IssuerDiscoveryEndpointTest::aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnXRI() - Code Metrics - Inspection of "Bugs fixed" - OAuth2-Framework/oauth2-framework - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Push — ng ( fe3ccc...89ffb0 )

by Florent

created 2018-02-16 23:06 UTC

aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnXRI() A

↳ Parent: IssuerDiscoveryEndpointTest

Complexity

Conditions	1
Paths	1

Size

Total Lines	8
Code Lines	6

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	8
rs	9.4285
c	0
b	0
f	0
cc	1
eloc	6
nc	1
nop	0

<?php

declare(strict_types=1);

/*
 * The MIT License (MIT)
 *
 * Copyright (c) 2014-2018 Spomky-Labs
 *
 * This software may be modified and distributed under the terms
 * of the MIT license.  See the LICENSE file for details.
 */

namespace OAuth2Framework\Bundle\Tests\Functional\IssuerDiscovery;

use OAuth2Framework\Component\IssuerDiscoveryEndpoint\IssuerDiscoveryEndpoint;
use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;

/**
 * @group Bundle
 * @group Functional
 * @group Grant
 * @group IssuerDiscovery
 */
class IssuerDiscoveryEndpointTest extends WebTestCase
{
    /**
     * {@inheritdoc}
     */
    protected function setUp()
    {
        if (!class_exists(IssuerDiscoveryEndpoint::class)) {
            $this->markTestSkipped('The component "oauth2-framework/issuer-discovery-endpoint" is not installed.');
        }
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithoutRelParameter()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', [], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"The parameter \"rel\" is mandatory."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidRelParameter()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'foo.bar'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"Unsupported \"rel\" parameter value."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithoutResourceParameter()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"The parameter \"resource\" is mandatory."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnXRI()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '@foo'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"Unsupported Extensible Resource Identifier (XRI) resource value."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnAccount()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'acct:[email protected]'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnEmail()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '[email protected]'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnUrl()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'https://example.com:8080/+john'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(400, $response->getStatusCode());
        self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnAccount()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'acct:[email protected]:9000'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(200, $response->getStatusCode());
        self::assertEquals('{"subject":"acct:[email protected]:9000","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnEmail()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '[email protected]:9000'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(200, $response->getStatusCode());
        self::assertEquals('{"subject":"[email protected]:9000","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
    }

    /**
     * @test
     */
    public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnUrl()
    {
        $client = static::createClient();
        $client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'https://my-service.com:9000/+john'], [], ['HTTPS' => 'on'], null);
        $response = $client->getResponse();
        self::assertEquals(200, $response->getStatusCode());
        self::assertEquals('{"subject":"https://my-service.com:9000/+john","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* The MIT License (MIT)
7			*
8			* Copyright (c) 2014-2018 Spomky-Labs
9			*
10			* This software may be modified and distributed under the terms
11			* of the MIT license. See the LICENSE file for details.
12			*/
13
14			namespace OAuth2Framework\Bundle\Tests\Functional\IssuerDiscovery;
15
16			use OAuth2Framework\Component\IssuerDiscoveryEndpoint\IssuerDiscoveryEndpoint;
17			use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;
18
19			/**
20			* @group Bundle
21			* @group Functional
22			* @group Grant
23			* @group IssuerDiscovery
24			*/
25			class IssuerDiscoveryEndpointTest extends WebTestCase
26			{
27			/**
28			* {@inheritdoc}
29			*/
30			protected function setUp()
31			{
32			if (!class_exists(IssuerDiscoveryEndpoint::class)) {
33			$this->markTestSkipped('The component "oauth2-framework/issuer-discovery-endpoint" is not installed.');
34			}
35			}
36
37			/**
38			* @test
39			*/
40			public function aClientSendAnIssuerDiscoveryRequestWithoutRelParameter()
41			{
42			$client = static::createClient();
43			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', [], [], ['HTTPS' => 'on'], null);
44			$response = $client->getResponse();
45			self::assertEquals(400, $response->getStatusCode());
46			self::assertEquals('{"error":"invalid_request","error_description":"The parameter \"rel\" is mandatory."}', $response->getContent());
47			}
48
49			/**
50			* @test
51			*/
52			public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidRelParameter()
53			{
54			$client = static::createClient();
55			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'foo.bar'], [], ['HTTPS' => 'on'], null);
56			$response = $client->getResponse();
57			self::assertEquals(400, $response->getStatusCode());
58			self::assertEquals('{"error":"invalid_request","error_description":"Unsupported \"rel\" parameter value."}', $response->getContent());
59			}
60
61			/**
62			* @test
63			*/
64			public function aClientSendAnIssuerDiscoveryRequestWithoutResourceParameter()
65			{
66			$client = static::createClient();
67			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer'], [], ['HTTPS' => 'on'], null);
68			$response = $client->getResponse();
69			self::assertEquals(400, $response->getStatusCode());
70			self::assertEquals('{"error":"invalid_request","error_description":"The parameter \"resource\" is mandatory."}', $response->getContent());
71			}
72
73			/**
74			* @test
75			*/
76			public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnXRI()
77			{
78			$client = static::createClient();
79			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '@foo'], [], ['HTTPS' => 'on'], null);
80			$response = $client->getResponse();
81			self::assertEquals(400, $response->getStatusCode());
82			self::assertEquals('{"error":"invalid_request","error_description":"Unsupported Extensible Resource Identifier (XRI) resource value."}', $response->getContent());
83			}
84
85			/**
86			* @test
87			*/
88			public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnAccount()
89			{
90			$client = static::createClient();
91			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'acct:[email protected]'], [], ['HTTPS' => 'on'], null);
92			$response = $client->getResponse();
93			self::assertEquals(400, $response->getStatusCode());
94			self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
95			}
96
97			/**
98			* @test
99			*/
100			public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnEmail()
101			{
102			$client = static::createClient();
103			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '[email protected]'], [], ['HTTPS' => 'on'], null);
104			$response = $client->getResponse();
105			self::assertEquals(400, $response->getStatusCode());
106			self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
107			}
108
109			/**
110			* @test
111			*/
112			public function aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnUrl()
113			{
114			$client = static::createClient();
115			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'https://example.com:8080/+john'], [], ['HTTPS' => 'on'], null);
116			$response = $client->getResponse();
117			self::assertEquals(400, $response->getStatusCode());
118			self::assertEquals('{"error":"invalid_request","error_description":"Unsupported domain."}', $response->getContent());
119			}
120
121			/**
122			* @test
123			*/
124			public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnAccount()
125			{
126			$client = static::createClient();
127			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'acct:[email protected]:9000'], [], ['HTTPS' => 'on'], null);
128			$response = $client->getResponse();
129			self::assertEquals(200, $response->getStatusCode());
130			self::assertEquals('{"subject":"acct:[email protected]:9000","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
131			}
132
133			/**
134			* @test
135			*/
136			public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnEmail()
137			{
138			$client = static::createClient();
139			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => '[email protected]:9000'], [], ['HTTPS' => 'on'], null);
140			$response = $client->getResponse();
141			self::assertEquals(200, $response->getStatusCode());
142			self::assertEquals('{"subject":"[email protected]:9000","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
143			}
144
145			/**
146			* @test
147			*/
148			public function aClientSendAnIssuerDiscoveryRequestWithAValidResourceParameterBasedOnAnUrl()
149			{
150			$client = static::createClient();
151			$client->request('GET', 'https://oauth2.test/.well-known/webfinger', ['rel' => 'http://openid.net/specs/connect/1.0/issuer', 'resource' => 'https://my-service.com:9000/+john'], [], ['HTTPS' => 'on'], null);
152			$response = $client->getResponse();
153			self::assertEquals(200, $response->getStatusCode());
154			self::assertEquals('{"subject":"https://my-service.com:9000/+john","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://server.example.com"}]}', $response->getContent());
155			}
156			}
157

OAuth2-Framework / oauth2-framework

Push — ng ( fe3ccc...89ffb0 )

aClientSendAnIssuerDiscoveryRequestWithAnInvalidResourceParameterBasedOnAnXRI() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like