namespace Tests\Wallabag\ApiBundle\Controller;
use Tests\Wallabag\CoreBundle\WallabagCoreTestCase;
+use Wallabag\ApiBundle\Entity\Client;
class DeveloperControllerTest extends WallabagCoreTestCase
{
$this->assertContains('My app', $alert[0]);
}
- /**
- * @depends testCreateClient
- */
- public function testCreateToken()
+ public function testCreateTokenFromPasswords()
{
$client = $this->getClient();
- $em = $client->getContainer()->get('doctrine.orm.entity_manager');
- $apiClient = $em->getRepository('WallabagApiBundle:Client')->findOneByName('My app');
+ $apiClient = $this->createApiClientForUser('admin');
$client->request('POST', '/oauth/v2/token', [
'grant_type' => 'password',
$this->assertArrayHasKey('refresh_token', $data);
}
+ public function testCreateTokenFromClientCredentialsOnly()
+ {
+ $client = $this->getClient();
+ $apiClient = $this->createApiClientForUser('admin', ['client_credentials']);
+
+ $client->request('POST', '/oauth/v2/token', [
+ 'grant_type' => 'client_credentials',
+ 'client_id' => $apiClient->getPublicId(),
+ 'client_secret' => $apiClient->getSecret(),
+ ]);
+
+ $this->assertEquals(200, $client->getResponse()->getStatusCode());
+
+ $data = json_decode($client->getResponse()->getContent(), true);
+ $this->assertArrayHasKey('access_token', $data);
+ $this->assertArrayHasKey('expires_in', $data);
+ $this->assertArrayHasKey('token_type', $data);
+ // Client Credentials created-clients have no refresh tokens
+ }
+
public function testListingClient()
{
$this->logInAs('admin');
public function testRemoveClient()
{
$client = $this->getClient();
+ $adminApiClient = $this->createApiClientForUser('admin');
$em = $client->getContainer()->get('doctrine.orm.entity_manager');
// Try to remove an admin's client with a wrong user
$client->request('GET', '/developer');
$this->assertContains('no_client', $client->getResponse()->getContent());
- // get an ID of a admin's client
- $this->logInAs('admin');
- $nbClients = $em->getRepository('WallabagApiBundle:Client')->findByUser($this->getLoggedInUserId());
-
$this->logInAs('bob');
- $client->request('GET', '/developer/client/delete/'.$nbClients[0]->getId());
+ $client->request('GET', '/developer/client/delete/'.$adminApiClient->getId());
$this->assertEquals(403, $client->getResponse()->getStatusCode());
// Try to remove the admin's client with the good user
$client->click($link);
$this->assertEquals(302, $client->getResponse()->getStatusCode());
- $newNbClients = $em->getRepository('WallabagApiBundle:Client')->findByUser($this->getLoggedInUserId());
- $this->assertGreaterThan(count($newNbClients), count($nbClients));
+ $this->assertNull(
+ $em->getRepository('WallabagApiBundle:Client')->find($adminApiClient->getId()),
+ 'The client should have been removed'
+ );
+ }
+
+ /**
+ * @param string $username
+ *
+ * @param array $grantTypes
+ * @return Client
+ */
+ private function createApiClientForUser($username, $grantTypes = ['password'])
+ {
+ $client = $this->getClient();
+ $em = $client->getContainer()->get('doctrine.orm.entity_manager');
+ $userManager = $client->getContainer()->get('fos_user.user_manager');
+ $user = $userManager->findUserBy(array('username' => $username));
+ $apiClient = new Client($user);
+ $apiClient->setName('My app');
+ $apiClient->setAllowedGrantTypes($grantTypes);
+ $em->persist($apiClient);
+ $em->flush();
+
+ return $apiClient;
}
}