shlink/module/Rest/test/Authentication/JWTServiceTest.php

85 lines
2.5 KiB
PHP
Raw Normal View History

2016-08-07 15:44:33 +03:00
<?php
2017-10-12 11:13:20 +03:00
declare(strict_types=1);
2016-08-07 15:44:33 +03:00
namespace ShlinkioTest\Shlink\Rest\Authentication;
use Firebase\JWT\JWT;
2017-03-24 22:34:18 +03:00
use PHPUnit\Framework\TestCase;
2016-08-07 15:44:33 +03:00
use Shlinkio\Shlink\Core\Options\AppOptions;
use Shlinkio\Shlink\Rest\Authentication\JWTService;
use Shlinkio\Shlink\Rest\Entity\ApiKey;
2019-02-16 12:53:45 +03:00
use Shlinkio\Shlink\Rest\Exception\AuthenticationException;
use function time;
2016-08-07 15:44:33 +03:00
class JWTServiceTest extends TestCase
{
/** @var JWTService */
private $service;
2016-08-07 15:44:33 +03:00
2019-02-16 12:53:45 +03:00
public function setUp(): void
2016-08-07 15:44:33 +03:00
{
$this->service = new JWTService(new AppOptions([
'name' => 'ShlinkTest',
'version' => '10000.3.1',
'secret_key' => 'foo',
]));
}
2019-02-17 22:28:34 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function tokenIsProperlyCreated()
{
$id = '34';
2016-08-07 15:44:33 +03:00
$token = $this->service->create((new ApiKey())->setId($id));
$payload = (array) JWT::decode($token, 'foo', [JWTService::DEFAULT_ENCRYPTION_ALG]);
$this->assertGreaterThanOrEqual($payload['iat'], time());
$this->assertGreaterThan(time(), $payload['exp']);
$this->assertEquals($id, $payload['key']);
$this->assertEquals('auth', $payload['sub']);
$this->assertEquals('ShlinkTest:v10000.3.1', $payload['iss']);
}
2019-02-17 22:28:34 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function refreshIncreasesExpiration()
{
$originalLifetime = 10;
$newLifetime = 30;
$originalPayload = ['exp' => time() + $originalLifetime];
$token = JWT::encode($originalPayload, 'foo');
$newToken = $this->service->refresh($token, $newLifetime);
$newPayload = (array) JWT::decode($newToken, 'foo', [JWTService::DEFAULT_ENCRYPTION_ALG]);
$this->assertGreaterThan($originalPayload['exp'], $newPayload['exp']);
}
2019-02-17 22:28:34 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function verifyReturnsTrueWhenTheTokenIsCorrect()
{
$this->assertTrue($this->service->verify(JWT::encode([], 'foo')));
}
2019-02-17 22:28:34 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function verifyReturnsFalseWhenTheTokenIsCorrect()
{
$this->assertFalse($this->service->verify('invalidToken'));
}
2019-02-17 22:28:34 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function getPayloadWorksWithCorrectTokens()
{
$originalPayload = [
'exp' => time() + 10,
'sub' => 'testing',
];
$token = JWT::encode($originalPayload, 'foo');
$this->assertEquals($originalPayload, $this->service->getPayload($token));
}
2019-02-16 12:53:45 +03:00
/** @test */
2016-08-07 15:44:33 +03:00
public function getPayloadThrowsExceptionWithIncorrectTokens()
{
2019-02-16 12:53:45 +03:00
$this->expectException(AuthenticationException::class);
2016-08-07 15:44:33 +03:00
$this->service->getPayload('invalidToken');
}
}