nas
/
todo_api
Watch 2
Star 1
Fork 0
Code Issues 1 Pull Requests 0 Releases 0 Wiki Activity
api de gestion de ticket, basé sur php-crud-api. Le but est de décorrélé les outils de gestion des données, afin
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
896 Commits
1 Branch
Tree: 7ca56f37b5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7ca56f37b5'
${ noResults }
todo_api/tests/tests.php

tests.php 27KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802 
  1. <?php

  2. if (!file_exists(__DIR__.'/config.php')) {

  3. 	copy(__DIR__.'/config.php.dist',__DIR__.'/config.php');

  4. }

  5. require __DIR__.'/config.php';

  6. require __DIR__.'/../api.php';

  7. 

  8. class API

  9. {

  10. 	protected $test;

  11. 	protected $api;

  12. 

  13. 	public function __construct($test)

  14. 	{

  15. 		$this->test = $test;

  16. 	}

  17. 

  18. 	private function action($method,$url,$data='')

  19. 	{

  20. 		$url = parse_url($url);

  21. 		$query = isset($url['query'])?$url['query']:'';

  22. 		parse_str($query,$get);

  23. 

  24. 		$this->api = new PHP_CRUD_API(array(

  25. 				'dbengine'=>PHP_CRUD_API_Config::$dbengine,

  26. 				'hostname'=>PHP_CRUD_API_Config::$hostname,

  27. 				'username'=>PHP_CRUD_API_Config::$username,

  28. 				'password'=>PHP_CRUD_API_Config::$password,

  29. 				'database'=>PHP_CRUD_API_Config::$database,

  30. 				// callbacks

  31. 				'table_authorizer'=>function($action,$database,$table) { return true; },

  32. 				'column_authorizer'=>function($action,$database,$table,$column) { return !($column=='password'&&$action=='list'); },

  33. 				'record_filter'=>function($action,$database,$table) { return ($table=='posts')?array('id,neq,13'):false; },

  34. 				'tenancy_function'=>function($action,$database,$table,$column) { return ($table=='users'&&$column=='id')?1:null; },

  35. 				'input_sanitizer'=>function($action,$database,$table,$column,$type,$value) { return is_string($value)?strip_tags($value):$value; },

  36. 				'input_validator'=>function($action,$database,$table,$column,$type,$value,$context) { return ($column=='category_id' && !is_numeric($value))?'must be numeric':true; },

  37. 				'before'=>function(&$action,&$database,&$table,&$id,&$input) { if ($action=='create' && $input!==false) $input->created_at = '2013-12-11 10:09:08'; else if ($action=='delete' && $table=='products') { $action='update'; $input = (object)array('deleted_at' => '2013-12-11 10:09:08'); } },

  38. 				'after'=>function($action,$database,$table,$id,$input,$output) { file_put_contents('log.txt',var_export(array($action,$database,$table,$id,$input,$output),true),FILE_APPEND); },

  39. 				// for tests

  40. 				'method'=>$method,

  41. 				'request'=>$url['path'],

  42. 				'post'=>$data,

  43. 				'get'=>$get,

  44. 		));

  45. 		return $this;

  46. 	}

  47. 

  48. 	public function get($url)

  49. 	{

  50. 		return $this->action('GET',$url);

  51. 	}

  52. 

  53. 	public function post($url,$data)

  54. 	{

  55. 		return $this->action('POST',$url,$data);

  56. 	}

  57. 

  58. 	public function put($url,$data)

  59. 	{

  60. 		return $this->action('PUT',$url,$data);

  61. 	}

  62. 

  63. 	public function delete($url)

  64. 	{

  65. 		return $this->action('DELETE',$url);

  66. 	}

  67. 

  68. 	public function options($url)

  69. 	{

  70. 		return $this->action('OPTIONS',$url);

  71. 	}

  72. 

  73. 	public function patch($url,$data)

  74. 	{

  75. 		return $this->action('PATCH',$url,$data);

  76. 	}

  77. 

  78. 	public function expectAny()

  79. 	{

  80. 		ob_start();

  81. 		$this->api->executeCommand();

  82. 		ob_end_clean();

  83. 		return $this;

  84. 	}

  85. 

  86. 	public function expect($output,$error=false)

  87. 	{

  88. 		$exception = false;

  89. 		ob_start();

  90. 		try {

  91. 			$this->api->executeCommand();

  92. 		} catch (\Exception $e) {

  93. 			$exception = $e->getMessage();

  94. 		}

  95. 		$data = ob_get_contents();

  96. 		ob_end_clean();

  97. 		if ($exception) $this->test->assertEquals($error, $exception);

  98. 		else $this->test->assertEquals($output, $data);

  99. 		return $this;

  100. 	}

  101. }

  102. 

  103. class PHP_CRUD_API_Test extends PHPUnit_Framework_TestCase

  104. {

  105. 	public static function setUpBeforeClass()

  106. 	{

  107. 		if (PHP_CRUD_API_Config::$database=='{{test_database}}') {

  108. 			die("Configure database in 'config.php' before running tests.\n");

  109. 		}

  110. 

  111. 		$dbengine = PHP_CRUD_API_Config::$dbengine;

  112. 		$hostname = PHP_CRUD_API_Config::$hostname;

  113. 		$username = PHP_CRUD_API_Config::$username;

  114. 		$password = PHP_CRUD_API_Config::$password;

  115. 		$database = PHP_CRUD_API_Config::$database;

  116. 

  117. 		$fixture = __DIR__.'/blog_'.strtolower($dbengine).'.sql';

  118. 

  119. 		if ($dbengine == 'MySQL') {

  120. 

  121. 			$link = mysqli_connect($hostname, $username, $password, $database);

  122. 			if (mysqli_connect_errno()) {

  123. 				die("Connect failed: ".mysqli_connect_error()."\n");

  124. 			}

  125. 			mysqli_set_charset($link,'utf8');

  126. 

  127. 			$i=0;

  128. 			if (mysqli_multi_query($link, file_get_contents($fixture))) {

  129. 				do { $i++; mysqli_next_result($link); } while (mysqli_more_results($link));

  130. 			}

  131. 			if (mysqli_errno($link)) {

  132. 				die("Loading '$fixture' failed on statemement #$i with error:\n".mysqli_error($link)."\n");

  133. 			}

  134. 

  135. 			mysqli_close($link);

  136. 

  137. 		} elseif ($dbengine == 'SQLServer') {

  138. 

  139. 			$connectionInfo = array();

  140. 			$connectionInfo['UID']=$username;

  141. 			$connectionInfo['PWD']=$password;

  142. 			$connectionInfo['Database']=$database;

  143. 			$connectionInfo['CharacterSet']='UTF-8';

  144. 			$conn = sqlsrv_connect( $hostname, $connectionInfo);

  145. 			if (!$conn) {

  146. 				die("Connect failed: ".print_r( sqlsrv_errors(), true));

  147. 			}

  148. 			$queries = preg_split('/\n\s*GO\s*\n/', file_get_contents($fixture));

  149. 			array_pop($queries);

  150. 			foreach ($queries as $i=>$query) {

  151. 				if (!sqlsrv_query($conn, $query)) {

  152. 					$i++;

  153. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( sqlsrv_errors(), true)."\n");

  154. 				}

  155. 			}

  156. 			sqlsrv_close($conn);

  157. 

  158. 		} elseif ($dbengine == 'PostgreSQL') {

  159. 

  160. 			$e = function ($v) { return str_replace(array('\'','\\'),array('\\\'','\\\\'),$v); };

  161. 			$hostname = $e($hostname);

  162. 			$database = $e($database);

  163. 			$username = $e($username);

  164. 			$password = $e($password);

  165. 			$conn_string = "host='$hostname' dbname='$database' user='$username' password='$password' options='--client_encoding=UTF8'";

  166. 			$db = pg_connect($conn_string);

  167. 			if (!$db) {

  168. 				die("Connect failed: ". pg_last_error());

  169. 			}

  170. 			$queries = preg_split('/;\s*\n/', file_get_contents($fixture));

  171. 			array_pop($queries);

  172. 			foreach ($queries as $i=>$query) {

  173. 				if (!pg_query($db, $query.';')) {

  174. 					$i++;

  175. 					die("Loading '$fixture' failed on statemement #$i with error:\n".print_r( pg_last_error($db), true)."\n");

  176. 				}

  177. 			}

  178. 			pg_close($db);

  179. 

  180. 		} elseif ($dbengine == 'SQLite') {

  181. 

  182. 			$db = new SQLite3($database);

  183. 			if (!$db) {

  184. 				die("Could not open '$database' SQLite database: ".SQLite3::lastErrorMsg().' ('.SQLite3::lastErrorCode().")\n");

  185. 			}

  186. 			$queries = preg_split('/;\s*\n/', file_get_contents($fixture));

  187. 			array_pop($queries);

  188. 			foreach ($queries as $i=>$query) {

  189. 				if (!$db->query($query.';')) {

  190. 					$i++;

  191. 					die("Loading '$fixture' failed on statemement #$i with error:\n".$db->lastErrorCode().': '.$db->lastErrorMsg()."\n");

  192. 				}

  193. 			}

  194. 			$db->close();

  195. 		}

  196. 	}

  197. 

  198. 	public function testListPosts()

  199. 	{

  200. 		$test = new API($this);

  201. 		$test->get('/posts');

  202. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[1,1,1,"blog started"],[2,1,2,"It works!"]]}}');

  203. 	}

  204. 

  205. 	public function testListPostColumns()

  206. 	{

  207. 		$test = new API($this);

  208. 		$test->get('/posts?columns=id,content');

  209. 		$test->expect('{"posts":{"columns":["id","content"],"records":[[1,"blog started"],[2,"It works!"]]}}');

  210. 	}

  211. 

  212. 	public function testListPostsWithTransform()

  213. 	{

  214. 		$test = new API($this);

  215. 		$test->get('/posts?transform=1');

  216. 		$test->expect('{"posts":[{"id":1,"user_id":1,"category_id":1,"content":"blog started"},{"id":2,"user_id":1,"category_id":2,"content":"It works!"}]}');

  217. 	}

  218. 

  219. 	public function testReadPost()

  220. 	{

  221. 		$test = new API($this);

  222. 		$test->get('/posts/2');

  223. 		$test->expect('{"id":2,"user_id":1,"category_id":2,"content":"It works!"}');

  224. 	}

  225. 

  226. 	public function testReadPosts()

  227. 	{

  228. 		$test = new API($this);

  229. 		$test->get('/posts/1,2');

  230. 		$test->expect('[{"id":1,"user_id":1,"category_id":1,"content":"blog started"},{"id":2,"user_id":1,"category_id":2,"content":"It works!"}]');

  231. 	}

  232. 

  233. 	public function testReadPostColumns()

  234. 	{

  235. 		$test = new API($this);

  236. 		$test->get('/posts/2?columns=id,content');

  237. 		$test->expect('{"id":2,"content":"It works!"}');

  238. 	}

  239. 

  240. 	public function testAddPost()

  241. 	{

  242. 		$test = new API($this);

  243. 		$test->post('/posts','{"user_id":1,"category_id":1,"content":"test"}');

  244. 		$test->expect('3');

  245. 	}

  246. 

  247. 	public function testEditPost()

  248. 	{

  249. 		$test = new API($this);

  250. 		$test->put('/posts/3','{"user_id":1,"category_id":1,"content":"test (edited)"}');

  251. 		$test->expect('1');

  252. 		$test->get('/posts/3');

  253. 		$test->expect('{"id":3,"user_id":1,"category_id":1,"content":"test (edited)"}');

  254. 	}

  255. 

  256. 	public function testEditPostColumnsMissingField()

  257. 	{

  258. 		$test = new API($this);

  259. 		$test->put('/posts/3?columns=id,content','{"content":"test (edited 2)"}');

  260. 		$test->expect('1');

  261. 		$test->get('/posts/3');

  262. 		$test->expect('{"id":3,"user_id":1,"category_id":1,"content":"test (edited 2)"}');

  263. 	}

  264. 

  265.     public function testEditPostColumnsExtraField()

  266. 	{

  267. 		$test = new API($this);

  268. 		$test->put('/posts/3?columns=id,content','{"user_id":2,"content":"test (edited 3)"}');

  269. 		$test->expect('1');

  270. 		$test->get('/posts/3');

  271. 		$test->expect('{"id":3,"user_id":1,"category_id":1,"content":"test (edited 3)"}');

  272. 	}

  273. 

  274. 	public function testEditPostWithUtf8Content()

  275. 	{

  276. 		$utf8 = json_encode('Hello world, Καλημέρα κόσμε, コンニチハ');

  277. 		$test = new API($this);

  278. 		$test->put('/posts/2','{"content":'.$utf8.'}');

  279. 		$test->expect('1');

  280. 		$test->get('/posts/2');

  281. 		$test->expect('{"id":2,"user_id":1,"category_id":2,"content":'.$utf8.'}');

  282. 	}

  283. 

  284. 	public function testEditPostWithUtf8ContentWithPost()

  285. 	{

  286. 		$utf8 = '€ Hello world, Καλημέρα κόσμε, コンニチハ';

  287. 		$url_encoded = urlencode($utf8);

  288. 		$json_encoded = json_encode($utf8);

  289. 		$test = new API($this);

  290. 		$test->put('/posts/2','content='.$url_encoded);

  291. 		$test->expect('1');

  292. 		$test->get('/posts/2');

  293. 		$test->expect('{"id":2,"user_id":1,"category_id":2,"content":'.$json_encoded.'}');

  294. 	}

  295. 

  296. 	public function testDeletePost()

  297. 	{

  298. 		$test = new API($this);

  299. 		$test->delete('/posts/3');

  300. 		$test->expect('1');

  301. 		$test->get('/posts/3');

  302. 		$test->expect(false,'Not found (object)');

  303. 	}

  304. 

  305. 	public function testAddPostWithPost()

  306. 	{

  307. 		$test = new API($this);

  308. 		$test->post('/posts','user_id=1&category_id=1&content=test');

  309. 		$test->expect('4');

  310. 	}

  311. 

  312. 	public function testEditPostWithPost()

  313. 	{

  314. 		$test = new API($this);

  315. 		$test->put('/posts/4','user_id=1&category_id=1&content=test+(edited)');

  316. 		$test->expect('1');

  317. 		$test->get('/posts/4');

  318. 		$test->expect('{"id":4,"user_id":1,"category_id":1,"content":"test (edited)"}');

  319. 	}

  320. 

  321. 	public function testDeletePostWithPost()

  322. 	{

  323. 		$test = new API($this);

  324. 		$test->delete('/posts/4');

  325. 		$test->expect('1');

  326. 		$test->get('/posts/4');

  327. 		$test->expect(false,'Not found (object)');

  328. 	}

  329. 

  330. 	public function testListWithPaginate()

  331. 	{

  332. 		$test = new API($this);

  333. 		for ($i=1;$i<=10;$i++) {

  334. 			$test->post('/posts','{"user_id":1,"category_id":1,"content":"#'.$i.'"}');

  335. 			$test->expect(4+$i);

  336. 		}

  337. 		$test->get('/posts?page=2,2&order=id');

  338. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[5,1,1,"#1"],[6,1,1,"#2"]],"results":11}}');

  339. 	}

  340. 

  341. 	public function testListWithPaginateInMultipleOrder()

  342. 	{

  343. 		$test = new API($this);

  344. 		$test->get('/posts?page=1,2&order[]=category_id,asc&order[]=id,desc');

  345. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[14,1,1,"#10"],[12,1,1,"#8"]],"results":11}}');

  346. 	}

  347. 

  348. 	public function testListWithPaginateInDescendingOrder()

  349. 	{

  350. 		$test = new API($this);

  351. 		$test->get('/posts?page=2,2&order=id,desc');

  352. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[11,1,1,"#7"],[10,1,1,"#6"]],"results":11}}');

  353. 	}

  354. 

  355. 	public function testListWithPaginateLastPage()

  356. 	{

  357. 		$test = new API($this);

  358. 		$test->get('/posts?page=3,5&order=id');

  359. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[14,1,1,"#10"]],"results":11}}');

  360. 	}

  361. 

  362. 	public function testListExampleFromReadmeFullRecord()

  363. 	{

  364. 		$test = new API($this);

  365. 		$test->get('/posts?filter=id,eq,1');

  366. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[1,1,1,"blog started"]]}}');

  367. 	}

  368. 

  369. 	public function testListExampleFromReadmeWithExclude()

  370. 	{

  371. 		$test = new API($this);

  372. 		$test->get('/posts?exclude=id&filter=id,eq,1');

  373. 		$test->expect('{"posts":{"columns":["user_id","category_id","content"],"records":[[1,1,"blog started"]]}}');

  374. 	}

  375. 

  376. 	public function testListExampleFromReadme()

  377. 	{

  378. 		$test = new API($this);

  379. 		$test->get('/posts?include=categories,tags,comments&filter=id,eq,1');

  380. 		$test->expect('{"posts":{"columns":["id","user_id","category_id","content"],"records":[[1,1,1,"blog started"]]},"post_tags":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","tag_id"],"records":[[1,1,1],[2,1,2]]},"categories":{"relations":{"id":"posts.category_id"},"columns":["id","name","icon"],"records":[[1,"announcement",null]]},"tags":{"relations":{"id":"post_tags.tag_id"},"columns":["id","name"],"records":[[1,"funny"],[2,"important"]]},"comments":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","message"],"records":[[1,1,"great"],[2,1,"fantastic"]]}}');

  381. 	}

  382. 

  383. 	public function testListExampleFromReadmeWithTransform()

  384. 	{

  385. 		$test = new API($this);

  386. 		$test->get('/posts?include=categories,tags,comments&filter=id,eq,1&transform=1');

  387. 		$test->expect('{"posts":[{"id":1,"post_tags":[{"id":1,"post_id":1,"tag_id":1,"tags":[{"id":1,"name":"funny"}]},{"id":2,"post_id":1,"tag_id":2,"tags":[{"id":2,"name":"important"}]}],"comments":[{"id":1,"post_id":1,"message":"great"},{"id":2,"post_id":1,"message":"fantastic"}],"user_id":1,"category_id":1,"categories":[{"id":1,"name":"announcement","icon":null}],"content":"blog started"}]}');

  388. 	}

  389. 

  390. 	public function testListExampleFromReadmeWithTransformWithExclude()

  391. 	{

  392. 		$test = new API($this);

  393. 		$test->get('/posts?include=categories,tags,comments&exclude=comments.message&filter=id,eq,1&transform=1');

  394. 		$test->expect('{"posts":[{"id":1,"post_tags":[{"id":1,"post_id":1,"tag_id":1,"tags":[{"id":1,"name":"funny"}]},{"id":2,"post_id":1,"tag_id":2,"tags":[{"id":2,"name":"important"}]}],"comments":[{"id":1,"post_id":1},{"id":2,"post_id":1}],"user_id":1,"category_id":1,"categories":[{"id":1,"name":"announcement","icon":null}],"content":"blog started"}]}');

  395. 	}

  396. 

  397. 	public function testEditCategoryWithBinaryContent()

  398. 	{

  399. 		$binary = base64_encode("\0abc\0\n\r\b\0");

  400. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  401. 		$test = new API($this);

  402. 		$test->put('/categories/2','{"icon":"'.$base64url.'"}');

  403. 		$test->expect('1');

  404. 		$test->get('/categories/2');

  405. 		$test->expect('{"id":2,"name":"article","icon":"'.$binary.'"}');

  406. 	}

  407. 

  408. 	public function testEditCategoryWithNull()

  409. 	{

  410. 		$test = new API($this);

  411. 		$test->put('/categories/2','{"icon":null}');

  412. 		$test->expect('1');

  413. 		$test->get('/categories/2');

  414. 		$test->expect('{"id":2,"name":"article","icon":null}');

  415. 	}

  416. 

  417. 	public function testEditCategoryWithBinaryContentWithPost()

  418. 	{

  419. 		$binary = base64_encode("€ \0abc\0\n\r\b\0");

  420. 		$base64url = rtrim(strtr($binary, '+/', '-_'), '=');

  421. 		$test = new API($this);

  422. 		$test->put('/categories/2','icon='.$base64url);

  423. 		$test->expect('1');

  424. 		$test->get('/categories/2');

  425. 		$test->expect('{"id":2,"name":"article","icon":"'.$binary.'"}');

  426. 	}

  427. 

  428. 	public function testListCategoriesWithBinaryContent()

  429. 	{

  430. 		$test = new API($this);

  431. 		$test->get('/categories');

  432. 		$test->expect('{"categories":{"columns":["id","name","icon"],"records":[[1,"announcement",null],[2,"article","4oKsIABhYmMACg1cYgA="]]}}');

  433. 	}

  434. 

  435. 	public function testEditCategoryWithNullWithPost()

  436. 	{

  437. 		$test = new API($this);

  438. 		$test->put('/categories/2','icon__is_null');

  439. 		$test->expect('1');

  440. 		$test->get('/categories/2');

  441. 		$test->expect('{"id":2,"name":"article","icon":null}');

  442. 	}

  443. 

  444. 	public function testAddPostFailure()

  445. 	{

  446. 		$test = new API($this);

  447. 		$test->post('/posts','{"user_id":"a","category_id":1,"content":"tests"}');

  448. 		$test->expect('null');

  449. 	}

  450. 

  451. 	public function testOptionsRequest()

  452. 	{

  453. 		$test = new API($this);

  454. 		$test->options('/posts/2');

  455. 		$test->expect('["Access-Control-Allow-Headers: Content-Type, X-XSRF-TOKEN","Access-Control-Allow-Methods: OPTIONS, GET, PUT, POST, DELETE, PATCH","Access-Control-Allow-Credentials: true","Access-Control-Max-Age: 1728000"]',false);

  456. 	}

  457. 

  458. 	public function testHidingPasswordColumn()

  459. 	{

  460. 		$test = new API($this);

  461. 		$test->get('/users?filter=id,eq,1&transform=1');

  462. 		$test->expect('{"users":[{"id":1,"username":"user1","location":null}]}');

  463. 	}

  464. 

  465. 	public function testValidatorErrorMessage()

  466. 	{

  467. 		$test = new API($this);

  468. 		$test->put('/posts/1','{"category_id":"a"}');

  469. 		$test->expect(false,'{"category_id":"must be numeric"}');

  470. 	}

  471. 

  472. 	public function testSanitizerToStripTags()

  473. 	{

  474. 		$test = new API($this);

  475. 		$test->put('/categories/2','{"name":"<script>alert();</script>"}');

  476. 		$test->expect('1');

  477. 		$test->get('/categories/2');

  478. 		$test->expect('{"id":2,"name":"alert();","icon":null}');

  479. 	}

  480. 

  481. 	public function testErrorOnInvalidJson()

  482. 	{

  483. 		$test = new API($this);

  484. 		$test->post('/posts','{"}');

  485. 		$test->expect(false,'Not found (input)');

  486. 	}

  487. 

  488. 	public function testErrorOnDuplicatePrimaryKey()

  489. 	{

  490. 		$test = new API($this);

  491. 		$test->post('/posts','{"id":1,"user_id":1,"category_id":1,"content":"blog started (duplicate)"}');

  492. 		$test->expect('null');

  493. 	}

  494. 

  495. 	public function testErrorOnFailingForeignKeyConstraint()

  496. 	{

  497. 		$test = new API($this);

  498. 		$test->post('/posts','{"user_id":3,"category_id":1,"content":"fk constraint"}');

  499. 		$test->expect('null');

  500. 	}

  501. 

  502. 	public function testMissingIntermediateTable()

  503. 	{

  504. 		$test = new API($this);

  505. 		$test->get('/users?include=posts,tags');

  506. 		$test->expect('{"users":{"columns":["id","username","location"],"records":[[1,"user1",null]]},"posts":{"relations":{"user_id":"users.id"},"columns":["id","user_id","category_id","content"],"records":[[1,1,1,"blog started"],[2,1,2,"\u20ac Hello world, \u039a\u03b1\u03bb\u03b7\u03bc\u1f73\u03c1\u03b1 \u03ba\u1f79\u03c3\u03bc\u03b5, \u30b3\u30f3\u30cb\u30c1\u30cf"],[5,1,1,"#1"],[6,1,1,"#2"],[7,1,1,"#3"],[8,1,1,"#4"],[9,1,1,"#5"],[10,1,1,"#6"],[11,1,1,"#7"],[12,1,1,"#8"],[14,1,1,"#10"]]},"post_tags":{"relations":{"post_id":"posts.id"},"columns":["id","post_id","tag_id"],"records":[[1,1,1],[2,1,2],[3,2,1],[4,2,2]]},"tags":{"relations":{"id":"post_tags.tag_id"},"columns":["id","name"],"records":[[1,"funny"],[2,"important"]]}}');

  507. 	}

  508. 

  509. 	public function testEditUserPassword()

  510. 	{

  511. 		$test = new API($this);

  512. 		$test->put('/users/1','{"password":"testtest"}');

  513. 		$test->expect('1');

  514. 	}

  515. 

  516. 	public function testEditUserLocation()

  517. 	{

  518. 		$test = new API($this);

  519. 		$test->put('/users/1','{"location":"POINT(30 20)"}');

  520. 		$test->expect('1');

  521. 		$test->get('/users/1?columns=id,location');

  522. 		if (PHP_CRUD_API_Config::$dbengine=='SQLServer') {

  523. 			$test->expect('{"id":1,"location":"POINT (30 20)"}');

  524. 		} else {

  525. 			$test->expect('{"id":1,"location":"POINT(30 20)"}');

  526. 		}

  527. 	}

  528. 

  529. 	public function testListUserLocations()

  530. 	{

  531. 		$test = new API($this);

  532. 		$test->get('/users?columns=id,location');

  533. 		if (PHP_CRUD_API_Config::$dbengine=='SQLServer') {

  534. 			$test->expect('{"users":{"columns":["id","location"],"records":[[1,"POINT (30 20)"]]}}');

  535. 		} else {

  536. 			$test->expect('{"users":{"columns":["id","location"],"records":[[1,"POINT(30 20)"]]}}');

  537. 		}

  538. 	}

  539. 

  540. 	public function testEditUserWithId()

  541. 	{

  542. 		if (PHP_CRUD_API_Config::$dbengine!='SQLServer') {

  543. 			$test = new API($this);

  544. 			$test->put('/users/1','{"id":2,"password":"testtest2"}');

  545. 			$test->expect('1');

  546. 			$test->get('/users/1?columns=id,username,password');

  547. 			$test->expect('{"id":1,"username":"user1","password":"testtest2"}');

  548. 		}

  549. 	}

  550. 

  551. 	public function testReadOtherUser()

  552. 	{

  553. 		$test = new API($this);

  554. 		$test->get('/users/2');

  555. 		$test->expect(false,'Not found (object)');

  556. 	}

  557. 

  558. 	public function testEditOtherUser()

  559. 	{

  560. 		$test = new API($this);

  561. 		$test->put('/users/2','{"password":"testtest"}');

  562. 		$test->expect('0');

  563. 	}

  564. 

  565. 	public function testFilterCategoryOnNullIcon()

  566. 	{

  567. 		$test = new API($this);

  568. 		$test->get('/categories?filter[]=icon,is,null&transform=1');

  569. 		$test->expect('{"categories":[{"id":1,"name":"announcement","icon":null},{"id":2,"name":"alert();","icon":null}]}');

  570. 	}

  571. 

  572. 	public function testFilterCategoryOnNotNullIcon()

  573. 	{

  574. 		$test = new API($this);

  575. 		$test->get('/categories?filter[]=icon,nis,null&transform=1');

  576. 		$test->expect('{"categories":[]}');

  577. 	}

  578. 

  579. 	public function testFilterPostsNotIn()

  580. 	{

  581. 		$test = new API($this);

  582. 		$test->get('/posts?filter[]=id,nin,1,2,3,4,7,8,9,10,11,12,13,14&transform=1');

  583. 		$test->expect('{"posts":[{"id":5,"user_id":1,"category_id":1,"content":"#1"},{"id":6,"user_id":1,"category_id":1,"content":"#2"}]}');

  584. 	}

  585. 

  586. 	public function testFilterPostsBetween()

  587. 	{

  588. 		$test = new API($this);

  589. 		$test->get('/posts?filter[]=id,bt,5,6&transform=1');

  590. 		$test->expect('{"posts":[{"id":5,"user_id":1,"category_id":1,"content":"#1"},{"id":6,"user_id":1,"category_id":1,"content":"#2"}]}');

  591. 	}

  592. 

  593. 	public function testFilterPostsNotBetween()

  594. 	{

  595. 		$test = new API($this);

  596. 		$test->get('/posts?filter[]=id,nbt,2,13&transform=1');

  597. 		$test->expect('{"posts":[{"id":1,"user_id":1,"category_id":1,"content":"blog started"},{"id":14,"user_id":1,"category_id":1,"content":"#10"}]}');

  598. 	}

  599. 

  600. 	public function testColumnsWithTable()

  601. 	{

  602. 		$test = new API($this);

  603. 		$test->get('/posts?columns=posts.content&filter=id,eq,1&transform=1');

  604. 		$test->expect('{"posts":[{"content":"blog started"}]}');

  605. 	}

  606. 

  607. 	public function testColumnsWithTableWildcard()

  608. 	{

  609. 		$test = new API($this);

  610. 		$test->get('/posts?columns=posts.*&filter=id,eq,1&transform=1');

  611. 		$test->expect('{"posts":[{"id":1,"user_id":1,"category_id":1,"content":"blog started"}]}');

  612. 	}

  613. 

  614. 	public function testColumnsOnInclude()

  615. 	{

  616. 		$test = new API($this);

  617. 		$test->get('/posts?include=categories&columns=categories.name&filter=id,eq,1&transform=1');

  618. 		$test->expect('{"posts":[{"category_id":1,"categories":[{"id":1,"name":"announcement"}]}]}');

  619. 	}

  620. 

  621. 	public function testFilterOnRelationAnd()

  622. 	{

  623. 		$test = new API($this);

  624. 		$test->get('/categories?include=posts&filter[]=id,ge,1&filter[]=id,le,1&filter[]=id,le,2&filter[]=posts.id,lt,8&filter[]=posts.id,gt,4');

  625. 		$test->expect('{"categories":{"columns":["id","name","icon"],"records":[[1,"announcement",null]]},"posts":{"relations":{"category_id":"categories.id"},"columns":["id","user_id","category_id","content"],"records":[[5,1,1,"#1"],[6,1,1,"#2"],[7,1,1,"#3"]]}}');

  626. 	}

  627. 

  628. 	public function testFilterOnRelationOr()

  629. 	{

  630. 		$test = new API($this);

  631. 		$test->get('/categories?include=posts&filter[]=id,ge,1&filter[]=id,le,1&filter[]=posts.id,eq,5&filter[]=posts.id,eq,6&filter[]=posts.id,eq,7&satisfy=all,posts.any');

  632. 		$test->expect('{"categories":{"columns":["id","name","icon"],"records":[[1,"announcement",null]]},"posts":{"relations":{"category_id":"categories.id"},"columns":["id","user_id","category_id","content"],"records":[[5,1,1,"#1"],[6,1,1,"#2"],[7,1,1,"#3"]]}}');

  633. 	}

  634. 

  635. 	public function testColumnsOnWrongInclude()

  636. 	{

  637. 		$test = new API($this);

  638. 		$test->get('/posts?include=categories&columns=categories&filter=id,eq,1&transform=1');

  639. 		$test->expect('{"posts":[{"category_id":1,"categories":[{"id":1}]}]}');

  640. 	}

  641. 

  642. 	public function testColumnsOnImplicitJoin()

  643. 	{

  644. 		$test = new API($this);

  645. 		$test->get('/posts?include=tags&columns=posts.id,tags.name&filter=id,eq,1&transform=1');

  646. 		$test->expect('{"posts":[{"id":1,"post_tags":[{"post_id":1,"tag_id":1,"tags":[{"id":1,"name":"funny"}]},{"post_id":1,"tag_id":2,"tags":[{"id":2,"name":"important"}]}]}]}');

  647. 	}

  648. 

  649. 	public function testSpatialFilterWithin()

  650. 	{

  651. 		if (PHP_CRUD_API_Config::$dbengine!='SQLite') {

  652. 			$test = new API($this);

  653. 			$test->get('/users?columns=id,username&filter=location,swi,POINT(30 20)');

  654. 			$test->expect('{"users":{"columns":["id","username"],"records":[[1,"user1"]]}}');

  655. 		}

  656. 	}

  657. 

  658. 	public function testAddPostsWithNonExistingCategory()

  659. 	{ 

  660. 		$test = new API($this);

  661. 		$test->post('/posts','[{"user_id":1,"category_id":1,"content":"tests"},{"user_id":1,"category_id":15,"content":"tests"}]');

  662. 		$test->expect('null');

  663. 		$test->get('/posts?columns=content&filter=content,eq,tests');

  664. 		$test->expect('{"posts":{"columns":["content"],"records":[]}}');

  665. 	}

  666. 

  667. 	public function testAddPosts()

  668. 	{

  669. 		$test = new API($this);

  670. 		$test->post('/posts','[{"user_id":1,"category_id":1,"content":"tests"},{"user_id":1,"category_id":1,"content":"tests"}]');

  671. 		$test->expectAny();

  672. 		$test->get('/posts?columns=content&filter=content,eq,tests');

  673. 		$test->expect('{"posts":{"columns":["content"],"records":[["tests"],["tests"]]}}');

  674. 	}

  675. 

  676. 	public function testListEvents()

  677. 	{

  678. 		$test = new API($this);

  679. 		$test->get('/events?columns=datetime');

  680. 		$test->expect('{"events":{"columns":["datetime"],"records":[["2016-01-01 13:01:01"]]}}');

  681. 	}

  682. 

  683. 	public function testIncrementEventVisitors()

  684. 	{

  685. 		$test = new API($this);

  686. 		$test->patch('/events/1','{"visitors":11}');

  687. 		$test->expect('1');

  688. 		$test->get('/events/1');

  689. 		$test->expect('{"id":1,"name":"Launch","datetime":"2016-01-01 13:01:01","visitors":11}');

  690. 	}

  691. 

  692. 	public function testIncrementEventVisitorsWithZero()

  693. 	{

  694. 		$test = new API($this);

  695. 		$test->patch('/events/1','{"visitors":0}');

  696. 		$test->expect('1');

  697. 		$test->get('/events/1');

  698. 		$test->expect('{"id":1,"name":"Launch","datetime":"2016-01-01 13:01:01","visitors":11}');

  699. 	}

  700. 

  701. 	public function testDecrementEventVisitors()

  702. 	{

  703. 		$test = new API($this);

  704. 		$test->patch('/events/1','{"visitors":-5}');

  705. 		$test->expect('1');

  706. 		$test->get('/events/1');

  707. 		$test->expect('{"id":1,"name":"Launch","datetime":"2016-01-01 13:01:01","visitors":6}');

  708. 	}

  709. 

  710. 	public function testListTagUsage()

  711. 	{

  712. 		$test = new API($this);

  713. 		$test->get('/tag_usage');

  714. 		$test->expect('{"tag_usage":{"columns":["name","count"],"records":[["funny",2],["important",2]]}}');

  715. 	}

  716. 

  717. 	public function testUpdateMultipleTags()

  718. 	{

  719. 		$test = new API($this);

  720. 		$test->get('/tags?transform=1');

  721. 		$test->expect('{"tags":[{"id":1,"name":"funny"},{"id":2,"name":"important"}]}');

  722. 		$test->put('/tags/1,2','[{"name":"funny"},{"name":"important"}]');

  723. 		$test->expect('[1,1]');

  724. 	}

  725. 

  726. 	public function testUpdateMultipleTagsTooManyIds()

  727. 	{

  728. 		$test = new API($this);

  729. 		$test->put('/tags/1,2,3','[{"name":"funny!!!"},{"name":"important"}]');

  730. 		$test->expect(false,'Not found (subject)');

  731. 		$test->get('/tags?transform=1');

  732. 		$test->expect('{"tags":[{"id":1,"name":"funny"},{"id":2,"name":"important"}]}');

  733. 	}

  734. 

  735. 	public function testUpdateMultipleTagsWithoutFields()

  736. 	{

  737. 		$test = new API($this);

  738. 		$test->put('/tags/1,2','[{"name":"funny!!!"},{}]');

  739. 		$test->expect('null');

  740. 		$test->get('/tags?transform=1');

  741. 		$test->expect('{"tags":[{"id":1,"name":"funny"},{"id":2,"name":"important"}]}');

  742. 	}

  743. 

  744. 	public function testDeleteMultipleTags()

  745. 	{

  746. 		$test = new API($this);

  747. 		$test->post('/tags','[{"name":"extra"},{"name":"more"}]');

  748. 		$test->expect('[3,4]');

  749. 		$test->delete('/tags/3,4');

  750. 		$test->expect('[1,1]');

  751. 		$test->get('/tags?transform=1');

  752. 		$test->expect('{"tags":[{"id":1,"name":"funny"},{"id":2,"name":"important"}]}');

  753. 	}

  754. 

  755. 	public function testListProducts()

  756. 	{

  757. 		$test = new API($this);

  758. 		$test->get('/products?columns=id,name,price&transform=1');

  759. 		$test->expect('{"products":[{"id":1,"name":"Calculator","price":"23.01"}]}');

  760. 	}

  761. 

  762. 	public function testListProductsProperties()

  763. 	{

  764. 		$test = new API($this);

  765. 		$test->get('/products?columns=id,properties&transform=1');

  766. 		$test->expect('{"products":[{"id":1,"properties":{"depth":false,"model":"TRX-120","width":100,"height":null}}]}');

  767. 	}

  768. 

  769. 	public function testReadProductProperties()

  770. 	{

  771. 		$test = new API($this);

  772. 		$test->get('/products/1?columns=id,properties');

  773. 		$test->expect('{"id":1,"properties":{"depth":false,"model":"TRX-120","width":100,"height":null}}');

  774. 	}

  775. 

  776. 	public function testWriteProductProperties()

  777. 	{

  778. 		$test = new API($this);

  779. 		$test->put('/products/1','{"properties":{"depth":false,"model":"TRX-120","width":100,"height":123}}');

  780. 		$test->expect('1');

  781. 		$test->get('/products/1?columns=id,properties');

  782. 		$test->expect('{"id":1,"properties":{"depth":false,"model":"TRX-120","width":100,"height":123}}');

  783. 	}

  784. 

  785. 	public function testAddProducts()

  786. 	{

  787. 		$test = new API($this);

  788. 		$test->post('/products','{"name":"Laptop","price":"1299.99","properties":{}}');

  789. 		$test->expect('2');

  790. 		$test->get('/products/2');

  791. 		$test->expect('{"id":2,"name":"Laptop","price":"1299.99","properties":{},"created_at":"2013-12-11 10:09:08"}');

  792. 	}

  793. 

  794. 	public function testSoftDeleteProduct()

  795. 	{

  796. 		$test = new API($this);

  797. 		$test->delete('/products/2');

  798. 		$test->expect('2');

  799. 		//$test->get('/products/2');

  800. 		//$test->expect('{"id":2,"name":"Laptop","price":"1299.99","properties":{},"created_at":"2013-12-11 10:09:08"}');

  801. 	}

  802. }