You are here

class UrlBuildersTest in Auth0 Single Sign On 8.2

Hierarchy

  • class \Auth0\Tests\API\Authentication\UrlBuildersTest extends \Auth0\Tests\API\Authentication\PHPUnit_Framework_TestCase

Expanded class hierarchy of UrlBuildersTest

File

vendor/auth0/auth0-php/tests/API/Authentication/UrlBuildersTest.php, line 7

Namespace

Auth0\Tests\API\Authentication
View source
class UrlBuildersTest extends \PHPUnit_Framework_TestCase {
  public function testThatBasicAuthorizeLinkIsBuiltCorrectly() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $authorize_url = $api
      ->get_authorize_link('code', 'https://example.com/cb');
    $authorize_url_parts = parse_url($authorize_url);
    $this
      ->assertEquals('https', $authorize_url_parts['scheme']);
    $this
      ->assertEquals('test-domain.auth0.com', $authorize_url_parts['host']);
    $this
      ->assertEquals('/authorize', $authorize_url_parts['path']);
    $authorize_url_query = explode('&', $authorize_url_parts['query']);
    $this
      ->assertContains('redirect_uri=https%3A%2F%2Fexample.com%2Fcb', $authorize_url_query);
    $this
      ->assertContains('response_type=code', $authorize_url_query);
    $this
      ->assertContains('client_id=__test_client_id__', $authorize_url_query);
    $this
      ->assertNotContains('connection=', $authorize_url_parts['query']);
    $this
      ->assertNotContains('state=', $authorize_url_parts['query']);

    // Telemetry should not be added to any browser URLs.
    $this
      ->assertNotContains('auth0Client=', $authorize_url_parts['query']);
  }
  public function testThatAuthorizeLinkIncludesConnection() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $authorize_url = $api
      ->get_authorize_link('code', 'https://example.com/cb', 'test-connection');
    $authorize_url_query = parse_url($authorize_url, PHP_URL_QUERY);
    $authorize_url_query = explode('&', $authorize_url_query);
    $this
      ->assertContains('connection=test-connection', $authorize_url_query);
  }
  public function testThatAuthorizeLinkIncludesState() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $authorize_url = $api
      ->get_authorize_link('code', 'https://example.com/cb', null, '__test_state__');
    $authorize_url_query = parse_url($authorize_url, PHP_URL_QUERY);
    $authorize_url_query = explode('&', $authorize_url_query);
    $this
      ->assertContains('state=__test_state__', $authorize_url_query);
  }
  public function testThatAuthorizeLinkIncludesAdditionalParams() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $additional_params = [
      'param1' => 'value1',
    ];
    $authorize_url = $api
      ->get_authorize_link('code', 'https://example.com/cb', null, null, $additional_params);
    $authorize_url_query = parse_url($authorize_url, PHP_URL_QUERY);
    $authorize_url_query = explode('&', $authorize_url_query);
    $this
      ->assertContains('param1=value1', $authorize_url_query);
  }
  public function testThatBasicLogoutLinkIsBuiltCorrectly() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $logout_link_parts = parse_url($api
      ->get_logout_link());
    $this
      ->assertEquals('https', $logout_link_parts['scheme']);
    $this
      ->assertEquals('test-domain.auth0.com', $logout_link_parts['host']);
    $this
      ->assertEquals('/v2/logout', $logout_link_parts['path']);

    // Telemetry should not be added to browser URLs.
    // If a query is added in the future, change this to check that auth0Client is not present.
    $this
      ->assertTrue(empty($logout_link_parts['query']));
  }
  public function testThatReturnToLogoutLinkIsBuiltCorrectly() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $logout_link_query = parse_url($api
      ->get_logout_link('https://example.com/return-to'), PHP_URL_QUERY);
    $logout_link_query = explode('&', $logout_link_query);
    $this
      ->assertContains('returnTo=https%3A%2F%2Fexample.com%2Freturn-to', $logout_link_query);
  }
  public function testThatClientIdLogoutLinkIsBuiltCorrectly() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $logout_link_query = parse_url($api
      ->get_logout_link(null, '__test_client_id__'), PHP_URL_QUERY);
    $logout_link_query = explode('&', $logout_link_query);
    $this
      ->assertContains('client_id=' . '__test_client_id__', $logout_link_query);
  }
  public function testThatFederatedLogoutLinkIsBuiltCorrectly() {
    $api = new Authentication('test-domain.auth0.com', '__test_client_id__');
    $logout_link_query = parse_url($api
      ->get_logout_link(null, null, true), PHP_URL_QUERY);
    $logout_link_query = explode('&', $logout_link_query);
    $this
      ->assertContains('federated=', $logout_link_query);
  }
  public function testThatSamlLinkIsBuiltProperly() {
    $api = new Authentication('test-domain.auth0.com', 'test-client-id-1');
    $this
      ->assertEquals('https://test-domain.auth0.com/samlp/test-client-id-1?connection=', $api
      ->get_samlp_link());
    $this
      ->assertEquals('https://test-domain.auth0.com/samlp/test-client-id-2?connection=', $api
      ->get_samlp_link('test-client-id-2'));
    $this
      ->assertEquals('https://test-domain.auth0.com/samlp/test-client-id-3?connection=test-connection', $api
      ->get_samlp_link('test-client-id-3', 'test-connection'));
  }
  public function testThatSamlMetadataLinkIsBuiltProperly() {
    $api = new Authentication('test-domain.auth0.com', 'test-client-id-1');
    $this
      ->assertEquals('https://test-domain.auth0.com/samlp/metadata/test-client-id-1', $api
      ->get_samlp_metadata_link());
    $this
      ->assertEquals('https://test-domain.auth0.com/samlp/metadata/test-client-id-2', $api
      ->get_samlp_metadata_link('test-client-id-2'));
  }
  public function testThatWsFedLinkIsBuiltProperly() {
    $api = new Authentication('test-domain.auth0.com', 'test-client-id-1');
    $this
      ->assertEquals('https://test-domain.auth0.com/wsfed/test-client-id-1?', $api
      ->get_wsfed_link());
    $this
      ->assertEquals('https://test-domain.auth0.com/wsfed/test-client-id-2?', $api
      ->get_wsfed_link('test-client-id-2'));
    $this
      ->assertEquals('https://test-domain.auth0.com/wsfed/test-client-id-3?wtrealm=test_wtrealm&whr=test_whr&wctx=test_wctx', $api
      ->get_wsfed_link('test-client-id-3', [
      'wtrealm' => 'test_wtrealm',
      'whr' => 'test_whr',
      'wctx' => 'test_wctx',
    ]));
  }
  public function testThatWsFedMetadataLinkIsBuiltProperly() {
    $api = new Authentication('test-domain.auth0.com');
    $this
      ->assertEquals('https://test-domain.auth0.com/wsfed/FederationMetadata/2007-06/FederationMetadata.xml', $api
      ->get_wsfed_metadata_link());
  }

}

Members