Added some unit tests

aphiria · Aug 10, 2023 · 13b7948 · 13b7948
1 parent c6fb36b
commit 13b7948
Show file tree

Hide file tree

Showing 4 changed files with 84 additions and 5 deletions.
diff --git a/src/Auth/AuthModule.php b/src/Auth/AuthModule.php
@@ -14,7 +14,7 @@
 use Aphiria\Framework\Application\AphiriaModule;
 use Aphiria\Net\Http\Headers\SameSiteMode;
 use Aphiria\Net\Http\HttpStatusCode;
-use App\Auth\Binders\AuthServiceBinder;
+use App\Auth\Binders\AuthBinder;
 use App\Auth\Policies\OwnerOrAdminRequirement;
 use App\Auth\Policies\OwnerOrAdminRequirementHandler;
 use App\Auth\Schemes\BasicAuthenticationHandler;
@@ -30,7 +30,7 @@ final class AuthModule extends AphiriaModule
      */
     public function configure(IApplicationBuilder $appBuilder): void
     {
-        $this->withBinders($appBuilder, new AuthServiceBinder())
+        $this->withBinders($appBuilder, new AuthBinder())
             // Add our default authentication scheme
             ->withAuthenticationScheme(
                 $appBuilder,

diff --git a/src/Auth/Binders/AuthServiceBinder.php → src/Auth/Binders/AuthBinder.php b/src/Auth/Binders/AuthServiceBinder.php → src/Auth/Binders/AuthBinder.php
@@ -10,16 +10,15 @@
 use App\Auth\SqlTokenService;
 
 /**
- * Defines the auth service binder
+ * Defines the auth binder
  */
-final class AuthServiceBinder extends Binder
+final class AuthBinder extends Binder
 {
     /**
      * @inheritdoc
      */
     public function bind(IContainer $container): void
     {
-        // Configure the token service
         $container->bindClass(ITokenService::class, SqlTokenService::class);
     }
 }
diff --git a/tests/Unit/.gitkeep b/tests/Unit/.gitkeep
diff --git a/tests/Unit/Auth/Policies/OwnerOrAdminRequirementHandlerTest.php b/tests/Unit/Auth/Policies/OwnerOrAdminRequirementHandlerTest.php
@@ -0,0 +1,80 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Tests\Unit\Auth\Policies;
+
+use Aphiria\Authorization\AuthorizationContext;
+use Aphiria\Security\PrincipalBuilder;
+use App\Auth\Policies\OwnerOrAdminRequirement;
+use App\Auth\Policies\OwnerOrAdminRequirementHandler;
+use App\Users\User;
+use InvalidArgumentException;
+use PHPUnit\Framework\TestCase;
+
+class OwnerOrAdminRequirementHandlerTest extends TestCase
+{
+    private OwnerOrAdminRequirementHandler $requirementHandler;
+
+    protected function setUp(): void
+    {
+        $this->requirementHandler = new OwnerOrAdminRequirementHandler();
+    }
+
+    public function testBeingNeitherAdminNorOwnerFails(): void
+    {
+        $userToAccess = new User(1, 'foo@example.com', []);
+        $userAccessing = (new PrincipalBuilder('example.com'))->withNameIdentifier(2)
+            ->build();
+        $requirement = new OwnerOrAdminRequirement('admin');
+        $context = new AuthorizationContext($userAccessing, [$requirement], $userToAccess);
+        $this->requirementHandler->handle($userAccessing, $requirement, $context);
+        $this->assertFalse($context->allRequirementsPassed());
+    }
+
+    public function testBeingOwnerPasses(): void
+    {
+        $userToAccess = new User(1, 'foo@example.com', []);
+        $userAccessing = (new PrincipalBuilder('example.com'))->withNameIdentifier(1)
+            ->build();
+        $requirement = new OwnerOrAdminRequirement('admin');
+        $context = new AuthorizationContext($userAccessing, [$requirement], $userToAccess);
+        $this->requirementHandler->handle($userAccessing, $requirement, $context);
+        $this->assertTrue($context->allRequirementsPassed());
+    }
+
+    public function testHavingAnAdminRolePasses(): void
+    {
+        $userToAccess = new User(1, 'foo@example.com', []);
+        $userAccessing = (new PrincipalBuilder('example.com'))->withRoles('admin')
+            ->build();
+        $requirement = new OwnerOrAdminRequirement('admin');
+        $context = new AuthorizationContext($userAccessing, [$requirement], $userToAccess);
+        $this->requirementHandler->handle($userAccessing, $requirement, $context);
+        $this->assertTrue($context->allRequirementsPassed());
+    }
+
+    public function testRequirementOfIncorrectTypeThrowsException(): void
+    {
+        $this->expectException(InvalidArgumentException::class);
+        $this->expectExceptionMessage('Requirement must be of type ' . OwnerOrAdminRequirement::class);
+        $userToAccess = new User(1, 'foo@example.com', []);
+        $userAccessing = (new PrincipalBuilder('example.com'))->withRoles('admin')
+            ->build();
+        $requirement = $this;
+        $context = new AuthorizationContext($userAccessing, [$requirement], $userToAccess);
+        /** @psalm-suppress InvalidArgument Purposely testing this */
+        $this->requirementHandler->handle($userAccessing, $requirement, $context);
+    }
+
+    public function testResourceOfIncorrectTypeThrowsException(): void
+    {
+        $this->expectException(InvalidArgumentException::class);
+        $this->expectExceptionMessage('Resource must be of type ' . User::class);
+        $userAccessing = (new PrincipalBuilder('example.com'))->build();
+        $requirement = new OwnerOrAdminRequirement('admin');
+        $context = new AuthorizationContext($userAccessing, [$requirement], $this);
+        /** @psalm-suppress InvalidArgument Purposely testing this */
+        $this->requirementHandler->handle($userAccessing, $requirement, $context);
+    }
+}