upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-06-22 07:00:02 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 8
nextcloud/tests/lib/Files/Storage/BearerAuthAwareSabreClientTest.php
Enrique Pérez Arnaud 3616212ba2
feat(files_sharing): store and refresh OCM access tokens for external shares 
Co-authored-by: Micke Nordin <kano@sunet.se>
Signed-off-by: Micke Nordin <kano@sunet.se>
Signed-off-by: Enrique Pérez Arnaud <enrique@cazalla.net>
2026-06-17 11:01:16 +02:00

74 lines
2.3 KiB
PHP
Raw Blame History

<?php
/**
* SPDX-FileCopyrightText: 2026 Nextcloud GmbH and Nextcloud contributors
* SPDX-License-Identifier: AGPL-3.0-or-later
*/
namespace Test\Files\Storage;
use OC\Files\Storage\BearerAuthAwareSabreClient;
use PHPUnit\Framework\Attributes\CoversClass;
use Test\TestCase;
/**
* @package Test\Files\Storage
*/
#[CoversClass(BearerAuthAwareSabreClient::class)]
class BearerAuthAwareSabreClientTest extends TestCase {
private function getCurlSetting(BearerAuthAwareSabreClient $client, int $key): mixed {
$reflection = new \ReflectionObject($client);
$property = $reflection->getProperty('curlSettings');
$property->setAccessible(true);
$settings = $property->getValue($client);
return $settings[$key] ?? null;
}
public function testBearerTokenIsUsedForAuthentication(): void {
$client = new BearerAuthAwareSabreClient([
'baseUri' => 'https://example.com/',
// The user name holds the long-lived share secret, never the bearer.
'userName' => 'refresh-secret',
'password' => '',
'authType' => BearerAuthAwareSabreClient::AUTH_BEARER,
'bearerToken' => 'the-access-jwt',
]);
$this->assertSame('the-access-jwt', $this->getCurlSetting($client, CURLOPT_XOAUTH2_BEARER));
}
public function testShareSecretIsNotUsedAsBearer(): void {
$client = new BearerAuthAwareSabreClient([
'baseUri' => 'https://example.com/',
'userName' => 'refresh-secret',
'password' => '',
'authType' => BearerAuthAwareSabreClient::AUTH_BEARER,
'bearerToken' => 'the-access-jwt',
]);
$this->assertNotSame('refresh-secret', $this->getCurlSetting($client, CURLOPT_XOAUTH2_BEARER));
}
public function testNoBearerAppliedWithoutBearerAuthType(): void {
$client = new BearerAuthAwareSabreClient([
'baseUri' => 'https://example.com/',
'userName' => 'user',
'password' => 'pass',
'authType' => \Sabre\DAV\Client::AUTH_BASIC,
'bearerToken' => 'the-access-jwt',
]);
$this->assertNull($this->getCurlSetting($client, CURLOPT_XOAUTH2_BEARER));
}
public function testNoBearerAppliedWithoutBearerToken(): void {
$client = new BearerAuthAwareSabreClient([
'baseUri' => 'https://example.com/',
'userName' => 'refresh-secret',
'password' => '',
'authType' => BearerAuthAwareSabreClient::AUTH_BEARER,
]);
$this->assertNull($this->getCurlSetting($client, CURLOPT_XOAUTH2_BEARER));
}
}
Reference in a new issue View git blame Copy permalink