Pony.fm/tests/ApiAuthTest.php

<?php

namespace Tests;

/**
 * Pony.fm - A community for pony fan music.
 * Copyright (C) 2015 Peter Deltchev
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

use Illuminate\Foundation\Testing\DatabaseMigrations;
use Poniverse\Lib\AccessToken;
use Poniverse\Ponyfm\Models\User;

class ApiAuthTest extends TestCase
{
    use DatabaseMigrations;

    /**
     * Ensures that when we call the Pony.fm API with a user who has never
     * logged into Pony.fm before, a Pony.fm account is created for them using
     * their Poniverse details.
     */
    public function testApiCreatesNewUser()
    {
        $user = factory(User::class)->make();
        $accessTokenInfo = new AccessToken('nonsense-token');
        $accessTokenInfo->setIsActive(true);
        $accessTokenInfo->setScopes(['basic', 'ponyfm:tracks:upload']);

        $poniverse = \Mockery::mock('overload:Poniverse\Lib\OAuth2\PoniverseProvider');
        $poniverse->shouldReceive('getResourceOwner')
            ->andReturn(new \Poniverse\Lib\Entity\Poniverse\User([
                'id' => $user->id,
                'username' => $user->username,
                'display_name' => $user->display_name,
                'email' => $user->email,
            ]));
        $poniverse->shouldReceive('setAccessToken');

        $accessTokenService = \Mockery::mock('overload:Poniverse\Lib\Service\Poniverse\Meta');
        $accessTokenService->shouldReceive('introspect')
            ->andReturn($accessTokenInfo);

        $this->dontSeeInDatabase('users', ['username' => $user->username]);
        $this->post('/api/v1/tracks', ['access_token' => 'nonsense-token']);
        $this->seeInDatabase('users', ['username' => $user->username]);
    }

    public function testApiClientIdIsRecordedWhenUploadingTrack()
    {
        $user = factory(User::class)->make();

        $accessTokenInfo = new AccessToken('nonsense-token');
        $accessTokenInfo->setIsActive(true);
        $accessTokenInfo->setClientId('Unicorns and rainbows');
        $accessTokenInfo->setScopes(['basic', 'ponyfm:tracks:upload']);

        $poniverse = \Mockery::mock('overload:Poniverse\Lib\OAuth2\PoniverseProvider');
        $poniverse->shouldReceive('getResourceOwner')
                  ->andReturn(new \Poniverse\Lib\Entity\Poniverse\User([
                      'id' => $user->id,
                      'username' => $user->username,
                      'display_name' => $user->display_name,
                      'email' => $user->email,
                  ]));
        $poniverse->shouldReceive('setAccessToken');

        $accessTokenService = \Mockery::mock('overload:Poniverse\Lib\Service\Poniverse\Meta');
        $accessTokenService
            ->shouldReceive('introspect')
            ->andReturn($accessTokenInfo);

        $this->callUploadWithParameters(['access_token' => $accessTokenInfo->getToken()]);
        $this->assertSessionHas('api_client_id', $accessTokenInfo->getClientId());
        $this->seeInDatabase('tracks', ['source' => $accessTokenInfo->getClientId()]);
    }
}
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`<?php`

Laravel 5.4 2017-11-28 06:44:31 +01:00			`namespace Tests;`

#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`/**`
			`* Pony.fm - A community for pony fan music.`
			`* Copyright (C) 2015 Peter Deltchev`
			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

			`use Illuminate\Foundation\Testing\DatabaseMigrations;`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`use Poniverse\Lib\AccessToken;`
Moved all database models into their own namespace. 2016-01-01 01:12:30 +01:00			`use Poniverse\Ponyfm\Models\User;`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00
Laravel 5.2 Update (#106) * Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps should adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within Controllers instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration 2016-09-30 00:26:31 +02:00			`class ApiAuthTest extends TestCase`
			`{`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`use DatabaseMigrations;`

			`/**`
			`* Ensures that when we call the Pony.fm API with a user who has never`
			`* logged into Pony.fm before, a Pony.fm account is created for them using`
			`* their Poniverse details.`
			`*/`
Laravel 5.2 Update (#106) * Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps should adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within Controllers instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration 2016-09-30 00:26:31 +02:00			`public function testApiCreatesNewUser()`
			`{`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`$user = factory(User::class)->make();`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`$accessTokenInfo = new AccessToken('nonsense-token');`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`$accessTokenInfo->setIsActive(true);`
#8: Updated the name of the track upload scope. 2015-12-25 10:25:22 +01:00			`$accessTokenInfo->setScopes(['basic', 'ponyfm:tracks:upload']);`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00
Laravel 5.4 2017-11-28 06:44:31 +01:00			`$poniverse = \Mockery::mock('overload:Poniverse\Lib\OAuth2\PoniverseProvider');`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`$poniverse->shouldReceive('getResourceOwner')`
			`->andReturn(new \Poniverse\Lib\Entity\Poniverse\User([`
			`'id' => $user->id,`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`'username' => $user->username,`
			`'display_name' => $user->display_name,`
			`'email' => $user->email,`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`]));`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`$poniverse->shouldReceive('setAccessToken');`

Laravel 5.4 2017-11-28 06:44:31 +01:00			`$accessTokenService = \Mockery::mock('overload:Poniverse\Lib\Service\Poniverse\Meta');`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`$accessTokenService->shouldReceive('introspect')`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`->andReturn($accessTokenInfo);`

			`$this->dontSeeInDatabase('users', ['username' => $user->username]);`
			`$this->post('/api/v1/tracks', ['access_token' => 'nonsense-token']);`
			`$this->seeInDatabase('users', ['username' => $user->username]);`
			`}`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00
Laravel 5.2 Update (#106) * Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps should adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within Controllers instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration 2016-09-30 00:26:31 +02:00			`public function testApiClientIdIsRecordedWhenUploadingTrack()`
			`{`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00			`$user = factory(User::class)->make();`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00
			`$accessTokenInfo = new AccessToken('nonsense-token');`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00			`$accessTokenInfo->setIsActive(true);`
			`$accessTokenInfo->setClientId('Unicorns and rainbows');`
			`$accessTokenInfo->setScopes(['basic', 'ponyfm:tracks:upload']);`

Laravel 5.4 2017-11-28 06:44:31 +01:00			`$poniverse = \Mockery::mock('overload:Poniverse\Lib\OAuth2\PoniverseProvider');`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`$poniverse->shouldReceive('getResourceOwner')`
			`->andReturn(new \Poniverse\Lib\Entity\Poniverse\User([`
			`'id' => $user->id,`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00			`'username' => $user->username,`
			`'display_name' => $user->display_name,`
			`'email' => $user->email,`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`]));`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00			`$poniverse->shouldReceive('setAccessToken');`

Laravel 5.4 2017-11-28 06:44:31 +01:00			`$accessTokenService = \Mockery::mock('overload:Poniverse\Lib\Service\Poniverse\Meta');`
#25: Rewrote authentication to use the Poniverse API PHP library. 2016-12-29 17:00:46 +01:00			`$accessTokenService`
			`->shouldReceive('introspect')`
#8: Implemented auto-publishing and lots of optional fields for the upload endpoint. 2015-12-26 12:40:47 +01:00			`->andReturn($accessTokenInfo);`

			`$this->callUploadWithParameters(['access_token' => $accessTokenInfo->getToken()]);`
			`$this->assertSessionHas('api_client_id', $accessTokenInfo->getClientId());`
			`$this->seeInDatabase('tracks', ['source' => $accessTokenInfo->getClientId()]);`
			`}`
#8: Implemented several tests for the API. 2015-12-25 03:08:49 +01:00			`}`