123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256 |
- <?php
- class ApiOAuth2Test extends BaseTest
- {
- public function testSign()
- {
- $client = $this->getClient();
- $oauth = new Google_Auth_OAuth2($client);
- $client->setClientId('clientId1');
- $client->setClientSecret('clientSecret1');
- $client->setRedirectUri('http://localhost');
- $client->setDeveloperKey('devKey');
- $client->setAccessType('offline');
- $client->setApprovalPrompt('force');
- $client->setRequestVisibleActions('http://foo');
- $req = new Google_Http_Request('http://localhost');
- $req = $oauth->sign($req);
- $this->assertEquals('http://localhost?key=devKey', $req->getUrl());
-
- $oauth->setAccessToken(
- json_encode(
- array(
- 'access_token' => 'ACCESS_TOKEN',
- 'created' => time(),
- 'expires_in' => '3600'
- )
- )
- );
- $req = $oauth->sign($req);
- $auth = $req->getRequestHeader('authorization');
- $this->assertEquals('Bearer ACCESS_TOKEN', $auth);
- }
- public function testRevokeAccess()
- {
- $accessToken = "ACCESS_TOKEN";
- $refreshToken = "REFRESH_TOKEN";
- $accessToken2 = "ACCESS_TOKEN_2";
- $token = "";
- $client = $this->getClient();
- $response = $this->getMock("Google_Http_Request", array(), array(''));
- $response->expects($this->any())
- ->method('getResponseHttpCode')
- ->will($this->returnValue(200));
- $io = $this->getMock("Google_IO_Stream", array(), array($client));
- $io->expects($this->any())
- ->method('makeRequest')
- ->will(
- $this->returnCallback(
- function ($request) use (&$token, $response) {
- $elements = array();
- parse_str($request->getPostBody(), $elements);
- $token = isset($elements['token']) ? $elements['token'] : null;
- return $response;
- }
- )
- );
- $client->setIo($io);
-
- $oauth = new Google_Auth_OAuth2($client);
- $oauth->setAccessToken(
- json_encode(
- array(
- 'access_token' => $accessToken,
- 'created' => time(),
- 'expires_in' => '3600'
- )
- )
- );
- $this->assertTrue($oauth->revokeToken());
- $this->assertEquals($accessToken, $token);
-
- $oauth = new Google_Auth_OAuth2($client);
- $oauth->setAccessToken(
- json_encode(
- array(
- 'access_token' => $accessToken,
- 'refresh_token' => $refreshToken,
- 'created' => time(),
- 'expires_in' => '3600'
- )
- )
- );
- $this->assertTrue($oauth->revokeToken());
- $this->assertEquals($refreshToken, $token);
-
- $this->assertTrue($oauth->revokeToken($accessToken2));
- $this->assertEquals($accessToken2, $token);
- }
- public function testCreateAuthUrl()
- {
- $client = $this->getClient();
- $oauth = new Google_Auth_OAuth2($client);
- $client->setClientId('clientId1');
- $client->setClientSecret('clientSecret1');
- $client->setRedirectUri('http://localhost');
- $client->setDeveloperKey('devKey');
- $client->setAccessType('offline');
- $client->setApprovalPrompt('force');
- $client->setRequestVisibleActions(array('http://foo'));
- $client->setLoginHint("bob@example.org");
- $authUrl = $oauth->createAuthUrl("http://googleapis.com/scope/foo");
- $expected = "https://accounts.google.com/o/oauth2/auth"
- . "?response_type=code"
- . "&redirect_uri=http%3A%2F%2Flocalhost"
- . "&client_id=clientId1"
- . "&scope=http%3A%2F%2Fgoogleapis.com%2Fscope%2Ffoo"
- . "&access_type=offline"
- . "&approval_prompt=force"
- . "&login_hint=bob%40example.org";
- $this->assertEquals($expected, $authUrl);
-
- $client->setLoginHint("");
- $client->setHostedDomain("example.com");
- $client->setOpenidRealm("example.com");
- $client->setPrompt("select_account");
- $client->setIncludeGrantedScopes(true);
- $authUrl = $oauth->createAuthUrl("http://googleapis.com/scope/foo");
- $expected = "https://accounts.google.com/o/oauth2/auth"
- . "?response_type=code"
- . "&redirect_uri=http%3A%2F%2Flocalhost"
- . "&client_id=clientId1"
- . "&scope=http%3A%2F%2Fgoogleapis.com%2Fscope%2Ffoo"
- . "&access_type=offline"
- . "&prompt=select_account"
- . "&hd=example.com"
- . "&openid.realm=example.com"
- . "&include_granted_scopes=true";
- $this->assertEquals($expected, $authUrl);
- }
-
- public function testValidateIdToken()
- {
- if (!$this->checkToken()) {
- return;
- }
- $client = $this->getClient();
- $token = json_decode($client->getAccessToken());
- $segments = explode(".", $token->id_token);
- $this->assertEquals(3, count($segments));
-
- $data = json_decode(Google_Utils::urlSafeB64Decode($segments[1]));
- $oauth = new Google_Auth_OAuth2($client);
- $ticket = $oauth->verifyIdToken($token->id_token, $data->aud);
- $this->assertInstanceOf(
- "Google_Auth_LoginTicket",
- $ticket
- );
- $this->assertTrue(strlen($ticket->getUserId()) > 0);
-
-
-
- $client = $this->getClient();
- $client->setIo(new Google_IO_Stream($client));
- $data = json_decode(Google_Utils::urlSafeB64Decode($segments[1]));
- $oauth = new Google_Auth_OAuth2($client);
- $this->assertInstanceOf(
- "Google_Auth_LoginTicket",
- $oauth->verifyIdToken($token->id_token, $data->aud)
- );
- }
-
- public function testRevokeWhenNoTokenExists()
- {
- $client = new Google_Client();
- $this->assertFalse($client->revokeToken());
- }
-
- public function testRefreshTokenSetsValues()
- {
- $client = new Google_Client();
- $response_data = json_encode(
- array(
- 'access_token' => "ACCESS_TOKEN",
- 'id_token' => "ID_TOKEN",
- 'expires_in' => "12345",
- )
- );
- $response = $this->getMock("Google_Http_Request", array(), array(''));
- $response->expects($this->any())
- ->method('getResponseHttpCode')
- ->will($this->returnValue(200));
- $response->expects($this->any())
- ->method('getResponseBody')
- ->will($this->returnValue($response_data));
- $io = $this->getMock("Google_IO_Stream", array(), array($client));
- $io->expects($this->any())
- ->method('makeRequest')
- ->will(
- $this->returnCallback(
- function ($request) use (&$token, $response) {
- $elements = $request->getPostBody();
- PHPUnit_Framework_TestCase::assertEquals(
- $elements['grant_type'],
- "refresh_token"
- );
- PHPUnit_Framework_TestCase::assertEquals(
- $elements['refresh_token'],
- "REFRESH_TOKEN"
- );
- return $response;
- }
- )
- );
- $client->setIo($io);
- $oauth = new Google_Auth_OAuth2($client);
- $oauth->refreshToken("REFRESH_TOKEN");
- $token = json_decode($oauth->getAccessToken(), true);
- $this->assertEquals($token['id_token'], "ID_TOKEN");
- }
- }
|