ÿØÿàJFIFÿþ ÿÛC       ÿÛC ÿÀÿÄÿÄ"#QrÿÄÿÄ&1!A"2qQaáÿÚ ?Øy,æ/3JæݹÈ߲؋5êXw²±ÉyˆR”¾I0ó2—PI¾IÌÚiMö¯–þrìN&"KgX:Šíµ•nTJnLK„…@!‰-ý ùúmë;ºgµŒ&ó±hw’¯Õ@”Ü— 9ñ-ë.²1<yà‚¹ïQÐU„ہ?.’¦èûbß±©Ö«Âw*VŒ) `$‰bØԟ’ëXÖ-ËTÜíGÚ3ð«g Ÿ§¯—Jx„–’U/ÂÅv_s(Hÿ@TñJÑãõçn­‚!ÈgfbÓc­:él[ðQe 9ÀPLbÃãCµm[5¿ç'ªjglå‡Ûí_§Úõl-;"PkÞÞÁQâ¼_Ñ^¢SŸx?"¸¦ùY騐ÒOÈ q’`~~ÚtËU¹CڒêV  I1Áß_ÿÙ * * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ namespace Symfony\Component\Security\Csrf\Tests\TokenStorage; use Symfony\Component\Security\Csrf\TokenStorage\SessionTokenStorage; /** * @author Bernhard Schussek */ class SessionTokenStorageTest extends \PHPUnit_Framework_TestCase { const SESSION_NAMESPACE = 'foobar'; /** * @var \PHPUnit_Framework_MockObject_MockObject */ private $session; /** * @var SessionTokenStorage */ private $storage; protected function setUp() { if (!interface_exists('Symfony\Component\HttpFoundation\Session\SessionInterface')) { $this->markTestSkipped('The "HttpFoundation" component is not available'); } $this->session = $this->getMockBuilder('Symfony\Component\HttpFoundation\Session\SessionInterface') ->disableOriginalConstructor() ->getMock(); $this->storage = new SessionTokenStorage($this->session, self::SESSION_NAMESPACE); } public function testStoreTokenInClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('set') ->with(self::SESSION_NAMESPACE.'/token_id', 'TOKEN'); $this->storage->setToken('token_id', 'TOKEN'); } public function testStoreTokenInActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('set') ->with(self::SESSION_NAMESPACE.'/token_id', 'TOKEN'); $this->storage->setToken('token_id', 'TOKEN'); } public function testCheckTokenInClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('RESULT')); $this->assertSame('RESULT', $this->storage->hasToken('token_id')); } public function testCheckTokenInActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('RESULT')); $this->assertSame('RESULT', $this->storage->hasToken('token_id')); } public function testGetExistingTokenFromClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(true)); $this->session->expects($this->once()) ->method('get') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('RESULT')); $this->assertSame('RESULT', $this->storage->getToken('token_id')); } public function testGetExistingTokenFromActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(true)); $this->session->expects($this->once()) ->method('get') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('RESULT')); $this->assertSame('RESULT', $this->storage->getToken('token_id')); } /** * @expectedException \Symfony\Component\Security\Csrf\Exception\TokenNotFoundException */ public function testGetNonExistingTokenFromClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(false)); $this->storage->getToken('token_id'); } /** * @expectedException \Symfony\Component\Security\Csrf\Exception\TokenNotFoundException */ public function testGetNonExistingTokenFromActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('has') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(false)); $this->storage->getToken('token_id'); } public function testRemoveNonExistingTokenFromClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('remove') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(null)); $this->assertNull($this->storage->removeToken('token_id')); } public function testRemoveNonExistingTokenFromActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('remove') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue(null)); $this->assertNull($this->storage->removeToken('token_id')); } public function testRemoveExistingTokenFromClosedSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('start'); $this->session->expects($this->once()) ->method('remove') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('TOKEN')); $this->assertSame('TOKEN', $this->storage->removeToken('token_id')); } public function testRemoveExistingTokenFromActiveSession() { $this->session->expects($this->any()) ->method('isStarted') ->will($this->returnValue(true)); $this->session->expects($this->never()) ->method('start'); $this->session->expects($this->once()) ->method('remove') ->with(self::SESSION_NAMESPACE.'/token_id') ->will($this->returnValue('TOKEN')); $this->assertSame('TOKEN', $this->storage->removeToken('token_id')); } }