nas
/
todo_api
Suivre 2
Favoriser 1
Bifurcation 0
Code Tickets 1 Demandes d'ajout 0 Versions 0 Wiki Activité
api de gestion de ticket, basé sur php-crud-api. Le but est de décorrélé les outils de gestion des données, afin
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
333 Révisions
1 Branche
Aborescence: 6eb7271d43
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '6eb7271d43'
${ noResults }
todo_api/tests/tests.php

tests.php 13KB
Historique Brut

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411 
  1. <?php

  2. if (!file_exists(__DIR__.'/config.php')) {

  3. 	copy(__DIR__.'/config.php.dist',__DIR__.'/config.php');

  4. }

  5. require __DIR__.'/config.php';

  6. require __DIR__.'/../api.php';

  7. 

  8. class API

  9. {

  10. 	protected $test;

  11. 	protected $api;

  12. 

  13. 	public function __construct($test)

  14. 	{

  15. 		$this->test = $test;

  16. 	}

  17. 

  18. 	private function action($method,$url,$data='')

  19. 	{

  20. 		$url = parse_url($url);

  21. 		$query = isset($url['query'])?$url['query']:'';

  22. 		parse_str($query,$get);

  23. 

  24. 		$data = 'data://text/plain;base64,'.base64_encode($data);

  25. 

  26. 		switch(MySQL_CRUD_API_Config::$dbengine) {

  27. 			case 'mssql':	$class = 'MsSQL_CRUD_API'; $charset = 'utf-8'; break;

  28. 			case 'pgsql':	$class = 'PgSQL_CRUD_API'; $charset = 'utf8'; break;

  29. 			case 'mysql':	$class = 'MySQL_CRUD_API'; $charset = 'utf8'; break;

  30. 			default:	die("DB engine not supported: $dbengine\n");

  31. 		}

  32. 

  33. 		$this->api = new $class(array(

  34. 				'hostname'=>MySQL_CRUD_API_Config::$hostname,

  35. 				'username'=>MySQL_CRUD_API_Config::$username,

  36. 				'password'=>MySQL_CRUD_API_Config::$password,

  37. 				'database'=>MySQL_CRUD_API_Config::$database,

  38. 				'charset'=>$charset,

  39. 				// callbacks

  40. 				'table_authorizer'=>function($action,$database,$table) { return true; },

  41. 				'column_authorizer'=>function($action,$database,$table,$column) { return $column!='password'; },

  42. 				'input_sanitizer'=>function($action,$database,$table,$column,$value) { return $value===null?null:strip_tags($value); },

  43. 				'input_validator'=>function($action,$database,$table,$column,$value) { return ($column=='category_id' && !is_numeric($value))?'must be numeric':true; },

  44. 				// for tests

  45. 				'method' =>$method,

  46. 				'request' =>$url['path'],

  47. 				'post'=>$data,

  48. 				'get' =>$get,

  49. 		));

  50. 		return $this;

  51. 	}

  52. 

  53. 	public function get($url)

  54. 	{

  55. 		return $this->action('GET',$url);

  56. 	}

  57. 

  58. 	public function post($url,$data)

  59. 	{

  60. 		return $this->action('POST',$url,$data);

  61. 	}

  62. 

  63. 	public function put($url,$data)

  64. 	{

  65. 		return $this->action('PUT',$url,$data);

  66. 	}

  67. 

  68. 	public function delete($url)

  69. 	{

  70. 		return $this->action('DELETE',$url);

  71. 	}

  72. 

  73. 	public function options($url)

  74. 	{

  75. 		return $this->action('OPTIONS',$url);

  76. 	}

  77. 

  78. 	public function expect($output,$error=false)

  79. 	{

  80. 		$exception = false;

  81. 		ob_start();

  82. 		try {

  83. 			$this->api->executeCommand();

  84. 		} catch (\Exception $e) {

  85. 			$exception = $e->getMessage();

  86. 		}

  87. 		$data = ob_get_contents();

  88. 		ob_end_clean();

  89. 		$this->test->assertEquals($error.$output, $exception.$data);

  90. 		return $this;

  91. 	}

  92. }

  93. 

  94. class MySQL_CRUD_API_Test extends PHPUnit_Framework_TestCase

  95. {

  96. 	public static function setUpBeforeClass()

  97. 	{

  98. 		if (MySQL_CRUD_API_Config::$database=='{{test_database}}') {

  99. 			die("Configure database in 'config.php' before running tests.\n");

  100. 		}

  101. 

  102. 		$dbengine = MySQL_CRUD_API_Config::$dbengine;

  103. 		$hostname = MySQL_CRUD_API_Config::$hostname;

  104. 		$username = MySQL_CRUD_API_Config::$username;

  105. 		$password = MySQL_CRUD_API_Config::$password;

  106. 		$database = MySQL_CRUD_API_Config::$database;

  107. 

  108. 		$fixture = __DIR__.'/blog.'.$dbengine;

  109. 

  110. 		if ($dbengine == 'mysql') {

  111. 

  112. 			$link = mysqli_connect($hostname, $username, $password, $database);

  113. 			if (mysqli_connect_errno()) {

  114. 				die("Connect failed: ".mysqli_connect_error()."\n");

  115. 			}

  116. 

  117. 			$i=0;

  118. 			if (mysqli_multi_query($link, file_get_contents($fixture))) {

  119. 				do { $i++; } while (mysqli_next_result($link));

  120. 			}

  121. 			if (mysqli_errno($link)) {

  122. 				die("Loading '$fixture' failed on statemement #$i with error:\n".mysqli_error($link)."\n");

  123. 			}

  124. 

  125. 			mysqli_close($link);

  126. 

  127. 		} elseif ($dbengine == 'mssql') {

  128. 

  129. 			$connectionInfo = array();

  130. 			$connectionInfo['UID']=$username;

  131. 			$connectionInfo['PWD']=$password;

  132. 			$connectionInfo['Database']=$database;

  133. 			$connectionInfo['CharacterSet']='UTF-8';

  134. 			$conn = sqlsrv_connect( $hostname, $connectionInfo);

  135. 			if (!$conn) {

  136. 				die("Connect failed: ".print_r( sqlsrv_errors(), true));

  137. 			}

  138. 			$queries = preg_split('/\n\s*GO\s*\n/', file_get_contents($fixture));

  139. 			array_pop($queries);

  140. 			foreach ($queries as $i=>$query) {

  141. 				if (!sqlsrv_query($conn, $query)) {

  142. 					$i++;

  143. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( sqlsrv_errors(), true)."\n");

  144. 				}

  145. 			}

  146. 			sqlsrv_close($conn);

  147. 

  148. 		} elseif ($dbengine == 'pgsql') {

  149. 

  150. 			$e = function ($v) { return str_replace(array('\'','\\'),array('\\\'','\\\\'),$v); };

  151. 			$hostname = $e($hostname);

  152. 			$database = $e($database);

  153. 			$username = $e($username);

  154. 			$password = $e($password);

  155. 			$conn_string = "host='$hostname' dbname='$database' user='$username' password='$password' options='--client_encoding=UTF8'";

  156. 			$db = pg_connect($conn_string);

  157. 			if (!$db) {

  158. 				die("Connect failed: ".print_r( sqlsrv_errors(), true));

  159. 			}

  160. 			$queries = preg_split('/;\s*\n/', file_get_contents($fixture));

  161. 			array_pop($queries);

  162. 			foreach ($queries as $i=>$query) {

  163. 				if (!pg_query($db, $query.';')) {

  164. 					$i++;

  165. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( pg_last_error($db), true)."\n");

  166. 				}

  167. 			}

  168. 			pg_close($db);

  169. 

  170. 		}

  171. 	}

  172. 

  173. 	public function testListPosts()

  174. 	{

  175. 		$test = new API($this);

  176. 		$test->get('/posts');

  177. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["1","1","1","blog started"],["2","1","2","It works!"]]}}');

  178. 	}

  179. 	

  180. 	public function testListPostColumns()

  181. 	{

  182. 		$test = new API($this);

  183. 		$test->get('/posts?columns=id,content');

  184. 		$test->expect('{"posts":{"columns":["id","content"],"records":[["1","blog started"],["2","It works!"]]}}');

  185. 	}

  186. 	

  187. 	public function testListPostsWithTransform()

  188. 	{

  189. 		$test = new API($this);

  190. 		$test->get('/posts?transform=1');

  191. 		$test->expect('{"posts":[{"id":"1","user_id":"1","category_id":"1","content":"blog started"},{"id":"2","user_id":"1","category_id":"2","content":"It works!"}]}');

  192. 	}

  193. 

  194. 	public function testReadPost()

  195. 	{

  196. 		$test = new API($this);

  197. 		$test->get('/posts/2');

  198. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":"It works!"}');

  199. 	}

  200. 	

  201. 	public function testReadPostColumns()

  202. 	{

  203. 		$test = new API($this);

  204. 		$test->get('/posts/2?columns=id,content');

  205. 		$test->expect('{"id":"2","content":"It works!"}');

  206. 	}

  207. 	

  208. 	public function testAddPost()

  209. 	{

  210. 		$test = new API($this);

  211. 		$test->post('/posts','{"user_id":"1","category_id":"1","content":"test"}');

  212. 		$test->expect('3');

  213. 	}

  214. 

  215. 	public function testEditPost()

  216. 	{

  217. 		$test = new API($this);

  218. 		$test->put('/posts/3','{"user_id":"1","category_id":"1","content":"test (edited)"}');

  219. 		$test->expect('1');

  220. 		$test->get('/posts/3');

  221. 		$test->expect('{"id":"3","user_id":"1","category_id":"1","content":"test (edited)"}');

  222. 	}

  223. 	

  224. 	public function testEditPostColumns()

  225. 	{

  226. 		$test = new API($this);

  227. 		$test->put('/posts/3?columns=id,content','{"user_id":"1","category_id":"2","content":"test (edited 2)"}');

  228. 		$test->expect('1');

  229. 		$test->get('/posts/3');

  230. 		$test->expect('{"id":"3","user_id":"1","category_id":"1","content":"test (edited 2)"}');

  231. 	}

  232. 	

  233. 	public function testEditPostWithUtf8Content()

  234. 	{

  235. 		$utf8 = json_encode('Hello world, Καλημέρα κόσμε, コンニチハ');

  236. 		$test = new API($this);

  237. 		$test->put('/posts/2','{"content":'.$utf8.'}');

  238. 		$test->expect('1');

  239. 		$test->get('/posts/2');

  240. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":'.$utf8.'}');

  241. 	}

  242. 

  243. 	public function testEditPostWithUtf8ContentWithPost()

  244. 	{

  245. 		$utf8 = '€ Hello world, Καλημέρα κόσμε, コンニチハ';

  246. 		$url_encoded = urlencode($utf8);

  247. 		$json_encoded = json_encode($utf8);

  248. 		$test = new API($this);

  249. 		$test->put('/posts/2','content='.$url_encoded);

  250. 		$test->expect('1');

  251. 		$test->get('/posts/2');

  252. 		$test->expect('{"id":"2","user_id":"1","category_id":"2","content":'.$json_encoded.'}');

  253. 	}

  254. 

  255. 	public function testDeletePost()

  256. 	{

  257. 		$test = new API($this);

  258. 		$test->delete('/posts/3');

  259. 		$test->expect('1');

  260. 		$test->get('/posts/3');

  261. 		$test->expect('','Not found (object)');

  262. 	}

  263. 

  264. 	public function testAddPostWithPost()

  265. 	{

  266. 		$test = new API($this);

  267. 		$test->post('/posts','user_id=1&category_id=1&content=test');

  268. 		$test->expect('4');

  269. 	}

  270. 

  271. 	public function testEditPostWithPost()

  272. 	{

  273. 		$test = new API($this);

  274. 		$test->put('/posts/4','user_id=1&category_id=1&content=test+(edited)');

  275. 		$test->expect('1');

  276. 		$test->get('/posts/4');

  277. 		$test->expect('{"id":"4","user_id":"1","category_id":"1","content":"test (edited)"}');

  278. 	}

  279. 

  280. 	public function testDeletePostWithPost()

  281. 	{

  282. 		$test = new API($this);

  283. 		$test->delete('/posts/4');

  284. 		$test->expect('1');

  285. 		$test->get('/posts/4');

  286. 		$test->expect('','Not found (object)');

  287. 	}

  288. 

  289. 	public function testListWithPaginate()

  290. 	{

  291. 		$test = new API($this);

  292. 		for ($i=1;$i<=10;$i++) {

  293. 		  $test->post('/posts','{"user_id":"1","category_id":"1","content":"#'.$i.'"}');

  294. 		  $test->expect(4+$i);

  295. 		}

  296. 		$test->get('/posts?page=2,2&order=id');

  297. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["5","1","1","#1"],["6","1","1","#2"]],"results":12}}');

  298. 	}

  299. 

  300. 	public function testListWithPaginateLastPage()

  301. 	{

  302. 		$test = new API($this);

  303. 		$test->get('/posts?page=3,5&order=id');

  304. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["13","1","1","#9"],["14","1","1","#10"]],"results":12}}');

  305. 	}

  306. 	

  307. 	public function testListExampleFromReadme()

  308. 	{

  309. 		$test = new API($this);

  310. 		$test->get('/posts,categories,tags,comments?filter=id,eq,1');

  311. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[["1","1","1","blog started"]]},"post_tags":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","tag_id"],"records":[["1","1","1"],["2","1","2"]]},"categories":{"relations":{"id":"posts.category_id"},"columns":["id","name","icon"],"records":[["1","anouncement",null]]},"tags":{"relations":{"id":"post_tags.tag_id"},"columns":["id","name"],"records":[["1","funny"],["2","important"]]},"comments":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","message"],"records":[["1","1","great"],["2","1","fantastic"]]}}');

  312. 	}

  313. 

  314. 	public function testListExampleFromReadmeWithTransform()

  315. 	{

  316. 		$test = new API($this);

  317. 		$test->get('/posts,categories,tags,comments?filter=id,eq,1&transform=1');

  318. 		$test->expect('{"posts":[{"id":"1","post_tags":[{"id":"1","post_id":"1","tag_id":"1","tags":[{"id":"1","name":"funny"}]},{"id":"2","post_id":"1","tag_id":"2","tags":[{"id":"2","name":"important"}]}],"comments":[{"id":"1","post_id":"1","message":"great"},{"id":"2","post_id":"1","message":"fantastic"}],"user_id":"1","category_id":"1","categories":[{"id":"1","name":"anouncement","icon":null}],"content":"blog started"}]}');

  319. 	}

  320. 

  321. 	public function testEditCategoryWithBinaryContent()

  322. 	{

  323. 		$binary = base64_encode("\0abc\0\n\r\b\0");

  324. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  325. 		$test = new API($this);

  326. 		$test->put('/categories/2','{"icon":"'.$base64url.'"}');

  327. 		$test->expect('1');

  328. 		$test->get('/categories/2');

  329. 		$test->expect('{"id":"2","name":"article","icon":"'.$binary.'"}');

  330. 	}

  331. 

  332. 	public function testEditCategoryWithNull()

  333. 	{

  334. 		$test = new API($this);

  335. 		$test->put('/categories/2','{"icon":null}');

  336. 		$test->expect('1');

  337. 		$test->get('/categories/2');

  338. 		$test->expect('{"id":"2","name":"article","icon":null}');

  339. 	}

  340. 

  341. 	public function testEditCategoryWithBinaryContentWithPost()

  342. 	{

  343. 		$binary = base64_encode("€ \0abc\0\n\r\b\0");

  344. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  345. 		$test = new API($this);

  346. 		$test->put('/categories/2','icon='.$base64url);

  347. 		$test->expect('1');

  348. 		$test->get('/categories/2');

  349. 		$test->expect('{"id":"2","name":"article","icon":"'.$binary.'"}');

  350. 	}

  351. 

  352. 	public function testEditCategoryWithNullWithPost()

  353. 	{

  354. 		$test = new API($this);

  355. 		$test->put('/categories/2','icon__is_null');

  356. 		$test->expect('1');

  357. 		$test->get('/categories/2');

  358. 		$test->expect('{"id":"2","name":"article","icon":null}');

  359. 	}

  360. 

  361. 	public function testAddPostFailure()

  362. 	{

  363. 		$test = new API($this);

  364. 		$test->post('/posts','{"user_id":"a","category_id":"1","content":"tests"}');

  365. 		$test->expect('null');

  366. 	}

  367. 

  368. 	public function testOptionsRequest()

  369. 	{

  370. 		$test = new API($this);

  371. 		$test->options('/posts/2');

  372. 		$test->expect('["Access-Control-Allow-Headers: Content-Type","Access-Control-Allow-Methods: OPTIONS, GET, PUT, POST, DELETE","Access-Control-Max-Age: 1728000"]');

  373. 	}

  374. 	

  375. 	public function testHidingPasswordColumn()

  376. 	{

  377. 		$test = new API($this);

  378. 		$test->get('/users/1');

  379. 		$test->expect('{"id":"1","username":"user1"}');

  380. 	}

  381. 	

  382. 	public function testValidatorErrorMessage()

  383. 	{

  384. 		$test = new API($this);

  385. 		$test->put('/posts/1','{"category_id":"a"}');

  386. 		$test->expect('{"category_id":"must be numeric"}');

  387. 	}

  388. 	

  389. 	public function testSanitizerToStripTags()

  390. 	{

  391. 		$test = new API($this);

  392. 		$test->put('/categories/2','{"name":"<script>alert();</script>"}');

  393. 		$test->expect('1');

  394. 		$test->get('/categories/2');

  395. 		$test->expect('{"id":"2","name":"alert();","icon":null}');

  396. 	}

  397. 	

  398. 	public function testErrorOnInvalidJson()

  399. 	{

  400. 		$test = new API($this);

  401. 		$test->post('/posts','{"}');

  402. 		$test->expect('Not found (input)');

  403. 	}

  404. 		

  405. 	public function testErrorOnDuplicatePrimaryKey()

  406. 	{

  407. 		$test = new API($this);

  408. 		$test->post('/posts','{"id":"1","user_id":"1","category_id":"1","content":"blog started (duplicate)"}');

  409. 		$test->expect('null');

  410. 	}

  411. }