We use cookies to ensure you get the best experience on our website
Home Verkennen Help
Registreren Inloggen
0ct0pu5
/
2FAuth
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: 1a752d1243
Aftakkingen Labels
2FAuth
/
tests
/
Api
/
v1
/
Controllers
/
SettingControllerTest.php

SettingControllerTest.php 8.8 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275 
  1. <?php
    2. 

  2. 

  3. namespace Tests\Api\v1\Controllers;
    4. 

  4. 

  5. use App\Api\v1\Controllers\SettingController;
    6. 

  6. use App\Facades\Settings;
    7. 

  7. use App\Models\User;
    8. 

  8. use Illuminate\Support\Arr;
    9. 

  9. use Illuminate\Support\Facades\Route;
    10. 

  10. use Illuminate\Support\Str;
    11. 

  11. use PHPUnit\Framework\Attributes\CoversClass;
    12. 

  12. use PHPUnit\Framework\Attributes\Test;
    13. 

  13. use Tests\FeatureTestCase;
    14. 

  14. 

  15. /**
    16. 

  16.  * SettingController test class
    17. 

  17.  */
    18. 

  18. #[CoversClass(SettingController::class)]
    19. 

  19. class SettingControllerTest extends FeatureTestCase
    20. 

  20. {
    21. 

  21.     /**
    22. 

  22.      * @var \App\Models\User|\Illuminate\Contracts\Auth\Authenticatable
    23. 

  23.      */
    24. 

  24.     protected $user;
    25. 

  25. 

  26.     protected $admin;
    27. 

  27. 

  28.     private const SETTING_JSON_STRUCTURE = [
    29. 

  29.         'key',
    30. 

  30.         'value',
    31. 

  31.     ];
    32. 

  32. 

  33.     private const TWOFAUTH_NATIVE_SETTING = 'checkForUpdate';
    34. 

  34. 

  35.     private const TWOFAUTH_NATIVE_SETTING_DEFAULT_VALUE = true;
    36. 

  36. 

  37.     private const TWOFAUTH_NATIVE_SETTING_CHANGED_VALUE = false;
    38. 

  38. 

  39.     private const USER_DEFINED_SETTING = 'mySetting';
    40. 

  40. 

  41.     private const USER_DEFINED_SETTING_VALUE = 'mySetting';
    42. 

  42. 

  43.     private const USER_DEFINED_SETTING_CHANGED_VALUE = 'mySetting';
    44. 

  44. 

  45.     public function setUp() : void
    46. 

  46.     {
    47. 

  47.         parent::setUp();
    48. 

  48. 

  49.         $this->user  = User::factory()->create();
    50. 

  50.         $this->admin = User::factory()->administrator()->create();
    51. 

  51.     }
    52. 

  52. 

  53.     #[Test]
    54. 

  54.     public function test_all_controller_routes_are_protected_by_admin_middleware()
    55. 

  55.     {
    56. 

  56.         $routes = Route::getRoutes()->getRoutes();
    57. 

  57. 

  58.         $controllerRoutes = Arr::where($routes, function (\Illuminate\Routing\Route $route, int $key) {
    59. 

  59.             if (Str::startsWith($route->getActionName(), SettingController::class)) {
    60. 

  60.                 return $route;
    61. 

  61.             }
    62. 

  62.         });
    63. 

  63. 

  64.         foreach ($controllerRoutes as $controllerRoute) {
    65. 

  65.             $this->assertContains('admin', $controllerRoute->middleware());
    66. 

  66.         }
    67. 

  67.     }
    68. 

  68. 

  69.     #[Test]
    70. 

  70.     public function test_index_returns_setting_collection()
    71. 

  71.     {
    72. 

  72.         $response = $this->actingAs($this->admin, 'api-guard')
    73. 

  73.             ->json('GET', '/api/v1/settings')
    74. 

  74.             ->assertOk()
    75. 

  75.             ->assertJsonStructure([
    76. 

  76.                 '*' => self::SETTING_JSON_STRUCTURE,
    77. 

  77.             ]);
    78. 

  78.     }
    79. 

  79. 

  80.     #[Test]
    81. 

  81.     public function test_index_is_forbidden_to_users()
    82. 

  82.     {
    83. 

  83.         $response = $this->actingAs($this->user, 'api-guard')
    84. 

  84.             ->json('GET', '/api/v1/settings')
    85. 

  85.             ->assertForbidden()
    86. 

  86.             ->assertJsonStructure([
    87. 

  87.                 'message',
    88. 

  88.             ]);
    89. 

  89.     }
    90. 

  90. 

  91.     #[Test]
    92. 

  92.     public function test_show_native_unchanged_setting_returns_consistent_value()
    93. 

  93.     {
    94. 

  94.         $response = $this->actingAs($this->admin, 'api-guard')
    95. 

  95.             ->json('GET', '/api/v1/settings/' . self::TWOFAUTH_NATIVE_SETTING)
    96. 

  96.             ->assertOk()
    97. 

  97.             ->assertExactJson([
    98. 

  98.                 'key'   => self::TWOFAUTH_NATIVE_SETTING,
    99. 

  99.                 'value' => self::TWOFAUTH_NATIVE_SETTING_DEFAULT_VALUE,
    100. 

  100.             ]);
    101. 

  101.     }
    102. 

  102. 

  103.     #[Test]
    104. 

  104.     public function test_show_native_changed_setting_returns_consistent_value()
    105. 

  105.     {
    106. 

  106.         Settings::set(self::TWOFAUTH_NATIVE_SETTING, self::TWOFAUTH_NATIVE_SETTING_CHANGED_VALUE);
    107. 

  107. 

  108.         $response = $this->actingAs($this->admin, 'api-guard')
    109. 

  109.             ->json('GET', '/api/v1/settings/' . self::TWOFAUTH_NATIVE_SETTING)
    110. 

  110.             ->assertOk()
    111. 

  111.             ->assertExactJson([
    112. 

  112.                 'key'   => self::TWOFAUTH_NATIVE_SETTING,
    113. 

  113.                 'value' => self::TWOFAUTH_NATIVE_SETTING_CHANGED_VALUE,
    114. 

  114.             ]);
    115. 

  115.     }
    116. 

  116. 

  117.     #[Test]
    118. 

  118.     public function test_show_custom_user_setting_returns_consistent_value()
    119. 

  119.     {
    120. 

  120.         Settings::set(self::USER_DEFINED_SETTING, self::USER_DEFINED_SETTING_VALUE);
    121. 

  121. 

  122.         $response = $this->actingAs($this->admin, 'api-guard')
    123. 

  123.             ->json('GET', '/api/v1/settings/' . self::USER_DEFINED_SETTING)
    124. 

  124.             ->assertOk()
    125. 

  125.             ->assertExactJson([
    126. 

  126.                 'key'   => self::USER_DEFINED_SETTING,
    127. 

  127.                 'value' => self::USER_DEFINED_SETTING_VALUE,
    128. 

  128.             ]);
    129. 

  129.     }
    130. 

  130. 

  131.     #[Test]
    132. 

  132.     public function test_show_missing_setting_returns_not_found()
    133. 

  133.     {
    134. 

  134.         $response = $this->actingAs($this->admin, 'api-guard')
    135. 

  135.             ->json('GET', '/api/v1/settings/missing')
    136. 

  136.             ->assertNotFound();
    137. 

  137.     }
    138. 

  138. 

  139.     #[Test]
    140. 

  140.     public function test_show_setting_is_forbidden_to_users()
    141. 

  141.     {
    142. 

  142.         $response = $this->actingAs($this->user, 'api-guard')
    143. 

  143.             ->json('GET', '/api/v1/settings/' . self::TWOFAUTH_NATIVE_SETTING)
    144. 

  144.             ->assertForbidden()
    145. 

  145.             ->assertJsonStructure([
    146. 

  146.                 'message',
    147. 

  147.             ]);
    148. 

  148.     }
    149. 

  149. 

  150.     #[Test]
    151. 

  151.     public function test_store_custom_user_setting_returns_success()
    152. 

  152.     {
    153. 

  153.         $response = $this->actingAs($this->admin, 'api-guard')
    154. 

  154.             ->json('POST', '/api/v1/settings', [
    155. 

  155.                 'key'   => self::USER_DEFINED_SETTING,
    156. 

  156.                 'value' => self::USER_DEFINED_SETTING_VALUE,
    157. 

  157.             ])
    158. 

  158.             ->assertCreated()
    159. 

  159.             ->assertExactJson([
    160. 

  160.                 'key'   => self::USER_DEFINED_SETTING,
    161. 

  161.                 'value' => self::USER_DEFINED_SETTING_VALUE,
    162. 

  162.             ]);
    163. 

  163.     }
    164. 

  164. 

  165.     #[Test]
    166. 

  166.     public function test_store_invalid_custom_user_setting_returns_validation_error()
    167. 

  167.     {
    168. 

  168.         $response = $this->actingAs($this->admin, 'api-guard')
    169. 

  169.             ->json('POST', '/api/v1/settings', [
    170. 

  170.                 'key'   => null,
    171. 

  171.                 'value' => null,
    172. 

  172.             ])
    173. 

  173.             ->assertStatus(422);
    174. 

  174.     }
    175. 

  175. 

  176.     #[Test]
    177. 

  177.     public function test_store_existing_custom_user_setting_returns_validation_error()
    178. 

  178.     {
    179. 

  179.         Settings::set(self::USER_DEFINED_SETTING, self::USER_DEFINED_SETTING_VALUE);
    180. 

  180. 

  181.         $response = $this->actingAs($this->admin, 'api-guard')
    182. 

  182.             ->json('POST', '/api/v1/settings', [
    183. 

  183.                 'key'   => self::USER_DEFINED_SETTING,
    184. 

  184.                 'value' => self::USER_DEFINED_SETTING_VALUE,
    185. 

  185.             ])
    186. 

  186.             ->assertStatus(422);
    187. 

  187.     }
    188. 

  188. 

  189.     #[Test]
    190. 

  190.     public function test_update_unchanged_native_setting_returns_updated_setting()
    191. 

  191.     {
    192. 

  192.         $response = $this->actingAs($this->admin, 'api-guard')
    193. 

  193.             ->json('PUT', '/api/v1/settings/' . self::TWOFAUTH_NATIVE_SETTING, [
    194. 

  194.                 'value' => self::TWOFAUTH_NATIVE_SETTING_CHANGED_VALUE,
    195. 

  195.             ])
    196. 

  196.             ->assertOk()
    197. 

  197.             ->assertExactJson([
    198. 

  198.                 'key'   => self::TWOFAUTH_NATIVE_SETTING,
    199. 

  199.                 'value' => self::TWOFAUTH_NATIVE_SETTING_CHANGED_VALUE,
    200. 

  200.             ]);
    201. 

  201.     }
    202. 

  202. 

  203.     #[Test]
    204. 

  204.     public function test_update_custom_user_setting_returns_updated_setting()
    205. 

  205.     {
    206. 

  206.         Settings::set(self::USER_DEFINED_SETTING, self::USER_DEFINED_SETTING_VALUE);
    207. 

  207. 

  208.         $response = $this->actingAs($this->admin, 'api-guard')
    209. 

  209.             ->json('PUT', '/api/v1/settings/' . self::USER_DEFINED_SETTING, [
    210. 

  210.                 'value' => self::USER_DEFINED_SETTING_CHANGED_VALUE,
    211. 

  211.             ])
    212. 

  212.             ->assertOk()
    213. 

  213.             ->assertExactJson([
    214. 

  214.                 'key'   => self::USER_DEFINED_SETTING,
    215. 

  215.                 'value' => self::USER_DEFINED_SETTING_CHANGED_VALUE,
    216. 

  216.             ]);
    217. 

  217.     }
    218. 

  218. 

  219.     #[Test]
    220. 

  220.     public function test_update_missing_user_setting_returns_created_setting()
    221. 

  221.     {
    222. 

  222.         $response = $this->actingAs($this->admin, 'api-guard')
    223. 

  223.             ->json('PUT', '/api/v1/settings/' . self::USER_DEFINED_SETTING, [
    224. 

  224.                 'value' => self::USER_DEFINED_SETTING_CHANGED_VALUE,
    225. 

  225.             ])
    226. 

  226.             ->assertOk()
    227. 

  227.             ->assertExactJson([
    228. 

  228.                 'key'   => self::USER_DEFINED_SETTING,
    229. 

  229.                 'value' => self::USER_DEFINED_SETTING_CHANGED_VALUE,
    230. 

  230.             ]);
    231. 

  231.     }
    232. 

  232. 

  233.     #[Test]
    234. 

  234.     public function test_destroy_user_setting_returns_success()
    235. 

  235.     {
    236. 

  236.         Settings::set(self::USER_DEFINED_SETTING, self::USER_DEFINED_SETTING_VALUE);
    237. 

  237. 

  238.         $response = $this->actingAs($this->admin, 'api-guard')
    239. 

  239.             ->json('DELETE', '/api/v1/settings/' . self::USER_DEFINED_SETTING)
    240. 

  240.             ->assertNoContent();
    241. 

  241.     }
    242. 

  242. 

  243.     #[Test]
    244. 

  244.     public function test_destroy_native_setting_returns_bad_request()
    245. 

  245.     {
    246. 

  246.         $response = $this->actingAs($this->admin, 'api-guard')
    247. 

  247.             ->json('DELETE', '/api/v1/settings/' . self::TWOFAUTH_NATIVE_SETTING)
    248. 

  248.             ->assertStatus(400)
    249. 

  249.             ->assertJsonStructure([
    250. 

  250.                 'message',
    251. 

  251.                 'reason',
    252. 

  252.             ]);
    253. 

  253.     }
    254. 

  254. 

  255.     #[Test]
    256. 

  256.     public function test_destroy_missing_user_setting_returns_not_found()
    257. 

  257.     {
    258. 

  258.         $response = $this->actingAs($this->admin, 'api-guard')
    259. 

  259.             ->json('DELETE', '/api/v1/settings/' . self::USER_DEFINED_SETTING)
    260. 

  260.             ->assertNotFound();
    261. 

  261.     }
    262. 

  262. 

  263.     #[Test]
    264. 

  264.     public function test_destroy_is_forbidden_to_users()
    265. 

  265.     {
    266. 

  266.         Settings::set(self::USER_DEFINED_SETTING, self::USER_DEFINED_SETTING_VALUE);
    267. 

  267. 

  268.         $response = $this->actingAs($this->user, 'api-guard')
    269. 

  269.             ->json('DELETE', '/api/v1/settings/' . self::USER_DEFINED_SETTING)
    270. 

  270.             ->assertForbidden()
    271. 

  271.             ->assertJsonStructure([
    272. 

  272.                 'message',
    273. 

  273.             ]);
    274. 

  274.     }
    275. 

  275. }
    276.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5