shlink/module/Rest/test/Middleware/CrossDomainMiddlewareTest.php

<?php
declare(strict_types=1);

namespace ShlinkioTest\Shlink\Rest\Middleware;

use PHPUnit\Framework\TestCase;
use Prophecy\Argument;
use Prophecy\Prophecy\ObjectProphecy;
use Psr\Http\Server\RequestHandlerInterface;
use Shlinkio\Shlink\Rest\Middleware\CrossDomainMiddleware;
use Zend\Diactoros\Response;
use Zend\Diactoros\ServerRequestFactory;

class CrossDomainMiddlewareTest extends TestCase
{
    /**
     * @var CrossDomainMiddleware
     */
    protected $middleware;
    /**
     * @var ObjectProphecy
     */
    protected $delegate;

    public function setUp()
    {
        $this->middleware = new CrossDomainMiddleware();
        $this->delegate = $this->prophesize(RequestHandlerInterface::class);
    }

    /**
     * @test
     */
    public function nonCrossDomainRequestsAreNotAffected()
    {
        $originalResponse = new Response();
        $this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);

        $response = $this->middleware->process(ServerRequestFactory::fromGlobals(), $this->delegate->reveal());
        $this->assertSame($originalResponse, $response);

        $headers = $response->getHeaders();
        $this->assertArrayNotHasKey('Access-Control-Allow-Origin', $headers);
        $this->assertArrayNotHasKey('Access-Control-Allow-Headers', $headers);
    }

    /**
     * @test
     */
    public function anyRequestIncludesTheAllowAccessHeader()
    {
        $originalResponse = new Response();
        $this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);

        $response = $this->middleware->process(
            ServerRequestFactory::fromGlobals()->withHeader('Origin', 'local'),
            $this->delegate->reveal()
        );
        $this->assertNotSame($originalResponse, $response);

        $headers = $response->getHeaders();
        $this->assertArrayHasKey('Access-Control-Allow-Origin', $headers);
        $this->assertArrayNotHasKey('Access-Control-Allow-Headers', $headers);
    }

    /**
     * @test
     */
    public function optionsRequestIncludesMoreHeaders()
    {
        $originalResponse = new Response();
        $request = ServerRequestFactory::fromGlobals()->withMethod('OPTIONS')->withHeader('Origin', 'local');
        $this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);

        $response = $this->middleware->process($request, $this->delegate->reveal());
        $this->assertNotSame($originalResponse, $response);

        $headers = $response->getHeaders();
        $this->assertArrayHasKey('Access-Control-Allow-Origin', $headers);
        $this->assertArrayHasKey('Access-Control-Allow-Headers', $headers);
    }
}
Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`<?php`
Improved coding styles 2017-10-12 11:13:20 +03:00			`declare(strict_types=1);`

Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`namespace ShlinkioTest\Shlink\Rest\Middleware;`

Updated to phpunit 6 2017-03-24 22:34:18 +03:00			`use PHPUnit\Framework\TestCase;`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00			`use Prophecy\Argument;`
			`use Prophecy\Prophecy\ObjectProphecy;`
Fixed tests 2018-03-26 20:02:41 +03:00			`use Psr\Http\Server\RequestHandlerInterface;`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`use Shlinkio\Shlink\Rest\Middleware\CrossDomainMiddleware;`
			`use Zend\Diactoros\Response;`
			`use Zend\Diactoros\ServerRequestFactory;`

			`class CrossDomainMiddlewareTest extends TestCase`
			`{`
			`/**`
			`* @var CrossDomainMiddleware`
			`*/`
			`protected $middleware;`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00			`/**`
			`* @var ObjectProphecy`
			`*/`
			`protected $delegate;`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00
			`public function setUp()`
			`{`
			`$this->middleware = new CrossDomainMiddleware();`
Fixed tests 2018-03-26 20:02:41 +03:00			`$this->delegate = $this->prophesize(RequestHandlerInterface::class);`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`}`

			`/**`
			`* @test`
			`*/`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`public function nonCrossDomainRequestsAreNotAffected()`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`{`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`$originalResponse = new Response();`
Fixed tests 2018-03-26 20:02:41 +03:00			`$this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00
			`$response = $this->middleware->process(ServerRequestFactory::fromGlobals(), $this->delegate->reveal());`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`$this->assertSame($originalResponse, $response);`

			`$headers = $response->getHeaders();`
			`$this->assertArrayNotHasKey('Access-Control-Allow-Origin', $headers);`
			`$this->assertArrayNotHasKey('Access-Control-Allow-Headers', $headers);`
			`}`

			`/**`
			`* @test`
			`*/`
			`public function anyRequestIncludesTheAllowAccessHeader()`
			`{`
			`$originalResponse = new Response();`
Fixed tests 2018-03-26 20:02:41 +03:00			`$this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00
			`$response = $this->middleware->process(`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`ServerRequestFactory::fromGlobals()->withHeader('Origin', 'local'),`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00			`$this->delegate->reveal()`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00			`);`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`$this->assertNotSame($originalResponse, $response);`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00
			`$headers = $response->getHeaders();`
			`$this->assertArrayHasKey('Access-Control-Allow-Origin', $headers);`
			`$this->assertArrayNotHasKey('Access-Control-Allow-Headers', $headers);`
			`}`

			`/**`
			`* @test`
			`*/`
			`public function optionsRequestIncludesMoreHeaders()`
			`{`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`$originalResponse = new Response();`
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00			`$request = ServerRequestFactory::fromGlobals()->withMethod('OPTIONS')->withHeader('Origin', 'local');`
Fixed tests 2018-03-26 20:02:41 +03:00			`$this->delegate->handle(Argument::any())->willReturn($originalResponse)->shouldbeCalledTimes(1);`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00
Migrated CrossDomainMiddleware to psr-15 middleware 2017-03-25 11:44:34 +03:00			`$response = $this->middleware->process($request, $this->delegate->reveal());`
Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests 2016-07-19 21:20:18 +03:00			`$this->assertNotSame($originalResponse, $response);`
Added first tests to Rest module 2016-07-19 19:19:05 +03:00
			`$headers = $response->getHeaders();`
			`$this->assertArrayHasKey('Access-Control-Allow-Origin', $headers);`
			`$this->assertArrayHasKey('Access-Control-Allow-Headers', $headers);`
			`}`
			`}`