shlink/module/Rest/test-api/Middleware/AuthenticationTest.php

<?php
declare(strict_types=1);

namespace ShlinkioApiTest\Shlink\Rest\Middleware;

use Shlinkio\Shlink\Rest\Authentication\Plugin\ApiKeyHeaderPlugin;
use Shlinkio\Shlink\Rest\Authentication\RequestToHttpAuthPlugin;
use Shlinkio\Shlink\Rest\Util\RestUtils;
use ShlinkioTest\Shlink\Common\ApiTest\ApiTestCase;

use function implode;
use function sprintf;

class AuthenticationTest extends ApiTestCase
{
    /** @test */
    public function authorizationErrorIsReturnedIfNoApiKeyIsSent(): void
    {
        $resp = $this->callApi(self::METHOD_GET, '/short-codes');
        ['error' => $error, 'message' => $message] = $this->getJsonResponsePayload($resp);

        $this->assertEquals(self::STATUS_UNAUTHORIZED, $resp->getStatusCode());
        $this->assertEquals(RestUtils::INVALID_AUTHORIZATION_ERROR, $error);
        $this->assertEquals(
            sprintf(
                'Expected one of the following authentication headers, but none were provided, ["%s"]',
                implode('", "', RequestToHttpAuthPlugin::SUPPORTED_AUTH_HEADERS)
            ),
            $message
        );
    }

    /**
     * @test
     * @dataProvider provideInvalidApiKeys
     */
    public function apiKeyErrorIsReturnedWhenProvidedApiKeyIsInvalid(string $apiKey): void
    {
        $resp = $this->callApi(self::METHOD_GET, '/short-codes', [
            'headers' => [
                ApiKeyHeaderPlugin::HEADER_NAME => $apiKey,
            ],
        ]);
        ['error' => $error, 'message' => $message] = $this->getJsonResponsePayload($resp);

        $this->assertEquals(self::STATUS_UNAUTHORIZED, $resp->getStatusCode());
        $this->assertEquals(RestUtils::INVALID_API_KEY_ERROR, $error);
        $this->assertEquals('Provided API key does not exist or is invalid.', $message);
    }

    public function provideInvalidApiKeys(): iterable
    {
        yield 'key which does not exist' => ['invalid'];
        yield 'key which is expired' => ['expired_api_key'];
        yield 'key which is disabled' => ['disabled_api_key'];
    }
}
Prepared configs for API tests 2019-01-26 12:19:20 +03:00			`<?php`
			`declare(strict_types=1);`

			`namespace ShlinkioApiTest\Shlink\Rest\Middleware;`

Improved how API tests are executed 2019-01-27 12:54:04 +03:00			`use Shlinkio\Shlink\Rest\Authentication\Plugin\ApiKeyHeaderPlugin;`
			`use Shlinkio\Shlink\Rest\Authentication\RequestToHttpAuthPlugin;`
			`use Shlinkio\Shlink\Rest\Util\RestUtils;`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00			`use ShlinkioTest\Shlink\Common\ApiTest\ApiTestCase;`
Updated to shlinkio coding standard 1.1.0 2019-02-27 00:56:43 +03:00
Improved how API tests are executed 2019-01-27 12:54:04 +03:00			`use function implode;`
			`use function sprintf;`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00
			`class AuthenticationTest extends ApiTestCase`
			`{`
Reduced amount of dead lines in tests 2019-02-17 22:28:34 +03:00			`/** @test */`
			`public function authorizationErrorIsReturnedIfNoApiKeyIsSent(): void`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00			`{`
Improved API tests and added test for short URLs creation 2019-01-30 20:28:07 +03:00			`$resp = $this->callApi(self::METHOD_GET, '/short-codes');`
			`['error' => $error, 'message' => $message] = $this->getJsonResponsePayload($resp);`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00
Improved API tests and added test for short URLs creation 2019-01-30 20:28:07 +03:00			`$this->assertEquals(self::STATUS_UNAUTHORIZED, $resp->getStatusCode());`
			`$this->assertEquals(RestUtils::INVALID_AUTHORIZATION_ERROR, $error);`
			`$this->assertEquals(`
			`sprintf(`
			`'Expected one of the following authentication headers, but none were provided, ["%s"]',`
			`implode('", "', RequestToHttpAuthPlugin::SUPPORTED_AUTH_HEADERS)`
			`),`
			`$message`
			`);`
Improved how API tests are executed 2019-01-27 12:54:04 +03:00			`}`

			`/**`
			`* @test`
Improved API tests by adding fixtures 2019-01-27 14:14:18 +03:00			`* @dataProvider provideInvalidApiKeys`
Improved how API tests are executed 2019-01-27 12:54:04 +03:00			`*/`
Reduced amount of dead lines in tests 2019-02-17 22:28:34 +03:00			`public function apiKeyErrorIsReturnedWhenProvidedApiKeyIsInvalid(string $apiKey): void`
Improved how API tests are executed 2019-01-27 12:54:04 +03:00			`{`
Improved API tests and added test for short URLs creation 2019-01-30 20:28:07 +03:00			`$resp = $this->callApi(self::METHOD_GET, '/short-codes', [`
			`'headers' => [`
			`ApiKeyHeaderPlugin::HEADER_NAME => $apiKey,`
			`],`
			`]);`
			`['error' => $error, 'message' => $message] = $this->getJsonResponsePayload($resp);`
Improved how API tests are executed 2019-01-27 12:54:04 +03:00
Improved API tests and added test for short URLs creation 2019-01-30 20:28:07 +03:00			`$this->assertEquals(self::STATUS_UNAUTHORIZED, $resp->getStatusCode());`
			`$this->assertEquals(RestUtils::INVALID_API_KEY_ERROR, $error);`
			`$this->assertEquals('Provided API key does not exist or is invalid.', $message);`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00			`}`
Improved API tests by adding fixtures 2019-01-27 14:14:18 +03:00
Reduced amount of dead lines in tests 2019-02-17 22:28:34 +03:00			`public function provideInvalidApiKeys(): iterable`
Improved API tests by adding fixtures 2019-01-27 14:14:18 +03:00			`{`
Reduced amount of dead lines in tests 2019-02-17 22:28:34 +03:00			`yield 'key which does not exist' => ['invalid'];`
			`yield 'key which is expired' => ['expired_api_key'];`
			`yield 'key which is disabled' => ['disabled_api_key'];`
Improved API tests by adding fixtures 2019-01-27 14:14:18 +03:00			`}`
Prepared configs for API tests 2019-01-26 12:19:20 +03:00			`}`