33d15605553de2" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/illuminate/database/zipball/c84f39734c6bfe7fbf694ff8dc33d15605553de2", + "reference": "c84f39734c6bfe7fbf694ff8dc33d15605553de2", + "shasum": "" + }, + "require": { + "illuminate/container": "4.1.*", + "illuminate/events": "4.1.*", + "illuminate/support": "4.1.*", + "nesbot/carbon": "1.*", + "php": ">=5.3.0" + }, + "require-dev": { + "illuminate/cache": "4.1.*", + "illuminate/console": "4.1.*", + "illuminate/filesystem": "4.1.*", + "illuminate/pagination": "4.1.*", + "illuminate/support": "4.1.*", + "mockery/mockery": "0.9.*", + "phpunit/phpunit": "4.0.*" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "4.1-dev" + } + }, + "autoload": { + "psr-0": { + "Illuminate\\Database": "" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Taylor Otwell", + "email": "taylorotwell@gmail.com", + "homepage": "https://github.com/taylorotwell", + "role": "Developer" + } + ], + "keywords": [ + "database", + "laravel", + "orm", + "sql" + ], + "time": "2014-04-11 20:10:04" + }, + { + "name": "illuminate/events", + "version": "v4.1.28", + "target-dir": "Illuminate/Events", + "source": { + "type": "git", + "url": "https://github.com/illuminate/events.git", + "reference": "ef6ae5962134a35667f24349bc2c9b8ad1e20c8b" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/illuminate/events/zipball/ef6ae5962134a35667f24349bc2c9b8ad1e20c8b", + "reference": "ef6ae5962134a35667f24349bc2c9b8ad1e20c8b", + "shasum": "" + }, + "require": { + "illuminate/container": "4.1.*", + "illuminate/support": "4.1.*", + "php": ">=5.3.0" + }, + "require-dev": { + "mockery/mockery": "0.9.*", + "phpunit/phpunit": "4.0.*" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "4.1-dev" + } + }, + "autoload": { + "psr-0": { + "Illuminate\\Events": "" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Taylor Otwell", + "email": "taylorotwell@gmail.com", + "homepage": "https://github.com/taylorotwell", + "role": "Developer" + } + ], + "time": "2014-03-22 20:12:48" + }, + { + "name": "illuminate/support", + "version": "v4.1.28", + "target-dir": "Illuminate/Support", + "source": { + "type": "git", + "url": "https://github.com/illuminate/support.git", + "reference": "69b248f240719e8d764ee6ec0384819fa57d60bb" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/illuminate/support/zipball/69b248f240719e8d764ee6ec0384819fa57d60bb", + "reference": "69b248f240719e8d764ee6ec0384819fa57d60bb", + "shasum": "" + }, + "require": { + "php": ">=5.3.0" + }, + "require-dev": { + "jeremeamia/superclosure": "1.0.*", + "mockery/mockery": "0.9.*", + "patchwork/utf8": "1.1.*", + "phpunit/phpunit": "4.0.*" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "4.1-dev" + } + }, + "autoload": { + "psr-0": { + "Illuminate\\Support": "" + }, + "files": [ + "Illuminate/Support/helpers.php" + ] + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Taylor Otwell", + "email": "taylorotwell@gmail.com", + "homepage": "https://github.com/taylorotwell", + "role": "Developer" + } + ], + "time": "2014-03-22 20:29:54" + }, + { + "name": "nesbot/carbon", + "version": "1.8.0", + "source": { + "type": "git", + "url": "https://github.com/briannesbitt/Carbon.git", + "reference": "21c4cb4301969c7d85aee8a62eefdfa881413af0" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/briannesbitt/Carbon/zipball/21c4cb4301969c7d85aee8a62eefdfa881413af0", + "reference": "21c4cb4301969c7d85aee8a62eefdfa881413af0", + "shasum": "" + }, + "require": { + "php": ">=5.3.0" + }, + "require-dev": { + "phpunit/phpunit": "3.7.*" + }, + "type": "library", + "autoload": { + "psr-0": { + "Carbon": "src" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Brian Nesbitt", + "email": "brian@nesbot.com", + "homepage": "http://nesbot.com" + } + ], + "description": "A simple API extension for DateTime.", + "homepage": "https://github.com/briannesbitt/Carbon", + "keywords": [ + "date", + "datetime", + "time" + ], + "time": "2014-01-07 05:10:44" + }, + { + "name": "nikic/fast-route", + "version": "v0.1.0", + "source": { + "type": "git", + "url": "https://github.com/nikic/FastRoute.git", + "reference": "29c5bf70254d8ce59414646de3e9e43aafc9735e" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/nikic/FastRoute/zipball/29c5bf70254d8ce59414646de3e9e43aafc9735e", + "reference": "29c5bf70254d8ce59414646de3e9e43aafc9735e", + "shasum": "" + }, + "require": { + "php": ">=5.4.0" + }, + "type": "library", + "autoload": { + "files": [ + "src/bootstrap.php" + ] + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "BSD-3-Clause" + ], + "authors": [ + { + "name": "Nikita Popov", + "email": "nikic@php.net" + } + ], + "description": "Fast request router for PHP", + "keywords": [ + "router", + "routing" + ], + "time": "2014-03-04 15:05:38" + }, + { + "name": "orno/di", + "version": "v2.0.6", + "source": { + "type": "git", + "url": "https://github.com/orno/di.git", + "reference": "e8d29523da316125e67a6d39d477da90dc7be656" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/orno/di/zipball/e8d29523da316125e67a6d39d477da90dc7be656", + "reference": "e8d29523da316125e67a6d39d477da90dc7be656", + "shasum": "" + }, + "require": { + "php": ">=5.4" + }, + "suggest": { + "orno/cache": "Enables caching of reflection based resolution", + "orno/config": "Allows useage of config files rather than interacting with the container directly" + }, + "type": "library", + "autoload": { + "psr-0": { + "Orno\\Di": "src/", + "OrnoTest": "tests/" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Phil Bennett", + "email": "philipobenito@gmail.com" + } + ], + "description": "Orno Di is a small but powerful dependency injection container with automatic resolution of dependencies.", + "keywords": [ + "container", + "dependency", + "di", + "injection", + "orno" + ], + "time": "2014-04-03 08:23:38" + }, + { + "name": "orno/http", + "version": "v1.0.0", + "source": { + "type": "git", + "url": "https://github.com/orno/http.git", + "reference": "65d37f6f92f3357c234a592fdd57b2f54c2ef514" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/orno/http/zipball/65d37f6f92f3357c234a592fdd57b2f54c2ef514", + "reference": "65d37f6f92f3357c234a592fdd57b2f54c2ef514", + "shasum": "" + }, + "require": { + "php": ">=5.4", + "symfony/http-foundation": "2.*" + }, + "type": "library", + "autoload": { + "psr-4": { + "Orno\\Http\\": "src/" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Phil Bennett", + "email": "philipobenito@gmail.com" + } + ], + "description": "A wrapper for Symfony\\HttpFoundation with some encapsulation and convenience methods.", + "homepage": "http://github.com/orno/http", + "keywords": [ + "http", + "orno", + "request", + "response" + ], + "time": "2014-03-05 10:22:10" + }, + { + "name": "orno/route", + "version": "v1.0.2", + "source": { + "type": "git", + "url": "https://github.com/orno/route.git", + "reference": "af2aee8314e6e700b4d69dc61f5c67ae030741e9" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/orno/route/zipball/af2aee8314e6e700b4d69dc61f5c67ae030741e9", + "reference": "af2aee8314e6e700b4d69dc61f5c67ae030741e9", + "shasum": "" + }, + "require": { + "nikic/fast-route": "0.1.*", + "orno/di": "2.*", + "orno/http": "1.*", + "php": ">=5.4" + }, + "type": "library", + "autoload": { + "psr-4": { + "Orno\\Route\\": "src/" + } + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Phil Bennett", + "email": "hello@happyaccidents.me" + } + ], + "description": "Fast routing package combining Nikita Popov's FastRoute and Orno\\Di to provide route dispatching to dependency injected controllers.", + "keywords": [ + "FastRoute", + "di", + "dispatcher", + "orno", + "route" + ], + "time": "2014-04-13 13:46:11" + }, + { + "name": "symfony/http-foundation", + "version": "v2.4.4", + "target-dir": "Symfony/Component/HttpFoundation", + "source": { + "type": "git", + "url": "https://github.com/symfony/HttpFoundation.git", + "reference": "22c4dee84271ad0cd08d19f26d89f2878e11159b" + }, + "dist": { + "type": "zip", + "url": "https://api.github.com/repos/symfony/HttpFoundation/zipball/22c4dee84271ad0cd08d19f26d89f2878e11159b", + "reference": "22c4dee84271ad0cd08d19f26d89f2878e11159b", + "shasum": "" + }, + "require": { + "php": ">=5.3.3" + }, + "require-dev": { + "symfony/expression-language": "~2.4" + }, + "type": "library", + "extra": { + "branch-alias": { + "dev-master": "2.4-dev" + } + }, + "autoload": { + "psr-0": { + "Symfony\\Component\\HttpFoundation\\": "" + }, + "classmap": [ + "Symfony/Component/HttpFoundation/Resources/stubs" + ] + }, + "notification-url": "https://packagist.org/downloads/", + "license": [ + "MIT" + ], + "authors": [ + { + "name": "Fabien Potencier", + "email": "fabien@symfony.com", + "homepage": "http://fabien.potencier.org", + "role": "Lead Developer" + }, + { + "name": "Symfony Community", + "homepage": "http://symfony.com/contributors" + } + ], + "description": "Symfony HttpFoundation Component", + "homepage": "http://symfony.com", + "time": "2014-04-18 21:02:05" + } + ], + "packages-dev": [ + + ], + "aliases": [ + + ], + "minimum-stability": "stable", + "stability-flags": [ + + ], + "platform": [ + + ], + "platform-dev": [ + + ] +} diff --git a/examples/relational/config/db.php b/examples/relational/config/db.php new file mode 100644 index 00000000..80eaf687 --- /dev/null +++ b/examples/relational/config/db.php @@ -0,0 +1,18 @@ +addConnection([ + 'driver' => 'sqlite', + 'database' => __DIR__.'/oauth2.sqlite3', + 'charset' => 'utf8', + 'collation' => 'utf8_unicode_ci' +]); + +$capsule->setAsGlobal(); diff --git a/examples/relational/config/init.php b/examples/relational/config/init.php new file mode 100644 index 00000000..9bf4b7f9 --- /dev/null +++ b/examples/relational/config/init.php @@ -0,0 +1,235 @@ +create('users', function ($table) { + $table->increments('id'); + $table->string('username'); + $table->string('password'); + $table->string('name'); + $table->string('email'); + $table->string('photo'); +}); + +Capsule::table('users')->insert([ + 'username' => 'alexbilbie', + 'password' => password_hash('whisky', PASSWORD_DEFAULT), + 'name' => 'Alex Bilbie', + 'email' => 'hello@alexbilbie.com', + 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' +]); + +Capsule::table('users')->insert([ + 'username' => 'philsturgeon', + 'password' => password_hash('cider', PASSWORD_DEFAULT), + 'name' => 'Phil Sturgeon', + 'email' => 'email@philsturgeon.co.uk', + 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' +]); + +/******************************************************************************/ + +print 'Creating clients table'.PHP_EOL; + +Capsule::schema()->create('oauth_clients', function ($table) { + $table->string('id'); + $table->string('secret'); + $table->string('name'); + $table->primary('id'); +}); + +Capsule::table('oauth_clients')->insert([ + 'id' => 'testclient', + 'secret' => 'secret', + 'name' => 'Test Client' +]); + +/******************************************************************************/ + +print 'Creating scopes table'.PHP_EOL; + +Capsule::schema()->create('oauth_scopes', function ($table) { + $table->string('id'); + $table->string('description'); + $table->primary('id'); +}); + +Capsule::table('oauth_scopes')->insert([ + 'id' => 'basic', + 'description' => 'Basic details about your account' +]); + +Capsule::table('oauth_scopes')->insert([ + 'id' => 'email', + 'description' => 'Your email address' +]); + +Capsule::table('oauth_scopes')->insert([ + 'id' => 'photo', + 'description' => 'Your photo' +]); + +/******************************************************************************/ + +print 'Creating sessions table'.PHP_EOL; + +Capsule::schema()->create('oauth_sessions', function ($table) { + $table->increments('id'); + $table->string('owner_type'); + $table->string('owner_id'); + $table->string('client_id'); + $table->string('client_redirect_uri')->nullable(); + + $table->foreign('client_id')->references('id')->on('oauth_clients')->onDelete('cascade'); +}); + +Capsule::table('oauth_sessions')->insert([ + 'owner_type' => 'client', + 'owner_id' => 'testclient', + 'client_id' => 'testclient' +]); + +Capsule::table('oauth_sessions')->insert([ + 'owner_type' => 'user', + 'owner_id' => '1', + 'client_id' => 'testclient' +]); + +Capsule::table('oauth_sessions')->insert([ + 'owner_type' => 'user', + 'owner_id' => '2', + 'client_id' => 'testclient' +]); + +/******************************************************************************/ + +print 'Creating access tokens table'.PHP_EOL; + +Capsule::schema()->create('oauth_access_tokens', function ($table) { + $table->string('access_token')->primary(); + $table->integer('session_id'); + $table->integer('expire_time'); + + $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); +}); + +Capsule::table('oauth_access_tokens')->insert([ + 'access_token' => 'iamgod', + 'session_id' => '1', + 'expire_time' => time() + 86400 +]); + +Capsule::table('oauth_access_tokens')->insert([ + 'access_token' => 'iamalex', + 'session_id' => '2', + 'expire_time' => time() + 86400 +]); + +Capsule::table('oauth_access_tokens')->insert([ + 'access_token' => 'iamphil', + 'session_id' => '3', + 'expire_time' => time() + 86400 +]); + +/******************************************************************************/ + +print 'Creating refresh tokens table'.PHP_EOL; + +Capsule::schema()->create('oauth_refresh_tokens', function ($table) { + $table->string('refresh_token')->primary(); + $table->integer('session_id'); + $table->integer('expire_time'); + $table->string('access_token'); + + $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); + $table->foreign('access_token')->references('id')->on('oauth_access_tokens')->onDelete('cascade'); +}); + +/******************************************************************************/ + +print 'Creating auth codes table'.PHP_EOL; + +Capsule::schema()->create('oauth_auth_codes', function ($table) { + $table->string('auth_code')->primary(); + $table->integer('session_id'); + $table->integer('expire_time'); + + $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); +}); + +/******************************************************************************/ + +print 'Creating oauth access token scopes table'.PHP_EOL; + +Capsule::schema()->create('oauth_access_token_scopes', function ($table) { + $table->increments('id'); + $table->string('access_token'); + $table->string('scope'); + + $table->foreign('access_token')->references('access_token')->on('oauth_access_tokens')->onDelete('cascade'); + $table->foreign('scope')->references('id')->on('oauth_scopes')->onDelete('cascade'); +}); + +Capsule::table('oauth_access_token_scopes')->insert([ + 'access_token' => 'iamgod', + 'scope' => 'basic' +]); + +Capsule::table('oauth_access_token_scopes')->insert([ + 'access_token' => 'iamgod', + 'scope' => 'email' +]); + +Capsule::table('oauth_access_token_scopes')->insert([ + 'access_token' => 'iamgod', + 'scope' => 'photo' +]); + +Capsule::table('oauth_access_token_scopes')->insert([ + 'access_token' => 'iamphil', + 'scope' => 'email' +]); + +Capsule::table('oauth_access_token_scopes')->insert([ + 'access_token' => 'iamalex', + 'scope' => 'photo' +]); + +/******************************************************************************/ + +print 'Creating oauth auth code scopes table'.PHP_EOL; + +Capsule::schema()->create('oauth_auth_code_scopes', function ($table) { + $table->increments('id'); + $table->string('auth_code'); + $table->string('scope'); + + $table->foreign('auth_code')->references('auth_code')->on('oauth_auth_codes')->onDelete('cascade'); + $table->foreign('scope')->references('id')->on('oauth_scopes')->onDelete('cascade'); +}); + +/******************************************************************************/ + +print 'Creating oauth session scopes table'.PHP_EOL; + +Capsule::schema()->create('oauth_session_scopes', function ($table) { + $table->increments('id'); + $table->string('session_id'); + $table->string('scope'); + + $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); + $table->foreign('scope')->references('id')->on('oauth_scopes')->onDelete('cascade'); +}); diff --git a/phpunit.xml b/phpunit.xml index 23497901..75670ca4 100644 --- a/phpunit.xml +++ b/phpunit.xml @@ -11,7 +11,7 @@ - + From 2412f1f8264d72ec75258494e89a111fed11f2ac Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 10:53:33 +0100 Subject: [PATCH 127/270] Testing travis composer install relational example, running the init command and starting local webserver --- .travis.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.travis.yml b/.travis.yml index 12b2d401..64144e65 100644 --- a/.travis.yml +++ b/.travis.yml @@ -14,6 +14,10 @@ before_script: - composer self-update - composer require satooshi/php-coveralls:dev-master --no-update --dev - composer install --prefer-source + - cd examples/relational && composer install + - cd examples/relational && php config/init.php + - php -S localhost:8000 examples/relational/api.php & + - sleep 3 script: - mkdir -p build/logs From d517b4c9e137bf1c27f8e7f7dc0ae2c487d43467 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 10:57:42 +0100 Subject: [PATCH 128/270] Removed composer.lock --- .gitignore | 4 +- examples/relational/composer.lock | 559 ------------------------------ 2 files changed, 2 insertions(+), 561 deletions(-) delete mode 100644 examples/relational/composer.lock diff --git a/.gitignore b/.gitignore index 05ccc8c0..83ec0b03 100644 --- a/.gitignore +++ b/.gitignore @@ -5,6 +5,6 @@ /testing /examples/relational/vendor /examples/relational/config/oauth2.sqlite3 -/examples/relational/composer.lock /examples/nosql/vendor -/examples/nosql/config/oauth2.sqlite3 \ No newline at end of file +/examples/nosql/config/oauth2.sqlite3 +/examples/relational/composer.lock diff --git a/examples/relational/composer.lock b/examples/relational/composer.lock deleted file mode 100644 index 96e1720a..00000000 --- a/examples/relational/composer.lock +++ /dev/null @@ -1,559 +0,0 @@ -{ - "_readme": [ - "This file locks the dependencies of your project to a known state", - "Read more about it at http://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file" - ], - "hash": "abcfdbc3594f0666218cab21fbbf0829", - "packages": [ - { - "name": "fzaninotto/faker", - "version": "v1.3.0", - "source": { - "type": "git", - "url": "https://github.com/fzaninotto/Faker.git", - "reference": "1d143fd8caf4d264602450bc01d7484af788706b" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/fzaninotto/Faker/zipball/1d143fd8caf4d264602450bc01d7484af788706b", - "reference": "1d143fd8caf4d264602450bc01d7484af788706b", - "shasum": "" - }, - "require": { - "php": ">=5.3.3" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "1.3.0-dev" - } - }, - "autoload": { - "psr-0": { - "Faker": "src/", - "Faker\\PHPUnit": "test/" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "François Zaninotto" - } - ], - "description": "Faker is a PHP library that generates fake data for you.", - "keywords": [ - "data", - "faker", - "fixtures" - ], - "time": "2013-12-16 21:56:48" - }, - { - "name": "illuminate/container", - "version": "v4.1.28", - "target-dir": "Illuminate/Container", - "source": { - "type": "git", - "url": "https://github.com/illuminate/container.git", - "reference": "51d590fd7e301f56c567459a26343a8288330f69" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/illuminate/container/zipball/51d590fd7e301f56c567459a26343a8288330f69", - "reference": "51d590fd7e301f56c567459a26343a8288330f69", - "shasum": "" - }, - "require": { - "php": ">=5.3.0" - }, - "require-dev": { - "phpunit/phpunit": "4.0.*" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "4.1-dev" - } - }, - "autoload": { - "psr-0": { - "Illuminate\\Container": "" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Taylor Otwell", - "email": "taylorotwell@gmail.com", - "homepage": "https://github.com/taylorotwell", - "role": "Developer" - } - ], - "time": "2014-03-22 20:29:54" - }, - { - "name": "illuminate/database", - "version": "v4.1.28", - "target-dir": "Illuminate/Database", - "source": { - "type": "git", - "url": "https://github.com/illuminate/database.git", - "reference": "c84f39734c6bfe7fbf694ff8dc33d15605553de2" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/illuminate/database/zipball/c84f39734c6bfe7fbf694ff8dc33d15605553de2", - "reference": "c84f39734c6bfe7fbf694ff8dc33d15605553de2", - "shasum": "" - }, - "require": { - "illuminate/container": "4.1.*", - "illuminate/events": "4.1.*", - "illuminate/support": "4.1.*", - "nesbot/carbon": "1.*", - "php": ">=5.3.0" - }, - "require-dev": { - "illuminate/cache": "4.1.*", - "illuminate/console": "4.1.*", - "illuminate/filesystem": "4.1.*", - "illuminate/pagination": "4.1.*", - "illuminate/support": "4.1.*", - "mockery/mockery": "0.9.*", - "phpunit/phpunit": "4.0.*" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "4.1-dev" - } - }, - "autoload": { - "psr-0": { - "Illuminate\\Database": "" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Taylor Otwell", - "email": "taylorotwell@gmail.com", - "homepage": "https://github.com/taylorotwell", - "role": "Developer" - } - ], - "keywords": [ - "database", - "laravel", - "orm", - "sql" - ], - "time": "2014-04-11 20:10:04" - }, - { - "name": "illuminate/events", - "version": "v4.1.28", - "target-dir": "Illuminate/Events", - "source": { - "type": "git", - "url": "https://github.com/illuminate/events.git", - "reference": "ef6ae5962134a35667f24349bc2c9b8ad1e20c8b" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/illuminate/events/zipball/ef6ae5962134a35667f24349bc2c9b8ad1e20c8b", - "reference": "ef6ae5962134a35667f24349bc2c9b8ad1e20c8b", - "shasum": "" - }, - "require": { - "illuminate/container": "4.1.*", - "illuminate/support": "4.1.*", - "php": ">=5.3.0" - }, - "require-dev": { - "mockery/mockery": "0.9.*", - "phpunit/phpunit": "4.0.*" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "4.1-dev" - } - }, - "autoload": { - "psr-0": { - "Illuminate\\Events": "" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Taylor Otwell", - "email": "taylorotwell@gmail.com", - "homepage": "https://github.com/taylorotwell", - "role": "Developer" - } - ], - "time": "2014-03-22 20:12:48" - }, - { - "name": "illuminate/support", - "version": "v4.1.28", - "target-dir": "Illuminate/Support", - "source": { - "type": "git", - "url": "https://github.com/illuminate/support.git", - "reference": "69b248f240719e8d764ee6ec0384819fa57d60bb" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/illuminate/support/zipball/69b248f240719e8d764ee6ec0384819fa57d60bb", - "reference": "69b248f240719e8d764ee6ec0384819fa57d60bb", - "shasum": "" - }, - "require": { - "php": ">=5.3.0" - }, - "require-dev": { - "jeremeamia/superclosure": "1.0.*", - "mockery/mockery": "0.9.*", - "patchwork/utf8": "1.1.*", - "phpunit/phpunit": "4.0.*" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "4.1-dev" - } - }, - "autoload": { - "psr-0": { - "Illuminate\\Support": "" - }, - "files": [ - "Illuminate/Support/helpers.php" - ] - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Taylor Otwell", - "email": "taylorotwell@gmail.com", - "homepage": "https://github.com/taylorotwell", - "role": "Developer" - } - ], - "time": "2014-03-22 20:29:54" - }, - { - "name": "nesbot/carbon", - "version": "1.8.0", - "source": { - "type": "git", - "url": "https://github.com/briannesbitt/Carbon.git", - "reference": "21c4cb4301969c7d85aee8a62eefdfa881413af0" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/briannesbitt/Carbon/zipball/21c4cb4301969c7d85aee8a62eefdfa881413af0", - "reference": "21c4cb4301969c7d85aee8a62eefdfa881413af0", - "shasum": "" - }, - "require": { - "php": ">=5.3.0" - }, - "require-dev": { - "phpunit/phpunit": "3.7.*" - }, - "type": "library", - "autoload": { - "psr-0": { - "Carbon": "src" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Brian Nesbitt", - "email": "brian@nesbot.com", - "homepage": "http://nesbot.com" - } - ], - "description": "A simple API extension for DateTime.", - "homepage": "https://github.com/briannesbitt/Carbon", - "keywords": [ - "date", - "datetime", - "time" - ], - "time": "2014-01-07 05:10:44" - }, - { - "name": "nikic/fast-route", - "version": "v0.1.0", - "source": { - "type": "git", - "url": "https://github.com/nikic/FastRoute.git", - "reference": "29c5bf70254d8ce59414646de3e9e43aafc9735e" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/nikic/FastRoute/zipball/29c5bf70254d8ce59414646de3e9e43aafc9735e", - "reference": "29c5bf70254d8ce59414646de3e9e43aafc9735e", - "shasum": "" - }, - "require": { - "php": ">=5.4.0" - }, - "type": "library", - "autoload": { - "files": [ - "src/bootstrap.php" - ] - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "BSD-3-Clause" - ], - "authors": [ - { - "name": "Nikita Popov", - "email": "nikic@php.net" - } - ], - "description": "Fast request router for PHP", - "keywords": [ - "router", - "routing" - ], - "time": "2014-03-04 15:05:38" - }, - { - "name": "orno/di", - "version": "v2.0.6", - "source": { - "type": "git", - "url": "https://github.com/orno/di.git", - "reference": "e8d29523da316125e67a6d39d477da90dc7be656" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/orno/di/zipball/e8d29523da316125e67a6d39d477da90dc7be656", - "reference": "e8d29523da316125e67a6d39d477da90dc7be656", - "shasum": "" - }, - "require": { - "php": ">=5.4" - }, - "suggest": { - "orno/cache": "Enables caching of reflection based resolution", - "orno/config": "Allows useage of config files rather than interacting with the container directly" - }, - "type": "library", - "autoload": { - "psr-0": { - "Orno\\Di": "src/", - "OrnoTest": "tests/" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Phil Bennett", - "email": "philipobenito@gmail.com" - } - ], - "description": "Orno Di is a small but powerful dependency injection container with automatic resolution of dependencies.", - "keywords": [ - "container", - "dependency", - "di", - "injection", - "orno" - ], - "time": "2014-04-03 08:23:38" - }, - { - "name": "orno/http", - "version": "v1.0.0", - "source": { - "type": "git", - "url": "https://github.com/orno/http.git", - "reference": "65d37f6f92f3357c234a592fdd57b2f54c2ef514" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/orno/http/zipball/65d37f6f92f3357c234a592fdd57b2f54c2ef514", - "reference": "65d37f6f92f3357c234a592fdd57b2f54c2ef514", - "shasum": "" - }, - "require": { - "php": ">=5.4", - "symfony/http-foundation": "2.*" - }, - "type": "library", - "autoload": { - "psr-4": { - "Orno\\Http\\": "src/" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Phil Bennett", - "email": "philipobenito@gmail.com" - } - ], - "description": "A wrapper for Symfony\\HttpFoundation with some encapsulation and convenience methods.", - "homepage": "http://github.com/orno/http", - "keywords": [ - "http", - "orno", - "request", - "response" - ], - "time": "2014-03-05 10:22:10" - }, - { - "name": "orno/route", - "version": "v1.0.2", - "source": { - "type": "git", - "url": "https://github.com/orno/route.git", - "reference": "af2aee8314e6e700b4d69dc61f5c67ae030741e9" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/orno/route/zipball/af2aee8314e6e700b4d69dc61f5c67ae030741e9", - "reference": "af2aee8314e6e700b4d69dc61f5c67ae030741e9", - "shasum": "" - }, - "require": { - "nikic/fast-route": "0.1.*", - "orno/di": "2.*", - "orno/http": "1.*", - "php": ">=5.4" - }, - "type": "library", - "autoload": { - "psr-4": { - "Orno\\Route\\": "src/" - } - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Phil Bennett", - "email": "hello@happyaccidents.me" - } - ], - "description": "Fast routing package combining Nikita Popov's FastRoute and Orno\\Di to provide route dispatching to dependency injected controllers.", - "keywords": [ - "FastRoute", - "di", - "dispatcher", - "orno", - "route" - ], - "time": "2014-04-13 13:46:11" - }, - { - "name": "symfony/http-foundation", - "version": "v2.4.4", - "target-dir": "Symfony/Component/HttpFoundation", - "source": { - "type": "git", - "url": "https://github.com/symfony/HttpFoundation.git", - "reference": "22c4dee84271ad0cd08d19f26d89f2878e11159b" - }, - "dist": { - "type": "zip", - "url": "https://api.github.com/repos/symfony/HttpFoundation/zipball/22c4dee84271ad0cd08d19f26d89f2878e11159b", - "reference": "22c4dee84271ad0cd08d19f26d89f2878e11159b", - "shasum": "" - }, - "require": { - "php": ">=5.3.3" - }, - "require-dev": { - "symfony/expression-language": "~2.4" - }, - "type": "library", - "extra": { - "branch-alias": { - "dev-master": "2.4-dev" - } - }, - "autoload": { - "psr-0": { - "Symfony\\Component\\HttpFoundation\\": "" - }, - "classmap": [ - "Symfony/Component/HttpFoundation/Resources/stubs" - ] - }, - "notification-url": "https://packagist.org/downloads/", - "license": [ - "MIT" - ], - "authors": [ - { - "name": "Fabien Potencier", - "email": "fabien@symfony.com", - "homepage": "http://fabien.potencier.org", - "role": "Lead Developer" - }, - { - "name": "Symfony Community", - "homepage": "http://symfony.com/contributors" - } - ], - "description": "Symfony HttpFoundation Component", - "homepage": "http://symfony.com", - "time": "2014-04-18 21:02:05" - } - ], - "packages-dev": [ - - ], - "aliases": [ - - ], - "minimum-stability": "stable", - "stability-flags": [ - - ], - "platform": [ - - ], - "platform-dev": [ - - ] -} From 66febb774461ae22dbcbc8b34a2db6abffa0039c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 10:58:15 +0100 Subject: [PATCH 129/270] Assume we're already in examples/relational --- .travis.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 64144e65..1cbf0f97 100644 --- a/.travis.yml +++ b/.travis.yml @@ -15,8 +15,8 @@ before_script: - composer require satooshi/php-coveralls:dev-master --no-update --dev - composer install --prefer-source - cd examples/relational && composer install - - cd examples/relational && php config/init.php - - php -S localhost:8000 examples/relational/api.php & + - php config/init.php + - php -S localhost:8000 & - sleep 3 script: From 4096c8cd2050dca62c49dbd630e7efd1340f3bfc Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 11:02:17 +0100 Subject: [PATCH 130/270] Move back down to root directory --- .travis.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.travis.yml b/.travis.yml index 1cbf0f97..9b6be442 100644 --- a/.travis.yml +++ b/.travis.yml @@ -18,6 +18,7 @@ before_script: - php config/init.php - php -S localhost:8000 & - sleep 3 + - cd ../.. script: - mkdir -p build/logs From 45b971d2861dc1ab4478c1eefe6dc3b1b28fe452 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 11:05:37 +0100 Subject: [PATCH 131/270] Prefer-dist --- .travis.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 9b6be442..250a3e3b 100644 --- a/.travis.yml +++ b/.travis.yml @@ -13,8 +13,8 @@ matrix: before_script: - composer self-update - composer require satooshi/php-coveralls:dev-master --no-update --dev - - composer install --prefer-source - - cd examples/relational && composer install + - composer install --prefer-dist + - cd examples/relational && composer install --prefer-dist - php config/init.php - php -S localhost:8000 & - sleep 3 From e43bdc837cf4240e61ced9ce318c41511b9611cf Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 9 May 2014 11:15:24 +0100 Subject: [PATCH 132/270] Added ircmaxell/password-compat so PHP 5.4 doesn't error out --- examples/relational/composer.json | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/examples/relational/composer.json b/examples/relational/composer.json index 01421e39..3140738c 100644 --- a/examples/relational/composer.json +++ b/examples/relational/composer.json @@ -1,7 +1,8 @@ { "require": { "illuminate/database": "4.1.*", - "orno/route": "1.*" + "orno/route": "1.*", + "ircmaxell/password-compat": "1.0.2" }, "autoload": { "psr-4": { From d065549e951cc40423f30ed2bfe14e0ef7a81da7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 10 May 2014 11:54:11 +0100 Subject: [PATCH 133/270] First commit of API tests --- tests/codecept/codeception.yml | 18 + tests/codecept/tests/_bootstrap.php | 2 + tests/codecept/tests/_helpers/ApiHelper.php | 8 + tests/codecept/tests/api.suite.yml | 8 + tests/codecept/tests/api/ApiGuy.php | 2918 +++++++++++++++++ .../tests/api/GetUsersAllFieldsCept.php | 20 + .../api/GetUsersBasicEmailFieldsCept.php | 18 + .../api/GetUsersBasicPhotoFieldsCept.php | 18 + .../tests/api/GetUsersInvalidTokenCept.php | 6 + .../tests/api/GetUsersNoTokenCept.php | 6 + tests/codecept/tests/api/_bootstrap.php | 2 + 11 files changed, 3024 insertions(+) create mode 100644 tests/codecept/codeception.yml create mode 100644 tests/codecept/tests/_bootstrap.php create mode 100644 tests/codecept/tests/_helpers/ApiHelper.php create mode 100644 tests/codecept/tests/api.suite.yml create mode 100644 tests/codecept/tests/api/ApiGuy.php create mode 100644 tests/codecept/tests/api/GetUsersAllFieldsCept.php create mode 100644 tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php create mode 100644 tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php create mode 100644 tests/codecept/tests/api/GetUsersInvalidTokenCept.php create mode 100644 tests/codecept/tests/api/GetUsersNoTokenCept.php create mode 100644 tests/codecept/tests/api/_bootstrap.php diff --git a/tests/codecept/codeception.yml b/tests/codecept/codeception.yml new file mode 100644 index 00000000..5b1f4413 --- /dev/null +++ b/tests/codecept/codeception.yml @@ -0,0 +1,18 @@ +paths: + tests: tests + log: tests/_log + data: tests/_data + helpers: tests/_helpers +settings: + bootstrap: _bootstrap.php + suite_class: \PHPUnit_Framework_TestSuite + colors: true + memory_limit: 1024M + log: true +modules: + config: + Db: + dsn: '' + user: '' + password: '' + dump: tests/_data/dump.sql diff --git a/tests/codecept/tests/_bootstrap.php b/tests/codecept/tests/_bootstrap.php new file mode 100644 index 00000000..f36fc700 --- /dev/null +++ b/tests/codecept/tests/_bootstrap.php @@ -0,0 +1,2 @@ +submitForm('#login', array('login' => 'davert', 'password' => '123456')); + * + * ``` + * + * For sample Sign Up form: + * + * ``` html + *
+ * Login:
+ * Password:
+ * Do you agree to out terms?
+ * Select pricing plan + * + *
+ * ``` + * I can write this: + * + * ``` php + * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); + * + * ``` + * Note, that pricing plan will be set to Paid, as it's selected on page. + * + * @param $selector + * @param $params + * @see Codeception\Module\PhpBrowser::submitForm() + * @return \Codeception\Maybe + */ + public function submitForm($selector, $params) { + $this->scenario->addStep(new \Codeception\Step\Action('submitForm', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a POST ajax request with specified params. + * Additional params can be passed as array. + * + * Example: + * + * Imagine that by clicking checkbox you trigger ajax request which updates user settings. + * We emulate that click by running this ajax request manually. + * + * ``` php + * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST + * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET + * + * ``` + * + * @param $uri + * @param $params + * @see Codeception\Module\PhpBrowser::sendAjaxPostRequest() + * @return \Codeception\Maybe + */ + public function sendAjaxPostRequest($uri, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a GET ajax request with specified params. + * + * See ->sendAjaxPostRequest for examples. + * + * @param $uri + * @param $params + * @see Codeception\Module\PhpBrowser::sendAjaxGetRequest() + * @return \Codeception\Maybe + */ + public function sendAjaxGetRequest($uri, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends an ajax request with specified method and params. + * + * Example: + * + * You need to perform an ajax request specifying the HTTP method. + * + * ``` php + * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); + * + * ``` + * + * @param $method + * @param $uri + * @param $params + * @see Codeception\Module\PhpBrowser::sendAjaxRequest() + * @return \Codeception\Maybe + */ + public function sendAjaxRequest($method, $uri, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Asserts that current page has 404 response status code. + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\PhpBrowser::seePageNotFound() + * @return \Codeception\Maybe + */ + public function canSeePageNotFound() { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Asserts that current page has 404 response status code. + * @see Codeception\Module\PhpBrowser::seePageNotFound() + * @return \Codeception\Maybe + */ + public function seePageNotFound() { + $this->scenario->addStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks response code equals to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseCodeIs() + * @return \Codeception\Maybe + */ + public function canSeeResponseCodeIs($code) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks response code equals to provided value. + * + * @param $code + * @see Codeception\Module\REST::seeResponseCodeIs() + * @return \Codeception\Maybe + */ + public function seeResponseCodeIs($code) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Adds HTTP authentication via username/password. + * + * @param $username + * @param $password + * @see Codeception\Module\REST::amHttpAuthenticated() + * @return \Codeception\Maybe + */ + public function amHttpAuthenticated($username, $password) { + $this->scenario->addStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Low-level API method. + * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly + * + * Example: + * + * ``` php + * amGoingTo('Sign all requests with OAuth'); + * $I->executeInGuzzle(function (\Guzzle\Http\Client $client) { + * $client->addSubscriber(new Guzzle\Plugin\Oauth\OauthPlugin(array( + * 'consumer_key' => '***', + * 'consumer_secret' => '***', + * 'token' => '***', + * 'token_secret' => '***' + * ))); + * }); + * ?> + * ``` + * + * It is not recommended to use this command on a regular basis. + * If Codeception lacks important Guzzle Client methods, implement them and submit patches. + * + * @param callable $function + * @see Codeception\Module\PhpBrowser::executeInGuzzle() + * @return \Codeception\Maybe + */ + public function executeInGuzzle($function) { + $this->scenario->addStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\PhpBrowser::seeCheckboxIsChecked() + * @return \Codeception\Maybe + */ + public function canSeeCheckboxIsChecked($checkbox) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * @see Codeception\Module\PhpBrowser::seeCheckboxIsChecked() + * @return \Codeception\Maybe + */ + public function seeCheckboxIsChecked($checkbox) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\PhpBrowser::dontSeeCheckboxIsChecked() + * @return \Codeception\Maybe + */ + public function cantSeeCheckboxIsChecked($checkbox) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * @see Codeception\Module\PhpBrowser::dontSeeCheckboxIsChecked() + * @return \Codeception\Maybe + */ + public function dontSeeCheckboxIsChecked($checkbox) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Opens the page. + * + * @param $page + * @see Codeception\Util\Mink::amOnPage() + * @return \Codeception\Maybe + */ + public function amOnPage($page) { + $this->scenario->addStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sets 'url' configuration parameter to hosts subdomain. + * It does not open a page on subdomain. Use `amOnPage` for that + * + * ``` php + * amOnSubdomain('user'); + * $I->amOnPage('/'); + * // moves to http://user.mysite.com/ + * ?> + * ``` + * @param $subdomain + * @return mixed + * @see Codeception\Util\Mink::amOnSubdomain() + * @return \Codeception\Maybe + */ + public function amOnSubdomain($subdomain) { + $this->scenario->addStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * @param string $text + * @param string $selector + * + * @return void + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSee() + * @return \Codeception\Maybe + */ + public function cantSee($text, $selector = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * @param string $text + * @param string $selector + * + * @return void + * @see Codeception\Util\Mink::dontSee() + * @return \Codeception\Maybe + */ + public function dontSee($text, $selector = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::see() + * @return \Codeception\Maybe + */ + public function canSee($text, $selector = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * @see Codeception\Util\Mink::see() + * @return \Codeception\Maybe + */ + public function see($text, $selector = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('see', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeLink() + * @return \Codeception\Maybe + */ + public function canSeeLink($text, $url = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * @see Codeception\Util\Mink::seeLink() + * @return \Codeception\Maybe + */ + public function seeLink($text, $url = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeLink() + * @return \Codeception\Maybe + */ + public function cantSeeLink($text, $url = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * @see Codeception\Util\Mink::dontSeeLink() + * @return \Codeception\Maybe + */ + public function dontSeeLink($text, $url = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Perform a click on link or button. + * Link or button are found by their names or CSS selector. + * Submits a form if button is a submit type. + * + * If link is an image it's found by alt attribute value of image. + * If button is image button is found by it's value + * If link or button can't be found by name they are searched by CSS selector. + * + * The second parameter is a context: CSS or XPath locator to narrow the search. + * + * Examples: + * + * ``` php + * click('Logout'); + * // button of form + * $I->click('Submit'); + * // CSS button + * $I->click('#form input[type=submit]'); + * // XPath + * $I->click('//form/*[@type=submit]') + * // link in context + * $I->click('Logout', '#nav'); + * ?> + * ``` + * @param $link + * @param $context + * @see Codeception\Util\Mink::click() + * @return \Codeception\Maybe + */ + public function click($link, $context = null) { + $this->scenario->addStep(new \Codeception\Step\Action('click', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if element exists on a page, matching it by CSS or XPath + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * ?> + * ``` + * @param $selector + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeElement() + * @return \Codeception\Maybe + */ + public function canSeeElement($selector) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if element exists on a page, matching it by CSS or XPath + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * ?> + * ``` + * @param $selector + * @see Codeception\Util\Mink::seeElement() + * @return \Codeception\Maybe + */ + public function seeElement($selector) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * ?> + * ``` + * @param $selector + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeElement() + * @return \Codeception\Maybe + */ + public function cantSeeElement($selector) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * ?> + * ``` + * @param $selector + * @see Codeception\Util\Mink::dontSeeElement() + * @return \Codeception\Maybe + */ + public function dontSeeElement($selector) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Reloads current page + * @see Codeception\Util\Mink::reloadPage() + * @return \Codeception\Maybe + */ + public function reloadPage() { + $this->scenario->addStep(new \Codeception\Step\Action('reloadPage', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Moves back in history + * @see Codeception\Util\Mink::moveBack() + * @return \Codeception\Maybe + */ + public function moveBack() { + $this->scenario->addStep(new \Codeception\Step\Action('moveBack', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Moves forward in history + * @see Codeception\Util\Mink::moveForward() + * @return \Codeception\Maybe + */ + public function moveForward() { + $this->scenario->addStep(new \Codeception\Step\Action('moveForward', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Fills a text field or textarea with value. + * + * Example: + * + * ``` php + * fillField("//input[@type='text']", "Hello World!"); + * ?> + * ``` + * + * @param $field + * @param $value + * @see Codeception\Util\Mink::fillField() + * @return \Codeception\Maybe + */ + public function fillField($field, $value) { + $this->scenario->addStep(new \Codeception\Step\Action('fillField', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Selects an option in select tag or in radio button group. + * + * Example: + * + * ``` php + * selectOption('form select[name=account]', 'Premium'); + * $I->selectOption('form input[name=payment]', 'Monthly'); + * $I->selectOption('//form/select[@name=account]', 'Monthly'); + * ?> + * ``` + * + * Can select multiple options if second argument is array: + * + * ``` php + * selectOption('Which OS do you use?', array('Windows','Linux')); + * ?> + * ``` + * + * @param $select + * @param $option + * @see Codeception\Util\Mink::selectOption() + * @return \Codeception\Maybe + */ + public function selectOption($select, $option) { + $this->scenario->addStep(new \Codeception\Step\Action('selectOption', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Ticks a checkbox. + * For radio buttons use `selectOption` method. + * + * Example: + * + * ``` php + * checkOption('#agree'); + * ?> + * ``` + * + * @param $option + * @see Codeception\Util\Mink::checkOption() + * @return \Codeception\Maybe + */ + public function checkOption($option) { + $this->scenario->addStep(new \Codeception\Step\Action('checkOption', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Unticks a checkbox. + * + * Example: + * + * ``` php + * uncheckOption('#notify'); + * ?> + * ``` + * + * @param $option + * @see Codeception\Util\Mink::uncheckOption() + * @return \Codeception\Maybe + */ + public function uncheckOption($option) { + $this->scenario->addStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeInCurrentUrl() + * @return \Codeception\Maybe + */ + public function canSeeInCurrentUrl($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::seeInCurrentUrl() + * @return \Codeception\Maybe + */ + public function seeInCurrentUrl($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeInCurrentUrl() + * @return \Codeception\Maybe + */ + public function cantSeeInCurrentUrl($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::dontSeeInCurrentUrl() + * @return \Codeception\Maybe + */ + public function dontSeeInCurrentUrl($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeCurrentUrlEquals() + * @return \Codeception\Maybe + */ + public function canSeeCurrentUrlEquals($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::seeCurrentUrlEquals() + * @return \Codeception\Maybe + */ + public function seeCurrentUrlEquals($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeCurrentUrlEquals() + * @return \Codeception\Maybe + */ + public function cantSeeCurrentUrlEquals($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::dontSeeCurrentUrlEquals() + * @return \Codeception\Maybe + */ + public function dontSeeCurrentUrlEquals($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeCurrentUrlMatches() + * @return \Codeception\Maybe + */ + public function canSeeCurrentUrlMatches($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::seeCurrentUrlMatches() + * @return \Codeception\Maybe + */ + public function seeCurrentUrlMatches($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeCurrentUrlMatches() + * @return \Codeception\Maybe + */ + public function cantSeeCurrentUrlMatches($uri) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see Codeception\Util\Mink::dontSeeCurrentUrlMatches() + * @return \Codeception\Maybe + */ + public function dontSeeCurrentUrlMatches($uri) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that cookie is set. + * + * @param $cookie + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeCookie() + * @return \Codeception\Maybe + */ + public function canSeeCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that cookie is set. + * + * @param $cookie + * @return mixed + * @see Codeception\Util\Mink::seeCookie() + * @return \Codeception\Maybe + */ + public function seeCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that cookie doesn't exist + * + * @param $cookie + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeCookie() + * @return \Codeception\Maybe + */ + public function cantSeeCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that cookie doesn't exist + * + * @param $cookie + * @return mixed + * @see Codeception\Util\Mink::dontSeeCookie() + * @return \Codeception\Maybe + */ + public function dontSeeCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sets a cookie. + * + * @param $cookie + * @param $value + * @return mixed + * @see Codeception\Util\Mink::setCookie() + * @return \Codeception\Maybe + */ + public function setCookie($cookie, $value) { + $this->scenario->addStep(new \Codeception\Step\Action('setCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Unsets cookie + * + * @param $cookie + * @return mixed + * @see Codeception\Util\Mink::resetCookie() + * @return \Codeception\Maybe + */ + public function resetCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\Action('resetCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Grabs a cookie value. + * + * @param $cookie + * @return mixed + * @see Codeception\Util\Mink::grabCookie() + * @return \Codeception\Maybe + */ + public function grabCookie($cookie) { + $this->scenario->addStep(new \Codeception\Step\Action('grabCookie', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Takes a parameters from current URI by RegEx. + * If no url provided returns full URI. + * + * ``` php + * grabFromCurrentUrl('~$/user/(\d+)/~'); + * $uri = $I->grabFromCurrentUrl(); + * ?> + * ``` + * + * @param null $uri + * @internal param $url + * @return mixed + * @see Codeception\Util\Mink::grabFromCurrentUrl() + * @return \Codeception\Maybe + */ + public function grabFromCurrentUrl($uri = null) { + $this->scenario->addStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Attaches file from Codeception data directory to upload field. + * + * Example: + * + * ``` php + * attachFile('input[@type="file"]', 'prices.xls'); + * ?> + * ``` + * + * @param $field + * @param $filename + * @see Codeception\Util\Mink::attachFile() + * @return \Codeception\Maybe + */ + public function attachFile($field, $filename) { + $this->scenario->addStep(new \Codeception\Step\Action('attachFile', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeOptionIsSelected() + * @return \Codeception\Maybe + */ + public function canSeeOptionIsSelected($select, $text) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * @return mixed + * @see Codeception\Util\Mink::seeOptionIsSelected() + * @return \Codeception\Maybe + */ + public function seeOptionIsSelected($select, $text) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeOptionIsSelected() + * @return \Codeception\Maybe + */ + public function cantSeeOptionIsSelected($select, $text) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * @return mixed + * @see Codeception\Util\Mink::dontSeeOptionIsSelected() + * @return \Codeception\Maybe + */ + public function dontSeeOptionIsSelected($select, $text) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeInField() + * @return \Codeception\Maybe + */ + public function canSeeInField($field, $value) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see Codeception\Util\Mink::seeInField() + * @return \Codeception\Maybe + */ + public function seeInField($field, $value) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeInField() + * @return \Codeception\Maybe + */ + public function cantSeeInField($field, $value) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see Codeception\Util\Mink::dontSeeInField() + * @return \Codeception\Maybe + */ + public function dontSeeInField($field, $value) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Finds and returns text contents of element. + * Element is searched by CSS selector, XPath or matcher by regex. + * + * Example: + * + * ``` php + * grabTextFrom('h1'); + * $heading = $I->grabTextFrom('descendant-or-self::h1'); + * $value = $I->grabTextFrom('~ + * ``` + * + * @param $cssOrXPathOrRegex + * @return mixed + * @see Codeception\Util\Mink::grabTextFrom() + * @return \Codeception\Maybe + */ + public function grabTextFrom($cssOrXPathOrRegex) { + $this->scenario->addStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Finds and returns field and returns it's value. + * Searches by field name, then by CSS, then by XPath + * + * Example: + * + * ``` php + * grabValueFrom('Name'); + * $name = $I->grabValueFrom('input[name=username]'); + * $name = $I->grabValueFrom('descendant-or-self::form/descendant::input[@name = 'username']'); + * ?> + * ``` + * + * @param $field + * @return mixed + * @see Codeception\Util\Mink::grabValueFrom() + * @return \Codeception\Maybe + */ + public function grabValueFrom($field) { + $this->scenario->addStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::seeInTitle() + * @return \Codeception\Maybe + */ + public function canSeeInTitle($title) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * @return mixed + * @see Codeception\Util\Mink::seeInTitle() + * @return \Codeception\Maybe + */ + public function seeInTitle($title) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that page title does not contain text. + * + * @param $title + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Util\Mink::dontSeeInTitle() + * @return \Codeception\Maybe + */ + public function cantSeeInTitle($title) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that page title does not contain text. + * + * @param $title + * @return mixed + * @see Codeception\Util\Mink::dontSeeInTitle() + * @return \Codeception\Maybe + */ + public function dontSeeInTitle($title) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * + * @see Codeception\Module::getName() + * @return \Codeception\Maybe + */ + public function getName() { + $this->scenario->addStep(new \Codeception\Step\Action('getName', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sets HTTP header + * + * @param $name + * @param $value + * @see Codeception\Module\REST::haveHttpHeader() + * @return \Codeception\Maybe + */ + public function haveHttpHeader($name, $value) { + $this->scenario->addStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeHttpHeader() + * @return \Codeception\Maybe + */ + public function canSeeHttpHeader($name, $value = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * @see Codeception\Module\REST::seeHttpHeader() + * @return \Codeception\Maybe + */ + public function seeHttpHeader($name, $value = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::dontSeeHttpHeader() + * @return \Codeception\Maybe + */ + public function cantSeeHttpHeader($name, $value = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * @see Codeception\Module\REST::dontSeeHttpHeader() + * @return \Codeception\Maybe + */ + public function dontSeeHttpHeader($name, $value = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeHttpHeaderOnce() + * @return \Codeception\Maybe + */ + public function canSeeHttpHeaderOnce($name) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * @see Codeception\Module\REST::seeHttpHeaderOnce() + * @return \Codeception\Maybe + */ + public function seeHttpHeaderOnce($name) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Returns the value of the specified header name + * + * @param $name + * @param Boolean $first Whether to return the first value or all header values + * + * @return string|array The first header value if $first is true, an array of values otherwise + * @see Codeception\Module\REST::grabHttpHeader() + * @return \Codeception\Maybe + */ + public function grabHttpHeader($name, $first = null) { + $this->scenario->addStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Adds Digest authentication via username/password. + * + * @param $username + * @param $password + * @see Codeception\Module\REST::amDigestAuthenticated() + * @return \Codeception\Maybe + */ + public function amDigestAuthenticated($username, $password) { + $this->scenario->addStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends a POST request to given uri. + * + * Parameters and files (as array of filenames) can be provided. + * + * @param $url + * @param array $params + * @param array $files + * @see Codeception\Module\REST::sendPOST() + * @return \Codeception\Maybe + */ + public function sendPOST($url, $params = null, $files = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendPOST', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends a HEAD request to given uri. + * + * @param $url + * @param array $params + * @see Codeception\Module\REST::sendHEAD() + * @return \Codeception\Maybe + */ + public function sendHEAD($url, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends an OPTIONS request to given uri. + * + * @param $url + * @param array $params + * @see Codeception\Module\REST::sendOPTIONS() + * @return \Codeception\Maybe + */ + public function sendOPTIONS($url, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends a GET request to given uri. + * + * @param $url + * @param array $params + * @see Codeception\Module\REST::sendGET() + * @return \Codeception\Maybe + */ + public function sendGET($url, $params = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendGET', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends PUT request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see Codeception\Module\REST::sendPUT() + * @return \Codeception\Maybe + */ + public function sendPUT($url, $params = null, $files = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendPUT', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends PATCH request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see Codeception\Module\REST::sendPATCH() + * @return \Codeception\Maybe + */ + public function sendPATCH($url, $params = null, $files = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends DELETE request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see Codeception\Module\REST::sendDELETE() + * @return \Codeception\Maybe + */ + public function sendDELETE($url, $params = null, $files = null) { + $this->scenario->addStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends LINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * + * @author samva.ua@gmail.com + * @see Codeception\Module\REST::sendLINK() + * @return \Codeception\Maybe + */ + public function sendLINK($url, $linkEntries) { + $this->scenario->addStep(new \Codeception\Step\Action('sendLINK', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Sends UNLINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * + * @author samva.ua@gmail.com + * @see Codeception\Module\REST::sendUNLINK() + * @return \Codeception\Maybe + */ + public function sendUNLINK($url, $linkEntries) { + $this->scenario->addStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseIsJson() + * @return \Codeception\Maybe + */ + public function canSeeResponseIsJson() { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * @see Codeception\Module\REST::seeResponseIsJson() + * @return \Codeception\Maybe + */ + public function seeResponseIsJson() { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseIsXml() + * @return \Codeception\Maybe + */ + public function canSeeResponseIsXml() { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * @see Codeception\Module\REST::seeResponseIsXml() + * @return \Codeception\Maybe + */ + public function seeResponseIsXml() { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether the last response contains text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseContains() + * @return \Codeception\Maybe + */ + public function canSeeResponseContains($text) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether the last response contains text. + * + * @param $text + * @see Codeception\Module\REST::seeResponseContains() + * @return \Codeception\Maybe + */ + public function seeResponseContains($text) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response do not contain text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::dontSeeResponseContains() + * @return \Codeception\Maybe + */ + public function cantSeeResponseContains($text) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether last response do not contain text. + * + * @param $text + * @see Codeception\Module\REST::dontSeeResponseContains() + * @return \Codeception\Maybe + */ + public function dontSeeResponseContains($text) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseContainsJson() + * @return \Codeception\Maybe + */ + public function canSeeResponseContainsJson($json = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * @see Codeception\Module\REST::seeResponseContainsJson() + * @return \Codeception\Maybe + */ + public function seeResponseContainsJson($json = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Returns current response so that it can be used in next scenario steps. + * + * Example: + * + * ``` php + * grabResponse(); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @version 1.1 + * @return string + * @see Codeception\Module\REST::grabResponse() + * @return \Codeception\Maybe + */ + public function grabResponse() { + $this->scenario->addStep(new \Codeception\Step\Action('grabResponse', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Returns data from the current JSON response using specified path + * so that it can be used in next scenario steps + * + * Example: + * + * ``` php + * grabDataFromJsonResponse('user.user_id'); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @param string $path + * + * @since 1.1.2 + * @return string + * + * @author tiger.seo@gmail.com + * @see Codeception\Module\REST::grabDataFromJsonResponse() + * @return \Codeception\Maybe + */ + public function grabDataFromJsonResponse($path) { + $this->scenario->addStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::dontSeeResponseContainsJson() + * @return \Codeception\Maybe + */ + public function cantSeeResponseContainsJson($json = null) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * @see Codeception\Module\REST::dontSeeResponseContainsJson() + * @return \Codeception\Maybe + */ + public function dontSeeResponseContainsJson($json = null) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if response is exactly the same as provided. + * + * @param $response + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::seeResponseEquals() + * @return \Codeception\Maybe + */ + public function canSeeResponseEquals($response) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks if response is exactly the same as provided. + * + * @param $response + * @see Codeception\Module\REST::seeResponseEquals() + * @return \Codeception\Maybe + */ + public function seeResponseEquals($response) { + $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + + + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that response code is not equal to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see Codeception\Module\REST::dontSeeResponseCodeIs() + * @return \Codeception\Maybe + */ + public function cantSeeResponseCodeIs($code) { + $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } + /** + * This method is generated. + * Documentation taken from corresponding module. + * ---------------------------------------------- + * + * Checks that response code is not equal to provided value. + * + * @param $code + * @see Codeception\Module\REST::dontSeeResponseCodeIs() + * @return \Codeception\Maybe + */ + public function dontSeeResponseCodeIs($code) { + $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); + if ($this->scenario->running()) { + $result = $this->scenario->runStep(); + return new Maybe($result); + } + return new Maybe(); + } +} + diff --git a/tests/codecept/tests/api/GetUsersAllFieldsCept.php b/tests/codecept/tests/api/GetUsersAllFieldsCept.php new file mode 100644 index 00000000..7dd93369 --- /dev/null +++ b/tests/codecept/tests/api/GetUsersAllFieldsCept.php @@ -0,0 +1,20 @@ +wantTo('get all users with all fields'); +$I->sendGET('api.php/users?access_token=iamgod'); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeResponseContainsJson([ + [ + 'username' => 'alexbilbie', + 'name' => 'Alex Bilbie', + 'email' => 'hello@alexbilbie.com', + 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' + ], + [ + 'username' => 'philsturgeon', + 'name' => 'Phil Sturgeon', + 'email' => 'email@philsturgeon.co.uk', + 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' + ] +]); diff --git a/tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php b/tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php new file mode 100644 index 00000000..f6619dbf --- /dev/null +++ b/tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php @@ -0,0 +1,18 @@ +wantTo('get all users with all basic and email fields'); +$I->sendGET('api.php/users?access_token=iamphil'); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeResponseContainsJson([ + [ + 'username' => 'alexbilbie', + 'name' => 'Alex Bilbie', + 'email' => 'hello@alexbilbie.com' + ], + [ + 'username' => 'philsturgeon', + 'name' => 'Phil Sturgeon', + 'email' => 'email@philsturgeon.co.uk' + ] +]); diff --git a/tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php b/tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php new file mode 100644 index 00000000..69745d95 --- /dev/null +++ b/tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php @@ -0,0 +1,18 @@ +wantTo('get all users with basic and photo fields'); +$I->sendGET('api.php/users?access_token=iamalex'); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeResponseContainsJson([ + [ + 'username' => 'alexbilbie', + 'name' => 'Alex Bilbie', + 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' + ], + [ + 'username' => 'philsturgeon', + 'name' => 'Phil Sturgeon', + 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' + ] +]); diff --git a/tests/codecept/tests/api/GetUsersInvalidTokenCept.php b/tests/codecept/tests/api/GetUsersInvalidTokenCept.php new file mode 100644 index 00000000..1ca507e6 --- /dev/null +++ b/tests/codecept/tests/api/GetUsersInvalidTokenCept.php @@ -0,0 +1,6 @@ +wantTo('get all users with an invalid access token'); +$I->sendGET('api.php/users?access_token=foobar'); +$I->seeResponseCodeIs(401); +$I->seeResponseIsJson(); diff --git a/tests/codecept/tests/api/GetUsersNoTokenCept.php b/tests/codecept/tests/api/GetUsersNoTokenCept.php new file mode 100644 index 00000000..6d3ae875 --- /dev/null +++ b/tests/codecept/tests/api/GetUsersNoTokenCept.php @@ -0,0 +1,6 @@ +wantTo('get all users without an access token'); +$I->sendGET('api.php/users'); +$I->seeResponseCodeIs(400); +$I->seeResponseIsJson(); diff --git a/tests/codecept/tests/api/_bootstrap.php b/tests/codecept/tests/api/_bootstrap.php new file mode 100644 index 00000000..7dfa7c30 --- /dev/null +++ b/tests/codecept/tests/api/_bootstrap.php @@ -0,0 +1,2 @@ + Date: Sat, 10 May 2014 11:54:26 +0100 Subject: [PATCH 134/270] Ignore codecept test logs --- .gitignore | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index 83ec0b03..54ac71ff 100644 --- a/.gitignore +++ b/.gitignore @@ -2,9 +2,9 @@ /composer.lock /build /docs -/testing /examples/relational/vendor /examples/relational/config/oauth2.sqlite3 /examples/nosql/vendor /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock +/tests/codecept/tests/_log \ No newline at end of file From ad5cef3b7d6e507f02d1066aa56b978dec02eda9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 10 May 2014 11:58:00 +0100 Subject: [PATCH 135/270] Ensure token works via header --- .../tests/api/GetUsersTokenHeaderCept.php | 21 +++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 tests/codecept/tests/api/GetUsersTokenHeaderCept.php diff --git a/tests/codecept/tests/api/GetUsersTokenHeaderCept.php b/tests/codecept/tests/api/GetUsersTokenHeaderCept.php new file mode 100644 index 00000000..5a8317e2 --- /dev/null +++ b/tests/codecept/tests/api/GetUsersTokenHeaderCept.php @@ -0,0 +1,21 @@ +wantTo('get all users with header access token'); +$I->haveHttpHeader('Authorization', 'Bearer iamgod'); +$I->sendGET('api.php/users'); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeResponseContainsJson([ + [ + 'username' => 'alexbilbie', + 'name' => 'Alex Bilbie', + 'email' => 'hello@alexbilbie.com', + 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' + ], + [ + 'username' => 'philsturgeon', + 'name' => 'Phil Sturgeon', + 'email' => 'email@philsturgeon.co.uk', + 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' + ] +]); From 9a6ab4141f83470ef283f20a9b0202ae29aa0d36 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 10 May 2014 12:00:15 +0100 Subject: [PATCH 136/270] Download and run codeception --- .travis.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.travis.yml b/.travis.yml index 250a3e3b..721d1df6 100644 --- a/.travis.yml +++ b/.travis.yml @@ -19,10 +19,12 @@ before_script: - php -S localhost:8000 & - sleep 3 - cd ../.. + - wget http://codeception.com/codecept.phar script: - mkdir -p build/logs - phpunit --coverage-text + - php codecept.phar run api -c tests/codecept/codeception.yml - ./vendor/bin/phpcs src --standard=psr2 after_script: From f7231b2c6a8c480ffbab678618e088c347c8be92 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 10 May 2014 12:07:33 +0100 Subject: [PATCH 137/270] Create the codecept logs path and ensure it is writeable --- .travis.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.travis.yml b/.travis.yml index 721d1df6..d703777b 100644 --- a/.travis.yml +++ b/.travis.yml @@ -20,6 +20,8 @@ before_script: - sleep 3 - cd ../.. - wget http://codeception.com/codecept.phar + - mkdir tests/codecept/tests/_log + - chmod -R 777 tests/codecept/tests/_log script: - mkdir -p build/logs From cf32b5dd1b50af22ce373c66bfe6bd12acbdfc2b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 23 May 2014 16:23:40 +0100 Subject: [PATCH 138/270] Readme update --- README.md | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 3786a261..6b3c5295 100644 --- a/README.md +++ b/README.md @@ -12,15 +12,18 @@ The framework is provided as a Composer package which can be installed by adding ```javascript { "require": { - "league/oauth2-server": "3.*" + "league/oauth2-server": "4.*" } } ``` -### Framework Integrations +### Storage Adapters -* [Laravel 4 service provider](https://packagist.org/packages/lucadegasperi/oauth2-server-laravel) by @lucadegasperi -* [Laravel 4 Eloquent implementation](https://github.com/ScubaClick/scubaclick-oauth2) by @ScubaClick (under development) +The following adapters have been created by other developers to help you easily integrate this library into your project. + +* [Redis storage adapter](https://github.com/jasonlewis/oauth2-server-redis) by @jasonlewis + +If you want to roll your own adapter check out the docs. --- From 11c4c933982f6a683163e0e1bf7b59cbc48ece24 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 23 May 2014 16:24:45 +0100 Subject: [PATCH 139/270] Added Capsule namespace --- examples/relational/api.php | 1 + 1 file changed, 1 insertion(+) diff --git a/examples/relational/api.php b/examples/relational/api.php index 4219e6cd..93e9f24e 100644 --- a/examples/relational/api.php +++ b/examples/relational/api.php @@ -9,6 +9,7 @@ use \Orno\Http\Exception\NotFoundException; use \League\OAuth2\Server\ResourceServer; use \RelationalExample\Storage; use \RelationalExample\Model; +use Illuminate\Database\Capsule\Manager as Capsule; include __DIR__.'/vendor/autoload.php'; From 4ebf3f838f9647f8d748c4ce3020931ad26e6b78 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 23 May 2014 16:25:09 +0100 Subject: [PATCH 140/270] Added initial examples --- .../relational/Storage/AuthCodeStorage.php | 28 ++++++- .../Storage/RefreshTokenStorage.php | 4 +- examples/relational/auth.php | 79 +++++++++++++++++++ 3 files changed, 109 insertions(+), 2 deletions(-) create mode 100644 examples/relational/auth.php diff --git a/examples/relational/Storage/AuthCodeStorage.php b/examples/relational/Storage/AuthCodeStorage.php index d4d76304..c5dbe41f 100644 --- a/examples/relational/Storage/AuthCodeStorage.php +++ b/examples/relational/Storage/AuthCodeStorage.php @@ -4,13 +4,39 @@ namespace RelationalExample\Storage; use League\OAuth2\Server\Storage\AuthCodeInterface; use League\OAuth2\Server\Storage\Adapter; +use League\OAuth2\Server\Entity\AuthCodeEntity; +use League\OAuth2\Server\Entity\ScopeEntity; class AuthCodeStorage extends Adapter implements AuthCodeInterface { /** * {@inheritdoc} */ - public function get($token) + public function get($code) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function getScopes(AuthCodeEntity $token) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function associateScope(AuthCodeEntity $token, ScopeEntity $scope) + { + die(var_dump(__METHOD__, func_get_args())); + } + + /** + * {@inheritdoc} + */ + public function delete(AuthCodeEntity $token) { die(var_dump(__METHOD__, func_get_args())); } diff --git a/examples/relational/Storage/RefreshTokenStorage.php b/examples/relational/Storage/RefreshTokenStorage.php index 27b81dc7..4a32f92d 100644 --- a/examples/relational/Storage/RefreshTokenStorage.php +++ b/examples/relational/Storage/RefreshTokenStorage.php @@ -4,6 +4,7 @@ namespace RelationalExample\Storage; use League\OAuth2\Server\Storage\RefreshTokenInterface; use League\OAuth2\Server\Storage\Adapter; +use League\OAuth2\Server\Entity\RefreshTokenEntity; class RefreshTokenStorage extends Adapter implements RefreshTokenInterface { @@ -26,8 +27,9 @@ class RefreshTokenStorage extends Adapter implements RefreshTokenInterface /** * {@inheritdoc} */ - public function delete($token) + public function delete(RefreshTokenEntity $token) { die(var_dump(__METHOD__, func_get_args())); } + } diff --git a/examples/relational/auth.php b/examples/relational/auth.php new file mode 100644 index 00000000..d99b38e9 --- /dev/null +++ b/examples/relational/auth.php @@ -0,0 +1,79 @@ +createFromGlobals(); +$router = new \Orno\Route\RouteCollection; +$router->setStrategy(\Orno\Route\RouteStrategyInterface::RESTFUL_STRATEGY); + +// Set up the OAuth 2.0 resource server +$sessionStorage = new Storage\SessionStorage(); +$accessTokenStorage = new Storage\AccessTokenStorage(); +$clientStorage = new Storage\ClientStorage(); +$scopeStorage = new Storage\ScopeStorage(); +$accessTokenStorage = new Storage\AccessTokenStorage(); +$refreshTokenStorage = new Storage\RefreshTokenStorage(); +$authCodeStorage = new Storage\AuthCodeStorage(); + +$server = new AuthorizationServer(); +$server->setSessionStorage($sessionStorage); +$server->setAccessTokenStorage($accessTokenStorage); +$server->setRefreshTokenStorage($refreshTokenStorage); +$server->setClientStorage($clientStorage); +$server->setScopeStorage($scopeStorage); +$server->setAuthCodeStorage($authCodeStorage); + +$authCodeGrant = new Grant\AuthCodeGrant(); +$server->addGrantType($authCodeGrant); + +$server->setRequest($request); + +// GET /authorize +$router->get('/authorize', function (Request $request) use ($server) { + + // First ensure the parameters in the query string are correct + + try { + $authParams = $server->getGrantType('authorization_code')->checkAuthorizeParams(); + } catch (\Exception $e) { + echo json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]); + + exit; + } + + // Normally at this point you would show the user a sign-in screen and ask them to authorize the requested scopes + + // ... + + // Create a new authorize request which will respond with a redirect URI that the user will be redirected to + + $redirectUri = $server->newAuthorizeRequest('user', 1, $authParams); + + $response = new Response('', 200, [ + 'Location' => $redirectUri + ]); + + return $response; +}); + +$dispatcher = $router->getDispatcher(); +$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); +$response->send(); + +// var_dump(Capsule::getQueryLog()); From 5e4cd9870624cb3fab6c655836aea3de0129d1ec Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 23 May 2014 16:26:29 +0100 Subject: [PATCH 141/270] Use US spelling --- src/Grant/AuthCodeGrant.php | 15 +++++++-------- 1 file changed, 7 insertions(+), 8 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index fc8fec53..81baf42c 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -66,12 +66,11 @@ class AuthCodeGrant extends AbstractGrant } /** - * Check authorise parameters + * Check authorize parameters * - * @throws - * @return array Authorise request parameters + * @return array Authorize request parameters */ - public function checkAuthoriseParams() + public function checkAuthorizeParams() { // Get required params $clientId = $this->server->getRequest()->query->get('client_id', null); @@ -125,14 +124,14 @@ class AuthCodeGrant extends AbstractGrant } /** - * Parse a new authorise request + * Parse a new authorize request * * @param string $type The session owner's type * @param string $typeId The session owner's ID - * @param array $authParams The authorise request $_GET parameters + * @param array $authParams The authorize request $_GET parameters * @return string An authorisation code */ - public function newAuthoriseRequest($type, $typeId, $authParams = []) + public function newAuthorizeRequest($type, $typeId, $authParams = []) { // Create a new session $session = new SessionEntity($this->server); @@ -201,7 +200,7 @@ class AuthCodeGrant extends AbstractGrant throw new Exception\InvalidRequestException('code'); } - // Check redirect URI presented matches redirect URI originally used in authorise request + // Check redirect URI presented matches redirect URI originally used in authorize request if ($code->getRedirectUri() !== $redirectUri) { throw new Exception\InvalidRequestException('redirect_uri'); } From c1269a97d6753f1046420825d3ce33d8e1c19806 Mon Sep 17 00:00:00 2001 From: Dustin Wheeler Date: Thu, 29 May 2014 19:27:45 -0700 Subject: [PATCH 142/270] Adds create method to AuthCodeInterface. Relates to #160. --- src/Storage/AuthCodeInterface.php | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index 78dcc703..f8a358f9 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -26,6 +26,16 @@ interface AuthCodeInterface */ public function get($code); + /** + * Create an auth code. + * @param string $token The token ID + * @param integer $expireTime Token expire time + * @param integer $sessionId Session identifier + * + * @return void + */ + public function create($token, $expireTime, $sessionId); + /** * Get the scopes for an access token * @param \League\OAuth2\Server\Entity\AuthCodeEntity $token The auth code From 6aa52adb3ec27479dae23eba56e099ed29ca39af Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 20 Jun 2014 14:16:03 +0100 Subject: [PATCH 143/270] Fixed broken tests after rename --- tests/Grant/AuthCodeGrantTest.php | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/tests/Grant/AuthCodeGrantTest.php b/tests/Grant/AuthCodeGrantTest.php index fdf35235..a3d3ae2e 100644 --- a/tests/Grant/AuthCodeGrantTest.php +++ b/tests/Grant/AuthCodeGrantTest.php @@ -35,7 +35,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant = new AuthCodeGrant; $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } @@ -51,7 +51,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant = new AuthCodeGrant; $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParamsMissingStateParam() @@ -68,7 +68,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $server->requireStateParam(true); $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParamsMissingResponseType() @@ -84,7 +84,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant = new AuthCodeGrant; $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParamsInvalidResponseType() @@ -101,7 +101,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant = new AuthCodeGrant; $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParamsInvalidClient() @@ -124,7 +124,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $server->setClientStorage($clientStorage); $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParamsInvalidScope() @@ -167,7 +167,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $server->setAccessTokenStorage($accessTokenStorage); $server->addGrantType($grant); - $grant->checkAuthoriseParams(); + $grant->checkAuthorizeParams(); } public function testCheckAuthoriseParams() @@ -217,7 +217,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); - $result = $grant->checkAuthoriseParams(); + $result = $grant->checkAuthorizeParams(); $this->assertTrue($result['client'] instanceof ClientEntity); $this->assertTrue($result['redirect_uri'] === $_GET['redirect_uri']); @@ -250,7 +250,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $authCodeStorage->shouldReceive('associateScope'); $server->setAuthCodeStorage($authCodeStorage); - $grant->newAuthoriseRequest('user', 123, [ + $grant->newAuthorizeRequest('user', 123, [ 'client' => $client, 'redirect_uri' => 'http://foo/bar', 'scopes' => [$scope], From 9af1d2a2011afc27a6e30998b20d32981fd67506 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 20 Jun 2014 14:29:47 +0100 Subject: [PATCH 144/270] 100% test coverage --- src/Entity/AbstractTokenEntity.php | 5 +- src/Exception/UnauthorizedClientException.php | 2 +- tests/Entity/AbstractTokenEntityTest.php | 12 ++++- tests/Grant/ClientCredentialsGrantTest.php | 51 +++++++++++++++++++ 4 files changed, 65 insertions(+), 5 deletions(-) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 45140ad8..02a24d1b 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -153,10 +153,9 @@ abstract class AbstractTokenEntity */ public function __toString() { - if (is_null($this->token)) { - throw new \BadMethodCallException('Token is null'); + if ($this->token === null) { + return ''; } - return $this->token; } diff --git a/src/Exception/UnauthorizedClientException.php b/src/Exception/UnauthorizedClientException.php index ac3485c7..fd1f18c3 100644 --- a/src/Exception/UnauthorizedClientException.php +++ b/src/Exception/UnauthorizedClientException.php @@ -29,7 +29,7 @@ class UnauthorizedClientException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct() { parent::__construct('The client is not authorized to request an access token using this method.'); } diff --git a/tests/Entity/AbstractTokenEntityTest.php b/tests/Entity/AbstractTokenEntityTest.php index 2f16ea2e..3b934c0c 100644 --- a/tests/Entity/AbstractTokenEntityTest.php +++ b/tests/Entity/AbstractTokenEntityTest.php @@ -74,7 +74,7 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('getScopes')->andReturn( [] ); - $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage''>shouldReceive('setServer'); $server->setAccessTokenStorage($accessTokenStorage); @@ -103,4 +103,14 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $this->assertTrue($result['scope1'] instanceof ScopeEntity); $this->assertTrue($result['scope2'] instanceof ScopeEntity); } + + public function test__toString() + { + $server = M::mock('League\OAuth2\Server\AbstractServer'); + + $entity = new StubAbstractTokenEntity($server); + $this->assertEquals('', (string) $entity); + $entity->setToken('foobar'); + $this->assertEquals('foobar', (string) $entity); + } } diff --git a/tests/Grant/ClientCredentialsGrantTest.php b/tests/Grant/ClientCredentialsGrantTest.php index be01da8b..8db12085 100644 --- a/tests/Grant/ClientCredentialsGrantTest.php +++ b/tests/Grant/ClientCredentialsGrantTest.php @@ -198,4 +198,55 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $server->addGrantType($grant); $server->issueAccessToken(); } + + public function testClientNotAuthorizedToUseGrant() + { + $this->setExpectedException('\League\OAuth2\Server\Exception\UnauthorizedClientException'); + + $_POST = [ + 'grant_type' => 'client_credentials', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'scope' => 'foo' + ]; + + $server = new AuthorizationServer; + $grant = new ClientCredentialsGrant; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andThrow( + new \League\OAuth2\Server\Exception\UnauthorizedClientException + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + // $sessionStorage->shouldReceive('create')->andreturn(123); + // $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ + // (new ScopeEntity($server))->setId('foo') + // ]); + // $sessionStorage->shouldReceive('associateScope'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + // $accessTokenStorage->shouldReceive('create'); + // $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + // (new ScopeEntity($server))->setId('foo') + // ]); + // $accessTokenStorage->shouldReceive('associateScope'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn( + (new ScopeEntity($server))->setId('foo') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } } From 92639fbbd682015dd3b54bb2f99b870ce07717fe Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 20 Jun 2014 14:31:17 +0100 Subject: [PATCH 145/270] Removed dead code --- tests/Grant/ClientCredentialsGrantTest.php | 10 ---------- 1 file changed, 10 deletions(-) diff --git a/tests/Grant/ClientCredentialsGrantTest.php b/tests/Grant/ClientCredentialsGrantTest.php index 8db12085..13bd2e80 100644 --- a/tests/Grant/ClientCredentialsGrantTest.php +++ b/tests/Grant/ClientCredentialsGrantTest.php @@ -221,19 +221,9 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); - // $sessionStorage->shouldReceive('create')->andreturn(123); - // $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - // (new ScopeEntity($server))->setId('foo') - // ]); - // $sessionStorage->shouldReceive('associateScope'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); - // $accessTokenStorage->shouldReceive('create'); - // $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - // (new ScopeEntity($server))->setId('foo') - // ]); - // $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); From 33c68a21039e8ec7178a67b05b69874c62bb5b32 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 23 Jun 2014 08:20:34 +0100 Subject: [PATCH 146/270] More updates to relational example --- .../relational/Storage/AuthCodeStorage.php | 32 +++++++++- examples/relational/Storage/ClientStorage.php | 28 ++++++++- examples/relational/Storage/ScopeStorage.php | 15 ++++- .../relational/Storage/SessionStorage.php | 26 ++++++++- examples/relational/auth.php | 58 +++++++++++-------- examples/relational/config/init.php | 15 +++++ src/Grant/AuthCodeGrant.php | 6 +- src/Grant/PasswordGrant.php | 3 +- 8 files changed, 149 insertions(+), 34 deletions(-) diff --git a/examples/relational/Storage/AuthCodeStorage.php b/examples/relational/Storage/AuthCodeStorage.php index c5dbe41f..856d852d 100644 --- a/examples/relational/Storage/AuthCodeStorage.php +++ b/examples/relational/Storage/AuthCodeStorage.php @@ -7,6 +7,8 @@ use League\OAuth2\Server\Storage\Adapter; use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Entity\ScopeEntity; +use Illuminate\Database\Capsule\Manager as Capsule; + class AuthCodeStorage extends Adapter implements AuthCodeInterface { /** @@ -14,7 +16,29 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface */ public function get($code) { - die(var_dump(__METHOD__, func_get_args())); + $result = Capsule::table('oauth_auth_codes') + ->where('auth_code', $code) + ->where('expire_time', '>=', time()) + ->get(); + + if (count($result) === 1) { + $token = new AuthCodeEntity($this->server); + $token->setToken($result[0]['auth_code']); + return $token; + } + + return null; + } + + public function create($token, $$expireTime, $sessionId) + { + Capsule::table('oauth_auth_codes') + ->insert([ + 'auth_code' => $token, + 'client_redirect_uri' => $redirectUri, + 'session_id' => $sessionId, + 'expire_time' => $expireTime + ]); } /** @@ -30,7 +54,11 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface */ public function associateScope(AuthCodeEntity $token, ScopeEntity $scope) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_auth_code_scopes') + ->insert([ + 'auth_code' => $token->getToken(), + 'scope' => $scope->getId() + ]); } /** diff --git a/examples/relational/Storage/ClientStorage.php b/examples/relational/Storage/ClientStorage.php index dbee1ab7..0b61f074 100644 --- a/examples/relational/Storage/ClientStorage.php +++ b/examples/relational/Storage/ClientStorage.php @@ -16,7 +16,31 @@ class ClientStorage extends Adapter implements ClientInterface */ public function get($clientId, $clientSecret = null, $redirectUri = null, $grantType = null) { - die(var_dump(__METHOD__, func_get_args())); + $query = Capsule::table('oauth_clients') + ->select('oauth_clients.*') + ->where('oauth_clients.id', $clientId); + + if ($clientSecret !== null) { + $query->where('oauth_clients.secret', $clientSecret); + } + + if ($redirectUri) { + $query->join('oauth_client_redirect_uris', 'oauth_clients.id', '=', 'oauth_client_redirect_uris.client_id') + ->select(['oauth_clients.*', 'oauth_client_redirect_uris.*']) + ->where('oauth_client_redirect_uris.redirect_uri', $redirectUri); + } + + $result = $query->get(); + + if (count($result) === 1) { + $client = new ClientEntity($this->server); + $client->setId($result[0]['id']); + $client->setName($result[0]['name']); + + return $client; + } + + return null; } /** @@ -37,5 +61,7 @@ class ClientStorage extends Adapter implements ClientInterface return $client; } + + return null; } } diff --git a/examples/relational/Storage/ScopeStorage.php b/examples/relational/Storage/ScopeStorage.php index 1dcdde73..ab31bfc3 100644 --- a/examples/relational/Storage/ScopeStorage.php +++ b/examples/relational/Storage/ScopeStorage.php @@ -4,6 +4,9 @@ namespace RelationalExample\Storage; use League\OAuth2\Server\Storage\ScopeInterface; use League\OAuth2\Server\Storage\Adapter; +use League\OAuth2\Server\Entity\ScopeEntity; + +use Illuminate\Database\Capsule\Manager as Capsule; class ScopeStorage extends Adapter implements ScopeInterface { @@ -12,6 +15,16 @@ class ScopeStorage extends Adapter implements ScopeInterface */ public function get($scope, $grantType = null) { - die(var_dump(__METHOD__, func_get_args())); + $result = Capsule::table('oauth_scopes') + ->where('id', $scope) + ->get(); + + if (count($result) === 0) { + return null; + } + + return (new ScopeEntity($this->server)) + ->setId($result[0]['id']) + ->setDescription($result[0]['description']); } } diff --git a/examples/relational/Storage/SessionStorage.php b/examples/relational/Storage/SessionStorage.php index fa8cf1b2..faf0162b 100644 --- a/examples/relational/Storage/SessionStorage.php +++ b/examples/relational/Storage/SessionStorage.php @@ -57,7 +57,22 @@ class SessionStorage extends Adapter implements SessionInterface */ public function getScopes(SessionEntity $session) { - die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + $result = Capsule::table('oauth_sessions') + ->select('oauth_scopes.*') + ->join('oauth_session_scopes', 'oauth_sessions.id', '=', 'oauth_session_scopes.session_id') + ->join('oauth_scopes', 'oauth_scopes.id', '=', 'oauth_session_scopes.scope') + ->where('oauth_sessions.id', $session->getId()) + ->get(); + + $scopes = []; + + foreach ($result as $scope) { + $scopes[] = (new ScopeEntity($this->server)) + ->setId($scope['id']) + ->setDescription($scope['description']); + } + + return $scopes; } /** @@ -65,7 +80,14 @@ class SessionStorage extends Adapter implements SessionInterface */ public function create($ownerType, $ownerId, $clientId, $clientRedirectUri = null) { - die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + $id = Capsule::table('oauth_sessions') + ->insert([ + 'owner_type' => $ownerType, + 'owner_id' => $ownerId, + 'client_id' => $clientId + ]); + + return $id; } /** diff --git a/examples/relational/auth.php b/examples/relational/auth.php index d99b38e9..15fb3592 100644 --- a/examples/relational/auth.php +++ b/examples/relational/auth.php @@ -5,40 +5,32 @@ namespace OAuth2Server\RelationalExample; use \Orno\Http\Request; use \Orno\Http\Response; use \Orno\Http\JsonResponse; -use \League\OAuth2\Server\AuthorizationServer; -use \League\OAuth2\Server\Exception; -use \League\OAuth2\Server\Grant; +use \Orno\Http\Exception\MethodNotAllowedException; + +use Illuminate\Database\Capsule\Manager as Capsule; + +// use \League\OAuth2\Server\Exception; use \RelationalExample\Storage; use \RelationalExample\Model; -use Illuminate\Database\Capsule\Manager as Capsule; include __DIR__.'/vendor/autoload.php'; // Routing setup -$request = (new Request)->createFromGlobals(); $router = new \Orno\Route\RouteCollection; -$router->setStrategy(\Orno\Route\RouteStrategyInterface::RESTFUL_STRATEGY); // Set up the OAuth 2.0 resource server -$sessionStorage = new Storage\SessionStorage(); -$accessTokenStorage = new Storage\AccessTokenStorage(); -$clientStorage = new Storage\ClientStorage(); -$scopeStorage = new Storage\ScopeStorage(); -$accessTokenStorage = new Storage\AccessTokenStorage(); -$refreshTokenStorage = new Storage\RefreshTokenStorage(); -$authCodeStorage = new Storage\AuthCodeStorage(); +$server = new \League\OAuth2\Server\AuthorizationServer; +$server->setSessionStorage(new Storage\SessionStorage); +$server->setAccessTokenStorage(new Storage\AccessTokenStorage); +$server->setRefreshTokenStorage(new Storage\RefreshTokenStorage); +$server->setClientStorage(new Storage\ClientStorage); +$server->setScopeStorage(new Storage\ScopeStorage); +$server->setAuthCodeStorage(new Storage\AuthCodeStorage); -$server = new AuthorizationServer(); -$server->setSessionStorage($sessionStorage); -$server->setAccessTokenStorage($accessTokenStorage); -$server->setRefreshTokenStorage($refreshTokenStorage); -$server->setClientStorage($clientStorage); -$server->setScopeStorage($scopeStorage); -$server->setAuthCodeStorage($authCodeStorage); - -$authCodeGrant = new Grant\AuthCodeGrant(); +$authCodeGrant = new \League\OAuth2\Server\Grant\AuthCodeGrant(); $server->addGrantType($authCodeGrant); +$request = (new Request)->createFromGlobals(); $server->setRequest($request); // GET /authorize @@ -61,9 +53,13 @@ $router->get('/authorize', function (Request $request) use ($server) { // ... + // ... + + // ... + // Create a new authorize request which will respond with a redirect URI that the user will be redirected to - $redirectUri = $server->newAuthorizeRequest('user', 1, $authParams); + $redirectUri = $server->getGrantType('authorization_code')->newAuthorizeRequest('user', 1, $authParams); $response = new Response('', 200, [ 'Location' => $redirectUri @@ -72,6 +68,22 @@ $router->get('/authorize', function (Request $request) use ($server) { return $response; }); +// /access_token +$router->post('/access_token', function (Request $request) use ($server) { + + try { + $response = $server->getGrantType('authorization_code')->completeFlow(); + } catch (\Exception $e) { + echo json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]); + + exit; + } + +}); + $dispatcher = $router->getDispatcher(); $response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); $response->send(); diff --git a/examples/relational/config/init.php b/examples/relational/config/init.php index 9bf4b7f9..8baa61fd 100644 --- a/examples/relational/config/init.php +++ b/examples/relational/config/init.php @@ -59,6 +59,21 @@ Capsule::table('oauth_clients')->insert([ /******************************************************************************/ +print 'Creating client redirect uris table'.PHP_EOL; + +Capsule::schema()->create('oauth_client_redirect_uris', function ($table) { + $table->increments('id'); + $table->string('client_id'); + $table->string('redirect_uri'); +}); + +Capsule::table('oauth_client_redirect_uris')->insert([ + 'client_id' => 'testclient', + 'redirect_uri' => 'http://example.com/redirect' +]); + +/******************************************************************************/ + print 'Creating scopes table'.PHP_EOL; Capsule::schema()->create('oauth_scopes', function ($table) { diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 81baf42c..8b8234fc 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -142,7 +142,8 @@ class AuthCodeGrant extends AbstractGrant // Create a new auth code $authCode = new AuthCodeEntity($this->server); $authCode->setToken(SecureKey::generate()); - $authCode->setRedirectUri($authParams['redirect_uri']); + $authCode->setRedirectUri(); + $authCode->setExpireTime(time() + $this->authTokenTTL); foreach ($authParams['scopes'] as $scope) { $authCode->associateScope($scope); @@ -156,10 +157,9 @@ class AuthCodeGrant extends AbstractGrant /** * Complete the auth code grant - * @param null|array $inputParams * @return array */ - public function completeFlow($inputParams = null) + public function completeFlow() { // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 9c2b27e3..a44c718b 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -72,10 +72,9 @@ class PasswordGrant extends AbstractGrant /** * Complete the password grant - * @param null|array $inputParams * @return array */ - public function completeFlow($inputParams = null) + public function completeFlow() { // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); From 83c7dea1cc42d3595a3835f1982e3cef95258059 Mon Sep 17 00:00:00 2001 From: Fahmi Ardi Date: Thu, 3 Jul 2014 14:58:13 +0700 Subject: [PATCH 147/270] allowing client crendentials to be sent as Basic authentication --- src/Grant/AuthCodeGrant.php | 10 ++++++++-- src/Grant/ClientCredentialsGrant.php | 10 ++++++++-- src/Grant/PasswordGrant.php | 10 ++++++++-- src/Grant/RefreshTokenGrant.php | 10 ++++++++-- 4 files changed, 32 insertions(+), 8 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index fc8fec53..e3e10363 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -165,12 +165,18 @@ class AuthCodeGrant extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new Exception\InvalidRequestException('client_id'); + $clientId = $this->server->getRequest()->getUser(); + if (is_null($clientId)) { + throw new Exception\InvalidRequestException('client_id'); + } } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new Exception\InvalidRequestException('client_secret'); + $clientId = $this->server->getRequest()->getPassword(); + if (is_null($clientSecret)) { + throw new Exception\InvalidRequestException('client_secret'); + } } $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null); diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 786d5d2c..3541d546 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -56,12 +56,18 @@ class ClientCredentialsGrant extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new Exception\InvalidRequestException('client_id'); + $clientId = $this->server->getRequest()->getUser(); + if (is_null($clientId)) { + throw new Exception\InvalidRequestException('client_id'); + } } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new Exception\InvalidRequestException('client_secret'); + $clientId = $this->server->getRequest()->getPassword(); + if (is_null($clientSecret)) { + throw new Exception\InvalidRequestException('client_secret'); + } } // Validate client ID and client secret diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 9c2b27e3..21f89cb3 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -80,12 +80,18 @@ class PasswordGrant extends AbstractGrant // Get the required params $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new Exception\InvalidRequestException('client_id'); + $clientId = $this->server->getRequest()->getUser(); + if (is_null($clientId)) { + throw new Exception\InvalidRequestException('client_id'); + } } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new Exception\InvalidRequestException('client_secret'); + $clientId = $this->server->getRequest()->getPassword(); + if (is_null($clientSecret)) { + throw new Exception\InvalidRequestException('client_secret'); + } } // Validate client ID and client secret diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 01f5e695..92b116f8 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -60,12 +60,18 @@ class RefreshTokenGrant extends AbstractGrant { $clientId = $this->server->getRequest()->request->get('client_id', null); if (is_null($clientId)) { - throw new Exception\InvalidRequestException('client_id'); + $clientId = $this->server->getRequest()->getUser(); + if (is_null($clientId)) { + throw new Exception\InvalidRequestException('client_id'); + } } $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - throw new Exception\InvalidRequestException('client_secret'); + $clientId = $this->server->getRequest()->getPassword(); + if (is_null($clientSecret)) { + throw new Exception\InvalidRequestException('client_secret'); + } } // Validate client ID and client secret From 92779ad07860377d55ca7938fb6b12331b1fa97e Mon Sep 17 00:00:00 2001 From: Fahmi Ardi Date: Thu, 3 Jul 2014 15:03:58 +0700 Subject: [PATCH 148/270] missing clientSecret variable --- src/Grant/AuthCodeGrant.php | 2 +- src/Grant/ClientCredentialsGrant.php | 2 +- src/Grant/PasswordGrant.php | 2 +- src/Grant/RefreshTokenGrant.php | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index e3e10363..2d8fb5db 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -173,7 +173,7 @@ class AuthCodeGrant extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - $clientId = $this->server->getRequest()->getPassword(); + $clientSecret = $this->server->getRequest()->getPassword(); if (is_null($clientSecret)) { throw new Exception\InvalidRequestException('client_secret'); } diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 3541d546..442d6f84 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -64,7 +64,7 @@ class ClientCredentialsGrant extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - $clientId = $this->server->getRequest()->getPassword(); + $clientSecret = $this->server->getRequest()->getPassword(); if (is_null($clientSecret)) { throw new Exception\InvalidRequestException('client_secret'); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 21f89cb3..6e90aa19 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -88,7 +88,7 @@ class PasswordGrant extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - $clientId = $this->server->getRequest()->getPassword(); + $clientSecret = $this->server->getRequest()->getPassword(); if (is_null($clientSecret)) { throw new Exception\InvalidRequestException('client_secret'); } diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 92b116f8..f757560c 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -68,7 +68,7 @@ class RefreshTokenGrant extends AbstractGrant $clientSecret = $this->server->getRequest()->request->get('client_secret', null); if (is_null($clientSecret)) { - $clientId = $this->server->getRequest()->getPassword(); + $clientSecret = $this->server->getRequest()->getPassword(); if (is_null($clientSecret)) { throw new Exception\InvalidRequestException('client_secret'); } From 954f29f8790d7e440bc4bb535f89b5d5900b405f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 11 Jul 2014 15:13:28 +0100 Subject: [PATCH 149/270] Added league/event and implemented SessionOwnerEvent --- composer.json | 3 +- src/AbstractServer.php | 32 +++++++++++++++++++++ src/AuthorizationServer.php | 2 ++ src/Entity/SessionEntity.php | 2 ++ src/Event/SessionOwnerEvent.php | 51 +++++++++++++++++++++++++++++++++ src/ResourceServer.php | 2 ++ 6 files changed, 91 insertions(+), 1 deletion(-) create mode 100644 src/Event/SessionOwnerEvent.php diff --git a/composer.json b/composer.json index 24bffa85..24105daa 100644 --- a/composer.json +++ b/composer.json @@ -5,7 +5,8 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "~2.1" + "symfony/http-foundation": "~2.1", + "league/event": "0.1" }, "require-dev": { "phpunit/phpunit": "~4.0", diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 8439fa85..d3ddcbb4 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -14,6 +14,7 @@ namespace League\OAuth2\Server; use League\OAuth2\Server\Exception; use League\OAuth2\Server\TokenType\TokenTypeInterface; use Symfony\Component\HttpFoundation\Request; +use League\Event\Emitter; /** * OAuth 2.0 Resource Server @@ -40,6 +41,37 @@ abstract class AbstractServer */ protected $tokenType; + /** + * Event emitter + */ + protected $eventEmitter; + + /** + * Abstract server constructor + */ + public function __construct() + { + $this->eventEmitter = $this->setEventEmitter(); + } + + /** + * Set an event emitter + * @param object $emitter Event emitter object + */ + public function setEventEmitter($emitter = null) + { + if ($emitter === null) { + $this->eventEmitter = new Emitter; + } else { + $this->eventEmitter = $emitter; + } + } + + public function addEventListener($eventName, callable $listener) + { + $this->eventEmitter->addListener($eventName, $listener); + } + /** * Sets the Request Object * @param \Symfony\Component\HttpFoundation\Request The Request Object diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index eb94c6b7..b0b0bc14 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -80,6 +80,8 @@ class AuthorizationServer extends AbstractServer // Set Bearer as the default token type $this->setTokenType(new Bearer); + parent::__construct(); + return $this; } diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index f8c14301..ef5f8d0e 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -228,6 +228,8 @@ class SessionEntity $this->ownerType = $type; $this->ownerId = $id; + $this->server->eventEmitter->emit(new Event\SessionOwnerEvent($this)); + return $this; } diff --git a/src/Event/SessionOwnerEvent.php b/src/Event/SessionOwnerEvent.php new file mode 100644 index 00000000..f8c6be76 --- /dev/null +++ b/src/Event/SessionOwnerEvent.php @@ -0,0 +1,51 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Event; + +use League\Event\EventAbstract; +use League\OAuth2\Server\Entity\SessionEntity; + +class SessionOwnerEvent extends EventAbstract +{ + /** + * Session entity + * @var \League\OAuth2\Server\Entity\SessionEntity + */ + private $session; + + /** + * Init the event with a session + * @param \League\OAuth2\Server\Entity\SessionEntity $session + */ + public function __construct(SessionEntity $session) + { + $this->session = $session; + } + + /** + * The name of the event + * @return string + */ + public function getName() + { + return 'session.owner'; + } + + /** + * Return session + * @return \League\OAuth2\Server\Entity\SessionEntity + */ + public function getSession() + { + return $this->session; + } +} diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 853a5f19..f2a8da7f 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -66,6 +66,8 @@ class ResourceServer extends AbstractServer // Set Bearer as the default token type $this->setTokenType(new Bearer); + parent::__construct(); + return $this; } From 0a3215be8ea90932b627f51179d0131a2782749d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 11 Jul 2014 15:18:47 +0100 Subject: [PATCH 150/270] Added entity trate --- src/Entity/EntityTrait.php | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 src/Entity/EntityTrait.php diff --git a/src/Entity/EntityTrait.php b/src/Entity/EntityTrait.php new file mode 100644 index 00000000..aaef33b4 --- /dev/null +++ b/src/Entity/EntityTrait.php @@ -0,0 +1,28 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Entity; + +trait EntityTrait +{ + /** + * Hydrate an entity with properites + * @param array $properties + */ + public function hydrate(array $properties) + { + foreach ($properties as $prop) { + if (isset($this->{$prop})) { + $this->{$prop} = $prop; + } + } + } +} From 48dea185d8f95e62a3dee78a7245bb2f504e1fe4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 11 Jul 2014 18:18:41 +0100 Subject: [PATCH 151/270] Added getEventEmitter method to abstractserver --- src/AbstractServer.php | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index d3ddcbb4..329d380f 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -51,7 +51,7 @@ abstract class AbstractServer */ public function __construct() { - $this->eventEmitter = $this->setEventEmitter(); + $this->setEventEmitter(); } /** @@ -72,6 +72,11 @@ abstract class AbstractServer $this->eventEmitter->addListener($eventName, $listener); } + public function getEventEmitter() + { + return $this->eventEmitter; + } + /** * Sets the Request Object * @param \Symfony\Component\HttpFoundation\Request The Request Object @@ -118,7 +123,7 @@ abstract class AbstractServer * @param TokenTypeInterface $tokenType The token type * @return void */ - public function setTokenType(TokenTypeInterface $tokenType) + public function setIdType(TokenTypeInterface $tokenType) { $this->tokenType = $tokenType; } @@ -127,7 +132,7 @@ abstract class AbstractServer * Get the access token type * @return TokenTypeInterface */ - public function getTokenType() + public function getIdType() { return $this->tokenType; } From c6bc1b0cfc4750052447b5d77c7bbd0dfee693d9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 11 Jul 2014 18:19:10 +0100 Subject: [PATCH 152/270] Updated tests --- tests/Entity/AbstractTokenEntityTest.php | 12 ++--- tests/Entity/AccessTokenEntityTest.php | 2 +- tests/Entity/AuthCodeEntityTest.php | 4 +- tests/Entity/ClientEntityTest.php | 11 +++-- tests/Entity/RefreshTokenEntityTest.php | 4 +- tests/Entity/ScopeEntityTest.php | 7 +-- tests/Entity/SessionEntityTest.php | 18 ++++++-- tests/Grant/AbstractGrantTest.php | 13 +++--- tests/Grant/AuthCodeGrantTest.php | 53 ++++++++++++---------- tests/Grant/ClientCredentialsGrantTest.php | 16 +++---- tests/Grant/PasswordGrantTest.php | 34 +++++++------- tests/Grant/RefreshTokenGrantTest.php | 26 +++++------ tests/ResourceServerTest.php | 16 +++---- 13 files changed, 115 insertions(+), 101 deletions(-) diff --git a/tests/Entity/AbstractTokenEntityTest.php b/tests/Entity/AbstractTokenEntityTest.php index 3b934c0c..f3bb290a 100644 --- a/tests/Entity/AbstractTokenEntityTest.php +++ b/tests/Entity/AbstractTokenEntityTest.php @@ -16,12 +16,12 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $time = time(); $entity = new StubAbstractTokenEntity($server); - $entity->setToken('foobar'); + $entity->setId('foobar'); $entity->setExpireTime($time); $entity->setSession((new SessionEntity($server))); - $entity->associateScope((new ScopeEntity($server))->setId('foo')); + $entity->associateScope((new ScopeEntity($server))->hydrate(['id' => 'foo'])); - $this->assertEquals('foobar', $entity->getToken()); + $this->assertEquals('foobar', $entity->getId()); $this->assertEquals($time, $entity->getExpireTime()); // $this->assertTrue($entity->getSession() instanceof SessionEntity); // $this->assertTrue($entity->hasScope('foo')); @@ -92,8 +92,8 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $method->setAccessible(true); $scopes = [ - (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), - (new ScopeEntity($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->hydrate(['id' => 'scope1', 'description' => 'foo']), + (new ScopeEntity($server))->hydrate(['id' => 'scope2', 'description' => 'bar']) ]; $result = $method->invokeArgs($entity, [$scopes]); @@ -110,7 +110,7 @@ class AbstractTokenTest extends \PHPUnit_Framework_TestCase $entity = new StubAbstractTokenEntity($server); $this->assertEquals('', (string) $entity); - $entity->setToken('foobar'); + $entity->setId('foobar'); $this->assertEquals('foobar', (string) $entity); } } diff --git a/tests/Entity/AccessTokenEntityTest.php b/tests/Entity/AccessTokenEntityTest.php index c1a748bd..f034d4c5 100644 --- a/tests/Entity/AccessTokenEntityTest.php +++ b/tests/Entity/AccessTokenEntityTest.php @@ -20,7 +20,7 @@ class AccessTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); diff --git a/tests/Entity/AuthCodeEntityTest.php b/tests/Entity/AuthCodeEntityTest.php index 5510b9cf..56205e44 100644 --- a/tests/Entity/AuthCodeEntityTest.php +++ b/tests/Entity/AuthCodeEntityTest.php @@ -18,7 +18,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $code = new AuthCodeEntity($server); $code->setRedirectUri('http://foo/bar'); - $code->setToken('foobar'); + $code->setId('foobar'); $code->setSession($session); $this->assertEquals('http://foo/bar', $code->getRedirectUri()); @@ -37,7 +37,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase $authCodeStorage->shouldReceive('associateScope'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $server->shouldReceive('getStorage')->with('auth_code')->andReturn($authCodeStorage); diff --git a/tests/Entity/ClientEntityTest.php b/tests/Entity/ClientEntityTest.php index 2f627c1b..7521ad7a 100644 --- a/tests/Entity/ClientEntityTest.php +++ b/tests/Entity/ClientEntityTest.php @@ -10,11 +10,12 @@ class ClientTest extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $client = new ClientEntity($server); - $client->setId('foobar'); - $client->setSecret('barfoo'); - $client->setName('Test Client'); - $client->setRedirectUri('http://foo/bar'); + $client = (new ClientEntity($server))->hydrate([ + 'id' => 'foobar', + 'secret' => 'barfoo', + 'name' => 'Test Client', + 'redirectUri' => 'http://foo/bar' + ]); $this->assertEquals('foobar', $client->getId()); $this->assertEquals('barfoo', $client->getSecret()); diff --git a/tests/Entity/RefreshTokenEntityTest.php b/tests/Entity/RefreshTokenEntityTest.php index 26ad72b8..d0bcc162 100644 --- a/tests/Entity/RefreshTokenEntityTest.php +++ b/tests/Entity/RefreshTokenEntityTest.php @@ -39,10 +39,10 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( - (new AccessTokenEntity($server))->setToken('foobar') + (new AccessTokenEntity($server))->setId('foobar') ); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); diff --git a/tests/Entity/ScopeEntityTest.php b/tests/Entity/ScopeEntityTest.php index cdd39040..a9730089 100644 --- a/tests/Entity/ScopeEntityTest.php +++ b/tests/Entity/ScopeEntityTest.php @@ -10,9 +10,10 @@ class ScopeTest extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = M::mock('League\OAuth2\Server\AbstractServer'); - $scope = new ScopeEntity($server); - $scope->setId('foobar'); - $scope->setDescription('barfoo'); + $scope = (new ScopeEntity($server))->hydrate([ + 'id' => 'foobar', + 'description' => 'barfoo' + ]); $this->assertEquals('foobar', $scope->getId()); $this->assertEquals('barfoo', $scope->getDescription()); diff --git a/tests/Entity/SessionEntityTest.php b/tests/Entity/SessionEntityTest.php index 4b7158e9..e02dae85 100644 --- a/tests/Entity/SessionEntityTest.php +++ b/tests/Entity/SessionEntityTest.php @@ -14,14 +14,22 @@ class SessionTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { + $emitter = M::mock('League\Event\Emitter'); + $emitter->shouldReceive('emit'); $server = M::mock('League\OAuth2\Server\AbstractServer'); + $server->shouldReceive('setEventEmitter'); + $server->shouldReceive('getEventEmitter')->andReturn($emitter); + $server->setEventEmitter($emitter); + $entity = new SessionEntity($server); $entity->setId('foobar'); $entity->setOwner('user', 123); $entity->associateAccessToken((new AccessTokenEntity($server))); $entity->associateRefreshToken((new RefreshTokenEntity($server))); $entity->associateClient((new ClientEntity($server))); - $entity->associateScope((new ScopeEntity($server))->setId('foo')); + $entity->associateScope( + (new ScopeEntity($server))->hydrate(['id' => 'foo']) + ); // $entity->associateAuthCode((new AuthCode($server))); $this->assertEquals('foobar', $entity->getId()); @@ -51,8 +59,8 @@ class SessionTest extends \PHPUnit_Framework_TestCase $method->setAccessible(true); $scopes = [ - (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), - (new ScopeEntity($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->hydrate(['id' => 'scope1']), + (new ScopeEntity($server))->hydrate(['id' => 'scope2']) ]; $result = $method->invokeArgs($entity, [$scopes]); @@ -124,14 +132,14 @@ class SessionTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('associateScope'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new ClientEntity($server))->setId('foo') + (new ClientEntity($server))->hydrate(['id' => 'foo']) ); $clientStorage->shouldReceive('setServer'); diff --git a/tests/Grant/AbstractGrantTest.php b/tests/Grant/AbstractGrantTest.php index f50b43bd..15168bf0 100644 --- a/tests/Grant/AbstractGrantTest.php +++ b/tests/Grant/AbstractGrantTest.php @@ -36,8 +36,8 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $method->setAccessible(true); $scopes = [ - (new ScopeEntity($server))->setId('scope1')->setDescription('foo'), - (new ScopeEntity($server))->setId('scope2')->setDescription('bar') + (new ScopeEntity($server))->hydrate(['id' => 'scope1', 'description' => 'foo']), + (new ScopeEntity($server))->hydrate(['id' => 'scope2', 'description' => 'bar']) ]; $result = $method->invokeArgs($grant, [$scopes]); @@ -55,7 +55,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setScopeStorage($scopeStorage); @@ -65,9 +65,8 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $this->assertEquals( [ - 'foo' => (new ScopeEntity($server))->setId('foo') + 'foo' => (new ScopeEntity($server))->hydrate(['id' => 'foo']) ], - $grant->validateScopes('foo') ); } @@ -113,7 +112,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setScopeStorage($scopeStorage); @@ -134,7 +133,7 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setScopeStorage($scopeStorage); diff --git a/tests/Grant/AuthCodeGrantTest.php b/tests/Grant/AuthCodeGrantTest.php index a3d3ae2e..c0641438 100644 --- a/tests/Grant/AuthCodeGrantTest.php +++ b/tests/Grant/AuthCodeGrantTest.php @@ -144,7 +144,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -185,14 +185,14 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage->shouldReceive('associateScope'); @@ -200,14 +200,14 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -229,9 +229,8 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase public function testNewAuthoriseRequest() { $server = new AuthorizationServer; - - $client = (new ClientEntity($server))->setId('testapp'); - $scope = (new ScopeEntity($server))->setId('foo'); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + $scope = (new ScopeEntity($server))->hydrate(['id' => 'foo']); $grant = new AuthCodeGrant; $server->addGrantType($grant); @@ -346,7 +345,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -395,7 +394,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -444,7 +443,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -464,7 +463,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://fail/face') + (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://fail/face') ); $server->setClientStorage($clientStorage); @@ -493,10 +492,10 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -506,29 +505,32 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getByAuthCode')->andReturn( (new SessionEntity($server))->setId('foobar') ); + $sessionStorage->shouldReceive('getScopes')->andReturn([ + (new ScopeEntity($server))->hydrate(['id' => 'foo']) + ]); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar') ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $server->setClientStorage($clientStorage); @@ -558,10 +560,10 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('getBySession')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -571,29 +573,32 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getByAuthCode')->andReturn( (new SessionEntity($server))->setId('foobar') ); + $sessionStorage->shouldReceive('getScopes')->andReturn([ + (new ScopeEntity($server))->hydrate(['id' => 'foo']) + ]); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('associateScope'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setToken('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar') ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); diff --git a/tests/Grant/ClientCredentialsGrantTest.php b/tests/Grant/ClientCredentialsGrantTest.php index 13bd2e80..1741cd83 100644 --- a/tests/Grant/ClientCredentialsGrantTest.php +++ b/tests/Grant/ClientCredentialsGrantTest.php @@ -80,7 +80,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -120,7 +120,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -138,7 +138,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); // $scopeStorage->shouldReceive('get')->andReturn( - // // (new ScopeEntity($server))->setId('foo') + // // (new ScopeEntity($server))->hydrate(['id' => 'foo']) // ); $server->setClientStorage($clientStorage); @@ -165,14 +165,14 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage->shouldReceive('associateScope'); @@ -180,14 +180,14 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -228,7 +228,7 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); diff --git a/tests/Grant/PasswordGrantTest.php b/tests/Grant/PasswordGrantTest.php index 0f253ee2..e55f013e 100644 --- a/tests/Grant/PasswordGrantTest.php +++ b/tests/Grant/PasswordGrantTest.php @@ -80,7 +80,7 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -123,7 +123,7 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -167,7 +167,7 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -212,7 +212,7 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -259,7 +259,7 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -309,14 +309,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage->shouldReceive('associateScope'); @@ -324,14 +324,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -363,14 +363,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage->shouldReceive('associateScope'); @@ -378,14 +378,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -422,14 +422,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $sessionStorage->shouldReceive('associateScope'); @@ -437,14 +437,14 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); diff --git a/tests/Grant/RefreshTokenGrantTest.php b/tests/Grant/RefreshTokenGrantTest.php index 44239ff6..39dc0e2e 100644 --- a/tests/Grant/RefreshTokenGrantTest.php +++ b/tests/Grant/RefreshTokenGrantTest.php @@ -92,7 +92,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -127,7 +127,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $refreshTokenStorage = M::mock('League\OAuth2\Server\Storage\RefreshTokenInterface'); @@ -161,7 +161,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -180,7 +180,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -196,7 +196,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -228,12 +228,12 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $server = new AuthorizationServer; $grant = new RefreshTokenGrant; - $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); + $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->hydrate(['id' => 'foo'])); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -252,7 +252,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -268,7 +268,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ); $server->setClientStorage($clientStorage); @@ -300,12 +300,12 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $server = new AuthorizationServer; $grant = new RefreshTokenGrant; - $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->setId('foo')); + $oldSession = (new SessionEntity($server))->associateScope((new ScopeEntity($server))->hydrate(['id' => 'foo'])); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('setServer'); $clientStorage->shouldReceive('get')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); @@ -324,7 +324,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('create'); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo') + (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); $accessTokenStorage->shouldReceive('associateScope'); @@ -340,7 +340,7 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); $scopeStorage->shouldReceive('setServer'); $scopeStorage->shouldReceive('get')->andReturn( - (new ScopeEntity($server))->setId('blah') + (new ScopeEntity($server))->hydrate(['id' => 'blah']) ); $server->setClientStorage($clientStorage); diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index 191de84c..e485cf24 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -135,23 +135,23 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $scopeStorage ); - $server->setTokenKey('at'); + $server->setIdKey('at'); $accessTokenStorage->shouldReceive('get')->andReturn( - (new AccessTokenEntity($server))->setToken('abcdef') + (new AccessTokenEntity($server))->setId('abcdef') ); - $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - (new ScopeEntity($server))->setId('foo'), - (new ScopeEntity($server))->setId('bar') - ]); + // $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + // (new ScopeEntity($server))->hydrate(['id' => 'foo']), + // (new ScopeEntity($server))->hydrate(['id' => 'bar']) + // ]); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( (new SessionEntity($server))->setId('foobar')->setOwner('user', 123) ); $clientStorage->shouldReceive('getBySession')->andReturn( - (new ClientEntity($server))->setId('testapp') + (new ClientEntity($server))->hydrate(['id' => 'testapp']) ); $request = new \Symfony\Component\HttpFoundation\Request(); @@ -161,7 +161,7 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $server->setRequest($request); $this->assertTrue($server->isValidRequest()); - $this->assertEquals('at', $server->getTokenKey()); + $this->assertEquals('at', $server->getIdKey()); $this->assertEquals(123, $server->getOwnerId()); $this->assertEquals('user', $server->getOwnerType()); $this->assertEquals('abcdef', $server->getAccessToken()); From 1e78f62823f9fc18dd85ac71f91d70c00bc0f133 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 11 Jul 2014 18:27:03 +0100 Subject: [PATCH 153/270] Lotsa bug fixes and updates --- examples/relational/Storage/ClientStorage.php | 12 +++-- examples/relational/Storage/ScopeStorage.php | 7 +-- src/AbstractServer.php | 2 +- src/AuthorizationServer.php | 2 +- src/Entity/AbstractTokenEntity.php | 22 ++++---- src/Entity/AccessTokenEntity.php | 2 +- src/Entity/AuthCodeEntity.php | 4 +- src/Entity/ClientEntity.php | 50 +------------------ src/Entity/EntityTrait.php | 8 +-- src/Entity/RefreshTokenEntity.php | 4 +- src/Entity/ScopeEntity.php | 26 +--------- src/Entity/SessionEntity.php | 3 +- src/Grant/AuthCodeGrant.php | 12 ++--- src/Grant/ClientCredentialsGrant.php | 4 +- src/Grant/PasswordGrant.php | 8 +-- src/Grant/RefreshTokenGrant.php | 8 +-- src/ResourceServer.php | 8 +-- 17 files changed, 61 insertions(+), 121 deletions(-) diff --git a/examples/relational/Storage/ClientStorage.php b/examples/relational/Storage/ClientStorage.php index 0b61f074..8db0e0c0 100644 --- a/examples/relational/Storage/ClientStorage.php +++ b/examples/relational/Storage/ClientStorage.php @@ -34,8 +34,10 @@ class ClientStorage extends Adapter implements ClientInterface if (count($result) === 1) { $client = new ClientEntity($this->server); - $client->setId($result[0]['id']); - $client->setName($result[0]['name']); + $client->hydrate([ + 'id' => $result[0]['id'], + 'name' => $result[0]['name'] + ]); return $client; } @@ -56,8 +58,10 @@ class ClientStorage extends Adapter implements ClientInterface if (count($result) === 1) { $client = new ClientEntity($this->server); - $client->setId($result[0]['id']); - $client->setName($result[0]['name']); + $client->hydrate([ + 'id' => $result[0]['id'], + 'name' => $result[0]['name'] + ]); return $client; } diff --git a/examples/relational/Storage/ScopeStorage.php b/examples/relational/Storage/ScopeStorage.php index ab31bfc3..674fc6d9 100644 --- a/examples/relational/Storage/ScopeStorage.php +++ b/examples/relational/Storage/ScopeStorage.php @@ -23,8 +23,9 @@ class ScopeStorage extends Adapter implements ScopeInterface return null; } - return (new ScopeEntity($this->server)) - ->setId($result[0]['id']) - ->setDescription($result[0]['description']); + return (new ScopeEntity($this->server))->hydrate([ + 'id' => $result[0]['id'], + 'description' => $result[0]['description'] + ]); } } diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 329d380f..884e8be7 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -132,7 +132,7 @@ abstract class AbstractServer * Get the access token type * @return TokenTypeInterface */ - public function getIdType() + public function getTokenType() { return $this->tokenType; } diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index b0b0bc14..502a811d 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -78,7 +78,7 @@ class AuthorizationServer extends AbstractServer $this->storages = []; // Set Bearer as the default token type - $this->setTokenType(new Bearer); + $this->setIdType(new Bearer); parent::__construct(); diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 02a24d1b..a8848881 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -21,10 +21,10 @@ use Symfony\Component\HttpFoundation\ParameterBag; abstract class AbstractTokenEntity { /** - * Access token ID + * Token identifier * @var string */ - protected $token; + protected $id; /** * Associated session @@ -34,9 +34,9 @@ abstract class AbstractTokenEntity /** * Session scopes - * @var \Symfony\Component\HttpFoundation\ParameterBag + * @var array Array of ScopeEntity */ - protected $scopes; + protected $scopes = []; /** * Token expire time @@ -96,13 +96,13 @@ abstract class AbstractTokenEntity } /** - * Set access token ID + * Set token ID * @param string $token Token ID * @return self */ - public function setToken($token = null) + public function setId($id = null) { - $this->token = ($token !== null) ? $token : SecureKey::generate(); + $this->id = ($id !== null) ? $id : SecureKey::generate(); return $this; } @@ -111,9 +111,9 @@ abstract class AbstractTokenEntity * Get the token ID * @return string */ - public function getToken() + public function getId() { - return $this->token; + return $this->id; } /** @@ -153,10 +153,10 @@ abstract class AbstractTokenEntity */ public function __toString() { - if ($this->token === null) { + if ($this->id === null) { return ''; } - return $this->token; + return $this->id; } /** diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index 0f040816..76e8093a 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -66,7 +66,7 @@ class AccessTokenEntity extends AbstractTokenEntity public function save() { $this->server->getStorage('access_token')->create( - $this->getToken(), + $this->getId(), $this->getExpireTime(), $this->getSession()->getId() ); diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index e07d35a2..0a5809d3 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -55,7 +55,7 @@ class AuthCodeEntity extends AbstractTokenEntity $uri .= (strstr($this->getRedirectUri(), $queryDelimeter) === false) ? $queryDelimeter : '&'; return $uri.http_build_query([ - 'code' => $this->getToken(), + 'code' => $this->getId(), 'state' => $state ]); } @@ -94,7 +94,7 @@ class AuthCodeEntity extends AbstractTokenEntity public function save() { $this->server->getStorage('auth_code')->create( - $this->getToken(), + $this->getId(), $this->getExpireTime(), $this->getSession()->getId() ); diff --git a/src/Entity/ClientEntity.php b/src/Entity/ClientEntity.php index 9656a066..34a3320a 100644 --- a/src/Entity/ClientEntity.php +++ b/src/Entity/ClientEntity.php @@ -18,6 +18,8 @@ use League\OAuth2\Server\AbstractServer; */ class ClientEntity { + use EntityTrait; + /** * Client identifier * @var string @@ -60,18 +62,6 @@ class ClientEntity return $this; } - /** - * Set the client identifier - * @param string $id - * @return self - */ - public function setId($id) - { - $this->id = $id; - - return $this; - } - /** * Return the client identifier * @return string @@ -81,18 +71,6 @@ class ClientEntity return $this->id; } - /** - * Set the client secret - * @param string $secret - * @return self - */ - public function setSecret($secret) - { - $this->secret = $secret; - - return $this; - } - /** * Return the client secret * @return string @@ -102,18 +80,6 @@ class ClientEntity return $this->secret; } - /** - * Set the client name - * @param string $name - * @return self - */ - public function setName($name) - { - $this->name = $name; - - return $this; - } - /** * Get the client name * @return string @@ -123,18 +89,6 @@ class ClientEntity return $this->name; } - /** - * Set the client redirect URI - * @param string $redirectUri - * @return self - */ - public function setRedirectUri($redirectUri) - { - $this->redirectUri = $redirectUri; - - return $this; - } - /** * Returnt the client redirect URI * @return string diff --git a/src/Entity/EntityTrait.php b/src/Entity/EntityTrait.php index aaef33b4..80d6138f 100644 --- a/src/Entity/EntityTrait.php +++ b/src/Entity/EntityTrait.php @@ -19,10 +19,12 @@ trait EntityTrait */ public function hydrate(array $properties) { - foreach ($properties as $prop) { - if (isset($this->{$prop})) { - $this->{$prop} = $prop; + foreach ($properties as $prop => $val) { + if (property_exists($this, $prop)) { + $this->{$prop} = $val; } } + + return $this; } } diff --git a/src/Entity/RefreshTokenEntity.php b/src/Entity/RefreshTokenEntity.php index a1b1dde4..7ed35a76 100644 --- a/src/Entity/RefreshTokenEntity.php +++ b/src/Entity/RefreshTokenEntity.php @@ -53,9 +53,9 @@ class RefreshTokenEntity extends AbstractTokenEntity public function save() { $this->server->getStorage('refresh_token')->create( - $this->getToken(), + $this->getId(), $this->getExpireTime(), - $this->getAccessToken()->getToken() + $this->getAccessToken()->getId() ); } diff --git a/src/Entity/ScopeEntity.php b/src/Entity/ScopeEntity.php index 0740384b..4b4ed673 100644 --- a/src/Entity/ScopeEntity.php +++ b/src/Entity/ScopeEntity.php @@ -18,6 +18,8 @@ use League\OAuth2\Server\AbstractServer; */ class ScopeEntity implements \JsonSerializable { + use EntityTrait; + /** * Scope identifier * @var string @@ -48,18 +50,6 @@ class ScopeEntity implements \JsonSerializable return $this; } - /** - * Set the scope identifer - * @param string $id The scope identifier - * @return self - */ - public function setId($id) - { - $this->id = $id; - - return $this; - } - /** * Return the scope identifer * @return string @@ -69,18 +59,6 @@ class ScopeEntity implements \JsonSerializable return $this->id; } - /** - * Set the scope's descripton - * @param string $description - * @return self - */ - public function setDescription($description) - { - $this->description = $description; - - return $this; - } - /** * Return the scope's description * @return string diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index ef5f8d0e..2d03cc48 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -12,6 +12,7 @@ namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\AbstractServer; +use League\OAuth2\Server\Event; use Symfony\Component\HttpFoundation\ParameterBag; /** @@ -228,7 +229,7 @@ class SessionEntity $this->ownerType = $type; $this->ownerId = $id; - $this->server->eventEmitter->emit(new Event\SessionOwnerEvent($this)); + $this->server->getEventEmitter()->emit(new Event\SessionOwnerEvent($this)); return $this; } diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 8b8234fc..5a9820d6 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -141,8 +141,8 @@ class AuthCodeGrant extends AbstractGrant // Create a new auth code $authCode = new AuthCodeEntity($this->server); - $authCode->setToken(SecureKey::generate()); - $authCode->setRedirectUri(); + $authCode->setId(SecureKey::generate()); + $authCode->setRedirectUri($authParams['redirect_uri']); $authCode->setExpireTime(time() + $this->authTokenTTL); foreach ($authParams['scopes'] as $scope) { @@ -210,23 +210,23 @@ class AuthCodeGrant extends AbstractGrant // Generate the access token $accessToken = new AccessTokenEntity($this->server); - $accessToken->setToken(SecureKey::generate()); + $accessToken->setId(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); foreach ($authCodeScopes as $authCodeScope) { $session->associateScope($authCodeScope); } - $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('access_token', $accessToken->getId()); $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); - $refreshToken->setToken(SecureKey::generate()); + $refreshToken->setId(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); + $this->server->getTokenType()->set('refresh_token', $refreshToken->getId()); } // Expire the auth code diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 786d5d2c..75c50566 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -87,7 +87,7 @@ class ClientCredentialsGrant extends AbstractGrant // Generate an access token $accessToken = new AccessTokenEntity($this->server); - $accessToken->setToken(SecureKey::generate()); + $accessToken->setId(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token @@ -101,7 +101,7 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->setSession($session); $accessToken->save($this->server->getStorage('access_token')); - $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('access_token', $accessToken->getId()); $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index a44c718b..3af3143e 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -127,7 +127,7 @@ class PasswordGrant extends AbstractGrant // Generate an access token $accessToken = new AccessTokenEntity($this->server); - $accessToken->setToken(SecureKey::generate()); + $accessToken->setId(SecureKey::generate()); $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); // Associate scopes with the session and access token @@ -136,16 +136,16 @@ class PasswordGrant extends AbstractGrant $session->associateScope($scope); } - $this->server->getTokenType()->set('access_token', $accessToken->getToken()); + $this->server->getTokenType()->set('access_token', $accessToken->getId()); $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); - $refreshToken->setToken(SecureKey::generate()); + $refreshToken->setId(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $this->server->getTokenType()->set('refresh_token', $refreshToken->getToken()); + $this->server->getTokenType()->set('refresh_token', $refreshToken->getId()); } // Save everything diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 01f5e695..25b01743 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -119,7 +119,7 @@ class RefreshTokenGrant extends AbstractGrant // Generate a new access token and assign it the correct sessions $newAccessToken = new AccessTokenEntity($this->server); - $newAccessToken->setToken(SecureKey::generate()); + $newAccessToken->setId(SecureKey::generate()); $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); $newAccessToken->setSession($session); @@ -131,7 +131,7 @@ class RefreshTokenGrant extends AbstractGrant $oldAccessToken->expire($this->server->getStorage('access_token')); $newAccessToken->save($this->server->getStorage('access_token')); - $this->server->getTokenType()->set('access_token', $newAccessToken->getToken()); + $this->server->getTokenType()->set('access_token', $newAccessToken->getId()); $this->server->getTokenType()->set('expires', $newAccessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); @@ -140,12 +140,12 @@ class RefreshTokenGrant extends AbstractGrant // Generate a new refresh token $newRefreshToken = new RefreshTokenEntity($this->server); - $newRefreshToken->setToken(SecureKey::generate()); + $newRefreshToken->setId(SecureKey::generate()); $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); $newRefreshToken->setAccessToken($newAccessToken); $newRefreshToken->save($this->server->getStorage('refresh_token')); - $this->server->getTokenType()->set('refresh_token', $newRefreshToken->getToken()); + $this->server->getTokenType()->set('refresh_token', $newRefreshToken->getId()); return $this->server->getTokenType()->generateResponse(); } diff --git a/src/ResourceServer.php b/src/ResourceServer.php index f2a8da7f..654dbb41 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -64,7 +64,7 @@ class ResourceServer extends AbstractServer $this->setStorage('scope', $scopeStorage); // Set Bearer as the default token type - $this->setTokenType(new Bearer); + $this->setIdType(new Bearer); parent::__construct(); @@ -89,7 +89,7 @@ class ResourceServer extends AbstractServer * Returns the query string key for the access token. * @return string */ - public function getTokenKey() + public function getIdKey() { return $this->tokenKey; } @@ -99,7 +99,7 @@ class ResourceServer extends AbstractServer * @param $key The new query string key * @return self */ - public function setTokenKey($key) + public function setIdKey($key) { $this->tokenKey = $key; @@ -130,7 +130,7 @@ class ResourceServer extends AbstractServer */ public function getAccessToken() { - return $this->accessToken->getToken(); + return $this->accessToken->getId(); } /** From b694cca74317a220a9123e298a4f3ffb578c8e49 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 12 Jul 2014 08:58:18 +0100 Subject: [PATCH 154/270] Fix broken test --- src/Entity/AbstractTokenEntity.php | 2 +- tests/ResourceServerTest.php | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index a8848881..4712f68d 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -36,7 +36,7 @@ abstract class AbstractTokenEntity * Session scopes * @var array Array of ScopeEntity */ - protected $scopes = []; + protected $scopes; /** * Token expire time diff --git a/tests/ResourceServerTest.php b/tests/ResourceServerTest.php index e485cf24..7eb957f8 100644 --- a/tests/ResourceServerTest.php +++ b/tests/ResourceServerTest.php @@ -141,10 +141,10 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase (new AccessTokenEntity($server))->setId('abcdef') ); - // $accessTokenStorage->shouldReceive('getScopes')->andReturn([ - // (new ScopeEntity($server))->hydrate(['id' => 'foo']), - // (new ScopeEntity($server))->hydrate(['id' => 'bar']) - // ]); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new ScopeEntity($server))->hydrate(['id' => 'foo']), + (new ScopeEntity($server))->hydrate(['id' => 'bar']) + ]); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( (new SessionEntity($server))->setId('foobar')->setOwner('user', 123) From 20032f33a25f418063347001725b9bd8daa7de17 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 12 Jul 2014 12:07:46 +0100 Subject: [PATCH 155/270] More tests --- composer.json | 5 +++-- src/Event/SessionOwnerEvent.php | 4 ++-- tests/AbstractServerTest.php | 10 ++++++++++ 3 files changed, 15 insertions(+), 4 deletions(-) diff --git a/composer.json b/composer.json index 24105daa..aff71b87 100644 --- a/composer.json +++ b/composer.json @@ -6,13 +6,14 @@ "require": { "php": ">=5.4.0", "symfony/http-foundation": "~2.1", - "league/event": "0.1" + "league/event": "0.2.0" }, "require-dev": { "phpunit/phpunit": "~4.0", "mockery/mockery": "~0.9", "league/phpunit-coverage-listener": "~1.0", - "squizlabs/php_codesniffer": "1.*" + "squizlabs/php_codesniffer": "1.*", + "codeception/codeception": "2.0.2" }, "repositories": [ { diff --git a/src/Event/SessionOwnerEvent.php b/src/Event/SessionOwnerEvent.php index f8c6be76..621d0a83 100644 --- a/src/Event/SessionOwnerEvent.php +++ b/src/Event/SessionOwnerEvent.php @@ -11,10 +11,10 @@ namespace League\OAuth2\Server\Event; -use League\Event\EventAbstract; +use League\Event\AbstractEvent; use League\OAuth2\Server\Entity\SessionEntity; -class SessionOwnerEvent extends EventAbstract +class SessionOwnerEvent extends AbstractEvent { /** * Session entity diff --git a/tests/AbstractServerTest.php b/tests/AbstractServerTest.php index 5ac009e3..8933e137 100644 --- a/tests/AbstractServerTest.php +++ b/tests/AbstractServerTest.php @@ -9,11 +9,21 @@ class AbstractServerTest extends \PHPUnit_Framework_TestCase public function testSetGet() { $server = new StubAbstractServer(); + $var = 0; + $server->addEventListener('event.name', function() use ($var) { + $var++; + $this->assertSame(1, $var); + }); + $server->getEventEmitter()->emit('event.name'); $this->assertTrue($server->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); + $this->assertTrue($server->getEventEmitter() instanceof \League\Event\Emitter); + $server2 = new StubAbstractServer(); $server2->setRequest((new \Symfony\Component\HttpFoundation\Request)); + $server2->setEventEmitter(1); $this->assertTrue($server2->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); + } public function testGetStorageException() From ca61d5d4e07a1fe30cc711fcce9e015e07f6c898 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 09:21:01 +0100 Subject: [PATCH 156/270] Moved functional tests --- .gitignore | 2 +- tests/{codecept => functional}/codeception.yml | 0 tests/{codecept => functional}/tests/_bootstrap.php | 0 tests/{codecept => functional}/tests/_helpers/ApiHelper.php | 0 tests/{codecept => functional}/tests/api.suite.yml | 0 tests/{codecept => functional}/tests/api/ApiGuy.php | 0 .../tests/api/GetUsersAllFieldsCept.php | 0 .../tests/api/GetUsersBasicEmailFieldsCept.php | 0 .../tests/api/GetUsersBasicPhotoFieldsCept.php | 0 .../tests/api/GetUsersInvalidTokenCept.php | 0 .../{codecept => functional}/tests/api/GetUsersNoTokenCept.php | 0 .../tests/api/GetUsersTokenHeaderCept.php | 0 tests/{codecept => functional}/tests/api/_bootstrap.php | 0 13 files changed, 1 insertion(+), 1 deletion(-) rename tests/{codecept => functional}/codeception.yml (100%) rename tests/{codecept => functional}/tests/_bootstrap.php (100%) rename tests/{codecept => functional}/tests/_helpers/ApiHelper.php (100%) rename tests/{codecept => functional}/tests/api.suite.yml (100%) rename tests/{codecept => functional}/tests/api/ApiGuy.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersAllFieldsCept.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersBasicEmailFieldsCept.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersBasicPhotoFieldsCept.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersInvalidTokenCept.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersNoTokenCept.php (100%) rename tests/{codecept => functional}/tests/api/GetUsersTokenHeaderCept.php (100%) rename tests/{codecept => functional}/tests/api/_bootstrap.php (100%) diff --git a/.gitignore b/.gitignore index 54ac71ff..16ad3316 100644 --- a/.gitignore +++ b/.gitignore @@ -7,4 +7,4 @@ /examples/nosql/vendor /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock -/tests/codecept/tests/_log \ No newline at end of file +/tests/functional/tests/_log \ No newline at end of file diff --git a/tests/codecept/codeception.yml b/tests/functional/codeception.yml similarity index 100% rename from tests/codecept/codeception.yml rename to tests/functional/codeception.yml diff --git a/tests/codecept/tests/_bootstrap.php b/tests/functional/tests/_bootstrap.php similarity index 100% rename from tests/codecept/tests/_bootstrap.php rename to tests/functional/tests/_bootstrap.php diff --git a/tests/codecept/tests/_helpers/ApiHelper.php b/tests/functional/tests/_helpers/ApiHelper.php similarity index 100% rename from tests/codecept/tests/_helpers/ApiHelper.php rename to tests/functional/tests/_helpers/ApiHelper.php diff --git a/tests/codecept/tests/api.suite.yml b/tests/functional/tests/api.suite.yml similarity index 100% rename from tests/codecept/tests/api.suite.yml rename to tests/functional/tests/api.suite.yml diff --git a/tests/codecept/tests/api/ApiGuy.php b/tests/functional/tests/api/ApiGuy.php similarity index 100% rename from tests/codecept/tests/api/ApiGuy.php rename to tests/functional/tests/api/ApiGuy.php diff --git a/tests/codecept/tests/api/GetUsersAllFieldsCept.php b/tests/functional/tests/api/GetUsersAllFieldsCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersAllFieldsCept.php rename to tests/functional/tests/api/GetUsersAllFieldsCept.php diff --git a/tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php b/tests/functional/tests/api/GetUsersBasicEmailFieldsCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersBasicEmailFieldsCept.php rename to tests/functional/tests/api/GetUsersBasicEmailFieldsCept.php diff --git a/tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php b/tests/functional/tests/api/GetUsersBasicPhotoFieldsCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersBasicPhotoFieldsCept.php rename to tests/functional/tests/api/GetUsersBasicPhotoFieldsCept.php diff --git a/tests/codecept/tests/api/GetUsersInvalidTokenCept.php b/tests/functional/tests/api/GetUsersInvalidTokenCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersInvalidTokenCept.php rename to tests/functional/tests/api/GetUsersInvalidTokenCept.php diff --git a/tests/codecept/tests/api/GetUsersNoTokenCept.php b/tests/functional/tests/api/GetUsersNoTokenCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersNoTokenCept.php rename to tests/functional/tests/api/GetUsersNoTokenCept.php diff --git a/tests/codecept/tests/api/GetUsersTokenHeaderCept.php b/tests/functional/tests/api/GetUsersTokenHeaderCept.php similarity index 100% rename from tests/codecept/tests/api/GetUsersTokenHeaderCept.php rename to tests/functional/tests/api/GetUsersTokenHeaderCept.php diff --git a/tests/codecept/tests/api/_bootstrap.php b/tests/functional/tests/api/_bootstrap.php similarity index 100% rename from tests/codecept/tests/api/_bootstrap.php rename to tests/functional/tests/api/_bootstrap.php From f40ada9ac7318b48042875e5d8cef6ea46c70a2b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 09:23:00 +0100 Subject: [PATCH 157/270] Moved unit tests --- composer.json | 2 +- phpunit.xml | 4 ++-- tests/{ => unit}/AbstractServerTest.php | 0 tests/{ => unit}/AuthorizationServerTest.php | 0 tests/{ => unit}/Bootstrap.php | 2 +- tests/{ => unit}/Entity/AbstractTokenEntityTest.php | 0 tests/{ => unit}/Entity/AccessTokenEntityTest.php | 0 tests/{ => unit}/Entity/AuthCodeEntityTest.php | 0 tests/{ => unit}/Entity/ClientEntityTest.php | 0 tests/{ => unit}/Entity/RefreshTokenEntityTest.php | 0 tests/{ => unit}/Entity/ScopeEntityTest.php | 0 tests/{ => unit}/Entity/SessionEntityTest.php | 0 tests/{ => unit}/Exception/OAuthExceptionTest.php | 0 tests/{ => unit}/Grant/AbstractGrantTest.php | 0 tests/{ => unit}/Grant/AuthCodeGrantTest.php | 0 tests/{ => unit}/Grant/ClientCredentialsGrantTest.php | 0 tests/{ => unit}/Grant/PasswordGrantTest.php | 0 tests/{ => unit}/Grant/RefreshTokenGrantTest.php | 0 tests/{ => unit}/ResourceServerTest.php | 0 tests/{ => unit}/Storage/AdapterTest.php | 0 tests/{ => unit}/Stubs/StubAbstractGrant.php | 0 tests/{ => unit}/Stubs/StubAbstractServer.php | 0 tests/{ => unit}/Stubs/StubAbstractTokenEntity.php | 0 tests/{ => unit}/util/RedirectUriTest.php | 0 tests/{ => unit}/util/SecureKeyTest.php | 0 25 files changed, 4 insertions(+), 4 deletions(-) rename tests/{ => unit}/AbstractServerTest.php (100%) rename tests/{ => unit}/AuthorizationServerTest.php (100%) rename tests/{ => unit}/Bootstrap.php (73%) rename tests/{ => unit}/Entity/AbstractTokenEntityTest.php (100%) rename tests/{ => unit}/Entity/AccessTokenEntityTest.php (100%) rename tests/{ => unit}/Entity/AuthCodeEntityTest.php (100%) rename tests/{ => unit}/Entity/ClientEntityTest.php (100%) rename tests/{ => unit}/Entity/RefreshTokenEntityTest.php (100%) rename tests/{ => unit}/Entity/ScopeEntityTest.php (100%) rename tests/{ => unit}/Entity/SessionEntityTest.php (100%) rename tests/{ => unit}/Exception/OAuthExceptionTest.php (100%) rename tests/{ => unit}/Grant/AbstractGrantTest.php (100%) rename tests/{ => unit}/Grant/AuthCodeGrantTest.php (100%) rename tests/{ => unit}/Grant/ClientCredentialsGrantTest.php (100%) rename tests/{ => unit}/Grant/PasswordGrantTest.php (100%) rename tests/{ => unit}/Grant/RefreshTokenGrantTest.php (100%) rename tests/{ => unit}/ResourceServerTest.php (100%) rename tests/{ => unit}/Storage/AdapterTest.php (100%) rename tests/{ => unit}/Stubs/StubAbstractGrant.php (100%) rename tests/{ => unit}/Stubs/StubAbstractServer.php (100%) rename tests/{ => unit}/Stubs/StubAbstractTokenEntity.php (100%) rename tests/{ => unit}/util/RedirectUriTest.php (100%) rename tests/{ => unit}/util/SecureKeyTest.php (100%) diff --git a/composer.json b/composer.json index aff71b87..d4be2a1d 100644 --- a/composer.json +++ b/composer.json @@ -56,7 +56,7 @@ }, "autoload-dev": { "psr-4": { - "LeagueTests\\": "tests/" + "LeagueTests\\": "tests/unit/" } }, "extra": { diff --git a/phpunit.xml b/phpunit.xml index 75670ca4..f78850c1 100644 --- a/phpunit.xml +++ b/phpunit.xml @@ -1,8 +1,8 @@ - + - ./tests/ + ./tests/unit/ diff --git a/tests/AbstractServerTest.php b/tests/unit/AbstractServerTest.php similarity index 100% rename from tests/AbstractServerTest.php rename to tests/unit/AbstractServerTest.php diff --git a/tests/AuthorizationServerTest.php b/tests/unit/AuthorizationServerTest.php similarity index 100% rename from tests/AuthorizationServerTest.php rename to tests/unit/AuthorizationServerTest.php diff --git a/tests/Bootstrap.php b/tests/unit/Bootstrap.php similarity index 73% rename from tests/Bootstrap.php rename to tests/unit/Bootstrap.php index 7f8cf458..e6d3d782 100644 --- a/tests/Bootstrap.php +++ b/tests/unit/Bootstrap.php @@ -1,5 +1,5 @@ wget http://getcomposer.org/composer.phar\n> php composer.phar install\n"); } diff --git a/tests/Entity/AbstractTokenEntityTest.php b/tests/unit/Entity/AbstractTokenEntityTest.php similarity index 100% rename from tests/Entity/AbstractTokenEntityTest.php rename to tests/unit/Entity/AbstractTokenEntityTest.php diff --git a/tests/Entity/AccessTokenEntityTest.php b/tests/unit/Entity/AccessTokenEntityTest.php similarity index 100% rename from tests/Entity/AccessTokenEntityTest.php rename to tests/unit/Entity/AccessTokenEntityTest.php diff --git a/tests/Entity/AuthCodeEntityTest.php b/tests/unit/Entity/AuthCodeEntityTest.php similarity index 100% rename from tests/Entity/AuthCodeEntityTest.php rename to tests/unit/Entity/AuthCodeEntityTest.php diff --git a/tests/Entity/ClientEntityTest.php b/tests/unit/Entity/ClientEntityTest.php similarity index 100% rename from tests/Entity/ClientEntityTest.php rename to tests/unit/Entity/ClientEntityTest.php diff --git a/tests/Entity/RefreshTokenEntityTest.php b/tests/unit/Entity/RefreshTokenEntityTest.php similarity index 100% rename from tests/Entity/RefreshTokenEntityTest.php rename to tests/unit/Entity/RefreshTokenEntityTest.php diff --git a/tests/Entity/ScopeEntityTest.php b/tests/unit/Entity/ScopeEntityTest.php similarity index 100% rename from tests/Entity/ScopeEntityTest.php rename to tests/unit/Entity/ScopeEntityTest.php diff --git a/tests/Entity/SessionEntityTest.php b/tests/unit/Entity/SessionEntityTest.php similarity index 100% rename from tests/Entity/SessionEntityTest.php rename to tests/unit/Entity/SessionEntityTest.php diff --git a/tests/Exception/OAuthExceptionTest.php b/tests/unit/Exception/OAuthExceptionTest.php similarity index 100% rename from tests/Exception/OAuthExceptionTest.php rename to tests/unit/Exception/OAuthExceptionTest.php diff --git a/tests/Grant/AbstractGrantTest.php b/tests/unit/Grant/AbstractGrantTest.php similarity index 100% rename from tests/Grant/AbstractGrantTest.php rename to tests/unit/Grant/AbstractGrantTest.php diff --git a/tests/Grant/AuthCodeGrantTest.php b/tests/unit/Grant/AuthCodeGrantTest.php similarity index 100% rename from tests/Grant/AuthCodeGrantTest.php rename to tests/unit/Grant/AuthCodeGrantTest.php diff --git a/tests/Grant/ClientCredentialsGrantTest.php b/tests/unit/Grant/ClientCredentialsGrantTest.php similarity index 100% rename from tests/Grant/ClientCredentialsGrantTest.php rename to tests/unit/Grant/ClientCredentialsGrantTest.php diff --git a/tests/Grant/PasswordGrantTest.php b/tests/unit/Grant/PasswordGrantTest.php similarity index 100% rename from tests/Grant/PasswordGrantTest.php rename to tests/unit/Grant/PasswordGrantTest.php diff --git a/tests/Grant/RefreshTokenGrantTest.php b/tests/unit/Grant/RefreshTokenGrantTest.php similarity index 100% rename from tests/Grant/RefreshTokenGrantTest.php rename to tests/unit/Grant/RefreshTokenGrantTest.php diff --git a/tests/ResourceServerTest.php b/tests/unit/ResourceServerTest.php similarity index 100% rename from tests/ResourceServerTest.php rename to tests/unit/ResourceServerTest.php diff --git a/tests/Storage/AdapterTest.php b/tests/unit/Storage/AdapterTest.php similarity index 100% rename from tests/Storage/AdapterTest.php rename to tests/unit/Storage/AdapterTest.php diff --git a/tests/Stubs/StubAbstractGrant.php b/tests/unit/Stubs/StubAbstractGrant.php similarity index 100% rename from tests/Stubs/StubAbstractGrant.php rename to tests/unit/Stubs/StubAbstractGrant.php diff --git a/tests/Stubs/StubAbstractServer.php b/tests/unit/Stubs/StubAbstractServer.php similarity index 100% rename from tests/Stubs/StubAbstractServer.php rename to tests/unit/Stubs/StubAbstractServer.php diff --git a/tests/Stubs/StubAbstractTokenEntity.php b/tests/unit/Stubs/StubAbstractTokenEntity.php similarity index 100% rename from tests/Stubs/StubAbstractTokenEntity.php rename to tests/unit/Stubs/StubAbstractTokenEntity.php diff --git a/tests/util/RedirectUriTest.php b/tests/unit/util/RedirectUriTest.php similarity index 100% rename from tests/util/RedirectUriTest.php rename to tests/unit/util/RedirectUriTest.php diff --git a/tests/util/SecureKeyTest.php b/tests/unit/util/SecureKeyTest.php similarity index 100% rename from tests/util/SecureKeyTest.php rename to tests/unit/util/SecureKeyTest.php From 7067a35d3a9e9d33010052db2b4d348ed04802ab Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 10:58:15 +0100 Subject: [PATCH 158/270] Fixed broken example tests --- .gitignore | 3 +- .travis.yml | 7 +- .../codeception.yml => codeception.yml | 7 +- composer.json | 2 +- .../relational/Storage/AccessTokenStorage.php | 15 +- .../relational/Storage/AuthCodeStorage.php | 2 +- examples/relational/api.php | 1 + examples/relational/composer.json | 3 +- tests/{functional/tests => }/_bootstrap.php | 0 tests/_support/ApiHelper.php | 10 + tests/{functional/tests => }/api.suite.yml | 2 +- tests/api/ApiTester.php | 2120 ++++++++++++ .../tests => }/api/GetUsersAllFieldsCept.php | 2 +- .../api/GetUsersBasicEmailFieldsCept.php | 2 +- .../api/GetUsersBasicPhotoFieldsCept.php | 2 +- .../api/GetUsersInvalidTokenCept.php | 2 +- .../tests => }/api/GetUsersNoTokenCept.php | 2 +- .../api/GetUsersTokenHeaderCept.php | 2 +- tests/api/_bootstrap.php | 2 + tests/functional/tests/_helpers/ApiHelper.php | 8 - tests/functional/tests/api/ApiGuy.php | 2918 ----------------- tests/functional/tests/api/_bootstrap.php | 2 - 22 files changed, 2160 insertions(+), 2954 deletions(-) rename tests/functional/codeception.yml => codeception.yml (71%) rename tests/{functional/tests => }/_bootstrap.php (100%) create mode 100644 tests/_support/ApiHelper.php rename tests/{functional/tests => }/api.suite.yml (88%) create mode 100644 tests/api/ApiTester.php rename tests/{functional/tests => }/api/GetUsersAllFieldsCept.php (95%) rename tests/{functional/tests => }/api/GetUsersBasicEmailFieldsCept.php (94%) rename tests/{functional/tests => }/api/GetUsersBasicPhotoFieldsCept.php (94%) rename tests/{functional/tests => }/api/GetUsersInvalidTokenCept.php (84%) rename tests/{functional/tests => }/api/GetUsersNoTokenCept.php (82%) rename tests/{functional/tests => }/api/GetUsersTokenHeaderCept.php (95%) create mode 100644 tests/api/_bootstrap.php delete mode 100644 tests/functional/tests/_helpers/ApiHelper.php delete mode 100644 tests/functional/tests/api/ApiGuy.php delete mode 100644 tests/functional/tests/api/_bootstrap.php diff --git a/.gitignore b/.gitignore index 16ad3316..a182edbf 100644 --- a/.gitignore +++ b/.gitignore @@ -7,4 +7,5 @@ /examples/nosql/vendor /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock -/tests/functional/tests/_log \ No newline at end of file +/tests/functional/tests/_log +tests/_output/* \ No newline at end of file diff --git a/.travis.yml b/.travis.yml index d703777b..6e5e9a0f 100644 --- a/.travis.yml +++ b/.travis.yml @@ -19,14 +19,13 @@ before_script: - php -S localhost:8000 & - sleep 3 - cd ../.. - - wget http://codeception.com/codecept.phar - - mkdir tests/codecept/tests/_log - - chmod -R 777 tests/codecept/tests/_log + - mkdir tests/functional/tests/_log + - chmod -R 777 tests/functional/tests/_log script: - mkdir -p build/logs - phpunit --coverage-text - - php codecept.phar run api -c tests/codecept/codeception.yml + - ./vendor/bin/codecept run api -d - ./vendor/bin/phpcs src --standard=psr2 after_script: diff --git a/tests/functional/codeception.yml b/codeception.yml similarity index 71% rename from tests/functional/codeception.yml rename to codeception.yml index 5b1f4413..306e7396 100644 --- a/tests/functional/codeception.yml +++ b/codeception.yml @@ -1,14 +1,13 @@ +actor: Tester paths: tests: tests - log: tests/_log + log: tests/_output data: tests/_data - helpers: tests/_helpers + helpers: tests/_support settings: bootstrap: _bootstrap.php - suite_class: \PHPUnit_Framework_TestSuite colors: true memory_limit: 1024M - log: true modules: config: Db: diff --git a/composer.json b/composer.json index d4be2a1d..5d40377e 100644 --- a/composer.json +++ b/composer.json @@ -13,7 +13,7 @@ "mockery/mockery": "~0.9", "league/phpunit-coverage-listener": "~1.0", "squizlabs/php_codesniffer": "1.*", - "codeception/codeception": "2.0.2" + "codeception/codeception": "2.0.*" }, "repositories": [ { diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index 7339118c..96481de5 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -24,9 +24,9 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface ->get(); if (count($result) === 1) { - $token = new AccessTokenEntity($this->server); - $token->setExpireTime($result[0]['expire_time']); - $token->setToken($result[0]['access_token']); + $token = (new AccessTokenEntity($this->server)) + ->setId($result[0]['access_token']) + ->setExpireTime($result[0]['expire_time']); return $token; } @@ -50,16 +50,17 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface $result = Capsule::table('oauth_access_token_scopes') ->select(['oauth_scopes.id', 'oauth_scopes.description']) ->join('oauth_scopes', 'oauth_access_token_scopes.scope', '=', 'oauth_scopes.id') - ->where('access_token', $token->getToken()) + ->where('access_token', $token->getId()) ->get(); $response = []; if (count($result) > 0) { foreach ($result as $row) { - $scope = new ScopeEntity($this->server); - $scope->setId($row['id']); - $scope->setDescription($row['description']); + $scope = (new ScopeEntity($this->server))->hydrate([ + 'id' => $row['id'], + 'description' => $row['description'] + ]); $response[] = $scope; } } diff --git a/examples/relational/Storage/AuthCodeStorage.php b/examples/relational/Storage/AuthCodeStorage.php index 856d852d..77126240 100644 --- a/examples/relational/Storage/AuthCodeStorage.php +++ b/examples/relational/Storage/AuthCodeStorage.php @@ -23,7 +23,7 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface if (count($result) === 1) { $token = new AuthCodeEntity($this->server); - $token->setToken($result[0]['auth_code']); + $token->setId($result[0]['auth_code']); return $token; } diff --git a/examples/relational/api.php b/examples/relational/api.php index 93e9f24e..69463f4e 100644 --- a/examples/relational/api.php +++ b/examples/relational/api.php @@ -10,6 +10,7 @@ use \League\OAuth2\Server\ResourceServer; use \RelationalExample\Storage; use \RelationalExample\Model; use Illuminate\Database\Capsule\Manager as Capsule; +use \League\Event\Emitter; include __DIR__.'/vendor/autoload.php'; diff --git a/examples/relational/composer.json b/examples/relational/composer.json index 3140738c..34bd57cf 100644 --- a/examples/relational/composer.json +++ b/examples/relational/composer.json @@ -2,7 +2,8 @@ "require": { "illuminate/database": "4.1.*", "orno/route": "1.*", - "ircmaxell/password-compat": "1.0.2" + "ircmaxell/password-compat": "1.0.2", + "league/event": "0.2.0" }, "autoload": { "psr-4": { diff --git a/tests/functional/tests/_bootstrap.php b/tests/_bootstrap.php similarity index 100% rename from tests/functional/tests/_bootstrap.php rename to tests/_bootstrap.php diff --git a/tests/_support/ApiHelper.php b/tests/_support/ApiHelper.php new file mode 100644 index 00000000..22b8bbfc --- /dev/null +++ b/tests/_support/ApiHelper.php @@ -0,0 +1,10 @@ +scenario->runStep(new \Codeception\Step\Action('setHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets 'url' configuration parameter to hosts subdomain. + * It does not open a page on subdomain. Use `amOnPage` for that + * + * ``` php + * amOnSubdomain('user'); + * $I->amOnPage('/'); + * // moves to http://user.mysite.com/ + * ?> + * ``` + * + * @param $subdomain + * + * @return mixed + * @see \Codeception\Module\PhpBrowser::amOnSubdomain() + */ + public function amOnSubdomain($subdomain) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Low-level API method. + * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly + * + * Example: + * + * ``` php + * executeInGuzzle(function (\GuzzleHttp\Client $client) { + * $client->get('/get', ['query' => ['foo' => 'bar']]); + * }); + * ?> + * ``` + * + * It is not recommended to use this command on a regular basis. + * If Codeception lacks important Guzzle Client methods, implement them and submit patches. + * + * @param callable $function + * @see \Codeception\Module\PhpBrowser::executeInGuzzle() + */ + public function executeInGuzzle($function) { + return $this->scenario->runStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds HTTP authentication via username/password. + * + * @param $username + * @param $password + * @see \Codeception\Module\REST::amHttpAuthenticated() + */ + public function amHttpAuthenticated($username, $password) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opens the page. + * Requires relative uri as parameter + * + * Example: + * + * ``` php + * amOnPage('/'); + * // opens /register page + * $I->amOnPage('/register'); + * ?> + * ``` + * + * @param $page + * @see \Codeception\Lib\InnerBrowser::amOnPage() + */ + public function amOnPage($page) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Perform a click on link or button. + * Link or button are found by their names or CSS selector. + * Submits a form if button is a submit type. + * + * If link is an image it's found by alt attribute value of image. + * If button is image button is found by it's value + * If link or button can't be found by name they are searched by CSS selector. + * + * The second parameter is a context: CSS or XPath locator to narrow the search. + * + * Examples: + * + * ``` php + * click('Logout'); + * // button of form + * $I->click('Submit'); + * // CSS button + * $I->click('#form input[type=submit]'); + * // XPath + * $I->click('//form/*[@type=submit]'); + * // link in context + * $I->click('Logout', '#nav'); + * // using strict locator + * $I->click(['link' => 'Login']); + * ?> + * ``` + * + * @param $link + * @param $context + * @see \Codeception\Lib\InnerBrowser::click() + */ + public function click($link, $context = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('click', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::see() + */ + public function canSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * @see \Codeception\Lib\InnerBrowser::see() + */ + public function see($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('see', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page doesn't contain the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ```php + * dontSee('Login'); // I can suppose user is already logged in + * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page + * $I->dontSee('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSee() + */ + public function cantSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page doesn't contain the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ```php + * dontSee('Login'); // I can suppose user is already logged in + * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page + * $I->dontSee('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * @see \Codeception\Lib\InnerBrowser::dontSee() + */ + public function dontSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeLink() + */ + public function canSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * @see \Codeception\Lib\InnerBrowser::seeLink() + */ + public function seeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeLink() + */ + public function cantSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * @see \Codeception\Lib\InnerBrowser::dontSeeLink() + */ + public function dontSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() + */ + public function canSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() + */ + public function seeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() + */ + public function cantSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() + */ + public function dontSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() + */ + public function canSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() + */ + public function seeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() + */ + public function cantSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() + */ + public function dontSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() + */ + public function canSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() + */ + public function seeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() + */ + public function cantSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() + */ + public function dontSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Takes a parameters from current URI by RegEx. + * If no url provided returns full URI. + * + * ``` php + * grabFromCurrentUrl('~$/user/(\d+)/~'); + * $uri = $I->grabFromCurrentUrl(); + * ?> + * ``` + * + * @param null $uri + * + * @internal param $url + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabFromCurrentUrl() + */ + public function grabFromCurrentUrl($uri = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() + */ + public function canSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() + */ + public function seeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() + */ + public function cantSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() + */ + public function dontSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInField() + */ + public function canSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::seeInField() + */ + public function seeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInField() + */ + public function cantSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::dontSeeInField() + */ + public function dontSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Submits a form located on page. + * Specify the form by it's css or xpath selector. + * Fill the form fields values as array. + * + * Skipped fields will be filled by their values from page. + * You don't need to click the 'Submit' button afterwards. + * This command itself triggers the request to form's action. + * + * Examples: + * + * ``` php + * submitForm('#login', array('login' => 'davert', 'password' => '123456')); + * + * ``` + * + * For sample Sign Up form: + * + * ``` html + *
+ * Login:
+ * Password:
+ * Do you agree to out terms?
+ * Select pricing plan + * + *
+ * ``` + * I can write this: + * + * ``` php + * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); + * + * ``` + * Note, that pricing plan will be set to Paid, as it's selected on page. + * + * @param $selector + * @param $params + * @see \Codeception\Lib\InnerBrowser::submitForm() + */ + public function submitForm($selector, $params) { + return $this->scenario->runStep(new \Codeception\Step\Action('submitForm', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Fills a text field or textarea with value. + * + * Example: + * + * ``` php + * fillField("//input[@type='text']", "Hello World!"); + * $I->fillField(['name' => 'email'], 'jon@mail.com'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::fillField() + */ + public function fillField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Action('fillField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Selects an option in select tag or in radio button group. + * + * Example: + * + * ``` php + * selectOption('form select[name=account]', 'Premium'); + * $I->selectOption('form input[name=payment]', 'Monthly'); + * $I->selectOption('//form/select[@name=account]', 'Monthly'); + * ?> + * ``` + * + * Can select multiple options if second argument is array: + * + * ``` php + * selectOption('Which OS do you use?', array('Windows','Linux')); + * ?> + * ``` + * + * @param $select + * @param $option + * @see \Codeception\Lib\InnerBrowser::selectOption() + */ + public function selectOption($select, $option) { + return $this->scenario->runStep(new \Codeception\Step\Action('selectOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Ticks a checkbox. + * For radio buttons use `selectOption` method. + * + * Example: + * + * ``` php + * checkOption('#agree'); + * ?> + * ``` + * + * @param $option + * @see \Codeception\Lib\InnerBrowser::checkOption() + */ + public function checkOption($option) { + return $this->scenario->runStep(new \Codeception\Step\Action('checkOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Unticks a checkbox. + * + * Example: + * + * ``` php + * uncheckOption('#notify'); + * ?> + * ``` + * + * @param $option + * @see \Codeception\Lib\InnerBrowser::uncheckOption() + */ + public function uncheckOption($option) { + return $this->scenario->runStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Attaches file from Codeception data directory to upload field. + * + * Example: + * + * ``` php + * attachFile('input[@type="file"]', 'prices.xls'); + * ?> + * ``` + * + * @param $field + * @param $filename + * @see \Codeception\Lib\InnerBrowser::attachFile() + */ + public function attachFile($field, $filename) { + return $this->scenario->runStep(new \Codeception\Step\Action('attachFile', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a GET ajax request with specified params. + * + * See ->sendAjaxPostRequest for examples. + * + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxGetRequest() + */ + public function sendAjaxGetRequest($uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a POST ajax request with specified params. + * Additional params can be passed as array. + * + * Example: + * + * Imagine that by clicking checkbox you trigger ajax request which updates user settings. + * We emulate that click by running this ajax request manually. + * + * ``` php + * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST + * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET + * + * ``` + * + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxPostRequest() + */ + public function sendAjaxPostRequest($uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends an ajax request with specified method and params. + * + * Example: + * + * You need to perform an ajax request specifying the HTTP method. + * + * ``` php + * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); + * + * ``` + * + * @param $method + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxRequest() + */ + public function sendAjaxRequest($method, $uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Finds and returns text contents of element. + * Element is searched by CSS selector, XPath or matcher by regex. + * + * Example: + * + * ``` php + * grabTextFrom('h1'); + * $heading = $I->grabTextFrom('descendant-or-self::h1'); + * $value = $I->grabTextFrom('~ + * ``` + * + * @param $cssOrXPathOrRegex + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabTextFrom() + */ + public function grabTextFrom($cssOrXPathOrRegex) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Grabs attribute value from an element. + * Fails if element is not found. + * + * ``` php + * grabAttributeFrom('#tooltip', 'title'); + * ?> + * ``` + * + * + * @param $cssOrXpath + * @param $attribute + * @internal param $element + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabAttributeFrom() + */ + public function grabAttributeFrom($cssOrXpath, $attribute) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabAttributeFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * @param $field + * + * @return array|mixed|null|string + * @see \Codeception\Lib\InnerBrowser::grabValueFrom() + */ + public function grabValueFrom($field) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets a cookie. + * + * @param $cookie + * @param $value + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::setCookie() + */ + public function setCookie($name, $val) { + return $this->scenario->runStep(new \Codeception\Step\Action('setCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Grabs a cookie value. + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabCookie() + */ + public function grabCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie is set. + * + * @param $cookie + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCookie() + */ + public function canSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie is set. + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeCookie() + */ + public function seeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie doesn't exist + * + * @param $cookie + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() + */ + public function cantSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie doesn't exist + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() + */ + public function dontSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Unsets cookie + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::resetCookie() + */ + public function resetCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Action('resetCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element exists on a page, matching it by CSS or XPath. + * You can also specify expected attributes of this element. + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * $I->seeElement('input', ['name' => 'login']); + * $I->seeElement('input', ['value' => '123456']); + * + * // strict locator in first arg, attributes in second + * $I->seeElement(['css' => 'form input'], ['name' => 'login']); + * ?> + * ``` + * + * @param $selector + * @param array $attributes + * @return + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeElement() + */ + public function canSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element exists on a page, matching it by CSS or XPath. + * You can also specify expected attributes of this element. + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * $I->seeElement('input', ['name' => 'login']); + * $I->seeElement('input', ['value' => '123456']); + * + * // strict locator in first arg, attributes in second + * $I->seeElement(['css' => 'form input'], ['name' => 'login']); + * ?> + * ``` + * + * @param $selector + * @param array $attributes + * @return + * @see \Codeception\Lib\InnerBrowser::seeElement() + */ + public function seeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * You can also specify expected attributes of this element. + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * $I->dontSeeElement('input', ['name' => 'login']); + * $I->dontSeeElement('input', ['value' => '123456']); + * ?> + * ``` + * + * @param $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeElement() + */ + public function cantSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * You can also specify expected attributes of this element. + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * $I->dontSeeElement('input', ['name' => 'login']); + * $I->dontSeeElement('input', ['value' => '123456']); + * ?> + * ``` + * + * @param $selector + * @see \Codeception\Lib\InnerBrowser::dontSeeElement() + */ + public function dontSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() + */ + public function canSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() + */ + public function seeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() + */ + public function cantSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() + */ + public function dontSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Asserts that current page has 404 response status code. + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seePageNotFound() + */ + public function canSeePageNotFound() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Asserts that current page has 404 response status code. + * @see \Codeception\Lib\InnerBrowser::seePageNotFound() + */ + public function seePageNotFound() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks response code equals to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseCodeIs() + */ + public function canSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks response code equals to provided value. + * + * @param $code + * @see \Codeception\Module\REST::seeResponseCodeIs() + */ + public function seeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInTitle() + */ + public function canSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeInTitle() + */ + public function seeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title does not contain text. + * + * @param $title + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() + */ + public function cantSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title does not contain text. + * + * @param $title + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() + */ + public function dontSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets HTTP header + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::haveHttpHeader() + */ + public function haveHttpHeader($name, $value) { + return $this->scenario->runStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeHttpHeader() + */ + public function canSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::seeHttpHeader() + */ + public function seeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeHttpHeader() + */ + public function cantSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::dontSeeHttpHeader() + */ + public function dontSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeHttpHeaderOnce() + */ + public function canSeeHttpHeaderOnce($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * @see \Codeception\Module\REST::seeHttpHeaderOnce() + */ + public function seeHttpHeaderOnce($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns the value of the specified header name + * + * @param $name + * @param Boolean $first Whether to return the first value or all header values + * + * @return string|array The first header value if $first is true, an array of values otherwise + * @see \Codeception\Module\REST::grabHttpHeader() + */ + public function grabHttpHeader($name, $first = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds Digest authentication via username/password. + * + * @param $username + * @param $password + * @see \Codeception\Module\REST::amDigestAuthenticated() + */ + public function amDigestAuthenticated($username, $password) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds Bearer authentication via access token. + * + * @param $accessToken + * @see \Codeception\Module\REST::amBearerAuthenticated() + */ + public function amBearerAuthenticated($accessToken) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amBearerAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a POST request to given uri. + * + * Parameters and files (as array of filenames) can be provided. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPOST() + */ + public function sendPOST($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPOST', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a HEAD request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendHEAD() + */ + public function sendHEAD($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends an OPTIONS request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendOPTIONS() + */ + public function sendOPTIONS($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a GET request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendGET() + */ + public function sendGET($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendGET', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends PUT request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPUT() + */ + public function sendPUT($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPUT', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends PATCH request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPATCH() + */ + public function sendPATCH($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends DELETE request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendDELETE() + */ + public function sendDELETE($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends LINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * + * @author samva.ua@gmail.com + * @see \Codeception\Module\REST::sendLINK() + */ + public function sendLINK($url, $linkEntries) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendLINK', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends UNLINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * @author samva.ua@gmail.com + * @see \Codeception\Module\REST::sendUNLINK() + */ + public function sendUNLINK($url, $linkEntries) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseIsJson() + */ + public function canSeeResponseIsJson() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * @see \Codeception\Module\REST::seeResponseIsJson() + */ + public function seeResponseIsJson() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseIsXml() + */ + public function canSeeResponseIsXml() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * @see \Codeception\Module\REST::seeResponseIsXml() + */ + public function seeResponseIsXml() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last response contains text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseContains() + */ + public function canSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last response contains text. + * + * @param $text + * @see \Codeception\Module\REST::seeResponseContains() + */ + public function seeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response do not contain text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseContains() + */ + public function cantSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response do not contain text. + * + * @param $text + * @see \Codeception\Module\REST::dontSeeResponseContains() + */ + public function dontSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseContainsJson() + */ + public function canSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * @see \Codeception\Module\REST::seeResponseContainsJson() + */ + public function seeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns current response so that it can be used in next scenario steps. + * + * Example: + * + * ``` php + * grabResponse(); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @version 1.1 + * @return string + * @see \Codeception\Module\REST::grabResponse() + */ + public function grabResponse() { + return $this->scenario->runStep(new \Codeception\Step\Action('grabResponse', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns data from the current JSON response using specified path + * so that it can be used in next scenario steps + * + * Example: + * + * ``` php + * grabDataFromJsonResponse('user.user_id'); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @param string $path + * + * @since 1.1.2 + * @return string + * + * @author tiger.seo@gmail.com + * @see \Codeception\Module\REST::grabDataFromJsonResponse() + */ + public function grabDataFromJsonResponse($path) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseContainsJson() + */ + public function cantSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * @see \Codeception\Module\REST::dontSeeResponseContainsJson() + */ + public function dontSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if response is exactly the same as provided. + * + * @param $response + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseEquals() + */ + public function canSeeResponseEquals($response) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if response is exactly the same as provided. + * + * @param $response + * @see \Codeception\Module\REST::seeResponseEquals() + */ + public function seeResponseEquals($response) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that response code is not equal to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseCodeIs() + */ + public function cantSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that response code is not equal to provided value. + * + * @param $code + * @see \Codeception\Module\REST::dontSeeResponseCodeIs() + */ + public function dontSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); + } +} diff --git a/tests/functional/tests/api/GetUsersAllFieldsCept.php b/tests/api/GetUsersAllFieldsCept.php similarity index 95% rename from tests/functional/tests/api/GetUsersAllFieldsCept.php rename to tests/api/GetUsersAllFieldsCept.php index 7dd93369..7f72fad2 100644 --- a/tests/functional/tests/api/GetUsersAllFieldsCept.php +++ b/tests/api/GetUsersAllFieldsCept.php @@ -1,5 +1,5 @@ wantTo('get all users with all fields'); $I->sendGET('api.php/users?access_token=iamgod'); $I->seeResponseCodeIs(200); diff --git a/tests/functional/tests/api/GetUsersBasicEmailFieldsCept.php b/tests/api/GetUsersBasicEmailFieldsCept.php similarity index 94% rename from tests/functional/tests/api/GetUsersBasicEmailFieldsCept.php rename to tests/api/GetUsersBasicEmailFieldsCept.php index f6619dbf..cb1211a8 100644 --- a/tests/functional/tests/api/GetUsersBasicEmailFieldsCept.php +++ b/tests/api/GetUsersBasicEmailFieldsCept.php @@ -1,5 +1,5 @@ wantTo('get all users with all basic and email fields'); $I->sendGET('api.php/users?access_token=iamphil'); $I->seeResponseCodeIs(200); diff --git a/tests/functional/tests/api/GetUsersBasicPhotoFieldsCept.php b/tests/api/GetUsersBasicPhotoFieldsCept.php similarity index 94% rename from tests/functional/tests/api/GetUsersBasicPhotoFieldsCept.php rename to tests/api/GetUsersBasicPhotoFieldsCept.php index 69745d95..4ee082ea 100644 --- a/tests/functional/tests/api/GetUsersBasicPhotoFieldsCept.php +++ b/tests/api/GetUsersBasicPhotoFieldsCept.php @@ -1,5 +1,5 @@ wantTo('get all users with basic and photo fields'); $I->sendGET('api.php/users?access_token=iamalex'); $I->seeResponseCodeIs(200); diff --git a/tests/functional/tests/api/GetUsersInvalidTokenCept.php b/tests/api/GetUsersInvalidTokenCept.php similarity index 84% rename from tests/functional/tests/api/GetUsersInvalidTokenCept.php rename to tests/api/GetUsersInvalidTokenCept.php index 1ca507e6..e7192460 100644 --- a/tests/functional/tests/api/GetUsersInvalidTokenCept.php +++ b/tests/api/GetUsersInvalidTokenCept.php @@ -1,5 +1,5 @@ wantTo('get all users with an invalid access token'); $I->sendGET('api.php/users?access_token=foobar'); $I->seeResponseCodeIs(401); diff --git a/tests/functional/tests/api/GetUsersNoTokenCept.php b/tests/api/GetUsersNoTokenCept.php similarity index 82% rename from tests/functional/tests/api/GetUsersNoTokenCept.php rename to tests/api/GetUsersNoTokenCept.php index 6d3ae875..93d25c81 100644 --- a/tests/functional/tests/api/GetUsersNoTokenCept.php +++ b/tests/api/GetUsersNoTokenCept.php @@ -1,5 +1,5 @@ wantTo('get all users without an access token'); $I->sendGET('api.php/users'); $I->seeResponseCodeIs(400); diff --git a/tests/functional/tests/api/GetUsersTokenHeaderCept.php b/tests/api/GetUsersTokenHeaderCept.php similarity index 95% rename from tests/functional/tests/api/GetUsersTokenHeaderCept.php rename to tests/api/GetUsersTokenHeaderCept.php index 5a8317e2..31473aba 100644 --- a/tests/functional/tests/api/GetUsersTokenHeaderCept.php +++ b/tests/api/GetUsersTokenHeaderCept.php @@ -1,5 +1,5 @@ wantTo('get all users with header access token'); $I->haveHttpHeader('Authorization', 'Bearer iamgod'); $I->sendGET('api.php/users'); diff --git a/tests/api/_bootstrap.php b/tests/api/_bootstrap.php new file mode 100644 index 00000000..8a885558 --- /dev/null +++ b/tests/api/_bootstrap.php @@ -0,0 +1,2 @@ +submitForm('#login', array('login' => 'davert', 'password' => '123456')); - * - * ``` - * - * For sample Sign Up form: - * - * ``` html - *
- * Login:
- * Password:
- * Do you agree to out terms?
- * Select pricing plan - * - *
- * ``` - * I can write this: - * - * ``` php - * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); - * - * ``` - * Note, that pricing plan will be set to Paid, as it's selected on page. - * - * @param $selector - * @param $params - * @see Codeception\Module\PhpBrowser::submitForm() - * @return \Codeception\Maybe - */ - public function submitForm($selector, $params) { - $this->scenario->addStep(new \Codeception\Step\Action('submitForm', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a POST ajax request with specified params. - * Additional params can be passed as array. - * - * Example: - * - * Imagine that by clicking checkbox you trigger ajax request which updates user settings. - * We emulate that click by running this ajax request manually. - * - * ``` php - * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST - * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET - * - * ``` - * - * @param $uri - * @param $params - * @see Codeception\Module\PhpBrowser::sendAjaxPostRequest() - * @return \Codeception\Maybe - */ - public function sendAjaxPostRequest($uri, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a GET ajax request with specified params. - * - * See ->sendAjaxPostRequest for examples. - * - * @param $uri - * @param $params - * @see Codeception\Module\PhpBrowser::sendAjaxGetRequest() - * @return \Codeception\Maybe - */ - public function sendAjaxGetRequest($uri, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends an ajax request with specified method and params. - * - * Example: - * - * You need to perform an ajax request specifying the HTTP method. - * - * ``` php - * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); - * - * ``` - * - * @param $method - * @param $uri - * @param $params - * @see Codeception\Module\PhpBrowser::sendAjaxRequest() - * @return \Codeception\Maybe - */ - public function sendAjaxRequest($method, $uri, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Asserts that current page has 404 response status code. - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\PhpBrowser::seePageNotFound() - * @return \Codeception\Maybe - */ - public function canSeePageNotFound() { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Asserts that current page has 404 response status code. - * @see Codeception\Module\PhpBrowser::seePageNotFound() - * @return \Codeception\Maybe - */ - public function seePageNotFound() { - $this->scenario->addStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks response code equals to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseCodeIs() - * @return \Codeception\Maybe - */ - public function canSeeResponseCodeIs($code) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks response code equals to provided value. - * - * @param $code - * @see Codeception\Module\REST::seeResponseCodeIs() - * @return \Codeception\Maybe - */ - public function seeResponseCodeIs($code) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Adds HTTP authentication via username/password. - * - * @param $username - * @param $password - * @see Codeception\Module\REST::amHttpAuthenticated() - * @return \Codeception\Maybe - */ - public function amHttpAuthenticated($username, $password) { - $this->scenario->addStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Low-level API method. - * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly - * - * Example: - * - * ``` php - * amGoingTo('Sign all requests with OAuth'); - * $I->executeInGuzzle(function (\Guzzle\Http\Client $client) { - * $client->addSubscriber(new Guzzle\Plugin\Oauth\OauthPlugin(array( - * 'consumer_key' => '***', - * 'consumer_secret' => '***', - * 'token' => '***', - * 'token_secret' => '***' - * ))); - * }); - * ?> - * ``` - * - * It is not recommended to use this command on a regular basis. - * If Codeception lacks important Guzzle Client methods, implement them and submit patches. - * - * @param callable $function - * @see Codeception\Module\PhpBrowser::executeInGuzzle() - * @return \Codeception\Maybe - */ - public function executeInGuzzle($function) { - $this->scenario->addStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\PhpBrowser::seeCheckboxIsChecked() - * @return \Codeception\Maybe - */ - public function canSeeCheckboxIsChecked($checkbox) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * @see Codeception\Module\PhpBrowser::seeCheckboxIsChecked() - * @return \Codeception\Maybe - */ - public function seeCheckboxIsChecked($checkbox) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\PhpBrowser::dontSeeCheckboxIsChecked() - * @return \Codeception\Maybe - */ - public function cantSeeCheckboxIsChecked($checkbox) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * @see Codeception\Module\PhpBrowser::dontSeeCheckboxIsChecked() - * @return \Codeception\Maybe - */ - public function dontSeeCheckboxIsChecked($checkbox) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Opens the page. - * - * @param $page - * @see Codeception\Util\Mink::amOnPage() - * @return \Codeception\Maybe - */ - public function amOnPage($page) { - $this->scenario->addStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sets 'url' configuration parameter to hosts subdomain. - * It does not open a page on subdomain. Use `amOnPage` for that - * - * ``` php - * amOnSubdomain('user'); - * $I->amOnPage('/'); - * // moves to http://user.mysite.com/ - * ?> - * ``` - * @param $subdomain - * @return mixed - * @see Codeception\Util\Mink::amOnSubdomain() - * @return \Codeception\Maybe - */ - public function amOnSubdomain($subdomain) { - $this->scenario->addStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * @param string $text - * @param string $selector - * - * @return void - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSee() - * @return \Codeception\Maybe - */ - public function cantSee($text, $selector = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * @param string $text - * @param string $selector - * - * @return void - * @see Codeception\Util\Mink::dontSee() - * @return \Codeception\Maybe - */ - public function dontSee($text, $selector = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::see() - * @return \Codeception\Maybe - */ - public function canSee($text, $selector = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * @see Codeception\Util\Mink::see() - * @return \Codeception\Maybe - */ - public function see($text, $selector = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('see', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeLink() - * @return \Codeception\Maybe - */ - public function canSeeLink($text, $url = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * @see Codeception\Util\Mink::seeLink() - * @return \Codeception\Maybe - */ - public function seeLink($text, $url = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeLink() - * @return \Codeception\Maybe - */ - public function cantSeeLink($text, $url = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * @see Codeception\Util\Mink::dontSeeLink() - * @return \Codeception\Maybe - */ - public function dontSeeLink($text, $url = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Perform a click on link or button. - * Link or button are found by their names or CSS selector. - * Submits a form if button is a submit type. - * - * If link is an image it's found by alt attribute value of image. - * If button is image button is found by it's value - * If link or button can't be found by name they are searched by CSS selector. - * - * The second parameter is a context: CSS or XPath locator to narrow the search. - * - * Examples: - * - * ``` php - * click('Logout'); - * // button of form - * $I->click('Submit'); - * // CSS button - * $I->click('#form input[type=submit]'); - * // XPath - * $I->click('//form/*[@type=submit]') - * // link in context - * $I->click('Logout', '#nav'); - * ?> - * ``` - * @param $link - * @param $context - * @see Codeception\Util\Mink::click() - * @return \Codeception\Maybe - */ - public function click($link, $context = null) { - $this->scenario->addStep(new \Codeception\Step\Action('click', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if element exists on a page, matching it by CSS or XPath - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * ?> - * ``` - * @param $selector - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeElement() - * @return \Codeception\Maybe - */ - public function canSeeElement($selector) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if element exists on a page, matching it by CSS or XPath - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * ?> - * ``` - * @param $selector - * @see Codeception\Util\Mink::seeElement() - * @return \Codeception\Maybe - */ - public function seeElement($selector) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * ?> - * ``` - * @param $selector - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeElement() - * @return \Codeception\Maybe - */ - public function cantSeeElement($selector) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * ?> - * ``` - * @param $selector - * @see Codeception\Util\Mink::dontSeeElement() - * @return \Codeception\Maybe - */ - public function dontSeeElement($selector) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Reloads current page - * @see Codeception\Util\Mink::reloadPage() - * @return \Codeception\Maybe - */ - public function reloadPage() { - $this->scenario->addStep(new \Codeception\Step\Action('reloadPage', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Moves back in history - * @see Codeception\Util\Mink::moveBack() - * @return \Codeception\Maybe - */ - public function moveBack() { - $this->scenario->addStep(new \Codeception\Step\Action('moveBack', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Moves forward in history - * @see Codeception\Util\Mink::moveForward() - * @return \Codeception\Maybe - */ - public function moveForward() { - $this->scenario->addStep(new \Codeception\Step\Action('moveForward', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Fills a text field or textarea with value. - * - * Example: - * - * ``` php - * fillField("//input[@type='text']", "Hello World!"); - * ?> - * ``` - * - * @param $field - * @param $value - * @see Codeception\Util\Mink::fillField() - * @return \Codeception\Maybe - */ - public function fillField($field, $value) { - $this->scenario->addStep(new \Codeception\Step\Action('fillField', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Selects an option in select tag or in radio button group. - * - * Example: - * - * ``` php - * selectOption('form select[name=account]', 'Premium'); - * $I->selectOption('form input[name=payment]', 'Monthly'); - * $I->selectOption('//form/select[@name=account]', 'Monthly'); - * ?> - * ``` - * - * Can select multiple options if second argument is array: - * - * ``` php - * selectOption('Which OS do you use?', array('Windows','Linux')); - * ?> - * ``` - * - * @param $select - * @param $option - * @see Codeception\Util\Mink::selectOption() - * @return \Codeception\Maybe - */ - public function selectOption($select, $option) { - $this->scenario->addStep(new \Codeception\Step\Action('selectOption', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Ticks a checkbox. - * For radio buttons use `selectOption` method. - * - * Example: - * - * ``` php - * checkOption('#agree'); - * ?> - * ``` - * - * @param $option - * @see Codeception\Util\Mink::checkOption() - * @return \Codeception\Maybe - */ - public function checkOption($option) { - $this->scenario->addStep(new \Codeception\Step\Action('checkOption', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Unticks a checkbox. - * - * Example: - * - * ``` php - * uncheckOption('#notify'); - * ?> - * ``` - * - * @param $option - * @see Codeception\Util\Mink::uncheckOption() - * @return \Codeception\Maybe - */ - public function uncheckOption($option) { - $this->scenario->addStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeInCurrentUrl() - * @return \Codeception\Maybe - */ - public function canSeeInCurrentUrl($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::seeInCurrentUrl() - * @return \Codeception\Maybe - */ - public function seeInCurrentUrl($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeInCurrentUrl() - * @return \Codeception\Maybe - */ - public function cantSeeInCurrentUrl($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::dontSeeInCurrentUrl() - * @return \Codeception\Maybe - */ - public function dontSeeInCurrentUrl($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeCurrentUrlEquals() - * @return \Codeception\Maybe - */ - public function canSeeCurrentUrlEquals($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::seeCurrentUrlEquals() - * @return \Codeception\Maybe - */ - public function seeCurrentUrlEquals($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeCurrentUrlEquals() - * @return \Codeception\Maybe - */ - public function cantSeeCurrentUrlEquals($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::dontSeeCurrentUrlEquals() - * @return \Codeception\Maybe - */ - public function dontSeeCurrentUrlEquals($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeCurrentUrlMatches() - * @return \Codeception\Maybe - */ - public function canSeeCurrentUrlMatches($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::seeCurrentUrlMatches() - * @return \Codeception\Maybe - */ - public function seeCurrentUrlMatches($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeCurrentUrlMatches() - * @return \Codeception\Maybe - */ - public function cantSeeCurrentUrlMatches($uri) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see Codeception\Util\Mink::dontSeeCurrentUrlMatches() - * @return \Codeception\Maybe - */ - public function dontSeeCurrentUrlMatches($uri) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that cookie is set. - * - * @param $cookie - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeCookie() - * @return \Codeception\Maybe - */ - public function canSeeCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that cookie is set. - * - * @param $cookie - * @return mixed - * @see Codeception\Util\Mink::seeCookie() - * @return \Codeception\Maybe - */ - public function seeCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that cookie doesn't exist - * - * @param $cookie - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeCookie() - * @return \Codeception\Maybe - */ - public function cantSeeCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that cookie doesn't exist - * - * @param $cookie - * @return mixed - * @see Codeception\Util\Mink::dontSeeCookie() - * @return \Codeception\Maybe - */ - public function dontSeeCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sets a cookie. - * - * @param $cookie - * @param $value - * @return mixed - * @see Codeception\Util\Mink::setCookie() - * @return \Codeception\Maybe - */ - public function setCookie($cookie, $value) { - $this->scenario->addStep(new \Codeception\Step\Action('setCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Unsets cookie - * - * @param $cookie - * @return mixed - * @see Codeception\Util\Mink::resetCookie() - * @return \Codeception\Maybe - */ - public function resetCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\Action('resetCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Grabs a cookie value. - * - * @param $cookie - * @return mixed - * @see Codeception\Util\Mink::grabCookie() - * @return \Codeception\Maybe - */ - public function grabCookie($cookie) { - $this->scenario->addStep(new \Codeception\Step\Action('grabCookie', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Takes a parameters from current URI by RegEx. - * If no url provided returns full URI. - * - * ``` php - * grabFromCurrentUrl('~$/user/(\d+)/~'); - * $uri = $I->grabFromCurrentUrl(); - * ?> - * ``` - * - * @param null $uri - * @internal param $url - * @return mixed - * @see Codeception\Util\Mink::grabFromCurrentUrl() - * @return \Codeception\Maybe - */ - public function grabFromCurrentUrl($uri = null) { - $this->scenario->addStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Attaches file from Codeception data directory to upload field. - * - * Example: - * - * ``` php - * attachFile('input[@type="file"]', 'prices.xls'); - * ?> - * ``` - * - * @param $field - * @param $filename - * @see Codeception\Util\Mink::attachFile() - * @return \Codeception\Maybe - */ - public function attachFile($field, $filename) { - $this->scenario->addStep(new \Codeception\Step\Action('attachFile', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeOptionIsSelected() - * @return \Codeception\Maybe - */ - public function canSeeOptionIsSelected($select, $text) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * @return mixed - * @see Codeception\Util\Mink::seeOptionIsSelected() - * @return \Codeception\Maybe - */ - public function seeOptionIsSelected($select, $text) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeOptionIsSelected() - * @return \Codeception\Maybe - */ - public function cantSeeOptionIsSelected($select, $text) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * @return mixed - * @see Codeception\Util\Mink::dontSeeOptionIsSelected() - * @return \Codeception\Maybe - */ - public function dontSeeOptionIsSelected($select, $text) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeInField() - * @return \Codeception\Maybe - */ - public function canSeeInField($field, $value) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see Codeception\Util\Mink::seeInField() - * @return \Codeception\Maybe - */ - public function seeInField($field, $value) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeInField() - * @return \Codeception\Maybe - */ - public function cantSeeInField($field, $value) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see Codeception\Util\Mink::dontSeeInField() - * @return \Codeception\Maybe - */ - public function dontSeeInField($field, $value) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Finds and returns text contents of element. - * Element is searched by CSS selector, XPath or matcher by regex. - * - * Example: - * - * ``` php - * grabTextFrom('h1'); - * $heading = $I->grabTextFrom('descendant-or-self::h1'); - * $value = $I->grabTextFrom('~ - * ``` - * - * @param $cssOrXPathOrRegex - * @return mixed - * @see Codeception\Util\Mink::grabTextFrom() - * @return \Codeception\Maybe - */ - public function grabTextFrom($cssOrXPathOrRegex) { - $this->scenario->addStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Finds and returns field and returns it's value. - * Searches by field name, then by CSS, then by XPath - * - * Example: - * - * ``` php - * grabValueFrom('Name'); - * $name = $I->grabValueFrom('input[name=username]'); - * $name = $I->grabValueFrom('descendant-or-self::form/descendant::input[@name = 'username']'); - * ?> - * ``` - * - * @param $field - * @return mixed - * @see Codeception\Util\Mink::grabValueFrom() - * @return \Codeception\Maybe - */ - public function grabValueFrom($field) { - $this->scenario->addStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::seeInTitle() - * @return \Codeception\Maybe - */ - public function canSeeInTitle($title) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * @return mixed - * @see Codeception\Util\Mink::seeInTitle() - * @return \Codeception\Maybe - */ - public function seeInTitle($title) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that page title does not contain text. - * - * @param $title - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Util\Mink::dontSeeInTitle() - * @return \Codeception\Maybe - */ - public function cantSeeInTitle($title) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that page title does not contain text. - * - * @param $title - * @return mixed - * @see Codeception\Util\Mink::dontSeeInTitle() - * @return \Codeception\Maybe - */ - public function dontSeeInTitle($title) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * - * @see Codeception\Module::getName() - * @return \Codeception\Maybe - */ - public function getName() { - $this->scenario->addStep(new \Codeception\Step\Action('getName', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sets HTTP header - * - * @param $name - * @param $value - * @see Codeception\Module\REST::haveHttpHeader() - * @return \Codeception\Maybe - */ - public function haveHttpHeader($name, $value) { - $this->scenario->addStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeHttpHeader() - * @return \Codeception\Maybe - */ - public function canSeeHttpHeader($name, $value = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * @see Codeception\Module\REST::seeHttpHeader() - * @return \Codeception\Maybe - */ - public function seeHttpHeader($name, $value = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::dontSeeHttpHeader() - * @return \Codeception\Maybe - */ - public function cantSeeHttpHeader($name, $value = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * @see Codeception\Module\REST::dontSeeHttpHeader() - * @return \Codeception\Maybe - */ - public function dontSeeHttpHeader($name, $value = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeHttpHeaderOnce() - * @return \Codeception\Maybe - */ - public function canSeeHttpHeaderOnce($name) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * @see Codeception\Module\REST::seeHttpHeaderOnce() - * @return \Codeception\Maybe - */ - public function seeHttpHeaderOnce($name) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Returns the value of the specified header name - * - * @param $name - * @param Boolean $first Whether to return the first value or all header values - * - * @return string|array The first header value if $first is true, an array of values otherwise - * @see Codeception\Module\REST::grabHttpHeader() - * @return \Codeception\Maybe - */ - public function grabHttpHeader($name, $first = null) { - $this->scenario->addStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Adds Digest authentication via username/password. - * - * @param $username - * @param $password - * @see Codeception\Module\REST::amDigestAuthenticated() - * @return \Codeception\Maybe - */ - public function amDigestAuthenticated($username, $password) { - $this->scenario->addStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends a POST request to given uri. - * - * Parameters and files (as array of filenames) can be provided. - * - * @param $url - * @param array $params - * @param array $files - * @see Codeception\Module\REST::sendPOST() - * @return \Codeception\Maybe - */ - public function sendPOST($url, $params = null, $files = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendPOST', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends a HEAD request to given uri. - * - * @param $url - * @param array $params - * @see Codeception\Module\REST::sendHEAD() - * @return \Codeception\Maybe - */ - public function sendHEAD($url, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends an OPTIONS request to given uri. - * - * @param $url - * @param array $params - * @see Codeception\Module\REST::sendOPTIONS() - * @return \Codeception\Maybe - */ - public function sendOPTIONS($url, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends a GET request to given uri. - * - * @param $url - * @param array $params - * @see Codeception\Module\REST::sendGET() - * @return \Codeception\Maybe - */ - public function sendGET($url, $params = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendGET', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends PUT request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see Codeception\Module\REST::sendPUT() - * @return \Codeception\Maybe - */ - public function sendPUT($url, $params = null, $files = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendPUT', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends PATCH request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see Codeception\Module\REST::sendPATCH() - * @return \Codeception\Maybe - */ - public function sendPATCH($url, $params = null, $files = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends DELETE request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see Codeception\Module\REST::sendDELETE() - * @return \Codeception\Maybe - */ - public function sendDELETE($url, $params = null, $files = null) { - $this->scenario->addStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends LINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * - * @author samva.ua@gmail.com - * @see Codeception\Module\REST::sendLINK() - * @return \Codeception\Maybe - */ - public function sendLINK($url, $linkEntries) { - $this->scenario->addStep(new \Codeception\Step\Action('sendLINK', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Sends UNLINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * - * @author samva.ua@gmail.com - * @see Codeception\Module\REST::sendUNLINK() - * @return \Codeception\Maybe - */ - public function sendUNLINK($url, $linkEntries) { - $this->scenario->addStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseIsJson() - * @return \Codeception\Maybe - */ - public function canSeeResponseIsJson() { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * @see Codeception\Module\REST::seeResponseIsJson() - * @return \Codeception\Maybe - */ - public function seeResponseIsJson() { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseIsXml() - * @return \Codeception\Maybe - */ - public function canSeeResponseIsXml() { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * @see Codeception\Module\REST::seeResponseIsXml() - * @return \Codeception\Maybe - */ - public function seeResponseIsXml() { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether the last response contains text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseContains() - * @return \Codeception\Maybe - */ - public function canSeeResponseContains($text) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether the last response contains text. - * - * @param $text - * @see Codeception\Module\REST::seeResponseContains() - * @return \Codeception\Maybe - */ - public function seeResponseContains($text) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response do not contain text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::dontSeeResponseContains() - * @return \Codeception\Maybe - */ - public function cantSeeResponseContains($text) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether last response do not contain text. - * - * @param $text - * @see Codeception\Module\REST::dontSeeResponseContains() - * @return \Codeception\Maybe - */ - public function dontSeeResponseContains($text) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseContainsJson() - * @return \Codeception\Maybe - */ - public function canSeeResponseContainsJson($json = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * @see Codeception\Module\REST::seeResponseContainsJson() - * @return \Codeception\Maybe - */ - public function seeResponseContainsJson($json = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Returns current response so that it can be used in next scenario steps. - * - * Example: - * - * ``` php - * grabResponse(); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @version 1.1 - * @return string - * @see Codeception\Module\REST::grabResponse() - * @return \Codeception\Maybe - */ - public function grabResponse() { - $this->scenario->addStep(new \Codeception\Step\Action('grabResponse', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Returns data from the current JSON response using specified path - * so that it can be used in next scenario steps - * - * Example: - * - * ``` php - * grabDataFromJsonResponse('user.user_id'); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @param string $path - * - * @since 1.1.2 - * @return string - * - * @author tiger.seo@gmail.com - * @see Codeception\Module\REST::grabDataFromJsonResponse() - * @return \Codeception\Maybe - */ - public function grabDataFromJsonResponse($path) { - $this->scenario->addStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::dontSeeResponseContainsJson() - * @return \Codeception\Maybe - */ - public function cantSeeResponseContainsJson($json = null) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * @see Codeception\Module\REST::dontSeeResponseContainsJson() - * @return \Codeception\Maybe - */ - public function dontSeeResponseContainsJson($json = null) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if response is exactly the same as provided. - * - * @param $response - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::seeResponseEquals() - * @return \Codeception\Maybe - */ - public function canSeeResponseEquals($response) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks if response is exactly the same as provided. - * - * @param $response - * @see Codeception\Module\REST::seeResponseEquals() - * @return \Codeception\Maybe - */ - public function seeResponseEquals($response) { - $this->scenario->addStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - - - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that response code is not equal to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see Codeception\Module\REST::dontSeeResponseCodeIs() - * @return \Codeception\Maybe - */ - public function cantSeeResponseCodeIs($code) { - $this->scenario->addStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } - /** - * This method is generated. - * Documentation taken from corresponding module. - * ---------------------------------------------- - * - * Checks that response code is not equal to provided value. - * - * @param $code - * @see Codeception\Module\REST::dontSeeResponseCodeIs() - * @return \Codeception\Maybe - */ - public function dontSeeResponseCodeIs($code) { - $this->scenario->addStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); - if ($this->scenario->running()) { - $result = $this->scenario->runStep(); - return new Maybe($result); - } - return new Maybe(); - } -} - diff --git a/tests/functional/tests/api/_bootstrap.php b/tests/functional/tests/api/_bootstrap.php deleted file mode 100644 index 7dfa7c30..00000000 --- a/tests/functional/tests/api/_bootstrap.php +++ /dev/null @@ -1,2 +0,0 @@ - Date: Tue, 22 Jul 2014 11:07:29 +0100 Subject: [PATCH 159/270] Fix path for codeception logs --- .travis.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 6e5e9a0f..a4ce921e 100644 --- a/.travis.yml +++ b/.travis.yml @@ -19,8 +19,8 @@ before_script: - php -S localhost:8000 & - sleep 3 - cd ../.. - - mkdir tests/functional/tests/_log - - chmod -R 777 tests/functional/tests/_log + - mkdir tests/api/tests/_log + - chmod -R 777 tests/api/tests/_log script: - mkdir -p build/logs From d123ba095c3debedc045ae30327f69ce19884dad Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 11:11:23 +0100 Subject: [PATCH 160/270] Dammit --- .travis.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index a4ce921e..4fcc7688 100644 --- a/.travis.yml +++ b/.travis.yml @@ -19,8 +19,6 @@ before_script: - php -S localhost:8000 & - sleep 3 - cd ../.. - - mkdir tests/api/tests/_log - - chmod -R 777 tests/api/tests/_log script: - mkdir -p build/logs From 47a5c1ba08df2293707b1eead196399530d31c80 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 11:45:19 +0100 Subject: [PATCH 161/270] 100% unit test coverage --- tests/unit/ResourceServerTest.php | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/tests/unit/ResourceServerTest.php b/tests/unit/ResourceServerTest.php index 7eb957f8..7fce1600 100644 --- a/tests/unit/ResourceServerTest.php +++ b/tests/unit/ResourceServerTest.php @@ -137,6 +137,10 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $server->setIdKey('at'); + $server->addEventListener('session.owner', function($event) { + $this->assertTrue($event->getSession() instanceof \League\OAuth2\Server\Entity\SessionEntity); + }); + $accessTokenStorage->shouldReceive('get')->andReturn( (new AccessTokenEntity($server))->setId('abcdef') ); From 395ee3bf49af471b58bc79e691bc00e597e4c571 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 22 Jul 2014 12:15:41 +0100 Subject: [PATCH 162/270] Moved existing functional tests into resource server folder --- .travis.yml | 2 +- tests/_support/{ApiHelper.php => AuthServerHelper.php} | 2 +- tests/_support/ResourceServerHelper.php | 10 ++++++++++ tests/{api.suite.yml => resourceServer.suite.yml} | 4 ++-- .../{api => resourceServer}/GetUsersAllFieldsCept.php | 2 +- .../GetUsersBasicEmailFieldsCept.php | 2 +- .../GetUsersBasicPhotoFieldsCept.php | 2 +- .../GetUsersInvalidTokenCept.php | 2 +- tests/{api => resourceServer}/GetUsersNoTokenCept.php | 2 +- .../GetUsersTokenHeaderCept.php | 2 +- .../ResourceServerTester.php} | 6 +++--- tests/{api => resourceServer}/_bootstrap.php | 0 12 files changed, 23 insertions(+), 13 deletions(-) rename tests/_support/{ApiHelper.php => AuthServerHelper.php} (74%) create mode 100644 tests/_support/ResourceServerHelper.php rename tests/{api.suite.yml => resourceServer.suite.yml} (59%) rename tests/{api => resourceServer}/GetUsersAllFieldsCept.php (93%) rename tests/{api => resourceServer}/GetUsersBasicEmailFieldsCept.php (92%) rename tests/{api => resourceServer}/GetUsersBasicPhotoFieldsCept.php (93%) rename tests/{api => resourceServer}/GetUsersInvalidTokenCept.php (79%) rename tests/{api => resourceServer}/GetUsersNoTokenCept.php (77%) rename tests/{api => resourceServer}/GetUsersTokenHeaderCept.php (94%) rename tests/{api/ApiTester.php => resourceServer/ResourceServerTester.php} (99%) rename tests/{api => resourceServer}/_bootstrap.php (100%) diff --git a/.travis.yml b/.travis.yml index 4fcc7688..229989cd 100644 --- a/.travis.yml +++ b/.travis.yml @@ -23,7 +23,7 @@ before_script: script: - mkdir -p build/logs - phpunit --coverage-text - - ./vendor/bin/codecept run api -d + - ./vendor/bin/codecept run resourceServer -d - ./vendor/bin/phpcs src --standard=psr2 after_script: diff --git a/tests/_support/ApiHelper.php b/tests/_support/AuthServerHelper.php similarity index 74% rename from tests/_support/ApiHelper.php rename to tests/_support/AuthServerHelper.php index 22b8bbfc..02792dda 100644 --- a/tests/_support/ApiHelper.php +++ b/tests/_support/AuthServerHelper.php @@ -4,7 +4,7 @@ namespace Codeception\Module; // here you can define custom actions // all public methods declared in helper class will be available in $I -class ApiHelper extends \Codeception\Module +class AuthServerHelper extends \Codeception\Module { } \ No newline at end of file diff --git a/tests/_support/ResourceServerHelper.php b/tests/_support/ResourceServerHelper.php new file mode 100644 index 00000000..532b3e73 --- /dev/null +++ b/tests/_support/ResourceServerHelper.php @@ -0,0 +1,10 @@ +wantTo('get all users with all fields'); $I->sendGET('api.php/users?access_token=iamgod'); $I->seeResponseCodeIs(200); diff --git a/tests/api/GetUsersBasicEmailFieldsCept.php b/tests/resourceServer/GetUsersBasicEmailFieldsCept.php similarity index 92% rename from tests/api/GetUsersBasicEmailFieldsCept.php rename to tests/resourceServer/GetUsersBasicEmailFieldsCept.php index cb1211a8..d8e590be 100644 --- a/tests/api/GetUsersBasicEmailFieldsCept.php +++ b/tests/resourceServer/GetUsersBasicEmailFieldsCept.php @@ -1,5 +1,5 @@ wantTo('get all users with all basic and email fields'); $I->sendGET('api.php/users?access_token=iamphil'); $I->seeResponseCodeIs(200); diff --git a/tests/api/GetUsersBasicPhotoFieldsCept.php b/tests/resourceServer/GetUsersBasicPhotoFieldsCept.php similarity index 93% rename from tests/api/GetUsersBasicPhotoFieldsCept.php rename to tests/resourceServer/GetUsersBasicPhotoFieldsCept.php index 4ee082ea..fb13db23 100644 --- a/tests/api/GetUsersBasicPhotoFieldsCept.php +++ b/tests/resourceServer/GetUsersBasicPhotoFieldsCept.php @@ -1,5 +1,5 @@ wantTo('get all users with basic and photo fields'); $I->sendGET('api.php/users?access_token=iamalex'); $I->seeResponseCodeIs(200); diff --git a/tests/api/GetUsersInvalidTokenCept.php b/tests/resourceServer/GetUsersInvalidTokenCept.php similarity index 79% rename from tests/api/GetUsersInvalidTokenCept.php rename to tests/resourceServer/GetUsersInvalidTokenCept.php index e7192460..1dab7324 100644 --- a/tests/api/GetUsersInvalidTokenCept.php +++ b/tests/resourceServer/GetUsersInvalidTokenCept.php @@ -1,5 +1,5 @@ wantTo('get all users with an invalid access token'); $I->sendGET('api.php/users?access_token=foobar'); $I->seeResponseCodeIs(401); diff --git a/tests/api/GetUsersNoTokenCept.php b/tests/resourceServer/GetUsersNoTokenCept.php similarity index 77% rename from tests/api/GetUsersNoTokenCept.php rename to tests/resourceServer/GetUsersNoTokenCept.php index 93d25c81..9b7ae094 100644 --- a/tests/api/GetUsersNoTokenCept.php +++ b/tests/resourceServer/GetUsersNoTokenCept.php @@ -1,5 +1,5 @@ wantTo('get all users without an access token'); $I->sendGET('api.php/users'); $I->seeResponseCodeIs(400); diff --git a/tests/api/GetUsersTokenHeaderCept.php b/tests/resourceServer/GetUsersTokenHeaderCept.php similarity index 94% rename from tests/api/GetUsersTokenHeaderCept.php rename to tests/resourceServer/GetUsersTokenHeaderCept.php index 31473aba..82cbd226 100644 --- a/tests/api/GetUsersTokenHeaderCept.php +++ b/tests/resourceServer/GetUsersTokenHeaderCept.php @@ -1,5 +1,5 @@ wantTo('get all users with header access token'); $I->haveHttpHeader('Authorization', 'Bearer iamgod'); $I->sendGET('api.php/users'); diff --git a/tests/api/ApiTester.php b/tests/resourceServer/ResourceServerTester.php similarity index 99% rename from tests/api/ApiTester.php rename to tests/resourceServer/ResourceServerTester.php index 8fe6b1ff..7761fb68 100644 --- a/tests/api/ApiTester.php +++ b/tests/resourceServer/ResourceServerTester.php @@ -1,4 +1,4 @@ - Date: Sun, 27 Jul 2014 17:11:27 +0100 Subject: [PATCH 163/270] Added missing column --- examples/relational/config/init.php | 1 + 1 file changed, 1 insertion(+) diff --git a/examples/relational/config/init.php b/examples/relational/config/init.php index 8baa61fd..b5f02c89 100644 --- a/examples/relational/config/init.php +++ b/examples/relational/config/init.php @@ -181,6 +181,7 @@ Capsule::schema()->create('oauth_auth_codes', function ($table) { $table->string('auth_code')->primary(); $table->integer('session_id'); $table->integer('expire_time'); + $table->string('client_redirect_uri'); $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); }); From 29b09227ac54c1c5b672e02e36ba2c919c716b7a Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:12:03 +0100 Subject: [PATCH 164/270] Implemented more methods --- .../relational/Storage/AccessTokenStorage.php | 7 +++- .../relational/Storage/AuthCodeStorage.php | 35 +++++++++++++++---- .../relational/Storage/SessionStorage.php | 32 +++++++++++++---- 3 files changed, 59 insertions(+), 15 deletions(-) diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index 96481de5..e5b6d47c 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -73,7 +73,12 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface */ public function create($token, $expireTime, $sessionId) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_access_tokens') + ->insert([ + 'access_token' => $token, + 'session_id' => $sessionId, + 'expire_time' => $expireTime + ]); } /** diff --git a/examples/relational/Storage/AuthCodeStorage.php b/examples/relational/Storage/AuthCodeStorage.php index 77126240..5a840237 100644 --- a/examples/relational/Storage/AuthCodeStorage.php +++ b/examples/relational/Storage/AuthCodeStorage.php @@ -24,13 +24,14 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface if (count($result) === 1) { $token = new AuthCodeEntity($this->server); $token->setId($result[0]['auth_code']); + $token->setRedirectUri($result[0]['client_redirect_uri']); return $token; } return null; } - public function create($token, $$expireTime, $sessionId) + public function create($token, $expireTime, $sessionId, $redirectUri) { Capsule::table('oauth_auth_codes') ->insert([ @@ -46,7 +47,25 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface */ public function getScopes(AuthCodeEntity $token) { - die(var_dump(__METHOD__, func_get_args())); + $result = Capsule::table('oauth_auth_code_scopes') + ->select(['oauth_scopes.id', 'oauth_scopes.description']) + ->join('oauth_scopes', 'oauth_auth_code_scopes.scope', '=', 'oauth_scopes.id') + ->where('auth_code', $token->getId()) + ->get(); + + $response = []; + + if (count($result) > 0) { + foreach ($result as $row) { + $scope = (new ScopeEntity($this->server))->hydrate([ + 'id' => $row['id'], + 'description' => $row['description'] + ]); + $response[] = $scope; + } + } + + return $response; } /** @@ -55,10 +74,10 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface public function associateScope(AuthCodeEntity $token, ScopeEntity $scope) { Capsule::table('oauth_auth_code_scopes') - ->insert([ - 'auth_code' => $token->getToken(), - 'scope' => $scope->getId() - ]); + ->insert([ + 'auth_code' => $token->getId(), + 'scope' => $scope->getId() + ]); } /** @@ -66,6 +85,8 @@ class AuthCodeStorage extends Adapter implements AuthCodeInterface */ public function delete(AuthCodeEntity $token) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_auth_codes') + ->where('auth_code', $token->getId()) + ->delete(); } } diff --git a/examples/relational/Storage/SessionStorage.php b/examples/relational/Storage/SessionStorage.php index faf0162b..62e3ba3b 100644 --- a/examples/relational/Storage/SessionStorage.php +++ b/examples/relational/Storage/SessionStorage.php @@ -29,11 +29,10 @@ class SessionStorage extends Adapter implements SessionInterface $result = Capsule::table('oauth_sessions') ->select(['oauth_sessions.id', 'oauth_sessions.owner_type', 'oauth_sessions.owner_id', 'oauth_sessions.client_id', 'oauth_sessions.client_redirect_uri']) ->join('oauth_access_tokens', 'oauth_access_tokens.session_id', '=', 'oauth_sessions.id') - ->where('oauth_access_tokens.access_token', $accessToken->getToken()) + ->where('oauth_access_tokens.access_token', $accessToken->getId()) ->get(); if (count($result) === 1) { - // die(var_dump($result)); $session = new SessionEntity($this->server); $session->setId($result[0]['id']); $session->setOwner($result[0]['owner_type'], $result[0]['owner_id']); @@ -49,7 +48,21 @@ class SessionStorage extends Adapter implements SessionInterface */ public function getByAuthCode(AuthCodeEntity $authCode) { - die(var_dump(__METHOD__, func_get_args())); + $result = Capsule::table('oauth_sessions') + ->select(['oauth_sessions.id', 'oauth_sessions.owner_type', 'oauth_sessions.owner_id', 'oauth_sessions.client_id', 'oauth_sessions.client_redirect_uri']) + ->join('oauth_auth_codes', 'oauth_auth_codes.session_id', '=', 'oauth_sessions.id') + ->where('oauth_auth_codes.auth_code', $authCode->getId()) + ->get(); + + if (count($result) === 1) { + $session = new SessionEntity($this->server); + $session->setId($result[0]['id']); + $session->setOwner($result[0]['owner_type'], $result[0]['owner_id']); + + return $session; + } + + return null; } /** @@ -67,9 +80,10 @@ class SessionStorage extends Adapter implements SessionInterface $scopes = []; foreach ($result as $scope) { - $scopes[] = (new ScopeEntity($this->server)) - ->setId($scope['id']) - ->setDescription($scope['description']); + $scopes[] = (new ScopeEntity($this->server))->hydrate([ + 'id' => $scope['id'], + 'description' => $scope['description'] + ]); } return $scopes; @@ -95,6 +109,10 @@ class SessionStorage extends Adapter implements SessionInterface */ public function associateScope(SessionEntity $session, ScopeEntity $scope) { - die(var_dump(__CLASS__.'::'.__METHOD__, func_get_args())); + Capsule::table('oauth_session_scopes') + ->insert([ + 'session_id' => $session->getId(), + 'scope' => $scope->getId() + ]); } } From cfd1c93a461568b0deeb506107e177398bc106b8 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:14:35 +0100 Subject: [PATCH 165/270] Updated response code --- examples/relational/auth.php | 43 +++++++++++++++++++++++------------- 1 file changed, 28 insertions(+), 15 deletions(-) diff --git a/examples/relational/auth.php b/examples/relational/auth.php index 15fb3592..2faca4b2 100644 --- a/examples/relational/auth.php +++ b/examples/relational/auth.php @@ -39,14 +39,20 @@ $router->get('/authorize', function (Request $request) use ($server) { // First ensure the parameters in the query string are correct try { - $authParams = $server->getGrantType('authorization_code')->checkAuthorizeParams(); - } catch (\Exception $e) { - echo json_encode([ - 'error' => $e->errorType, - 'message' => $e->getMessage() - ]); - exit; + $authParams = $server->getGrantType('authorization_code')->checkAuthorizeParams(); + + } catch (\Exception $e) { + + return new Response( + json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), + $e->httpStatusCode, + $e->getHttpHeaders() + ); + } // Normally at this point you would show the user a sign-in screen and ask them to authorize the requested scopes @@ -72,14 +78,23 @@ $router->get('/authorize', function (Request $request) use ($server) { $router->post('/access_token', function (Request $request) use ($server) { try { - $response = $server->getGrantType('authorization_code')->completeFlow(); - } catch (\Exception $e) { - echo json_encode([ - 'error' => $e->errorType, - 'message' => $e->getMessage() + + $response = $server->issueAccessToken(); + return new Response(json_encode($response), 200, [ + 'Location' => $redirectUri ]); - exit; + } catch (\Exception $e) { + + return new Response( + json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), + $e->httpStatusCode, + $e->getHttpHeaders() + ); + } }); @@ -87,5 +102,3 @@ $router->post('/access_token', function (Request $request) use ($server) { $dispatcher = $router->getDispatcher(); $response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); $response->send(); - -// var_dump(Capsule::getQueryLog()); From 0d6c4f65b93f9b5b2b4427bd33d3ec378e084146 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:14:50 +0100 Subject: [PATCH 166/270] Store the redirect URI too --- src/Entity/AuthCodeEntity.php | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index 0a5809d3..a116af75 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -96,7 +96,8 @@ class AuthCodeEntity extends AbstractTokenEntity $this->server->getStorage('auth_code')->create( $this->getId(), $this->getExpireTime(), - $this->getSession()->getId() + $this->getSession()->getId(), + $this->getRedirectUri() ); // Associate the scope with the token From 54e6bbd4a6140325f05bda692eeefb1740c0daab Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:15:55 +0100 Subject: [PATCH 167/270] `expires` isn't part of the spec --- src/Grant/AuthCodeGrant.php | 1 - src/Grant/ClientCredentialsGrant.php | 1 - src/Grant/PasswordGrant.php | 1 - src/Grant/RefreshTokenGrant.php | 1 - src/TokenType/Bearer.php | 1 - tests/unit/Grant/PasswordGrantTest.php | 2 -- tests/unit/Grant/RefreshTokenGrantTest.php | 4 +--- 7 files changed, 1 insertion(+), 10 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 5a9820d6..f1357160 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -218,7 +218,6 @@ class AuthCodeGrant extends AbstractGrant } $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 75c50566..76987609 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -102,7 +102,6 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->save($this->server->getStorage('access_token')); $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); return $this->server->getTokenType()->generateResponse(); diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 3af3143e..8c21a848 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -137,7 +137,6 @@ class PasswordGrant extends AbstractGrant } $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires', $accessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Associate a refresh token if set diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 25b01743..61799403 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -132,7 +132,6 @@ class RefreshTokenGrant extends AbstractGrant $newAccessToken->save($this->server->getStorage('access_token')); $this->server->getTokenType()->set('access_token', $newAccessToken->getId()); - $this->server->getTokenType()->set('expires', $newAccessToken->getExpireTime()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); // Expire the old refresh token diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php index 3cdfc81f..e6e92a29 100644 --- a/src/TokenType/Bearer.php +++ b/src/TokenType/Bearer.php @@ -23,7 +23,6 @@ class Bearer extends AbstractTokenType implements TokenTypeInterface $return = [ 'access_token' => $this->get('access_token'), 'token_type' => 'Bearer', - 'expires' => $this->get('expires'), 'expires_in' => $this->get('expires_in') ]; diff --git a/tests/unit/Grant/PasswordGrantTest.php b/tests/unit/Grant/PasswordGrantTest.php index e55f013e..c3648d10 100644 --- a/tests/unit/Grant/PasswordGrantTest.php +++ b/tests/unit/Grant/PasswordGrantTest.php @@ -402,7 +402,6 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $this->assertTrue(array_key_exists('access_token', $response)); $this->assertTrue(array_key_exists('token_type', $response)); $this->assertTrue(array_key_exists('expires_in', $response)); - $this->assertTrue(array_key_exists('expires', $response)); } public function testCompleteFlowRefreshToken() @@ -470,6 +469,5 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase // $this->assertTrue(array_key_exists('refresh_token', $response)); $this->assertTrue(array_key_exists('token_type', $response)); $this->assertTrue(array_key_exists('expires_in', $response)); - $this->assertTrue(array_key_exists('expires', $response)); } } diff --git a/tests/unit/Grant/RefreshTokenGrantTest.php b/tests/unit/Grant/RefreshTokenGrantTest.php index 39dc0e2e..e3330d6d 100644 --- a/tests/unit/Grant/RefreshTokenGrantTest.php +++ b/tests/unit/Grant/RefreshTokenGrantTest.php @@ -11,7 +11,7 @@ use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; -class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase +class RefreshTokenGrantTest extends \PHPUnit_Framework_TestCase { public function testSetRefreshTokenTTL() { @@ -212,7 +212,6 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $this->assertTrue(array_key_exists('refresh_token', $response)); $this->assertTrue(array_key_exists('token_type', $response)); $this->assertTrue(array_key_exists('expires_in', $response)); - $this->assertTrue(array_key_exists('expires', $response)); } public function testCompleteFlowRequestScopes() @@ -284,7 +283,6 @@ class RefreshTokenGreantTest extends \PHPUnit_Framework_TestCase $this->assertTrue(isset($response['refresh_token'])); $this->assertTrue(isset($response['token_type'])); $this->assertTrue(isset($response['expires_in'])); - $this->assertTrue(isset($response['expires'])); } public function testCompleteFlowRequestScopesInvalid() From f3fc921212241295929492e87abed956d406427e Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:16:46 +0100 Subject: [PATCH 168/270] Added redirect URI property --- src/Storage/AuthCodeInterface.php | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index f8a358f9..fab3ee2f 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -28,13 +28,14 @@ interface AuthCodeInterface /** * Create an auth code. - * @param string $token The token ID - * @param integer $expireTime Token expire time - * @param integer $sessionId Session identifier + * @param string $token The token ID + * @param integer $expireTime Token expire time + * @param integer $sessionId Session identifier + * @param string $redirectUri Client redirect uri * * @return void */ - public function create($token, $expireTime, $sessionId); + public function create($token, $expireTime, $sessionId, $redirectUri); /** * Get the scopes for an access token From 861da5fee9640afc28917bdfbf1d1c1f882b9037 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:17:47 +0100 Subject: [PATCH 169/270] Updated .gitignore --- .gitignore | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index a182edbf..a0cd1e4d 100644 --- a/.gitignore +++ b/.gitignore @@ -7,5 +7,5 @@ /examples/nosql/vendor /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock -/tests/functional/tests/_log +/tests/codecept/tests/_log tests/_output/* \ No newline at end of file From 443d72ee24b27e50d6f50a009d843915320d4738 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 17:18:00 +0100 Subject: [PATCH 170/270] Ignore .paw file --- .gitignore | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index a0cd1e4d..9ab5b91a 100644 --- a/.gitignore +++ b/.gitignore @@ -8,4 +8,5 @@ /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock /tests/codecept/tests/_log -tests/_output/* \ No newline at end of file +tests/_output/* +oauth2-server.paw \ No newline at end of file From 5ec1bf8a884fbe767013cc83bf479ead4383310b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 22:50:41 +0100 Subject: [PATCH 171/270] Renamed auth.php to authcode_grant.php --- examples/relational/{auth.php => authcode_grant.php} | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) rename examples/relational/{auth.php => authcode_grant.php} (94%) diff --git a/examples/relational/auth.php b/examples/relational/authcode_grant.php similarity index 94% rename from examples/relational/auth.php rename to examples/relational/authcode_grant.php index 2faca4b2..960147f2 100644 --- a/examples/relational/auth.php +++ b/examples/relational/authcode_grant.php @@ -33,7 +33,6 @@ $server->addGrantType($authCodeGrant); $request = (new Request)->createFromGlobals(); $server->setRequest($request); -// GET /authorize $router->get('/authorize', function (Request $request) use ($server) { // First ensure the parameters in the query string are correct @@ -74,15 +73,12 @@ $router->get('/authorize', function (Request $request) use ($server) { return $response; }); -// /access_token $router->post('/access_token', function (Request $request) use ($server) { try { $response = $server->issueAccessToken(); - return new Response(json_encode($response), 200, [ - 'Location' => $redirectUri - ]); + return new Response(json_encode($response), 200); } catch (\Exception $e) { From 7f75246619096d970d0d5194f18ae09dd34b0317 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sun, 27 Jul 2014 22:51:00 +0100 Subject: [PATCH 172/270] Added auth functional tests --- examples/relational/other_grants.php | 64 + tests/_support/AuthHelper.php | 22 + tests/auth.suite.yml | 8 + tests/auth/AuthCodeCept.php | 24 + tests/auth/AuthTester.php | 2162 +++++++++++++++++ tests/auth/ClientCredentialsCept.php | 14 + .../auth/PasswordGrantMissingPasswordCept.php | 11 + .../auth/PasswordGrantMissingUsernameCept.php | 15 + tests/auth/_bootstrap.php | 2 + 9 files changed, 2322 insertions(+) create mode 100644 examples/relational/other_grants.php create mode 100644 tests/_support/AuthHelper.php create mode 100644 tests/auth.suite.yml create mode 100644 tests/auth/AuthCodeCept.php create mode 100644 tests/auth/AuthTester.php create mode 100644 tests/auth/ClientCredentialsCept.php create mode 100644 tests/auth/PasswordGrantMissingPasswordCept.php create mode 100644 tests/auth/PasswordGrantMissingUsernameCept.php create mode 100644 tests/auth/_bootstrap.php diff --git a/examples/relational/other_grants.php b/examples/relational/other_grants.php new file mode 100644 index 00000000..6b399ebd --- /dev/null +++ b/examples/relational/other_grants.php @@ -0,0 +1,64 @@ +setSessionStorage(new Storage\SessionStorage); +$server->setAccessTokenStorage(new Storage\AccessTokenStorage); +$server->setRefreshTokenStorage(new Storage\RefreshTokenStorage); +$server->setClientStorage(new Storage\ClientStorage); +$server->setScopeStorage(new Storage\ScopeStorage); +$server->setAuthCodeStorage(new Storage\AuthCodeStorage); + +$clientCredentials = new \League\OAuth2\Server\Grant\ClientCredentialsGrant(); +$server->addGrantType($clientCredentials); +$passwordGrant = new \League\OAuth2\Server\Grant\PasswordGrant(); +$server->addGrantType($passwordGrant); +$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); +$server->addGrantType($refrehTokenGrant); + +$request = (new Request)->createFromGlobals(); +$server->setRequest($request); + +$router->post('/access_token', function (Request $request) use ($server) { + + try { + + $response = $server->issueAccessToken(); + return new Response(json_encode($response), 200); + + } catch (\Exception $e) { + + return new Response( + json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), + $e->httpStatusCode, + $e->getHttpHeaders() + ); + + } + +}); + +$dispatcher = $router->getDispatcher(); +$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); +$response->send(); diff --git a/tests/_support/AuthHelper.php b/tests/_support/AuthHelper.php new file mode 100644 index 00000000..f682841b --- /dev/null +++ b/tests/_support/AuthHelper.php @@ -0,0 +1,22 @@ +getModule('REST')->grabResponse(); + $array = json_decode($json); + $this->assertTrue(array_key_exists($key, $array)); + } + + function seeJsonKeyDoesNotExists($key) + { + $json = $this->getModule('REST')->grabResponse(); + $array = json_decode($json); + $this->assertFalse(array_key_exists($key, $array)); + } +} \ No newline at end of file diff --git a/tests/auth.suite.yml b/tests/auth.suite.yml new file mode 100644 index 00000000..6e8760cc --- /dev/null +++ b/tests/auth.suite.yml @@ -0,0 +1,8 @@ +class_name: AuthTester +modules: + enabled: [PhpBrowser, REST, AuthHelper] + config: + PhpBrowser: + url: http://localhost:8000/ + REST: + url: http://localhost:8000/ \ No newline at end of file diff --git a/tests/auth/AuthCodeCept.php b/tests/auth/AuthCodeCept.php new file mode 100644 index 00000000..fe9136b8 --- /dev/null +++ b/tests/auth/AuthCodeCept.php @@ -0,0 +1,24 @@ +wantTo('get an access token with an authorization code'); +$I->sendGET('authcode_grant.php/authorize?client_id=testclient&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect&response_type=code&scope=basic'); +$I->seeResponseCodeIs(200); +$I->seeHttpHeader('Location'); + +$location = $I->grabHttpHeader('Location'); +$urlParts = parse_url($location); +parse_str($urlParts['query'], $queryString); + +$I->sendPOST('authcode_grant.php/access_token', [ + 'client_id' => 'testclient', + 'redirect_uri' => 'http://example.com/redirect', + 'client_secret' => 'secret', + 'code' => $queryString['code'], + 'grant_type' => 'authorization_code' +]); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeJsonKeyExists('expires_in'); +$I->seeJsonKeyExists('access_token'); +$I->seeResponseContainsJson(['token_type' => 'Bearer']); +$I->seeJsonKeyDoesNotExists('foobar'); \ No newline at end of file diff --git a/tests/auth/AuthTester.php b/tests/auth/AuthTester.php new file mode 100644 index 00000000..e2fb6a57 --- /dev/null +++ b/tests/auth/AuthTester.php @@ -0,0 +1,2162 @@ +scenario->runStep(new \Codeception\Step\Action('setHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets 'url' configuration parameter to hosts subdomain. + * It does not open a page on subdomain. Use `amOnPage` for that + * + * ``` php + * amOnSubdomain('user'); + * $I->amOnPage('/'); + * // moves to http://user.mysite.com/ + * ?> + * ``` + * + * @param $subdomain + * + * @return mixed + * @see \Codeception\Module\PhpBrowser::amOnSubdomain() + */ + public function amOnSubdomain($subdomain) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Low-level API method. + * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly + * + * Example: + * + * ``` php + * executeInGuzzle(function (\GuzzleHttp\Client $client) { + * $client->get('/get', ['query' => ['foo' => 'bar']]); + * }); + * ?> + * ``` + * + * It is not recommended to use this command on a regular basis. + * If Codeception lacks important Guzzle Client methods, implement them and submit patches. + * + * @param callable $function + * @see \Codeception\Module\PhpBrowser::executeInGuzzle() + */ + public function executeInGuzzle($function) { + return $this->scenario->runStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds HTTP authentication via username/password. + * + * @param $username + * @param $password + * @see \Codeception\Module\REST::amHttpAuthenticated() + */ + public function amHttpAuthenticated($username, $password) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opens the page. + * Requires relative uri as parameter + * + * Example: + * + * ``` php + * amOnPage('/'); + * // opens /register page + * $I->amOnPage('/register'); + * ?> + * ``` + * + * @param $page + * @see \Codeception\Lib\InnerBrowser::amOnPage() + */ + public function amOnPage($page) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Perform a click on link or button. + * Link or button are found by their names or CSS selector. + * Submits a form if button is a submit type. + * + * If link is an image it's found by alt attribute value of image. + * If button is image button is found by it's value + * If link or button can't be found by name they are searched by CSS selector. + * + * The second parameter is a context: CSS or XPath locator to narrow the search. + * + * Examples: + * + * ``` php + * click('Logout'); + * // button of form + * $I->click('Submit'); + * // CSS button + * $I->click('#form input[type=submit]'); + * // XPath + * $I->click('//form/*[@type=submit]'); + * // link in context + * $I->click('Logout', '#nav'); + * // using strict locator + * $I->click(['link' => 'Login']); + * ?> + * ``` + * + * @param $link + * @param $context + * @see \Codeception\Lib\InnerBrowser::click() + */ + public function click($link, $context = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('click', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::see() + */ + public function canSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page contains the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ``` php + * see('Logout'); // I can suppose user is logged in + * $I->see('Sign Up','h1'); // I can suppose it's a signup page + * $I->see('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * @see \Codeception\Lib\InnerBrowser::see() + */ + public function see($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('see', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page doesn't contain the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ```php + * dontSee('Login'); // I can suppose user is already logged in + * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page + * $I->dontSee('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSee() + */ + public function cantSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Check if current page doesn't contain the text specified. + * Specify the css selector to match only specific region. + * + * Examples: + * + * ```php + * dontSee('Login'); // I can suppose user is already logged in + * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page + * $I->dontSee('Sign Up','//body/h1'); // with XPath + * ?> + * ``` + * + * @param $text + * @param null $selector + * @see \Codeception\Lib\InnerBrowser::dontSee() + */ + public function dontSee($text, $selector = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeLink() + */ + public function canSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if there is a link with text specified. + * Specify url to match link with exact this url. + * + * Examples: + * + * ``` php + * seeLink('Logout'); // matches Logout + * $I->seeLink('Logout','/logout'); // matches Logout + * ?> + * ``` + * + * @param $text + * @param null $url + * @see \Codeception\Lib\InnerBrowser::seeLink() + */ + public function seeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeLink() + */ + public function cantSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if page doesn't contain the link with text specified. + * Specify url to narrow the results. + * + * Examples: + * + * ``` php + * dontSeeLink('Logout'); // I suppose user is not logged in + * ?> + * ``` + * + * @param $text + * @param null $url + * @see \Codeception\Lib\InnerBrowser::dontSeeLink() + */ + public function dontSeeLink($text, $url = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() + */ + public function canSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri contains a value + * + * ``` php + * seeInCurrentUrl('home'); + * // to match: /users/1 + * $I->seeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() + */ + public function seeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() + */ + public function cantSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current uri does not contain a value + * + * ``` php + * dontSeeInCurrentUrl('/users/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() + */ + public function dontSeeInCurrentUrl($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() + */ + public function canSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is equal to value. + * Unlike `seeInCurrentUrl` performs a strict check. + * + * ``` php + * seeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() + */ + public function seeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() + */ + public function cantSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is not equal to value. + * Unlike `dontSeeInCurrentUrl` performs a strict check. + * + * ``` php + * dontSeeCurrentUrlEquals('/'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() + */ + public function dontSeeCurrentUrlEquals($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() + */ + public function canSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url is matches a RegEx value + * + * ``` php + * seeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() + */ + public function seeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() + */ + public function cantSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that current url does not match a RegEx value + * + * ``` php + * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); + * ?> + * ``` + * + * @param $uri + * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() + */ + public function dontSeeCurrentUrlMatches($uri) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Takes a parameters from current URI by RegEx. + * If no url provided returns full URI. + * + * ``` php + * grabFromCurrentUrl('~$/user/(\d+)/~'); + * $uri = $I->grabFromCurrentUrl(); + * ?> + * ``` + * + * @param null $uri + * + * @internal param $url + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabFromCurrentUrl() + */ + public function grabFromCurrentUrl($uri = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() + */ + public function canSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is checked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. + * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); + * ?> + * ``` + * + * @param $checkbox + * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() + */ + public function seeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() + */ + public function cantSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Assert if the specified checkbox is unchecked. + * Use css selector or xpath to match. + * + * Example: + * + * ``` php + * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms + * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. + * ?> + * ``` + * + * @param $checkbox + * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() + */ + public function dontSeeCheckboxIsChecked($checkbox) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInField() + */ + public function canSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea contains value. + * Field is matched either by label or CSS or Xpath + * + * Example: + * + * ``` php + * seeInField('Body','Type your comment here'); + * $I->seeInField('form textarea[name=body]','Type your comment here'); + * $I->seeInField('form input[type=hidden]','hidden_value'); + * $I->seeInField('#searchform input','Search'); + * $I->seeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::seeInField() + */ + public function seeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInField() + */ + public function cantSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that an input field or textarea doesn't contain value. + * Field is matched either by label or CSS or Xpath + * Example: + * + * ``` php + * dontSeeInField('Body','Type your comment here'); + * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); + * $I->dontSeeInField('form input[type=hidden]','hidden_value'); + * $I->dontSeeInField('#searchform input','Search'); + * $I->dontSeeInField('//form/*[@name=search]','Search'); + * $I->seeInField(['name' => 'search'], 'Search'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::dontSeeInField() + */ + public function dontSeeInField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Submits a form located on page. + * Specify the form by it's css or xpath selector. + * Fill the form fields values as array. + * + * Skipped fields will be filled by their values from page. + * You don't need to click the 'Submit' button afterwards. + * This command itself triggers the request to form's action. + * + * Examples: + * + * ``` php + * submitForm('#login', array('login' => 'davert', 'password' => '123456')); + * + * ``` + * + * For sample Sign Up form: + * + * ``` html + *
+ * Login:
+ * Password:
+ * Do you agree to out terms?
+ * Select pricing plan + * + *
+ * ``` + * I can write this: + * + * ``` php + * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); + * + * ``` + * Note, that pricing plan will be set to Paid, as it's selected on page. + * + * @param $selector + * @param $params + * @see \Codeception\Lib\InnerBrowser::submitForm() + */ + public function submitForm($selector, $params) { + return $this->scenario->runStep(new \Codeception\Step\Action('submitForm', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Fills a text field or textarea with value. + * + * Example: + * + * ``` php + * fillField("//input[@type='text']", "Hello World!"); + * $I->fillField(['name' => 'email'], 'jon@mail.com'); + * ?> + * ``` + * + * @param $field + * @param $value + * @see \Codeception\Lib\InnerBrowser::fillField() + */ + public function fillField($field, $value) { + return $this->scenario->runStep(new \Codeception\Step\Action('fillField', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Selects an option in select tag or in radio button group. + * + * Example: + * + * ``` php + * selectOption('form select[name=account]', 'Premium'); + * $I->selectOption('form input[name=payment]', 'Monthly'); + * $I->selectOption('//form/select[@name=account]', 'Monthly'); + * ?> + * ``` + * + * Can select multiple options if second argument is array: + * + * ``` php + * selectOption('Which OS do you use?', array('Windows','Linux')); + * ?> + * ``` + * + * @param $select + * @param $option + * @see \Codeception\Lib\InnerBrowser::selectOption() + */ + public function selectOption($select, $option) { + return $this->scenario->runStep(new \Codeception\Step\Action('selectOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Ticks a checkbox. + * For radio buttons use `selectOption` method. + * + * Example: + * + * ``` php + * checkOption('#agree'); + * ?> + * ``` + * + * @param $option + * @see \Codeception\Lib\InnerBrowser::checkOption() + */ + public function checkOption($option) { + return $this->scenario->runStep(new \Codeception\Step\Action('checkOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Unticks a checkbox. + * + * Example: + * + * ``` php + * uncheckOption('#notify'); + * ?> + * ``` + * + * @param $option + * @see \Codeception\Lib\InnerBrowser::uncheckOption() + */ + public function uncheckOption($option) { + return $this->scenario->runStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Attaches file from Codeception data directory to upload field. + * + * Example: + * + * ``` php + * attachFile('input[@type="file"]', 'prices.xls'); + * ?> + * ``` + * + * @param $field + * @param $filename + * @see \Codeception\Lib\InnerBrowser::attachFile() + */ + public function attachFile($field, $filename) { + return $this->scenario->runStep(new \Codeception\Step\Action('attachFile', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a GET ajax request with specified params. + * + * See ->sendAjaxPostRequest for examples. + * + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxGetRequest() + */ + public function sendAjaxGetRequest($uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends a POST ajax request with specified params. + * Additional params can be passed as array. + * + * Example: + * + * Imagine that by clicking checkbox you trigger ajax request which updates user settings. + * We emulate that click by running this ajax request manually. + * + * ``` php + * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST + * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET + * + * ``` + * + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxPostRequest() + */ + public function sendAjaxPostRequest($uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * If your page triggers an ajax request, you can perform it manually. + * This action sends an ajax request with specified method and params. + * + * Example: + * + * You need to perform an ajax request specifying the HTTP method. + * + * ``` php + * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); + * + * ``` + * + * @param $method + * @param $uri + * @param $params + * @see \Codeception\Lib\InnerBrowser::sendAjaxRequest() + */ + public function sendAjaxRequest($method, $uri, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Finds and returns text contents of element. + * Element is searched by CSS selector, XPath or matcher by regex. + * + * Example: + * + * ``` php + * grabTextFrom('h1'); + * $heading = $I->grabTextFrom('descendant-or-self::h1'); + * $value = $I->grabTextFrom('~ + * ``` + * + * @param $cssOrXPathOrRegex + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabTextFrom() + */ + public function grabTextFrom($cssOrXPathOrRegex) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Grabs attribute value from an element. + * Fails if element is not found. + * + * ``` php + * grabAttributeFrom('#tooltip', 'title'); + * ?> + * ``` + * + * + * @param $cssOrXpath + * @param $attribute + * @internal param $element + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabAttributeFrom() + */ + public function grabAttributeFrom($cssOrXpath, $attribute) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabAttributeFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * @param $field + * + * @return array|mixed|null|string + * @see \Codeception\Lib\InnerBrowser::grabValueFrom() + */ + public function grabValueFrom($field) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets a cookie. + * + * @param $cookie + * @param $value + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::setCookie() + */ + public function setCookie($name, $val) { + return $this->scenario->runStep(new \Codeception\Step\Action('setCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Grabs a cookie value. + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::grabCookie() + */ + public function grabCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie is set. + * + * @param $cookie + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeCookie() + */ + public function canSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie is set. + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeCookie() + */ + public function seeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie doesn't exist + * + * @param $cookie + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() + */ + public function cantSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that cookie doesn't exist + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() + */ + public function dontSeeCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Unsets cookie + * + * @param $cookie + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::resetCookie() + */ + public function resetCookie($name) { + return $this->scenario->runStep(new \Codeception\Step\Action('resetCookie', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element exists on a page, matching it by CSS or XPath. + * You can also specify expected attributes of this element. + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * $I->seeElement('input', ['name' => 'login']); + * $I->seeElement('input', ['value' => '123456']); + * + * // strict locator in first arg, attributes in second + * $I->seeElement(['css' => 'form input'], ['name' => 'login']); + * ?> + * ``` + * + * @param $selector + * @param array $attributes + * @return + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeElement() + */ + public function canSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element exists on a page, matching it by CSS or XPath. + * You can also specify expected attributes of this element. + * + * ``` php + * seeElement('.error'); + * $I->seeElement('//form/input[1]'); + * $I->seeElement('input', ['name' => 'login']); + * $I->seeElement('input', ['value' => '123456']); + * + * // strict locator in first arg, attributes in second + * $I->seeElement(['css' => 'form input'], ['name' => 'login']); + * ?> + * ``` + * + * @param $selector + * @param array $attributes + * @return + * @see \Codeception\Lib\InnerBrowser::seeElement() + */ + public function seeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * You can also specify expected attributes of this element. + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * $I->dontSeeElement('input', ['name' => 'login']); + * $I->dontSeeElement('input', ['value' => '123456']); + * ?> + * ``` + * + * @param $selector + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeElement() + */ + public function cantSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath + * You can also specify expected attributes of this element. + * + * Example: + * + * ``` php + * dontSeeElement('.error'); + * $I->dontSeeElement('//form/input[1]'); + * $I->dontSeeElement('input', ['name' => 'login']); + * $I->dontSeeElement('input', ['value' => '123456']); + * ?> + * ``` + * + * @param $selector + * @see \Codeception\Lib\InnerBrowser::dontSeeElement() + */ + public function dontSeeElement($selector, $attributes = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() + */ + public function canSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is selected in select field. + * + * ``` php + * seeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() + */ + public function seeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() + */ + public function cantSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if option is not selected in select field. + * + * ``` php + * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); + * ?> + * ``` + * + * @param $selector + * @param $optionText + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() + */ + public function dontSeeOptionIsSelected($select, $optionText) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Asserts that current page has 404 response status code. + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seePageNotFound() + */ + public function canSeePageNotFound() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Asserts that current page has 404 response status code. + * @see \Codeception\Lib\InnerBrowser::seePageNotFound() + */ + public function seePageNotFound() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks response code equals to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseCodeIs() + */ + public function canSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks response code equals to provided value. + * + * @param $code + * @see \Codeception\Module\REST::seeResponseCodeIs() + */ + public function seeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::seeInTitle() + */ + public function canSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title contains text. + * + * ``` php + * seeInTitle('Blog - Post #1'); + * ?> + * ``` + * + * @param $title + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::seeInTitle() + */ + public function seeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title does not contain text. + * + * @param $title + * + * @return mixed + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() + */ + public function cantSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that page title does not contain text. + * + * @param $title + * + * @return mixed + * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() + */ + public function dontSeeInTitle($title) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sets HTTP header + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::haveHttpHeader() + */ + public function haveHttpHeader($name, $value) { + return $this->scenario->runStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeHttpHeader() + */ + public function canSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are there + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::seeHttpHeader() + */ + public function seeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeHttpHeader() + */ + public function cantSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks over the given HTTP header and (optionally) + * its value, asserting that are not there + * + * @param $name + * @param $value + * @see \Codeception\Module\REST::dontSeeHttpHeader() + */ + public function dontSeeHttpHeader($name, $value = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeHttpHeaderOnce() + */ + public function canSeeHttpHeaderOnce($name) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that http response header is received only once. + * HTTP RFC2616 allows multiple response headers with the same name. + * You can check that you didn't accidentally sent the same header twice. + * + * ``` php + * seeHttpHeaderOnce('Cache-Control'); + * ?>> + * ``` + * + * @param $name + * @see \Codeception\Module\REST::seeHttpHeaderOnce() + */ + public function seeHttpHeaderOnce($name) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns the value of the specified header name + * + * @param $name + * @param Boolean $first Whether to return the first value or all header values + * + * @return string|array The first header value if $first is true, an array of values otherwise + * @see \Codeception\Module\REST::grabHttpHeader() + */ + public function grabHttpHeader($name, $first = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds Digest authentication via username/password. + * + * @param $username + * @param $password + * @see \Codeception\Module\REST::amDigestAuthenticated() + */ + public function amDigestAuthenticated($username, $password) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Adds Bearer authentication via access token. + * + * @param $accessToken + * @see \Codeception\Module\REST::amBearerAuthenticated() + */ + public function amBearerAuthenticated($accessToken) { + return $this->scenario->runStep(new \Codeception\Step\Condition('amBearerAuthenticated', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a POST request to given uri. + * + * Parameters and files (as array of filenames) can be provided. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPOST() + */ + public function sendPOST($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPOST', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a HEAD request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendHEAD() + */ + public function sendHEAD($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends an OPTIONS request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendOPTIONS() + */ + public function sendOPTIONS($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends a GET request to given uri. + * + * @param $url + * @param array $params + * @see \Codeception\Module\REST::sendGET() + */ + public function sendGET($url, $params = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendGET', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends PUT request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPUT() + */ + public function sendPUT($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPUT', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends PATCH request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendPATCH() + */ + public function sendPATCH($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends DELETE request to given uri. + * + * @param $url + * @param array $params + * @param array $files + * @see \Codeception\Module\REST::sendDELETE() + */ + public function sendDELETE($url, $params = null, $files = null) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends LINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * + * @author samva.ua@gmail.com + * @see \Codeception\Module\REST::sendLINK() + */ + public function sendLINK($url, $linkEntries) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendLINK', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Sends UNLINK request to given uri. + * + * @param $url + * @param array $linkEntries (entry is array with keys "uri" and "link-param") + * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 + * @author samva.ua@gmail.com + * @see \Codeception\Module\REST::sendUNLINK() + */ + public function sendUNLINK($url, $linkEntries) { + return $this->scenario->runStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseIsJson() + */ + public function canSeeResponseIsJson() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid JSON. + * This is done with json_last_error function. + * + * @see \Codeception\Module\REST::seeResponseIsJson() + */ + public function seeResponseIsJson() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseIsXml() + */ + public function canSeeResponseIsXml() { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response was valid XML. + * This is done with libxml_get_last_error function. + * + * @see \Codeception\Module\REST::seeResponseIsXml() + */ + public function seeResponseIsXml() { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last response contains text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseContains() + */ + public function canSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last response contains text. + * + * @param $text + * @see \Codeception\Module\REST::seeResponseContains() + */ + public function seeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response do not contain text. + * + * @param $text + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseContains() + */ + public function cantSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether last response do not contain text. + * + * @param $text + * @see \Codeception\Module\REST::dontSeeResponseContains() + */ + public function dontSeeResponseContains($text) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseContainsJson() + */ + public function canSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks whether the last JSON response contains provided array. + * The response is converted to array with json_decode($response, true) + * Thus, JSON is represented by associative array. + * This method matches that response array contains provided array. + * + * Examples: + * + * ``` php + * seeResponseContainsJson(array('name' => 'john')); + * + * // response {user: john, profile: { email: john@gmail.com }} + * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); + * + * ?> + * ``` + * + * This method recursively checks if one array can be found inside of another. + * + * @param array $json + * @see \Codeception\Module\REST::seeResponseContainsJson() + */ + public function seeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns current response so that it can be used in next scenario steps. + * + * Example: + * + * ``` php + * grabResponse(); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @version 1.1 + * @return string + * @see \Codeception\Module\REST::grabResponse() + */ + public function grabResponse() { + return $this->scenario->runStep(new \Codeception\Step\Action('grabResponse', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Returns data from the current JSON response using specified path + * so that it can be used in next scenario steps + * + * Example: + * + * ``` php + * grabDataFromJsonResponse('user.user_id'); + * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); + * ?> + * ``` + * + * @param string $path + * + * @since 1.1.2 + * @return string + * + * @author tiger.seo@gmail.com + * @see \Codeception\Module\REST::grabDataFromJsonResponse() + */ + public function grabDataFromJsonResponse($path) { + return $this->scenario->runStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseContainsJson() + */ + public function cantSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Opposite to seeResponseContainsJson + * + * @param array $json + * @see \Codeception\Module\REST::dontSeeResponseContainsJson() + */ + public function dontSeeResponseContainsJson($json = null) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if response is exactly the same as provided. + * + * @param $response + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::seeResponseEquals() + */ + public function canSeeResponseEquals($response) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks if response is exactly the same as provided. + * + * @param $response + * @see \Codeception\Module\REST::seeResponseEquals() + */ + public function seeResponseEquals($response) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that response code is not equal to provided value. + * + * @param $code + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\REST::dontSeeResponseCodeIs() + */ + public function cantSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * Checks that response code is not equal to provided value. + * + * @param $code + * @see \Codeception\Module\REST::dontSeeResponseCodeIs() + */ + public function dontSeeResponseCodeIs($code) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\AuthHelper::seeJsonKeyExists() + */ + public function canSeeJsonKeyExists($key) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeJsonKeyExists', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * + * @see \Codeception\Module\AuthHelper::seeJsonKeyExists() + */ + public function seeJsonKeyExists($key) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeJsonKeyExists', func_get_args())); + } + + + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * + * Conditional Assertion: Test won't be stopped on fail + * @see \Codeception\Module\AuthHelper::seeJsonKeyDoesNotExists() + */ + public function canSeeJsonKeyDoesNotExists($key) { + return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeJsonKeyDoesNotExists', func_get_args())); + } + /** + * [!] Method is generated. Documentation taken from corresponding module. + * + * + * @see \Codeception\Module\AuthHelper::seeJsonKeyDoesNotExists() + */ + public function seeJsonKeyDoesNotExists($key) { + return $this->scenario->runStep(new \Codeception\Step\Assertion('seeJsonKeyDoesNotExists', func_get_args())); + } +} diff --git a/tests/auth/ClientCredentialsCept.php b/tests/auth/ClientCredentialsCept.php new file mode 100644 index 00000000..97eac87b --- /dev/null +++ b/tests/auth/ClientCredentialsCept.php @@ -0,0 +1,14 @@ +wantTo('get an access token with client credentials'); +$I->sendPOST('other_grants.php/access_token', [ + 'client_id' => 'testclient', + 'client_secret' => 'secret', + 'grant_type' => 'client_credentials' +]); +$I->seeResponseCodeIs(200); +$I->seeResponseIsJson(); +$I->seeJsonKeyExists('expires_in'); +$I->seeJsonKeyExists('access_token'); +$I->seeResponseContainsJson(['token_type' => 'Bearer']); +$I->seeJsonKeyDoesNotExists('foobar'); \ No newline at end of file diff --git a/tests/auth/PasswordGrantMissingPasswordCept.php b/tests/auth/PasswordGrantMissingPasswordCept.php new file mode 100644 index 00000000..7d381500 --- /dev/null +++ b/tests/auth/PasswordGrantMissingPasswordCept.php @@ -0,0 +1,11 @@ +wantTo('get an access token with resource owner credentials'); +$I->sendPOST('other_grants.php/access_token', [ + 'client_id' => 'testclient', + 'client_secret' => 'secret', + 'grant_type' => 'password', + 'username' => 'alexbilbie' +]); +$I->seeResponseCodeIs(400); +$I->seeResponseIsJson(); \ No newline at end of file diff --git a/tests/auth/PasswordGrantMissingUsernameCept.php b/tests/auth/PasswordGrantMissingUsernameCept.php new file mode 100644 index 00000000..0db058e9 --- /dev/null +++ b/tests/auth/PasswordGrantMissingUsernameCept.php @@ -0,0 +1,15 @@ +wantTo('get an access token with resource owner credentials'); +$I->sendPOST('other_grants.php/access_token', [ + 'client_id' => 'testclient', + 'client_secret' => 'secret', + 'grant_type' => 'password' +]); +$I->seeResponseCodeIs(400); +$I->seeResponseIsJson(); +$I->seeResponseContainsJson([ + 'error' => 'invalid_request', + 'message' => 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter + more than once, or is otherwise malformed. Check the "username" parameter.' +]); \ No newline at end of file diff --git a/tests/auth/_bootstrap.php b/tests/auth/_bootstrap.php new file mode 100644 index 00000000..8a885558 --- /dev/null +++ b/tests/auth/_bootstrap.php @@ -0,0 +1,2 @@ + Date: Mon, 28 Jul 2014 13:56:00 +0100 Subject: [PATCH 173/270] Renamed auth to authServer --- tests/{auth => authServer}/AuthCodeCept.php | 0 tests/{auth => authServer}/AuthTester.php | 0 tests/{auth => authServer}/ClientCredentialsCept.php | 0 tests/{auth => authServer}/PasswordGrantMissingPasswordCept.php | 0 tests/{auth => authServer}/PasswordGrantMissingUsernameCept.php | 0 tests/{auth => authServer}/_bootstrap.php | 0 6 files changed, 0 insertions(+), 0 deletions(-) rename tests/{auth => authServer}/AuthCodeCept.php (100%) rename tests/{auth => authServer}/AuthTester.php (100%) rename tests/{auth => authServer}/ClientCredentialsCept.php (100%) rename tests/{auth => authServer}/PasswordGrantMissingPasswordCept.php (100%) rename tests/{auth => authServer}/PasswordGrantMissingUsernameCept.php (100%) rename tests/{auth => authServer}/_bootstrap.php (100%) diff --git a/tests/auth/AuthCodeCept.php b/tests/authServer/AuthCodeCept.php similarity index 100% rename from tests/auth/AuthCodeCept.php rename to tests/authServer/AuthCodeCept.php diff --git a/tests/auth/AuthTester.php b/tests/authServer/AuthTester.php similarity index 100% rename from tests/auth/AuthTester.php rename to tests/authServer/AuthTester.php diff --git a/tests/auth/ClientCredentialsCept.php b/tests/authServer/ClientCredentialsCept.php similarity index 100% rename from tests/auth/ClientCredentialsCept.php rename to tests/authServer/ClientCredentialsCept.php diff --git a/tests/auth/PasswordGrantMissingPasswordCept.php b/tests/authServer/PasswordGrantMissingPasswordCept.php similarity index 100% rename from tests/auth/PasswordGrantMissingPasswordCept.php rename to tests/authServer/PasswordGrantMissingPasswordCept.php diff --git a/tests/auth/PasswordGrantMissingUsernameCept.php b/tests/authServer/PasswordGrantMissingUsernameCept.php similarity index 100% rename from tests/auth/PasswordGrantMissingUsernameCept.php rename to tests/authServer/PasswordGrantMissingUsernameCept.php diff --git a/tests/auth/_bootstrap.php b/tests/authServer/_bootstrap.php similarity index 100% rename from tests/auth/_bootstrap.php rename to tests/authServer/_bootstrap.php From c29340ae27c0fc7579719b064387396c307b6edd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 09:11:19 +0100 Subject: [PATCH 174/270] Added FizzFuzz requirement --- composer.json | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 5d40377e..176fcc74 100644 --- a/composer.json +++ b/composer.json @@ -13,12 +13,16 @@ "mockery/mockery": "~0.9", "league/phpunit-coverage-listener": "~1.0", "squizlabs/php_codesniffer": "1.*", - "codeception/codeception": "2.0.*" + "codeception/codeception": "2.0.*", + "alexbilbie/fizzfuzz": "dev-develop" }, "repositories": [ { "type": "git", "url": "https://github.com/thephpleague/oauth2-server.git" + },{ + "type": "git", + "url": "https://github.com/alexbilbie/fizzfuzz.git" } ], "keywords": [ From 7b9899c46b0c339c95c559da4af422d6d45c60b6 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 09:11:44 +0100 Subject: [PATCH 175/270] Removed line break in error messages --- src/Exception/InvalidGrantException.php | 3 +-- src/Exception/InvalidRequestException.php | 3 +-- src/Exception/ServerErrorException.php | 3 +-- 3 files changed, 3 insertions(+), 6 deletions(-) diff --git a/src/Exception/InvalidGrantException.php b/src/Exception/InvalidGrantException.php index 3b9f5d79..051330e9 100644 --- a/src/Exception/InvalidGrantException.php +++ b/src/Exception/InvalidGrantException.php @@ -34,8 +34,7 @@ class InvalidGrantException extends OAuthException { parent::__construct( sprintf( - 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used - in the authorization request, or was issued to another client. Check the "%s" parameter.', + 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. Check the "%s" parameter.', $parameter ) ); diff --git a/src/Exception/InvalidRequestException.php b/src/Exception/InvalidRequestException.php index d47d6fb4..56dd75df 100644 --- a/src/Exception/InvalidRequestException.php +++ b/src/Exception/InvalidRequestException.php @@ -34,8 +34,7 @@ class InvalidRequestException extends OAuthException { parent::__construct( sprintf( - 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter - more than once, or is otherwise malformed. Check the "%s" parameter.', + 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', $parameter ) ); diff --git a/src/Exception/ServerErrorException.php b/src/Exception/ServerErrorException.php index bdcec4dc..fe5a7df1 100644 --- a/src/Exception/ServerErrorException.php +++ b/src/Exception/ServerErrorException.php @@ -31,8 +31,7 @@ class ServerErrorException extends OAuthException */ public function __construct($parameter = null) { - $parameter = is_null($parameter) ? 'The authorization server encountered an unexpected condition which prevented - it from fulfilling the request.' : $parameter; + $parameter = is_null($parameter) ? 'The authorization server encountered an unexpected condition which prevented it from fulfilling the request.' : $parameter; parent::__construct($parameter); } } From ffe59f5a5fcb3c40e60780d12218abc61f7e7869 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 09:12:00 +0100 Subject: [PATCH 176/270] Added Fuzz tests --- tests/fuzz/tokeninfo-no-access-token.yml | 14 +++++++++++ ...okeninfo-no-invalid-token-query-string.yml | 14 +++++++++++ tests/fuzz/tokeninfo-no-invalid-token.yml | 18 ++++++++++++++ tests/fuzz/tokeninfo-valid-token.yml | 24 +++++++++++++++++++ 4 files changed, 70 insertions(+) create mode 100644 tests/fuzz/tokeninfo-no-access-token.yml create mode 100644 tests/fuzz/tokeninfo-no-invalid-token-query-string.yml create mode 100644 tests/fuzz/tokeninfo-no-invalid-token.yml create mode 100644 tests/fuzz/tokeninfo-valid-token.yml diff --git a/tests/fuzz/tokeninfo-no-access-token.yml b/tests/fuzz/tokeninfo-no-access-token.yml new file mode 100644 index 00000000..15fbc8fa --- /dev/null +++ b/tests/fuzz/tokeninfo-no-access-token.yml @@ -0,0 +1,14 @@ +url: 'http://localhost:8000/api.php/tokeninfo' +request: + method: GET +response: + statusCode: 400 + headers: + Content-type: application/json + body: + - + key: error + value: "invalid_request" + - + key: message + value: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"access token\" parameter." \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml b/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml new file mode 100644 index 00000000..4d60340b --- /dev/null +++ b/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml @@ -0,0 +1,14 @@ +url: 'http://localhost:8000/api.php/tokeninfo?access_token=foobar' +request: + method: GET +response: + statusCode: 400 + headers: + Content-type: application/json + body: + - + key: error + value: "invalid_request" + - + key: message + value: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"access token\" parameter." \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-no-invalid-token.yml b/tests/fuzz/tokeninfo-no-invalid-token.yml new file mode 100644 index 00000000..30ee8887 --- /dev/null +++ b/tests/fuzz/tokeninfo-no-invalid-token.yml @@ -0,0 +1,18 @@ +url: 'http://localhost:8000/api.php/tokeninfo' +request: + method: GET + headers: + - + key: Authorization + value: Bearer foobar +response: + statusCode: 401 + headers: + Content-type: application/json + body: + - + key: error + value: "access_denied" + - + key: message + value: "The resource owner or authorization server denied the request." \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-valid-token.yml b/tests/fuzz/tokeninfo-valid-token.yml new file mode 100644 index 00000000..d7ec6b3a --- /dev/null +++ b/tests/fuzz/tokeninfo-valid-token.yml @@ -0,0 +1,24 @@ +url: 'http://localhost:8000/api.php/tokeninfo' +request: + method: GET + headers: + - + key: Authorization + value: "Bearer iamgod" +response: + statusCode: 200 + headers: + Content-type: application/json + body: + - + key: owner_id + value: testclient + - + key: owner_type + value: client + - + key: access_token + value: iamgod + - + key: client_id + value: testclient \ No newline at end of file From ac3e7872783e5ed5a3cf3fea8740702bb8cb04a1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 09:12:43 +0100 Subject: [PATCH 177/270] Updated api.php code --- examples/relational/api.php | 123 ++++++++++++++---------------------- 1 file changed, 46 insertions(+), 77 deletions(-) diff --git a/examples/relational/api.php b/examples/relational/api.php index 69463f4e..9c1d4a79 100644 --- a/examples/relational/api.php +++ b/examples/relational/api.php @@ -1,7 +1,4 @@ setRequest($request); +// Routing setup +$request = (new Request)->createFromGlobals(); +$router = new \Orno\Route\RouteCollection; -// Check that access token is present -try { - $server->isValidRequest(false); -} catch (\League\OAuth2\Server\Exception\OAuthException $e) { - - foreach ($e->getHttpHeaders() as $header) { - header($header); - } - - echo json_encode([ - 'error' => $e->errorType, - 'message' => $e->getMessage() - ]); - - exit; -} - -// GET /tokeninfo $router->get('/tokeninfo', function (Request $request) use ($server) { $token = [ @@ -62,62 +43,50 @@ $router->get('/tokeninfo', function (Request $request) use ($server) { 'scopes' => $server->getScopes() ]; - return new JsonResponse($token); + return new Response(json_encode($token)); }); -// GET /users -$router->get('/users', function (Request $request) use ($server) { - - $results = (new Model\Users())->get(); - - $users = []; - - foreach ($results as $result) { - $user = [ - 'username' => $result['username'], - 'name' => $result['name'] - ]; - - if ($server->hasScope('email')) { - $user['email'] = $result['email']; - } - - if ($server->hasScope('photo')) { - $user['photo'] = $result['photo']; - } - - $users[] = $user; - } - - return new JsonResponse($users); -}); - -// GET /users/{username} -$router->get('/users/{username}', function (Request $request, $args) use ($server) { - - $result = (new Model\Users())->get($args['username']); - - if (count($result) === 0) { - throw new NotFoundException(); - } - - $user = [ - 'username' => $result[0]['username'], - 'name' => $result[0]['name'] - ]; - - if ($server->hasScope('email')) { - $user['email'] = $result[0]['email']; - } - - if ($server->hasScope('photo')) { - $user['photo'] = $result[0]['photo']; - } - - return new JsonResponse($user); -}); - $dispatcher = $router->getDispatcher(); -$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); -$response->send(); + +try { + + // Check that access token is present + $server->isValidRequest(); + + // A successful response + $response = $dispatcher->dispatch( + $request->getMethod(), + $request->getPathInfo() + ); + +} catch (\Orno\Http\Exception $e) { + + // A failed response + $response = $e->getJsonResponse(); + $response->setContent(json_encode(['status_code' => $e->getStatusCode(), 'message' => $e->getMessage()])); + +} catch (\League\OAuth2\Server\Exception\OAuthException $e) { + + $response = new Response(json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), $e->httpStatusCode); + + foreach ($e->getHttpHeaders() as $header) { + $response->headers($header); + } + +} catch (\Exception $e) { + + $response = new Orno\Http\Response; + $response->setStatusCode(500); + $response->setContent(json_encode(['status_code' => 500, 'message' => $e->getMessage()])); + +} finally { + + // Return the response + $response->headers->set('Content-type', 'application/json'); + $response->send(); + +} \ No newline at end of file From 806838b8e46cb8c1ce387dc52e0ccb1972737b04 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:18:44 +0100 Subject: [PATCH 178/270] So long codeception, you suck --- tests/_bootstrap.php | 2 - tests/_support/AuthHelper.php | 22 - tests/_support/AuthServerHelper.php | 10 - tests/_support/ResourceServerHelper.php | 10 - tests/auth.suite.yml | 8 - tests/authServer/AuthCodeCept.php | 24 - tests/authServer/AuthTester.php | 2162 ----------------- tests/authServer/ClientCredentialsCept.php | 14 - .../PasswordGrantMissingPasswordCept.php | 11 - .../PasswordGrantMissingUsernameCept.php | 15 - tests/authServer/_bootstrap.php | 2 - tests/resourceServer.suite.yml | 8 - .../resourceServer/GetUsersAllFieldsCept.php | 20 - .../GetUsersBasicEmailFieldsCept.php | 18 - .../GetUsersBasicPhotoFieldsCept.php | 18 - .../GetUsersInvalidTokenCept.php | 6 - tests/resourceServer/GetUsersNoTokenCept.php | 6 - .../GetUsersTokenHeaderCept.php | 21 - tests/resourceServer/ResourceServerTester.php | 2120 ---------------- tests/resourceServer/_bootstrap.php | 2 - 20 files changed, 4499 deletions(-) delete mode 100644 tests/_bootstrap.php delete mode 100644 tests/_support/AuthHelper.php delete mode 100644 tests/_support/AuthServerHelper.php delete mode 100644 tests/_support/ResourceServerHelper.php delete mode 100644 tests/auth.suite.yml delete mode 100644 tests/authServer/AuthCodeCept.php delete mode 100644 tests/authServer/AuthTester.php delete mode 100644 tests/authServer/ClientCredentialsCept.php delete mode 100644 tests/authServer/PasswordGrantMissingPasswordCept.php delete mode 100644 tests/authServer/PasswordGrantMissingUsernameCept.php delete mode 100644 tests/authServer/_bootstrap.php delete mode 100644 tests/resourceServer.suite.yml delete mode 100644 tests/resourceServer/GetUsersAllFieldsCept.php delete mode 100644 tests/resourceServer/GetUsersBasicEmailFieldsCept.php delete mode 100644 tests/resourceServer/GetUsersBasicPhotoFieldsCept.php delete mode 100644 tests/resourceServer/GetUsersInvalidTokenCept.php delete mode 100644 tests/resourceServer/GetUsersNoTokenCept.php delete mode 100644 tests/resourceServer/GetUsersTokenHeaderCept.php delete mode 100644 tests/resourceServer/ResourceServerTester.php delete mode 100644 tests/resourceServer/_bootstrap.php diff --git a/tests/_bootstrap.php b/tests/_bootstrap.php deleted file mode 100644 index f36fc700..00000000 --- a/tests/_bootstrap.php +++ /dev/null @@ -1,2 +0,0 @@ -getModule('REST')->grabResponse(); - $array = json_decode($json); - $this->assertTrue(array_key_exists($key, $array)); - } - - function seeJsonKeyDoesNotExists($key) - { - $json = $this->getModule('REST')->grabResponse(); - $array = json_decode($json); - $this->assertFalse(array_key_exists($key, $array)); - } -} \ No newline at end of file diff --git a/tests/_support/AuthServerHelper.php b/tests/_support/AuthServerHelper.php deleted file mode 100644 index 02792dda..00000000 --- a/tests/_support/AuthServerHelper.php +++ /dev/null @@ -1,10 +0,0 @@ -wantTo('get an access token with an authorization code'); -$I->sendGET('authcode_grant.php/authorize?client_id=testclient&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect&response_type=code&scope=basic'); -$I->seeResponseCodeIs(200); -$I->seeHttpHeader('Location'); - -$location = $I->grabHttpHeader('Location'); -$urlParts = parse_url($location); -parse_str($urlParts['query'], $queryString); - -$I->sendPOST('authcode_grant.php/access_token', [ - 'client_id' => 'testclient', - 'redirect_uri' => 'http://example.com/redirect', - 'client_secret' => 'secret', - 'code' => $queryString['code'], - 'grant_type' => 'authorization_code' -]); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeJsonKeyExists('expires_in'); -$I->seeJsonKeyExists('access_token'); -$I->seeResponseContainsJson(['token_type' => 'Bearer']); -$I->seeJsonKeyDoesNotExists('foobar'); \ No newline at end of file diff --git a/tests/authServer/AuthTester.php b/tests/authServer/AuthTester.php deleted file mode 100644 index e2fb6a57..00000000 --- a/tests/authServer/AuthTester.php +++ /dev/null @@ -1,2162 +0,0 @@ -scenario->runStep(new \Codeception\Step\Action('setHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets 'url' configuration parameter to hosts subdomain. - * It does not open a page on subdomain. Use `amOnPage` for that - * - * ``` php - * amOnSubdomain('user'); - * $I->amOnPage('/'); - * // moves to http://user.mysite.com/ - * ?> - * ``` - * - * @param $subdomain - * - * @return mixed - * @see \Codeception\Module\PhpBrowser::amOnSubdomain() - */ - public function amOnSubdomain($subdomain) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Low-level API method. - * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly - * - * Example: - * - * ``` php - * executeInGuzzle(function (\GuzzleHttp\Client $client) { - * $client->get('/get', ['query' => ['foo' => 'bar']]); - * }); - * ?> - * ``` - * - * It is not recommended to use this command on a regular basis. - * If Codeception lacks important Guzzle Client methods, implement them and submit patches. - * - * @param callable $function - * @see \Codeception\Module\PhpBrowser::executeInGuzzle() - */ - public function executeInGuzzle($function) { - return $this->scenario->runStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds HTTP authentication via username/password. - * - * @param $username - * @param $password - * @see \Codeception\Module\REST::amHttpAuthenticated() - */ - public function amHttpAuthenticated($username, $password) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opens the page. - * Requires relative uri as parameter - * - * Example: - * - * ``` php - * amOnPage('/'); - * // opens /register page - * $I->amOnPage('/register'); - * ?> - * ``` - * - * @param $page - * @see \Codeception\Lib\InnerBrowser::amOnPage() - */ - public function amOnPage($page) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Perform a click on link or button. - * Link or button are found by their names or CSS selector. - * Submits a form if button is a submit type. - * - * If link is an image it's found by alt attribute value of image. - * If button is image button is found by it's value - * If link or button can't be found by name they are searched by CSS selector. - * - * The second parameter is a context: CSS or XPath locator to narrow the search. - * - * Examples: - * - * ``` php - * click('Logout'); - * // button of form - * $I->click('Submit'); - * // CSS button - * $I->click('#form input[type=submit]'); - * // XPath - * $I->click('//form/*[@type=submit]'); - * // link in context - * $I->click('Logout', '#nav'); - * // using strict locator - * $I->click(['link' => 'Login']); - * ?> - * ``` - * - * @param $link - * @param $context - * @see \Codeception\Lib\InnerBrowser::click() - */ - public function click($link, $context = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('click', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::see() - */ - public function canSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * @see \Codeception\Lib\InnerBrowser::see() - */ - public function see($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('see', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page doesn't contain the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ```php - * dontSee('Login'); // I can suppose user is already logged in - * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page - * $I->dontSee('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSee() - */ - public function cantSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page doesn't contain the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ```php - * dontSee('Login'); // I can suppose user is already logged in - * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page - * $I->dontSee('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * @see \Codeception\Lib\InnerBrowser::dontSee() - */ - public function dontSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeLink() - */ - public function canSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * @see \Codeception\Lib\InnerBrowser::seeLink() - */ - public function seeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeLink() - */ - public function cantSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * @see \Codeception\Lib\InnerBrowser::dontSeeLink() - */ - public function dontSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() - */ - public function canSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() - */ - public function seeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() - */ - public function cantSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() - */ - public function dontSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() - */ - public function canSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() - */ - public function seeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() - */ - public function cantSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() - */ - public function dontSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() - */ - public function canSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() - */ - public function seeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() - */ - public function cantSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() - */ - public function dontSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Takes a parameters from current URI by RegEx. - * If no url provided returns full URI. - * - * ``` php - * grabFromCurrentUrl('~$/user/(\d+)/~'); - * $uri = $I->grabFromCurrentUrl(); - * ?> - * ``` - * - * @param null $uri - * - * @internal param $url - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabFromCurrentUrl() - */ - public function grabFromCurrentUrl($uri = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() - */ - public function canSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() - */ - public function seeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() - */ - public function cantSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() - */ - public function dontSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInField() - */ - public function canSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::seeInField() - */ - public function seeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInField() - */ - public function cantSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::dontSeeInField() - */ - public function dontSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Submits a form located on page. - * Specify the form by it's css or xpath selector. - * Fill the form fields values as array. - * - * Skipped fields will be filled by their values from page. - * You don't need to click the 'Submit' button afterwards. - * This command itself triggers the request to form's action. - * - * Examples: - * - * ``` php - * submitForm('#login', array('login' => 'davert', 'password' => '123456')); - * - * ``` - * - * For sample Sign Up form: - * - * ``` html - *
- * Login:
- * Password:
- * Do you agree to out terms?
- * Select pricing plan - * - *
- * ``` - * I can write this: - * - * ``` php - * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); - * - * ``` - * Note, that pricing plan will be set to Paid, as it's selected on page. - * - * @param $selector - * @param $params - * @see \Codeception\Lib\InnerBrowser::submitForm() - */ - public function submitForm($selector, $params) { - return $this->scenario->runStep(new \Codeception\Step\Action('submitForm', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Fills a text field or textarea with value. - * - * Example: - * - * ``` php - * fillField("//input[@type='text']", "Hello World!"); - * $I->fillField(['name' => 'email'], 'jon@mail.com'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::fillField() - */ - public function fillField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Action('fillField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Selects an option in select tag or in radio button group. - * - * Example: - * - * ``` php - * selectOption('form select[name=account]', 'Premium'); - * $I->selectOption('form input[name=payment]', 'Monthly'); - * $I->selectOption('//form/select[@name=account]', 'Monthly'); - * ?> - * ``` - * - * Can select multiple options if second argument is array: - * - * ``` php - * selectOption('Which OS do you use?', array('Windows','Linux')); - * ?> - * ``` - * - * @param $select - * @param $option - * @see \Codeception\Lib\InnerBrowser::selectOption() - */ - public function selectOption($select, $option) { - return $this->scenario->runStep(new \Codeception\Step\Action('selectOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Ticks a checkbox. - * For radio buttons use `selectOption` method. - * - * Example: - * - * ``` php - * checkOption('#agree'); - * ?> - * ``` - * - * @param $option - * @see \Codeception\Lib\InnerBrowser::checkOption() - */ - public function checkOption($option) { - return $this->scenario->runStep(new \Codeception\Step\Action('checkOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Unticks a checkbox. - * - * Example: - * - * ``` php - * uncheckOption('#notify'); - * ?> - * ``` - * - * @param $option - * @see \Codeception\Lib\InnerBrowser::uncheckOption() - */ - public function uncheckOption($option) { - return $this->scenario->runStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Attaches file from Codeception data directory to upload field. - * - * Example: - * - * ``` php - * attachFile('input[@type="file"]', 'prices.xls'); - * ?> - * ``` - * - * @param $field - * @param $filename - * @see \Codeception\Lib\InnerBrowser::attachFile() - */ - public function attachFile($field, $filename) { - return $this->scenario->runStep(new \Codeception\Step\Action('attachFile', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a GET ajax request with specified params. - * - * See ->sendAjaxPostRequest for examples. - * - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxGetRequest() - */ - public function sendAjaxGetRequest($uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a POST ajax request with specified params. - * Additional params can be passed as array. - * - * Example: - * - * Imagine that by clicking checkbox you trigger ajax request which updates user settings. - * We emulate that click by running this ajax request manually. - * - * ``` php - * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST - * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET - * - * ``` - * - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxPostRequest() - */ - public function sendAjaxPostRequest($uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends an ajax request with specified method and params. - * - * Example: - * - * You need to perform an ajax request specifying the HTTP method. - * - * ``` php - * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); - * - * ``` - * - * @param $method - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxRequest() - */ - public function sendAjaxRequest($method, $uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Finds and returns text contents of element. - * Element is searched by CSS selector, XPath or matcher by regex. - * - * Example: - * - * ``` php - * grabTextFrom('h1'); - * $heading = $I->grabTextFrom('descendant-or-self::h1'); - * $value = $I->grabTextFrom('~ - * ``` - * - * @param $cssOrXPathOrRegex - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabTextFrom() - */ - public function grabTextFrom($cssOrXPathOrRegex) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Grabs attribute value from an element. - * Fails if element is not found. - * - * ``` php - * grabAttributeFrom('#tooltip', 'title'); - * ?> - * ``` - * - * - * @param $cssOrXpath - * @param $attribute - * @internal param $element - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabAttributeFrom() - */ - public function grabAttributeFrom($cssOrXpath, $attribute) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabAttributeFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * @param $field - * - * @return array|mixed|null|string - * @see \Codeception\Lib\InnerBrowser::grabValueFrom() - */ - public function grabValueFrom($field) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets a cookie. - * - * @param $cookie - * @param $value - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::setCookie() - */ - public function setCookie($name, $val) { - return $this->scenario->runStep(new \Codeception\Step\Action('setCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Grabs a cookie value. - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabCookie() - */ - public function grabCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie is set. - * - * @param $cookie - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCookie() - */ - public function canSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie is set. - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeCookie() - */ - public function seeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie doesn't exist - * - * @param $cookie - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() - */ - public function cantSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie doesn't exist - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() - */ - public function dontSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Unsets cookie - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::resetCookie() - */ - public function resetCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Action('resetCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element exists on a page, matching it by CSS or XPath. - * You can also specify expected attributes of this element. - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * $I->seeElement('input', ['name' => 'login']); - * $I->seeElement('input', ['value' => '123456']); - * - * // strict locator in first arg, attributes in second - * $I->seeElement(['css' => 'form input'], ['name' => 'login']); - * ?> - * ``` - * - * @param $selector - * @param array $attributes - * @return - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeElement() - */ - public function canSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element exists on a page, matching it by CSS or XPath. - * You can also specify expected attributes of this element. - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * $I->seeElement('input', ['name' => 'login']); - * $I->seeElement('input', ['value' => '123456']); - * - * // strict locator in first arg, attributes in second - * $I->seeElement(['css' => 'form input'], ['name' => 'login']); - * ?> - * ``` - * - * @param $selector - * @param array $attributes - * @return - * @see \Codeception\Lib\InnerBrowser::seeElement() - */ - public function seeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * You can also specify expected attributes of this element. - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * $I->dontSeeElement('input', ['name' => 'login']); - * $I->dontSeeElement('input', ['value' => '123456']); - * ?> - * ``` - * - * @param $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeElement() - */ - public function cantSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * You can also specify expected attributes of this element. - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * $I->dontSeeElement('input', ['name' => 'login']); - * $I->dontSeeElement('input', ['value' => '123456']); - * ?> - * ``` - * - * @param $selector - * @see \Codeception\Lib\InnerBrowser::dontSeeElement() - */ - public function dontSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() - */ - public function canSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() - */ - public function seeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() - */ - public function cantSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() - */ - public function dontSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Asserts that current page has 404 response status code. - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seePageNotFound() - */ - public function canSeePageNotFound() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Asserts that current page has 404 response status code. - * @see \Codeception\Lib\InnerBrowser::seePageNotFound() - */ - public function seePageNotFound() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks response code equals to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseCodeIs() - */ - public function canSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks response code equals to provided value. - * - * @param $code - * @see \Codeception\Module\REST::seeResponseCodeIs() - */ - public function seeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInTitle() - */ - public function canSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeInTitle() - */ - public function seeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title does not contain text. - * - * @param $title - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() - */ - public function cantSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title does not contain text. - * - * @param $title - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() - */ - public function dontSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets HTTP header - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::haveHttpHeader() - */ - public function haveHttpHeader($name, $value) { - return $this->scenario->runStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeHttpHeader() - */ - public function canSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::seeHttpHeader() - */ - public function seeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeHttpHeader() - */ - public function cantSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::dontSeeHttpHeader() - */ - public function dontSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeHttpHeaderOnce() - */ - public function canSeeHttpHeaderOnce($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * @see \Codeception\Module\REST::seeHttpHeaderOnce() - */ - public function seeHttpHeaderOnce($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns the value of the specified header name - * - * @param $name - * @param Boolean $first Whether to return the first value or all header values - * - * @return string|array The first header value if $first is true, an array of values otherwise - * @see \Codeception\Module\REST::grabHttpHeader() - */ - public function grabHttpHeader($name, $first = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds Digest authentication via username/password. - * - * @param $username - * @param $password - * @see \Codeception\Module\REST::amDigestAuthenticated() - */ - public function amDigestAuthenticated($username, $password) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds Bearer authentication via access token. - * - * @param $accessToken - * @see \Codeception\Module\REST::amBearerAuthenticated() - */ - public function amBearerAuthenticated($accessToken) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amBearerAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a POST request to given uri. - * - * Parameters and files (as array of filenames) can be provided. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPOST() - */ - public function sendPOST($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPOST', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a HEAD request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendHEAD() - */ - public function sendHEAD($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends an OPTIONS request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendOPTIONS() - */ - public function sendOPTIONS($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a GET request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendGET() - */ - public function sendGET($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendGET', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends PUT request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPUT() - */ - public function sendPUT($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPUT', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends PATCH request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPATCH() - */ - public function sendPATCH($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends DELETE request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendDELETE() - */ - public function sendDELETE($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends LINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * - * @author samva.ua@gmail.com - * @see \Codeception\Module\REST::sendLINK() - */ - public function sendLINK($url, $linkEntries) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendLINK', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends UNLINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * @author samva.ua@gmail.com - * @see \Codeception\Module\REST::sendUNLINK() - */ - public function sendUNLINK($url, $linkEntries) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseIsJson() - */ - public function canSeeResponseIsJson() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * @see \Codeception\Module\REST::seeResponseIsJson() - */ - public function seeResponseIsJson() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseIsXml() - */ - public function canSeeResponseIsXml() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * @see \Codeception\Module\REST::seeResponseIsXml() - */ - public function seeResponseIsXml() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last response contains text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseContains() - */ - public function canSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last response contains text. - * - * @param $text - * @see \Codeception\Module\REST::seeResponseContains() - */ - public function seeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response do not contain text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseContains() - */ - public function cantSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response do not contain text. - * - * @param $text - * @see \Codeception\Module\REST::dontSeeResponseContains() - */ - public function dontSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseContainsJson() - */ - public function canSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * @see \Codeception\Module\REST::seeResponseContainsJson() - */ - public function seeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns current response so that it can be used in next scenario steps. - * - * Example: - * - * ``` php - * grabResponse(); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @version 1.1 - * @return string - * @see \Codeception\Module\REST::grabResponse() - */ - public function grabResponse() { - return $this->scenario->runStep(new \Codeception\Step\Action('grabResponse', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns data from the current JSON response using specified path - * so that it can be used in next scenario steps - * - * Example: - * - * ``` php - * grabDataFromJsonResponse('user.user_id'); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @param string $path - * - * @since 1.1.2 - * @return string - * - * @author tiger.seo@gmail.com - * @see \Codeception\Module\REST::grabDataFromJsonResponse() - */ - public function grabDataFromJsonResponse($path) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseContainsJson() - */ - public function cantSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * @see \Codeception\Module\REST::dontSeeResponseContainsJson() - */ - public function dontSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if response is exactly the same as provided. - * - * @param $response - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseEquals() - */ - public function canSeeResponseEquals($response) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if response is exactly the same as provided. - * - * @param $response - * @see \Codeception\Module\REST::seeResponseEquals() - */ - public function seeResponseEquals($response) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that response code is not equal to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseCodeIs() - */ - public function cantSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that response code is not equal to provided value. - * - * @param $code - * @see \Codeception\Module\REST::dontSeeResponseCodeIs() - */ - public function dontSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\AuthHelper::seeJsonKeyExists() - */ - public function canSeeJsonKeyExists($key) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeJsonKeyExists', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * - * @see \Codeception\Module\AuthHelper::seeJsonKeyExists() - */ - public function seeJsonKeyExists($key) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeJsonKeyExists', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\AuthHelper::seeJsonKeyDoesNotExists() - */ - public function canSeeJsonKeyDoesNotExists($key) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeJsonKeyDoesNotExists', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * - * @see \Codeception\Module\AuthHelper::seeJsonKeyDoesNotExists() - */ - public function seeJsonKeyDoesNotExists($key) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeJsonKeyDoesNotExists', func_get_args())); - } -} diff --git a/tests/authServer/ClientCredentialsCept.php b/tests/authServer/ClientCredentialsCept.php deleted file mode 100644 index 97eac87b..00000000 --- a/tests/authServer/ClientCredentialsCept.php +++ /dev/null @@ -1,14 +0,0 @@ -wantTo('get an access token with client credentials'); -$I->sendPOST('other_grants.php/access_token', [ - 'client_id' => 'testclient', - 'client_secret' => 'secret', - 'grant_type' => 'client_credentials' -]); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeJsonKeyExists('expires_in'); -$I->seeJsonKeyExists('access_token'); -$I->seeResponseContainsJson(['token_type' => 'Bearer']); -$I->seeJsonKeyDoesNotExists('foobar'); \ No newline at end of file diff --git a/tests/authServer/PasswordGrantMissingPasswordCept.php b/tests/authServer/PasswordGrantMissingPasswordCept.php deleted file mode 100644 index 7d381500..00000000 --- a/tests/authServer/PasswordGrantMissingPasswordCept.php +++ /dev/null @@ -1,11 +0,0 @@ -wantTo('get an access token with resource owner credentials'); -$I->sendPOST('other_grants.php/access_token', [ - 'client_id' => 'testclient', - 'client_secret' => 'secret', - 'grant_type' => 'password', - 'username' => 'alexbilbie' -]); -$I->seeResponseCodeIs(400); -$I->seeResponseIsJson(); \ No newline at end of file diff --git a/tests/authServer/PasswordGrantMissingUsernameCept.php b/tests/authServer/PasswordGrantMissingUsernameCept.php deleted file mode 100644 index 0db058e9..00000000 --- a/tests/authServer/PasswordGrantMissingUsernameCept.php +++ /dev/null @@ -1,15 +0,0 @@ -wantTo('get an access token with resource owner credentials'); -$I->sendPOST('other_grants.php/access_token', [ - 'client_id' => 'testclient', - 'client_secret' => 'secret', - 'grant_type' => 'password' -]); -$I->seeResponseCodeIs(400); -$I->seeResponseIsJson(); -$I->seeResponseContainsJson([ - 'error' => 'invalid_request', - 'message' => 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter - more than once, or is otherwise malformed. Check the "username" parameter.' -]); \ No newline at end of file diff --git a/tests/authServer/_bootstrap.php b/tests/authServer/_bootstrap.php deleted file mode 100644 index 8a885558..00000000 --- a/tests/authServer/_bootstrap.php +++ /dev/null @@ -1,2 +0,0 @@ -wantTo('get all users with all fields'); -$I->sendGET('api.php/users?access_token=iamgod'); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeResponseContainsJson([ - [ - 'username' => 'alexbilbie', - 'name' => 'Alex Bilbie', - 'email' => 'hello@alexbilbie.com', - 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' - ], - [ - 'username' => 'philsturgeon', - 'name' => 'Phil Sturgeon', - 'email' => 'email@philsturgeon.co.uk', - 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' - ] -]); diff --git a/tests/resourceServer/GetUsersBasicEmailFieldsCept.php b/tests/resourceServer/GetUsersBasicEmailFieldsCept.php deleted file mode 100644 index d8e590be..00000000 --- a/tests/resourceServer/GetUsersBasicEmailFieldsCept.php +++ /dev/null @@ -1,18 +0,0 @@ -wantTo('get all users with all basic and email fields'); -$I->sendGET('api.php/users?access_token=iamphil'); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeResponseContainsJson([ - [ - 'username' => 'alexbilbie', - 'name' => 'Alex Bilbie', - 'email' => 'hello@alexbilbie.com' - ], - [ - 'username' => 'philsturgeon', - 'name' => 'Phil Sturgeon', - 'email' => 'email@philsturgeon.co.uk' - ] -]); diff --git a/tests/resourceServer/GetUsersBasicPhotoFieldsCept.php b/tests/resourceServer/GetUsersBasicPhotoFieldsCept.php deleted file mode 100644 index fb13db23..00000000 --- a/tests/resourceServer/GetUsersBasicPhotoFieldsCept.php +++ /dev/null @@ -1,18 +0,0 @@ -wantTo('get all users with basic and photo fields'); -$I->sendGET('api.php/users?access_token=iamalex'); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeResponseContainsJson([ - [ - 'username' => 'alexbilbie', - 'name' => 'Alex Bilbie', - 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' - ], - [ - 'username' => 'philsturgeon', - 'name' => 'Phil Sturgeon', - 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' - ] -]); diff --git a/tests/resourceServer/GetUsersInvalidTokenCept.php b/tests/resourceServer/GetUsersInvalidTokenCept.php deleted file mode 100644 index 1dab7324..00000000 --- a/tests/resourceServer/GetUsersInvalidTokenCept.php +++ /dev/null @@ -1,6 +0,0 @@ -wantTo('get all users with an invalid access token'); -$I->sendGET('api.php/users?access_token=foobar'); -$I->seeResponseCodeIs(401); -$I->seeResponseIsJson(); diff --git a/tests/resourceServer/GetUsersNoTokenCept.php b/tests/resourceServer/GetUsersNoTokenCept.php deleted file mode 100644 index 9b7ae094..00000000 --- a/tests/resourceServer/GetUsersNoTokenCept.php +++ /dev/null @@ -1,6 +0,0 @@ -wantTo('get all users without an access token'); -$I->sendGET('api.php/users'); -$I->seeResponseCodeIs(400); -$I->seeResponseIsJson(); diff --git a/tests/resourceServer/GetUsersTokenHeaderCept.php b/tests/resourceServer/GetUsersTokenHeaderCept.php deleted file mode 100644 index 82cbd226..00000000 --- a/tests/resourceServer/GetUsersTokenHeaderCept.php +++ /dev/null @@ -1,21 +0,0 @@ -wantTo('get all users with header access token'); -$I->haveHttpHeader('Authorization', 'Bearer iamgod'); -$I->sendGET('api.php/users'); -$I->seeResponseCodeIs(200); -$I->seeResponseIsJson(); -$I->seeResponseContainsJson([ - [ - 'username' => 'alexbilbie', - 'name' => 'Alex Bilbie', - 'email' => 'hello@alexbilbie.com', - 'photo' => 'https://s.gravatar.com/avatar/14902eb1dac66b8458ebbb481d80f0a3' - ], - [ - 'username' => 'philsturgeon', - 'name' => 'Phil Sturgeon', - 'email' => 'email@philsturgeon.co.uk', - 'photo' => 'https://s.gravatar.com/avatar/14df293d6c5cd6f05996dfc606a6a951' - ] -]); diff --git a/tests/resourceServer/ResourceServerTester.php b/tests/resourceServer/ResourceServerTester.php deleted file mode 100644 index 7761fb68..00000000 --- a/tests/resourceServer/ResourceServerTester.php +++ /dev/null @@ -1,2120 +0,0 @@ -scenario->runStep(new \Codeception\Step\Action('setHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets 'url' configuration parameter to hosts subdomain. - * It does not open a page on subdomain. Use `amOnPage` for that - * - * ``` php - * amOnSubdomain('user'); - * $I->amOnPage('/'); - * // moves to http://user.mysite.com/ - * ?> - * ``` - * - * @param $subdomain - * - * @return mixed - * @see \Codeception\Module\PhpBrowser::amOnSubdomain() - */ - public function amOnSubdomain($subdomain) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amOnSubdomain', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Low-level API method. - * If Codeception commands are not enough, use [Guzzle HTTP Client](http://guzzlephp.org/) methods directly - * - * Example: - * - * ``` php - * executeInGuzzle(function (\GuzzleHttp\Client $client) { - * $client->get('/get', ['query' => ['foo' => 'bar']]); - * }); - * ?> - * ``` - * - * It is not recommended to use this command on a regular basis. - * If Codeception lacks important Guzzle Client methods, implement them and submit patches. - * - * @param callable $function - * @see \Codeception\Module\PhpBrowser::executeInGuzzle() - */ - public function executeInGuzzle($function) { - return $this->scenario->runStep(new \Codeception\Step\Action('executeInGuzzle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds HTTP authentication via username/password. - * - * @param $username - * @param $password - * @see \Codeception\Module\REST::amHttpAuthenticated() - */ - public function amHttpAuthenticated($username, $password) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amHttpAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opens the page. - * Requires relative uri as parameter - * - * Example: - * - * ``` php - * amOnPage('/'); - * // opens /register page - * $I->amOnPage('/register'); - * ?> - * ``` - * - * @param $page - * @see \Codeception\Lib\InnerBrowser::amOnPage() - */ - public function amOnPage($page) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amOnPage', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Perform a click on link or button. - * Link or button are found by their names or CSS selector. - * Submits a form if button is a submit type. - * - * If link is an image it's found by alt attribute value of image. - * If button is image button is found by it's value - * If link or button can't be found by name they are searched by CSS selector. - * - * The second parameter is a context: CSS or XPath locator to narrow the search. - * - * Examples: - * - * ``` php - * click('Logout'); - * // button of form - * $I->click('Submit'); - * // CSS button - * $I->click('#form input[type=submit]'); - * // XPath - * $I->click('//form/*[@type=submit]'); - * // link in context - * $I->click('Logout', '#nav'); - * // using strict locator - * $I->click(['link' => 'Login']); - * ?> - * ``` - * - * @param $link - * @param $context - * @see \Codeception\Lib\InnerBrowser::click() - */ - public function click($link, $context = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('click', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::see() - */ - public function canSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('see', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page contains the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ``` php - * see('Logout'); // I can suppose user is logged in - * $I->see('Sign Up','h1'); // I can suppose it's a signup page - * $I->see('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * @see \Codeception\Lib\InnerBrowser::see() - */ - public function see($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('see', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page doesn't contain the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ```php - * dontSee('Login'); // I can suppose user is already logged in - * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page - * $I->dontSee('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSee() - */ - public function cantSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSee', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Check if current page doesn't contain the text specified. - * Specify the css selector to match only specific region. - * - * Examples: - * - * ```php - * dontSee('Login'); // I can suppose user is already logged in - * $I->dontSee('Sign Up','h1'); // I can suppose it's not a signup page - * $I->dontSee('Sign Up','//body/h1'); // with XPath - * ?> - * ``` - * - * @param $text - * @param null $selector - * @see \Codeception\Lib\InnerBrowser::dontSee() - */ - public function dontSee($text, $selector = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSee', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeLink() - */ - public function canSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeLink', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if there is a link with text specified. - * Specify url to match link with exact this url. - * - * Examples: - * - * ``` php - * seeLink('Logout'); // matches Logout - * $I->seeLink('Logout','/logout'); // matches Logout - * ?> - * ``` - * - * @param $text - * @param null $url - * @see \Codeception\Lib\InnerBrowser::seeLink() - */ - public function seeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeLink', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeLink() - */ - public function cantSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeLink', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if page doesn't contain the link with text specified. - * Specify url to narrow the results. - * - * Examples: - * - * ``` php - * dontSeeLink('Logout'); // I suppose user is not logged in - * ?> - * ``` - * - * @param $text - * @param null $url - * @see \Codeception\Lib\InnerBrowser::dontSeeLink() - */ - public function dontSeeLink($text, $url = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeLink', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() - */ - public function canSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInCurrentUrl', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri contains a value - * - * ``` php - * seeInCurrentUrl('home'); - * // to match: /users/1 - * $I->seeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeInCurrentUrl() - */ - public function seeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() - */ - public function cantSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInCurrentUrl', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current uri does not contain a value - * - * ``` php - * dontSeeInCurrentUrl('/users/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeInCurrentUrl() - */ - public function dontSeeInCurrentUrl($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() - */ - public function canSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is equal to value. - * Unlike `seeInCurrentUrl` performs a strict check. - * - * ``` php - * seeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlEquals() - */ - public function seeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() - */ - public function cantSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is not equal to value. - * Unlike `dontSeeInCurrentUrl` performs a strict check. - * - * ``` php - * dontSeeCurrentUrlEquals('/'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlEquals() - */ - public function dontSeeCurrentUrlEquals($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() - */ - public function canSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCurrentUrlMatches', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url is matches a RegEx value - * - * ``` php - * seeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::seeCurrentUrlMatches() - */ - public function seeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCurrentUrlMatches', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() - */ - public function cantSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCurrentUrlMatches', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that current url does not match a RegEx value - * - * ``` php - * dontSeeCurrentUrlMatches('~$/users/(\d+)~'); - * ?> - * ``` - * - * @param $uri - * @see \Codeception\Lib\InnerBrowser::dontSeeCurrentUrlMatches() - */ - public function dontSeeCurrentUrlMatches($uri) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCurrentUrlMatches', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Takes a parameters from current URI by RegEx. - * If no url provided returns full URI. - * - * ``` php - * grabFromCurrentUrl('~$/user/(\d+)/~'); - * $uri = $I->grabFromCurrentUrl(); - * ?> - * ``` - * - * @param null $uri - * - * @internal param $url - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabFromCurrentUrl() - */ - public function grabFromCurrentUrl($uri = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabFromCurrentUrl', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() - */ - public function canSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCheckboxIsChecked', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is checked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * seeCheckboxIsChecked('#agree'); // I suppose user agreed to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user agreed to terms, If there is only one checkbox in form. - * $I->seeCheckboxIsChecked('//form/input[@type=checkbox and @name=agree]'); - * ?> - * ``` - * - * @param $checkbox - * @see \Codeception\Lib\InnerBrowser::seeCheckboxIsChecked() - */ - public function seeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCheckboxIsChecked', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() - */ - public function cantSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCheckboxIsChecked', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Assert if the specified checkbox is unchecked. - * Use css selector or xpath to match. - * - * Example: - * - * ``` php - * dontSeeCheckboxIsChecked('#agree'); // I suppose user didn't agree to terms - * $I->seeCheckboxIsChecked('#signup_form input[type=checkbox]'); // I suppose user didn't check the first checkbox in form. - * ?> - * ``` - * - * @param $checkbox - * @see \Codeception\Lib\InnerBrowser::dontSeeCheckboxIsChecked() - */ - public function dontSeeCheckboxIsChecked($checkbox) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCheckboxIsChecked', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInField() - */ - public function canSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInField', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea contains value. - * Field is matched either by label or CSS or Xpath - * - * Example: - * - * ``` php - * seeInField('Body','Type your comment here'); - * $I->seeInField('form textarea[name=body]','Type your comment here'); - * $I->seeInField('form input[type=hidden]','hidden_value'); - * $I->seeInField('#searchform input','Search'); - * $I->seeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::seeInField() - */ - public function seeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInField() - */ - public function cantSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInField', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that an input field or textarea doesn't contain value. - * Field is matched either by label or CSS or Xpath - * Example: - * - * ``` php - * dontSeeInField('Body','Type your comment here'); - * $I->dontSeeInField('form textarea[name=body]','Type your comment here'); - * $I->dontSeeInField('form input[type=hidden]','hidden_value'); - * $I->dontSeeInField('#searchform input','Search'); - * $I->dontSeeInField('//form/*[@name=search]','Search'); - * $I->seeInField(['name' => 'search'], 'Search'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::dontSeeInField() - */ - public function dontSeeInField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Submits a form located on page. - * Specify the form by it's css or xpath selector. - * Fill the form fields values as array. - * - * Skipped fields will be filled by their values from page. - * You don't need to click the 'Submit' button afterwards. - * This command itself triggers the request to form's action. - * - * Examples: - * - * ``` php - * submitForm('#login', array('login' => 'davert', 'password' => '123456')); - * - * ``` - * - * For sample Sign Up form: - * - * ``` html - *
- * Login:
- * Password:
- * Do you agree to out terms?
- * Select pricing plan - * - *
- * ``` - * I can write this: - * - * ``` php - * submitForm('#userForm', array('user' => array('login' => 'Davert', 'password' => '123456', 'agree' => true))); - * - * ``` - * Note, that pricing plan will be set to Paid, as it's selected on page. - * - * @param $selector - * @param $params - * @see \Codeception\Lib\InnerBrowser::submitForm() - */ - public function submitForm($selector, $params) { - return $this->scenario->runStep(new \Codeception\Step\Action('submitForm', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Fills a text field or textarea with value. - * - * Example: - * - * ``` php - * fillField("//input[@type='text']", "Hello World!"); - * $I->fillField(['name' => 'email'], 'jon@mail.com'); - * ?> - * ``` - * - * @param $field - * @param $value - * @see \Codeception\Lib\InnerBrowser::fillField() - */ - public function fillField($field, $value) { - return $this->scenario->runStep(new \Codeception\Step\Action('fillField', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Selects an option in select tag or in radio button group. - * - * Example: - * - * ``` php - * selectOption('form select[name=account]', 'Premium'); - * $I->selectOption('form input[name=payment]', 'Monthly'); - * $I->selectOption('//form/select[@name=account]', 'Monthly'); - * ?> - * ``` - * - * Can select multiple options if second argument is array: - * - * ``` php - * selectOption('Which OS do you use?', array('Windows','Linux')); - * ?> - * ``` - * - * @param $select - * @param $option - * @see \Codeception\Lib\InnerBrowser::selectOption() - */ - public function selectOption($select, $option) { - return $this->scenario->runStep(new \Codeception\Step\Action('selectOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Ticks a checkbox. - * For radio buttons use `selectOption` method. - * - * Example: - * - * ``` php - * checkOption('#agree'); - * ?> - * ``` - * - * @param $option - * @see \Codeception\Lib\InnerBrowser::checkOption() - */ - public function checkOption($option) { - return $this->scenario->runStep(new \Codeception\Step\Action('checkOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Unticks a checkbox. - * - * Example: - * - * ``` php - * uncheckOption('#notify'); - * ?> - * ``` - * - * @param $option - * @see \Codeception\Lib\InnerBrowser::uncheckOption() - */ - public function uncheckOption($option) { - return $this->scenario->runStep(new \Codeception\Step\Action('uncheckOption', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Attaches file from Codeception data directory to upload field. - * - * Example: - * - * ``` php - * attachFile('input[@type="file"]', 'prices.xls'); - * ?> - * ``` - * - * @param $field - * @param $filename - * @see \Codeception\Lib\InnerBrowser::attachFile() - */ - public function attachFile($field, $filename) { - return $this->scenario->runStep(new \Codeception\Step\Action('attachFile', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a GET ajax request with specified params. - * - * See ->sendAjaxPostRequest for examples. - * - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxGetRequest() - */ - public function sendAjaxGetRequest($uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxGetRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends a POST ajax request with specified params. - * Additional params can be passed as array. - * - * Example: - * - * Imagine that by clicking checkbox you trigger ajax request which updates user settings. - * We emulate that click by running this ajax request manually. - * - * ``` php - * sendAjaxPostRequest('/updateSettings', array('notifications' => true)); // POST - * $I->sendAjaxGetRequest('/updateSettings', array('notifications' => true)); // GET - * - * ``` - * - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxPostRequest() - */ - public function sendAjaxPostRequest($uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxPostRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * If your page triggers an ajax request, you can perform it manually. - * This action sends an ajax request with specified method and params. - * - * Example: - * - * You need to perform an ajax request specifying the HTTP method. - * - * ``` php - * sendAjaxRequest('PUT', /posts/7', array('title' => 'new title'); - * - * ``` - * - * @param $method - * @param $uri - * @param $params - * @see \Codeception\Lib\InnerBrowser::sendAjaxRequest() - */ - public function sendAjaxRequest($method, $uri, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendAjaxRequest', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Finds and returns text contents of element. - * Element is searched by CSS selector, XPath or matcher by regex. - * - * Example: - * - * ``` php - * grabTextFrom('h1'); - * $heading = $I->grabTextFrom('descendant-or-self::h1'); - * $value = $I->grabTextFrom('~ - * ``` - * - * @param $cssOrXPathOrRegex - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabTextFrom() - */ - public function grabTextFrom($cssOrXPathOrRegex) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabTextFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Grabs attribute value from an element. - * Fails if element is not found. - * - * ``` php - * grabAttributeFrom('#tooltip', 'title'); - * ?> - * ``` - * - * - * @param $cssOrXpath - * @param $attribute - * @internal param $element - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabAttributeFrom() - */ - public function grabAttributeFrom($cssOrXpath, $attribute) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabAttributeFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * @param $field - * - * @return array|mixed|null|string - * @see \Codeception\Lib\InnerBrowser::grabValueFrom() - */ - public function grabValueFrom($field) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabValueFrom', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets a cookie. - * - * @param $cookie - * @param $value - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::setCookie() - */ - public function setCookie($name, $val) { - return $this->scenario->runStep(new \Codeception\Step\Action('setCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Grabs a cookie value. - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::grabCookie() - */ - public function grabCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie is set. - * - * @param $cookie - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeCookie() - */ - public function canSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeCookie', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie is set. - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeCookie() - */ - public function seeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie doesn't exist - * - * @param $cookie - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() - */ - public function cantSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeCookie', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that cookie doesn't exist - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeCookie() - */ - public function dontSeeCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Unsets cookie - * - * @param $cookie - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::resetCookie() - */ - public function resetCookie($name) { - return $this->scenario->runStep(new \Codeception\Step\Action('resetCookie', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element exists on a page, matching it by CSS or XPath. - * You can also specify expected attributes of this element. - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * $I->seeElement('input', ['name' => 'login']); - * $I->seeElement('input', ['value' => '123456']); - * - * // strict locator in first arg, attributes in second - * $I->seeElement(['css' => 'form input'], ['name' => 'login']); - * ?> - * ``` - * - * @param $selector - * @param array $attributes - * @return - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeElement() - */ - public function canSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeElement', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element exists on a page, matching it by CSS or XPath. - * You can also specify expected attributes of this element. - * - * ``` php - * seeElement('.error'); - * $I->seeElement('//form/input[1]'); - * $I->seeElement('input', ['name' => 'login']); - * $I->seeElement('input', ['value' => '123456']); - * - * // strict locator in first arg, attributes in second - * $I->seeElement(['css' => 'form input'], ['name' => 'login']); - * ?> - * ``` - * - * @param $selector - * @param array $attributes - * @return - * @see \Codeception\Lib\InnerBrowser::seeElement() - */ - public function seeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeElement', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * You can also specify expected attributes of this element. - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * $I->dontSeeElement('input', ['name' => 'login']); - * $I->dontSeeElement('input', ['value' => '123456']); - * ?> - * ``` - * - * @param $selector - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeElement() - */ - public function cantSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeElement', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if element does not exist (or is visible) on a page, matching it by CSS or XPath - * You can also specify expected attributes of this element. - * - * Example: - * - * ``` php - * dontSeeElement('.error'); - * $I->dontSeeElement('//form/input[1]'); - * $I->dontSeeElement('input', ['name' => 'login']); - * $I->dontSeeElement('input', ['value' => '123456']); - * ?> - * ``` - * - * @param $selector - * @see \Codeception\Lib\InnerBrowser::dontSeeElement() - */ - public function dontSeeElement($selector, $attributes = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeElement', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() - */ - public function canSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeOptionIsSelected', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is selected in select field. - * - * ``` php - * seeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeOptionIsSelected() - */ - public function seeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeOptionIsSelected', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() - */ - public function cantSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeOptionIsSelected', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if option is not selected in select field. - * - * ``` php - * dontSeeOptionIsSelected('#form input[name=payment]', 'Visa'); - * ?> - * ``` - * - * @param $selector - * @param $optionText - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeOptionIsSelected() - */ - public function dontSeeOptionIsSelected($select, $optionText) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeOptionIsSelected', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Asserts that current page has 404 response status code. - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seePageNotFound() - */ - public function canSeePageNotFound() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seePageNotFound', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Asserts that current page has 404 response status code. - * @see \Codeception\Lib\InnerBrowser::seePageNotFound() - */ - public function seePageNotFound() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seePageNotFound', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks response code equals to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseCodeIs() - */ - public function canSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseCodeIs', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks response code equals to provided value. - * - * @param $code - * @see \Codeception\Module\REST::seeResponseCodeIs() - */ - public function seeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseCodeIs', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::seeInTitle() - */ - public function canSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeInTitle', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title contains text. - * - * ``` php - * seeInTitle('Blog - Post #1'); - * ?> - * ``` - * - * @param $title - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::seeInTitle() - */ - public function seeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeInTitle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title does not contain text. - * - * @param $title - * - * @return mixed - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() - */ - public function cantSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeInTitle', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that page title does not contain text. - * - * @param $title - * - * @return mixed - * @see \Codeception\Lib\InnerBrowser::dontSeeInTitle() - */ - public function dontSeeInTitle($title) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeInTitle', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sets HTTP header - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::haveHttpHeader() - */ - public function haveHttpHeader($name, $value) { - return $this->scenario->runStep(new \Codeception\Step\Action('haveHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeHttpHeader() - */ - public function canSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeader', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are there - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::seeHttpHeader() - */ - public function seeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeHttpHeader() - */ - public function cantSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeHttpHeader', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks over the given HTTP header and (optionally) - * its value, asserting that are not there - * - * @param $name - * @param $value - * @see \Codeception\Module\REST::dontSeeHttpHeader() - */ - public function dontSeeHttpHeader($name, $value = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeHttpHeaderOnce() - */ - public function canSeeHttpHeaderOnce($name) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeHttpHeaderOnce', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that http response header is received only once. - * HTTP RFC2616 allows multiple response headers with the same name. - * You can check that you didn't accidentally sent the same header twice. - * - * ``` php - * seeHttpHeaderOnce('Cache-Control'); - * ?>> - * ``` - * - * @param $name - * @see \Codeception\Module\REST::seeHttpHeaderOnce() - */ - public function seeHttpHeaderOnce($name) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeHttpHeaderOnce', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns the value of the specified header name - * - * @param $name - * @param Boolean $first Whether to return the first value or all header values - * - * @return string|array The first header value if $first is true, an array of values otherwise - * @see \Codeception\Module\REST::grabHttpHeader() - */ - public function grabHttpHeader($name, $first = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabHttpHeader', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds Digest authentication via username/password. - * - * @param $username - * @param $password - * @see \Codeception\Module\REST::amDigestAuthenticated() - */ - public function amDigestAuthenticated($username, $password) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amDigestAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Adds Bearer authentication via access token. - * - * @param $accessToken - * @see \Codeception\Module\REST::amBearerAuthenticated() - */ - public function amBearerAuthenticated($accessToken) { - return $this->scenario->runStep(new \Codeception\Step\Condition('amBearerAuthenticated', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a POST request to given uri. - * - * Parameters and files (as array of filenames) can be provided. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPOST() - */ - public function sendPOST($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPOST', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a HEAD request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendHEAD() - */ - public function sendHEAD($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendHEAD', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends an OPTIONS request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendOPTIONS() - */ - public function sendOPTIONS($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendOPTIONS', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends a GET request to given uri. - * - * @param $url - * @param array $params - * @see \Codeception\Module\REST::sendGET() - */ - public function sendGET($url, $params = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendGET', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends PUT request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPUT() - */ - public function sendPUT($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPUT', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends PATCH request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendPATCH() - */ - public function sendPATCH($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendPATCH', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends DELETE request to given uri. - * - * @param $url - * @param array $params - * @param array $files - * @see \Codeception\Module\REST::sendDELETE() - */ - public function sendDELETE($url, $params = null, $files = null) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendDELETE', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends LINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * - * @author samva.ua@gmail.com - * @see \Codeception\Module\REST::sendLINK() - */ - public function sendLINK($url, $linkEntries) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendLINK', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Sends UNLINK request to given uri. - * - * @param $url - * @param array $linkEntries (entry is array with keys "uri" and "link-param") - * @link http://tools.ietf.org/html/rfc2068#section-19.6.2.4 - * @author samva.ua@gmail.com - * @see \Codeception\Module\REST::sendUNLINK() - */ - public function sendUNLINK($url, $linkEntries) { - return $this->scenario->runStep(new \Codeception\Step\Action('sendUNLINK', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseIsJson() - */ - public function canSeeResponseIsJson() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid JSON. - * This is done with json_last_error function. - * - * @see \Codeception\Module\REST::seeResponseIsJson() - */ - public function seeResponseIsJson() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseIsXml() - */ - public function canSeeResponseIsXml() { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseIsXml', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response was valid XML. - * This is done with libxml_get_last_error function. - * - * @see \Codeception\Module\REST::seeResponseIsXml() - */ - public function seeResponseIsXml() { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseIsXml', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last response contains text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseContains() - */ - public function canSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContains', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last response contains text. - * - * @param $text - * @see \Codeception\Module\REST::seeResponseContains() - */ - public function seeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContains', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response do not contain text. - * - * @param $text - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseContains() - */ - public function cantSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContains', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether last response do not contain text. - * - * @param $text - * @see \Codeception\Module\REST::dontSeeResponseContains() - */ - public function dontSeeResponseContains($text) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContains', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseContainsJson() - */ - public function canSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseContainsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks whether the last JSON response contains provided array. - * The response is converted to array with json_decode($response, true) - * Thus, JSON is represented by associative array. - * This method matches that response array contains provided array. - * - * Examples: - * - * ``` php - * seeResponseContainsJson(array('name' => 'john')); - * - * // response {user: john, profile: { email: john@gmail.com }} - * $I->seeResponseContainsJson(array('email' => 'john@gmail.com')); - * - * ?> - * ``` - * - * This method recursively checks if one array can be found inside of another. - * - * @param array $json - * @see \Codeception\Module\REST::seeResponseContainsJson() - */ - public function seeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseContainsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns current response so that it can be used in next scenario steps. - * - * Example: - * - * ``` php - * grabResponse(); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @version 1.1 - * @return string - * @see \Codeception\Module\REST::grabResponse() - */ - public function grabResponse() { - return $this->scenario->runStep(new \Codeception\Step\Action('grabResponse', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Returns data from the current JSON response using specified path - * so that it can be used in next scenario steps - * - * Example: - * - * ``` php - * grabDataFromJsonResponse('user.user_id'); - * $I->sendPUT('/user', array('id' => $user_id, 'name' => 'davert')); - * ?> - * ``` - * - * @param string $path - * - * @since 1.1.2 - * @return string - * - * @author tiger.seo@gmail.com - * @see \Codeception\Module\REST::grabDataFromJsonResponse() - */ - public function grabDataFromJsonResponse($path) { - return $this->scenario->runStep(new \Codeception\Step\Action('grabDataFromJsonResponse', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseContainsJson() - */ - public function cantSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseContainsJson', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Opposite to seeResponseContainsJson - * - * @param array $json - * @see \Codeception\Module\REST::dontSeeResponseContainsJson() - */ - public function dontSeeResponseContainsJson($json = null) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseContainsJson', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if response is exactly the same as provided. - * - * @param $response - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::seeResponseEquals() - */ - public function canSeeResponseEquals($response) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('seeResponseEquals', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks if response is exactly the same as provided. - * - * @param $response - * @see \Codeception\Module\REST::seeResponseEquals() - */ - public function seeResponseEquals($response) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('seeResponseEquals', func_get_args())); - } - - - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that response code is not equal to provided value. - * - * @param $code - * Conditional Assertion: Test won't be stopped on fail - * @see \Codeception\Module\REST::dontSeeResponseCodeIs() - */ - public function cantSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\ConditionalAssertion('dontSeeResponseCodeIs', func_get_args())); - } - /** - * [!] Method is generated. Documentation taken from corresponding module. - * - * Checks that response code is not equal to provided value. - * - * @param $code - * @see \Codeception\Module\REST::dontSeeResponseCodeIs() - */ - public function dontSeeResponseCodeIs($code) { - return $this->scenario->runStep(new \Codeception\Step\Assertion('dontSeeResponseCodeIs', func_get_args())); - } -} diff --git a/tests/resourceServer/_bootstrap.php b/tests/resourceServer/_bootstrap.php deleted file mode 100644 index 8a885558..00000000 --- a/tests/resourceServer/_bootstrap.php +++ /dev/null @@ -1,2 +0,0 @@ - Date: Mon, 4 Aug 2014 15:18:55 +0100 Subject: [PATCH 179/270] Added more fizzfuzz tests --- tests/fuzz/grant-authcode.yml | 9 ++ tests/fuzz/grant-client-credentials.yml | 59 +++++++++++++ tests/fuzz/grant-password.yml | 85 +++++++++++++++++++ tests/fuzz/tokeninfo-no-access-token.yml | 4 +- ...okeninfo-no-invalid-token-query-string.yml | 10 ++- tests/fuzz/tokeninfo-no-invalid-token.yml | 4 +- tests/fuzz/tokeninfo-valid-token-header.yml | 26 ++++++ tests/fuzz/tokeninfo-valid-token.yml | 10 +-- tests/fuzz/users-token-iamalex.yml | 32 +++++++ tests/fuzz/users-token-iamphil.yml | 32 +++++++ 10 files changed, 259 insertions(+), 12 deletions(-) create mode 100644 tests/fuzz/grant-authcode.yml create mode 100644 tests/fuzz/grant-client-credentials.yml create mode 100644 tests/fuzz/grant-password.yml create mode 100644 tests/fuzz/tokeninfo-valid-token-header.yml create mode 100644 tests/fuzz/users-token-iamalex.yml create mode 100644 tests/fuzz/users-token-iamphil.yml diff --git a/tests/fuzz/grant-authcode.yml b/tests/fuzz/grant-authcode.yml new file mode 100644 index 00000000..7c740a9d --- /dev/null +++ b/tests/fuzz/grant-authcode.yml @@ -0,0 +1,9 @@ +url: 'http://localhost:8000/authcode_grant.php/authorize?client_id=testclient&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect&response_type=code&scope=basic' +request: + method: GET +response: + statusCode: 200 + headers: + - + key: Location + valueRegex: /http:\/\/example.com\/redirect\?code=([a-zA-Z0-9]*)/ \ No newline at end of file diff --git a/tests/fuzz/grant-client-credentials.yml b/tests/fuzz/grant-client-credentials.yml new file mode 100644 index 00000000..cc0e8519 --- /dev/null +++ b/tests/fuzz/grant-client-credentials.yml @@ -0,0 +1,59 @@ +url: 'http://localhost:8000/other_grants.php/access_token' +request: + method: POST + body: + - + key: client_id + value: testclient + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"client_id\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: client_secret + value: secret + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"client_secret\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: grant_type + value: client_credentials + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"grant_type\" parameter." + invalid: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: unsupported_grant_type + #body.message: "The authorization grant type XXX is not supported by the authorization server." +response: + statusCode: 200 + headers: + - + key: Content-type + value: application/json + body: + - + key: expires_in + valueType: integer + - + key: access_token + valueRegex: /([a-zA-Z0-9]*)/ + - + key: token_type + value: Bearer \ No newline at end of file diff --git a/tests/fuzz/grant-password.yml b/tests/fuzz/grant-password.yml new file mode 100644 index 00000000..63b0628b --- /dev/null +++ b/tests/fuzz/grant-password.yml @@ -0,0 +1,85 @@ +url: 'http://localhost:8000/other_grants.php/access_token' +request: + method: POST + body: + - + key: client_id + value: testclient + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"client_id\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: client_secret + value: secret + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"client_secret\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: username + value: alex + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"username\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: password + value: whisky + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"password\" parameter." + invalid: + response.statusCode: 401 + headers.content-type: "application/json" + body.error: invalid_client + body.message: "Client authentication failed." + - + key: grant_type + value: password + missing: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_request + body.message: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"grant_type\" parameter." + invalid: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: unsupported_grant_type + #body.message: "The authorization grant type XXX is not supported by the authorization server." +response: + statusCode: 200 + headers: + - + key: Content-type + value: application/json + body: + - + key: expires_in + valueType: integer + - + key: access_token + valueRegex: /([a-zA-Z0-9]*)/ + - + key: token_type + value: Bearer \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-no-access-token.yml b/tests/fuzz/tokeninfo-no-access-token.yml index 15fbc8fa..3d084cf7 100644 --- a/tests/fuzz/tokeninfo-no-access-token.yml +++ b/tests/fuzz/tokeninfo-no-access-token.yml @@ -4,7 +4,9 @@ request: response: statusCode: 400 headers: - Content-type: application/json + - + key: Content-type + value: application/json body: - key: error diff --git a/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml b/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml index 4d60340b..bfe07737 100644 --- a/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml +++ b/tests/fuzz/tokeninfo-no-invalid-token-query-string.yml @@ -2,13 +2,15 @@ url: 'http://localhost:8000/api.php/tokeninfo?access_token=foobar' request: method: GET response: - statusCode: 400 + statusCode: 401 headers: - Content-type: application/json + - + key: Content-type + value: application/json body: - key: error - value: "invalid_request" + value: "access_denied" - key: message - value: "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the \"access token\" parameter." \ No newline at end of file + value: "The resource owner or authorization server denied the request." \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-no-invalid-token.yml b/tests/fuzz/tokeninfo-no-invalid-token.yml index 30ee8887..8c4535e3 100644 --- a/tests/fuzz/tokeninfo-no-invalid-token.yml +++ b/tests/fuzz/tokeninfo-no-invalid-token.yml @@ -8,7 +8,9 @@ request: response: statusCode: 401 headers: - Content-type: application/json + - + key: Content-type + value: application/json body: - key: error diff --git a/tests/fuzz/tokeninfo-valid-token-header.yml b/tests/fuzz/tokeninfo-valid-token-header.yml new file mode 100644 index 00000000..c30d819e --- /dev/null +++ b/tests/fuzz/tokeninfo-valid-token-header.yml @@ -0,0 +1,26 @@ +url: 'http://localhost:8000/api.php/tokeninfo' +request: + method: GET + headers: + - + key: Authorization + value: "Bearer iamgod" +response: + statusCode: 200 + headers: + - + key: Content-type + value: application/json + body: + - + key: owner_id + value: testclient + - + key: owner_type + value: client + - + key: access_token + value: iamgod + - + key: client_id + value: testclient \ No newline at end of file diff --git a/tests/fuzz/tokeninfo-valid-token.yml b/tests/fuzz/tokeninfo-valid-token.yml index d7ec6b3a..fb160249 100644 --- a/tests/fuzz/tokeninfo-valid-token.yml +++ b/tests/fuzz/tokeninfo-valid-token.yml @@ -1,14 +1,12 @@ -url: 'http://localhost:8000/api.php/tokeninfo' +url: 'http://localhost:8000/api.php/tokeninfo?access_token=iamgod' request: method: GET - headers: - - - key: Authorization - value: "Bearer iamgod" response: statusCode: 200 headers: - Content-type: application/json + - + key: Content-type + value: application/json body: - key: owner_id diff --git a/tests/fuzz/users-token-iamalex.yml b/tests/fuzz/users-token-iamalex.yml new file mode 100644 index 00000000..629de493 --- /dev/null +++ b/tests/fuzz/users-token-iamalex.yml @@ -0,0 +1,32 @@ +url: 'http://localhost:8000/api.php/users' +request: + method: GET + headers: + - + key: Authorization + value: Bearer iamalex +response: + statusCode: 200 + headers: + - + key: Content-type + value: application/json + body: + - + key: 0.username + value: alexbilbie + - + key: 0.name + value: Alex Bilbie + - + key: 0.photo + valueType: string + - + key: 1.username + value: philsturgeon + - + key: 1.name + value: Phil Sturgeon + - + key: 1.photo + valueType: string \ No newline at end of file diff --git a/tests/fuzz/users-token-iamphil.yml b/tests/fuzz/users-token-iamphil.yml new file mode 100644 index 00000000..6f1b7b57 --- /dev/null +++ b/tests/fuzz/users-token-iamphil.yml @@ -0,0 +1,32 @@ +url: 'http://localhost:8000/api.php/users' +request: + method: GET + headers: + - + key: Authorization + value: Bearer iamphil +response: + statusCode: 200 + headers: + - + key: Content-type + value: application/json + body: + - + key: 0.username + value: alexbilbie + - + key: 0.name + value: Alex Bilbie + - + key: 0.email + valueType: string + - + key: 1.username + value: philsturgeon + - + key: 1.name + value: Phil Sturgeon + - + key: 1.email + valueType: string \ No newline at end of file From b3da61822e2394883d49b49bc4db4474007adb27 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:19:17 +0100 Subject: [PATCH 180/270] Updated example code examples --- examples/relational/api.php | 57 +++++++++++++++++++++++- examples/relational/other_grants.php | 66 +++++++++++++++++++++++----- 2 files changed, 109 insertions(+), 14 deletions(-) diff --git a/examples/relational/api.php b/examples/relational/api.php index 9c1d4a79..5b62898a 100644 --- a/examples/relational/api.php +++ b/examples/relational/api.php @@ -33,6 +33,7 @@ $server = new ResourceServer( $request = (new Request)->createFromGlobals(); $router = new \Orno\Route\RouteCollection; +// GET /tokeninfo $router->get('/tokeninfo', function (Request $request) use ($server) { $token = [ @@ -47,12 +48,64 @@ $router->get('/tokeninfo', function (Request $request) use ($server) { }); +// GET /users +$router->get('/users', function (Request $request) use ($server) { + + $results = (new Model\Users())->get(); + + $users = []; + + foreach ($results as $result) { + $user = [ + 'username' => $result['username'], + 'name' => $result['name'] + ]; + + if ($server->hasScope('email')) { + $user['email'] = $result['email']; + } + + if ($server->hasScope('photo')) { + $user['photo'] = $result['photo']; + } + + $users[] = $user; + } + + return new Response(json_encode($users)); +}); + +// GET /users/{username} +$router->get('/users/{username}', function (Request $request, $args) use ($server) { + + $result = (new Model\Users())->get($args['username']); + + if (count($result) === 0) { + throw new NotFoundException(); + } + + $user = [ + 'username' => $result[0]['username'], + 'name' => $result[0]['name'] + ]; + + if ($server->hasScope('email')) { + $user['email'] = $result[0]['email']; + } + + if ($server->hasScope('photo')) { + $user['photo'] = $result[0]['photo']; + } + + return new Response(json_encode($user)); +}); + $dispatcher = $router->getDispatcher(); try { // Check that access token is present - $server->isValidRequest(); + $server->isValidRequest(false); // A successful response $response = $dispatcher->dispatch( @@ -89,4 +142,4 @@ try { $response->headers->set('Content-type', 'application/json'); $response->send(); -} \ No newline at end of file +} diff --git a/examples/relational/other_grants.php b/examples/relational/other_grants.php index 6b399ebd..ceff87f7 100644 --- a/examples/relational/other_grants.php +++ b/examples/relational/other_grants.php @@ -1,24 +1,22 @@ createFromGlobals(); $router = new \Orno\Route\RouteCollection; +$router->setStrategy(\Orno\Route\RouteStrategyInterface::RESTFUL_STRATEGY); -// Set up the OAuth 2.0 resource server +// Set up the OAuth 2.0 authorization server $server = new \League\OAuth2\Server\AuthorizationServer; $server->setSessionStorage(new Storage\SessionStorage); $server->setAccessTokenStorage(new Storage\AccessTokenStorage); @@ -27,6 +25,12 @@ $server->setClientStorage(new Storage\ClientStorage); $server->setScopeStorage(new Storage\ScopeStorage); $server->setAuthCodeStorage(new Storage\AuthCodeStorage); +$clientCredentials = new \League\OAuth2\Server\Grant\ClientCredentialsGrant(); +$server->addGrantType($clientCredentials); +$passwordGrant = new \League\OAuth2\Server\Grant\PasswordGrant(); +$server->addGrantType($passwordGrant); +$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); +$server->addGrantType($refrehTokenGrant); $clientCredentials = new \League\OAuth2\Server\Grant\ClientCredentialsGrant(); $server->addGrantType($clientCredentials); $passwordGrant = new \League\OAuth2\Server\Grant\PasswordGrant(); @@ -34,8 +38,9 @@ $server->addGrantType($passwordGrant); $refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); $server->addGrantType($refrehTokenGrant); +// Routing setup $request = (new Request)->createFromGlobals(); -$server->setRequest($request); +$router = new \Orno\Route\RouteCollection; $router->post('/access_token', function (Request $request) use ($server) { @@ -60,5 +65,42 @@ $router->post('/access_token', function (Request $request) use ($server) { }); $dispatcher = $router->getDispatcher(); -$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); -$response->send(); + +try { + + // A successful response + $response = $dispatcher->dispatch( + $request->getMethod(), + $request->getPathInfo() + ); + +} catch (\Orno\Http\Exception $e) { + + // A failed response + $response = $e->getJsonResponse(); + $response->setContent(json_encode(['status_code' => $e->getStatusCode(), 'message' => $e->getMessage()])); + +} catch (\League\OAuth2\Server\Exception\OAuthException $e) { + + $response = new Response(json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), $e->httpStatusCode); + + foreach ($e->getHttpHeaders() as $header) { + $response->headers($header); + } + +} catch (\Exception $e) { + + $response = new Orno\Http\Response; + $response->setStatusCode(500); + $response->setContent(json_encode(['status_code' => 500, 'message' => $e->getMessage()])); + +} finally { + + // Return the response + $response->headers->set('Content-type', 'application/json'); + $response->send(); + +} From 1a4cc3b750267d33784ab1435c8259c89d9dc988 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:26:26 +0100 Subject: [PATCH 181/270] Return password --- examples/relational/Model/Users.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/relational/Model/Users.php b/examples/relational/Model/Users.php index 6e8f76de..44af86f3 100644 --- a/examples/relational/Model/Users.php +++ b/examples/relational/Model/Users.php @@ -8,7 +8,7 @@ class Users { public function get($username = null) { - $query = Capsule::table('users')->select(['username', 'name', 'email', 'photo']); + $query = Capsule::table('users')->select(['username', 'password', 'name', 'email', 'photo']); if ($username !== null) { $query->where('username', '=', $username); From 0a260f0c8ce58b54f0a1811e2d37c4e7af108ebe Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:26:47 +0100 Subject: [PATCH 182/270] Commented out refresh token for now --- examples/relational/other_grants.php | 3 +++ 1 file changed, 3 insertions(+) diff --git a/examples/relational/other_grants.php b/examples/relational/other_grants.php index ceff87f7..2951c720 100644 --- a/examples/relational/other_grants.php +++ b/examples/relational/other_grants.php @@ -38,6 +38,9 @@ $server->addGrantType($passwordGrant); $refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); $server->addGrantType($refrehTokenGrant); +// $refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); +// $server->addGrantType($refrehTokenGrant); + // Routing setup $request = (new Request)->createFromGlobals(); $router = new \Orno\Route\RouteCollection; From 324da27ea9a7c441c2d75c50fe4082b3ddc565a4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:26:56 +0100 Subject: [PATCH 183/270] Added verify credentials callback --- examples/relational/other_grants.php | 21 +++++++++++++-------- 1 file changed, 13 insertions(+), 8 deletions(-) diff --git a/examples/relational/other_grants.php b/examples/relational/other_grants.php index 2951c720..495af38b 100644 --- a/examples/relational/other_grants.php +++ b/examples/relational/other_grants.php @@ -27,16 +27,21 @@ $server->setAuthCodeStorage(new Storage\AuthCodeStorage); $clientCredentials = new \League\OAuth2\Server\Grant\ClientCredentialsGrant(); $server->addGrantType($clientCredentials); + $passwordGrant = new \League\OAuth2\Server\Grant\PasswordGrant(); +$passwordGrant->setVerifyCredentialsCallback(function ($username, $password) { + $result = (new Model\Users())->get($username); + if (count($result) !== 1) { + return false; + } + + if (password_verify($password, $result[0]['password'])) { + return $username; + } + + return false; +}); $server->addGrantType($passwordGrant); -$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); -$server->addGrantType($refrehTokenGrant); -$clientCredentials = new \League\OAuth2\Server\Grant\ClientCredentialsGrant(); -$server->addGrantType($clientCredentials); -$passwordGrant = new \League\OAuth2\Server\Grant\PasswordGrant(); -$server->addGrantType($passwordGrant); -$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); -$server->addGrantType($refrehTokenGrant); // $refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); // $server->addGrantType($refrehTokenGrant); From 7e0e3371348c685e5e64c112ed92786b8a0d4482 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:27:08 +0100 Subject: [PATCH 184/270] Fixed grant password fuzz test --- tests/fuzz/grant-password.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/tests/fuzz/grant-password.yml b/tests/fuzz/grant-password.yml index 63b0628b..96bcfbea 100644 --- a/tests/fuzz/grant-password.yml +++ b/tests/fuzz/grant-password.yml @@ -30,7 +30,7 @@ request: body.message: "Client authentication failed." - key: username - value: alex + value: alexbilbie missing: response.statusCode: 400 headers.content-type: "application/json" @@ -39,8 +39,8 @@ request: invalid: response.statusCode: 401 headers.content-type: "application/json" - body.error: invalid_client - body.message: "Client authentication failed." + body.error: invalid_credentials + body.message: "The user credentials were incorrect." - key: password value: whisky @@ -52,8 +52,8 @@ request: invalid: response.statusCode: 401 headers.content-type: "application/json" - body.error: invalid_client - body.message: "Client authentication failed." + body.error: invalid_credentials + body.message: "The user credentials were incorrect." - key: grant_type value: password From 90e585ba9ac0026b9d515762ce8506e9499d736b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:27:33 +0100 Subject: [PATCH 185/270] Removed codeception file --- codeception.yml | 17 ----------------- 1 file changed, 17 deletions(-) delete mode 100644 codeception.yml diff --git a/codeception.yml b/codeception.yml deleted file mode 100644 index 306e7396..00000000 --- a/codeception.yml +++ /dev/null @@ -1,17 +0,0 @@ -actor: Tester -paths: - tests: tests - log: tests/_output - data: tests/_data - helpers: tests/_support -settings: - bootstrap: _bootstrap.php - colors: true - memory_limit: 1024M -modules: - config: - Db: - dsn: '' - user: '' - password: '' - dump: tests/_data/dump.sql From f046a024e473797617f85adcb9b617ae5e74524b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 15:28:04 +0100 Subject: [PATCH 186/270] Updated .travis.yml to use FizzFuzz --- .travis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index 229989cd..ff596b66 100644 --- a/.travis.yml +++ b/.travis.yml @@ -23,7 +23,7 @@ before_script: script: - mkdir -p build/logs - phpunit --coverage-text - - ./vendor/bin/codecept run resourceServer -d + - ./vendor/bin/FizzFuzz run tests/fuzz - ./vendor/bin/phpcs src --standard=psr2 after_script: From cd60c2961f81249d0da5a27c27e9340ff8afbf08 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 18:53:44 +0100 Subject: [PATCH 187/270] Removed session ID --- examples/relational/config/init.php | 2 -- 1 file changed, 2 deletions(-) diff --git a/examples/relational/config/init.php b/examples/relational/config/init.php index b5f02c89..1f6a5b8f 100644 --- a/examples/relational/config/init.php +++ b/examples/relational/config/init.php @@ -165,11 +165,9 @@ print 'Creating refresh tokens table'.PHP_EOL; Capsule::schema()->create('oauth_refresh_tokens', function ($table) { $table->string('refresh_token')->primary(); - $table->integer('session_id'); $table->integer('expire_time'); $table->string('access_token'); - $table->foreign('session_id')->references('id')->on('oauth_sessions')->onDelete('cascade'); $table->foreign('access_token')->references('id')->on('oauth_access_tokens')->onDelete('cascade'); }); From 684a8a269e274dfb39b1c2fa764841947d7a51e4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 18:54:01 +0100 Subject: [PATCH 188/270] Updated examples --- .../Storage/RefreshTokenStorage.php | 9 ++- examples/relational/authcode_grant.php | 63 +++++++++++++++---- examples/relational/other_grants.php | 4 +- tests/fuzz/grant-password.yml | 3 + 4 files changed, 64 insertions(+), 15 deletions(-) diff --git a/examples/relational/Storage/RefreshTokenStorage.php b/examples/relational/Storage/RefreshTokenStorage.php index 4a32f92d..8022cc8b 100644 --- a/examples/relational/Storage/RefreshTokenStorage.php +++ b/examples/relational/Storage/RefreshTokenStorage.php @@ -6,6 +6,8 @@ use League\OAuth2\Server\Storage\RefreshTokenInterface; use League\OAuth2\Server\Storage\Adapter; use League\OAuth2\Server\Entity\RefreshTokenEntity; +use Illuminate\Database\Capsule\Manager as Capsule; + class RefreshTokenStorage extends Adapter implements RefreshTokenInterface { /** @@ -21,7 +23,12 @@ class RefreshTokenStorage extends Adapter implements RefreshTokenInterface */ public function create($token, $expireTime, $accessToken) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_refresh_tokens') + ->insert([ + 'refresh_token' => $token, + 'access_token' => $accessToken, + 'expire_time' => $expireTime + ]); } /** diff --git a/examples/relational/authcode_grant.php b/examples/relational/authcode_grant.php index 960147f2..51774676 100644 --- a/examples/relational/authcode_grant.php +++ b/examples/relational/authcode_grant.php @@ -1,24 +1,22 @@ createFromGlobals(); $router = new \Orno\Route\RouteCollection; +$router->setStrategy(\Orno\Route\RouteStrategyInterface::RESTFUL_STRATEGY); -// Set up the OAuth 2.0 resource server +// Set up the OAuth 2.0 authorization server $server = new \League\OAuth2\Server\AuthorizationServer; $server->setSessionStorage(new Storage\SessionStorage); $server->setAccessTokenStorage(new Storage\AccessTokenStorage); @@ -30,8 +28,12 @@ $server->setAuthCodeStorage(new Storage\AuthCodeStorage); $authCodeGrant = new \League\OAuth2\Server\Grant\AuthCodeGrant(); $server->addGrantType($authCodeGrant); +$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); +$server->addGrantType($refrehTokenGrant); + +// Routing setup $request = (new Request)->createFromGlobals(); -$server->setRequest($request); +$router = new \Orno\Route\RouteCollection; $router->get('/authorize', function (Request $request) use ($server) { @@ -96,5 +98,42 @@ $router->post('/access_token', function (Request $request) use ($server) { }); $dispatcher = $router->getDispatcher(); -$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo()); -$response->send(); + +try { + + // A successful response + $response = $dispatcher->dispatch( + $request->getMethod(), + $request->getPathInfo() + ); + +} catch (\Orno\Http\Exception $e) { + + // A failed response + $response = $e->getJsonResponse(); + $response->setContent(json_encode(['status_code' => $e->getStatusCode(), 'message' => $e->getMessage()])); + +} catch (\League\OAuth2\Server\Exception\OAuthException $e) { + + $response = new Response(json_encode([ + 'error' => $e->errorType, + 'message' => $e->getMessage() + ]), $e->httpStatusCode); + + foreach ($e->getHttpHeaders() as $header) { + $response->headers($header); + } + +} catch (\Exception $e) { + + $response = new Orno\Http\Response; + $response->setStatusCode(500); + $response->setContent(json_encode(['status_code' => 500, 'message' => $e->getMessage()])); + +} finally { + + // Return the response + $response->headers->set('Content-type', 'application/json'); + $response->send(); + +} diff --git a/examples/relational/other_grants.php b/examples/relational/other_grants.php index 495af38b..a1c8c442 100644 --- a/examples/relational/other_grants.php +++ b/examples/relational/other_grants.php @@ -43,8 +43,8 @@ $passwordGrant->setVerifyCredentialsCallback(function ($username, $password) { }); $server->addGrantType($passwordGrant); -// $refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); -// $server->addGrantType($refrehTokenGrant); +$refrehTokenGrant = new \League\OAuth2\Server\Grant\RefreshTokenGrant(); +$server->addGrantType($refrehTokenGrant); // Routing setup $request = (new Request)->createFromGlobals(); diff --git a/tests/fuzz/grant-password.yml b/tests/fuzz/grant-password.yml index 96bcfbea..0348c5f2 100644 --- a/tests/fuzz/grant-password.yml +++ b/tests/fuzz/grant-password.yml @@ -80,6 +80,9 @@ response: - key: access_token valueRegex: /([a-zA-Z0-9]*)/ + - + key: refresh_token + valueRegex: /([a-zA-Z0-9]*)/ - key: token_type value: Bearer \ No newline at end of file From 12ab753f15517bdf558577e7de991b6c87e55ecf Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 4 Aug 2014 20:15:31 +0100 Subject: [PATCH 189/270] Updated associateScope method --- examples/relational/Storage/AccessTokenStorage.php | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index e5b6d47c..12bd7737 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -86,7 +86,11 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface */ public function associateScope(AbstractTokenEntity $token, ScopeEntity $scope) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_access_token_scopes') + ->insert([ + 'access_token' => $token->getId(), + 'scope' => $scope->getId() + ]); } /** From 71ac21b70efb011de449165be9e5378b962239cd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:41:50 +0100 Subject: [PATCH 190/270] Removed unnecessary methods --- examples/relational/Storage/AccessTokenStorage.php | 8 -------- examples/relational/Storage/SessionStorage.php | 8 -------- src/Storage/AccessTokenInterface.php | 7 ------- src/Storage/SessionInterface.php | 7 ------- 4 files changed, 30 deletions(-) diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index 12bd7737..cb81c2ff 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -34,14 +34,6 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface return null; } - /** - * {@inheritdoc} - */ - public function getByRefreshToken(RefreshTokenEntity $refreshToken) - { - die(var_dump(__METHOD__, func_get_args())); - } - /** * {@inheritdoc} */ diff --git a/examples/relational/Storage/SessionStorage.php b/examples/relational/Storage/SessionStorage.php index 62e3ba3b..9c02b18f 100644 --- a/examples/relational/Storage/SessionStorage.php +++ b/examples/relational/Storage/SessionStorage.php @@ -13,14 +13,6 @@ use Illuminate\Database\Capsule\Manager as Capsule; class SessionStorage extends Adapter implements SessionInterface { - /** - * {@inheritdoc} - */ - public function get($token) - { - die(var_dump(__METHOD__, func_get_args())); - } - /** * {@inheritdoc} */ diff --git a/src/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php index 29477818..fefa1fc1 100644 --- a/src/Storage/AccessTokenInterface.php +++ b/src/Storage/AccessTokenInterface.php @@ -28,13 +28,6 @@ interface AccessTokenInterface */ public function get($token); - /** - * Get the access token associated with an access token - * @param \League\OAuth2\Server\Entity\RefreshTokenEntity $refreshToken - * @return \League\OAuth2\Server\Entity\AccessTokenEntity - */ - public function getByRefreshToken(RefreshTokenEntity $refreshToken); - /** * Get the scopes for an access token * @param \League\OAuth2\Server\Entity\AbstractTokenEntity $token The access token diff --git a/src/Storage/SessionInterface.php b/src/Storage/SessionInterface.php index dddb2b63..3a1b1c33 100644 --- a/src/Storage/SessionInterface.php +++ b/src/Storage/SessionInterface.php @@ -21,13 +21,6 @@ use League\OAuth2\Server\Entity\ScopeEntity; */ interface SessionInterface { - /** - * Get a session from it's identifier - * @param string $sessionId - * @return \League\OAuth2\Server\Entity\SessionEntity - */ - public function get($sessionId); - /** * Get a session from an access token * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken The access token From 8be92d413d1fe618a70f806508e84ad5fe1e143c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:42:15 +0100 Subject: [PATCH 191/270] Implemented final storage methods --- .../relational/Storage/AccessTokenStorage.php | 4 +++- .../Storage/RefreshTokenStorage.php | 20 +++++++++++++++++-- 2 files changed, 21 insertions(+), 3 deletions(-) diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index cb81c2ff..faccb46c 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -90,6 +90,8 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface */ public function delete(AbstractTokenEntity $token) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_access_token_scopes') + ->where('access_token', $token->getId()) + ->delete(); } } diff --git a/examples/relational/Storage/RefreshTokenStorage.php b/examples/relational/Storage/RefreshTokenStorage.php index 8022cc8b..ab291802 100644 --- a/examples/relational/Storage/RefreshTokenStorage.php +++ b/examples/relational/Storage/RefreshTokenStorage.php @@ -15,7 +15,21 @@ class RefreshTokenStorage extends Adapter implements RefreshTokenInterface */ public function get($token) { - die(var_dump(__METHOD__, func_get_args())); + $result = Capsule::table('oauth_refresh_tokens') + ->where('refresh_token', $token) + ->where('expire_time', '>=', time()) + ->get(); + + if (count($result) === 1) { + $token = (new RefreshTokenEntity($this->server)) + ->setId($result[0]['refresh_token']) + ->setExpireTime($result[0]['expire_time']) + ->setAccessTokenId($result[0]['access_token']); + + return $token; + } + + return null; } /** @@ -36,7 +50,9 @@ class RefreshTokenStorage extends Adapter implements RefreshTokenInterface */ public function delete(RefreshTokenEntity $token) { - die(var_dump(__METHOD__, func_get_args())); + Capsule::table('oauth_refresh_tokens') + ->where('refresh_token', $token->getId()) + ->delete(); } } From 07a42f6f439147e39e0ea78dc014188d1f860d6b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:42:42 +0100 Subject: [PATCH 192/270] Added setAccessTokenId method --- src/Entity/RefreshTokenEntity.php | 30 ++++++++++++++++---- tests/unit/Entity/RefreshTokenEntityTest.php | 19 +++++++++++-- 2 files changed, 40 insertions(+), 9 deletions(-) diff --git a/src/Entity/RefreshTokenEntity.php b/src/Entity/RefreshTokenEntity.php index 7ed35a76..070fddf4 100644 --- a/src/Entity/RefreshTokenEntity.php +++ b/src/Entity/RefreshTokenEntity.php @@ -20,16 +20,34 @@ class RefreshTokenEntity extends AbstractTokenEntity * Access token associated to refresh token * @var \League\OAuth2\Server\Entity\AccessTokenEntity */ - protected $accessToken; + protected $accessTokenEntity; + + /** + * Id of the access token + * @var string + */ + protected $accessTokenId; + + /** + * Set the ID of the associated access token + * @param string $accessToken + * @return self + */ + public function setAccessTokenId($accessTokenId) + { + $this->accessTokenId = $accessTokenId; + + return $this; + } /** * Associate an access token * @param \League\OAuth2\Server\Entity\AccessTokenEntity $accessToken * @return self */ - public function setAccessToken(AccessTokenEntity $accessToken) + public function setAccessToken(AccessTokenEntity $accessTokenEntity) { - $this->accessToken = $accessToken; + $this->accessTokenEntity = $accessTokenEntity; return $this; } @@ -40,11 +58,11 @@ class RefreshTokenEntity extends AbstractTokenEntity */ public function getAccessToken() { - if (! $this->accessToken instanceof AccessTokenEntity) { - $this->accessToken = $this->server->getStorage('access_token')->getByRefreshToken($this); + if (! $this->accessTokenEntity instanceof AccessTokenEntity) { + $this->accessTokenEntity = $this->server->getStorage('access_token')->get($this->accessTokenId); } - return $this->accessToken; + return $this->accessTokenEntity; } /** diff --git a/tests/unit/Entity/RefreshTokenEntityTest.php b/tests/unit/Entity/RefreshTokenEntityTest.php index d0bcc162..6a57436d 100644 --- a/tests/unit/Entity/RefreshTokenEntityTest.php +++ b/tests/unit/Entity/RefreshTokenEntityTest.php @@ -8,8 +8,21 @@ use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\RefreshTokenEntity; use \Mockery as M; -class RefreshTokenTest extends \PHPUnit_Framework_TestCase +class RefreshTokenEntityTest extends \PHPUnit_Framework_TestCase { + public function testSetAccessTokenId() + { + $server = M::mock('League\OAuth2\Server\AbstractServer'); + $entity = new RefreshTokenEntity($server); + $entity->setAccessTokenId('foobar'); + + $reflector = new \ReflectionClass($entity); + $accessTokenProperty = $reflector->getProperty('accessTokenId'); + $accessTokenProperty->setAccessible(true); + + $this->assertSame($accessTokenProperty->getValue($entity), 'foobar'); + } + public function testSetAccessToken() { $server = M::mock('League\OAuth2\Server\AbstractServer'); @@ -17,7 +30,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $entity->setAccessToken((new AccessTokenEntity($server))); $reflector = new \ReflectionClass($entity); - $accessTokenProperty = $reflector->getProperty('accessToken'); + $accessTokenProperty = $reflector->getProperty('accessTokenEntity'); $accessTokenProperty->setAccessible(true); $this->assertTrue($accessTokenProperty->getValue($entity) instanceof AccessTokenEntity); @@ -38,7 +51,7 @@ class RefreshTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); - $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + $accessTokenStorage->shouldReceive('get')->andReturn( (new AccessTokenEntity($server))->setId('foobar') ); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ From 06d5b343d6a88ff0738464ceb6043292f3c617d2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:42:58 +0100 Subject: [PATCH 193/270] Fixed incorrect exception status code and error type --- src/Exception/InvalidRefreshException.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/Exception/InvalidRefreshException.php b/src/Exception/InvalidRefreshException.php index 5c116f84..5ca3d921 100644 --- a/src/Exception/InvalidRefreshException.php +++ b/src/Exception/InvalidRefreshException.php @@ -19,12 +19,12 @@ class InvalidRefreshException extends OAuthException /** * {@inheritdoc} */ - public $httpStatusCode = 401; + public $httpStatusCode = 400; /** * {@inheritdoc} */ - public $errorType = 'invalid_client'; + public $errorType = 'invalid_request'; /** * {@inheritdoc} From 7525fc088436fdb485c990610f5b4bccdd3ec69c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:43:08 +0100 Subject: [PATCH 194/270] Bug fixes --- tests/unit/Grant/RefreshTokenGrantTest.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/tests/unit/Grant/RefreshTokenGrantTest.php b/tests/unit/Grant/RefreshTokenGrantTest.php index e3330d6d..d11555b9 100644 --- a/tests/unit/Grant/RefreshTokenGrantTest.php +++ b/tests/unit/Grant/RefreshTokenGrantTest.php @@ -174,7 +174,7 @@ class RefreshTokenGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); - $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + $accessTokenStorage->shouldReceive('get')->andReturn( (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); @@ -245,7 +245,7 @@ class RefreshTokenGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); - $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + $accessTokenStorage->shouldReceive('get')->andReturn( (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); @@ -316,7 +316,7 @@ class RefreshTokenGrantTest extends \PHPUnit_Framework_TestCase $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); - $accessTokenStorage->shouldReceive('getByRefreshToken')->andReturn( + $accessTokenStorage->shouldReceive('get')->andReturn( (new AccessTokenEntity($server)) ); $accessTokenStorage->shouldReceive('delete'); From ca1b977786bb9353d8f0ff90958353e8cbfc4088 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:43:25 +0100 Subject: [PATCH 195/270] Added another test --- tests/fuzz/grant-client-credentials.yml | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/tests/fuzz/grant-client-credentials.yml b/tests/fuzz/grant-client-credentials.yml index cc0e8519..e56d903f 100644 --- a/tests/fuzz/grant-client-credentials.yml +++ b/tests/fuzz/grant-client-credentials.yml @@ -41,6 +41,14 @@ request: headers.content-type: "application/json" body.error: unsupported_grant_type #body.message: "The authorization grant type XXX is not supported by the authorization server." + - + key: scope + value: "basic" + invalid: + response.statusCode: 400 + headers.content-type: "application/json" + body.error: invalid_scope + border.message: fooooooooo response: statusCode: 200 headers: From 661086d3b84983ddf23b225b98e287dc3c148cca Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:47:28 +0100 Subject: [PATCH 196/270] Removed coveralls and phpcs testing --- .travis.yml | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/.travis.yml b/.travis.yml index ff596b66..24f7e6a3 100644 --- a/.travis.yml +++ b/.travis.yml @@ -23,8 +23,4 @@ before_script: script: - mkdir -p build/logs - phpunit --coverage-text - - ./vendor/bin/FizzFuzz run tests/fuzz - - ./vendor/bin/phpcs src --standard=psr2 - -after_script: - - php vendor/bin/coveralls \ No newline at end of file + - ./vendor/bin/FizzFuzz run tests/fuzz \ No newline at end of file From 1483ce936bbd8491a58d40be59ed8976efe19485 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:51:53 +0100 Subject: [PATCH 197/270] Fizzfuzz is lowercase now --- .travis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index 24f7e6a3..2487994f 100644 --- a/.travis.yml +++ b/.travis.yml @@ -23,4 +23,4 @@ before_script: script: - mkdir -p build/logs - phpunit --coverage-text - - ./vendor/bin/FizzFuzz run tests/fuzz \ No newline at end of file + - ./vendor/bin/fizzfuzz run tests/fuzz \ No newline at end of file From 30abfeefbf4f2ff118f527e22ba7d47e35407c55 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:56:11 +0100 Subject: [PATCH 198/270] Tried removed --prefer-dist --- .travis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.travis.yml b/.travis.yml index 2487994f..45eb133a 100644 --- a/.travis.yml +++ b/.travis.yml @@ -13,7 +13,7 @@ matrix: before_script: - composer self-update - composer require satooshi/php-coveralls:dev-master --no-update --dev - - composer install --prefer-dist + - composer install - cd examples/relational && composer install --prefer-dist - php config/init.php - php -S localhost:8000 & From 6568ca579068925897958777ff6072cc92a26838 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 08:59:48 +0100 Subject: [PATCH 199/270] Removing fizzfuzz for now until I can work out what the hell is wrong with it --- .travis.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 45eb133a..d5aea1e1 100644 --- a/.travis.yml +++ b/.travis.yml @@ -22,5 +22,4 @@ before_script: script: - mkdir -p build/logs - - phpunit --coverage-text - - ./vendor/bin/fizzfuzz run tests/fuzz \ No newline at end of file + - phpunit --coverage-text \ No newline at end of file From 0433791bc686661877aac3d18b5d4a918e06f49b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 09:29:20 +0100 Subject: [PATCH 200/270] Accidentally merged wrong version of file --- src/Util/KeyAlgorithm/DefaultAlgorithm.php | 33 ++++++++-------------- 1 file changed, 11 insertions(+), 22 deletions(-) diff --git a/src/Util/KeyAlgorithm/DefaultAlgorithm.php b/src/Util/KeyAlgorithm/DefaultAlgorithm.php index ec691c7e..fc07b0cb 100644 --- a/src/Util/KeyAlgorithm/DefaultAlgorithm.php +++ b/src/Util/KeyAlgorithm/DefaultAlgorithm.php @@ -1,6 +1,6 @@ @@ -13,34 +13,23 @@ namespace League\OAuth2\Server\Util\KeyAlgorithm; class DefaultAlgorithm implements KeyAlgorithmInterface { - protected static $algorithm; - /** * {@inheritdoc} */ public function generate($len = 40) { - return self::getAlgorithm()->make($len); - } + // We generate twice as many bytes here because we want to ensure we have + // enough after we base64 encode it to get the length we need because we + // take out the "/", "+", and "=" characters. + $bytes = openssl_random_pseudo_bytes($len * 2, $strong); - /** - * @param KeyAlgorithmInterface $algorithm - */ - public static function setAlgorithm(KeyAlgorithmInterface $algorithm) - { - self::$algorithm = $algorithm; - } - - /** - * @return KeyAlgorithmInterface - */ - public static function getAlgorithm() - { - if (!self::$algorithm) { - - self::$algorithm = new DefaultAlgorithm(); + // We want to stop execution if the key fails because, well, that is bad. + if ($bytes === false || $strong === false) { + // @codeCoverageIgnoreStart + throw new \Exception('Error Generating Key'); + // @codeCoverageIgnoreEnd } - return self::$algorithm; + return substr(str_replace(array('/', '+', '='), '', base64_encode($bytes)), 0, $len); } } From 130d42c85e35f0c03302ea9232bcd0a67673e77c Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 09:37:19 +0100 Subject: [PATCH 201/270] Removed some files which shouldn't be there --- .../Exception/InsufficientScopeException.php | 20 - .../Exception/MissingAccessTokenException.php | 20 - .../OAuth2/Server/Grant/RefreshToken.php | 207 --------- src/League/OAuth2/Server/Resource.php | 395 ------------------ .../Server/Storage/SessionInterface.php | 332 --------------- .../Util/KeyAlgorithm/DefaultAlgorithm.php | 38 -- .../KeyAlgorithm/KeyAlgorithmInterface.php | 18 - src/League/OAuth2/Server/Util/Request.php | 149 ------- 8 files changed, 1179 deletions(-) delete mode 100644 src/League/OAuth2/Server/Exception/InsufficientScopeException.php delete mode 100644 src/League/OAuth2/Server/Exception/MissingAccessTokenException.php delete mode 100644 src/League/OAuth2/Server/Grant/RefreshToken.php delete mode 100644 src/League/OAuth2/Server/Resource.php delete mode 100644 src/League/OAuth2/Server/Storage/SessionInterface.php delete mode 100644 src/League/OAuth2/Server/Util/KeyAlgorithm/DefaultAlgorithm.php delete mode 100644 src/League/OAuth2/Server/Util/KeyAlgorithm/KeyAlgorithmInterface.php delete mode 100644 src/League/OAuth2/Server/Util/Request.php diff --git a/src/League/OAuth2/Server/Exception/InsufficientScopeException.php b/src/League/OAuth2/Server/Exception/InsufficientScopeException.php deleted file mode 100644 index 04f66848..00000000 --- a/src/League/OAuth2/Server/Exception/InsufficientScopeException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) 2014 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * InsufficientScope Exception - */ -class InsufficientScopeException extends OAuth2Exception -{ - -} diff --git a/src/League/OAuth2/Server/Exception/MissingAccessTokenException.php b/src/League/OAuth2/Server/Exception/MissingAccessTokenException.php deleted file mode 100644 index 7bc3fe83..00000000 --- a/src/League/OAuth2/Server/Exception/MissingAccessTokenException.php +++ /dev/null @@ -1,20 +0,0 @@ - - * @copyright Copyright (c) 2014 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Exception; - -/** - * MissingAccessToken Exception - */ -class MissingAccessTokenException extends OAuth2Exception -{ - -} diff --git a/src/League/OAuth2/Server/Grant/RefreshToken.php b/src/League/OAuth2/Server/Grant/RefreshToken.php deleted file mode 100644 index baf890f3..00000000 --- a/src/League/OAuth2/Server/Grant/RefreshToken.php +++ /dev/null @@ -1,207 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Grant; - -use League\OAuth2\Server\Request; -use League\OAuth2\Server\Authorization; -use League\OAuth2\Server\Exception; -use League\OAuth2\Server\Util\SecureKey; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Storage\ClientInterface; -use League\OAuth2\Server\Storage\ScopeInterface; - -/** - * Referesh token grant - */ -class RefreshToken implements GrantTypeInterface { - - use GrantTrait; - - /** - * Grant identifier - * @var string - */ - protected $identifier = 'refresh_token'; - - /** - * Response type - * @var string - */ - protected $responseType = null; - - /** - * AuthServer instance - * @var AuthServer - */ - protected $authServer = null; - - /** - * Access token expires in override - * @var int - */ - protected $accessTokenTTL = null; - - /** - * Refresh token TTL - * @var integer - */ - protected $refreshTokenTTL = 604800; - - /** - * Rotate refresh tokens - * @var boolean - */ - protected $rotateRefreshTokens = false; - - /** - * Set the TTL of the refresh token - * @param int $refreshTokenTTL - * @return void - */ - public function setRefreshTokenTTL($refreshTokenTTL) - { - $this->refreshTokenTTL = $refreshTokenTTL; - } - - /** - * Get the TTL of the refresh token - * @return int - */ - public function getRefreshTokenTTL() - { - return $this->refreshTokenTTL; - } - - /** - * When a new access is token, expire the refresh token used and issue a new one. - * @param boolean $rotateRefreshTokens Set to true to enable (default = false) - * @return void - */ - public function rotateRefreshTokens($rotateRefreshTokens = false) - { - $this->rotateRefreshTokens = $rotateRefreshTokens; - } - - /** - * Complete the refresh token grant - * @param null|array $inputParams - * @return array - */ - public function completeFlow($inputParams = null) - { - // Get the required params - $authParams = $this->authServer->getParam(array('client_id', 'client_secret', 'refresh_token', 'scope'), 'post', $inputParams); - - if (is_null($authParams['client_id'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_id'), 0); - } - - if (is_null($authParams['client_secret'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'client_secret'), 0); - } - - // Validate client ID and client secret - $clientDetails = $this->authServer->getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], null, $this->identifier); - - if ($clientDetails === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_client'), 8); - } - - $authParams['client_details'] = $clientDetails; - - if (is_null($authParams['refresh_token'])) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'refresh_token'), 0); - } - - // Validate refresh token - $accessTokenId = $this->authServer->getStorage('session')->validateRefreshToken($authParams['refresh_token'], $authParams['client_id']); - - if ($accessTokenId === false) { - throw new Exception\ClientException($this->authServer->getExceptionMessage('invalid_refresh'), 0); - } - - // Get the existing access token - $accessTokenDetails = $this->authServer->getStorage('session')->getAccessToken($accessTokenId); - - // Get the scopes for the existing access token - $scopes = $this->authServer->getStorage('session')->getScopes($accessTokenDetails['access_token']); - - // Generate new tokens and associate them to the session - $accessToken = SecureKey::make(); - $accessTokenExpiresIn = ($this->accessTokenTTL !== null) ? $this->accessTokenTTL : $this->authServer->getAccessTokenTTL(); - $accessTokenExpires = time() + $accessTokenExpiresIn; - - // Associate the new access token with the session - $newAccessTokenId = $this->authServer->getStorage('session')->associateAccessToken($accessTokenDetails['session_id'], $accessToken, $accessTokenExpires); - - if ($this->rotateRefreshTokens === true) { - - // Generate a new refresh token - $refreshToken = SecureKey::make(); - $refreshTokenExpires = time() + $this->getRefreshTokenTTL(); - - // Revoke the old refresh token - $this->authServer->getStorage('session')->removeRefreshToken($authParams['refresh_token']); - - // Associate the new refresh token with the new access token - $this->authServer->getStorage('session')->associateRefreshToken($newAccessTokenId, $refreshToken, $refreshTokenExpires, $authParams['client_id']); - } - - // There isn't a request for reduced scopes so assign the original ones (or we're not rotating scopes) - if ( ! isset($authParams['scope'])) { - - foreach ($scopes as $scope) { - $this->authServer->getStorage('session')->associateScope($newAccessTokenId, $scope['id']); - } - - } elseif ( isset($authParams['scope']) && $this->rotateRefreshTokens === true) { - - // The request is asking for reduced scopes and rotate tokens is enabled - $reqestedScopes = explode($this->authServer->getScopeDelimeter(), $authParams['scope']); - - for ($i = 0; $i < count($reqestedScopes); $i++) { - $reqestedScopes[$i] = trim($reqestedScopes[$i]); - if ($reqestedScopes[$i] === '') unset($reqestedScopes[$i]); // Remove any junk scopes - } - - // Check that there aren't any new scopes being included - $existingScopes = array(); - foreach ($scopes as $s) { - $existingScopes[] = $s['scope']; - } - - foreach ($reqestedScopes as $reqScope) { - if ( ! in_array($reqScope, $existingScopes)) { - throw new Exception\ClientException(sprintf($this->authServer->getExceptionMessage('invalid_request'), 'scope'), 0); - } - - // Associate with the new access token - $scopeDetails = $this->authServer->getStorage('scope')->getScope($reqScope, $authParams['client_id'], $this->identifier); - $this->authServer->getStorage('session')->associateScope($newAccessTokenId, $scopeDetails['id']); - } - } - - $response = array( - 'access_token' => $accessToken, - 'token_type' => 'Bearer', - 'expires' => $accessTokenExpires, - 'expires_in' => $accessTokenExpiresIn - ); - - if ($this->rotateRefreshTokens === true) { - $response['refresh_token'] = $refreshToken; - } - - return $response; - } - -} diff --git a/src/League/OAuth2/Server/Resource.php b/src/League/OAuth2/Server/Resource.php deleted file mode 100644 index 898a3801..00000000 --- a/src/League/OAuth2/Server/Resource.php +++ /dev/null @@ -1,395 +0,0 @@ - - * @author Woody Gilk - * @copyright Copyright (c) 2013-2014 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server; - -use OutOfBoundsException; -use League\OAuth2\Server\Storage\SessionInterface; -use League\OAuth2\Server\Util\RequestInterface; -use League\OAuth2\Server\Util\Request; - -/** - * OAuth 2.0 Resource Server - */ -class Resource -{ - /** - * The access token - * @var string - */ - protected $accessToken = null; - - /** - * The session ID - * @var string - */ - protected $sessionId = null; - - /** - * The type of the owner of the access token - * @var string - */ - protected $ownerType = null; - - /** - * The ID of the owner of the access token - * @var string - */ - protected $ownerId = null; - - /** - * The scopes associated with the access token - * @var array - */ - protected $sessionScopes = array(); - - /** - * The client, scope and session storage classes - * @var array - */ - protected $storages = array(); - - /** - * The request object - * @var Util\RequestInterface - */ - protected $request = null; - - /** - * The query string key which is used by clients to present the access token (default: access_token) - * @var string - */ - protected $tokenKey = 'access_token'; - - /** - * The client ID - * @var string - */ - protected $clientId = null; - - /** - * Exception error codes - * @var array - */ - protected static $exceptionCodes = array( - 0 => 'invalid_request', - 1 => 'invalid_token', - 2 => 'insufficient_scope', - ); - - /** - * Exception error messages - * @var array - */ - protected static $exceptionMessages = array( - 'invalid_request' => 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. Check the "%s" parameter.', - 'invalid_token' => 'The access token provided is expired, revoked, malformed, or invalid for other reasons.', - 'insufficient_scope' => 'The request requires higher privileges than provided by the access token. Required scopes are: %s.', - ); - - /** - * Exception error HTTP status codes - * @var array - * - * RFC 6750, section 3.1: - * When a request fails, the resource server responds using the - * appropriate HTTP status code (typically, 400, 401, 403, or 405) and - * includes one of the following error codes in the response: - */ - protected static $exceptionHttpStatusCodes = array( - 'invalid_request' => 400, - 'invalid_token' => 401, - 'insufficient_scope' => 403, - ); - - /** - * Get an exception message - * - * @param string $error The error message key - * @return string The error message - */ - public static function getExceptionMessage($error = '') - { - return self::$exceptionMessages[$error]; - } - - /** - * Get an exception code - * - * @param integer $code The exception code - * @return string The exception code type - */ - public static function getExceptionType($code = 0) - { - return self::$exceptionCodes[$code]; - } - - /** - * Get all headers that have to be send with the error response - * - * @param string $error The error message key - * @return array Array with header values - */ - public static function getExceptionHttpHeaders($error) - { - $headers = array(); - switch (self::$exceptionHttpStatusCodes[$error]) { - case 401: - $headers[] = 'HTTP/1.1 401 Unauthorized'; - break; - case 403: - $headers[] = 'HTTP/1.1 403 Forbidden'; - break; - case 400: - default: - $headers[] = 'HTTP/1.1 400 Bad Request'; - } - - // Add "WWW-Authenticate" header - // - // RFC 6749, section 5.2.: - // "If the client attempted to authenticate via the 'Authorization' - // request header field, the authorization server MUST - // respond with an HTTP 401 (Unauthorized) status code and - // include the "WWW-Authenticate" response header field - // matching the authentication scheme used by the client. - // @codeCoverageIgnoreStart - if ($error === 'invalid_token') { - $authScheme = null; - $request = Request::buildFromGlobals(); - if ($request->server('PHP_AUTH_USER') !== null) { - $authScheme = 'Basic'; - } else { - $authHeader = $request->header('Authorization'); - if ($authHeader !== null) { - if (strpos($authHeader, 'Bearer') === 0) { - $authScheme = 'Bearer'; - } elseif (strpos($authHeader, 'Basic') === 0) { - $authScheme = 'Basic'; - } - } - } - if ($authScheme !== null) { - $headers[] = 'WWW-Authenticate: '.$authScheme.' realm=""'; - } - } - // @codeCoverageIgnoreEnd - - return $headers; - } - - /** - * Sets up the Resource - * - * @param SessionInterface The Session Storage Object - */ - public function __construct(SessionInterface $session) - { - $this->storages['session'] = $session; - } - - /** - * Sets the Request Object - * - * @param RequestInterface The Request Object - */ - public function setRequest(RequestInterface $request) - { - $this->request = $request; - return $this; - } - - /** - * Gets the Request object. It will create one from the globals if one is not set. - * - * @return Util\RequestInterface - */ - public function getRequest() - { - if ($this->request === null) { - // @codeCoverageIgnoreStart - $this->request = Request::buildFromGlobals(); - } - // @codeCoverageIgnoreEnd - - return $this->request; - } - - /** - * Returns the query string key for the access token. - * - * @return string - */ - public function getTokenKey() - { - return $this->tokenKey; - } - - /** - * Sets the query string key for the access token. - * - * @param $key The new query string key - */ - public function setTokenKey($key) - { - $this->tokenKey = $key; - return $this; - } - - /** - * Gets the access token owner ID. - * - * @return string - */ - public function getOwnerId() - { - return $this->ownerId; - } - - /** - * Gets the owner type. - * - * @return string - */ - public function getOwnerType() - { - return $this->ownerType; - } - - /** - * Gets the access token. - * - * @return string - */ - public function getAccessToken() - { - return $this->accessToken; - } - - /** - * Gets the client ID that created the session - * @return string - */ - public function getClientId() - { - return $this->clientId; - } - - /** - * Checks if the access token is valid or not. - * - * @param $headersOnly Limit Access Token to Authorization header only - * @throws Exception\InvalidAccessTokenException Thrown if the presented access token is not valid - * @return bool - */ - public function isValid($headersOnly = false) - { - $accessToken = $this->determineAccessToken($headersOnly); - - $result = $this->storages['session']->validateAccessToken($accessToken); - - if (! $result) { - throw new Exception\InvalidAccessTokenException(self::$exceptionMessages['invalid_token'], 1); - } - - $this->accessToken = $accessToken; - $this->sessionId = $result['session_id']; - $this->clientId = $result['client_id']; - $this->ownerType = $result['owner_type']; - $this->ownerId = $result['owner_id']; - - $sessionScopes = $this->storages['session']->getScopes($this->accessToken); - foreach ($sessionScopes as $scope) { - $this->sessionScopes[] = $scope['scope']; - } - - return true; - } - - /** - * Get the session scopes - * @return array - */ - public function getScopes() - { - return $this->sessionScopes; - } - - /** - * Checks if the presented access token has the given scope(s). - * - * @param array|string An array of scopes or a single scope as a string - * @param bool If scopes are required, missing scope will trigger an exception - * @throws Exception\InsufficientScopeException Thrown if the any of the given scopes are not in the session - * @return bool Returns bool if all scopes are found, false if any fail - */ - public function hasScope($scopes, $required = false) - { - if (!is_array($scopes)) { - $scopes = array($scopes); - } - - $missing = array_diff($scopes, $this->sessionScopes); - - if ($missing) { - if ($required) { - $missing = implode(', ', $missing); - throw new Exception\InsufficientScopeException(sprintf(self::$exceptionMessages['insufficient_scope'], $missing), 3); - } - return false; - } - return true; - } - - /** - * Reads in the access token from the headers. - * - * @param $headersOnly Limit Access Token to Authorization header only - * @throws Exception\MissingAccessTokenException Thrown if there is no access token presented - * @return string - */ - public function determineAccessToken($headersOnly = false) - { - // Try to get it directly from a header - if (! $header = $this->getRequest()->header('Authorization')) { - - // Failing that try getting it from a server variable - $header = $this->getRequest()->server('HTTP_AUTHORIZATION'); - } - - // One of them worked - if ($header) { - // Check for special case, because cURL sometimes does an - // internal second request and doubles the authorization header, - // which always resulted in an error. - // - // 1st request: Authorization: Bearer XXX - // 2nd request: Authorization: Bearer XXX, Bearer XXX - if (strpos($header, ',') !== false) { - $headerPart = explode(',', $header); - $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $headerPart[0])); - } else { - $accessToken = trim(preg_replace('/^(?:\s+)?Bearer\s/', '', $header)); - } - $accessToken = ($accessToken === 'Bearer') ? '' : $accessToken; - } elseif ($headersOnly === false) { - $method = $this->getRequest()->server('REQUEST_METHOD'); - $accessToken = $this->getRequest()->{$method}($this->tokenKey); - } - - if (empty($accessToken)) { - throw new Exception\MissingAccessTokenException(self::$exceptionMessages['invalid_request'], 0); - } - - return $accessToken; - } -} diff --git a/src/League/OAuth2/Server/Storage/SessionInterface.php b/src/League/OAuth2/Server/Storage/SessionInterface.php deleted file mode 100644 index f40b1406..00000000 --- a/src/League/OAuth2/Server/Storage/SessionInterface.php +++ /dev/null @@ -1,332 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Storage; - -interface SessionInterface -{ - /** - * Create a new session - * - * Example SQL query: - * - * - * INSERT INTO oauth_sessions (client_id, owner_type, owner_id) - * VALUE (:clientId, :ownerType, :ownerId) - * - * - * @param string $clientId The client ID - * @param string $ownerType The type of the session owner (e.g. "user") - * @param string $ownerId The ID of the session owner (e.g. "123") - * @return int The session ID - */ - public function createSession($clientId, $ownerType, $ownerId); - - /** - * Delete a session - * - * Example SQL query: - * - * - * DELETE FROM oauth_sessions WHERE client_id = :clientId AND owner_type = :type AND owner_id = :typeId - * - * - * @param string $clientId The client ID - * @param string $ownerType The type of the session owner (e.g. "user") - * @param string $ownerId The ID of the session owner (e.g. "123") - * @return void - */ - public function deleteSession($clientId, $ownerType, $ownerId); - - /** - * Associate a redirect URI with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_redirects (session_id, redirect_uri) VALUE (:sessionId, :redirectUri) - * - * - * @param int $sessionId The session ID - * @param string $redirectUri The redirect URI - * @return void - */ - public function associateRedirectUri($sessionId, $redirectUri); - - /** - * Associate an access token with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_access_tokens (session_id, access_token, access_token_expires) - * VALUE (:sessionId, :accessToken, :accessTokenExpire) - * - * - * @param int $sessionId The session ID - * @param string $accessToken The access token - * @param int $expireTime Unix timestamp of the access token expiry time - * @return int The access token ID - */ - public function associateAccessToken($sessionId, $accessToken, $expireTime); - - /** - * Associate a refresh token with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_refresh_tokens (session_access_token_id, refresh_token, refresh_token_expires, - * client_id) VALUE (:accessTokenId, :refreshToken, :expireTime, :clientId) - * - * - * @param int $accessTokenId The access token ID - * @param string $refreshToken The refresh token - * @param int $expireTime Unix timestamp of the refresh token expiry time - * @param string $clientId The client ID - * @return void - */ - public function associateRefreshToken($accessTokenId, $refreshToken, $expireTime, $clientId); - - /** - * Assocate an authorization code with a session - * - * Example SQL query: - * - * - * INSERT INTO oauth_session_authcodes (session_id, auth_code, auth_code_expires) - * VALUE (:sessionId, :authCode, :authCodeExpires) - * - * - * @param int $sessionId The session ID - * @param string $authCode The authorization code - * @param int $expireTime Unix timestamp of the access token expiry time - * @return int The auth code ID - */ - public function associateAuthCode($sessionId, $authCode, $expireTime); - - /** - * Remove an associated authorization token from a session - * - * Example SQL query: - * - * - * DELETE FROM oauth_session_authcodes WHERE session_id = :sessionId - * - * - * @param int $sessionId The session ID - * @return void - */ - public function removeAuthCode($sessionId); - - /** - * Validate an authorization code - * - * Example SQL query: - * - * - * SELECT oauth_sessions.id AS session_id, oauth_session_authcodes.id AS authcode_id FROM oauth_sessions - * JOIN oauth_session_authcodes ON oauth_session_authcodes.`session_id` = oauth_sessions.id - * JOIN oauth_session_redirects ON oauth_session_redirects.`session_id` = oauth_sessions.id WHERE - * oauth_sessions.client_id = :clientId AND oauth_session_authcodes.`auth_code` = :authCode - * AND `oauth_session_authcodes`.`auth_code_expires` >= :time AND - * `oauth_session_redirects`.`redirect_uri` = :redirectUri - * - * - * Expected response: - * - * - * array( - * 'session_id' => (int) - * 'authcode_id' => (int) - * ) - * - * - * @param string $clientId The client ID - * @param string $redirectUri The redirect URI - * @param string $authCode The authorization code - * @return array|bool False if invalid or array as above - */ - public function validateAuthCode($clientId, $redirectUri, $authCode); - - /** - * Validate an access token - * - * Example SQL query: - * - * - * SELECT session_id, oauth_sessions.`client_id`, oauth_sessions.`owner_id`, oauth_sessions.`owner_type` - * FROM `oauth_session_access_tokens` JOIN oauth_sessions ON oauth_sessions.`id` = session_id WHERE - * access_token = :accessToken AND access_token_expires >= UNIX_TIMESTAMP(NOW()) - * - * - * Expected response: - * - * - * array( - * 'session_id' => (int), - * 'client_id' => (string), - * 'owner_id' => (string), - * 'owner_type' => (string) - * ) - * - * - * @param string $accessToken The access token - * @return array|bool False if invalid or an array as above - */ - public function validateAccessToken($accessToken); - - /** - * Removes a refresh token - * - * Example SQL query: - * - * - * DELETE FROM `oauth_session_refresh_tokens` WHERE refresh_token = :refreshToken - * - * - * @param string $refreshToken The refresh token to be removed - * @return void - */ - public function removeRefreshToken($refreshToken); - - /** - * Validate a refresh token - * - * Example SQL query: - * - * - * SELECT session_access_token_id FROM `oauth_session_refresh_tokens` WHERE refresh_token = :refreshToken - * AND refresh_token_expires >= UNIX_TIMESTAMP(NOW()) AND client_id = :clientId - * - * - * @param string $refreshToken The refresh token - * @param string $clientId The client ID - * @return int|bool The ID of the access token the refresh token is linked to (or false if invalid) - */ - public function validateRefreshToken($refreshToken, $clientId); - - /** - * Get an access token by ID - * - * Example SQL query: - * - * - * SELECT * FROM `oauth_session_access_tokens` WHERE `id` = :accessTokenId - * - * - * Expected response: - * - * - * array( - * 'id' => (int), - * 'session_id' => (int), - * 'access_token' => (string), - * 'access_token_expires' => (int) - * ) - * - * - * @param int $accessTokenId The access token ID - * @return array - */ - public function getAccessToken($accessTokenId); - - /** - * Associate scopes with an auth code (bound to the session) - * - * Example SQL query: - * - * - * INSERT INTO `oauth_session_authcode_scopes` (`oauth_session_authcode_id`, `scope_id`) VALUES - * (:authCodeId, :scopeId) - * - * - * @param int $authCodeId The auth code ID - * @param int $scopeId The scope ID - * @return void - */ - public function associateAuthCodeScope($authCodeId, $scopeId); - - /** - * Get the scopes associated with an auth code - * - * Example SQL query: - * - * - * SELECT scope_id FROM `oauth_session_authcode_scopes` WHERE oauth_session_authcode_id = :authCodeId - * - * - * Expected response: - * - * - * array( - * array( - * 'scope_id' => (int) - * ), - * array( - * 'scope_id' => (int) - * ), - * ... - * ) - * - * - * @param int $oauthSessionAuthCodeId The session ID - * @return array - */ - public function getAuthCodeScopes($oauthSessionAuthCodeId); - - /** - * Associate a scope with an access token - * - * Example SQL query: - * - * - * INSERT INTO `oauth_session_token_scopes` (`session_access_token_id`, `scope_id`) VALUE (:accessTokenId, :scopeId) - * - * - * @param int $accessTokenId The ID of the access token - * @param int $scopeId The ID of the scope - * @return void - */ - public function associateScope($accessTokenId, $scopeId); - - /** - * Get all associated access tokens for an access token - * - * Example SQL query: - * - * - * SELECT oauth_scopes.* FROM oauth_session_token_scopes JOIN oauth_session_access_tokens - * ON oauth_session_access_tokens.`id` = `oauth_session_token_scopes`.`session_access_token_id` - * JOIN oauth_scopes ON oauth_scopes.id = `oauth_session_token_scopes`.`scope_id` - * WHERE access_token = :accessToken - * - * - * Expected response: - * - * - * array ( - * array( - * 'id' => (int), - * 'scope' => (string), - * 'name' => (string), - * 'description' => (string) - * ), - * ... - * ... - * ) - * - * - * @param string $accessToken The access token - * @return array - */ - public function getScopes($accessToken); -} diff --git a/src/League/OAuth2/Server/Util/KeyAlgorithm/DefaultAlgorithm.php b/src/League/OAuth2/Server/Util/KeyAlgorithm/DefaultAlgorithm.php deleted file mode 100644 index de9aaff1..00000000 --- a/src/League/OAuth2/Server/Util/KeyAlgorithm/DefaultAlgorithm.php +++ /dev/null @@ -1,38 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Util\KeyAlgorithm; - - -class DefaultAlgorithm implements KeyAlgorithmInterface -{ - /** - * @param int $len - * @return string - * @throws \Exception - */ - public function make($len = 40) - { - // We generate twice as many bytes here because we want to ensure we have - // enough after we base64 encode it to get the length we need because we - // take out the "/", "+", and "=" characters. - $bytes = openssl_random_pseudo_bytes($len * 2, $strong); - - // We want to stop execution if the key fails because, well, that is bad. - if ($bytes === false || $strong === false) { - // @codeCoverageIgnoreStart - throw new \Exception('Error Generating Key'); - // @codeCoverageIgnoreEnd - } - - return substr(str_replace(array('/', '+', '='), '', base64_encode($bytes)), 0, $len); - } -} \ No newline at end of file diff --git a/src/League/OAuth2/Server/Util/KeyAlgorithm/KeyAlgorithmInterface.php b/src/League/OAuth2/Server/Util/KeyAlgorithm/KeyAlgorithmInterface.php deleted file mode 100644 index 583daf71..00000000 --- a/src/League/OAuth2/Server/Util/KeyAlgorithm/KeyAlgorithmInterface.php +++ /dev/null @@ -1,18 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Util\KeyAlgorithm; - - -interface KeyAlgorithmInterface -{ - public function make($len = 40); -} \ No newline at end of file diff --git a/src/League/OAuth2/Server/Util/Request.php b/src/League/OAuth2/Server/Util/Request.php deleted file mode 100644 index 5e20923e..00000000 --- a/src/League/OAuth2/Server/Util/Request.php +++ /dev/null @@ -1,149 +0,0 @@ - - * @copyright Copyright (c) 2013 PHP League of Extraordinary Packages - * @license http://mit-license.org/ - * @link http://github.com/php-loep/oauth2-server - */ - -namespace League\OAuth2\Server\Util; - -use OutOfBoundsException; -use InvalidMethodCallException; -use InvalidArgumentException; - -class Request implements RequestInterface -{ - protected $get = array(); - protected $post = array(); - protected $cookies = array(); - protected $files = array(); - protected $server = array(); - protected $headers = array(); - - public static function buildFromGlobals() - { - return new static($_GET, $_POST, $_COOKIE, $_FILES, $_SERVER); - } - - public function __construct(array $get = array(), array $post = array(), array $cookies = array(), array $files = array(), array $server = array(), $headers = array()) - { - $this->get = $get; - $this->post = $post; - $this->cookies = $cookies; - $this->files = $files; - $this->server = $server; - - if (empty($headers)) { - $this->headers = $this->readHeaders(); - } else { - $this->headers = $this->normalizeHeaders($headers); - } - } - - public function get($index = null, $default = null) - { - return $this->getPropertyValue('get', $index, $default); - } - - public function post($index = null, $default = null) - { - return $this->getPropertyValue('post', $index, $default); - } - - public function file($index = null, $default = null) - { - return $this->getPropertyValue('files', $index, $default); - } - - public function cookie($index = null, $default = null) - { - return $this->getPropertyValue('cookies', $index, $default); - } - - public function server($index = null, $default = null) - { - return $this->getPropertyValue('server', $index, $default); - } - - public function header($index = null, $default = null) - { - return $this->getPropertyValue('headers', $index, $default); - } - - protected function readHeaders() - { - if (function_exists('apache_request_headers')) { - // @codeCoverageIgnoreStart - $headers = apache_request_headers(); - } elseif (function_exists('http_get_request_headers')) { - $headers = http_get_request_headers(); - } else { - // @codeCoverageIgnoreEnd - $headers = array(); - foreach ($this->server() as $name => $value) { - if (substr($name, 0, 5) == 'HTTP_') { - // HTTP_FOO_BAR becomes FOO-BAR - $name = str_replace(array('HTTP_', '_'), array('', '-'), $name); - $headers[$name] = $value; - } - } - } - - return $this->normalizeHeaders($headers); - } - - protected function getPropertyValue($property, $index = null, $default = null) - { - if ( ! isset($this->{$property})) { - throw new InvalidArgumentException("Property '$property' does not exist."); - } - if (is_null($index)) { - return $this->{$property}; - } - - if ( ! array_key_exists($index, $this->{$property})) { - return $default; - } - - return $this->{$property}[$index]; - } - - /** - * Takes all of the headers and normalizes them in a canonical form. - * - * @param array $headers The request headers. - * @return array An arry of headers with the header name normalized - */ - protected function normalizeHeaders(array $headers) - { - $normalized = array(); - foreach ($headers as $key => $value) { - $normalized[ucfirst($this->normalizeKey($key))] = $value; - } - - return $normalized; - } - - /** - * Transform header name into canonical form - * - * Taken from the Slim codebase... - * - * @param string $key - * @return string - */ - protected function normalizeKey($key) - { - $key = strtolower($key); - $key = str_replace(array('-', '_'), ' ', $key); - $key = preg_replace('#^http #', '', $key); - $key = ucwords($key); - $key = str_replace(' ', '-', $key); - - return $key; - } -} From 522c7478c70f82398efff9b9dbe85807bf3e2cb2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 09:53:47 +0100 Subject: [PATCH 202/270] Fix #169 --- src/Exception/InvalidRequestException.php | 4 +- src/Exception/InvalidScopeException.php | 4 +- src/Exception/OAuthException.php | 15 +++ .../UnsupportedResponseTypeException.php | 1 + src/Grant/AbstractGrant.php | 2 +- src/Grant/AuthCodeGrant.php | 30 ++--- tests/unit/Grant/AuthCodeGrantTest.php | 121 ++++++++++-------- 7 files changed, 109 insertions(+), 68 deletions(-) diff --git a/src/Exception/InvalidRequestException.php b/src/Exception/InvalidRequestException.php index 56dd75df..cafa7df3 100644 --- a/src/Exception/InvalidRequestException.php +++ b/src/Exception/InvalidRequestException.php @@ -30,7 +30,7 @@ class InvalidRequestException extends OAuthException * {@inheritdoc} */ - public function __construct($parameter) + public function __construct($parameter, $shouldRedirect = false) { parent::__construct( sprintf( @@ -38,5 +38,7 @@ class InvalidRequestException extends OAuthException $parameter ) ); + + $this->serverShouldRedirect = $shouldRedirect; } } diff --git a/src/Exception/InvalidScopeException.php b/src/Exception/InvalidScopeException.php index eb74213d..0120ca23 100644 --- a/src/Exception/InvalidScopeException.php +++ b/src/Exception/InvalidScopeException.php @@ -30,7 +30,7 @@ class InvalidScopeException extends OAuthException * {@inheritdoc} */ - public function __construct($parameter) + public function __construct($parameter, $shouldRedirect = false) { parent::__construct( sprintf( @@ -38,5 +38,7 @@ class InvalidScopeException extends OAuthException $parameter ) ); + + $this->serverShouldRedirect = $shouldRedirect; } } diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index 5cbb0b3a..c4e8d157 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -23,6 +23,12 @@ class OAuthException extends \Exception */ public $httpStatusCode = 400; + /** + * If true the server should redirect back to the client + * @var boolean + */ + public $serverShouldRedirect = false; + /** * The exception type */ @@ -36,6 +42,15 @@ class OAuthException extends \Exception parent::__construct($msg); } + /** + * Should the server redirect back to the client? + * @return bool + */ + public function shouldRedirect() + { + return $this->serverShouldRedirect; + } + /** * Get all headers that have to be send with the error response * @return array Array with header values diff --git a/src/Exception/UnsupportedResponseTypeException.php b/src/Exception/UnsupportedResponseTypeException.php index 05677686..cfd74c1a 100644 --- a/src/Exception/UnsupportedResponseTypeException.php +++ b/src/Exception/UnsupportedResponseTypeException.php @@ -32,5 +32,6 @@ class UnsupportedResponseTypeException extends OAuthException public function __construct($parameter) { parent::__construct('The authorization server does not support obtaining an access token using this method.'); + $this->serverShouldRedirect = true; } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 10195c79..93e45020 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -144,7 +144,7 @@ abstract class AbstractGrant implements GrantTypeInterface ); if (($scope instanceof ScopeEntity) === false) { - throw new Exception\InvalidScopeException($scopeItem); + throw new Exception\InvalidScopeException($scopeItem, true); } $scopes[$scope->getId()] = $scope; diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index b7fee22c..04ee914d 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -83,21 +83,6 @@ class AuthCodeGrant extends AbstractGrant throw new Exception\InvalidRequestException('redirect_uri'); } - $state = $this->server->getRequest()->query->get('state', null); - if ($this->server->stateParamRequired() === true && is_null($state)) { - throw new Exception\InvalidRequestException('state'); - } - - $responseType = $this->server->getRequest()->query->get('response_type', null); - if (is_null($responseType)) { - throw new Exception\InvalidRequestException('response_type'); - } - - // Ensure response type is one that is recognised - if (!in_array($responseType, $this->server->getResponseTypes())) { - throw new Exception\UnsupportedResponseTypeException($responseType); - } - // Validate client ID and redirect URI $client = $this->server->getStorage('client')->get( $clientId, @@ -110,6 +95,21 @@ class AuthCodeGrant extends AbstractGrant throw new Exception\InvalidClientException(); } + $state = $this->server->getRequest()->query->get('state', null); + if ($this->server->stateParamRequired() === true && is_null($state)) { + throw new Exception\InvalidRequestException('state', true); + } + + $responseType = $this->server->getRequest()->query->get('response_type', null); + if (is_null($responseType)) { + throw new Exception\InvalidRequestException('response_type', true); + } + + // Ensure response type is one that is recognised + if (!in_array($responseType, $this->server->getResponseTypes())) { + throw new Exception\UnsupportedResponseTypeException($responseType); + } + // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->query->get('scope', ''); $scopes = $this->validateScopes($scopeParam); diff --git a/tests/unit/Grant/AuthCodeGrantTest.php b/tests/unit/Grant/AuthCodeGrantTest.php index c0641438..4cb8f353 100644 --- a/tests/unit/Grant/AuthCodeGrantTest.php +++ b/tests/unit/Grant/AuthCodeGrantTest.php @@ -54,56 +54,6 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant->checkAuthorizeParams(); } - public function testCheckAuthoriseParamsMissingStateParam() - { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - - $_GET = [ - 'client_id' => 'testapp', - 'redirect_uri' => 'http://foo/bar' - ]; - $server = new AuthorizationServer; - - $grant = new AuthCodeGrant; - $server->requireStateParam(true); - - $server->addGrantType($grant); - $grant->checkAuthorizeParams(); - } - - public function testCheckAuthoriseParamsMissingResponseType() - { - $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); - - $_GET = [ - 'client_id' => 'testapp', - 'redirect_uri' => 'http://foo/bar' - ]; - $server = new AuthorizationServer; - - $grant = new AuthCodeGrant; - - $server->addGrantType($grant); - $grant->checkAuthorizeParams(); - } - - public function testCheckAuthoriseParamsInvalidResponseType() - { - $this->setExpectedException('League\OAuth2\Server\Exception\UnsupportedResponseTypeException'); - - $_GET = [ - 'client_id' => 'testapp', - 'redirect_uri' => 'http://foo/bar', - 'response_type' => 'foobar' - ]; - $server = new AuthorizationServer; - - $grant = new AuthCodeGrant; - - $server->addGrantType($grant); - $grant->checkAuthorizeParams(); - } - public function testCheckAuthoriseParamsInvalidClient() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidClientException'); @@ -127,6 +77,77 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $grant->checkAuthorizeParams(); } + public function testCheckAuthoriseParamsMissingStateParam() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); + + $_GET = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar' + ]; + $server = new AuthorizationServer; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new ClientEntity($server))->hydrate(['id' => 'testapp']) + ); + $server->setClientStorage($clientStorage); + + $grant = new AuthCodeGrant; + $server->requireStateParam(true); + + $server->addGrantType($grant); + $grant->checkAuthorizeParams(); + } + + public function testCheckAuthoriseParamsMissingResponseType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); + + $_GET = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar' + ]; + $server = new AuthorizationServer; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new ClientEntity($server))->hydrate(['id' => 'testapp']) + ); + $server->setClientStorage($clientStorage); + + $grant = new AuthCodeGrant; + + $server->addGrantType($grant); + $grant->checkAuthorizeParams(); + } + + public function testCheckAuthoriseParamsInvalidResponseType() + { + $this->setExpectedException('League\OAuth2\Server\Exception\UnsupportedResponseTypeException'); + + $_GET = [ + 'client_id' => 'testapp', + 'redirect_uri' => 'http://foo/bar', + 'response_type' => 'foobar' + ]; + $server = new AuthorizationServer; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new ClientEntity($server))->hydrate(['id' => 'testapp']) + ); + $server->setClientStorage($clientStorage); + + $grant = new AuthCodeGrant; + + $server->addGrantType($grant); + $grant->checkAuthorizeParams(); + } + public function testCheckAuthoriseParamsInvalidScope() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidScopeException'); From 7e4317cf546cb3de8fa9a5c694b6951c78fc5225 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 18:02:47 +0100 Subject: [PATCH 203/270] Added branch alias for 4.0.x-dev Fixes #194 --- composer.json | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/composer.json b/composer.json index f24d7507..3486db47 100644 --- a/composer.json +++ b/composer.json @@ -62,5 +62,11 @@ "psr-4": { "LeagueTests\\": "tests/unit/" } + }, + "extra": { + "branch-alias": { + "dev-develop": "4.0.x-dev" + } } + } } From dc4136a6f5f1c48eea7cec7f294d80063f107ccd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 18:05:00 +0100 Subject: [PATCH 204/270] Fix JSON --- composer.json | 1 - 1 file changed, 1 deletion(-) diff --git a/composer.json b/composer.json index 3486db47..ef7671c4 100644 --- a/composer.json +++ b/composer.json @@ -68,5 +68,4 @@ "dev-develop": "4.0.x-dev" } } - } } From 9ff841aa6f74fb4d94804155cfb1937d75258c68 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 6 Aug 2014 18:16:16 +0100 Subject: [PATCH 205/270] Update README.md --- README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 7a855434..2d2d6408 100644 --- a/README.md +++ b/README.md @@ -12,7 +12,7 @@ The framework is provided as a Composer package which can be installed by adding ```javascript { "require": { - "league/oauth2-server": "4.*" + "league/oauth2-server": "dev-develop" } } ``` @@ -86,4 +86,4 @@ Special thanks to: * [Phil Sturgeon](https://github.com/philsturgeon) * [and all the other contributors](https://github.com/php-loep/oauth2-server/contributors) -The initial code was developed as part of the [Linkey](http://linkey.blogs.lincoln.ac.uk) project which was funded by [JISC](http://jisc.ac.uk) under the Access and Identity Management programme. \ No newline at end of file +The initial code was developed as part of the [Linkey](http://linkey.blogs.lincoln.ac.uk) project which was funded by [JISC](http://jisc.ac.uk) under the Access and Identity Management programme. From 3494b65be0237f2d52a8404b6831ffaa3909f212 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 7 Aug 2014 11:23:58 +0100 Subject: [PATCH 206/270] Old mysql.sql file shouldn't be in codebase --- sql/mysql.sql | 95 --------------------------------------------------- 1 file changed, 95 deletions(-) delete mode 100644 sql/mysql.sql diff --git a/sql/mysql.sql b/sql/mysql.sql deleted file mode 100644 index 0d708e8c..00000000 --- a/sql/mysql.sql +++ /dev/null @@ -1,95 +0,0 @@ -CREATE TABLE `oauth_clients` ( - `id` CHAR(40) NOT NULL, - `secret` CHAR(40) NOT NULL, - `name` VARCHAR(255) NOT NULL, - `auto_approve` TINYINT(1) NOT NULL DEFAULT '0', - PRIMARY KEY (`id`), - UNIQUE KEY `u_oacl_clse_clid` (`secret`,`id`) -) ENGINE=INNODB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_client_endpoints` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `client_id` char(40) NOT NULL, - `redirect_uri` varchar(255) NOT NULL, - PRIMARY KEY (`id`), - KEY `i_oaclen_clid` (`client_id`), - CONSTRAINT `f_oaclen_clid` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE ON UPDATE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_sessions` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `client_id` char(40) NOT NULL, - `owner_type` enum('user','client') NOT NULL DEFAULT 'user', - `owner_id` varchar(255) NOT NULL, - PRIMARY KEY (`id`), - KEY `i_uase_clid_owty_owid` (`client_id`,`owner_type`,`owner_id`), - CONSTRAINT `f_oase_clid` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE ON UPDATE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_access_tokens` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `session_id` int(10) unsigned NOT NULL, - `access_token` char(40) NOT NULL, - `access_token_expires` int(10) unsigned NOT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_oaseacto_acto_seid` (`access_token`,`session_id`), - KEY `f_oaseto_seid` (`session_id`), - CONSTRAINT `f_oaseto_seid` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_authcodes` ( - `id` int(10) unsigned NOT NULL AUTO_INCREMENT, - `session_id` int(10) unsigned NOT NULL, - `auth_code` char(40) NOT NULL, - `auth_code_expires` int(10) unsigned NOT NULL, - PRIMARY KEY (`id`), - KEY `session_id` (`session_id`), - CONSTRAINT `oauth_session_authcodes_ibfk_1` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_redirects` ( - `session_id` int(10) unsigned NOT NULL, - `redirect_uri` varchar(255) NOT NULL, - PRIMARY KEY (`session_id`), - CONSTRAINT `f_oasere_seid` FOREIGN KEY (`session_id`) REFERENCES `oauth_sessions` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_refresh_tokens` ( - `session_access_token_id` int(10) unsigned NOT NULL, - `refresh_token` char(40) NOT NULL, - `refresh_token_expires` int(10) unsigned NOT NULL, - `client_id` char(40) NOT NULL, - PRIMARY KEY (`session_access_token_id`), - KEY `client_id` (`client_id`), - CONSTRAINT `oauth_session_refresh_tokens_ibfk_1` FOREIGN KEY (`client_id`) REFERENCES `oauth_clients` (`id`) ON DELETE CASCADE, - CONSTRAINT `f_oasetore_setoid` FOREIGN KEY (`session_access_token_id`) REFERENCES `oauth_session_access_tokens` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_scopes` ( - `id` smallint(5) unsigned NOT NULL AUTO_INCREMENT, - `scope` varchar(255) NOT NULL, - `name` varchar(255) NOT NULL, - `description` varchar(255) DEFAULT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_oasc_sc` (`scope`) -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_token_scopes` ( - `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT, - `session_access_token_id` int(10) unsigned DEFAULT NULL, - `scope_id` smallint(5) unsigned NOT NULL, - PRIMARY KEY (`id`), - UNIQUE KEY `u_setosc_setoid_scid` (`session_access_token_id`,`scope_id`), - KEY `f_oasetosc_scid` (`scope_id`), - CONSTRAINT `f_oasetosc_scid` FOREIGN KEY (`scope_id`) REFERENCES `oauth_scopes` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION, - CONSTRAINT `f_oasetosc_setoid` FOREIGN KEY (`session_access_token_id`) REFERENCES `oauth_session_access_tokens` (`id`) ON DELETE CASCADE ON UPDATE NO ACTION -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; - -CREATE TABLE `oauth_session_authcode_scopes` ( - `oauth_session_authcode_id` int(10) unsigned NOT NULL, - `scope_id` smallint(5) unsigned NOT NULL, - KEY `oauth_session_authcode_id` (`oauth_session_authcode_id`), - KEY `scope_id` (`scope_id`), - CONSTRAINT `oauth_session_authcode_scopes_ibfk_2` FOREIGN KEY (`scope_id`) REFERENCES `oauth_scopes` (`id`) ON DELETE CASCADE, - CONSTRAINT `oauth_session_authcode_scopes_ibfk_1` FOREIGN KEY (`oauth_session_authcode_id`) REFERENCES `oauth_session_authcodes` (`id`) ON DELETE CASCADE -) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE utf8_unicode_ci; From 2ca3df60be94412b5905bc7db1a987212b158e5c Mon Sep 17 00:00:00 2001 From: Graham Campbell Date: Sun, 10 Aug 2014 11:15:41 +0100 Subject: [PATCH 207/270] Imoroved some version coinstraints --- composer.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/composer.json b/composer.json index ef7671c4..6b3a0adb 100644 --- a/composer.json +++ b/composer.json @@ -6,13 +6,13 @@ "require": { "php": ">=5.4.0", "symfony/http-foundation": "~2.1", - "league/event": "0.2.0" + "league/event": "0.2.*" }, "require-dev": { "phpunit/phpunit": "~4.0", "mockery/mockery": "~0.9", "league/phpunit-coverage-listener": "~1.0", - "squizlabs/php_codesniffer": "1.*", + "squizlabs/php_codesniffer": "~1.5", "codeception/codeception": "2.0.*", "alexbilbie/fizzfuzz": "dev-develop" }, From 01e823427f42a7d9277c6eb1745e4206ecbe53de Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 16 Aug 2014 10:24:53 +0200 Subject: [PATCH 208/270] Updated homepage --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 6b3a0adb..8fd0e468 100644 --- a/composer.json +++ b/composer.json @@ -1,7 +1,7 @@ { "name": "league/oauth2-server", "description": "A lightweight and powerful OAuth 2.0 authorization and resource server library with support for all the core specification grants. This library will allow you to secure your API with OAuth and allow your applications users to approve apps that want to access their data from your API.", - "homepage": "https://github.com/php-loep/oauth2-server", + "homepage": "http://oauth2.thephpleague.com/", "license": "MIT", "require": { "php": ">=5.4.0", From ce1a650ae17fe178a3b6868eaf9f42852e5b4e47 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 16 Aug 2014 10:39:14 +0200 Subject: [PATCH 209/270] Updated .gitignore --- .gitignore | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index a0f2c820..81efeacd 100644 --- a/.gitignore +++ b/.gitignore @@ -9,4 +9,6 @@ /examples/nosql/config/oauth2.sqlite3 /examples/relational/composer.lock /tests/codecept/tests/_log -oauth2-server.paw \ No newline at end of file +oauth2-server.paw +/output_*/ +/.sculpin \ No newline at end of file From d32cea1988170977cbb14e141f01f8adb9c4d9dd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 16 Aug 2014 10:53:32 +0200 Subject: [PATCH 210/270] Removed tests that had crept in --- tests/util/RedirectUriTest.php | 15 ---- tests/util/RequestTest.php | 87 ------------------- tests/util/SecureKeyTest.php | 32 ------- .../key_algorithm/DefaultAlgorithmTest.php | 22 ----- 4 files changed, 156 deletions(-) delete mode 100644 tests/util/RedirectUriTest.php delete mode 100644 tests/util/RequestTest.php delete mode 100644 tests/util/SecureKeyTest.php delete mode 100644 tests/util/key_algorithm/DefaultAlgorithmTest.php diff --git a/tests/util/RedirectUriTest.php b/tests/util/RedirectUriTest.php deleted file mode 100644 index 07b913ba..00000000 --- a/tests/util/RedirectUriTest.php +++ /dev/null @@ -1,15 +0,0 @@ -'bar')); - $v2 = League\OAuth2\Server\Util\RedirectUri::make('https://foobar/', array('foo'=>'bar'), '#'); - $v3 = League\OAuth2\Server\Util\RedirectUri::make('https://foobar/', array('foo'=>'bar', 'bar' => 'foo')); - - $this->assertEquals('https://foobar/?foo=bar', $v1); - $this->assertEquals('https://foobar/#foo=bar', $v2); - $this->assertEquals('https://foobar/?foo=bar&bar=foo', $v3); - } -} diff --git a/tests/util/RequestTest.php b/tests/util/RequestTest.php deleted file mode 100644 index 1f6de94a..00000000 --- a/tests/util/RequestTest.php +++ /dev/null @@ -1,87 +0,0 @@ -request = new League\OAuth2\Server\Util\Request( - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('HTTP_HOST' => 'foobar.com') - ); - } - - function test_buildFromIndex() - { - $r = new League\OAuth2\Server\Util\Request(); - $r->buildFromGlobals(); - - $this->assertTrue($r instanceof League\OAuth2\Server\Util\Request); - } - - function test_get() - { - $this->assertEquals('bar', $this->request->get('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->get()); - } - - function test_post() - { - $this->assertEquals('bar', $this->request->post('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->post()); - } - - function test_file() - { - $this->assertEquals('bar', $this->request->file('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->file()); - } - - function test_cookie() - { - $this->assertEquals('bar', $this->request->cookie('foo')); - $this->assertEquals(array('foo' => 'bar'), $this->request->cookie()); - } - - function test_server() - { - $this->assertEquals('foobar.com', $this->request->server('HTTP_HOST')); - $this->assertEquals(array('HTTP_HOST' => 'foobar.com'), $this->request->server()); - } - - function test_header() - { - $this->assertEquals('foobar.com', $this->request->header('Host')); - $this->assertEquals(array('Host' => 'foobar.com'), $this->request->header()); - } - - function test_canonical_header() - { - $request = new League\OAuth2\Server\Util\Request( - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('foo' => 'bar'), - array('HTTP_HOST' => 'foobar.com'), - array('authorization' => 'Bearer ajdfkljadslfjasdlkj') - ); - - $this->assertEquals('Bearer ajdfkljadslfjasdlkj', $request->header('Authorization')); - } - - /** - * @expectedException InvalidArgumentException - */ - function test_unknownProperty() - { - $reflector = new ReflectionClass($this->request); - $method = $reflector->getMethod('getPropertyValue'); - $method->setAccessible(true); - - $method->invoke($this->request, 'blah'); - } -} diff --git a/tests/util/SecureKeyTest.php b/tests/util/SecureKeyTest.php deleted file mode 100644 index da59bee4..00000000 --- a/tests/util/SecureKeyTest.php +++ /dev/null @@ -1,32 +0,0 @@ -assertEquals(40, strlen($v1)); - $this->assertTrue($v1 !== $v2); - $this->assertEquals(50, strlen($v3)); - } - - public function test_make_with_different_algorithm() - { - $algorithm = $this->getMock('League\OAuth2\Server\Util\KeyAlgorithm\KeyAlgorithmInterface'); - - $result = 'dasdsdsaads'; - $algorithm - ->expects($this->once()) - ->method('make') - ->with(11) - ->will($this->returnValue($result)) - ; - - League\OAuth2\Server\Util\SecureKey::setAlgorithm($algorithm); - $this->assertSame($algorithm, League\OAuth2\Server\Util\SecureKey::getAlgorithm()); - $this->assertEquals($result, League\OAuth2\Server\Util\SecureKey::make(11)); - } -} diff --git a/tests/util/key_algorithm/DefaultAlgorithmTest.php b/tests/util/key_algorithm/DefaultAlgorithmTest.php deleted file mode 100644 index 2e78ea1b..00000000 --- a/tests/util/key_algorithm/DefaultAlgorithmTest.php +++ /dev/null @@ -1,22 +0,0 @@ -make(); - $v2 = $algorithm->make(); - $v3 = $algorithm->make(50); - - $this->assertEquals(40, strlen($v1)); - $this->assertTrue($v1 !== $v2); - $this->assertEquals(50, strlen($v3)); - } -} \ No newline at end of file From b9e12a7fec05bf775377706f1cbe6d2890251ac9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 16 Aug 2014 10:57:08 +0200 Subject: [PATCH 211/270] Removed length --- src/Util/KeyAlgorithm/KeyAlgorithmInterface.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php index a2ba7f51..ee970172 100644 --- a/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php +++ b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php @@ -18,5 +18,5 @@ interface KeyAlgorithmInterface * @param integer $len Length of the generated code * @return string */ - public function generate($len = 40); + public function generate(); } From 7d8989a8cd3fc046a90677db2ba68ba033fb1023 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Mon, 18 Aug 2014 16:47:36 +0100 Subject: [PATCH 212/270] Fix #202 --- src/Grant/AuthCodeGrant.php | 4 ++++ src/Grant/ClientCredentialsGrant.php | 7 +++++-- src/Grant/PasswordGrant.php | 7 +++++-- 3 files changed, 14 insertions(+), 4 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 04ee914d..eb49f99f 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -223,6 +223,10 @@ class AuthCodeGrant extends AbstractGrant $session->associateScope($authCodeScope); } + foreach ($session->getScopes() as $scope) { + $accessToken->associateScope($scope); + } + $this->server->getTokenType()->set('access_token', $accessToken->getId()); $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 146bd694..73991f25 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -98,8 +98,11 @@ class ClientCredentialsGrant extends AbstractGrant // Associate scopes with the session and access token foreach ($scopes as $scope) { - $accessToken->associateScope($scope); - $session->associateScope($scope); + $session->associateScope($scope); + } + + foreach ($session->getScopes() as $scope) { + $accessToken->associateScope($scope); } // Save everything diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 43d8b7af..484ab595 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -138,8 +138,11 @@ class PasswordGrant extends AbstractGrant // Associate scopes with the session and access token foreach ($scopes as $scope) { - $accessToken->associateScope($scope); - $session->associateScope($scope); + $session->associateScope($scope); + } + + foreach ($session->getScopes() as $scope) { + $accessToken->associateScope($scope); } $this->server->getTokenType()->set('access_token', $accessToken->getId()); From 31c3cbe593303e783ea5bc415117e01da2871ad0 Mon Sep 17 00:00:00 2001 From: Graham Campbell Date: Sun, 31 Aug 2014 16:49:10 +0100 Subject: [PATCH 213/270] Update .travis.yml --- .travis.yml | 12 ++++-------- 1 file changed, 4 insertions(+), 8 deletions(-) diff --git a/.travis.yml b/.travis.yml index 1ab246f1..2a579ea2 100644 --- a/.travis.yml +++ b/.travis.yml @@ -10,14 +10,10 @@ matrix: allow_failures: - php: hhvm -cache: - directories: - - vendor - before_script: - - composer self-update - - composer require satooshi/php-coveralls:dev-master --no-update --dev - - composer install + - travis_retry composer self-update + - travis_retry composer require satooshi/php-coveralls:dev-master --no-update --dev + - travis_retry composer install --no-interaction --prefer-source --dev - cd examples/relational && composer install --prefer-dist - php config/init.php - php -S localhost:8000 & @@ -26,4 +22,4 @@ before_script: script: - mkdir -p build/logs - - phpunit --coverage-text + - phpunit --coverage-text --verbose From 6ce190d33bca1604c33a5ce4491fc07c2f969c1d Mon Sep 17 00:00:00 2001 From: Thomas Vranken Date: Sat, 6 Sep 2014 17:53:02 +0200 Subject: [PATCH 214/270] Session ID returned correctly Session ID was not returned correctly after creating a session. --- examples/relational/Storage/SessionStorage.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/relational/Storage/SessionStorage.php b/examples/relational/Storage/SessionStorage.php index 9c02b18f..37e1759a 100644 --- a/examples/relational/Storage/SessionStorage.php +++ b/examples/relational/Storage/SessionStorage.php @@ -87,7 +87,7 @@ class SessionStorage extends Adapter implements SessionInterface public function create($ownerType, $ownerId, $clientId, $clientRedirectUri = null) { $id = Capsule::table('oauth_sessions') - ->insert([ + ->insertGetId([ 'owner_type' => $ownerType, 'owner_id' => $ownerId, 'client_id' => $clientId From be51cdf9b1433684f27e4db435e81de913c5d39e Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 9 Sep 2014 13:36:20 +0100 Subject: [PATCH 215/270] Fixed spelling mistake --- src/AbstractServer.php | 2 +- src/AuthorizationServer.php | 2 +- src/ResourceServer.php | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 884e8be7..9e0f1b98 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -123,7 +123,7 @@ abstract class AbstractServer * @param TokenTypeInterface $tokenType The token type * @return void */ - public function setIdType(TokenTypeInterface $tokenType) + public function setTokenType(TokenTypeInterface $tokenType) { $this->tokenType = $tokenType; } diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index 502a811d..b0b0bc14 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -78,7 +78,7 @@ class AuthorizationServer extends AbstractServer $this->storages = []; // Set Bearer as the default token type - $this->setIdType(new Bearer); + $this->setTokenType(new Bearer); parent::__construct(); diff --git a/src/ResourceServer.php b/src/ResourceServer.php index 654dbb41..a169401d 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -64,7 +64,7 @@ class ResourceServer extends AbstractServer $this->setStorage('scope', $scopeStorage); // Set Bearer as the default token type - $this->setIdType(new Bearer); + $this->setTokenType(new Bearer); parent::__construct(); From 9e2a6ed238fb0457181f8a2bbb64c2be42113ddc Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 10 Sep 2014 17:22:01 +0100 Subject: [PATCH 216/270] If there are no scopes to format then just return an empty array --- src/Entity/AbstractTokenEntity.php | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 4712f68d..d8d8af25 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -137,6 +137,10 @@ abstract class AbstractTokenEntity */ protected function formatScopes($unformatted = []) { + if (is_null($unformatted)) { + return []; + } + $scopes = []; foreach ($unformatted as $scope) { if ($scope instanceof ScopeEntity) { From 1ff3d1addacb028e844b76adc72de45b5759e6ce Mon Sep 17 00:00:00 2001 From: pulkit Date: Thu, 11 Sep 2014 13:39:50 +0100 Subject: [PATCH 217/270] support grant specific access token ttl --- src/Grant/AbstractGrant.php | 13 +++++++++++++ src/Grant/AuthCodeGrant.php | 4 ++-- src/Grant/ClientCredentialsGrant.php | 4 ++-- src/Grant/PasswordGrant.php | 4 ++-- src/Grant/RefreshTokenGrant.php | 4 ++-- tests/unit/Stubs/StubAbstractGrant.php | 5 ----- 6 files changed, 21 insertions(+), 13 deletions(-) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 93e45020..63b65029 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -80,6 +80,19 @@ abstract class AbstractGrant implements GrantTypeInterface return $this->responseType; } + /** + * Get the TTL for an access token + * @return int The TTL + */ + public function getAccessTokenTTL() + { + if ($this->accessTokenTTL) { + return $this->accessTokenTTL; + } + + return $this->server->getAccessTokenTTL(); + } + /** * Override the default access token expire time * @param int $accessTokenTTL diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index eb49f99f..f17769ca 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -217,7 +217,7 @@ class AuthCodeGrant extends AbstractGrant // Generate the access token $accessToken = new AccessTokenEntity($this->server); $accessToken->setId(SecureKey::generate()); - $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + $accessToken->setExpireTime($this->getAccessTokenTTL() + time()); foreach ($authCodeScopes as $authCodeScope) { $session->associateScope($authCodeScope); @@ -228,7 +228,7 @@ class AuthCodeGrant extends AbstractGrant } $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); + $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 73991f25..b5913e97 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -94,7 +94,7 @@ class ClientCredentialsGrant extends AbstractGrant // Generate an access token $accessToken = new AccessTokenEntity($this->server); $accessToken->setId(SecureKey::generate()); - $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + $accessToken->setExpireTime($this->getAccessTokenTTL() + time()); // Associate scopes with the session and access token foreach ($scopes as $scope) { @@ -111,7 +111,7 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->save($this->server->getStorage('access_token')); $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); + $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); return $this->server->getTokenType()->generateResponse(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 484ab595..78f8ab98 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -134,7 +134,7 @@ class PasswordGrant extends AbstractGrant // Generate an access token $accessToken = new AccessTokenEntity($this->server); $accessToken->setId(SecureKey::generate()); - $accessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + $accessToken->setExpireTime($this->getAccessTokenTTL() + time()); // Associate scopes with the session and access token foreach ($scopes as $scope) { @@ -146,7 +146,7 @@ class PasswordGrant extends AbstractGrant } $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); + $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 58283cc2..74ac13eb 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -126,7 +126,7 @@ class RefreshTokenGrant extends AbstractGrant // Generate a new access token and assign it the correct sessions $newAccessToken = new AccessTokenEntity($this->server); $newAccessToken->setId(SecureKey::generate()); - $newAccessToken->setExpireTime($this->server->getAccessTokenTTL() + time()); + $newAccessToken->setExpireTime($this->getAccessTokenTTL() + time()); $newAccessToken->setSession($session); foreach ($newScopes as $newScope) { @@ -138,7 +138,7 @@ class RefreshTokenGrant extends AbstractGrant $newAccessToken->save($this->server->getStorage('access_token')); $this->server->getTokenType()->set('access_token', $newAccessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->server->getAccessTokenTTL()); + $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); // Expire the old refresh token $oldRefreshToken->expire($this->server->getStorage('refresh_token')); diff --git a/tests/unit/Stubs/StubAbstractGrant.php b/tests/unit/Stubs/StubAbstractGrant.php index b409500c..d58fb56e 100644 --- a/tests/unit/Stubs/StubAbstractGrant.php +++ b/tests/unit/Stubs/StubAbstractGrant.php @@ -11,11 +11,6 @@ class StubAbstractGrant extends \League\OAuth2\Server\Grant\AbstractGrant return true; } - public function getAccessTokenTTL() - { - return $this->accessTokenTTL; - } - public function getAuthorizationServer() { return $this->server; From 64ca2a4b49d5cd6e6b056cdf2568a8b36d9e988b Mon Sep 17 00:00:00 2001 From: Sum Date: Mon, 22 Sep 2014 12:56:15 +0700 Subject: [PATCH 218/270] Update AbstractServer.php --- src/AbstractServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 9e0f1b98..7606d047 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -82,7 +82,7 @@ abstract class AbstractServer * @param \Symfony\Component\HttpFoundation\Request The Request Object * @return self */ - public function setRequest(Request $request) + public function setRequest($request) { $this->request = $request; From b68a5c2abb74b48d17b7e6795fac25a3a5a7e0b4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 22:16:26 +0100 Subject: [PATCH 219/270] Added authentication failure events --- src/Event/ClientAuthenticationFailedEvent.php | 51 +++++++++++++++++++ src/Event/UserAuthenticationFailedEvent.php | 51 +++++++++++++++++++ src/Grant/AuthCodeGrant.php | 3 ++ src/Grant/ClientCredentialsGrant.php | 2 + src/Grant/PasswordGrant.php | 3 ++ src/Grant/RefreshTokenGrant.php | 2 + 6 files changed, 112 insertions(+) create mode 100644 src/Event/ClientAuthenticationFailedEvent.php create mode 100644 src/Event/UserAuthenticationFailedEvent.php diff --git a/src/Event/ClientAuthenticationFailedEvent.php b/src/Event/ClientAuthenticationFailedEvent.php new file mode 100644 index 00000000..473d0937 --- /dev/null +++ b/src/Event/ClientAuthenticationFailedEvent.php @@ -0,0 +1,51 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Event; + +use League\Event\AbstractEvent; +use Symfony\Component\HttpFoundation\Request; + +class ClientAuthenticationFailedEvent extends AbstractEvent +{ + /** + * Request + * @var \Symfony\Component\HttpFoundation\Request + */ + private $request; + + /** + * Init the event with a request + * @param \Symfony\Component\HttpFoundation\Requesty $request + */ + public function __construct(Request $request) + { + $this->request = $request; + } + + /** + * The name of the event + * @return string + */ + public function getName() + { + return 'error.auth.client'; + } + + /** + * Return session + * @return \Symfony\Component\HttpFoundation\Request + */ + public function getSession() + { + return $this->request; + } +} diff --git a/src/Event/UserAuthenticationFailedEvent.php b/src/Event/UserAuthenticationFailedEvent.php new file mode 100644 index 00000000..12aad47e --- /dev/null +++ b/src/Event/UserAuthenticationFailedEvent.php @@ -0,0 +1,51 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Event; + +use League\Event\AbstractEvent; +use Symfony\Component\HttpFoundation\Request; + +class UserAuthenticationFailedEvent extends AbstractEvent +{ + /** + * Request + * @var \Symfony\Component\HttpFoundation\Request + */ + private $request; + + /** + * Init the event with a request + * @param \Symfony\Component\HttpFoundation\Requesty $request + */ + public function __construct(Request $request) + { + $this->request = $request; + } + + /** + * The name of the event + * @return string + */ + public function getName() + { + return 'error.auth.user'; + } + + /** + * Return session + * @return \Symfony\Component\HttpFoundation\Request + */ + public function getSession() + { + return $this->request; + } +} diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index f17769ca..7be2487c 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -19,6 +19,7 @@ use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\AuthCodeEntity; use League\OAuth2\Server\Util\SecureKey; +use League\OAuth2\Server\Event; /** * Auth code grant class @@ -92,6 +93,7 @@ class AuthCodeGrant extends AbstractGrant ); if (($client instanceof ClientEntity) === false) { + $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidClientException(); } @@ -192,6 +194,7 @@ class AuthCodeGrant extends AbstractGrant ); if (($client instanceof ClientEntity) === false) { + $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidClientException(); } diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index b5913e97..11419c28 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -16,6 +16,7 @@ use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; +use League\OAuth2\Server\Event; /** * Client credentials grant class @@ -79,6 +80,7 @@ class ClientCredentialsGrant extends AbstractGrant ); if (($client instanceof ClientEntity) === false) { + $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidClientException(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 78f8ab98..8798c0e5 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -17,6 +17,7 @@ use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Exception; use League\OAuth2\Server\Util\SecureKey; +use League\OAuth2\Server\Event; /** * Password grant class @@ -102,6 +103,7 @@ class PasswordGrant extends AbstractGrant ); if (($client instanceof ClientEntity) === false) { + $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidClientException(); } @@ -119,6 +121,7 @@ class PasswordGrant extends AbstractGrant $userId = call_user_func($this->getVerifyCredentialsCallback(), $username, $password); if ($userId === false) { + $this->server->getEventEmitter()->emit(new Event\UserAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidCredentialsException(); } diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 74ac13eb..c99f19be 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -17,6 +17,7 @@ use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\Entity\RefreshTokenEntity; use League\OAuth2\Server\Entity\AccessTokenEntity; use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Event; /** * Referesh token grant @@ -83,6 +84,7 @@ class RefreshTokenGrant extends AbstractGrant ); if (($client instanceof ClientEntity) === false) { + $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest())); throw new Exception\InvalidClientException(); } From 1e3a192920bdd15ec5845e7f6a49bae114f42486 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 22:26:34 +0100 Subject: [PATCH 220/270] Inject server into tokentype --- src/AbstractServer.php | 1 + src/TokenType/AbstractTokenType.php | 16 ++++++++++++++++ 2 files changed, 17 insertions(+) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 9e0f1b98..f8dc1963 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -125,6 +125,7 @@ abstract class AbstractServer */ public function setTokenType(TokenTypeInterface $tokenType) { + $tokenType->setServer($this); $this->tokenType = $tokenType; } diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index c106b546..56266ac0 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -12,6 +12,7 @@ namespace League\OAuth2\Server\TokenType; use Symfony\Component\HttpFoundation\Request; +use League\OAuth2\Server\AbstractServer; abstract class AbstractTokenType { @@ -22,6 +23,21 @@ abstract class AbstractTokenType protected $response = []; /** + * Server + * @var \League\OAuth2\Server\AbstractServer $server + */ + protected $server; + + /** + * Set the server + * @param \League\OAuth2\Server\AbstractServer $server + */ + public function setServer(AbstractServer $server) + { + $this->server = $server; + return $this; + } + * Set a key/value response pair * @param string $key * @param mixed $value From a3f5d20592d60983aee826eb5a4ca946e9fa349f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 22:28:38 +0100 Subject: [PATCH 221/270] Changed method names to be clearer that we're setting params --- src/Grant/AuthCodeGrant.php | 6 +++--- src/Grant/ClientCredentialsGrant.php | 4 ++-- src/Grant/PasswordGrant.php | 6 +++--- src/Grant/RefreshTokenGrant.php | 6 +++--- src/TokenType/AbstractTokenType.php | 4 ++-- src/TokenType/Bearer.php | 8 ++++---- 6 files changed, 17 insertions(+), 17 deletions(-) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 7be2487c..d73c8af9 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -230,15 +230,15 @@ class AuthCodeGrant extends AbstractGrant $accessToken->associateScope($scope); } - $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); + $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); + $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setId(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $this->server->getTokenType()->set('refresh_token', $refreshToken->getId()); + $this->server->getTokenType()->setParam('refresh_token', $refreshToken->getId()); } // Expire the auth code diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 11419c28..94e1094c 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -112,8 +112,8 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->setSession($session); $accessToken->save($this->server->getStorage('access_token')); - $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); + $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); + $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); return $this->server->getTokenType()->generateResponse(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 8798c0e5..4fb35126 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -148,15 +148,15 @@ class PasswordGrant extends AbstractGrant $accessToken->associateScope($scope); } - $this->server->getTokenType()->set('access_token', $accessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); + $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); + $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); // Associate a refresh token if set if ($this->server->hasGrantType('refresh_token')) { $refreshToken = new RefreshTokenEntity($this->server); $refreshToken->setId(SecureKey::generate()); $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time()); - $this->server->getTokenType()->set('refresh_token', $refreshToken->getId()); + $this->server->getTokenType()->setParam('refresh_token', $refreshToken->getId()); } // Save everything diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index c99f19be..1bfe9e68 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -139,8 +139,8 @@ class RefreshTokenGrant extends AbstractGrant $oldAccessToken->expire($this->server->getStorage('access_token')); $newAccessToken->save($this->server->getStorage('access_token')); - $this->server->getTokenType()->set('access_token', $newAccessToken->getId()); - $this->server->getTokenType()->set('expires_in', $this->getAccessTokenTTL()); + $this->server->getTokenType()->setParam('access_token', $newAccessToken->getId()); + $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); // Expire the old refresh token $oldRefreshToken->expire($this->server->getStorage('refresh_token')); @@ -152,7 +152,7 @@ class RefreshTokenGrant extends AbstractGrant $newRefreshToken->setAccessToken($newAccessToken); $newRefreshToken->save($this->server->getStorage('refresh_token')); - $this->server->getTokenType()->set('refresh_token', $newRefreshToken->getId()); + $this->server->getTokenType()->setParam('refresh_token', $newRefreshToken->getId()); return $this->server->getTokenType()->generateResponse(); } diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index 56266ac0..fb6cd6fb 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -42,7 +42,7 @@ abstract class AbstractTokenType * @param string $key * @param mixed $value */ - public function set($key, $value) + public function setParam($key, $value) { $this->response[$key] = $value; } @@ -52,7 +52,7 @@ abstract class AbstractTokenType * @param string $key * @return mixed */ - public function get($key) + public function getParam($key) { return isset($this->response[$key]) ? $this->response[$key] : null; } diff --git a/src/TokenType/Bearer.php b/src/TokenType/Bearer.php index e6e92a29..bedb0279 100644 --- a/src/TokenType/Bearer.php +++ b/src/TokenType/Bearer.php @@ -21,13 +21,13 @@ class Bearer extends AbstractTokenType implements TokenTypeInterface public function generateResponse() { $return = [ - 'access_token' => $this->get('access_token'), + 'access_token' => $this->getParam('access_token'), 'token_type' => 'Bearer', - 'expires_in' => $this->get('expires_in') + 'expires_in' => $this->getParam('expires_in') ]; - if (!is_null($this->get('refresh_token'))) { - $return['refresh_token'] = $this->get('refresh_token'); + if (!is_null($this->getParam('refresh_token'))) { + $return['refresh_token'] = $this->getParam('refresh_token'); } return $return; From 536ef3244d58a4bea2283b1ef38f20157823576d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 22:28:49 +0100 Subject: [PATCH 222/270] Inject the session into the token type --- src/Grant/AuthCodeGrant.php | 1 + src/Grant/ClientCredentialsGrant.php | 1 + src/Grant/PasswordGrant.php | 1 + src/Grant/RefreshTokenGrant.php | 1 + src/TokenType/AbstractTokenType.php | 18 ++++++++++++++++++ 5 files changed, 22 insertions(+) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index d73c8af9..1d930e36 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -230,6 +230,7 @@ class AuthCodeGrant extends AbstractGrant $accessToken->associateScope($scope); } + $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 94e1094c..24c7b44c 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -112,6 +112,7 @@ class ClientCredentialsGrant extends AbstractGrant $accessToken->setSession($session); $accessToken->save($this->server->getStorage('access_token')); + $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 4fb35126..cd778356 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -148,6 +148,7 @@ class PasswordGrant extends AbstractGrant $accessToken->associateScope($scope); } + $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 1bfe9e68..b6a1b0ac 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -139,6 +139,7 @@ class RefreshTokenGrant extends AbstractGrant $oldAccessToken->expire($this->server->getStorage('access_token')); $newAccessToken->save($this->server->getStorage('access_token')); + $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $newAccessToken->getId()); $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); diff --git a/src/TokenType/AbstractTokenType.php b/src/TokenType/AbstractTokenType.php index fb6cd6fb..7691ec9e 100644 --- a/src/TokenType/AbstractTokenType.php +++ b/src/TokenType/AbstractTokenType.php @@ -13,6 +13,7 @@ namespace League\OAuth2\Server\TokenType; use Symfony\Component\HttpFoundation\Request; use League\OAuth2\Server\AbstractServer; +use League\OAuth2\Server\Entity\SessionEntity; abstract class AbstractTokenType { @@ -28,6 +29,12 @@ abstract class AbstractTokenType */ protected $server; + /** + * Server + * @var \League\OAuth2\Server\Entity\SessionEntity $session + */ + protected $session; + /** * Set the server * @param \League\OAuth2\Server\AbstractServer $server @@ -38,6 +45,17 @@ abstract class AbstractTokenType return $this; } + /** + * Set the session entity + * @param \League\OAuth2\Server\Entity\SessionEntity $session + */ + public function setSession(SessionEntity $session) + { + $this->session = $session; + return $this; + } + + /** * Set a key/value response pair * @param string $key * @param mixed $value From 63be2684d3eeed486dfc2df8bc45dd45a74710a1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 22:57:35 +0100 Subject: [PATCH 223/270] Added scrutinizer.yml --- scrutinizer.yml | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) create mode 100644 scrutinizer.yml diff --git a/scrutinizer.yml b/scrutinizer.yml new file mode 100644 index 00000000..364c3713 --- /dev/null +++ b/scrutinizer.yml @@ -0,0 +1,32 @@ +checks: + php: + code_rating: true + remove_extra_empty_lines: true + remove_php_closing_tag: true + remove_trailing_whitespace: true + fix_use_statements: + remove_unused: true + preserve_multiple: false + preserve_blanklines: true + order_alphabetically: true + fix_php_opening_tag: true + fix_linefeed: true + fix_line_ending: true + fix_identation_4spaces: true + fix_doc_comments: true +tools: + external_code_coverage: + timeout: 600 + runs: 4 + php_code_coverage: false + php_code_sniffer: + config: + standard: PSR2 + filter: + paths: ['src'] + php_loc: + enabled: true + excluded_dirs: [vendor, test] + php_cpd: + enabled: true + excluded_dirs: [vendor, test] \ No newline at end of file From d9bf0e5899ed7dd5738228446842e6dd16d53d9a Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 23:07:00 +0100 Subject: [PATCH 224/270] Updated .travis.yml --- .travis.yml | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 2a579ea2..46b87578 100644 --- a/.travis.yml +++ b/.travis.yml @@ -12,7 +12,6 @@ matrix: before_script: - travis_retry composer self-update - - travis_retry composer require satooshi/php-coveralls:dev-master --no-update --dev - travis_retry composer install --no-interaction --prefer-source --dev - cd examples/relational && composer install --prefer-dist - php config/init.php @@ -22,4 +21,8 @@ before_script: script: - mkdir -p build/logs - - phpunit --coverage-text --verbose + - phpunit --coverage-text --verbose --coverage-clover=coverage.clover + +after_script: + - wget https://scrutinizer-ci.com/ocular.phar + - php ocular.phar code-coverage:upload --format=php-clover coverage.clover \ No newline at end of file From 05d33f702093fdb4da247760552948d0c044b282 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 23:12:43 +0100 Subject: [PATCH 225/270] Updated README --- README.md | 71 +++++++++++++++++++++---------------------------------- 1 file changed, 27 insertions(+), 44 deletions(-) diff --git a/README.md b/README.md index 2d2d6408..d161dce4 100644 --- a/README.md +++ b/README.md @@ -1,62 +1,45 @@ # PHP OAuth 2.0 Server -[![Latest Stable Version](https://poser.pugx.org/league/oauth2-server/v/stable.png)](https://packagist.org/packages/league/oauth2-server) [![Coverage Status](https://coveralls.io/repos/thephpleague/oauth2-server/badge.png?branch=v4.0.0-WIP)](https://coveralls.io/r/thephpleague/oauth2-server?branch=v4.0.0-WIP) [![Total Downloads](https://poser.pugx.org/league/oauth2-server/downloads.png)](https://packagist.org/packages/league/oauth2-server) +[![Latest Version](http://img.shields.io/packagist/v/league/oauth2-server.svg?style=flat-square)](https://github.com/thephpleague/oauth2-server/releases) +[![Software License](https://img.shields.io/badge/license-MIT-brightgreen.svg?style=flat-square)](LICENSE.md)
+[![Build Status](https://img.shields.io/travis/thephpleague/oauth2-server/master.svg?style=flat-square)](https://travis-ci.org/thephpleague/oauth2-server) +[![Coverage Status](https://img.shields.io/scrutinizer/coverage/g/thephpleague/oauth2-server.svg?style=flat-square)](https://scrutinizer-ci.com/g/thephpleague/oauth2-server/code-structure) +[![Quality Score](https://img.shields.io/scrutinizer/g/thephpleague/oauth2-server.svg?style=flat-square)](https://scrutinizer-ci.com/g/thephpleague/oauth2-server) +[![Total Downloads](https://img.shields.io/packagist/dt/league/oauth2-server.svg?style=flat-square)](https://packagist.org/packages/league/oauth2-server) -A standards compliant [OAuth 2.0](http://tools.ietf.org/wg/oauth/draft-ietf-oauth-v2/) authorization server and resource server written in PHP. +A standards compliant [OAuth 2.0](http://tools.ietf.org/wg/oauth/draft-ietf-oauth-v2/) authorization server and resource server written in PHP which makes working with OAuth 2.0 trivial. You can easily configure an OAuth 2.0 server to protect your API with access tokens, or allow clients to request new access tokens and refresh them. -## Package Installation +It supports out of the box the following grants: -The framework is provided as a Composer package which can be installed by adding the package to your composer.json file: +* Authorization code grant +* Client credentials grant +* Resource owner password credentials grant +* Refresh grant -```javascript -{ - "require": { - "league/oauth2-server": "dev-develop" - } -} -``` +You can also define your own grants. -### Storage Adapters +In addition it supports the following token types: -The following adapters have been created by other developers to help you easily integrate this library into your project. +* Bearer tokens +* MAC tokens (coming soon) +* JSON web tokens (coming soon) -* [Redis storage adapter](https://github.com/jasonlewis/oauth2-server-redis) by @jasonlewis -If you want to roll your own adapter check out the docs. +## Requirements ---- +The following versions of PHP are supported: -The library features 100% unit test code coverage. To run the tests yourself run `phpunit` from the project root. +* PHP 5.4 +* PHP 5.5 +* PHP 5.6 +* HHVM -## Current Features +## Documentation -### Authorization Server +This library has [full documentation](http://oauth2.thephpleague.com), powered by [Jekyll](http://jekyllrb.com/). -The authorization server is a flexible class and the following core specification grants are implemented: - -* authorization code ([section 4.1](http://tools.ietf.org/html/rfc6749#section-4.1)) -* refresh token ([section 6](http://tools.ietf.org/html/rfc6749#section-6)) -* client credentials ([section 2.3.1](http://tools.ietf.org/html/rfc6749#section-2.3.1)) -* password (user credentials) ([section 4.3](http://tools.ietf.org/html/rfc6749#section-4.3)) - -An overview of the different OAuth 2.0 grants can be found in the wiki [https://github.com/php-loep/oauth2-server/wiki/Which-OAuth-2.0-grant-should-I-use%3F](https://github.com/php-loep/oauth2-server/wiki/Which-OAuth-2.0-grant-should-I-use%3F). - -### Resource Server - -The resource server allows you to secure your API endpoints by checking for a valid OAuth access token in the request and ensuring the token has the correct scope(s) (i.e. permissions) to access resources. - -### Custom grants - -Custom grants can be created easily by implementing an interface. Check out a guide here [https://github.com/php-loep/oauth2-server/wiki/Creating-custom-grants](https://github.com/php-loep/oauth2-server/wiki/Creating-custom-grants). - -## Tutorials and documentation - -The wiki has lots of guides on how to use this library, check it out - [https://github.com/php-loep/oauth2-server/wiki](https://github.com/php-loep/oauth2-server/wiki). - -A simple tutorial on how to use the authorization server can be found at [https://github.com/php-loep/oauth2-server/wiki/Developing-an-OAuth-2.0-authorization-server](https://github.com/php-loep/oauth2-server/wiki/Developing-an-OAuth-2.0-authorization-server). - -A simple tutorial on how to use the resource server to secure an API server can be found at [https://github.com/php-loep/oauth2-server/wiki/Securing-your-API-with-OAuth-2.0](https://github.com/php-loep/oauth2-server/wiki/Securing-your-API-with-OAuth-2.0). +Contribute to this documentation in the [gh-pages branch](https://github.com/thephpleague/oauth2-server/tree/gh-pages/). ## Changelog @@ -68,7 +51,7 @@ Please see [CONTRIBUTING](https://github.com/php-loep/oauth2-server/blob/master/ ## Support -Bugs and feature request are tracked on [GitHub](https://github.com/php-loep/oauth2-server/issues) +Bugs and feature request are tracked on [GitHub](https://github.com/thephpleague/oauth2-server/issues) ## License From 5b9f9a500d8ca9c8df230c09d8ea43dcf1fb7edf Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 23:20:52 +0100 Subject: [PATCH 226/270] Renamed scrutinizer.yml to .scrutinizer.yml --- scrutinizer.yml => .scrutinizer.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename scrutinizer.yml => .scrutinizer.yml (100%) diff --git a/scrutinizer.yml b/.scrutinizer.yml similarity index 100% rename from scrutinizer.yml rename to .scrutinizer.yml From 62d658524bc3cf0c43a5e69bcd56411f56209052 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 23:24:26 +0100 Subject: [PATCH 227/270] Expecting coverage on 3 runs not 4 --- .scrutinizer.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.scrutinizer.yml b/.scrutinizer.yml index 364c3713..f7e6001f 100644 --- a/.scrutinizer.yml +++ b/.scrutinizer.yml @@ -17,7 +17,7 @@ checks: tools: external_code_coverage: timeout: 600 - runs: 4 + runs: 3 php_code_coverage: false php_code_sniffer: config: From 136edf16c580cfbb8803d762c054f732a80cd0b1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Tue, 30 Sep 2014 23:55:21 +0100 Subject: [PATCH 228/270] Fix #213 --- src/Entity/AbstractTokenEntity.php | 5 +++-- src/Grant/AbstractGrant.php | 7 +++++-- src/Grant/AuthCodeGrant.php | 2 +- src/Grant/ClientCredentialsGrant.php | 2 +- src/Grant/PasswordGrant.php | 2 +- src/Grant/RefreshTokenGrant.php | 2 +- src/Storage/ScopeInterface.php | 3 ++- tests/unit/Grant/AbstractGrantTest.php | 21 ++++++++++++++++----- 8 files changed, 30 insertions(+), 14 deletions(-) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index d8d8af25..8f7478f4 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -14,6 +14,7 @@ namespace League\OAuth2\Server\Entity; use League\OAuth2\Server\Util\SecureKey; use League\OAuth2\Server\AbstractServer; use Symfony\Component\HttpFoundation\ParameterBag; +use League\OAuth2\Server\Entity\SessionEntity; /** * Abstract token class @@ -28,7 +29,7 @@ abstract class AbstractTokenEntity /** * Associated session - * @var \League\OAuth2\Server\SessionEntity + * @var \League\OAuth2\Server\Entity\SessionEntity */ protected $session; @@ -64,7 +65,7 @@ abstract class AbstractTokenEntity /** * Set session - * @param \League\OAuth2\Server\SessionEntity $session + * @param \League\OAuth2\Server\Entity\SessionEntity $session * @return self */ public function setSession(SessionEntity $session) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 63b65029..0c712e4c 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -13,6 +13,7 @@ namespace League\OAuth2\Server\Grant; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\Exception; /** @@ -120,10 +121,11 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Given a list of scopes, validate them and return an arrary of Scope entities * @param string $scopeParam A string of scopes (e.g. "profile email birthday") + * @param ClientEntity $client A string of scopes (e.g. "profile email birthday") * @return array * @throws ClientException If scope is invalid, or no scopes passed when required */ - public function validateScopes($scopeParam = '') + public function validateScopes($scopeParam = '', ClientEntity $client) { $scopesList = explode($this->server->getScopeDelimeter(), $scopeParam); @@ -153,7 +155,8 @@ abstract class AbstractGrant implements GrantTypeInterface foreach ($scopesList as $scopeItem) { $scope = $this->server->getStorage('scope')->get( $scopeItem, - $this->getIdentifier() + $this->getIdentifier(), + $client->getId() ); if (($scope instanceof ScopeEntity) === false) { diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 1d930e36..d2cb0cde 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -114,7 +114,7 @@ class AuthCodeGrant extends AbstractGrant // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->query->get('scope', ''); - $scopes = $this->validateScopes($scopeParam); + $scopes = $this->validateScopes($scopeParam, $client); return [ 'client' => $client, diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 24c7b44c..3e18af31 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -86,7 +86,7 @@ class ClientCredentialsGrant extends AbstractGrant // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->request->get('scope', ''); - $scopes = $this->validateScopes($scopeParam); + $scopes = $this->validateScopes($scopeParam, $client); // Create a new session $session = new SessionEntity($this->server); diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index cd778356..46084a68 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -127,7 +127,7 @@ class PasswordGrant extends AbstractGrant // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->request->get('scope', ''); - $scopes = $this->validateScopes($scopeParam); + $scopes = $this->validateScopes($scopeParam, $client); // Create a new session $session = new SessionEntity($this->server); diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index b6a1b0ac..5ac9bf8e 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -108,7 +108,7 @@ class RefreshTokenGrant extends AbstractGrant // Get and validate any requested scopes $requestedScopesString = $this->server->getRequest()->request->get('scope', ''); - $requestedScopes = $this->validateScopes($requestedScopesString); + $requestedScopes = $this->validateScopes($requestedScopesString, $client); // If no new scopes are requested then give the access token the original session scopes if (count($requestedScopes) === 0) { diff --git a/src/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php index e533a777..986510ed 100644 --- a/src/Storage/ScopeInterface.php +++ b/src/Storage/ScopeInterface.php @@ -20,7 +20,8 @@ interface ScopeInterface * Return information about a scope * @param string $scope The scope * @param string $grantType The grant type used in the request (default = "null") + * @param string $clientId The client sending the request (default = "null") * @return \League\OAuth2\Server\Entity\ScopeEntity */ - public function get($scope, $grantType = null); + public function get($scope, $grantType = null, $clientId = null); } diff --git a/tests/unit/Grant/AbstractGrantTest.php b/tests/unit/Grant/AbstractGrantTest.php index 15168bf0..784a5dc6 100644 --- a/tests/unit/Grant/AbstractGrantTest.php +++ b/tests/unit/Grant/AbstractGrantTest.php @@ -4,6 +4,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant; use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use League\OAuth2\Server\Exception\InvalidRequestException; use LeagueTests\Stubs\StubAbstractGrant; @@ -63,11 +64,13 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $grant = new StubAbstractGrant; $grant->setAuthorizationServer($server); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + $this->assertEquals( [ 'foo' => (new ScopeEntity($server))->hydrate(['id' => 'foo']) ], - $grant->validateScopes('foo') + $grant->validateScopes('foo', $client) ); } @@ -85,7 +88,9 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $grant = new StubAbstractGrant; $grant->setAuthorizationServer($server); - $grant->validateScopes(); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + + $grant->validateScopes(null, $client); } public function testValidateScopesInvalidScope() @@ -102,7 +107,9 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $grant = new StubAbstractGrant; $grant->setAuthorizationServer($server); - $grant->validateScopes('blah'); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + + $grant->validateScopes('blah', $client); } public function testValidateScopesDefaultScope() @@ -123,7 +130,9 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $grant = new StubAbstractGrant; $grant->setAuthorizationServer($server); - $grant->validateScopes(); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + + $grant->validateScopes(null, $client); } public function testValidateScopesDefaultScopeArray() @@ -144,6 +153,8 @@ class AbstractGrantTest extends \PHPUnit_Framework_TestCase $grant = new StubAbstractGrant; $grant->setAuthorizationServer($server); - $grant->validateScopes(); + $client = (new ClientEntity($server))->hydrate(['id' => 'testapp']); + + $grant->validateScopes(null, $client); } } From 099f009b39eabf95717b3360e57e6f1f4baa1f13 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 1 Oct 2014 00:01:22 +0100 Subject: [PATCH 229/270] Ignore tests dir --- .scrutinizer.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.scrutinizer.yml b/.scrutinizer.yml index f7e6001f..da74028d 100644 --- a/.scrutinizer.yml +++ b/.scrutinizer.yml @@ -26,7 +26,7 @@ tools: paths: ['src'] php_loc: enabled: true - excluded_dirs: [vendor, test] + excluded_dirs: [vendor, tests] php_cpd: enabled: true - excluded_dirs: [vendor, test] \ No newline at end of file + excluded_dirs: [vendor, tests] \ No newline at end of file From 0f13ff188a49d34f1ea82c6a5d605561529ebdf6 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 1 Oct 2014 00:14:16 +0100 Subject: [PATCH 230/270] Renamed method to getRequest --- src/Event/ClientAuthenticationFailedEvent.php | 4 ++-- src/Event/UserAuthenticationFailedEvent.php | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/Event/ClientAuthenticationFailedEvent.php b/src/Event/ClientAuthenticationFailedEvent.php index 473d0937..d6605370 100644 --- a/src/Event/ClientAuthenticationFailedEvent.php +++ b/src/Event/ClientAuthenticationFailedEvent.php @@ -41,10 +41,10 @@ class ClientAuthenticationFailedEvent extends AbstractEvent } /** - * Return session + * Return request * @return \Symfony\Component\HttpFoundation\Request */ - public function getSession() + public function getRequest() { return $this->request; } diff --git a/src/Event/UserAuthenticationFailedEvent.php b/src/Event/UserAuthenticationFailedEvent.php index 12aad47e..0b2cb365 100644 --- a/src/Event/UserAuthenticationFailedEvent.php +++ b/src/Event/UserAuthenticationFailedEvent.php @@ -41,10 +41,10 @@ class UserAuthenticationFailedEvent extends AbstractEvent } /** - * Return session + * Return request * @return \Symfony\Component\HttpFoundation\Request */ - public function getSession() + public function getRequest() { return $this->request; } From 6be7c119dbf30417768ea552faa45b1636fd1d5d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 1 Oct 2014 00:16:26 +0100 Subject: [PATCH 231/270] Renamed Github user --- README.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index d161dce4..6bc6f068 100644 --- a/README.md +++ b/README.md @@ -43,11 +43,11 @@ Contribute to this documentation in the [gh-pages branch](https://github.com/the ## Changelog -[See the project releases page](https://github.com/php-loep/oauth2-server/releases) +[See the project releases page](https://github.com/thephpleague/oauth2-server/releases) ## Contributing -Please see [CONTRIBUTING](https://github.com/php-loep/oauth2-server/blob/master/CONTRIBUTING.md) for details. +Please see [CONTRIBUTING](https://github.com/thephpleague/oauth2-server/blob/master/CONTRIBUTING.md) for details. ## Support @@ -55,7 +55,7 @@ Bugs and feature request are tracked on [GitHub](https://github.com/thephpleague ## License -This package is released under the MIT License. See the bundled [LICENSE](https://github.com/php-loep/oauth2-server/blob/master/LICENSE) file for details. +This package is released under the MIT License. See the bundled [LICENSE](https://github.com/thephpleague/oauth2-server/blob/master/LICENSE) file for details. ## Credits @@ -67,6 +67,6 @@ Special thanks to: * [Nick Jackson](https://github.com/jacksonj04) * [Michael Gooden](https://github.com/MichaelGooden) * [Phil Sturgeon](https://github.com/philsturgeon) -* [and all the other contributors](https://github.com/php-loep/oauth2-server/contributors) +* [and all the other contributors](https://github.com/thephpleague/oauth2-server/contributors) The initial code was developed as part of the [Linkey](http://linkey.blogs.lincoln.ac.uk) project which was funded by [JISC](http://jisc.ac.uk) under the Access and Identity Management programme. From 3183828c1ceb27f4cd5495e9eeb1cbb555de0ba1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Wed, 1 Oct 2014 00:16:46 +0100 Subject: [PATCH 232/270] Added _site to .gitignore --- .gitignore | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index 81efeacd..c2aa2db9 100644 --- a/.gitignore +++ b/.gitignore @@ -11,4 +11,4 @@ /tests/codecept/tests/_log oauth2-server.paw /output_*/ -/.sculpin \ No newline at end of file +/_site \ No newline at end of file From 44ab7b613594cc6ee5c542f02a176f2912f6ea40 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 3 Oct 2014 14:26:55 +0100 Subject: [PATCH 233/270] Updated league/event to 1.0.* --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index 8fd0e468..1a7f600d 100644 --- a/composer.json +++ b/composer.json @@ -6,7 +6,7 @@ "require": { "php": ">=5.4.0", "symfony/http-foundation": "~2.1", - "league/event": "0.2.*" + "league/event": "1.0.*" }, "require-dev": { "phpunit/phpunit": "~4.0", From 6333a975f8fb51111b447a7e85806e4519fb52b9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 3 Oct 2014 14:42:01 +0100 Subject: [PATCH 234/270] Update README.md --- README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 6bc6f068..6cdeea34 100644 --- a/README.md +++ b/README.md @@ -1,7 +1,7 @@ -# PHP OAuth 2.0 Server +# PHP OAuth 2.0 Server by [@alexbilbie](https://twitter.com/alexbilbie) [![Latest Version](http://img.shields.io/packagist/v/league/oauth2-server.svg?style=flat-square)](https://github.com/thephpleague/oauth2-server/releases) -[![Software License](https://img.shields.io/badge/license-MIT-brightgreen.svg?style=flat-square)](LICENSE.md)
+[![Software License](https://img.shields.io/badge/license-MIT-brightgreen.svg?style=flat-square)](LICENSE.md) [![Build Status](https://img.shields.io/travis/thephpleague/oauth2-server/master.svg?style=flat-square)](https://travis-ci.org/thephpleague/oauth2-server) [![Coverage Status](https://img.shields.io/scrutinizer/coverage/g/thephpleague/oauth2-server.svg?style=flat-square)](https://scrutinizer-ci.com/g/thephpleague/oauth2-server/code-structure) [![Quality Score](https://img.shields.io/scrutinizer/g/thephpleague/oauth2-server.svg?style=flat-square)](https://scrutinizer-ci.com/g/thephpleague/oauth2-server) From 72e3ddad1e78310b3d9e8c0782a1da39fca6f7c0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 11 Oct 2014 23:38:59 +0100 Subject: [PATCH 235/270] Updated dependencies --- composer.json | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/composer.json b/composer.json index 1a7f600d..ed6e7b28 100644 --- a/composer.json +++ b/composer.json @@ -5,15 +5,12 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "~2.1", + "symfony/http-foundation": "2.5.*", "league/event": "1.0.*" }, "require-dev": { - "phpunit/phpunit": "~4.0", - "mockery/mockery": "~0.9", - "league/phpunit-coverage-listener": "~1.0", - "squizlabs/php_codesniffer": "~1.5", - "codeception/codeception": "2.0.*", + "phpunit/phpunit": "4.3.*", + "mockery/mockery": "0.9.*", "alexbilbie/fizzfuzz": "dev-develop" }, "repositories": [ From bc314f7c52ddd468a3ce6809b1a00462626f3aac Mon Sep 17 00:00:00 2001 From: tompedals Date: Sat, 25 Oct 2014 22:43:56 +0100 Subject: [PATCH 236/270] Update ScopeStorage::get method signature to match the interface --- examples/relational/Storage/ScopeStorage.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/relational/Storage/ScopeStorage.php b/examples/relational/Storage/ScopeStorage.php index 674fc6d9..9b50ae28 100644 --- a/examples/relational/Storage/ScopeStorage.php +++ b/examples/relational/Storage/ScopeStorage.php @@ -13,7 +13,7 @@ class ScopeStorage extends Adapter implements ScopeInterface /** * {@inheritdoc} */ - public function get($scope, $grantType = null) + public function get($scope, $grantType = null, $clientId = null) { $result = Capsule::table('oauth_scopes') ->where('id', $scope) From b60693c5d60bea801f47224ed5dcc407aaea9cc5 Mon Sep 17 00:00:00 2001 From: Leevi Graham Date: Fri, 7 Nov 2014 07:50:22 +1100 Subject: [PATCH 237/270] Associate the $client with $session. --- src/Grant/AuthCodeGrant.php | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index d2cb0cde..eef3d045 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -215,6 +215,8 @@ class AuthCodeGrant extends AbstractGrant } $session = $code->getSession(); + $session->associateClient($client); + $authCodeScopes = $code->getScopes(); // Generate the access token From fbf1535db116f7bec66353a4bcbd3969c9734758 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 00:45:25 +0000 Subject: [PATCH 238/270] Renamed Adapter to AbstractStorage because it isn't actually an adapter --- src/Storage/{Adapter.php => AbstractStorage.php} | 6 +++--- .../{AdapterTest.php => AbstractStorageTest.php} | 12 ++++++------ tests/unit/Stubs/StubAbstractStorage.php | 8 ++++++++ 3 files changed, 17 insertions(+), 9 deletions(-) rename src/Storage/{Adapter.php => AbstractStorage.php} (90%) rename tests/unit/Storage/{AdapterTest.php => AbstractStorageTest.php} (51%) create mode 100644 tests/unit/Stubs/StubAbstractStorage.php diff --git a/src/Storage/Adapter.php b/src/Storage/AbstractStorage.php similarity index 90% rename from src/Storage/Adapter.php rename to src/Storage/AbstractStorage.php index e9f3f1d6..5c18e7b8 100644 --- a/src/Storage/Adapter.php +++ b/src/Storage/AbstractStorage.php @@ -1,6 +1,6 @@ @@ -14,9 +14,9 @@ namespace League\OAuth2\Server\Storage; use League\OAuth2\Server\AbstractServer; /** - * Storage adapter class + * Abstract storage class */ -class Adapter +abstract class AbstractStorage { /** * Server diff --git a/tests/unit/Storage/AdapterTest.php b/tests/unit/Storage/AbstractStorageTest.php similarity index 51% rename from tests/unit/Storage/AdapterTest.php rename to tests/unit/Storage/AbstractStorageTest.php index 1610b4d0..6b943f71 100644 --- a/tests/unit/Storage/AdapterTest.php +++ b/tests/unit/Storage/AbstractStorageTest.php @@ -2,22 +2,22 @@ namespace LeagueTests\Storage; -use League\OAuth2\Server\Storage\Adapter; +use LeagueTests\Stubs\StubAbstractStorage; use LeagueTests\Stubs\StubAbstractServer; -class AdapterTest extends \PHPUnit_Framework_TestCase +class AdapterStorageTest extends \PHPUnit_Framework_TestCase { public function testSetGet() { - $adapter = new Adapter; + $storage = new StubAbstractStorage; - $reflector = new \ReflectionClass($adapter); + $reflector = new \ReflectionClass($storage); $setMethod = $reflector->getMethod('setServer'); $setMethod->setAccessible(true); - $setMethod->invokeArgs($adapter, [new StubAbstractServer]); + $setMethod->invokeArgs($storage, [new StubAbstractServer]); $getMethod = $reflector->getMethod('getServer'); $getMethod->setAccessible(true); - $this->assertTrue($getMethod->invoke($adapter) instanceof StubAbstractServer); + $this->assertTrue($getMethod->invoke($storage) instanceof StubAbstractServer); } } diff --git a/tests/unit/Stubs/StubAbstractStorage.php b/tests/unit/Stubs/StubAbstractStorage.php new file mode 100644 index 00000000..cb920f94 --- /dev/null +++ b/tests/unit/Stubs/StubAbstractStorage.php @@ -0,0 +1,8 @@ + Date: Fri, 7 Nov 2014 00:45:42 +0000 Subject: [PATCH 239/270] Ignore certain paths in Scrutenizer --- .scrutinizer.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.scrutinizer.yml b/.scrutinizer.yml index da74028d..5a1e7c71 100644 --- a/.scrutinizer.yml +++ b/.scrutinizer.yml @@ -1,3 +1,8 @@ +filter: + excluded_paths: + - tests/* + - vendor/* + - examples/* checks: php: code_rating: true From 61f8195eddfa5cd1368c4a7d8d761f33b0292304 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 00:46:02 +0000 Subject: [PATCH 240/270] Docblock fixes --- src/AbstractServer.php | 14 ++++++++++++-- src/Entity/AccessTokenEntity.php | 6 +++--- 2 files changed, 15 insertions(+), 5 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 16c4b931..38347f6f 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -25,7 +25,7 @@ abstract class AbstractServer /** * The request object * - * @var Util\RequestInterface + * @var \Symfony\Component\HttpFoundation\Request */ protected $request; @@ -37,12 +37,13 @@ abstract class AbstractServer /** * Token type - * @var TokenTypeInterface + * @var \League\OAuth2\Server\TokenType\TokenTypeInterface */ protected $tokenType; /** * Event emitter + * @var \League\Event\Emitter */ protected $eventEmitter; @@ -67,11 +68,20 @@ abstract class AbstractServer } } + /** + * Add an event listener to the event emitter + * @param string $eventName Event name + * @param callable $listener Callable function or method + */ public function addEventListener($eventName, callable $listener) { $this->eventEmitter->addListener($eventName, $listener); } + /** + * Returns the event emitter + * @return \League\Event\Emitter + */ public function getEventEmitter() { return $this->eventEmitter; diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index 76e8093a..c717ad80 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -18,11 +18,11 @@ class AccessTokenEntity extends AbstractTokenEntity { /** * Get session - * @return \League\OAuth2\Server\SessionEntity + * @return \League\OAuth2\Server\Entity\SessionEntity */ public function getSession() { - if ($this->session instanceof SessionEntity) { + if ($this->session instanceof Entity\SessionEntity) { return $this->session; } @@ -47,7 +47,7 @@ class AccessTokenEntity extends AbstractTokenEntity /** * Return all scopes associated with the session - * @return array Array of \League\OAuth2\Server\Entity\Scope + * @return [\League\OAuth2\Server\Entity\Scope] */ public function getScopes() { From db7c42cc913b87dd417a2f2edfc6b947dee1318b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 00:55:38 +0000 Subject: [PATCH 241/270] Fixed broken tests --- tests/unit/Grant/AuthCodeGrantTest.php | 6 ++++++ tests/unit/Grant/ClientCredentialsGrantTest.php | 10 ++++++++++ tests/unit/Grant/PasswordGrantTest.php | 7 +++++++ 3 files changed, 23 insertions(+) diff --git a/tests/unit/Grant/AuthCodeGrantTest.php b/tests/unit/Grant/AuthCodeGrantTest.php index 4cb8f353..1f281240 100644 --- a/tests/unit/Grant/AuthCodeGrantTest.php +++ b/tests/unit/Grant/AuthCodeGrantTest.php @@ -526,6 +526,9 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getByAuthCode')->andReturn( (new SessionEntity($server))->setId('foobar') ); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); @@ -594,6 +597,9 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getByAuthCode')->andReturn( (new SessionEntity($server))->setId('foobar') ); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); diff --git a/tests/unit/Grant/ClientCredentialsGrantTest.php b/tests/unit/Grant/ClientCredentialsGrantTest.php index 1741cd83..733c225b 100644 --- a/tests/unit/Grant/ClientCredentialsGrantTest.php +++ b/tests/unit/Grant/ClientCredentialsGrantTest.php @@ -4,6 +4,7 @@ namespace LeagueTests\Grant; use League\OAuth2\Server\Grant\ClientCredentialsGrant; use League\OAuth2\Server\Entity\ScopeEntity; +use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\Entity\ClientEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; @@ -127,6 +128,9 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('setServer'); $sessionStorage->shouldReceive('create')->andreturn(123); $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([]); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('associateScope'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); @@ -174,6 +178,9 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('associateScope'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); @@ -221,6 +228,9 @@ class ClientCredentialsGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); diff --git a/tests/unit/Grant/PasswordGrantTest.php b/tests/unit/Grant/PasswordGrantTest.php index c3648d10..959ee004 100644 --- a/tests/unit/Grant/PasswordGrantTest.php +++ b/tests/unit/Grant/PasswordGrantTest.php @@ -6,6 +6,7 @@ use League\OAuth2\Server\Grant\PasswordGrant; use League\OAuth2\Server\Grant\RefreshTokenGrant; use League\OAuth2\Server\Entity\ScopeEntity; use League\OAuth2\Server\Entity\ClientEntity; +use League\OAuth2\Server\Entity\SessionEntity; use League\OAuth2\Server\AuthorizationServer; use Mockery as M; @@ -372,6 +373,9 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('associateScope'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); @@ -430,6 +434,9 @@ class PasswordGrantTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('getScopes')->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar') + ); $sessionStorage->shouldReceive('associateScope'); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); From 5848c0d9201e41bcd79c96362e46597b8052d118 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 00:57:29 +0000 Subject: [PATCH 242/270] Failure is not an option anymore with hhvm --- .travis.yml | 4 ---- 1 file changed, 4 deletions(-) diff --git a/.travis.yml b/.travis.yml index 46b87578..11ebf1ad 100644 --- a/.travis.yml +++ b/.travis.yml @@ -6,10 +6,6 @@ php: - 5.6 - hhvm -matrix: - allow_failures: - - php: hhvm - before_script: - travis_retry composer self-update - travis_retry composer install --no-interaction --prefer-source --dev From 746cd4ab7d0366f73c0ba81069a98466a56292d0 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:07:47 +0000 Subject: [PATCH 243/270] Namespace fix --- src/Entity/AccessTokenEntity.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index c717ad80..b2f116a7 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -22,7 +22,7 @@ class AccessTokenEntity extends AbstractTokenEntity */ public function getSession() { - if ($this->session instanceof Entity\SessionEntity) { + if ($this->session instanceof SessionEntity) { return $this->session; } From fedd10b5ed37ce8c4a1786dc993d5cc67dcc248b Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:07:55 +0000 Subject: [PATCH 244/270] Docblock fix --- src/Entity/AccessTokenEntity.php | 2 +- src/Entity/AuthCodeEntity.php | 6 ++++-- 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index b2f116a7..95b8b705 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -47,7 +47,7 @@ class AccessTokenEntity extends AbstractTokenEntity /** * Return all scopes associated with the session - * @return [\League\OAuth2\Server\Entity\Scope] + * @return \League\OAuth2\Server\Entity\Scope[] */ public function getScopes() { diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index a116af75..0dfa9c07 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -61,7 +61,8 @@ class AuthCodeEntity extends AbstractTokenEntity } /** - * {@inheritdoc} + * Get session + * @return \League\OAuth2\Server\Entity\SessionEntity */ public function getSession() { @@ -75,7 +76,8 @@ class AuthCodeEntity extends AbstractTokenEntity } /** - * {@inheritdoc} + * Return all scopes associated with the session + * @return \League\OAuth2\Server\Entity\Scope[] */ public function getScopes() { From 3f114dc5e3e4fb77fc4445d648051ffbcf7c28fe Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:08:05 +0000 Subject: [PATCH 245/270] Exclude example dirs --- .scrutinizer.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.scrutinizer.yml b/.scrutinizer.yml index 5a1e7c71..887491bc 100644 --- a/.scrutinizer.yml +++ b/.scrutinizer.yml @@ -31,7 +31,7 @@ tools: paths: ['src'] php_loc: enabled: true - excluded_dirs: [vendor, tests] + excluded_dirs: [vendor, tests, examples] php_cpd: enabled: true - excluded_dirs: [vendor, tests] \ No newline at end of file + excluded_dirs: [vendor, tests, examples] \ No newline at end of file From d2601671551909c62ddceea2908c04f667fa79ee Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:13:21 +0000 Subject: [PATCH 246/270] Docblock fixes --- src/Entity/SessionEntity.php | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index 2d03cc48..2704cd0c 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -70,7 +70,7 @@ class SessionEntity /** * Authorization or resource server - * @var \League\OAuth2\Server\Authorization|\League\OAuth2\Server\Resource + * @var \League\OAuth2\Server\AuthorizationServer|\League\OAuth2\Server\ResourceServer */ protected $server; @@ -137,7 +137,7 @@ class SessionEntity /** * Return all scopes associated with the session - * @return array Array of \League\OAuth2\Server\Entity\Scope + * @return \League\OAuth2\Server\Entity\Scope[] */ public function getScopes() { @@ -150,7 +150,7 @@ class SessionEntity /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\Scope + * @param \League\OAuth2\Server\Entity\Scope[] * @return array */ private function formatScopes($unformated = []) @@ -193,7 +193,7 @@ class SessionEntity /** * Associate a client with the session - * @param League\OAuth2\Server\Entity\ClientEntity $client The client + * @param \League\OAuth2\Server\Entity\ClientEntity $client The client * @return self */ public function associateClient(ClientEntity $client) From f290de6dfcb75e7afdc9d5102874f2f49a265c03 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:17:04 +0000 Subject: [PATCH 247/270] Docblock fixes --- src/Entity/AbstractTokenEntity.php | 4 ++-- src/Entity/AccessTokenEntity.php | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 8f7478f4..04ca81f6 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -35,7 +35,7 @@ abstract class AbstractTokenEntity /** * Session scopes - * @var array Array of ScopeEntity + * @var \League\OAuth2\Server\Entity\ScopeEntity[] */ protected $scopes; @@ -133,7 +133,7 @@ abstract class AbstractTokenEntity /** * Format the local scopes array - * @param array $unformatted Array of \League\OAuth2\Server\Entity\Scope + * @param \League\OAuth2\Server\Entity\ScopeEntity[] * @return array */ protected function formatScopes($unformatted = []) diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index 95b8b705..884e6d2e 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -46,7 +46,7 @@ class AccessTokenEntity extends AbstractTokenEntity } /** - * Return all scopes associated with the session + * Return all scopes associated with the access token * @return \League\OAuth2\Server\Entity\Scope[] */ public function getScopes() From 11ab167376b54344c51d644a8bc7b8fb86c5b92f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:20:05 +0000 Subject: [PATCH 248/270] Docblock fix --- src/Entity/SessionEntity.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index 2704cd0c..672b25a0 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -28,7 +28,7 @@ class SessionEntity /** * Client identifier - * @var string + * @var \League\OAuth2\Server\Entity\ClientEntity */ protected $client; From 293bc52972040f12ae312e3cd053539a34d2187f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:25:04 +0000 Subject: [PATCH 249/270] Code declared in interface, not needed --- src/Grant/AbstractGrant.php | 18 ------------------ 1 file changed, 18 deletions(-) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 0c712e4c..129878fc 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -185,22 +185,4 @@ abstract class AbstractGrant implements GrantTypeInterface return $scopes; } - - /** - * Complete the grant flow - * - * Example response: - *
-     *  array(
-     *      'access_token'  =>  (string) ,   // The access token
-     *      'refresh_token' =>  (string) ,   // The refresh token (only set if the refresh token grant is enabled)
-     *      'token_type'    =>  'bearer',   // Almost always "bearer" (exceptions: JWT, SAML)
-     *      'expires'       =>  (int) ,      // The timestamp of when the access token will expire
-     *      'expires_in'    =>  (int) // The number of seconds before the access token will expire
-     *  )
-     * 
- * - * @return array An array of parameters to be passed back to the client - */ - abstract public function completeFlow(); } From d23dc4d247e1cc27fe2f2b36efc8a2167f123c57 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:25:13 +0000 Subject: [PATCH 250/270] Docblock fixes --- src/Grant/AbstractGrant.php | 14 +++++++------- src/Grant/AuthCodeGrant.php | 2 +- src/Grant/ClientCredentialsGrant.php | 3 +-- src/Grant/GrantTypeInterface.php | 2 +- src/Grant/PasswordGrant.php | 2 +- 5 files changed, 11 insertions(+), 12 deletions(-) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 129878fc..52636173 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -108,7 +108,7 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Inject the authorization server into the grant - * @param AuthorizationServer $server The authorization server instance + * @param \League\OAuth2\Server\AuthorizationServer $server The authorization server instance * @return self */ public function setAuthorizationServer(AuthorizationServer $server) @@ -119,11 +119,11 @@ abstract class AbstractGrant implements GrantTypeInterface } /** - * Given a list of scopes, validate them and return an arrary of Scope entities - * @param string $scopeParam A string of scopes (e.g. "profile email birthday") - * @param ClientEntity $client A string of scopes (e.g. "profile email birthday") - * @return array - * @throws ClientException If scope is invalid, or no scopes passed when required + * Given a list of scopes, validate them and return an array of Scope entities + * @param string $scopeParam A string of scopes (e.g. "profile email birthday") + * @param \League\OAuth2\Server\Entity\ClientEntity $client A string of scopes (e.g. "profile email birthday") + * @return \League\OAuth2\Server\Entity\ScopeEntity[] + * @throws \League\OAuth2\Server\Exception\ClientException If scope is invalid, or no scopes passed when required */ public function validateScopes($scopeParam = '', ClientEntity $client) { @@ -171,7 +171,7 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Format the local scopes array - * @param array $unformated Array of Array of \League\OAuth2\Server\Entity\ScopeEntity + * @param \League\OAuth2\Server\Entity\ScopeEntity[] * @return array */ protected function formatScopes($unformated = []) diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index eef3d045..b6a44da9 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -159,7 +159,7 @@ class AuthCodeGrant extends AbstractGrant /** * Complete the auth code grant - * @return array + * @return \League\OAuth2\Server\TokenType\TokenTypeInterface */ public function completeFlow() { diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 3e18af31..6464722d 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -49,8 +49,7 @@ class ClientCredentialsGrant extends AbstractGrant /** * Complete the client credentials grant - * @param null|array $inputParams - * @return array + * @return \League\OAuth2\Server\TokenType\TokenTypeInterface */ public function completeFlow() { diff --git a/src/Grant/GrantTypeInterface.php b/src/Grant/GrantTypeInterface.php index 5bad669c..44479a99 100644 --- a/src/Grant/GrantTypeInterface.php +++ b/src/Grant/GrantTypeInterface.php @@ -18,7 +18,7 @@ interface GrantTypeInterface { /** * Complete the grant flow - * @return array + * @return \League\OAuth2\Server\TokenType\TokenTypeInterface */ public function completeFlow(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 46084a68..03113146 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -73,7 +73,7 @@ class PasswordGrant extends AbstractGrant /** * Complete the password grant - * @return array + * @return \League\OAuth2\Server\TokenType\TokenTypeInterface */ public function completeFlow() { From a1c3746a5a7176aaa0f7fe4c1f960efb7a4ff4ee Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:26:42 +0000 Subject: [PATCH 251/270] Another docblock fix --- src/Entity/SessionEntity.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index 672b25a0..a81c67dc 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -205,7 +205,7 @@ class SessionEntity /** * Return the session client - * @return League\OAuth2\Server\Entity\Client + * @return \League\OAuth2\Server\Entity\ClientEntity */ public function getClient() { From 7586e62da1f10096db21206e451414b4ea80b25d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:30:50 +0000 Subject: [PATCH 252/270] Dead code --- src/Grant/ClientCredentialsGrant.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 6464722d..8a2ed402 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -107,9 +107,9 @@ class ClientCredentialsGrant extends AbstractGrant } // Save everything - $session->save($this->server->getStorage('session')); + $session->save(); $accessToken->setSession($session); - $accessToken->save($this->server->getStorage('access_token')); + $accessToken->save(); $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $accessToken->getId()); From 17dfc897b466a5a3674c5a52d9f2694e1f82ebf8 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:30:54 +0000 Subject: [PATCH 253/270] Docfix --- src/Grant/AbstractGrant.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 52636173..0ac0cdf5 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -41,7 +41,7 @@ abstract class AbstractGrant implements GrantTypeInterface /** * AuthServer instance - * @var AuthServer + * @var \League\OAuth2\Server\AuthorizationServer */ protected $server; From 1c2ec943e905f30505731ff5003b7b546c881b8f Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:35:59 +0000 Subject: [PATCH 254/270] Missing parameter --- src/Util/KeyAlgorithm/KeyAlgorithmInterface.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php index ee970172..64c0ed3c 100644 --- a/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php +++ b/src/Util/KeyAlgorithm/KeyAlgorithmInterface.php @@ -18,5 +18,5 @@ interface KeyAlgorithmInterface * @param integer $len Length of the generated code * @return string */ - public function generate(); + public function generate($len); } From e37289231d2ea00c52e30b278e3f61d17e898be2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:36:12 +0000 Subject: [PATCH 255/270] Removed dead code --- src/Grant/RefreshTokenGrant.php | 6 +++--- src/ResourceServer.php | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 5ac9bf8e..793174f2 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -137,21 +137,21 @@ class RefreshTokenGrant extends AbstractGrant // Expire the old token and save the new one $oldAccessToken->expire($this->server->getStorage('access_token')); - $newAccessToken->save($this->server->getStorage('access_token')); + $newAccessToken->save(); $this->server->getTokenType()->setSession($session); $this->server->getTokenType()->setParam('access_token', $newAccessToken->getId()); $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL()); // Expire the old refresh token - $oldRefreshToken->expire($this->server->getStorage('refresh_token')); + $oldRefreshToken->expire(); // Generate a new refresh token $newRefreshToken = new RefreshTokenEntity($this->server); $newRefreshToken->setId(SecureKey::generate()); $newRefreshToken->setExpireTime($this->getRefreshTokenTTL() + time()); $newRefreshToken->setAccessToken($newAccessToken); - $newRefreshToken->save($this->server->getStorage('refresh_token')); + $newRefreshToken->save(); $this->server->getTokenType()->setParam('refresh_token', $newRefreshToken->getId()); diff --git a/src/ResourceServer.php b/src/ResourceServer.php index a169401d..ff5e5c02 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -182,7 +182,7 @@ class ResourceServer extends AbstractServer { $accessTokenString = ($accessToken !== null) ? $accessToken - : $this->determineAccessToken($headersOnly, $accessToken); + : $this->determineAccessToken($headersOnly); // Set the access token $this->accessToken = $this->storages['access_token']->get($accessTokenString); From d16b1b72ba8740b94e2044f7948dffbaa993846a Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:36:17 +0000 Subject: [PATCH 256/270] Docblock fix --- src/Grant/PasswordGrant.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 03113146..053a3fc9 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -38,7 +38,7 @@ class PasswordGrant extends AbstractGrant /** * Callback to authenticate a user's name and password - * @var function + * @var callable */ protected $callback; From 9bb7af6f832cfc4b6c1584bf8d01bd3a2a3076d1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 01:48:23 +0000 Subject: [PATCH 257/270] More docblock fixes --- src/AbstractServer.php | 2 +- src/Grant/AuthCodeGrant.php | 2 +- src/Grant/ClientCredentialsGrant.php | 2 +- src/Grant/GrantTypeInterface.php | 2 +- src/Grant/PasswordGrant.php | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 38347f6f..12a1769f 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -115,7 +115,7 @@ abstract class AbstractServer /** * Return a storage class * @param string $obj The class required - * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface + * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface|Storage\AccessTokenInterface|Storage\AuthCodeInterface|Storage\RefreshTokenInterface */ public function getStorage($obj) { diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index b6a44da9..eef3d045 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -159,7 +159,7 @@ class AuthCodeGrant extends AbstractGrant /** * Complete the auth code grant - * @return \League\OAuth2\Server\TokenType\TokenTypeInterface + * @return array */ public function completeFlow() { diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index 8a2ed402..a6720195 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -49,7 +49,7 @@ class ClientCredentialsGrant extends AbstractGrant /** * Complete the client credentials grant - * @return \League\OAuth2\Server\TokenType\TokenTypeInterface + * @return array */ public function completeFlow() { diff --git a/src/Grant/GrantTypeInterface.php b/src/Grant/GrantTypeInterface.php index 44479a99..5bad669c 100644 --- a/src/Grant/GrantTypeInterface.php +++ b/src/Grant/GrantTypeInterface.php @@ -18,7 +18,7 @@ interface GrantTypeInterface { /** * Complete the grant flow - * @return \League\OAuth2\Server\TokenType\TokenTypeInterface + * @return array */ public function completeFlow(); } diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 053a3fc9..7601f3fc 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -73,7 +73,7 @@ class PasswordGrant extends AbstractGrant /** * Complete the password grant - * @return \League\OAuth2\Server\TokenType\TokenTypeInterface + * @return array */ public function completeFlow() { From 38153554895007454bff32ba53d41c540e4a7661 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 02:20:06 +0000 Subject: [PATCH 258/270] Removed generic getStorage method and replaced with distinct calls to getters --- src/AbstractServer.php | 178 +++++++++++++++++-- src/AuthorizationServer.php | 80 --------- src/Entity/AccessTokenEntity.php | 10 +- src/Entity/AuthCodeEntity.php | 10 +- src/Entity/RefreshTokenEntity.php | 6 +- src/Entity/SessionEntity.php | 8 +- src/Grant/AbstractGrant.php | 2 +- src/Grant/AuthCodeGrant.php | 6 +- src/Grant/ClientCredentialsGrant.php | 2 +- src/Grant/PasswordGrant.php | 2 +- src/Grant/RefreshTokenGrant.php | 6 +- src/ResourceServer.php | 33 +--- tests/unit/AbstractServerTest.php | 7 - tests/unit/AuthorizationServerTest.php | 2 +- tests/unit/Entity/AccessTokenEntityTest.php | 6 +- tests/unit/Entity/AuthCodeEntityTest.php | 4 +- tests/unit/Entity/RefreshTokenEntityTest.php | 8 +- tests/unit/Entity/SessionEntityTest.php | 12 +- 18 files changed, 213 insertions(+), 169 deletions(-) diff --git a/src/AbstractServer.php b/src/AbstractServer.php index 12a1769f..5167584a 100644 --- a/src/AbstractServer.php +++ b/src/AbstractServer.php @@ -13,6 +13,12 @@ namespace League\OAuth2\Server; use League\OAuth2\Server\Exception; use League\OAuth2\Server\TokenType\TokenTypeInterface; +use League\OAuth2\Server\Storage\SessionInterface; +use League\OAuth2\Server\Storage\AccessTokenInterface; +use League\OAuth2\Server\Storage\RefreshTokenInterface; +use League\OAuth2\Server\Storage\AuthCodeInterface; +use League\OAuth2\Server\Storage\ScopeInterface; +use League\OAuth2\Server\Storage\ClientInterface; use Symfony\Component\HttpFoundation\Request; use League\Event\Emitter; @@ -30,10 +36,40 @@ abstract class AbstractServer protected $request; /** - * Storage classes - * @var array + * Session storage + * @var \League\OAuth2\Server\Storage\SessionInterface */ - protected $storages = []; + protected $sessionStorage; + + /** + * Access token storage + * @var \League\OAuth2\Server\Storage\AccessTokenInterface + */ + protected $accessTokenStorage; + + /** + * Refresh token storage + * @var \League\OAuth2\Server\Storage\RefreshTokenInterface + */ + protected $refreshTokenStorage; + + /** + * Auth code storage + * @var \League\OAuth2\Server\Storage\AuthCodeInterface + */ + protected $authCodeStorage; + + /** + * Scope storage + * @var \League\OAuth2\Server\Storage\ScopeInterface + */ + protected $scopeStorage; + + /** + * Client storage + * @var \League\OAuth2\Server\Storage\ClientInterface + */ + protected $clientStorage; /** * Token type @@ -113,19 +149,135 @@ abstract class AbstractServer } /** - * Return a storage class - * @param string $obj The class required - * @return Storage\ClientInterface|Storage\ScopeInterface|Storage\SessionInterface|Storage\AccessTokenInterface|Storage\AuthCodeInterface|Storage\RefreshTokenInterface + * Set the client storage + * @param \League\OAuth2\Server\Storage\ClientInterface $storage + * @return self */ - public function getStorage($obj) + public function setClientStorage(ClientInterface $storage) { - if (!isset($this->storages[$obj])) { - throw new Exception\ServerErrorException( - 'The `'.$obj.'` storage interface has not been registered with the server' - ); - } + $storage->setServer($this); + $this->clientStorage = $storage; - return $this->storages[$obj]; + return $this; + } + + /** + * Set the session storage + * @param \League\OAuth2\Server\Storage\SessionInterface $storage + * @return self + */ + public function setSessionStorage(SessionInterface $storage) + { + $storage->setServer($this); + $this->sessionStorage = $storage; + + return $this; + } + + /** + * Set the access token storage + * @param \League\OAuth2\Server\Storage\AccessTokenInterface $storage + * @return self + */ + public function setAccessTokenStorage(AccessTokenInterface $storage) + { + $storage->setServer($this); + $this->accessTokenStorage = $storage; + + return $this; + } + + /** + * Set the refresh token storage + * @param \League\OAuth2\Server\Storage\RefreshTokenInteface $storage + * @return self + */ + public function setRefreshTokenStorage(RefreshTokenInterface $storage) + { + $storage->setServer($this); + $this->refreshTokenStorage = $storage; + + return $this; + } + + /** + * Set the auth code storage + * @param \League\OAuth2\Server\Storage\AuthCodeInterface $authCode + * @return self + */ + public function setAuthCodeStorage(AuthCodeInterface $storage) + { + $storage->setServer($this); + $this->authCodeStorage = $storage; + + return $this; + } + + /** + * Set the scope storage + * @param \League\OAuth2\Server\Storage\ScopeInterface $storage + * @return self + */ + public function setScopeStorage(ScopeInterface $storage) + { + $storage->setServer($this); + $this->scopeStorage = $storage; + + return $this; + } + + /** + * Return the client storage + * @return \League\OAuth2\Server\Storage\ClientInterface + */ + public function getClientStorage() + { + return $this->clientStorage; + } + + /** + * Return the scope storage + * @return \League\OAuth2\Server\Storage\ScopeInterface + */ + public function getScopeStorage() + { + return $this->scopeStorage; + } + + /** + * Return the session storage + * @return \League\OAuth2\Server\Storage\SessionInterface + */ + public function getSessionStorage() + { + return $this->sessionStorage; + } + + /** + * Return the refresh token storage + * @return \League\OAuth2\Server\Storage\RefreshTokenInterface + */ + public function getRefreshTokenStorage() + { + return $this->refreshTokenStorage; + } + + /** + * Return the access token storage + * @return \League\OAuth2\Server\Storage\AccessTokenInterface + */ + public function getAccessTokenStorage() + { + return $this->accessTokenStorage; + } + + /** + * Return the auth code storage + * @return \League\OAuth2\Server\Storage\AuthCodeInterface + */ + public function getAuthCodeStorage() + { + return $this->authCodeStorage; } /** diff --git a/src/AuthorizationServer.php b/src/AuthorizationServer.php index b0b0bc14..bd1445ff 100644 --- a/src/AuthorizationServer.php +++ b/src/AuthorizationServer.php @@ -75,8 +75,6 @@ class AuthorizationServer extends AbstractServer */ public function __construct() { - $this->storages = []; - // Set Bearer as the default token type $this->setTokenType(new Bearer); @@ -85,84 +83,6 @@ class AuthorizationServer extends AbstractServer return $this; } - /** - * Set the client storage - * @param ClientInterface $storage - * @return self - */ - public function setClientStorage(ClientInterface $storage) - { - $storage->setServer($this); - $this->storages['client'] = $storage; - - return $this; - } - - /** - * Set the session storage - * @param SessionInterface $storage - * @return self - */ - public function setSessionStorage(SessionInterface $storage) - { - $storage->setServer($this); - $this->storages['session'] = $storage; - - return $this; - } - - /** - * Set the access token storage - * @param AccessTokenInterface $storage - * @return self - */ - public function setAccessTokenStorage(AccessTokenInterface $storage) - { - $storage->setServer($this); - $this->storages['access_token'] = $storage; - - return $this; - } - - /** - * Set the refresh token storage - * @param RefreshTokenInteface $storage - * @return self - */ - public function setRefreshTokenStorage(RefreshTokenInterface $storage) - { - $storage->setServer($this); - $this->storages['refresh_token'] = $storage; - - return $this; - } - - /** - * Set the auth code storage - * @param AuthCodeInterface $authCode - * @return self - */ - public function setAuthCodeStorage(AuthCodeInterface $storage) - { - $storage->setServer($this); - $this->storages['auth_code'] = $storage; - - return $this; - } - - /** - * Set the scope storage - * @param ScopeInterface $storage - * @return self - */ - public function setScopeStorage(ScopeInterface $storage) - { - $storage->setServer($this); - $this->storages['scope'] = $storage; - - return $this; - } - /** * Enable support for a grant * @param GrantTypeInterface $grantType A grant class which conforms to Interface/GrantTypeInterface diff --git a/src/Entity/AccessTokenEntity.php b/src/Entity/AccessTokenEntity.php index 884e6d2e..512a3f84 100644 --- a/src/Entity/AccessTokenEntity.php +++ b/src/Entity/AccessTokenEntity.php @@ -26,7 +26,7 @@ class AccessTokenEntity extends AbstractTokenEntity return $this->session; } - $this->session = $this->server->getStorage('session')->getByAccessToken($this); + $this->session = $this->server->getSessionStorage()->getByAccessToken($this); return $this->session; } @@ -53,7 +53,7 @@ class AccessTokenEntity extends AbstractTokenEntity { if ($this->scopes === null) { $this->scopes = $this->formatScopes( - $this->server->getStorage('access_token')->getScopes($this) + $this->server->getAccessTokenStorage()->getScopes($this) ); } @@ -65,7 +65,7 @@ class AccessTokenEntity extends AbstractTokenEntity */ public function save() { - $this->server->getStorage('access_token')->create( + $this->server->getAccessTokenStorage()->create( $this->getId(), $this->getExpireTime(), $this->getSession()->getId() @@ -73,7 +73,7 @@ class AccessTokenEntity extends AbstractTokenEntity // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->server->getStorage('access_token')->associateScope($this, $scope); + $this->server->getAccessTokenStorage()->associateScope($this, $scope); } return $this; @@ -84,6 +84,6 @@ class AccessTokenEntity extends AbstractTokenEntity */ public function expire() { - $this->server->getStorage('access_token')->delete($this); + $this->server->getAccessTokenStorage()->delete($this); } } diff --git a/src/Entity/AuthCodeEntity.php b/src/Entity/AuthCodeEntity.php index 0dfa9c07..75b4dea7 100644 --- a/src/Entity/AuthCodeEntity.php +++ b/src/Entity/AuthCodeEntity.php @@ -70,7 +70,7 @@ class AuthCodeEntity extends AbstractTokenEntity return $this->session; } - $this->session = $this->server->getStorage('session')->getByAuthCode($this); + $this->session = $this->server->getSessionStorage()->getByAuthCode($this); return $this->session; } @@ -83,7 +83,7 @@ class AuthCodeEntity extends AbstractTokenEntity { if ($this->scopes === null) { $this->scopes = $this->formatScopes( - $this->server->getStorage('auth_code')->getScopes($this) + $this->server->getAuthCodeStorage()->getScopes($this) ); } @@ -95,7 +95,7 @@ class AuthCodeEntity extends AbstractTokenEntity */ public function save() { - $this->server->getStorage('auth_code')->create( + $this->server->getAuthCodeStorage()->create( $this->getId(), $this->getExpireTime(), $this->getSession()->getId(), @@ -104,7 +104,7 @@ class AuthCodeEntity extends AbstractTokenEntity // Associate the scope with the token foreach ($this->getScopes() as $scope) { - $this->server->getStorage('auth_code')->associateScope($this, $scope); + $this->server->getAuthCodeStorage()->associateScope($this, $scope); } return $this; @@ -115,6 +115,6 @@ class AuthCodeEntity extends AbstractTokenEntity */ public function expire() { - $this->server->getStorage('auth_code')->delete($this); + $this->server->getAuthCodeStorage()->delete($this); } } diff --git a/src/Entity/RefreshTokenEntity.php b/src/Entity/RefreshTokenEntity.php index 070fddf4..2f53d254 100644 --- a/src/Entity/RefreshTokenEntity.php +++ b/src/Entity/RefreshTokenEntity.php @@ -59,7 +59,7 @@ class RefreshTokenEntity extends AbstractTokenEntity public function getAccessToken() { if (! $this->accessTokenEntity instanceof AccessTokenEntity) { - $this->accessTokenEntity = $this->server->getStorage('access_token')->get($this->accessTokenId); + $this->accessTokenEntity = $this->server->getAccessTokenStorage()->get($this->accessTokenId); } return $this->accessTokenEntity; @@ -70,7 +70,7 @@ class RefreshTokenEntity extends AbstractTokenEntity */ public function save() { - $this->server->getStorage('refresh_token')->create( + $this->server->getRefreshTokenStorage()->create( $this->getId(), $this->getExpireTime(), $this->getAccessToken()->getId() @@ -82,6 +82,6 @@ class RefreshTokenEntity extends AbstractTokenEntity */ public function expire() { - $this->server->getStorage('refresh_token')->delete($this); + $this->server->getRefreshTokenStorage()->delete($this); } } diff --git a/src/Entity/SessionEntity.php b/src/Entity/SessionEntity.php index a81c67dc..f745223b 100644 --- a/src/Entity/SessionEntity.php +++ b/src/Entity/SessionEntity.php @@ -142,7 +142,7 @@ class SessionEntity public function getScopes() { if ($this->scopes === null) { - $this->scopes = $this->formatScopes($this->server->getStorage('session')->getScopes($this)); + $this->scopes = $this->formatScopes($this->server->getSessionStorage()->getScopes($this)); } return $this->scopes; @@ -213,7 +213,7 @@ class SessionEntity return $this->client; } - $this->client = $this->server->getStorage('client')->getBySession($this); + $this->client = $this->server->getClientStorage()->getBySession($this); return $this->client; } @@ -259,7 +259,7 @@ class SessionEntity public function save() { // Save the session and get an identifier - $id = $this->server->getStorage('session')->create( + $id = $this->server->getSessionStorage()->create( $this->getOwnerType(), $this->getOwnerId(), $this->getClient()->getId(), @@ -270,7 +270,7 @@ class SessionEntity // Associate the scope with the session foreach ($this->getScopes() as $scope) { - $this->server->getStorage('session')->associateScope($this, $scope); + $this->server->getSessionStorage()->associateScope($this, $scope); } } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 0ac0cdf5..59cc3ba1 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -153,7 +153,7 @@ abstract class AbstractGrant implements GrantTypeInterface $scopes = []; foreach ($scopesList as $scopeItem) { - $scope = $this->server->getStorage('scope')->get( + $scope = $this->server->getScopeStorage()->get( $scopeItem, $this->getIdentifier(), $client->getId() diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index eef3d045..df6c58b0 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -85,7 +85,7 @@ class AuthCodeGrant extends AbstractGrant } // Validate client ID and redirect URI - $client = $this->server->getStorage('client')->get( + $client = $this->server->getClientStorage()->get( $clientId, null, $redirectUri, @@ -186,7 +186,7 @@ class AuthCodeGrant extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->get( + $client = $this->server->getClientStorage()->get( $clientId, $clientSecret, $redirectUri, @@ -204,7 +204,7 @@ class AuthCodeGrant extends AbstractGrant throw new Exception\InvalidRequestException('code'); } - $code = $this->server->getStorage('auth_code')->get($authCode); + $code = $this->server->getAuthCodeStorage()->get($authCode); if (($code instanceof AuthCodeEntity) === false) { throw new Exception\InvalidRequestException('code'); } diff --git a/src/Grant/ClientCredentialsGrant.php b/src/Grant/ClientCredentialsGrant.php index a6720195..8c87b249 100644 --- a/src/Grant/ClientCredentialsGrant.php +++ b/src/Grant/ClientCredentialsGrant.php @@ -71,7 +71,7 @@ class ClientCredentialsGrant extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->get( + $client = $this->server->getClientStorage()->get( $clientId, $clientSecret, null, diff --git a/src/Grant/PasswordGrant.php b/src/Grant/PasswordGrant.php index 7601f3fc..5f7cc4c2 100644 --- a/src/Grant/PasswordGrant.php +++ b/src/Grant/PasswordGrant.php @@ -95,7 +95,7 @@ class PasswordGrant extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->get( + $client = $this->server->getClientStorage()->get( $clientId, $clientSecret, null, diff --git a/src/Grant/RefreshTokenGrant.php b/src/Grant/RefreshTokenGrant.php index 793174f2..67333991 100644 --- a/src/Grant/RefreshTokenGrant.php +++ b/src/Grant/RefreshTokenGrant.php @@ -76,7 +76,7 @@ class RefreshTokenGrant extends AbstractGrant } // Validate client ID and client secret - $client = $this->server->getStorage('client')->get( + $client = $this->server->getClientStorage()->get( $clientId, $clientSecret, null, @@ -94,7 +94,7 @@ class RefreshTokenGrant extends AbstractGrant } // Validate refresh token - $oldRefreshToken = $this->server->getStorage('refresh_token')->get($oldRefreshTokenParam); + $oldRefreshToken = $this->server->getRefreshTokenStorage()->get($oldRefreshTokenParam); if (($oldRefreshToken instanceof RefreshTokenEntity) === false) { throw new Exception\InvalidRefreshException(); @@ -136,7 +136,7 @@ class RefreshTokenGrant extends AbstractGrant } // Expire the old token and save the new one - $oldAccessToken->expire($this->server->getStorage('access_token')); + $oldAccessToken->expire(); $newAccessToken->save(); $this->server->getTokenType()->setSession($session); diff --git a/src/ResourceServer.php b/src/ResourceServer.php index ff5e5c02..dc8f0505 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -27,7 +27,7 @@ class ResourceServer extends AbstractServer { /** * The access token - * @var League\OAuth2\Server\AccessToken + * @var \League\OAuth2\Server\Entity\AccessTokenEntity */ protected $accessToken; @@ -51,17 +51,10 @@ class ResourceServer extends AbstractServer ClientInterface $clientStorage, ScopeInterface $scopeStorage ) { - $sessionStorage->setServer($this); - $this->setStorage('session', $sessionStorage); - - $accessTokenStorage->setServer($this); - $this->setStorage('access_token', $accessTokenStorage); - - $clientStorage->setServer($this); - $this->setStorage('client', $clientStorage); - - $scopeStorage->setServer($this); - $this->setStorage('scope', $scopeStorage); + $this->setSessionStorage($sessionStorage); + $this->setAccessTokenStorage($accessTokenStorage); + $this->setClientStorage($clientStorage); + $this->setScopeStorage($scopeStorage); // Set Bearer as the default token type $this->setTokenType(new Bearer); @@ -71,20 +64,6 @@ class ResourceServer extends AbstractServer return $this; } - /** - * Set the storage - * @param string $type Storage type - * @param mixed $storage Storage class - * @return self - */ - protected function setStorage($type, $storage) - { - $storage->setServer($this); - $this->storages[$type] = $storage; - - return $this; - } - /** * Returns the query string key for the access token. * @return string @@ -185,7 +164,7 @@ class ResourceServer extends AbstractServer : $this->determineAccessToken($headersOnly); // Set the access token - $this->accessToken = $this->storages['access_token']->get($accessTokenString); + $this->accessToken = $this->getAccessTokenStorage()->get($accessTokenString); if (!$this->accessToken instanceof AccessTokenEntity) { throw new Exception\AccessDeniedException; diff --git a/tests/unit/AbstractServerTest.php b/tests/unit/AbstractServerTest.php index 8933e137..8bf34dd5 100644 --- a/tests/unit/AbstractServerTest.php +++ b/tests/unit/AbstractServerTest.php @@ -25,11 +25,4 @@ class AbstractServerTest extends \PHPUnit_Framework_TestCase $this->assertTrue($server2->getRequest() instanceof \Symfony\Component\HttpFoundation\Request); } - - public function testGetStorageException() - { - $this->setExpectedException('League\OAuth2\Server\Exception\ServerErrorException'); - $server = new StubAbstractServer(); - $server->getStorage('foobar'); - } } diff --git a/tests/unit/AuthorizationServerTest.php b/tests/unit/AuthorizationServerTest.php index 90298d3a..a17a004e 100644 --- a/tests/unit/AuthorizationServerTest.php +++ b/tests/unit/AuthorizationServerTest.php @@ -34,7 +34,7 @@ class AuthorizationServerTest extends \PHPUnit_Framework_TestCase $this->assertSame($server->getResponseTypes(), ['foobar']); $this->assertTrue($server->scopeParamRequired()); $this->assertTrue($server->stateParamRequired()); - $this->assertTrue($server->getStorage('scope') instanceof ScopeInterface); + $this->assertTrue($server->getScopeStorage() instanceof ScopeInterface); $this->assertEquals('foobar', $server->getDefaultScope()); $this->assertEquals(',', $server->getScopeDelimeter()); $this->assertEquals(1, $server->getAccessTokenTTL()); diff --git a/tests/unit/Entity/AccessTokenEntityTest.php b/tests/unit/Entity/AccessTokenEntityTest.php index f034d4c5..ae1399cf 100644 --- a/tests/unit/Entity/AccessTokenEntityTest.php +++ b/tests/unit/Entity/AccessTokenEntityTest.php @@ -29,8 +29,8 @@ class AccessTokenTest extends \PHPUnit_Framework_TestCase ); $sessionStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); - $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); + $server->shouldReceive('getAccessTokenStorage')->andReturn($accessTokenStorage); $server->setAccessTokenStorage($accessTokenStorage); $server->setSessionStorage($sessionStorage); @@ -49,7 +49,7 @@ class AccessTokenTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('delete'); $accessTokenStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->shouldReceive('getAccessTokenStorage')->andReturn($accessTokenStorage); $server->setAccessTokenStorage($accessTokenStorage); diff --git a/tests/unit/Entity/AuthCodeEntityTest.php b/tests/unit/Entity/AuthCodeEntityTest.php index 56205e44..87b761bb 100644 --- a/tests/unit/Entity/AuthCodeEntityTest.php +++ b/tests/unit/Entity/AuthCodeEntityTest.php @@ -40,7 +40,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); - $server->shouldReceive('getStorage')->with('auth_code')->andReturn($authCodeStorage); + $server->shouldReceive('getAuthCodeStorage')->andReturn($authCodeStorage); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAuthCode')->andReturn( @@ -48,7 +48,7 @@ class AuthCodeTest extends \PHPUnit_Framework_TestCase ); $sessionStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); $server->setAuthCodeStorage($authCodeStorage); $server->setSessionStorage($sessionStorage); diff --git a/tests/unit/Entity/RefreshTokenEntityTest.php b/tests/unit/Entity/RefreshTokenEntityTest.php index 6a57436d..d1f5bde5 100644 --- a/tests/unit/Entity/RefreshTokenEntityTest.php +++ b/tests/unit/Entity/RefreshTokenEntityTest.php @@ -47,7 +47,7 @@ class RefreshTokenEntityTest extends \PHPUnit_Framework_TestCase $refreshTokenStorage->shouldReceive('setServer'); $refreshTokenStorage->shouldReceive('associateScope'); - $server->shouldReceive('getStorage')->with('refresh_token')->andReturn($refreshTokenStorage); + $server->shouldReceive('getRefreshTokenStorage')->andReturn($refreshTokenStorage); $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); $accessTokenStorage->shouldReceive('setServer'); @@ -58,7 +58,7 @@ class RefreshTokenEntityTest extends \PHPUnit_Framework_TestCase (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); - $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->shouldReceive('getAccessTokenStorage')->andReturn($accessTokenStorage); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getByAccessToken')->andReturn( @@ -66,7 +66,7 @@ class RefreshTokenEntityTest extends \PHPUnit_Framework_TestCase ); $sessionStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); $server->setAccessTokenStorage($accessTokenStorage); $server->setRefreshTokenStorage($refreshTokenStorage); @@ -84,7 +84,7 @@ class RefreshTokenEntityTest extends \PHPUnit_Framework_TestCase $refreshTokenStorage->shouldReceive('delete'); $refreshTokenStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('refresh_token')->andReturn($refreshTokenStorage); + $server->shouldReceive('getRefreshTokenStorage')->andReturn($refreshTokenStorage); $server->setRefreshTokenStorage($refreshTokenStorage); diff --git a/tests/unit/Entity/SessionEntityTest.php b/tests/unit/Entity/SessionEntityTest.php index e02dae85..4aea41ea 100644 --- a/tests/unit/Entity/SessionEntityTest.php +++ b/tests/unit/Entity/SessionEntityTest.php @@ -81,7 +81,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $server->setAccessTokenStorage($accessTokenStorage); - $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->shouldReceive('getAccessTokenStorage')->andReturn($accessTokenStorage); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getScopes')->andReturn( @@ -90,7 +90,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('setServer'); $server->setSessionStorage($sessionStorage); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); $entity = new SessionEntity($server); $this->assertEquals($entity->getScopes(), []); @@ -106,7 +106,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase $accessTokenStorage->shouldReceive('setServer'); $server->setAccessTokenStorage($accessTokenStorage); - $server->shouldReceive('getStorage')->with('access_token')->andReturn($accessTokenStorage); + $server->shouldReceive('getAccessTokenStorage')->andReturn($accessTokenStorage); $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); $sessionStorage->shouldReceive('getScopes')->andReturn( @@ -115,7 +115,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase $sessionStorage->shouldReceive('setServer'); $server->setSessionStorage($sessionStorage); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); $entity = new SessionEntity($server); $this->assertFalse($entity->hasScope('foo')); @@ -135,7 +135,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase (new ScopeEntity($server))->hydrate(['id' => 'foo']) ]); - $server->shouldReceive('getStorage')->with('session')->andReturn($sessionStorage); + $server->shouldReceive('getSessionStorage')->andReturn($sessionStorage); $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); $clientStorage->shouldReceive('getBySession')->andReturn( @@ -143,7 +143,7 @@ class SessionTest extends \PHPUnit_Framework_TestCase ); $clientStorage->shouldReceive('setServer'); - $server->shouldReceive('getStorage')->with('client')->andReturn($clientStorage); + $server->shouldReceive('getClientStorage')->andReturn($clientStorage); $server->setSessionStorage($sessionStorage); $server->setClientStorage($clientStorage); From 4bbbc720359c66c5e085a8886bc707b37e690e52 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 02:29:04 +0000 Subject: [PATCH 259/270] Added StorageInterface --- src/Storage/AbstractStorage.php | 2 +- src/Storage/StorageInterface.php | 26 ++++++++++++++++++++++++++ 2 files changed, 27 insertions(+), 1 deletion(-) create mode 100644 src/Storage/StorageInterface.php diff --git a/src/Storage/AbstractStorage.php b/src/Storage/AbstractStorage.php index 5c18e7b8..b932e5a0 100644 --- a/src/Storage/AbstractStorage.php +++ b/src/Storage/AbstractStorage.php @@ -16,7 +16,7 @@ use League\OAuth2\Server\AbstractServer; /** * Abstract storage class */ -abstract class AbstractStorage +abstract class AbstractStorage implements StorageInterface { /** * Server diff --git a/src/Storage/StorageInterface.php b/src/Storage/StorageInterface.php new file mode 100644 index 00000000..ae9f0c74 --- /dev/null +++ b/src/Storage/StorageInterface.php @@ -0,0 +1,26 @@ + + * @copyright Copyright (c) Alex Bilbie + * @license http://mit-license.org/ + * @link https://github.com/thephpleague/oauth2-server + */ + +namespace League\OAuth2\Server\Storage; + +use League\OAuth2\Server\Entity\SessionEntity; + +/** + * Storage interface + */ +interface StorageInterface +{ + /** + * Set the server + * @param \League\OAuth2\Server\AbstractServer $server + */ + public function setServer(AbstractServer $server); +} From a2a768b6e6f737ded89eb47b600158db80f1d6b1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 02:31:37 +0000 Subject: [PATCH 260/270] All interfaces extend StorageInterface --- src/Storage/AccessTokenInterface.php | 2 +- src/Storage/AuthCodeInterface.php | 2 +- src/Storage/ClientInterface.php | 2 +- src/Storage/RefreshTokenInterface.php | 2 +- src/Storage/ScopeInterface.php | 2 +- src/Storage/SessionInterface.php | 2 +- src/Storage/StorageInterface.php | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) diff --git a/src/Storage/AccessTokenInterface.php b/src/Storage/AccessTokenInterface.php index fefa1fc1..126efb0b 100644 --- a/src/Storage/AccessTokenInterface.php +++ b/src/Storage/AccessTokenInterface.php @@ -19,7 +19,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; /** * Access token interface */ -interface AccessTokenInterface +interface AccessTokenInterface extends StorageInterface { /** * Get an instance of Entity\AccessTokenEntity diff --git a/src/Storage/AuthCodeInterface.php b/src/Storage/AuthCodeInterface.php index fab3ee2f..c95f636f 100644 --- a/src/Storage/AuthCodeInterface.php +++ b/src/Storage/AuthCodeInterface.php @@ -17,7 +17,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; /** * Auth code storage interface */ -interface AuthCodeInterface +interface AuthCodeInterface extends StorageInterface { /** * Get the auth code diff --git a/src/Storage/ClientInterface.php b/src/Storage/ClientInterface.php index 202e4b02..44f7b11a 100644 --- a/src/Storage/ClientInterface.php +++ b/src/Storage/ClientInterface.php @@ -16,7 +16,7 @@ use League\OAuth2\Server\Entity\SessionEntity; /** * Client storage interface */ -interface ClientInterface +interface ClientInterface extends StorageInterface { /** * Validate a client diff --git a/src/Storage/RefreshTokenInterface.php b/src/Storage/RefreshTokenInterface.php index 38621295..5be23d1c 100644 --- a/src/Storage/RefreshTokenInterface.php +++ b/src/Storage/RefreshTokenInterface.php @@ -16,7 +16,7 @@ use League\OAuth2\Server\Entity\RefreshTokenEntity; /** * Refresh token interface */ -interface RefreshTokenInterface +interface RefreshTokenInterface extends StorageInterface { /** * Return a new instance of \League\OAuth2\Server\Entity\RefreshTokenEntity diff --git a/src/Storage/ScopeInterface.php b/src/Storage/ScopeInterface.php index 986510ed..95ff8aac 100644 --- a/src/Storage/ScopeInterface.php +++ b/src/Storage/ScopeInterface.php @@ -14,7 +14,7 @@ namespace League\OAuth2\Server\Storage; /** * Scope interface */ -interface ScopeInterface +interface ScopeInterface extends StorageInterface { /** * Return information about a scope diff --git a/src/Storage/SessionInterface.php b/src/Storage/SessionInterface.php index 3a1b1c33..545df304 100644 --- a/src/Storage/SessionInterface.php +++ b/src/Storage/SessionInterface.php @@ -19,7 +19,7 @@ use League\OAuth2\Server\Entity\ScopeEntity; /** * Session storage interface */ -interface SessionInterface +interface SessionInterface extends StorageInterface { /** * Get a session from an access token diff --git a/src/Storage/StorageInterface.php b/src/Storage/StorageInterface.php index ae9f0c74..e1c7b83d 100644 --- a/src/Storage/StorageInterface.php +++ b/src/Storage/StorageInterface.php @@ -11,7 +11,7 @@ namespace League\OAuth2\Server\Storage; -use League\OAuth2\Server\Entity\SessionEntity; +use League\OAuth2\Server\AbstractServer; /** * Storage interface From 5c5d7d5340639d9733f02e3a10c4adf965c23089 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 02:31:54 +0000 Subject: [PATCH 261/270] Removed old Travis before_script commands --- .travis.yml | 5 ----- 1 file changed, 5 deletions(-) diff --git a/.travis.yml b/.travis.yml index 11ebf1ad..f86719b2 100644 --- a/.travis.yml +++ b/.travis.yml @@ -9,11 +9,6 @@ php: before_script: - travis_retry composer self-update - travis_retry composer install --no-interaction --prefer-source --dev - - cd examples/relational && composer install --prefer-dist - - php config/init.php - - php -S localhost:8000 & - - sleep 3 - - cd ../.. script: - mkdir -p build/logs From fa55a791e78215f3f11c7a14dd8e1f272e7df3f1 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 7 Nov 2014 16:53:56 +0000 Subject: [PATCH 262/270] Updated http-foundation. Fixes #241 --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index ed6e7b28..48766ab7 100644 --- a/composer.json +++ b/composer.json @@ -5,7 +5,7 @@ "license": "MIT", "require": { "php": ">=5.4.0", - "symfony/http-foundation": "2.5.*", + "symfony/http-foundation": "~2.5", "league/event": "1.0.*" }, "require-dev": { From 856051bfb3e7205510a797253f50d85307b7d5ba Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 16:20:13 +0000 Subject: [PATCH 263/270] Fix #232 --- src/ResourceServer.php | 67 ------------------------------- tests/unit/ResourceServerTest.php | 11 ----- 2 files changed, 78 deletions(-) diff --git a/src/ResourceServer.php b/src/ResourceServer.php index dc8f0505..f9d9f6ea 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -64,15 +64,6 @@ class ResourceServer extends AbstractServer return $this; } - /** - * Returns the query string key for the access token. - * @return string - */ - public function getIdKey() - { - return $this->tokenKey; - } - /** * Sets the query string key for the access token. * @param $key The new query string key @@ -85,24 +76,6 @@ class ResourceServer extends AbstractServer return $this; } - /** - * Gets the access token owner ID - * @return string - */ - public function getOwnerId() - { - return $this->accessToken->getSession()->getOwnerId(); - } - - /** - * Gets the owner type - * @return string - */ - public function getOwnerType() - { - return $this->accessToken->getSession()->getOwnerType(); - } - /** * Gets the access token * @return string @@ -112,46 +85,6 @@ class ResourceServer extends AbstractServer return $this->accessToken->getId(); } - /** - * Gets the client ID that created the session - * @return string - */ - public function getClientId() - { - return $this->accessToken->getSession()->getClient()->getId(); - } - - /** - * Get the session scopes - * @return array - */ - public function getScopes() - { - return $this->accessToken->getScopes(); - } - - /** - * Checks if the presented access token has the given scope(s) - * @param array|string $scopes An array of scopes or a single scope as a string - * @return bool Returns bool if all scopes are found, false if any fail - */ - public function hasScope($scopes) - { - if (is_string($scopes)) { - return $this->accessToken->hasScope($scopes); - } - - if (is_array($scopes)) { - foreach ($scopes as $scope) { - if (!$this->accessToken->hasScope($scope)) { - return false; - } - } - } - - return true; - } - /** * Checks if the access token is valid or not * @param $headersOnly Limit Access Token to Authorization header only diff --git a/tests/unit/ResourceServerTest.php b/tests/unit/ResourceServerTest.php index 7fce1600..16d35b3f 100644 --- a/tests/unit/ResourceServerTest.php +++ b/tests/unit/ResourceServerTest.php @@ -165,17 +165,6 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $server->setRequest($request); $this->assertTrue($server->isValidRequest()); - $this->assertEquals('at', $server->getIdKey()); - $this->assertEquals(123, $server->getOwnerId()); - $this->assertEquals('user', $server->getOwnerType()); $this->assertEquals('abcdef', $server->getAccessToken()); - $this->assertEquals('testapp', $server->getClientId()); - $this->assertTrue($server->hasScope('foo')); - $this->assertTrue($server->hasScope('bar')); - $this->assertTrue($server->hasScope(['foo', 'bar'])); - $this->assertTrue(isset($server->getScopes()['foo'])); - $this->assertTrue(isset($server->getScopes()['bar'])); - $this->assertFalse($server->hasScope(['foobar'])); - $this->assertFalse($server->hasScope('foobar')); } } From b9debaab2670575a776730d09ec9bc5654b704d4 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 16:44:39 +0000 Subject: [PATCH 264/270] Fix #231 --- .../relational/Storage/AccessTokenStorage.php | 1 - .../Storage/RefreshTokenStorage.php | 1 - src/Entity/AbstractTokenEntity.php | 9 +++ src/Grant/AuthCodeGrant.php | 5 ++ src/ResourceServer.php | 7 +++ tests/unit/Grant/AuthCodeGrantTest.php | 4 +- tests/unit/ResourceServerTest.php | 58 ++++++++++++++++++- 7 files changed, 80 insertions(+), 5 deletions(-) diff --git a/examples/relational/Storage/AccessTokenStorage.php b/examples/relational/Storage/AccessTokenStorage.php index faccb46c..55949314 100644 --- a/examples/relational/Storage/AccessTokenStorage.php +++ b/examples/relational/Storage/AccessTokenStorage.php @@ -20,7 +20,6 @@ class AccessTokenStorage extends Adapter implements AccessTokenInterface { $result = Capsule::table('oauth_access_tokens') ->where('access_token', $token) - ->where('expire_time', '>=', time()) ->get(); if (count($result) === 1) { diff --git a/examples/relational/Storage/RefreshTokenStorage.php b/examples/relational/Storage/RefreshTokenStorage.php index ab291802..92c52647 100644 --- a/examples/relational/Storage/RefreshTokenStorage.php +++ b/examples/relational/Storage/RefreshTokenStorage.php @@ -17,7 +17,6 @@ class RefreshTokenStorage extends Adapter implements RefreshTokenInterface { $result = Capsule::table('oauth_refresh_tokens') ->where('refresh_token', $token) - ->where('expire_time', '>=', time()) ->get(); if (count($result) === 1) { diff --git a/src/Entity/AbstractTokenEntity.php b/src/Entity/AbstractTokenEntity.php index 04ca81f6..5eeb775f 100644 --- a/src/Entity/AbstractTokenEntity.php +++ b/src/Entity/AbstractTokenEntity.php @@ -96,6 +96,15 @@ abstract class AbstractTokenEntity return $this->expireTime; } + /** + * Is the token expired? + * @return bool + */ + public function isExpired() + { + return ((time() - $this->expireTime) > 0); + } + /** * Set token ID * @param string $token Token ID diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index df6c58b0..8d73560d 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -209,6 +209,11 @@ class AuthCodeGrant extends AbstractGrant throw new Exception\InvalidRequestException('code'); } + // Ensure the auth code hasn't expired + if ($code->isExpired() === true) { + throw new Exception\InvalidRequestException('code'); + } + // Check redirect URI presented matches redirect URI originally used in authorize request if ($code->getRedirectUri() !== $redirectUri) { throw new Exception\InvalidRequestException('redirect_uri'); diff --git a/src/ResourceServer.php b/src/ResourceServer.php index f9d9f6ea..6596a559 100644 --- a/src/ResourceServer.php +++ b/src/ResourceServer.php @@ -99,10 +99,17 @@ class ResourceServer extends AbstractServer // Set the access token $this->accessToken = $this->getAccessTokenStorage()->get($accessTokenString); + // Ensure the access token exists if (!$this->accessToken instanceof AccessTokenEntity) { throw new Exception\AccessDeniedException; } + // Check the access token hasn't expired + // Ensure the auth code hasn't expired + if ($this->accessToken->isExpired() === true) { + throw new Exception\AccessDeniedException; + } + return true; } diff --git a/tests/unit/Grant/AuthCodeGrantTest.php b/tests/unit/Grant/AuthCodeGrantTest.php index 1f281240..ad36a011 100644 --- a/tests/unit/Grant/AuthCodeGrantTest.php +++ b/tests/unit/Grant/AuthCodeGrantTest.php @@ -551,7 +551,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar')->setExpireTime(time() + 300) ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) @@ -622,7 +622,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('delete'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar') + (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://foo/bar')->setExpireTime(time() + 300) ); $authCodeStorage->shouldReceive('getScopes')->andReturn([ (new ScopeEntity($server))->hydrate(['id' => 'foo']) diff --git a/tests/unit/ResourceServerTest.php b/tests/unit/ResourceServerTest.php index 16d35b3f..34d61547 100644 --- a/tests/unit/ResourceServerTest.php +++ b/tests/unit/ResourceServerTest.php @@ -142,7 +142,7 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase }); $accessTokenStorage->shouldReceive('get')->andReturn( - (new AccessTokenEntity($server))->setId('abcdef') + (new AccessTokenEntity($server))->setId('abcdef')->setExpireTime(time() + 300) ); $accessTokenStorage->shouldReceive('getScopes')->andReturn([ @@ -167,4 +167,60 @@ class ResourceServerTest extends \PHPUnit_Framework_TestCase $this->assertTrue($server->isValidRequest()); $this->assertEquals('abcdef', $server->getAccessToken()); } + + /** + * @expectedException League\OAuth2\Server\Exception\AccessDeniedException + */ + public function testIsValidExpiredToken() + { + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + + $server = new ResourceServer( + $sessionStorage, + $accessTokenStorage, + $clientStorage, + $scopeStorage + ); + + $server->setIdKey('at'); + + $server->addEventListener('session.owner', function($event) { + $this->assertTrue($event->getSession() instanceof \League\OAuth2\Server\Entity\SessionEntity); + }); + + $accessTokenStorage->shouldReceive('get')->andReturn( + (new AccessTokenEntity($server))->setId('abcdef')->setExpireTime(time() - 300) + ); + + $accessTokenStorage->shouldReceive('getScopes')->andReturn([ + (new ScopeEntity($server))->hydrate(['id' => 'foo']), + (new ScopeEntity($server))->hydrate(['id' => 'bar']) + ]); + + $sessionStorage->shouldReceive('getByAccessToken')->andReturn( + (new SessionEntity($server))->setId('foobar')->setOwner('user', 123) + ); + + $clientStorage->shouldReceive('getBySession')->andReturn( + (new ClientEntity($server))->hydrate(['id' => 'testapp']) + ); + + $request = new \Symfony\Component\HttpFoundation\Request(); + $request->headers = new \Symfony\Component\HttpFoundation\ParameterBag([ + 'Authorization' => 'Bearer abcdef' + ]); + $server->setRequest($request); + + $server->isValidRequest(); + } } From 6b29b7450e86006d4d9565dc049a287d3dbab2ae Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:03:15 +0000 Subject: [PATCH 265/270] If the client should redirect during AuthCodeGrant authorisation then provide a redirect uri --- src/Exception/InvalidRequestException.php | 4 ++-- src/Exception/InvalidScopeException.php | 4 ++-- src/Exception/OAuthException.php | 23 +++++++++++++++---- .../UnsupportedResponseTypeException.php | 4 ++-- src/Grant/AbstractGrant.php | 9 ++++---- src/Grant/AuthCodeGrant.php | 8 +++---- 6 files changed, 34 insertions(+), 18 deletions(-) diff --git a/src/Exception/InvalidRequestException.php b/src/Exception/InvalidRequestException.php index cafa7df3..05535203 100644 --- a/src/Exception/InvalidRequestException.php +++ b/src/Exception/InvalidRequestException.php @@ -30,7 +30,7 @@ class InvalidRequestException extends OAuthException * {@inheritdoc} */ - public function __construct($parameter, $shouldRedirect = false) + public function __construct($parameter, $redirectUri = null) { parent::__construct( sprintf( @@ -39,6 +39,6 @@ class InvalidRequestException extends OAuthException ) ); - $this->serverShouldRedirect = $shouldRedirect; + $this->redirectUri = $redirectUri; } } diff --git a/src/Exception/InvalidScopeException.php b/src/Exception/InvalidScopeException.php index 0120ca23..f0574f8d 100644 --- a/src/Exception/InvalidScopeException.php +++ b/src/Exception/InvalidScopeException.php @@ -30,7 +30,7 @@ class InvalidScopeException extends OAuthException * {@inheritdoc} */ - public function __construct($parameter, $shouldRedirect = false) + public function __construct($parameter, $redirectUri = null) { parent::__construct( sprintf( @@ -39,6 +39,6 @@ class InvalidScopeException extends OAuthException ) ); - $this->serverShouldRedirect = $shouldRedirect; + $this->redirectUri = $redirectUri; } } diff --git a/src/Exception/OAuthException.php b/src/Exception/OAuthException.php index c4e8d157..229ac1ab 100644 --- a/src/Exception/OAuthException.php +++ b/src/Exception/OAuthException.php @@ -24,10 +24,10 @@ class OAuthException extends \Exception public $httpStatusCode = 400; /** - * If true the server should redirect back to the client - * @var boolean + * Redirect URI if the server should redirect back to the client + * @var string|null */ - public $serverShouldRedirect = false; + public $redirectUri = null; /** * The exception type @@ -48,7 +48,22 @@ class OAuthException extends \Exception */ public function shouldRedirect() { - return $this->serverShouldRedirect; + return is_null($this->redirectUri) ? false : true; + } + + /** + * Return redirect URI if set + * @return string|null + */ + public function getRedirectUri() + { + return \League\OAuth2\Server\Util\RedirectUri::make( + $this->redirectUri, + [ + 'error' => $this->errorType, + 'message' => $this->getMessage(), + ] + ); } /** diff --git a/src/Exception/UnsupportedResponseTypeException.php b/src/Exception/UnsupportedResponseTypeException.php index cfd74c1a..8707f0c5 100644 --- a/src/Exception/UnsupportedResponseTypeException.php +++ b/src/Exception/UnsupportedResponseTypeException.php @@ -29,9 +29,9 @@ class UnsupportedResponseTypeException extends OAuthException /** * {@inheritdoc} */ - public function __construct($parameter) + public function __construct($parameter, $redirectUri = null) { parent::__construct('The authorization server does not support obtaining an access token using this method.'); - $this->serverShouldRedirect = true; + $this->redirectUri = $redirectUri; } } diff --git a/src/Grant/AbstractGrant.php b/src/Grant/AbstractGrant.php index 59cc3ba1..2609fda6 100644 --- a/src/Grant/AbstractGrant.php +++ b/src/Grant/AbstractGrant.php @@ -121,11 +121,12 @@ abstract class AbstractGrant implements GrantTypeInterface /** * Given a list of scopes, validate them and return an array of Scope entities * @param string $scopeParam A string of scopes (e.g. "profile email birthday") - * @param \League\OAuth2\Server\Entity\ClientEntity $client A string of scopes (e.g. "profile email birthday") + * @param \League\OAuth2\Server\Entity\ClientEntity $client Client entity + * @param string|null $redirectUri The redirect URI to return the user to * @return \League\OAuth2\Server\Entity\ScopeEntity[] - * @throws \League\OAuth2\Server\Exception\ClientException If scope is invalid, or no scopes passed when required + * @throws \League\OAuth2\Server\Exception\InvalidScopeException If scope is invalid, or no scopes passed when required */ - public function validateScopes($scopeParam = '', ClientEntity $client) + public function validateScopes($scopeParam = '', ClientEntity $client, $redirectUri = null) { $scopesList = explode($this->server->getScopeDelimeter(), $scopeParam); @@ -160,7 +161,7 @@ abstract class AbstractGrant implements GrantTypeInterface ); if (($scope instanceof ScopeEntity) === false) { - throw new Exception\InvalidScopeException($scopeItem, true); + throw new Exception\InvalidScopeException($scopeItem, $redirectUri); } $scopes[$scope->getId()] = $scope; diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php index 8d73560d..283d7af5 100644 --- a/src/Grant/AuthCodeGrant.php +++ b/src/Grant/AuthCodeGrant.php @@ -99,22 +99,22 @@ class AuthCodeGrant extends AbstractGrant $state = $this->server->getRequest()->query->get('state', null); if ($this->server->stateParamRequired() === true && is_null($state)) { - throw new Exception\InvalidRequestException('state', true); + throw new Exception\InvalidRequestException('state', $redirectUri); } $responseType = $this->server->getRequest()->query->get('response_type', null); if (is_null($responseType)) { - throw new Exception\InvalidRequestException('response_type', true); + throw new Exception\InvalidRequestException('response_type', $redirectUri); } // Ensure response type is one that is recognised if (!in_array($responseType, $this->server->getResponseTypes())) { - throw new Exception\UnsupportedResponseTypeException($responseType); + throw new Exception\UnsupportedResponseTypeException($responseType, $redirectUri); } // Validate any scopes that are in the request $scopeParam = $this->server->getRequest()->query->get('scope', ''); - $scopes = $this->validateScopes($scopeParam, $client); + $scopes = $this->validateScopes($scopeParam, $client, $redirectUri); return [ 'client' => $client, From 7dc5a8090f855fc0c0eb199d4d7e1ea1ffb1c9e7 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:03:20 +0000 Subject: [PATCH 266/270] Remove old test --- tests/resource/ResourceServerTest.php | 284 -------------------------- 1 file changed, 284 deletions(-) delete mode 100644 tests/resource/ResourceServerTest.php diff --git a/tests/resource/ResourceServerTest.php b/tests/resource/ResourceServerTest.php deleted file mode 100644 index 29ccd268..00000000 --- a/tests/resource/ResourceServerTest.php +++ /dev/null @@ -1,284 +0,0 @@ -session = M::mock('League\OAuth2\Server\Storage\SessionInterface'); - } - - private function returnDefault() - { - return new League\OAuth2\Server\Resource($this->session); - } - - public function test_getExceptionMessage() - { - $m = League\OAuth2\Server\Resource::getExceptionMessage('invalid_request'); - - $reflector = new ReflectionClass($this->returnDefault()); - $exceptionMessages = $reflector->getProperty('exceptionMessages'); - $exceptionMessages->setAccessible(true); - $v = $exceptionMessages->getValue(); - - $this->assertEquals($v['invalid_request'], $m); - } - - public function test_getExceptionCode() - { - $this->assertEquals('invalid_request', League\OAuth2\Server\Resource::getExceptionType(0)); - $this->assertEquals('invalid_token', League\OAuth2\Server\Resource::getExceptionType(1)); - $this->assertEquals('insufficient_scope', League\OAuth2\Server\Resource::getExceptionType(2)); - } - - public function test_getExceptionHttpHeaders() - { - $this->assertEquals(array('HTTP/1.1 400 Bad Request'), League\OAuth2\Server\Resource::getExceptionHttpHeaders('invalid_request')); - $this->assertContains('HTTP/1.1 401 Unauthorized', League\OAuth2\Server\Resource::getExceptionHttpHeaders('invalid_token')); - $this->assertEquals(array('HTTP/1.1 403 Forbidden'), League\OAuth2\Server\Resource::getExceptionHttpHeaders('insufficient_scope')); - } - - public function test_setRequest() - { - $s = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $requestProperty = $reflector->getProperty('request'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($s); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getRequest() - { - $s = $this->returnDefault(); - $request = new League\OAuth2\Server\Util\Request(); - $s->setRequest($request); - $v = $s->getRequest(); - - $this->assertTrue($v instanceof League\OAuth2\Server\Util\RequestInterface); - } - - public function test_getTokenKey() - { - $s = $this->returnDefault(); - $this->assertEquals('access_token', $s->getTokenKey()); - } - - public function test_setTokenKey() - { - $s = $this->returnDefault(); - $s->setTokenKey('oauth_token'); - - $reflector = new ReflectionClass($s); - $requestProperty = $reflector->getProperty('tokenKey'); - $requestProperty->setAccessible(true); - $v = $requestProperty->getValue($s); - - $this->assertEquals('oauth_token', $v); - } - - public function test_getScopes() - { - $s = $this->returnDefault(); - $this->assertEquals(array(), $s->getScopes()); - } - - /** - * @expectedException League\OAuth2\Server\Exception\MissingAccessTokenException - */ - public function test_determineAccessToken_missingToken() - { - $_SERVER['HTTP_AUTHORIZATION'] = 'Bearer'; - $request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $method->invoke($s); - } - - /** - * @expectedException League\OAuth2\Server\Exception\MissingAccessTokenException - */ - public function test_determineAccessToken_brokenCurlRequest() - { - $_SERVER['HTTP_AUTHORIZATION'] = 'Bearer, Bearer abcdef'; - $request = new League\OAuth2\Server\Util\Request(array(), array(), array(), array(), $_SERVER); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $method->invoke($s); - } - - public function test_determineAccessToken_fromHeader() - { - $request = new League\OAuth2\Server\Util\Request(); - - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - public function test_determineAccessToken_fromBrokenCurlHeader() - { - $request = new League\OAuth2\Server\Util\Request(); - - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef, Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - public function test_determineAccessToken_fromMethod() - { - $s = $this->returnDefault(); - - $_GET[$s->getTokenKey()] = 'abcdef'; - $_SERVER['REQUEST_METHOD'] = 'get'; - - $request = new League\OAuth2\Server\Util\Request($_GET, array(), array(), array(), $_SERVER); - $s->setRequest($request); - - $reflector = new ReflectionClass($s); - $method = $reflector->getMethod('determineAccessToken'); - $method->setAccessible(true); - - $result = $method->invoke($s); - - $this->assertEquals('abcdef', $result); - } - - public function test_hasScope_isRequired() - { - $s = $this->returnDefault(); - - $reflector = new ReflectionClass($s); - $param = $reflector->getProperty('sessionScopes'); - $param->setAccessible(true); - $param->setValue($s, array( - 'a', 'b', 'c' - )); - - $result = $s->hasScope(array('a', 'b'), true); - - $this->assertEquals(true, $result); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InsufficientScopeException - */ - public function test_hasScope_isRequiredFailure() - { - $s = $this->returnDefault(); - - $reflector = new ReflectionClass($s); - $param = $reflector->getProperty('sessionScopes'); - $param->setAccessible(true); - $param->setValue($s, array( - 'a', 'b', 'c' - )); - - $s->hasScope('d', true); - } - - /** - * @expectedException League\OAuth2\Server\Exception\InvalidAccessTokenException - */ - public function test_isValid_notValid() - { - $this->session->shouldReceive('validateAccessToken')->andReturn(false); - - $request = new League\OAuth2\Server\Util\Request(); - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - $s = $this->returnDefault(); - $s->setRequest($request); - - $s->isValid(); - } - - public function test_isValid_valid() - { - $this->session->shouldReceive('validateAccessToken')->andReturn(array( - 'session_id' => 1, - 'owner_type' => 'user', - 'owner_id' => 123, - 'client_id' => 'testapp' - )); - - $this->session->shouldReceive('getScopes')->andReturn(array( - array('scope' => 'foo'), - array('scope' => 'bar') - )); - - $request = new League\OAuth2\Server\Util\Request(); - $requestReflector = new ReflectionClass($request); - $param = $requestReflector->getProperty('headers'); - $param->setAccessible(true); - $param->setValue($request, array( - 'Authorization' => 'Bearer abcdef' - )); - - $s = $this->returnDefault(); - $s->setRequest($request); - - $this->assertTrue($s->isValid()); - $this->assertEquals(123, $s->getOwnerId()); - $this->assertEquals('user', $s->getOwnerType()); - $this->assertEquals('abcdef', $s->getAccessToken()); - $this->assertEquals('testapp', $s->getClientId()); - $this->assertTrue($s->hasScope('foo')); - $this->assertTrue($s->hasScope('bar')); - $this->assertTrue($s->hasScope(array('foo', 'bar'))); - $this->assertFalse($s->hasScope(array('foobar'))); - $this->assertFalse($s->hasScope('foobar')); - } -} From 583c21e7dbe40438694940b7a1954f2852012e89 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:16:17 +0000 Subject: [PATCH 267/270] Updated unit tests --- tests/unit/Exception/OAuthExceptionTest.php | 9 ++++ tests/unit/Grant/AuthCodeGrantTest.php | 53 ++++++++++++++++++++- 2 files changed, 61 insertions(+), 1 deletion(-) diff --git a/tests/unit/Exception/OAuthExceptionTest.php b/tests/unit/Exception/OAuthExceptionTest.php index be2d0e92..7ab5bed1 100644 --- a/tests/unit/Exception/OAuthExceptionTest.php +++ b/tests/unit/Exception/OAuthExceptionTest.php @@ -22,4 +22,13 @@ class OAuthExceptionTest extends \PHPUnit_Framework_TestCase $exception->httpStatusCode = 501; $this->assertSame($exception->getHttpHeaders(), ['HTTP/1.1 501 Not Implemented']); } + + public function testShouldRedirect() + { + $exception = new \League\OAuth2\Server\Exception\OAuthException(); + $exception->redirectUri = 'http://example.com/'; + $exception->errorType = 'Error'; + $this->assertTrue($exception->shouldRedirect()); + $this->assertEquals('http://example.com/?error=Error&message=An+error+occured', $exception->getRedirectUri()); + } } diff --git a/tests/unit/Grant/AuthCodeGrantTest.php b/tests/unit/Grant/AuthCodeGrantTest.php index ad36a011..3b418f02 100644 --- a/tests/unit/Grant/AuthCodeGrantTest.php +++ b/tests/unit/Grant/AuthCodeGrantTest.php @@ -446,6 +446,57 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $server->issueAccessToken(); } + public function testCompleteFlowExpiredCode() + { + $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); + + $_POST = [ + 'grant_type' => 'authorization_code', + 'client_id' => 'testapp', + 'client_secret' => 'foobar', + 'redirect_uri' => 'http://foo/bar', + 'code' => 'foobar' + ]; + + $server = new AuthorizationServer; + $grant = new AuthCodeGrant; + + $clientStorage = M::mock('League\OAuth2\Server\Storage\ClientInterface'); + $clientStorage->shouldReceive('setServer'); + $clientStorage->shouldReceive('get')->andReturn( + (new ClientEntity($server))->hydrate(['id' => 'testapp']) + ); + + $sessionStorage = M::mock('League\OAuth2\Server\Storage\SessionInterface'); + $sessionStorage->shouldReceive('setServer'); + $sessionStorage->shouldReceive('create'); + $sessionStorage->shouldReceive('getScopes')->andReturn([]); + + $accessTokenStorage = M::mock('League\OAuth2\Server\Storage\AccessTokenInterface'); + $accessTokenStorage->shouldReceive('setServer'); + $accessTokenStorage->shouldReceive('create'); + $accessTokenStorage->shouldReceive('getScopes')->andReturn([]); + + $scopeStorage = M::mock('League\OAuth2\Server\Storage\ScopeInterface'); + $scopeStorage->shouldReceive('setServer'); + $scopeStorage->shouldReceive('get')->andReturn(null); + + $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); + $authCodeStorage->shouldReceive('setServer'); + $authCodeStorage->shouldReceive('get')->andReturn( + (new AuthCodeEntity($server))->setId('foobar')->setExpireTime(time() - 300)->setRedirectUri('http://foo/bar') + ); + + $server->setClientStorage($clientStorage); + $server->setScopeStorage($scopeStorage); + $server->setSessionStorage($sessionStorage); + $server->setAccessTokenStorage($accessTokenStorage); + $server->setAuthCodeStorage($authCodeStorage); + + $server->addGrantType($grant); + $server->issueAccessToken(); + } + public function testCompleteFlowRedirectUriMismatch() { $this->setExpectedException('League\OAuth2\Server\Exception\InvalidRequestException'); @@ -484,7 +535,7 @@ class AuthCodeGrantTest extends \PHPUnit_Framework_TestCase $authCodeStorage = M::mock('League\OAuth2\Server\Storage\AuthCodeInterface'); $authCodeStorage->shouldReceive('setServer'); $authCodeStorage->shouldReceive('get')->andReturn( - (new AuthCodeEntity($server))->setId('foobar')->setRedirectUri('http://fail/face') + (new AuthCodeEntity($server))->setId('foobar')->setExpireTime(time() + 300)->setRedirectUri('http://fail/face') ); $server->setClientStorage($clientStorage); From 846b4d165258e100e807e7c820e6e9651a5add98 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:21:49 +0000 Subject: [PATCH 268/270] Updated changelog --- CHANGELOG.md | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index af06df1d..fd8be0a4 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,11 @@ # Changelog -## 3.2 (released 2014-04-16) +## 4.0.0 (released 2014-11-08) + +* Complete rewrite +* Check out the documentation - [http://oauth2.thephpleague.com](http://oauth2.thephpleague.com) + +## 3.2.0 (released 2014-04-16) * Added the ability to change the algorithm that is used to generate the token strings (Issue #151) From d58877131d652befa3f8206a741d8a41d52e25ef Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:22:46 +0000 Subject: [PATCH 269/270] Removed fizzfuzz for now --- composer.json | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/composer.json b/composer.json index 48766ab7..f6d39374 100644 --- a/composer.json +++ b/composer.json @@ -10,16 +10,12 @@ }, "require-dev": { "phpunit/phpunit": "4.3.*", - "mockery/mockery": "0.9.*", - "alexbilbie/fizzfuzz": "dev-develop" + "mockery/mockery": "0.9.*" }, "repositories": [ { "type": "git", "url": "https://github.com/thephpleague/oauth2-server.git" - },{ - "type": "git", - "url": "https://github.com/alexbilbie/fizzfuzz.git" } ], "keywords": [ From ad86f71b340d3bfed07f18174c241f1db80f35c9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Sat, 8 Nov 2014 17:22:50 +0000 Subject: [PATCH 270/270] Removed year --- license.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/license.txt b/license.txt index 7bfce8c8..a4f444b1 100644 --- a/license.txt +++ b/license.txt @@ -1,6 +1,6 @@ MIT License -Copyright (C) 2013 Alex Bilbie +Copyright (C) Alex Bilbie Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in