nas
/
todo_api
Watch 2
Star 1
Fork 0
Code Issues 1 Pull Requests 0 Releases 0 Wiki Activity
api de gestion de ticket, basé sur php-crud-api. Le but est de décorrélé les outils de gestion des données, afin
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
333 Commits
1 Branch
Tree: 6eb7271d43
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6eb7271d43'
${ noResults }
todo_api/tests/tests.php

tests.php 13KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411 
  1. <?php

  2. if (!file_exists(__DIR__.'/config.php')) {

  3. 	copy(__DIR__.'/config.php.dist',__DIR__.'/config.php');

  4. }

  5. require __DIR__.'/config.php';

  6. require __DIR__.'/../api.php';

  7. 

  8. class API

  9. {

  10. 	protected $test;

  11. 	protected $api;

  12. 

  13. 	public function __construct($test)

  14. 	{

  15. 		$this->test = $test;

  16. 	}

  17. 

  18. 	private function action($method,$url,$data='')

  19. 	{

  20. 		$url = parse_url($url);

  21. 		$query = isset($url['query'])?$url['query']:'';

  22. 		parse_str($query,$get);

  23. 

  24. 		$data = 'data://text/plain;base64,'.base64_encode($data);

  25. 

  26. 		switch(MySQL_CRUD_API_Config::$dbengine) {

  27. 			case 'mssql':	$class = 'MsSQL_CRUD_API'; $charset = 'utf-8'; break;

  28. 			case 'pgsql':	$class = 'PgSQL_CRUD_API'; $charset = 'utf8'; break;

  29. 			case 'mysql':	$class = 'MySQL_CRUD_API'; $charset = 'utf8'; break;

  30. 			default:	die("DB engine not supported: $dbengine\n");

  31. 		}

  32. 

  33. 		$this->api = new $class(array(

  34. 				'hostname'=>MySQL_CRUD_API_Config::$hostname,

  35. 				'username'=>MySQL_CRUD_API_Config::$username,

  36. 				'password'=>MySQL_CRUD_API_Config::$password,

  37. 				'database'=>MySQL_CRUD_API_Config::$database,

  38. 				'charset'=>$charset,

  39. 				// callbacks

  40. 				'table_authorizer'=>function($action,$database,$table) { return true; },

  41. 				'column_authorizer'=>function($action,$database,$table,$column) { return $column!='password'; },

  42. 				'input_sanitizer'=>function($action,$database,$table,$column,$value) { return $value===null?null:strip_tags($value); },

  43. 				'input_validator'=>function($action,$database,$table,$column,$value) { return ($column=='category_id' && !is_numeric($value))?'must be numeric':true; },

  44. 				// for tests

  45. 				'method' =>$method,

  46. 				'request' =>$url['path'],

  47. 				'post'=>$data,

  48. 				'get' =>$get,

  49. 		));

  50. 		return $this;

  51. 	}

  52. 

  53. 	public function get($url)

  54. 	{

  55. 		return $this->action('GET',$url);

  56. 	}

  57. 

  58. 	public function post($url,$data)

  59. 	{

  60. 		return $this->action('POST',$url,$data);

  61. 	}

  62. 

  63. 	public function put($url,$data)

  64. 	{

  65. 		return $this->action('PUT',$url,$data);

  66. 	}

  67. 

  68. 	public function delete($url)

  69. 	{

  70. 		return $this->action('DELETE',$url);

  71. 	}

  72. 

  73. 	public function options($url)

  74. 	{

  75. 		return $this->action('OPTIONS',$url);

  76. 	}

  77. 

  78. 	public function expect($output,$error=false)

  79. 	{

  80. 		$exception = false;

  81. 		ob_start();

  82. 		try {

  83. 			$this->api->executeCommand();

  84. 		} catch (\Exception $e) {

  85. 			$exception = $e->getMessage();

  86. 		}

  87. 		$data = ob_get_contents();

  88. 		ob_end_clean();

  89. 		$this->test->assertEquals($error.$output, $exception.$data);

  90. 		return $this;

  91. 	}

  92. }

  93. 

  94. class MySQL_CRUD_API_Test extends PHPUnit_Framework_TestCase

  95. {

  96. 	public static function setUpBeforeClass()

  97. 	{

  98. 		if (MySQL_CRUD_API_Config::$database=='{{test_database}}') {

  99. 			die("Configure database in 'config.php' before running tests.\n");

  100. 		}

  101. 

  102. 		$dbengine = MySQL_CRUD_API_Config::$dbengine;

  103. 		$hostname = MySQL_CRUD_API_Config::$hostname;

  104. 		$username = MySQL_CRUD_API_Config::$username;

  105. 		$password = MySQL_CRUD_API_Config::$password;

  106. 		$database = MySQL_CRUD_API_Config::$database;

  107. 

  108. 		$fixture = __DIR__.'/blog.'.$dbengine;

  109. 

  110. 		if ($dbengine == 'mysql') {

  111. 

  112. 			$link = mysqli_connect($hostname, $username, $password, $database);

  113. 			if (mysqli_connect_errno()) {

  114. 				die("Connect failed: ".mysqli_connect_error()."\n");

  115. 			}

  116. 

  117. 			$i=0;

  118. 			if (mysqli_multi_query($link, file_get_contents($fixture))) {

  119. 				do { $i++; } while (mysqli_next_result($link));

  120. 			}

  121. 			if (mysqli_errno($link)) {

  122. 				die("Loading '$fixture' failed on statemement #$i with error:\n".mysqli_error($link)."\n");

  123. 			}

  124. 

  125. 			mysqli_close($link);

  126. 

  127. 		} elseif ($dbengine == 'mssql') {

  128. 

  129. 			$connectionInfo = array();

  130. 			$connectionInfo['UID']=$username;

  131. 			$connectionInfo['PWD']=$password;

  132. 			$connectionInfo['Database']=$database;

  133. 			$connectionInfo['CharacterSet']='UTF-8';

  134. 			$conn = sqlsrv_connect( $hostname, $connectionInfo);

  135. 			if (!$conn) {

  136. 				die("Connect failed: ".print_r( sqlsrv_errors(), true));

  137. 			}

  138. 			$queries = preg_split('/\n\s*GO\s*\n/', file_get_contents($fixture));

  139. 			array_pop($queries);

  140. 			foreach ($queries as $i=>$query) {

  141. 				if (!sqlsrv_query($conn, $query)) {

  142. 					$i++;

  143. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( sqlsrv_errors(), true)."\n");

  144. 				}

  145. 			}

  146. 			sqlsrv_close($conn);

  147. 

  148. 		} elseif ($dbengine == 'pgsql') {

  149. 

  150. 			$e = function ($v) { return str_replace(array('\'','\\'),array('\\\'','\\\\'),$v); };

  151. 			$hostname = $e($hostname);

  152. 			$database = $e($database);

  153. 			$username = $e($username);

  154. 			$password = $e($password);

  155. 			$conn_string = "host='$hostname' dbname='$database' user='$username' password='$password' options='--client_encoding=UTF8'";

  156. 			$db = pg_connect($conn_string);

  157. 			if (!$db) {

  158. 				die("Connect failed: ".print_r( sqlsrv_errors(), true));

  159. 			}

  160. 			$queries = preg_split('/;\s*\n/', file_get_contents($fixture));

  161. 			array_pop($queries);

  162. 			foreach ($queries as $i=>$query) {

  163. 				if (!pg_query($db, $query.';')) {

  164. 					$i++;

  165. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( pg_last_error($db), true)."\n");

  166. 				}

  167. 			}

  168. 			pg_close($db);

  169. 

  170. 		}

  171. 	}

  172. 

  173. 	public function testListPosts()

  174. 	{

  175. 		$test = new API($this);

  176. 		$test->get('/posts');

  177. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["1","1","1","blog started"],["2","1","2","It works!"]]}}');

  178. 	}

  179. 	

  180. 	public function testListPostColumns()

  181. 	{

  182. 		$test = new API($this);

  183. 		$test->get('/posts?columns=id,content');

  184. 		$test->expect('{"posts":{"columns":["id","content"],"records":[["1","blog started"],["2","It works!"]]}}');

  185. 	}

  186. 	

  187. 	public function testListPostsWithTransform()

  188. 	{

  189. 		$test = new API($this);

  190. 		$test->get('/posts?transform=1');

  191. 		$test->expect('{"posts":[{"id":"1","user_id":"1","category_id":"1","content":"blog started"},{"id":"2","user_id":"1","category_id":"2","content":"It works!"}]}');

  192. 	}

  193. 

  194. 	public function testReadPost()

  195. 	{

  196. 		$test = new API($this);

  197. 		$test->get('/posts/2');

  198. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":"It works!"}');

  199. 	}

  200. 	

  201. 	public function testReadPostColumns()

  202. 	{

  203. 		$test = new API($this);

  204. 		$test->get('/posts/2?columns=id,content');

  205. 		$test->expect('{"id":"2","content":"It works!"}');

  206. 	}

  207. 	

  208. 	public function testAddPost()

  209. 	{

  210. 		$test = new API($this);

  211. 		$test->post('/posts','{"user_id":"1","category_id":"1","content":"test"}');

  212. 		$test->expect('3');

  213. 	}

  214. 

  215. 	public function testEditPost()

  216. 	{

  217. 		$test = new API($this);

  218. 		$test->put('/posts/3','{"user_id":"1","category_id":"1","content":"test (edited)"}');

  219. 		$test->expect('1');

  220. 		$test->get('/posts/3');

  221. 		$test->expect('{"id":"3","user_id":"1","category_id":"1","content":"test (edited)"}');

  222. 	}

  223. 	

  224. 	public function testEditPostColumns()

  225. 	{

  226. 		$test = new API($this);

  227. 		$test->put('/posts/3?columns=id,content','{"user_id":"1","category_id":"2","content":"test (edited 2)"}');

  228. 		$test->expect('1');

  229. 		$test->get('/posts/3');

  230. 		$test->expect('{"id":"3","user_id":"1","category_id":"1","content":"test (edited 2)"}');

  231. 	}

  232. 	

  233. 	public function testEditPostWithUtf8Content()

  234. 	{

  235. 		$utf8 = json_encode('Hello world, Καλημέρα κόσμε, コンニチハ');

  236. 		$test = new API($this);

  237. 		$test->put('/posts/2','{"content":'.$utf8.'}');

  238. 		$test->expect('1');

  239. 		$test->get('/posts/2');

  240. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":'.$utf8.'}');

  241. 	}

  242. 

  243. 	public function testEditPostWithUtf8ContentWithPost()

  244. 	{

  245. 		$utf8 = '€ Hello world, Καλημέρα κόσμε, コンニチハ';

  246. 		$url_encoded = urlencode($utf8);

  247. 		$json_encoded = json_encode($utf8);

  248. 		$test = new API($this);

  249. 		$test->put('/posts/2','content='.$url_encoded);

  250. 		$test->expect('1');

  251. 		$test->get('/posts/2');

  252. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":'.$json_encoded.'}');

  253. 	}

  254. 

  255. 	public function testDeletePost()

  256. 	{

  257. 		$test = new API($this);

  258. 		$test->delete('/posts/3');

  259. 		$test->expect('1');

  260. 		$test->get('/posts/3');

  261. 		$test->expect('','Not found (object)');

  262. 	}

  263. 

  264. 	public function testAddPostWithPost()

  265. 	{

  266. 		$test = new API($this);

  267. 		$test->post('/posts','user_id=1&category_id=1&content=test');

  268. 		$test->expect('4');

  269. 	}

  270. 

  271. 	public function testEditPostWithPost()

  272. 	{

  273. 		$test = new API($this);

  274. 		$test->put('/posts/4','user_id=1&category_id=1&content=test+(edited)');

  275. 		$test->expect('1');

  276. 		$test->get('/posts/4');

  277. 		$test->expect('{"id":"4","user_id":"1","category_id":"1","content":"test (edited)"}');

  278. 	}

  279. 

  280. 	public function testDeletePostWithPost()

  281. 	{

  282. 		$test = new API($this);

  283. 		$test->delete('/posts/4');

  284. 		$test->expect('1');

  285. 		$test->get('/posts/4');

  286. 		$test->expect('','Not found (object)');

  287. 	}

  288. 

  289. 	public function testListWithPaginate()

  290. 	{

  291. 		$test = new API($this);

  292. 		for ($i=1;$i<=10;$i++) {

  293. 		  $test->post('/posts','{"user_id":"1","category_id":"1","content":"#'.$i.'"}');

  294. 		  $test->expect(4+$i);

  295. 		}

  296. 		$test->get('/posts?page=2,2&order=id');

  297. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["5","1","1","#1"],["6","1","1","#2"]],"results":12}}');

  298. 	}

  299. 

  300. 	public function testListWithPaginateLastPage()

  301. 	{

  302. 		$test = new API($this);

  303. 		$test->get('/posts?page=3,5&order=id');

  304. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["13","1","1","#9"],["14","1","1","#10"]],"results":12}}');

  305. 	}

  306. 	

  307. 	public function testListExampleFromReadme()

  308. 	{

  309. 		$test = new API($this);

  310. 		$test->get('/posts,categories,tags,comments?filter=id,eq,1');

  311. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["1","1","1","blog started"]]},"post_tags":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","tag_id"],"records":[["1","1","1"],["2","1","2"]]},"categories":{"relations":{"id":"posts.category_id"},"columns":["id","name","icon"],"records":[["1","anouncement",null]]},"tags":{"relations":{"id":"post_tags.tag_id"},"columns":["id","name"],"records":[["1","funny"],["2","important"]]},"comments":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","message"],"records":[["1","1","great"],["2","1","fantastic"]]}}');

  312. 	}

  313. 

  314. 	public function testListExampleFromReadmeWithTransform()

  315. 	{

  316. 		$test = new API($this);

  317. 		$test->get('/posts,categories,tags,comments?filter=id,eq,1&transform=1');

  318. 		$test->expect('{"posts":[{"id":"1","post_tags":[{"id":"1","post_id":"1","tag_id":"1","tags":[{"id":"1","name":"funny"}]},{"id":"2","post_id":"1","tag_id":"2","tags":[{"id":"2","name":"important"}]}],"comments":[{"id":"1","post_id":"1","message":"great"},{"id":"2","post_id":"1","message":"fantastic"}],"user_id":"1","category_id":"1","categories":[{"id":"1","name":"anouncement","icon":null}],"content":"blog started"}]}');

  319. 	}

  320. 

  321. 	public function testEditCategoryWithBinaryContent()

  322. 	{

  323. 		$binary = base64_encode("\0abc\0\n\r\b\0");

  324. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  325. 		$test = new API($this);

  326. 		$test->put('/categories/2','{"icon":"'.$base64url.'"}');

  327. 		$test->expect('1');

  328. 		$test->get('/categories/2');

  329. 		$test->expect('{"id":"2","name":"article","icon":"'.$binary.'"}');

  330. 	}

  331. 

  332. 	public function testEditCategoryWithNull()

  333. 	{

  334. 		$test = new API($this);

  335. 		$test->put('/categories/2','{"icon":null}');

  336. 		$test->expect('1');

  337. 		$test->get('/categories/2');

  338. 		$test->expect('{"id":"2","name":"article","icon":null}');

  339. 	}

  340. 

  341. 	public function testEditCategoryWithBinaryContentWithPost()

  342. 	{

  343. 		$binary = base64_encode("€ \0abc\0\n\r\b\0");

  344. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  345. 		$test = new API($this);

  346. 		$test->put('/categories/2','icon='.$base64url);

  347. 		$test->expect('1');

  348. 		$test->get('/categories/2');

  349. 		$test->expect('{"id":"2","name":"article","icon":"'.$binary.'"}');

  350. 	}

  351. 

  352. 	public function testEditCategoryWithNullWithPost()

  353. 	{

  354. 		$test = new API($this);

  355. 		$test->put('/categories/2','icon__is_null');

  356. 		$test->expect('1');

  357. 		$test->get('/categories/2');

  358. 		$test->expect('{"id":"2","name":"article","icon":null}');

  359. 	}

  360. 

  361. 	public function testAddPostFailure()

  362. 	{

  363. 		$test = new API($this);

  364. 		$test->post('/posts','{"user_id":"a","category_id":"1","content":"tests"}');

  365. 		$test->expect('null');

  366. 	}

  367. 

  368. 	public function testOptionsRequest()

  369. 	{

  370. 		$test = new API($this);

  371. 		$test->options('/posts/2');

  372. 		$test->expect('["Access-Control-Allow-Headers: Content-Type","Access-Control-Allow-Methods: OPTIONS, GET, PUT, POST, DELETE","Access-Control-Max-Age: 1728000"]');

  373. 	}

  374. 	

  375. 	public function testHidingPasswordColumn()

  376. 	{

  377. 		$test = new API($this);

  378. 		$test->get('/users/1');

  379. 		$test->expect('{"id":"1","username":"user1"}');

  380. 	}

  381. 	

  382. 	public function testValidatorErrorMessage()

  383. 	{

  384. 		$test = new API($this);

  385. 		$test->put('/posts/1','{"category_id":"a"}');

  386. 		$test->expect('{"category_id":"must be numeric"}');

  387. 	}

  388. 	

  389. 	public function testSanitizerToStripTags()

  390. 	{

  391. 		$test = new API($this);

  392. 		$test->put('/categories/2','{"name":"<script>alert();</script>"}');

  393. 		$test->expect('1');

  394. 		$test->get('/categories/2');

  395. 		$test->expect('{"id":"2","name":"alert();","icon":null}');

  396. 	}

  397. 	

  398. 	public function testErrorOnInvalidJson()

  399. 	{

  400. 		$test = new API($this);

  401. 		$test->post('/posts','{"}');

  402. 		$test->expect('Not found (input)');

  403. 	}

  404. 		

  405. 	public function testErrorOnDuplicatePrimaryKey()

  406. 	{

  407. 		$test = new API($this);

  408. 		$test->post('/posts','{"id":"1","user_id":"1","category_id":"1","content":"blog started (duplicate)"}');

  409. 		$test->expect('null');

  410. 	}

  411. }