248 lines
9.7 KiB
PHP
Executable File
248 lines
9.7 KiB
PHP
Executable File
<?php
|
|
|
|
/*
|
|
* This file is part of jwt-auth.
|
|
*
|
|
* (c) Sean Tymon <tymon148@gmail.com>
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Tymon\JWTAuth\Test;
|
|
|
|
use Mockery;
|
|
use Tymon\JWTAuth\Claims\Collection;
|
|
use Tymon\JWTAuth\Claims\Custom;
|
|
use Tymon\JWTAuth\Claims\Expiration;
|
|
use Tymon\JWTAuth\Claims\Factory as ClaimFactory;
|
|
use Tymon\JWTAuth\Claims\IssuedAt;
|
|
use Tymon\JWTAuth\Claims\Issuer;
|
|
use Tymon\JWTAuth\Claims\JwtId;
|
|
use Tymon\JWTAuth\Claims\NotBefore;
|
|
use Tymon\JWTAuth\Claims\Subject;
|
|
use Tymon\JWTAuth\Factory;
|
|
use Tymon\JWTAuth\Payload;
|
|
use Tymon\JWTAuth\Validators\PayloadValidator;
|
|
|
|
class FactoryTest extends AbstractTestCase
|
|
{
|
|
/**
|
|
* @var \Mockery\MockInterface|\Tymon\JWTAuth\Claims\Factory
|
|
*/
|
|
protected $claimFactory;
|
|
|
|
/**
|
|
* @var \Mockery\MockInterface|\Tymon\JWTAuth\Validators\PayloadValidator
|
|
*/
|
|
protected $validator;
|
|
|
|
/**
|
|
* @var \Tymon\JWTAuth\Factory
|
|
*/
|
|
protected $factory;
|
|
|
|
public function setUp(): void
|
|
{
|
|
parent::setUp();
|
|
|
|
$this->claimFactory = Mockery::mock(ClaimFactory::class);
|
|
$this->validator = Mockery::mock(PayloadValidator::class);
|
|
$this->factory = new Factory($this->claimFactory, $this->validator);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_return_a_payload_when_passing_an_array_of_claims()
|
|
{
|
|
$expTime = $this->testNowTimestamp + 3600;
|
|
|
|
// these are added from default claims
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iss')->andReturn(new Issuer('/foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('exp')->andReturn(new Expiration($expTime));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('jti')->andReturn(new JwtId('foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('nbf')->andReturn(new NotBefore(123));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iat')->andReturn(new IssuedAt(123));
|
|
|
|
// custom claims that override
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('sub', 1)->andReturn(new Subject(1));
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('jti', 'foo')->andReturn(new JwtId('foo'));
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('nbf', 123)->andReturn(new NotBefore(123));
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('iat', 123)->andReturn(new IssuedAt(123));
|
|
|
|
$this->claimFactory->shouldReceive('getTTL')->andReturn(60);
|
|
|
|
// once
|
|
$claims = $this->factory->customClaims([
|
|
'sub' => 1,
|
|
'jti' => 'foo',
|
|
'iat' => 123,
|
|
'nbf' => 123,
|
|
])->buildClaimsCollection();
|
|
|
|
$this->validator->shouldReceive('setRefreshFlow->check')->andReturn($claims);
|
|
|
|
// twice
|
|
$payload = $this->factory->claims(['sub' => 1, 'jti' => 'foo', 'iat' => 123, 'nbf' => 123])->make();
|
|
|
|
$this->assertSame($payload->get('sub'), 1);
|
|
$this->assertSame($payload->get('iat'), 123);
|
|
$this->assertSame($payload['exp'], $expTime);
|
|
$this->assertSame($payload['jti'], 'foo');
|
|
|
|
$this->assertInstanceOf(Payload::class, $payload);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_return_a_payload_when_chaining_claim_methods()
|
|
{
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('sub', 1)->andReturn(new Subject(1));
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('foo', 'baz')->andReturn(new Custom('foo', 'baz'));
|
|
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iss')->andReturn(new Issuer('/foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('exp')->andReturn(new Expiration($this->testNowTimestamp + 3600));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iat')->andReturn(new IssuedAt($this->testNowTimestamp));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('jti')->andReturn(new JwtId('foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('nbf')->andReturn(new NotBefore($this->testNowTimestamp));
|
|
|
|
$this->claimFactory->shouldReceive('getTTL')->andReturn(60);
|
|
|
|
// once
|
|
$claims = $this->factory->sub(1)->foo('baz')->buildClaimsCollection();
|
|
|
|
$this->validator->shouldReceive('setRefreshFlow->check')->andReturn($claims);
|
|
|
|
// twice
|
|
$payload = $this->factory->sub(1)->foo('baz')->make();
|
|
|
|
$this->assertSame($payload['sub'], 1);
|
|
$this->assertSame($payload->get('jti'), 'foo');
|
|
$this->assertSame($payload->get('foo'), 'baz');
|
|
|
|
$this->assertInstanceOf(Payload::class, $payload);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_return_a_payload_when_passing_miltidimensional_array_as_custom_claim_to_make_method()
|
|
{
|
|
// these are added from default claims
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iss')->andReturn(new Issuer('/foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('exp')->andReturn(new Expiration($this->testNowTimestamp + 3600));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('jti')->andReturn(new JwtId('foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('nbf')->andReturn(new NotBefore(123));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iat')->andReturn(new IssuedAt(123));
|
|
|
|
// custom claims that override
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('sub', 1)->andReturn(new Subject(1));
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('foo', ['bar' => [0, 0, 0]])->andReturn(new Custom('foo', ['bar' => [0, 0, 0]]));
|
|
|
|
$this->claimFactory->shouldReceive('getTTL')->andReturn(60);
|
|
|
|
// once
|
|
$claims = $this->factory->sub(1)->foo(['bar' => [0, 0, 0]])->buildClaimsCollection();
|
|
|
|
$this->validator->shouldReceive('setRefreshFlow->check')->andReturn($claims);
|
|
|
|
// twice
|
|
$payload = $this->factory->sub(1)->foo(['bar' => [0, 0, 0]])->make();
|
|
|
|
$this->assertSame($payload->get('sub'), 1);
|
|
$this->assertSame($payload->get('jti'), 'foo');
|
|
$this->assertSame($payload->get('foo'), ['bar' => [0, 0, 0]]);
|
|
$this->assertSame($payload->get('foo.bar'), [0, 0, 0]);
|
|
|
|
$this->assertInstanceOf(Payload::class, $payload);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_exclude_the_exp_claim_when_setting_ttl_to_null()
|
|
{
|
|
// these are added from default claims
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iss')->andReturn(new Issuer('/foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('jti')->andReturn(new JwtId('foo'));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('nbf')->andReturn(new NotBefore(123));
|
|
$this->claimFactory->shouldReceive('make')->twice()->with('iat')->andReturn(new IssuedAt(123));
|
|
|
|
// custom claims that override
|
|
$this->claimFactory->shouldReceive('get')->twice()->with('sub', 1)->andReturn(new Subject(1));
|
|
|
|
$this->claimFactory->shouldReceive('setTTL')->with(null)->andReturn($this->claimFactory);
|
|
$this->claimFactory->shouldReceive('getTTL')->andReturn(null);
|
|
|
|
// once
|
|
$claims = $this->factory->setTTL(null)->sub(1)->buildClaimsCollection();
|
|
|
|
$this->validator->shouldReceive('setRefreshFlow->check')->andReturn($claims);
|
|
|
|
// twice
|
|
$payload = $this->factory->setTTL(null)->sub(1)->make();
|
|
|
|
$this->assertNull($payload->get('exp'));
|
|
|
|
$this->assertInstanceOf(Payload::class, $payload);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_exclude_claims_from_previous_payloads()
|
|
{
|
|
$validator = new PayloadValidator();
|
|
$factory = new Factory($this->claimFactory, $validator);
|
|
|
|
$fooClaim = new Custom('foo', 'bar');
|
|
$barClaim = new Custom('baz', 'qux');
|
|
|
|
$this->claimFactory->shouldReceive('getTTL')->andReturn(60);
|
|
$this->claimFactory->shouldReceive('get')->with('foo', 'bar')->twice()->andReturn($fooClaim);
|
|
$this->claimFactory->shouldReceive('get')->with('baz', 'qux')->once()->andReturn($barClaim);
|
|
|
|
$validator->setRequiredClaims([]);
|
|
$payload = $factory->setDefaultClaims([])
|
|
->customClaims([
|
|
'foo' => 'bar',
|
|
'baz' => 'qux',
|
|
])->make();
|
|
|
|
$this->assertSame($payload->get('foo'), 'bar');
|
|
$this->assertSame($payload->get('baz'), 'qux');
|
|
|
|
$payload = $factory->setDefaultClaims([])->customClaims(['foo' => 'bar'])->make(true);
|
|
|
|
$this->assertSame($payload->get('foo'), 'bar');
|
|
$this->assertFalse($payload->hasKey('baz'));
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_set_the_default_claims()
|
|
{
|
|
$this->factory->setDefaultClaims(['sub', 'iat']);
|
|
|
|
$this->assertSame($this->factory->getDefaultClaims(), ['sub', 'iat']);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_get_payload_with_a_predefined_collection_of_claims()
|
|
{
|
|
$claims = [
|
|
new Subject(1),
|
|
new Issuer('http://example.com'),
|
|
new Expiration($this->testNowTimestamp + 3600),
|
|
new NotBefore($this->testNowTimestamp),
|
|
new IssuedAt($this->testNowTimestamp),
|
|
new JwtId('foo'),
|
|
];
|
|
|
|
$collection = Collection::make($claims);
|
|
$this->validator->shouldReceive('setRefreshFlow->check')->andReturn($collection);
|
|
|
|
$payload = $this->factory->withClaims($collection);
|
|
|
|
$this->assertInstanceOf(Payload::class, $payload);
|
|
$this->assertSame($payload->get('sub'), 1);
|
|
}
|
|
|
|
/** @test */
|
|
public function it_should_get_the_validator()
|
|
{
|
|
$this->assertInstanceOf(PayloadValidator::class, $this->factory->validator());
|
|
}
|
|
}
|