Marle
/
webAdministracion
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
2 Commits
1 Branch
Tree: 8452fc02c6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8452fc02c6'
${ noResults }
webAdministracion/processes/google-api-php-client-2.2.2/vendor/google/auth/tests/Credentials/ServiceAccountCredentialsTe...

ServiceAccountCredentialsTest.php 15KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521 
  1. <?php

  2. /*

  3.  * Copyright 2015 Google Inc.

  4.  *

  5.  * Licensed under the Apache License, Version 2.0 (the "License");

  6.  * you may not use this file except in compliance with the License.

  7.  * You may obtain a copy of the License at

  8.  *

  9.  *     http://www.apache.org/licenses/LICENSE-2.0

  10.  *

  11.  * Unless required by applicable law or agreed to in writing, software

  12.  * distributed under the License is distributed on an "AS IS" BASIS,

  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14.  * See the License for the specific language governing permissions and

  15.  * limitations under the License.

  16.  */

  17. 

  18. namespace Google\Auth\Tests;

  19. 

  20. use Google\Auth\ApplicationDefaultCredentials;

  21. use Google\Auth\Credentials\ServiceAccountCredentials;

  22. use Google\Auth\Credentials\ServiceAccountJwtAccessCredentials;

  23. use Google\Auth\CredentialsLoader;

  24. use Google\Auth\OAuth2;

  25. use GuzzleHttp\Psr7;

  26. use PHPUnit\Framework\TestCase;

  27. 

  28. // Creates a standard JSON auth object for testing.

  29. function createTestJson()

  30. {

  31.     return [

  32.         'private_key_id' => 'key123',

  33.         'private_key' => 'privatekey',

  34.         'client_email' => 'test@example.com',

  35.         'client_id' => 'client123',

  36.         'type' => 'service_account',

  37.     ];

  38. }

  39. 

  40. class SACGetCacheKeyTest extends TestCase

  41. {

  42.     public function testShouldBeTheSameAsOAuth2WithTheSameScope()

  43.     {

  44.         $testJson = createTestJson();

  45.         $scope = ['scope/1', 'scope/2'];

  46.         $sa = new ServiceAccountCredentials(

  47.             $scope,

  48.             $testJson);

  49.         $o = new OAuth2(['scope' => $scope]);

  50.         $this->assertSame(

  51.             $testJson['client_email'] . ':' . $o->getCacheKey(),

  52.             $sa->getCacheKey()

  53.         );

  54.     }

  55. 

  56.     public function testShouldBeTheSameAsOAuth2WithTheSameScopeWithSub()

  57.     {

  58.         $testJson = createTestJson();

  59.         $scope = ['scope/1', 'scope/2'];

  60.         $sub = 'sub123';

  61.         $sa = new ServiceAccountCredentials(

  62.             $scope,

  63.             $testJson,

  64.             $sub);

  65.         $o = new OAuth2(['scope' => $scope]);

  66.         $this->assertSame(

  67.             $testJson['client_email'] . ':' . $o->getCacheKey() . ':' . $sub,

  68.             $sa->getCacheKey()

  69.         );

  70.     }

  71. 

  72.     public function testShouldBeTheSameAsOAuth2WithTheSameScopeWithSubAddedLater()

  73.     {

  74.         $testJson = createTestJson();

  75.         $scope = ['scope/1', 'scope/2'];

  76.         $sub = 'sub123';

  77.         $sa = new ServiceAccountCredentials(

  78.             $scope,

  79.             $testJson,

  80.             null);

  81.         $sa->setSub($sub);

  82. 

  83.         $o = new OAuth2(['scope' => $scope]);

  84.         $this->assertSame(

  85.             $testJson['client_email'] . ':' . $o->getCacheKey() . ':' . $sub,

  86.             $sa->getCacheKey()

  87.         );

  88.     }

  89. }

  90. 

  91. class SACConstructorTest extends TestCase

  92. {

  93.     /**

  94.      * @expectedException InvalidArgumentException

  95.      */

  96.     public function testShouldFailIfScopeIsNotAValidType()

  97.     {

  98.         $testJson = createTestJson();

  99.         $notAnArrayOrString = new \stdClass();

  100.         $sa = new ServiceAccountCredentials(

  101.             $notAnArrayOrString,

  102.             $testJson

  103.         );

  104.     }

  105. 

  106.     /**

  107.      * @expectedException InvalidArgumentException

  108.      */

  109.     public function testShouldFailIfJsonDoesNotHaveClientEmail()

  110.     {

  111.         $testJson = createTestJson();

  112.         unset($testJson['client_email']);

  113.         $scope = ['scope/1', 'scope/2'];

  114.         $sa = new ServiceAccountCredentials(

  115.             $scope,

  116.             $testJson

  117.         );

  118.     }

  119. 

  120.     /**

  121.      * @expectedException InvalidArgumentException

  122.      */

  123.     public function testShouldFailIfJsonDoesNotHavePrivateKey()

  124.     {

  125.         $testJson = createTestJson();

  126.         unset($testJson['private_key']);

  127.         $scope = ['scope/1', 'scope/2'];

  128.         $sa = new ServiceAccountCredentials(

  129.             $scope,

  130.             $testJson

  131.         );

  132.     }

  133. 

  134.     /**

  135.      * @expectedException InvalidArgumentException

  136.      */

  137.     public function testFailsToInitalizeFromANonExistentFile()

  138.     {

  139.         $keyFile = __DIR__ . '/../fixtures' . '/does-not-exist-private.json';

  140.         new ServiceAccountCredentials('scope/1', $keyFile);

  141.     }

  142. 

  143.     public function testInitalizeFromAFile()

  144.     {

  145.         $keyFile = __DIR__ . '/../fixtures' . '/private.json';

  146.         $this->assertNotNull(

  147.             new ServiceAccountCredentials('scope/1', $keyFile)

  148.         );

  149.     }

  150. }

  151. 

  152. class SACFromEnvTest extends TestCase

  153. {

  154.     protected function tearDown()

  155.     {

  156.         putenv(ServiceAccountCredentials::ENV_VAR);  // removes it from

  157.     }

  158. 

  159.     public function testIsNullIfEnvVarIsNotSet()

  160.     {

  161.         $this->assertNull(ServiceAccountCredentials::fromEnv());

  162.     }

  163. 

  164.     /**

  165.      * @expectedException DomainException

  166.      */

  167.     public function testFailsIfEnvSpecifiesNonExistentFile()

  168.     {

  169.         $keyFile = __DIR__ . '/../fixtures' . '/does-not-exist-private.json';

  170.         putenv(ServiceAccountCredentials::ENV_VAR . '=' . $keyFile);

  171.         ApplicationDefaultCredentials::getCredentials('a scope');

  172.     }

  173. 

  174.     public function testSucceedIfFileExists()

  175.     {

  176.         $keyFile = __DIR__ . '/../fixtures' . '/private.json';

  177.         putenv(ServiceAccountCredentials::ENV_VAR . '=' . $keyFile);

  178.         $this->assertNotNull(ApplicationDefaultCredentials::getCredentials('a scope'));

  179.     }

  180. }

  181. 

  182. class SACFromWellKnownFileTest extends TestCase

  183. {

  184.     private $originalHome;

  185. 

  186.     protected function setUp()

  187.     {

  188.         $this->originalHome = getenv('HOME');

  189.     }

  190. 

  191.     protected function tearDown()

  192.     {

  193.         if ($this->originalHome != getenv('HOME')) {

  194.             putenv('HOME=' . $this->originalHome);

  195.         }

  196.     }

  197. 

  198.     public function testIsNullIfFileDoesNotExist()

  199.     {

  200.         putenv('HOME=' . __DIR__ . '/../not_exists_fixtures');

  201.         $this->assertNull(

  202.             ServiceAccountCredentials::fromWellKnownFile()

  203.         );

  204.     }

  205. 

  206.     public function testSucceedIfFileIsPresent()

  207.     {

  208.         putenv('HOME=' . __DIR__ . '/../fixtures');

  209.         $this->assertNotNull(

  210.             ApplicationDefaultCredentials::getCredentials('a scope')

  211.         );

  212.     }

  213. }

  214. 

  215. class SACFetchAuthTokenTest extends TestCase

  216. {

  217.     private $privateKey;

  218. 

  219.     public function setUp()

  220.     {

  221.         $this->privateKey =

  222.             file_get_contents(__DIR__ . '/../fixtures' . '/private.pem');

  223.     }

  224. 

  225.     private function createTestJson()

  226.     {

  227.         $testJson = createTestJson();

  228.         $testJson['private_key'] = $this->privateKey;

  229. 

  230.         return $testJson;

  231.     }

  232. 

  233.     /**

  234.      * @expectedException GuzzleHttp\Exception\ClientException

  235.      */

  236.     public function testFailsOnClientErrors()

  237.     {

  238.         $testJson = $this->createTestJson();

  239.         $scope = ['scope/1', 'scope/2'];

  240.         $httpHandler = getHandler([

  241.             buildResponse(400),

  242.         ]);

  243.         $sa = new ServiceAccountCredentials(

  244.             $scope,

  245.             $testJson

  246.         );

  247.         $sa->fetchAuthToken($httpHandler);

  248.     }

  249. 

  250.     /**

  251.      * @expectedException GuzzleHttp\Exception\ServerException

  252.      */

  253.     public function testFailsOnServerErrors()

  254.     {

  255.         $testJson = $this->createTestJson();

  256.         $scope = ['scope/1', 'scope/2'];

  257.         $httpHandler = getHandler([

  258.             buildResponse(500),

  259.         ]);

  260.         $sa = new ServiceAccountCredentials(

  261.             $scope,

  262.             $testJson

  263.         );

  264.         $sa->fetchAuthToken($httpHandler);

  265.     }

  266. 

  267.     public function testCanFetchCredsOK()

  268.     {

  269.         $testJson = $this->createTestJson();

  270.         $testJsonText = json_encode($testJson);

  271.         $scope = ['scope/1', 'scope/2'];

  272.         $httpHandler = getHandler([

  273.             buildResponse(200, [], Psr7\stream_for($testJsonText)),

  274.         ]);

  275.         $sa = new ServiceAccountCredentials(

  276.             $scope,

  277.             $testJson

  278.         );

  279.         $tokens = $sa->fetchAuthToken($httpHandler);

  280.         $this->assertEquals($testJson, $tokens);

  281.     }

  282. 

  283.     public function testUpdateMetadataFunc()

  284.     {

  285.         $testJson = $this->createTestJson();

  286.         $scope = ['scope/1', 'scope/2'];

  287.         $access_token = 'accessToken123';

  288.         $responseText = json_encode(array('access_token' => $access_token));

  289.         $httpHandler = getHandler([

  290.             buildResponse(200, [], Psr7\stream_for($responseText)),

  291.         ]);

  292.         $sa = new ServiceAccountCredentials(

  293.             $scope,

  294.             $testJson

  295.         );

  296.         $update_metadata = $sa->getUpdateMetadataFunc();

  297.         $this->assertInternalType('callable', $update_metadata);

  298. 

  299.         $actual_metadata = call_user_func($update_metadata,

  300.             $metadata = array('foo' => 'bar'),

  301.             $authUri = null,

  302.             $httpHandler);

  303.         $this->assertArrayHasKey(

  304.             CredentialsLoader::AUTH_METADATA_KEY,

  305.             $actual_metadata

  306.         );

  307.         $this->assertEquals(

  308.             $actual_metadata[CredentialsLoader::AUTH_METADATA_KEY],

  309.             array('Bearer ' . $access_token));

  310.     }

  311. }

  312. 

  313. class SACJwtAccessTest extends TestCase

  314. {

  315.     private $privateKey;

  316. 

  317.     public function setUp()

  318.     {

  319.         $this->privateKey =

  320.             file_get_contents(__DIR__ . '/../fixtures' . '/private.pem');

  321.     }

  322. 

  323.     private function createTestJson()

  324.     {

  325.         $testJson = createTestJson();

  326.         $testJson['private_key'] = $this->privateKey;

  327. 

  328.         return $testJson;

  329.     }

  330. 

  331.     /**

  332.      * @expectedException InvalidArgumentException

  333.      */

  334.     public function testFailsOnMissingClientEmail()

  335.     {

  336.         $testJson = $this->createTestJson();

  337.         unset($testJson['client_email']);

  338.         $sa = new ServiceAccountJwtAccessCredentials(

  339.             $testJson

  340.         );

  341.     }

  342. 

  343.     /**

  344.      * @expectedException InvalidArgumentException

  345.      */

  346.     public function testFailsOnMissingPrivateKey()

  347.     {

  348.         $testJson = $this->createTestJson();

  349.         unset($testJson['private_key']);

  350.         $sa = new ServiceAccountJwtAccessCredentials(

  351.             $testJson

  352.         );

  353.     }

  354. 

  355.     public function testCanInitializeFromJson()

  356.     {

  357.         $testJson = $this->createTestJson();

  358.         $sa = new ServiceAccountJwtAccessCredentials(

  359.             $testJson

  360.         );

  361.         $this->assertNotNull($sa);

  362.     }

  363. 

  364.     public function testNoOpOnFetchAuthToken()

  365.     {

  366.         $testJson = $this->createTestJson();

  367.         $sa = new ServiceAccountJwtAccessCredentials(

  368.             $testJson

  369.         );

  370.         $this->assertNotNull($sa);

  371. 

  372.         $httpHandler = getHandler([

  373.             buildResponse(200),

  374.         ]);

  375.         $result = $sa->fetchAuthToken($httpHandler); // authUri has not been set

  376.         $this->assertNull($result);

  377.     }

  378. 

  379.     public function testAuthUriIsNotSet()

  380.     {

  381.         $testJson = $this->createTestJson();

  382.         $sa = new ServiceAccountJwtAccessCredentials(

  383.             $testJson

  384.         );

  385.         $this->assertNotNull($sa);

  386. 

  387.         $update_metadata = $sa->getUpdateMetadataFunc();

  388.         $this->assertInternalType('callable', $update_metadata);

  389. 

  390.         $actual_metadata = call_user_func($update_metadata,

  391.             $metadata = array('foo' => 'bar'),

  392.             $authUri = null);

  393.         $this->assertArrayNotHasKey(

  394.             CredentialsLoader::AUTH_METADATA_KEY,

  395.             $actual_metadata

  396.         );

  397.     }

  398. 

  399.     public function testUpdateMetadataFunc()

  400.     {

  401.         $testJson = $this->createTestJson();

  402.         $sa = new ServiceAccountJwtAccessCredentials(

  403.             $testJson

  404.         );

  405.         $this->assertNotNull($sa);

  406. 

  407.         $update_metadata = $sa->getUpdateMetadataFunc();

  408.         $this->assertInternalType('callable', $update_metadata);

  409. 

  410.         $actual_metadata = call_user_func($update_metadata,

  411.             $metadata = array('foo' => 'bar'),

  412.             $authUri = 'https://example.com/service');

  413.         $this->assertArrayHasKey(

  414.             CredentialsLoader::AUTH_METADATA_KEY,

  415.             $actual_metadata

  416.         );

  417. 

  418.         $authorization = $actual_metadata[CredentialsLoader::AUTH_METADATA_KEY];

  419.         $this->assertInternalType('array', $authorization);

  420. 

  421.         $bearer_token = current($authorization);

  422.         $this->assertInternalType('string', $bearer_token);

  423.         $this->assertEquals(0, strpos($bearer_token, 'Bearer '));

  424.         $this->assertGreaterThan(30, strlen($bearer_token));

  425. 

  426.         $actual_metadata2 = call_user_func($update_metadata,

  427.             $metadata = array('foo' => 'bar'),

  428.             $authUri = 'https://example.com/anotherService');

  429.         $this->assertArrayHasKey(

  430.             CredentialsLoader::AUTH_METADATA_KEY,

  431.             $actual_metadata2

  432.         );

  433. 

  434.         $authorization2 = $actual_metadata2[CredentialsLoader::AUTH_METADATA_KEY];

  435.         $this->assertInternalType('array', $authorization2);

  436. 

  437.         $bearer_token2 = current($authorization2);

  438.         $this->assertInternalType('string', $bearer_token2);

  439.         $this->assertEquals(0, strpos($bearer_token2, 'Bearer '));

  440.         $this->assertGreaterThan(30, strlen($bearer_token2));

  441.         $this->assertNotEquals($bearer_token2, $bearer_token);

  442.     }

  443. }

  444. 

  445. class SACJwtAccessComboTest extends TestCase

  446. {

  447.     private $privateKey;

  448. 

  449.     public function setUp()

  450.     {

  451.         $this->privateKey =

  452.             file_get_contents(__DIR__ . '/../fixtures' . '/private.pem');

  453.     }

  454. 

  455.     private function createTestJson()

  456.     {

  457.         $testJson = createTestJson();

  458.         $testJson['private_key'] = $this->privateKey;

  459. 

  460.         return $testJson;

  461.     }

  462. 

  463.     public function testNoScopeUseJwtAccess()

  464.     {

  465.         $testJson = $this->createTestJson();

  466.         // no scope, jwt access should be used, no outbound

  467.         // call should be made

  468.         $scope = null;

  469.         $sa = new ServiceAccountCredentials(

  470.             $scope,

  471.             $testJson

  472.         );

  473.         $this->assertNotNull($sa);

  474. 

  475.         $update_metadata = $sa->getUpdateMetadataFunc();

  476.         $this->assertInternalType('callable', $update_metadata);

  477. 

  478.         $actual_metadata = call_user_func($update_metadata,

  479.             $metadata = array('foo' => 'bar'),

  480.             $authUri = 'https://example.com/service');

  481.         $this->assertArrayHasKey(

  482.             CredentialsLoader::AUTH_METADATA_KEY,

  483.             $actual_metadata

  484.         );

  485. 

  486.         $authorization = $actual_metadata[CredentialsLoader::AUTH_METADATA_KEY];

  487.         $this->assertInternalType('array', $authorization);

  488. 

  489.         $bearer_token = current($authorization);

  490.         $this->assertInternalType('string', $bearer_token);

  491.         $this->assertEquals(0, strpos($bearer_token, 'Bearer '));

  492.         $this->assertGreaterThan(30, strlen($bearer_token));

  493.     }

  494. 

  495.     public function testNoScopeAndNoAuthUri()

  496.     {

  497.         $testJson = $this->createTestJson();

  498.         // no scope, jwt access should be used, no outbound

  499.         // call should be made

  500.         $scope = null;

  501.         $sa = new ServiceAccountCredentials(

  502.             $scope,

  503.             $testJson

  504.         );

  505.         $this->assertNotNull($sa);

  506. 

  507.         $update_metadata = $sa->getUpdateMetadataFunc();

  508.         $this->assertInternalType('callable', $update_metadata);

  509. 

  510.         $actual_metadata = call_user_func($update_metadata,

  511.             $metadata = array('foo' => 'bar'),

  512.             $authUri = null);

  513.         // no access_token is added to the metadata hash

  514.         // but also, no error should be thrown

  515.         $this->assertInternalType('array', $actual_metadata);

  516.         $this->assertArrayNotHasKey(

  517.             CredentialsLoader::AUTH_METADATA_KEY,

  518.             $actual_metadata

  519.         );

  520.     }

  521. }