Issues in OAuthServerTest.php - All Issues - Inspection of "Better test coverage" - advanced-learning/silverstripe-oauth2-server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( feb246...605e0e )

by Conrad

created 2017-11-13 21:36 UTC

tests/OAuthServerTest.php (2 issues)

Showing only issues like (Show All)

Checks multi line function declaration space after function

Coding Style Informational

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace AdvancedLearning\Oauth2Server\Tests;

use AdvancedLearning\Oauth2Server\Controllers\AuthoriseController;
use AdvancedLearning\Oauth2Server\Entities\UserEntity;
use AdvancedLearning\Oauth2Server\Middleware\ResourceServerMiddleware;
use AdvancedLearning\Oauth2Server\Models\AccessToken;
use AdvancedLearning\Oauth2Server\Models\Client;
use AdvancedLearning\Oauth2Server\Repositories\AccessTokenRepository;
use AdvancedLearning\Oauth2Server\Repositories\ClientRepository;
use AdvancedLearning\Oauth2Server\Repositories\RefreshTokenRepository;
use AdvancedLearning\Oauth2Server\Repositories\ScopeRepository;
use AdvancedLearning\Oauth2Server\Repositories\UserRepository;
use function base64_encode;
use function file_get_contents;
use function file_put_contents;
use GuzzleHttp\Psr7\Response;
use GuzzleHttp\Psr7\ServerRequest;
use League\OAuth2\Server\AuthorizationServer;
use League\OAuth2\Server\Entities\ClientEntityInterface;
use League\OAuth2\Server\Grant\ClientCredentialsGrant;
use League\OAuth2\Server\Grant\PasswordGrant;
use const PHP_EOL;
use Robbie\Psr7\HttpRequestAdapter;
use Robbie\Psr7\HttpResponseAdapter;
use SilverStripe\Control\Director;
use SilverStripe\Control\HTTPApplication;
use SilverStripe\Control\HTTPRequest;
use SilverStripe\Control\HTTPResponse;
use SilverStripe\Core\CoreKernel;
use SilverStripe\Core\Environment;
use SilverStripe\Core\Injector\Injector;
use SilverStripe\Core\Kernel;
use SilverStripe\Core\Tests\Startup\ErrorControlChainMiddlewareTest\BlankKernel;
use SilverStripe\Dev\SapphireTest;
use SilverStripe\Security\Member;
use SilverStripe\Security\Security;
use function sys_get_temp_dir;

class OAuthServerTest extends SapphireTest
{
    protected static $fixture_file = 'OAuthFixture.yml';

    protected static $privateKeyFile = 'private.key';

    protected static $publicKeyFile = 'public.key';

    /**
     * Setup test environment.
     */
    public function setUp()
    {
        parent::setUp();

        // copy private key so we can set correct permissions, file gets removed when tests finish
        $path = $this->getPrivateKeyPath();
        file_put_contents($path, file_get_contents(__DIR__ . '/' . self::$privateKeyFile));
        chmod($path, 0660);
        Environment::setEnv('OAUTH_PRIVATE_KEY_PATH', $path);

        // copy public key
        $path = $this->getPublicKeyPath();
        file_put_contents($path, file_get_contents(__DIR__ . '/' . self::$publicKeyFile));
        chmod($path, 0660);
        Environment::setEnv('OAUTH_PUBLIC_KEY_PATH', $path);

        Security::force_database_is_ready(true);
    }

    /**
     * Test a client grant.
     */
    public function testClientGrant()
    {
        $response = $this->generateClientAccessToken();
        $data = json_decode((string)$response->getBody(), true);

        $this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
        $this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
        $this->assertArrayHasKey('access_token', $data, 'Response should have a token');
        $this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
    }

    public function testPasswordGrant()
    {
        $userRepository = new UserRepository();
        $refreshRepository = new RefreshTokenRepository();

        $server = $this->getAuthorisationServer();
        $server->enableGrantType(
            new PasswordGrant($userRepository, $refreshRepository),
            new \DateInterval('PT1H')
        );

        $client = $this->objFromFixture(Client::class, 'webapp');
        $member = $this->objFromFixture(Member::class, 'member1');

        $request = (new ServerRequest(
            'POST',
            '',
            ['Content-Type' => 'application/json']
        ))->withParsedBody([
            'grant_type' => 'password',
            'client_id' => $client->ID,
            'client_secret' => $client->Secret,
            'scope' => 'members',
            'username' => $member->Email,
            'password' => 'password1'
        ]);

        $response = new Response();
        $response = $server->respondToAccessTokenRequest($request, $response);

        $data = json_decode((string)$response->getBody(), true);

        $this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
        $this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
        $this->assertArrayHasKey('access_token', $data, 'Response should have a token');
        $this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
    }

    public function testMiddleware()
    {
        $response = $this->generateClientAccessToken();
        $data = json_decode((string)$response->getBody(), true);
        $token = $data['access_token'];

        $server = $this->getResourceServer();

        $request = new HTTPRequest('GET', '/');
        $request->addHeader('authorization', 'Bearer ' . $token);
        // fake server port
        $_SERVER['SERVER_PORT'] = 443;

        // Mock app
        $app = new HTTPApplication(new BlankKernel(BASE_PATH));
        $app->getKernel()->setEnvironment(Kernel::LIVE);

        $result = (new ResourceServerMiddleware($app, $server))->process($request, function(){

            return null;
        });

        $this->assertNull($result, 'Resource Server shouldn\'t modify the response');

        // failed authentication
        $request->removeHeader('authorization');

        $result = (new ResourceServerMiddleware($app, $server))->process($request, function(){

            return null;
        });

        // should have an error response
        $this->assertNotNull($result);
        $this->assertEquals(401, $result->getStatusCode());
    }

    public function testAuthoriseController()
    {
        $controller = new AuthoriseController();

        $client = $this->objFromFixture(Client::class, 'webapp');
        $request = $this->getClientRequest($client);

        /**
         * @var HTTPResponse $response
         */
        $response = $controller->setRequest((new HttpRequestAdapter())->fromPsr7($request))
            ->index();

        $this->assertInstanceOf(HTTPResponse::class, $response, 'Should receive a response object');
        $this->assertEquals(200, $response->getStatusCode(), 'Should receive a 200 response code');

        // check for access token
        $data = json_decode($response->getBody(), true);
        $this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
        $this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
        $this->assertArrayHasKey('access_token', $data, 'Response should have a token');
        $this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
    }

    public function testUserEntity()
    {
        $member = $this->objFromFixture(Member::class, 'member1');
        $entity = new UserEntity($member);

        $this->assertEquals($member->ID, $entity->getMember()->ID, 'User entity member should have been set');
    }

    /**
     * Setup the Authorization Server.
     *
     * @return AuthorizationServer
     */
    protected function getAuthorisationServer()
    {
        // Init our repositories
        $clientRepository = new ClientRepository(); // instance of ClientRepositoryInterface
        $scopeRepository = new ScopeRepository(); // instance of ScopeRepositoryInterface
        $accessTokenRepository = new AccessTokenRepository(); // instance of AccessTokenRepositoryInterface

        // Path to public and private keys
        $privateKey = $this->getPrivateKeyPath();
        $encryptionKey = 'lxZFUEsBCJ2Yb14IF2ygAHI5N4+ZAUXXaSeeJm6+twsUmIen';

        // Setup the authorization server
        $server = new AuthorizationServer(
            $clientRepository,
            $accessTokenRepository,
            $scopeRepository,
            $privateKey,
            $encryptionKey
        );

        return $server;
    }

    /**
     * Get the resource server.
     *
     * @return \League\OAuth2\Server\ResourceServer
     */
    protected function getResourceServer()
    {
        // Init our repositories
        $accessTokenRepository = new AccessTokenRepository(); // instance of AccessTokenRepositoryInterface

        // Path to authorization server's public key
        $publicKeyPath = $this->getPublicKeyPath();

        // Setup the authorization server
        $server = new \League\OAuth2\Server\ResourceServer(
            $accessTokenRepository,
            $publicKeyPath
        );

        return $server;
    }

    /**
     * Get the full path the private key.
     *
     * @return string
     */
    protected function getPrivateKeyPath()
    {
        return sys_get_temp_dir() . '/' . self::$privateKeyFile;
    }

    /**
     * Get the full path the public key.
     *
     * @return string
     */
    protected function getPublicKeyPath()
    {
        return sys_get_temp_dir() . '/' . self::$publicKeyFile;
    }

    /**
     * Cleanup test environment.
     */
    protected function tearDown()
    {
        parent::tearDown();
        // remove private key after tests have finished
        unlink($this->getPrivateKeyPath());
        // remove public key after tests have finished
        unlink($this->getPublicKeyPath());
    }

    /**
     * Generates a response with an access token using the client grant.
     *
     * @return \Psr\Http\Message\ResponseInterface
     */
    protected function generateClientAccessToken()
    {
        $server = $this->getAuthorisationServer();
        // Enable the client credentials grant on the server
        $server->enableGrantType(
            new ClientCredentialsGrant(),
            new \DateInterval('PT1H') // access tokens will expire after 1 hour
        );

        $client = $this->objFromFixture(Client::class, 'webapp');

        $request = $this->getClientRequest($client);

        $response = new Response();
        return $server->respondToAccessTokenRequest($request, $response);
    }

    /**
     * Get PSR7 request object to be used for a client grant.
     *
     * @param Client $client
     *
     * @return ServerRequest
     */
    protected function getClientRequest(Client $client)
    {
        // setup server vars
        $_SERVER['SERVER_PORT'] = 80;
        $_SERVER['SERVER_PROTOCOL'] = 'HTTP/1.1';

        return (new ServerRequest(
            'POST',
            '',
            ['Content-Type' => 'application/json']
        ))->withParsedBody([
            'grant_type' => 'client_credentials',
            'client_id' => $client->ID,
            'client_secret' => $client->Secret,
            'scope' => 'members'
        ]);
    }

}


1			<?php
2
3			namespace AdvancedLearning\Oauth2Server\Tests;
4
5			use AdvancedLearning\Oauth2Server\Controllers\AuthoriseController;
6			use AdvancedLearning\Oauth2Server\Entities\UserEntity;
7			use AdvancedLearning\Oauth2Server\Middleware\ResourceServerMiddleware;
8			use AdvancedLearning\Oauth2Server\Models\AccessToken;
9			use AdvancedLearning\Oauth2Server\Models\Client;
10			use AdvancedLearning\Oauth2Server\Repositories\AccessTokenRepository;
11			use AdvancedLearning\Oauth2Server\Repositories\ClientRepository;
12			use AdvancedLearning\Oauth2Server\Repositories\RefreshTokenRepository;
13			use AdvancedLearning\Oauth2Server\Repositories\ScopeRepository;
14			use AdvancedLearning\Oauth2Server\Repositories\UserRepository;
15			use function base64_encode;
16			use function file_get_contents;
17			use function file_put_contents;
18			use GuzzleHttp\Psr7\Response;
19			use GuzzleHttp\Psr7\ServerRequest;
20			use League\OAuth2\Server\AuthorizationServer;
21			use League\OAuth2\Server\Entities\ClientEntityInterface;
22			use League\OAuth2\Server\Grant\ClientCredentialsGrant;
23			use League\OAuth2\Server\Grant\PasswordGrant;
24			use const PHP_EOL;
25			use Robbie\Psr7\HttpRequestAdapter;
26			use Robbie\Psr7\HttpResponseAdapter;
27			use SilverStripe\Control\Director;
28			use SilverStripe\Control\HTTPApplication;
29			use SilverStripe\Control\HTTPRequest;
30			use SilverStripe\Control\HTTPResponse;
31			use SilverStripe\Core\CoreKernel;
32			use SilverStripe\Core\Environment;
33			use SilverStripe\Core\Injector\Injector;
34			use SilverStripe\Core\Kernel;
35			use SilverStripe\Core\Tests\Startup\ErrorControlChainMiddlewareTest\BlankKernel;
36			use SilverStripe\Dev\SapphireTest;
37			use SilverStripe\Security\Member;
38			use SilverStripe\Security\Security;
39			use function sys_get_temp_dir;
40
41			class OAuthServerTest extends SapphireTest
42			{
43			protected static $fixture_file = 'OAuthFixture.yml';
44
45			protected static $privateKeyFile = 'private.key';
46
47			protected static $publicKeyFile = 'public.key';
48
49			/**
50			* Setup test environment.
51			*/
52			public function setUp()
53			{
54			parent::setUp();
55
56			// copy private key so we can set correct permissions, file gets removed when tests finish
57			$path = $this->getPrivateKeyPath();
58			file_put_contents($path, file_get_contents(__DIR__ . '/' . self::$privateKeyFile));
59			chmod($path, 0660);
60			Environment::setEnv('OAUTH_PRIVATE_KEY_PATH', $path);
61
62			// copy public key
63			$path = $this->getPublicKeyPath();
64			file_put_contents($path, file_get_contents(__DIR__ . '/' . self::$publicKeyFile));
65			chmod($path, 0660);
66			Environment::setEnv('OAUTH_PUBLIC_KEY_PATH', $path);
67
68			Security::force_database_is_ready(true);
69			}
70
71			/**
72			* Test a client grant.
73			*/
74			public function testClientGrant()
75			{
76			$response = $this->generateClientAccessToken();
77			$data = json_decode((string)$response->getBody(), true);
78
79			$this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
80			$this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
81			$this->assertArrayHasKey('access_token', $data, 'Response should have a token');
82			$this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
83			}
84
85			public function testPasswordGrant()
86			{
87			$userRepository = new UserRepository();
88			$refreshRepository = new RefreshTokenRepository();
89
90			$server = $this->getAuthorisationServer();
91			$server->enableGrantType(
92			new PasswordGrant($userRepository, $refreshRepository),
93			new \DateInterval('PT1H')
94			);
95
96			$client = $this->objFromFixture(Client::class, 'webapp');
97			$member = $this->objFromFixture(Member::class, 'member1');
98
99			$request = (new ServerRequest(
100			'POST',
101			'',
102			['Content-Type' => 'application/json']
103			))->withParsedBody([
104			'grant_type' => 'password',
105			'client_id' => $client->ID,
106			'client_secret' => $client->Secret,
107			'scope' => 'members',
108			'username' => $member->Email,
109			'password' => 'password1'
110			]);
111
112			$response = new Response();
113			$response = $server->respondToAccessTokenRequest($request, $response);
114
115			$data = json_decode((string)$response->getBody(), true);
116
117			$this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
118			$this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
119			$this->assertArrayHasKey('access_token', $data, 'Response should have a token');
120			$this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
121			}
122
123			public function testMiddleware()
124			{
125			$response = $this->generateClientAccessToken();
126			$data = json_decode((string)$response->getBody(), true);
127			$token = $data['access_token'];
128
129			$server = $this->getResourceServer();
130
131			$request = new HTTPRequest('GET', '/');
132			$request->addHeader('authorization', 'Bearer ' . $token);
133			// fake server port
134			$_SERVER['SERVER_PORT'] = 443;
135
136			// Mock app
137			$app = new HTTPApplication(new BlankKernel(BASE_PATH));
138			$app->getKernel()->setEnvironment(Kernel::LIVE);
139
140			$result = (new ResourceServerMiddleware($app, $server))->process($request, function(){
			0 ignored issues – show Coding Style introduced 2017-11-13 19:28 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected 1 space after FUNCTION keyword; 0 found Loading history...
141			return null;
142			});
143
144			$this->assertNull($result, 'Resource Server shouldn\'t modify the response');
145
146			// failed authentication
147			$request->removeHeader('authorization');
148
149			$result = (new ResourceServerMiddleware($app, $server))->process($request, function(){
			0 ignored issues – show Coding Style introduced 2017-11-13 19:28 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected 1 space after FUNCTION keyword; 0 found Loading history...
150			return null;
151			});
152
153			// should have an error response
154			$this->assertNotNull($result);
155			$this->assertEquals(401, $result->getStatusCode());
156			}
157
158			public function testAuthoriseController()
159			{
160			$controller = new AuthoriseController();
161
162			$client = $this->objFromFixture(Client::class, 'webapp');
163			$request = $this->getClientRequest($client);
164
165			/**
166			* @var HTTPResponse $response
167			*/
168			$response = $controller->setRequest((new HttpRequestAdapter())->fromPsr7($request))
169			->index();
170
171			$this->assertInstanceOf(HTTPResponse::class, $response, 'Should receive a response object');
172			$this->assertEquals(200, $response->getStatusCode(), 'Should receive a 200 response code');
173
174			// check for access token
175			$data = json_decode($response->getBody(), true);
176			$this->assertArrayHasKey('token_type', $data, 'Response should have a token_type');
177			$this->assertArrayHasKey('expires_in', $data, 'Response should have expire time for token');
178			$this->assertArrayHasKey('access_token', $data, 'Response should have a token');
179			$this->assertEquals('Bearer', $data['token_type'], 'Token type should be Bearer');
180			}
181
182			public function testUserEntity()
183			{
184			$member = $this->objFromFixture(Member::class, 'member1');
185			$entity = new UserEntity($member);
186
187			$this->assertEquals($member->ID, $entity->getMember()->ID, 'User entity member should have been set');
188			}
189
190			/**
191			* Setup the Authorization Server.
192			*
193			* @return AuthorizationServer
194			*/
195			protected function getAuthorisationServer()
196			{
197			// Init our repositories
198			$clientRepository = new ClientRepository(); // instance of ClientRepositoryInterface
199			$scopeRepository = new ScopeRepository(); // instance of ScopeRepositoryInterface
200			$accessTokenRepository = new AccessTokenRepository(); // instance of AccessTokenRepositoryInterface
201
202			// Path to public and private keys
203			$privateKey = $this->getPrivateKeyPath();
204			$encryptionKey = 'lxZFUEsBCJ2Yb14IF2ygAHI5N4+ZAUXXaSeeJm6+twsUmIen';
205
206			// Setup the authorization server
207			$server = new AuthorizationServer(
208			$clientRepository,
209			$accessTokenRepository,
210			$scopeRepository,
211			$privateKey,
212			$encryptionKey
213			);
214
215			return $server;
216			}
217
218			/**
219			* Get the resource server.
220			*
221			* @return \League\OAuth2\Server\ResourceServer
222			*/
223			protected function getResourceServer()
224			{
225			// Init our repositories
226			$accessTokenRepository = new AccessTokenRepository(); // instance of AccessTokenRepositoryInterface
227
228			// Path to authorization server's public key
229			$publicKeyPath = $this->getPublicKeyPath();
230
231			// Setup the authorization server
232			$server = new \League\OAuth2\Server\ResourceServer(
233			$accessTokenRepository,
234			$publicKeyPath
235			);
236
237			return $server;
238			}
239
240			/**
241			* Get the full path the private key.
242			*
243			* @return string
244			*/
245			protected function getPrivateKeyPath()
246			{
247			return sys_get_temp_dir() . '/' . self::$privateKeyFile;
248			}
249
250			/**
251			* Get the full path the public key.
252			*
253			* @return string
254			*/
255			protected function getPublicKeyPath()
256			{
257			return sys_get_temp_dir() . '/' . self::$publicKeyFile;
258			}
259
260			/**
261			* Cleanup test environment.
262			*/
263			protected function tearDown()
264			{
265			parent::tearDown();
266			// remove private key after tests have finished
267			unlink($this->getPrivateKeyPath());
268			// remove public key after tests have finished
269			unlink($this->getPublicKeyPath());
270			}
271
272			/**
273			* Generates a response with an access token using the client grant.
274			*
275			* @return \Psr\Http\Message\ResponseInterface
276			*/
277			protected function generateClientAccessToken()
278			{
279			$server = $this->getAuthorisationServer();
280			// Enable the client credentials grant on the server
281			$server->enableGrantType(
282			new ClientCredentialsGrant(),
283			new \DateInterval('PT1H') // access tokens will expire after 1 hour
284			);
285
286			$client = $this->objFromFixture(Client::class, 'webapp');
287
288			$request = $this->getClientRequest($client);
289
290			$response = new Response();
291			return $server->respondToAccessTokenRequest($request, $response);
292			}
293
294			/**
295			* Get PSR7 request object to be used for a client grant.
296			*
297			* @param Client $client
298			*
299			* @return ServerRequest
300			*/
301			protected function getClientRequest(Client $client)
302			{
303			// setup server vars
304			$_SERVER['SERVER_PORT'] = 80;
305			$_SERVER['SERVER_PROTOCOL'] = 'HTTP/1.1';
306
307			return (new ServerRequest(
308			'POST',
309			'',
310			['Content-Type' => 'application/json']
311			))->withParsedBody([
312			'grant_type' => 'client_credentials',
313			'client_id' => $client->ID,
314			'client_secret' => $client->Secret,
315			'scope' => 'members'
316			]);
317			}
318
319			}
320

advanced-learning / silverstripe-oauth2-server

Push — master ( feb246...605e0e )

tests/OAuthServerTest.php (2 issues)

Showing only issues like (Show All)

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like