Commit 5d61d33

author

Greg Bowler

authored

Introduce App ID, closes #3 (#5)

1 parent bc670d0 commit 5d61d33Copy full SHA for 5d61d33

File tree

5 files changed

+84

-26

lines changed

src
test/phpunit
- AuthUriTest.php
- AuthenticatorTest.php

5 files changed

+84

-26

lines changed

`‎src/AuthUri.php‎`

Lines changed: 9 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,8 +4,9 @@`
`4`	`4`	`use Gt\Http\Uri;`
`5`	`5`
`6`	`6`	`class AuthUri extends Uri {`
`7`		`- const DEFAULT_BASE_URI = "login.authwave.com";`
	`7`	`+ const DEFAULT_BASE_REMOTE_URI = "login.authwave.com";`
`8`	`8`
	`9`	`+ const QUERY_STRING_ID = "id";`
`9`	`10`	`const QUERY_STRING_CIPHER = "cipher";`
`10`	`11`	`const QUERY_STRING_INIT_VECTOR = "iv";`
`11`	`12`	`const QUERY_STRING_CURRENT_PATH = "path";`
`@@ -14,20 +15,22 @@ class AuthUri extends Uri {`
`14`	`15`	`* @param Token $token This must be the same instance of the Token when`
`15`	`16`	`* creating Authenticator for the first time as it is when checking the`
`16`	`17`	`* response from the Authwave provider (store in a session).`
	`18`	`+ * @param string $clientId`
`17`	`19`	`* @param string $currentPath`
`18`		`- * @param string $baseUri The base URI of the application. This is the`
	`20`	`+ * @param string $baseRemoteUri The base URI of the application. This is the`
`19`	`21`	`* URI authority with optional scheme, as localhost allows http://`
`20`	`22`	`*/`
`21`	`23`	`public function __construct(`
`22`	`24`	`Token $token,`
	`25`	`+ string $clientId,`
`23`	`26`	`string $currentPath = "/",`
`24`		`- string $baseUri = self::DEFAULT_BASE_URI`
	`27`	`+ string $baseRemoteUri = self::DEFAULT_BASE_REMOTE_URI`
`25`	`28`	`) {`
`26`		`- $baseUri = $this->normaliseBaseUri($baseUri);`
`27`		`-`
`28`		`- parent::__construct($baseUri);`
	`29`	`+ $baseRemoteUri = $this->normaliseBaseUri($baseRemoteUri);`
	`30`	`+ parent::__construct($baseRemoteUri);`
`29`	`31`
`30`	`32`	`$this->query = http_build_query([`
	`33`	`+ self::QUERY_STRING_ID => $clientId,`
`31`	`34`	`self::QUERY_STRING_CIPHER => (string)$token->generateRequestCipher(),`
`32`	`35`	`self::QUERY_STRING_INIT_VECTOR => (string)$token->getIv(),`
`33`	`36`	`self::QUERY_STRING_CURRENT_PATH => $currentPath,`

`‎src/Authenticator.php‎`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -14,8 +14,10 @@ class Authenticator {`
`14`	`14`	`private SessionContainer $session;`
`15`	`15`	`private SessionData $sessionData;`
`16`	`16`	`private RedirectHandler $redirectHandler;`
	`17`	`+ private string $clientId;`
`17`	`18`
`18`	`19`	`public function __construct(`
	`20`	`+ string $clientId,`
`19`	`21`	`string $clientKey,`
`20`	`22`	`string $currentUriPath,`
`21`	`23`	`string $authwaveHost = "login.authwave.com",`
`@@ -32,6 +34,7 @@ public function __construct(`
`32`	`34`	`$session->set(self::SESSION_KEY, new SessionData());`
`33`	`35`	`}`
`34`	`36`
	`37`	`+ $this->clientId = $clientId;`
`35`	`38`	`$this->clientKey = $clientKey;`
`36`	`39`	`$this->currentUriPath = $currentUriPath;`
`37`	`40`	`$this->authwaveHost = $authwaveHost;`
`@@ -69,6 +72,7 @@ public function login(Token $token = null):void {`
`69`	`72`
`70`	`73`	`$loginUri = new AuthUri(`
`71`	`74`	`$token,`
	`75`	`+ $this->clientId,`
`72`	`76`	`$this->currentUriPath,`
`73`	`77`	`$this->authwaveHost`
`74`	`78`	`);`

`‎src/InitVectorNotSetException.php‎`

Lines changed: 0 additions & 4 deletions

This file was deleted.

`‎test/phpunit/AuthUriTest.php‎`

Lines changed: 37 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -15,7 +15,12 @@ public function testAuthUriHttps() {`
`15`	`15`	`->willReturn("https://example.com");`
`16`	`16`	`$token = self::createMock(Token::class);`
`17`	`17`
`18`		`- $sut = new AuthUri($token, "", $baseUri);`
	`18`	`+ $sut = new AuthUri(`
	`19`	`+ $token,`
	`20`	`+ "example-app-id",`
	`21`	`+ "",`
	`22`	`+ $baseUri`
	`23`	`+ );`
`19`	`24`	`self::assertEquals(`
`20`	`25`	`"https",`
`21`	`26`	`$sut->getScheme()`
`@@ -26,7 +31,13 @@ public function testAuthUriHttps() {`
`26`	`31`	`// But it should still default to HTTPS on localhost.`
`27`	`32`	`public function testGetAuthUriHostnameLocalhostHttpsByDefault() {`
`28`	`33`	`$token = self::createMock(Token::class);`
`29`		`- $sut = new AuthUri($token, "/", "localhost");`
	`34`	`+ $sut = new AuthUri(`
	`35`	`+ $token,`
	`36`	`+ "example-app-id",`
	`37`	`+ "/",`
	`38`	`+ "localhost"`
	`39`	`+ );`
	`40`	`+`
`30`	`41`	`self::assertStringStartsWith(`
`31`	`42`	`"https://localhost",`
`32`	`43`	`$sut`
`@@ -36,7 +47,12 @@ public function testGetAuthUriHostnameLocalhostHttpsByDefault() {`
`36`	`47`	`// We should be able to set the scheme to HTTP for localhost hostname only.`
`37`	`48`	`public function testGetAuthUriHostnameLocalhostHttpAllowed() {`
`38`	`49`	`$token = self::createMock(Token::class);`
`39`		`- $sut = new AuthUri($token, "/", "http://localhost");`
	`50`	`+ $sut = new AuthUri(`
	`51`	`+ $token,`
	`52`	`+ "example-app-id",`
	`53`	`+ "/",`
	`54`	`+ "http://localhost"`
	`55`	`+ );`
`40`	`56`	`self::assertStringStartsWith(`
`41`	`57`	`"http://localhost",`
`42`	`58`	`$sut`
`@@ -47,7 +63,12 @@ public function testGetAuthUriHostnameLocalhostHttpAllowed() {`
`47`	`63`	`public function testGetAuthUriHostnameNotLocalhostHttpNotAllowed() {`
`48`	`64`	`$token = self::createMock(Token::class);`
`49`	`65`	`self::expectException(InsecureProtocolException::class);`
`50`		`- new AuthUri($token, "/", "http://localhost.com");`
	`66`	`+ new AuthUri(`
	`67`	`+ $token,`
	`68`	`+ "example-app-id",`
	`69`	`+ "/",`
	`70`	`+ "http://localhost.com"`
	`71`	`+ );`
`51`	`72`	`}`
`52`	`73`
`53`	`74`	`public function testAuthUriHttpsInferred() {`
`@@ -57,7 +78,12 @@ public function testAuthUriHttpsInferred() {`
`57`	`78`	`// Note on the line above, no scheme is passed in - we must assume https.`
`58`	`79`	`$token = self::createMock(Token::class);`
`59`	`80`
`60`		`- $sut = new AuthUri($token, "/", $baseUri);`
	`81`	`+ $sut = new AuthUri(`
	`82`	`+ $token,`
	`83`	`+ "example-app-id",`
	`84`	`+ "/",`
	`85`	`+ $baseUri);`
	`86`	`+`
`61`	`87`	`self::assertEquals(`
`62`	`88`	`"https",`
`63`	`89`	`$sut->getScheme()`
`@@ -79,7 +105,12 @@ public function testQueryString() {`
`79`	`105`	`->willReturn($iv);`
`80`	`106`
`81`	`107`	`$returnPath = "/examplePage";`
`82`		`- $sut = new AuthUri($token, $returnPath, $baseUri);`
	`108`	`+ $sut = new AuthUri(`
	`109`	`+ $token,`
	`110`	`+ "example-app-id",`
	`111`	`+ $returnPath,`
	`112`	`+ $baseUri`
	`113`	`+ );`
`83`	`114`	`parse_str($sut->getQuery(), $queryParts);`
`84`	`115`
`85`	`116`	`self::assertEquals(`

`‎test/phpunit/AuthenticatorTest.php‎`

Lines changed: 34 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,12 +16,20 @@`
`16`	`16`	`class AuthenticatorTest extends TestCase {`
`17`	`17`	`public function testConstructWithDefaultSessionNotStarted() {`
`18`	`18`	`self::expectException(SessionNotStartedException::class);`
`19`		`- new Authenticator("test-key","/");`
	`19`	`+ new Authenticator(`
	`20`	`+ "example-app-id",`
	`21`	`+ "test-key",`
	`22`	`+ "/"`
	`23`	`+ );`
`20`	`24`	`}`
`21`	`25`
`22`	`26`	`public function testConstructWithDefaultSession() {`
`23`	`27`	`$_SESSION = [];`
`24`		`- new Authenticator("test-key", "/");`
	`28`	`+ new Authenticator(`
	`29`	`+ "example-app-id",`
	`30`	`+ "test-key",`
	`31`	`+ "/"`
	`32`	`+ );`
`25`	`33`	`self::assertArrayHasKey(`
`26`	`34`	`Authenticator::SESSION_KEY,`
`27`	`35`	`$_SESSION`
`@@ -31,6 +39,7 @@ public function testConstructWithDefaultSession() {`
`31`	`39`	`public function testIsLoggedInFalseByDefault() {`
`32`	`40`	`$_SESSION = [];`
`33`	`41`	`$sut = new Authenticator(`
	`42`	`+ "example-app-id",`
`34`	`43`	`"test-key",`
`35`	`44`	`"/"`
`36`	`45`	`);`
`@@ -49,8 +58,9 @@ public function testIsLoggedInTrueWhenSessionDataSet() {`
`49`	`58`	`];`
`50`	`59`
`51`	`60`	`$sut = new Authenticator(`
	`61`	`+ "example-app-id",`
`52`	`62`	`"test-key",`
`53`		`- "/",`
	`63`	`+ "/"`
`54`	`64`	`);`
`55`	`65`	`self::assertTrue($sut->isLoggedIn());`
`56`	`66`	`}`
`@@ -62,8 +72,9 @@ public function testLogoutClearsSession() {`
`62`	`72`	`];`
`63`	`73`
`64`	`74`	`$sut = new Authenticator(`
	`75`	`+ "example-app-id",`
`65`	`76`	`"test-key",`
`66`		`- "/",`
	`77`	`+ "/"`
`67`	`78`	`);`
`68`	`79`	`$sut->logout();`
`69`	`80`	`self::assertEmpty($_SESSION);`
`@@ -76,13 +87,14 @@ public function testLoginRedirects() {`
`76`	`87`	`$redirectHandler->expects(self::once())`
`77`	`88`	`->method("redirect")`
`78`	`89`	`->with(self::callback(fn(UriInterface $uri) =>`
`79`		`- $uri->getHost() === AuthUri::DEFAULT_BASE_URI`
	`90`	`+ $uri->getHost() === AuthUri::DEFAULT_BASE_REMOTE_URI`
`80`	`91`	`));`
`81`	`92`
`82`	`93`	`$sut = new Authenticator(`
	`94`	`+ "example-app-id",`
`83`	`95`	`"test-key",`
`84`	`96`	`"/",`
`85`		`- AuthUri::DEFAULT_BASE_URI,`
	`97`	`+ AuthUri::DEFAULT_BASE_REMOTE_URI,`
`86`	`98`	`null,`
`87`	`99`	`$redirectHandler`
`88`	`100`	`);`
`@@ -102,6 +114,7 @@ public function testLoginRedirectsLocalhost() {`
`102`	`114`	`));`
`103`	`115`
`104`	`116`	`$sut = new Authenticator(`
	`117`	`+ "example-app-id",`
`105`	`118`	`"test-key",`
`106`	`119`	`"/",`
`107`	`120`	`"http://localhost:8081",`
`@@ -117,6 +130,7 @@ public function testLoginRedirectsWithCorrectQueryString() {`
`117`	`130`	`$key = uniqid("key-");`
`118`	`131`	`$currentPath = uniqid("/path/");`
`119`	`132`
	`133`	`+ $id = "example-app-id";`
`120`	`134`	`$cipher = "example-cipher";`
`121`	`135`	`$ivString = "example-iv";`
`122`	`136`
`@@ -131,6 +145,7 @@ public function testLoginRedirectsWithCorrectQueryString() {`
`131`	`145`	`->willReturn($iv);`
`132`	`146`
`133`	`147`	`$expectedQueryParts = [`
	`148`	`+ AuthUri::QUERY_STRING_ID => $id,`
`134`	`149`	`AuthUri::QUERY_STRING_CIPHER => $cipher,`
`135`	`150`	`AuthUri::QUERY_STRING_INIT_VECTOR => $ivString,`
`136`	`151`	`AuthUri::QUERY_STRING_CURRENT_PATH => $currentPath,`
`@@ -145,9 +160,10 @@ public function testLoginRedirectsWithCorrectQueryString() {`
`145`	`160`	`));`
`146`	`161`
`147`	`162`	`$sut = new Authenticator(`
	`163`	`+ $id,`
`148`	`164`	`$key,`
`149`	`165`	`$currentPath,`
`150`		`- AuthUri::DEFAULT_BASE_URI,`
	`166`	`+ AuthUri::DEFAULT_BASE_REMOTE_URI,`
`151`	`167`	`null,`
`152`	`168`	`$redirectHandler`
`153`	`169`	`);`
`@@ -165,9 +181,10 @@ public function testLoginDoesNothingWhenAlreadyLoggedIn() {`
`165`	`181`	`->method("redirect");`
`166`	`182`
`167`	`183`	`$sut = new Authenticator(`
	`184`	`+ "example-app-id",`
`168`	`185`	`"test-key",`
`169`	`186`	`"/",`
`170`		`- AuthUri::DEFAULT_BASE_URI,`
	`187`	`+ AuthUri::DEFAULT_BASE_REMOTE_URI,`
`171`	`188`	`null,`
`172`	`189`	`$redirectHandler`
`173`	`190`	`);`
`@@ -178,6 +195,7 @@ public function testLoginDoesNothingWhenAlreadyLoggedIn() {`
`178`	`195`	`public function testGetUuidThrowsExceptionWhenNotLoggedIn() {`
`179`	`196`	`$_SESSION = [];`
`180`	`197`	`$sut = new Authenticator(`
	`198`	`+ "example-app-id",`
`181`	`199`	`"test-key",`
`182`	`200`	`"/"`
`183`	`201`	`);`
`@@ -199,6 +217,7 @@ public function testGetUuid() {`
`199`	`217`	`Authenticator::SESSION_KEY => $sessionData,`
`200`	`218`	`];`
`201`	`219`	`$sut = new Authenticator(`
	`220`	`+ "example-app-id",`
`202`	`221`	`"test-key",`
`203`	`222`	`"/"`
`204`	`223`	`);`
`@@ -208,6 +227,7 @@ public function testGetUuid() {`
`208`	`227`	`public function testGetEmailThrowsExceptionWhenNotLoggedIn() {`
`209`	`228`	`$_SESSION = [];`
`210`	`229`	`$sut = new Authenticator(`
	`230`	`+ "example-app-id",`
`211`	`231`	`"test-key",`
`212`	`232`	`"/"`
`213`	`233`	`);`
`@@ -229,6 +249,7 @@ public function testGetEmail() {`
`229`	`249`	`Authenticator::SESSION_KEY => $sessionData,`
`230`	`250`	`];`
`231`	`251`	`$sut = new Authenticator(`
	`252`	`+ "example-app-id",`
`232`	`253`	`"test-key",`
`233`	`254`	`"/"`
`234`	`255`	`);`
`@@ -243,6 +264,7 @@ public function testCompleteAuthNotLoggedIn() {`
`243`	`264`	`$_SESSION = [];`
`244`	`265`	`self::expectException(NotLoggedInException::class);`
`245`	`266`	`new Authenticator(`
	`267`	`+ "example-app-id",`
`246`	`268`	`"test-key",`
`247`	`269`	`$currentUri`
`248`	`270`	`);`
`@@ -275,9 +297,10 @@ public function testCompleteAuth() {`
`275`	`297`	`Authenticator::SESSION_KEY => $sessionData,`
`276`	`298`	`];`
`277`	`299`	`new Authenticator(`
	`300`	`+ "example-app-id",`
`278`	`301`	`"test-key",`
`279`	`302`	`$currentUri,`
`280`		`- AuthUri::DEFAULT_BASE_URI,`
	`303`	`+ AuthUri::DEFAULT_BASE_REMOTE_URI,`
`281`	`304`	`null,`
`282`	`305`	`$redirectHandler`
`283`	`306`	`);`
`@@ -302,9 +325,10 @@ public function testCompleteAuthNotAffectedByQueryString() {`
`302`	`325`	`$_SESSION = [];`
`303`	`326`
`304`	`327`	`new Authenticator(`
	`328`	`+ "example-app-id",`
`305`	`329`	`"test-key",`
`306`	`330`	`"/example-path?filter=something",`
`307`		`- AuthUri::DEFAULT_BASE_URI,`
	`331`	`+ AuthUri::DEFAULT_BASE_REMOTE_URI,`
`308`	`332`	`null,`
`309`	`333`	`$redirectHandler`
`310`	`334`	`);`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit 5d61d33

File tree

5 files changed

5 files changed

`‎src/AuthUri.php‎`

`‎src/Authenticator.php‎`

`‎src/InitVectorNotSetException.php‎`

`‎test/phpunit/AuthUriTest.php‎`

`‎test/phpunit/AuthenticatorTest.php‎`

0 commit comments