SignupTest.php
No OneTemporary
Actions

Authored By

Unknown

Size

22 KB

Referenced Files

None

Subscribers

None

SignupTest.php
View Options

	<?php

	namespace Tests\Feature\Controller;

	use App\Http\Controllers\API\SignupController;
	use App\Discount;
	use App\Domain;
	use App\SignupCode;
	use App\User;
	use Illuminate\Support\Facades\Queue;
	use Tests\TestCase;

	class SignupTest extends TestCase
	{
	private $domain;

	/**
	* {@inheritDoc}
	*/
	public function setUp(): void
	{
	parent::setUp();

	// TODO: Some tests depend on existence of individual and group plans,
	// we should probably create plans here to not depend on that
	$this->domain = $this->getPublicDomain();

	$this->deleteTestUser("SignupControllerTest1@$this->domain");
	$this->deleteTestUser("signuplogin@$this->domain");
	$this->deleteTestUser("admin@external.com");

	$this->deleteTestDomain('external.com');
	$this->deleteTestDomain('signup-domain.com');
	}

	/**
	* {@inheritDoc}
	*/
	public function tearDown(): void
	{
	$this->deleteTestUser("SignupControllerTest1@$this->domain");
	$this->deleteTestUser("signuplogin@$this->domain");
	$this->deleteTestUser("admin@external.com");

	$this->deleteTestDomain('external.com');
	$this->deleteTestDomain('signup-domain.com');

	parent::tearDown();
	}

	/**
	* Return a public domain for signup tests
	*/
	private function getPublicDomain(): string
	{
	if (!$this->domain) {
	$this->refreshApplication();
	$public_domains = Domain::getPublicDomains();
	$this->domain = reset($public_domains);

	if (empty($this->domain)) {
	$this->domain = 'signup-domain.com';
	Domain::create([
	'namespace' => $this->domain,
	'status' => Domain::STATUS_ACTIVE,
	'type' => Domain::TYPE_PUBLIC,
	]);
	}
	}

	return $this->domain;
	}

	/**
	* Test fetching plans for signup
	*
	* @return void
	*/
	public function testSignupPlans()
	{
	$response = $this->get('/api/auth/signup/plans');
	$json = $response->json();

	$response->assertStatus(200);

	$this->assertSame('success', $json['status']);
	$this->assertCount(2, $json['plans']);
	$this->assertArrayHasKey('title', $json['plans'][0]);
	$this->assertArrayHasKey('name', $json['plans'][0]);
	$this->assertArrayHasKey('description', $json['plans'][0]);
	$this->assertArrayHasKey('button', $json['plans'][0]);
	}

	/**
	* Test signup initialization with invalid input
	*
	* @return void
	*/
	public function testSignupInitInvalidInput()
	{
	// Empty input data
	$data = [];

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(422);

	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('email', $json['errors']);

	// Data with missing name
	$data = [
	'email' => 'UsersApiControllerTest1@UsersApiControllerTest.com',
	'first_name' => str_repeat('a', 250),
	'last_name' => str_repeat('a', 250),
	];

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(422);

	$this->assertSame('error', $json['status']);
	$this->assertCount(2, $json['errors']);
	$this->assertArrayHasKey('first_name', $json['errors']);
	$this->assertArrayHasKey('last_name', $json['errors']);

	// Data with invalid email (but not phone number)
	$data = [
	'email' => '@example.org',
	'first_name' => 'Signup',
	'last_name' => 'User',
	];

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(422);

	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('email', $json['errors']);

	// Sanity check on voucher code, last/first name is optional
	$data = [
	'voucher' => '123456789012345678901234567890123',
	'email' => 'valid@email.com',
	];

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(422);

	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('voucher', $json['errors']);

	// TODO: Test phone validation
	}

	/**
	* Test signup initialization with valid input
	*
	* @return array
	*/
	public function testSignupInitValidInput()
	{
	Queue::fake();

	// Assert that no jobs were pushed...
	Queue::assertNothingPushed();

	$data = [
	'email' => 'testuser@external.com',
	'first_name' => 'Signup',
	'last_name' => 'User',
	'plan' => 'individual',
	];

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(200);
	$this->assertCount(2, $json);
	$this->assertSame('success', $json['status']);
	$this->assertNotEmpty($json['code']);

	// Assert the email sending job was pushed once
	Queue::assertPushed(\App\Jobs\SignupVerificationEmail::class, 1);

	// Assert the job has proper data assigned
	Queue::assertPushed(\App\Jobs\SignupVerificationEmail::class, function ($job) use ($data, $json) {
	$code = TestCase::getObjectProperty($job, 'code');

	return $code->code === $json['code']
	&& $code->data['plan'] === $data['plan']
	&& $code->data['email'] === $data['email']
	&& $code->data['first_name'] === $data['first_name']
	&& $code->data['last_name'] === $data['last_name'];
	});

	// Try the same with voucher
	$data['voucher'] = 'TEST';

	$response = $this->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(200);
	$this->assertCount(2, $json);
	$this->assertSame('success', $json['status']);
	$this->assertNotEmpty($json['code']);

	// Assert the job has proper data assigned
	Queue::assertPushed(\App\Jobs\SignupVerificationEmail::class, function ($job) use ($data, $json) {
	$code = TestCase::getObjectProperty($job, 'code');

	return $code->code === $json['code']
	&& $code->data['plan'] === $data['plan']
	&& $code->data['email'] === $data['email']
	&& $code->data['voucher'] === $data['voucher']
	&& $code->data['first_name'] === $data['first_name']
	&& $code->data['last_name'] === $data['last_name'];
	});

	return [
	'code' => $json['code'],
	'email' => $data['email'],
	'first_name' => $data['first_name'],
	'last_name' => $data['last_name'],
	'plan' => $data['plan'],
	'voucher' => $data['voucher']
	];
	}

	/**
	* Test signup code verification with invalid input
	*
	* @depends testSignupInitValidInput
	* @return void
	*/
	public function testSignupVerifyInvalidInput(array $result)
	{
	// Empty data
	$data = [];

	$response = $this->post('/api/auth/signup/verify', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(2, $json['errors']);
	$this->assertArrayHasKey('code', $json['errors']);
	$this->assertArrayHasKey('short_code', $json['errors']);

	// Data with existing code but missing short_code
	$data = [
	'code' => $result['code'],
	];

	$response = $this->post('/api/auth/signup/verify', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('short_code', $json['errors']);

	// Data with invalid short_code
	$data = [
	'code' => $result['code'],
	'short_code' => 'XXXX',
	];

	$response = $this->post('/api/auth/signup/verify', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('short_code', $json['errors']);

	// TODO: Test expired code
	}

	/**
	* Test signup code verification with valid input
	*
	* @depends testSignupInitValidInput
	*
	* @return array
	*/
	public function testSignupVerifyValidInput(array $result)
	{
	$code = SignupCode::find($result['code']);
	$data = [
	'code' => $code->code,
	'short_code' => $code->short_code,
	];

	$response = $this->post('/api/auth/signup/verify', $data);
	$json = $response->json();

	$response->assertStatus(200);
	$this->assertCount(7, $json);
	$this->assertSame('success', $json['status']);
	$this->assertSame($result['email'], $json['email']);
	$this->assertSame($result['first_name'], $json['first_name']);
	$this->assertSame($result['last_name'], $json['last_name']);
	$this->assertSame($result['voucher'], $json['voucher']);
	$this->assertSame(false, $json['is_domain']);
	$this->assertTrue(is_array($json['domains']) && !empty($json['domains']));

	return $result;
	}

	/**
	* Test last signup step with invalid input
	*
	* @depends testSignupVerifyValidInput
	* @return void
	*/
	public function testSignupInvalidInput(array $result)
	{
	// Empty data
	$data = [];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(3, $json['errors']);
	$this->assertArrayHasKey('login', $json['errors']);
	$this->assertArrayHasKey('password', $json['errors']);
	$this->assertArrayHasKey('domain', $json['errors']);

	$domain = $this->getPublicDomain();

	// Passwords do not match and missing domain
	$data = [
	'login' => 'test',
	'password' => 'test',
	'password_confirmation' => 'test2',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(2, $json['errors']);
	$this->assertArrayHasKey('password', $json['errors']);
	$this->assertArrayHasKey('domain', $json['errors']);

	$domain = $this->getPublicDomain();

	// Login too short
	$data = [
	'login' => '1',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('login', $json['errors']);

	// Missing codes
	$data = [
	'login' => 'login-valid',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(2, $json['errors']);
	$this->assertArrayHasKey('code', $json['errors']);
	$this->assertArrayHasKey('short_code', $json['errors']);

	// Data with invalid short_code
	$data = [
	'login' => 'TestLogin',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	'code' => $result['code'],
	'short_code' => 'XXXX',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('short_code', $json['errors']);

	$code = SignupCode::find($result['code']);

	// Data with invalid voucher
	$data = [
	'login' => 'TestLogin',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	'code' => $result['code'],
	'short_code' => $code->short_code,
	'voucher' => 'XXX',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('voucher', $json['errors']);

	// Valid code, invalid login
	$data = [
	'login' => 'żżżżżż',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	'code' => $result['code'],
	'short_code' => $code->short_code,
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(422);
	$this->assertSame('error', $json['status']);
	$this->assertCount(1, $json['errors']);
	$this->assertArrayHasKey('login', $json['errors']);
	}

	/**
	* Test last signup step with valid input (user creation)
	*
	* @depends testSignupVerifyValidInput
	* @return void
	*/
	public function testSignupValidInput(array $result)
	{
	$queue = Queue::fake();

	$domain = $this->getPublicDomain();
	$identity = \strtolower('SignupLogin@') . $domain;
	$code = SignupCode::find($result['code']);
	$data = [
	'login' => 'SignupLogin',
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	'code' => $code->code,
	'short_code' => $code->short_code,
	'voucher' => 'TEST',
	];

	$response = $this->post('/api/auth/signup', $data);
	$json = $response->json();

	$response->assertStatus(200);
	$this->assertSame('success', $json['status']);
	$this->assertSame('bearer', $json['token_type']);
	$this->assertTrue(!empty($json['expires_in']) && is_int($json['expires_in']) && $json['expires_in'] > 0);
	$this->assertNotEmpty($json['access_token']);
	$this->assertSame($identity, $json['email']);

	Queue::assertPushed(\App\Jobs\User\CreateJob::class, 1);

	Queue::assertPushed(
	\App\Jobs\User\CreateJob::class,
	function ($job) use ($data) {
	$userEmail = TestCase::getObjectProperty($job, 'userEmail');
	return $userEmail === \strtolower($data['login'] . '@' . $data['domain']);
	}
	);

	// Check if the code has been removed
	$this->assertNull(SignupCode::where('code', $result['code'])->first());

	// Check if the user has been created
	$user = User::where('email', $identity)->first();

	$this->assertNotEmpty($user);
	$this->assertSame($identity, $user->email);

	// Check user settings
	$this->assertSame($result['first_name'], $user->getSetting('first_name'));
	$this->assertSame($result['last_name'], $user->getSetting('last_name'));
	$this->assertSame($result['email'], $user->getSetting('external_email'));

	// Discount
	$discount = Discount::where('code', 'TEST')->first();
	$this->assertSame($discount->id, $user->wallets()->first()->discount_id);

	// TODO: Check SKUs/Plan

	// TODO: Check if the access token works
	}

	/**
	* Test signup for a group (custom domain) account
	*
	* @return void
	*/
	public function testSignupGroupAccount()
	{
	Queue::fake();

	// Initial signup request
	$user_data = $data = [
	'email' => 'testuser@external.com',
	'first_name' => 'Signup',
	'last_name' => 'User',
	'plan' => 'group',
	];

	$response = $this->withoutMiddleware()->post('/api/auth/signup/init', $data);
	$json = $response->json();

	$response->assertStatus(200);
	$this->assertCount(2, $json);
	$this->assertSame('success', $json['status']);
	$this->assertNotEmpty($json['code']);

	// Assert the email sending job was pushed once
	Queue::assertPushed(\App\Jobs\SignupVerificationEmail::class, 1);

	// Assert the job has proper data assigned
	Queue::assertPushed(\App\Jobs\SignupVerificationEmail::class, function ($job) use ($data, $json) {
	$code = TestCase::getObjectProperty($job, 'code');

	return $code->code === $json['code']
	&& $code->data['plan'] === $data['plan']
	&& $code->data['email'] === $data['email']
	&& $code->data['first_name'] === $data['first_name']
	&& $code->data['last_name'] === $data['last_name'];
	});

	// Verify the code
	$code = SignupCode::find($json['code']);
	$data = [
	'code' => $code->code,
	'short_code' => $code->short_code,
	];

	$response = $this->post('/api/auth/signup/verify', $data);
	$result = $response->json();

	$response->assertStatus(200);
	$this->assertCount(7, $result);
	$this->assertSame('success', $result['status']);
	$this->assertSame($user_data['email'], $result['email']);
	$this->assertSame($user_data['first_name'], $result['first_name']);
	$this->assertSame($user_data['last_name'], $result['last_name']);
	$this->assertSame(null, $result['voucher']);
	$this->assertSame(true, $result['is_domain']);
	$this->assertSame([], $result['domains']);

	// Final signup request
	$login = 'admin';
	$domain = 'external.com';
	$data = [
	'login' => $login,
	'domain' => $domain,
	'password' => 'test',
	'password_confirmation' => 'test',
	'code' => $code->code,
	'short_code' => $code->short_code,
	];

	$response = $this->post('/api/auth/signup', $data);
	$result = $response->json();

	$response->assertStatus(200);
	$this->assertSame('success', $result['status']);
	$this->assertSame('bearer', $result['token_type']);
	$this->assertTrue(!empty($result['expires_in']) && is_int($result['expires_in']) && $result['expires_in'] > 0);
	$this->assertNotEmpty($result['access_token']);
	$this->assertSame("$login@$domain", $result['email']);

	Queue::assertPushed(\App\Jobs\Domain\CreateJob::class, 1);

	Queue::assertPushed(
	\App\Jobs\Domain\CreateJob::class,
	function ($job) use ($domain) {
	$domainNamespace = TestCase::getObjectProperty($job, 'domainNamespace');

	return $domainNamespace === $domain;
	}
	);

	Queue::assertPushed(\App\Jobs\User\CreateJob::class, 1);

	Queue::assertPushed(
	\App\Jobs\User\CreateJob::class,
	function ($job) use ($data) {
	$userEmail = TestCase::getObjectProperty($job, 'userEmail');

	return $userEmail === $data['login'] . '@' . $data['domain'];
	}
	);

	// Check if the code has been removed
	$this->assertNull(SignupCode::find($code->id));

	// Check if the user has been created
	$user = User::where('email', $login . '@' . $domain)->first();

	$this->assertNotEmpty($user);

	// Check user settings
	$this->assertSame($user_data['email'], $user->getSetting('external_email'));
	$this->assertSame($user_data['first_name'], $user->getSetting('first_name'));
	$this->assertSame($user_data['last_name'], $user->getSetting('last_name'));

	// TODO: Check domain record

	// TODO: Check SKUs/Plan

	// TODO: Check if the access token works
	}

	/**
	* List of login/domain validation cases for testValidateLogin()
	*
	* @return array Arguments for testValidateLogin()
	*/
	public function dataValidateLogin(): array
	{
	$domain = $this->getPublicDomain();

	return [
	// Individual account
	['', $domain, false, ['login' => 'The login field is required.']],
	['test123456', 'localhost', false, ['domain' => 'The specified domain is invalid.']],
	['test123456', 'unknown-domain.org', false, ['domain' => 'The specified domain is invalid.']],
	['test.test', $domain, false, null],
	['test_test', $domain, false, null],
	['test-test', $domain, false, null],
	['admin', $domain, false, ['login' => 'The specified login is not available.']],
	['administrator', $domain, false, ['login' => 'The specified login is not available.']],
	['sales', $domain, false, ['login' => 'The specified login is not available.']],
	['root', $domain, false, ['login' => 'The specified login is not available.']],

	// TODO existing (public domain) user
	// ['signuplogin', $domain, false, ['login' => 'The specified login is not available.']],

	// Domain account
	['admin', 'kolabsys.com', true, null],
	['testnonsystemdomain', 'invalid', true, ['domain' => 'The specified domain is invalid.']],
	['testnonsystemdomain', '.com', true, ['domain' => 'The specified domain is invalid.']],

	// existing custom domain
	['jack', 'kolab.org', true, ['domain' => 'The specified domain is not available.']],
	];
	}

	/**
	* Signup login/domain validation.
	*
	* Note: Technically these include unit tests, but let's keep it here for now.
	* FIXME: Shall we do a http request for each case?
	*
	* @dataProvider dataValidateLogin
	*/
	public function testValidateLogin($login, $domain, $external, $expected_result): void
	{
	$result = $this->invokeMethod(new SignupController(), 'validateLogin', [$login, $domain, $external]);

	$this->assertSame($expected_result, $result);
	}
	}

File Metadata

Mime Type: text/x-php
Expires: Sun, Apr 5, 10:28 PM (2 w, 4 d ago)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 18721116
Default Alt Text: SignupTest.php (22 KB)

SignupTest.phpNo OneTemporaryActions

SignupTest.phpView Options

File Metadata

Event Timeline

SignupTest.php
No OneTemporary
Actions

SignupTest.php
View Options