Elgato_dark/appwrite
1
0
Fork 0
mirror of https://github.com/appwrite/appwrite synced 2026-04-28 08:57:57 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
appwrite/tests/e2e/Services/Account/AccountCustomClientTest.php

3380 lines
133 KiB
PHP
Raw Normal View History

Tests - work in progress
2020-01-11 13:58:02 +00:00
<?php
Updated tests structure
2020-01-12 06:35:37 +00:00
namespace Tests\E2E\Services\Account;
Tests - work in progress
2020-01-11 13:58:02 +00:00
Add retries for flaky tests
2022-12-22 03:12:45 +00:00
use Appwrite\Tests\Retry;
New OAuth e2e test
2020-01-13 15:15:52 +00:00
use Tests\E2E\Client;
Tests - work in progress
2020-01-11 13:58:02 +00:00
use Tests\E2E\Scopes\ProjectCustom;
chore: run formatter
2024-03-06 17:34:21 +00:00
use Tests\E2E\Scopes\Scope;
Tests - work in progress
2020-01-11 13:58:02 +00:00
use Tests\E2E\Scopes\SideClient;
change test validations from strings to datetime
2022-07-12 16:44:58 +00:00
use Utopia\Database\DateTime;
Changing Id
2022-12-14 15:42:25 +00:00
use Utopia\Database\Helpers\ID;
Fix failing tests
2024-01-25 16:53:51 +00:00
use Utopia\Database\Query;
fix: implement new framework changes
2023-03-01 12:00:36 +00:00
use Utopia\Database\Validator\Datetime as DatetimeValidator;
ID and test fixes
2022-08-14 14:22:38 +00:00
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
use function sleep;
Tests - work in progress
2020-01-11 13:58:02 +00:00
class AccountCustomClientTest extends Scope
{
use AccountBase;
use ProjectCustom;
use SideClient;
New OAuth e2e test
2020-01-13 15:15:52 +00:00
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* @depends testCreateAccount
*/
public function testCreateAccountSession($data): array
{
$email = $data['email'] ?? '';
$password = $data['password'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertNotFalse(\DateTime::createFromFormat('Y-m-d\TH:i:s.uP', $response['body']['expire']));
$sessionId = $response['body']['$id'];
Merge branch '1.4.x' of https://github.com/appwrite/appwrite into feat-ssr
2023-12-11 16:52:14 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
// apiKey is only available in custom client test
$apiKey = $this->getProject()['apiKey'];
if (!empty($apiKey)) {
$userId = $response['body']['userId'];
$response = $this->client->call(Client::METHOD_GET, '/users/' . $userId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $apiKey,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertArrayHasKey('accessedAt', $response['body']);
$this->assertNotEmpty($response['body']['accessedAt']);
}
$response = $this->client->call(Client::METHOD_POST, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEmpty($response['body']['secret']);
$this->assertNotFalse(\DateTime::createFromFormat('Y-m-d\TH:i:s.uP', $response['body']['expire']));
Fix test
2024-02-25 06:24:06 +00:00
/**
* Test for FAILURE
*/
fix: logged in ssr cases
2023-11-15 11:57:27 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
Fix test
2024-02-25 06:24:06 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
fix: logged in ssr cases
2023-11-15 11:57:27 +00:00
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email . 'x',
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password . 'x',
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => '',
'password' => '',
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return array_merge($data, [
'sessionId' => $sessionId,
'session' => $session,
]);
}
/**
* @depends testCreateAccountSession
*/
public function testGetAccount($data): array
{
$email = $data['email'] ?? '';
$name = $data['name'] ?? '';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $email);
$this->assertEquals($response['body']['name'], $name);
$this->assertArrayHasKey('accessedAt', $response['body']);
$this->assertNotEmpty($response['body']['accessedAt']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', [
'content-type' => 'application/json',
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session . 'xx',
'x-appwrite-project' => $this->getProject()['$id'],
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testCreateAccountSession
*/
public function testGetAccountPrefs($data): array
{
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertEmpty($response['body']);
$this->assertCount(0, $response['body']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testCreateAccountSession
*/
public function testGetAccountSessions($data): array
{
$session = $data['session'] ?? '';
$sessionId = $data['sessionId'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Fix count tests
2024-02-25 11:14:27 +00:00
$this->assertEquals(2, $response['body']['total']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($sessionId, $response['body']['sessions'][0]['$id']);
Improve tests
2024-03-04 08:23:39 +00:00
$this->assertEmpty($response['body']['sessions'][0]['secret']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals('Windows', $response['body']['sessions'][0]['osName']);
$this->assertEquals('WIN', $response['body']['sessions'][0]['osCode']);
$this->assertEquals('10', $response['body']['sessions'][0]['osVersion']);
$this->assertEquals('browser', $response['body']['sessions'][0]['clientType']);
$this->assertEquals('Chrome', $response['body']['sessions'][0]['clientName']);
$this->assertEquals('CH', $response['body']['sessions'][0]['clientCode']);
$this->assertEquals('70.0', $response['body']['sessions'][0]['clientVersion']);
$this->assertEquals('Blink', $response['body']['sessions'][0]['clientEngine']);
$this->assertEquals('desktop', $response['body']['sessions'][0]['deviceName']);
$this->assertEquals('', $response['body']['sessions'][0]['deviceBrand']);
$this->assertEquals('', $response['body']['sessions'][0]['deviceModel']);
$this->assertEquals($response['body']['sessions'][0]['ip'], filter_var($response['body']['sessions'][0]['ip'], FILTER_VALIDATE_IP));
$this->assertEquals('--', $response['body']['sessions'][0]['countryCode']);
$this->assertEquals('Unknown', $response['body']['sessions'][0]['countryName']);
$this->assertEquals(true, $response['body']['sessions'][0]['current']);
$this->assertNotFalse(\DateTime::createFromFormat('Y-m-d\TH:i:s.uP', $response['body']['sessions'][0]['expire']));
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testCreateAccountSession
*/
public function testGetAccountLogs($data): array
{
sleep(5);
$session = $data['session'] ?? '';
Fix dates
2025-02-25 08:03:37 +00:00
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']['logs']);
$this->assertNotEmpty($response['body']['logs']);
Fix count tests
2024-02-25 11:14:27 +00:00
$this->assertCount(3, $response['body']['logs']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsNumeric($response['body']['total']);
Fix tests
2024-02-25 12:05:14 +00:00
$this->assertEquals("user.create", $response['body']['logs'][2]['event']);
fix: account tests
2023-12-13 11:29:30 +00:00
$this->assertEquals(filter_var($response['body']['logs'][2]['ip'], FILTER_VALIDATE_IP), $response['body']['logs'][2]['ip']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['logs'][2]['time']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals('Windows', $response['body']['logs'][1]['osName']);
$this->assertEquals('WIN', $response['body']['logs'][1]['osCode']);
$this->assertEquals('10', $response['body']['logs'][1]['osVersion']);
$this->assertEquals('browser', $response['body']['logs'][1]['clientType']);
$this->assertEquals('Chrome', $response['body']['logs'][1]['clientName']);
$this->assertEquals('CH', $response['body']['logs'][1]['clientCode']);
$this->assertEquals('70.0', $response['body']['logs'][1]['clientVersion']);
$this->assertEquals('Blink', $response['body']['logs'][1]['clientEngine']);
$this->assertEquals('desktop', $response['body']['logs'][1]['deviceName']);
$this->assertEquals('', $response['body']['logs'][1]['deviceBrand']);
$this->assertEquals('', $response['body']['logs'][1]['deviceModel']);
fix: account tests
2023-12-13 11:29:30 +00:00
$this->assertEquals(filter_var($response['body']['logs'][1]['ip'], FILTER_VALIDATE_IP), $response['body']['logs'][1]['ip']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals('--', $response['body']['logs'][1]['countryCode']);
$this->assertEquals('Unknown', $response['body']['logs'][1]['countryName']);
$this->assertEquals('Windows', $response['body']['logs'][2]['osName']);
$this->assertEquals('WIN', $response['body']['logs'][2]['osCode']);
$this->assertEquals('10', $response['body']['logs'][2]['osVersion']);
$this->assertEquals('browser', $response['body']['logs'][2]['clientType']);
$this->assertEquals('Chrome', $response['body']['logs'][2]['clientName']);
$this->assertEquals('CH', $response['body']['logs'][2]['clientCode']);
$this->assertEquals('70.0', $response['body']['logs'][2]['clientVersion']);
$this->assertEquals('Blink', $response['body']['logs'][2]['clientEngine']);
$this->assertEquals('desktop', $response['body']['logs'][2]['deviceName']);
$this->assertEquals('', $response['body']['logs'][2]['deviceBrand']);
$this->assertEquals('', $response['body']['logs'][2]['deviceModel']);
$this->assertEquals('--', $response['body']['logs'][2]['countryCode']);
$this->assertEquals('Unknown', $response['body']['logs'][2]['countryName']);
$responseLimit = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
Fix failing tests
2024-01-25 16:53:51 +00:00
'queries' => [
Query::limit(1)->toString()
]
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertEquals(200, $responseLimit['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($responseLimit['body']['logs']);
$this->assertNotEmpty($responseLimit['body']['logs']);
$this->assertCount(1, $responseLimit['body']['logs']);
$this->assertIsNumeric($responseLimit['body']['total']);
$this->assertEquals($response['body']['logs'][0], $responseLimit['body']['logs'][0]);
$responseOffset = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
Fix failing tests
2024-01-25 16:53:51 +00:00
'queries' => [
Query::offset(1)->toString()
]
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
$this->assertEquals($responseOffset['headers']['status-code'], 200);
$this->assertIsArray($responseOffset['body']['logs']);
$this->assertNotEmpty($responseOffset['body']['logs']);
Fix tests
2024-02-25 12:05:14 +00:00
$this->assertCount(2, $responseOffset['body']['logs']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsNumeric($responseOffset['body']['total']);
$this->assertEquals($response['body']['logs'][1], $responseOffset['body']['logs'][0]);
$responseLimitOffset = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
Fix failing tests
2024-01-25 16:53:51 +00:00
'queries' => [
Query::offset(1)->toString(),
Query::limit(1)->toString()
]
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertEquals(200, $responseLimitOffset['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($responseLimitOffset['body']['logs']);
$this->assertNotEmpty($responseLimitOffset['body']['logs']);
$this->assertCount(1, $responseLimitOffset['body']['logs']);
$this->assertIsNumeric($responseLimitOffset['body']['total']);
$this->assertEquals($response['body']['logs'][1], $responseLimitOffset['body']['logs'][0]);
Enhance API response handling by adding 'includeTotal' parameter to account endpoints, allowing control over total count calculation for sessions, logs, and identities. Updated tests to verify functionality.
2025-10-21 08:41:41 +00:00
/**
Refactor API parameters to replace 'includeTotal' with 'total' across multiple endpoints for consistency in response handling.
2025-10-29 09:08:08 +00:00
* Test for total=false
Enhance API response handling by adding 'includeTotal' parameter to account endpoints, allowing control over total count calculation for sessions, logs, and identities. Updated tests to verify functionality.
2025-10-21 08:41:41 +00:00
*/
$logsWithIncludeTotalFalse = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
Refactor API parameters to replace 'includeTotal' with 'total' across multiple endpoints for consistency in response handling.
2025-10-29 09:08:08 +00:00
'total' => false
Enhance API response handling by adding 'includeTotal' parameter to account endpoints, allowing control over total count calculation for sessions, logs, and identities. Updated tests to verify functionality.
2025-10-21 08:41:41 +00:00
]);
$this->assertEquals(200, $logsWithIncludeTotalFalse['headers']['status-code']);
$this->assertIsArray($logsWithIncludeTotalFalse['body']);
$this->assertIsArray($logsWithIncludeTotalFalse['body']['logs']);
$this->assertIsInt($logsWithIncludeTotalFalse['body']['total']);
$this->assertEquals(0, $logsWithIncludeTotalFalse['body']['total']);
$this->assertGreaterThan(0, count($logsWithIncludeTotalFalse['body']['logs']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account/logs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
// TODO Add tests for OAuth2 session creation
/**
* @depends testCreateAccountSession
*/
public function testUpdateAccountName($data): array
{
$email = $data['email'] ?? '';
$session = $data['session'] ?? '';
$newName = 'Lorem';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/name', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'name' => $newName
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $email);
$this->assertEquals($response['body']['name'], $newName);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/name', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/name', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), []);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/name', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'name' => 'ocSRq1d3QphHivJyUmYY7WMnrxyjdk5YvVwcDqx2zS0coxESN8RmsQwLWw5Whnf0WbVohuFWTRAaoKgCOO0Y0M7LwgFnZmi8881Y72222222222222222222222222222'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$data['name'] = $newName;
return $data;
}
/**
* @depends testUpdateAccountName
*/
#[Retry(count: 1)]
public function testUpdateAccountPassword($data): array
{
$email = $data['email'] ?? '';
$password = $data['password'] ?? '';
$session = $data['session'] ?? '';
updated invalidation session during the change password in the account endpoint
2025-06-18 08:00:24 +00:00
for ($i = 0; $i < 5; $i++) {
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
$this->assertEquals(201, $response['headers']['status-code']);
sleep(1);
}
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$allSessions = array_map(fn ($sessionDetails) => $sessionDetails['$id'], $response['body']['sessions']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password',
'oldPassword' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $email);
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
$currentSessionId = $data['sessionId'] ?? '';
updated invalidation session during the change password in the account endpoint
2025-06-18 08:00:24 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals(1, $response['body']['total']);
// checking the current session or not
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
$this->assertEquals($currentSessionId, $response['body']['sessions'][0]['$id']);
updated invalidation session during the change password in the account endpoint
2025-06-18 08:00:24 +00:00
$this->assertTrue($response['body']['sessions'][0]['current']);
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
// checking for all non active sessions are cleared
foreach ($allSessions as $sessionId) {
if ($currentSessionId === $sessionId) {
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/current', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(200, $response['headers']['status-code']);
} else {
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/'.$sessionId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(404, $response['headers']['status-code']);
}
}
$newPassword = 'new-password';
// updating the invalidateSession to false to check sessions are not invalidated
$this->updateProjectinvalidateSessionsProperty(false);
for ($i = 0; $i < 5; $i++) {
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $newPassword,
]);
$this->assertEquals(201, $response['headers']['status-code']);
sleep(1);
}
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$allSessions = array_map(fn ($sessionDetails) => $sessionDetails['$id'], $response['body']['sessions']);
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]), [
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
'password' => $newPassword,
'oldPassword' => $newPassword,
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
updated tests and project invaldate session
2025-06-18 20:56:58 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
foreach ($allSessions as $sessionId) {
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/'.$sessionId, headers: array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(200, $response['headers']['status-code']);
}
// setting invalidateSession to true to check the sessions are cleared or not
$this->updateProjectinvalidateSessionsProperty(true);
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => $newPassword,
'oldPassword' => $newPassword,
]);
$this->assertEquals(200, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_GET, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$allSessions = array_map(fn ($sessionDetails) => $sessionDetails['$id'], $response['body']['sessions']);
foreach ($allSessions as $sessionId) {
if ($currentSessionId !== $sessionId) {
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/'.$sessionId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(404, $response['headers']['status-code']);
}
}
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
linting
2025-06-18 20:59:21 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $newPassword,
]);
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), []);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Existing user tries to update password by passing wrong old password -> SHOULD FAIL
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password',
'oldPassword' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Existing user tries to update password without passing old password -> SHOULD FAIL
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$data['password'] = 'new-password';
return $data;
}
/**
* @depends testUpdateAccountPassword
*/
public function testUpdateAccountEmail($data): array
{
$newEmail = uniqid() . 'new@localhost.test';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'email' => $newEmail,
'password' => 'new-password',
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $newEmail);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), []);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
// Test if we can create a new account with the old email
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix account test
2024-12-15 10:49:35 +00:00
'x-appwrite-dev-key' => $this->getProject()['devKey'] ?? ''
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]), [
'userId' => ID::unique(),
refactor: no session alerts for otp and magic-url logins
2024-08-01 18:36:21 +00:00
'email' => $data['email'],
'password' => $data['password'],
'name' => $data['name'],
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $data['email']);
$this->assertEquals($response['body']['name'], $data['name']);
$data['email'] = $newEmail;
return $data;
}
/**
* @depends testUpdateAccountEmail
*/
public function testUpdateAccountPrefs($data): array
{
$newEmail = uniqid() . 'new@localhost.test';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => [
'prefKey1' => 'prefValue1',
'prefKey2' => 'prefValue2',
]
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertEquals('prefValue1', $response['body']['prefs']['prefKey1']);
$this->assertEquals('prefValue2', $response['body']['prefs']['prefKey2']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => '{}'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => '[]'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => '{"test": "value"}'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Prefs size exceeded
*/
$prefsObject = ["longValue" => str_repeat("🍰", 100000)];
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => $prefsObject
]);
$this->assertEquals(400, $response['headers']['status-code']);
// Now let's test the same thing, but with normal symbol instead of multi-byte cake emoji
$prefsObject = ["longValue" => str_repeat("-", 100000)];
$response = $this->client->call(Client::METHOD_PATCH, '/account/prefs', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'prefs' => $prefsObject
]);
$this->assertEquals(400, $response['headers']['status-code']);
return $data;
}
/**
* @depends testUpdateAccountPrefs
*/
public function testCreateAccountVerification($data): array
{
$email = $data['email'] ?? '';
$name = $data['name'] ?? '';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'url' => 'http://localhost/verification',
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['expire']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$lastEmail = $this->getLastEmail();
$this->assertEquals($email, $lastEmail['to'][0]['address']);
$this->assertEquals($name, $lastEmail['to'][0]['name']);
Add project name in email subject
2025-10-06 16:44:29 +00:00
$this->assertEquals('Account Verification for ' . $this->getProject()['name'], $lastEmail['subject']);
tests
2025-07-24 14:09:23 +00:00
$this->assertStringContainsStringIgnoringCase('Verify your email to activate your ' . $this->getProject()['name'] . ' account.', $lastEmail['text']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
update: change method name.
2025-03-29 12:52:59 +00:00
$tokens = $this->extractQueryParamsFromEmailLink($lastEmail['html']);
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
$verification = $tokens['secret'];
Fix tests
2025-07-21 07:59:38 +00:00
$expectedExpire = DateTime::formatTz($response['body']['expire']);
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
$this->assertEquals($expectedExpire, $tokens['expire']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// Secret check
$this->assertArrayHasKey('secret', $tokens);
$this->assertNotEmpty($tokens['secret']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// User ID check
$this->assertArrayHasKey('userId', $tokens);
$this->assertNotEmpty($tokens['userId']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_POST, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'url' => 'localhost/verification',
]);
$this->assertEquals(400, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_POST, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'url' => 'http://remotehost/verification',
]);
$this->assertEquals(400, $response['headers']['status-code']);
$data['verification'] = $verification;
return $data;
}
/**
* @depends testCreateAccountVerification
*/
public function testUpdateAccountVerification($data): array
{
$id = $data['id'] ?? '';
$session = $data['session'] ?? '';
$verification = $data['verification'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'userId' => $id,
'secret' => $verification,
]);
$this->assertEquals(200, $response['headers']['status-code']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'userId' => ID::custom('ewewe'),
'secret' => $verification,
]);
$this->assertEquals(404, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_PUT, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'userId' => $id,
'secret' => 'sdasdasdasd',
]);
$this->assertEquals(401, $response['headers']['status-code']);
return $data;
}
/**
* @depends testUpdateAccountVerification
*/
public function testDeleteAccountSession($data): array
{
$email = $data['email'] ?? '';
$password = $data['password'] ?? '';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
$sessionNewId = $response['body']['$id'];
Merge branch '1.4.x' of https://github.com/appwrite/appwrite into feat-ssr
2023-12-11 16:52:14 +00:00
$sessionNew = $response['cookies']['a_session_' . $this->getProject()['$id']];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_DELETE, '/account/sessions/' . $sessionNewId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(204, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testUpdateAccountVerification
*/
public function testDeleteAccountSessionCurrent($data): array
{
$email = $data['email'] ?? '';
$password = $data['password'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
Merge branch '1.4.x' of https://github.com/appwrite/appwrite into feat-ssr
2023-12-11 16:52:14 +00:00
$sessionNew = $response['cookies']['a_session_' . $this->getProject()['$id']];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
'x-appwrite-project' => $this->getProject()['$id'],
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_DELETE, '/account/sessions/current', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
'x-appwrite-project' => $this->getProject()['$id'],
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(204, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $sessionNew,
'x-appwrite-project' => $this->getProject()['$id'],
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testUpdateAccountVerification
*/
public function testDeleteAccountSessions($data): array
{
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_DELETE, '/account/sessions', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(204, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Create new fallback session
*/
$email = $data['email'] ?? '';
$password = $data['password'] ?? '';
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
Merge branch '1.4.x' of https://github.com/appwrite/appwrite into feat-ssr
2023-12-11 16:52:14 +00:00
$data['session'] = $response['cookies']['a_session_' . $this->getProject()['$id']];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testDeleteAccountSession
*/
public function testCreateAccountRecovery($data): array
{
$email = $data['email'] ?? '';
$name = $data['name'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'url' => 'http://localhost/recovery',
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['expire']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$lastEmail = $this->getLastEmail();
$this->assertEquals($email, $lastEmail['to'][0]['address']);
$this->assertEquals($name, $lastEmail['to'][0]['name']);
Add project name in email subject
2025-10-06 16:44:29 +00:00
$this->assertEquals('Password Reset for ' . $this->getProject()['name'], $lastEmail['subject']);
tests
2025-07-24 14:09:23 +00:00
$this->assertStringContainsStringIgnoringCase('Reset your ' . $this->getProject()['name'] . ' password using the link.', $lastEmail['text']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
update: change method name.
2025-03-29 12:52:59 +00:00
$tokens = $this->extractQueryParamsFromEmailLink($lastEmail['html']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// Secret check
$this->assertArrayHasKey('secret', $tokens);
$this->assertNotEmpty($tokens['secret']);
$this->assertNotFalse($response['body']['secret']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// User ID check
$this->assertArrayHasKey('userId', $tokens);
$this->assertNotEmpty($tokens['userId']);
$this->assertNotFalse($response['body']['userId']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// Expire check
$this->assertArrayHasKey('expire', $tokens);
$this->assertNotEmpty($tokens['expire']);
$this->assertEquals(
Fix tests
2025-07-21 07:59:38 +00:00
DateTime::formatTz($response['body']['expire']),
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
$tokens['expire']
);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_POST, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'url' => 'localhost/recovery',
]);
$this->assertEquals(400, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_POST, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'url' => 'http://remotehost/recovery',
]);
$this->assertEquals(400, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_POST, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => 'not-found@localhost.test',
'url' => 'http://localhost/recovery',
]);
$this->assertEquals(404, $response['headers']['status-code']);
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
$data['recovery'] = $tokens['secret'];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
return $data;
}
/**
* @depends testCreateAccountRecovery
*/
#[Retry(count: 1)]
public function testUpdateAccountRecovery($data): array
{
$id = $data['id'] ?? '';
$recovery = $data['recovery'] ?? '';
tests: fix
2023-12-05 11:00:26 +00:00
$newPassword = 'test-recovery';
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => $recovery,
tests: fix
2023-12-05 11:00:26 +00:00
'password' => $newPassword,
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
$this->assertEquals(200, $response['headers']['status-code']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::custom('ewewe'),
'secret' => $recovery,
tests: fix
2023-12-05 11:00:26 +00:00
'password' => $newPassword,
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
$this->assertEquals(404, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_PUT, '/account/recovery', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => 'sdasdasdasd',
tests: fix
2023-12-05 11:00:26 +00:00
'password' => $newPassword,
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
]);
$this->assertEquals(401, $response['headers']['status-code']);
return $data;
}
Update base template for session alert email
2025-10-31 12:22:47 +00:00
public function testSessionAlert(): void
test: session alerts
2024-06-24 13:39:47 +00:00
{
chore: fix template
2024-06-26 08:42:01 +00:00
$email = uniqid() . 'session-alert@appwrite.io';
$password = 'password123';
$name = 'Session Alert Tester';
test: session alerts
2024-06-24 13:39:47 +00:00
chore: fix template
2024-06-26 08:42:01 +00:00
// Enable session alerts
test: session alerts
2024-06-24 13:39:47 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/auth/session-alerts', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
Fix test
2024-07-03 08:02:16 +00:00
'alerts' => true,
test: session alerts
2024-06-24 13:39:47 +00:00
]);
$this->assertEquals(200, $response['headers']['status-code']);
chore: fix template
2024-06-26 08:42:01 +00:00
// Create a new account
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix account test
2024-12-15 10:49:35 +00:00
'x-appwrite-dev-key' => $this->getProject()['devKey'] ?? ''
chore: fix template
2024-06-26 08:42:01 +00:00
]), [
'userId' => ID::unique(),
'email' => $email,
'password' => $password,
'name' => $name,
]);
$this->assertEquals(201, $response['headers']['status-code']);
test: update session alert tests
2024-07-16 12:31:32 +00:00
// Create first session for the new account
test: session alerts
2024-06-24 13:39:47 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: test
2024-06-26 14:46:12 +00:00
'user-agent' => 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36',
test: session alerts
2024-06-24 13:39:47 +00:00
]), [
'email' => $email,
'password' => $password,
]);
$this->assertEquals(201, $response['headers']['status-code']);
test: update session alert tests
2024-07-16 12:31:32 +00:00
// Create second session for the new account
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'user-agent' => 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36',
]), [
'email' => $email,
'password' => $password,
]);
chore: fix template
2024-06-26 08:42:01 +00:00
// Check the alert email
test: session alerts
2024-06-24 13:39:47 +00:00
$lastEmail = $this->getLastEmail();
$this->assertEquals($email, $lastEmail['to'][0]['address']);
test: update session alert tests
2024-07-16 12:31:32 +00:00
$this->assertStringContainsString('Security alert: new session', $lastEmail['subject']);
test: session alerts
2024-06-24 13:39:47 +00:00
$this->assertStringContainsString($response['body']['ip'], $lastEmail['text']); // IP Address
fix: test
2024-06-26 14:46:12 +00:00
$this->assertStringContainsString('Unknown', $lastEmail['text']); // Country
$this->assertStringContainsString($response['body']['clientName'], $lastEmail['text']); // Client name
Update base template for session alert email
2025-10-31 12:22:47 +00:00
$this->assertStringNotContainsStringIgnoringCase('Appwrite logo', $lastEmail['html']);
refactor: no session alerts for otp and magic-url logins
2024-08-01 18:36:21 +00:00
// Verify no alert sent in OTP login
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::unique(),
'email' => 'otpuser2@appwrite.io'
]);
$this->assertEquals($response['headers']['status-code'], 201);
$this->assertNotEmpty($response['body']['$id']);
$this->assertNotEmpty($response['body']['$createdAt']);
$this->assertNotEmpty($response['body']['userId']);
$this->assertNotEmpty($response['body']['expire']);
$this->assertEmpty($response['body']['secret']);
$this->assertEmpty($response['body']['phrase']);
tests
2025-07-24 14:09:23 +00:00
$this->assertStringContainsStringIgnoringCase('New login detected on '. $this->getProject()['name'], $lastEmail['text']);
refactor: no session alerts for otp and magic-url logins
2024-08-01 18:36:21 +00:00
$userId = $response['body']['userId'];
$lastEmail = $this->getLastEmail();
$this->assertEquals('otpuser2@appwrite.io', $lastEmail['to'][0]['address']);
$this->assertEquals('OTP for ' . $this->getProject()['name'] . ' Login', $lastEmail['subject']);
fix: other remaining tests.
2025-03-29 12:51:25 +00:00
// Find 6 concurrent digits in email text - OTP
refactor: no session alerts for otp and magic-url logins
2024-08-01 18:36:21 +00:00
preg_match_all("/\b\d{6}\b/", $lastEmail['text'], $matches);
$code = ($matches[0] ?? [])[0] ?? '';
$this->assertNotEmpty($code);
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $userId,
'secret' => $code
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertEquals($userId, $response['body']['userId']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertNotEmpty($response['body']['expire']);
$this->assertEmpty($response['body']['secret']);
$lastEmailId = $lastEmail['id'];
$lastEmail = $this->getLastEmail();
$this->assertEquals($lastEmailId, $lastEmail['id']);
test: session alerts
2024-06-24 13:39:47 +00:00
}
Fixed OAuth2 tests
2021-07-17 21:21:33 +00:00
/**
* @depends testCreateAccountSession
*/
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
public function testCreateOAuth2AccountSession(): array
New OAuth e2e test
2020-01-13 15:15:52 +00:00
{
$provider = 'mock';
$appId = '1';
$secret = '123456';
/**
* Test for SUCCESS
*/
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
New OAuth e2e test
2020-01-13 15:15:52 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
fix test
2023-01-17 01:17:37 +00:00
'enabled' => true,
New OAuth e2e test
2020-01-13 15:15:52 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
New OAuth e2e test
2020-01-13 15:15:52 +00:00
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/oauth2/' . $provider, array_merge([
New OAuth e2e test
2020-01-13 15:15:52 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
Updated $uid to $id
2020-02-17 07:16:11 +00:00
'x-appwrite-project' => $this->getProject()['$id'],
New OAuth e2e test
2020-01-13 15:15:52 +00:00
]), [
Updated naming from OAuth to OAuth2
2020-02-16 11:41:03 +00:00
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
New OAuth e2e test
2020-01-13 15:15:52 +00:00
]);
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals('success', $response['body']['result']);
provider disabled test
2023-02-14 05:56:14 +00:00
/**
* Test for Failure when disabled
*/
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
'enabled' => false,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
provider disabled test
2023-02-14 05:56:14 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/oauth2/' . $provider, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
]);
fix error code
2023-02-14 06:07:06 +00:00
$this->assertEquals(412, $response['headers']['status-code']);
provider disabled test
2023-02-14 05:56:14 +00:00
New OAuth e2e test
2020-01-13 15:15:52 +00:00
return [];
}
Fixed tests
2020-12-27 20:32:39 +00:00
Handle OIDC well-known endpoint errors
2025-10-02 09:28:55 +00:00
public function testCreateOidcOAuth2Token(): array
{
$provider = 'oidc';
$appId = '1';
// Valid well-known configuration
$secret = '{
"wellKnownEndpoint": "https://accounts.google.com/.well-known/openid-configuration",
"authorizationEndpoint": "https://accounts.google.com/o/oauth2/v2/auth",
"tokenEndpoint": "https://oauth2.googleapis.com/token",
"userinfoEndpoint": "https://openidconnect.googleapis.com/v1/userinfo"
}';
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
'enabled' => true,
]);
$this->assertEquals(200, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_GET, '/account/tokens/oauth2/' . $provider, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'provider' => $provider,
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
], true, false);
$this->assertEquals(301, $response['headers']['status-code']);
// Invalid well-known configuration
$secret = '{}';
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
'enabled' => true,
]);
$this->assertEquals(200, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_GET, '/account/tokens/oauth2/' . $provider, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'provider' => $provider,
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
]);
$this->assertEquals(500, $response['headers']['status-code']);
return [];
}
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
public function testBlockedAccount(): array
Fixed tests
2020-12-27 20:32:39 +00:00
{
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$email = uniqid() . 'user@localhost.test';
Fixed tests
2020-12-27 20:32:39 +00:00
$password = 'password';
$name = 'User Name (blocked)';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::unique(),
Fixed tests
2020-12-27 20:32:39 +00:00
'email' => $email,
'password' => $password,
'name' => $name,
]);
$id = $response['body']['$id'];
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
Fixed tests
2020-12-27 20:32:39 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
Fixed tests
2020-12-27 20:32:39 +00:00
$sessionId = $response['body']['$id'];
fix: failing tests
2023-12-08 23:17:13 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
Fixed tests
2020-12-27 20:32:39 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Fixed tests
2020-12-27 20:32:39 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Fixed tests
2020-12-27 20:32:39 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/users/' . $id . '/status', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
feat(db-refactor): user status now boolean
2021-07-14 11:02:12 +00:00
'status' => false,
Fixed tests
2020-12-27 20:32:39 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Fixed tests
2020-12-27 20:32:39 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
return [];
}
public function testSelfBlockedAccount(): array
{
$email = uniqid() . 'user55@localhost.test';
$password = 'password';
$name = 'User Name (self blocked)';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::unique(),
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'email' => $email,
'password' => $password,
'name' => $name,
]);
$id = $response['body']['$id'];
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
fix: failing tests
2023-12-08 23:17:13 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/status', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
], [
'status' => false,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Update the Update Account Status API to clear the cookie After a user updates their status, their session no longer works however, the cookie may still exist in their browser, preventing other API calls from completing successfully.
2023-05-23 17:40:31 +00:00
$this->assertStringContainsString('a_session_' . $this->getProject()['$id'] . '=deleted', $response['headers']['set-cookie']);
$this->assertEquals('[]', $response['headers']['x-fallback-cookies']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Fixed tests
2020-12-27 20:32:39 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
Fixed tests
2020-12-27 20:32:39 +00:00
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
Fixed tests
2020-12-27 20:32:39 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
Fixed tests
2020-12-27 20:32:39 +00:00
return [];
}
Added tests
2020-12-28 20:31:55 +00:00
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
public function testCreateJWT(): array
Added tests
2020-12-28 20:31:55 +00:00
{
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$email = uniqid() . 'user@localhost.test';
Added tests
2020-12-28 20:31:55 +00:00
$password = 'password';
$name = 'User Name (JWT)';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::unique(),
Added tests
2020-12-28 20:31:55 +00:00
'email' => $email,
'password' => $password,
'name' => $name,
]);
$id = $response['body']['$id'];
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
Added tests
2020-12-28 20:31:55 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
$sessionId = $response['body']['$id'];
fix: failing tests
2023-12-08 23:17:13 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
Added tests
2020-12-28 20:31:55 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Added tests
2020-12-28 20:31:55 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/jwt', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Added tests
2020-12-28 20:31:55 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
Fix JWT test
2025-12-23 15:31:17 +00:00
$this->assertEquals(119, $response['headers']['x-ratelimit-remaining']);
Added tests
2020-12-28 20:31:55 +00:00
$this->assertNotEmpty($response['body']['jwt']);
$this->assertIsString($response['body']['jwt']);
$jwt = $response['body']['jwt'];
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-jwt' => 'wrong-token',
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-jwt' => $jwt,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_DELETE, '/account/sessions/' . $sessionId, array_merge([
Added tests
2020-12-28 20:31:55 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Added tests
2020-12-28 20:31:55 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(204, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-jwt' => $jwt,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
Add test for JWT with custom duration
2025-12-22 17:19:50 +00:00
// Test JWT with custom duration
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
$this->assertEquals(201, $response['headers']['status-code']);
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
$response = $this->client->call(Client::METHOD_POST, '/account/jwt', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'duration' => 5
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['jwt']);
$jwt = $response['body']['jwt'];
// Ensure JWT works before expiration
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-jwt' => $jwt,
]));
$this->assertEquals(200, $response['headers']['status-code']);
// Wait for JWT to expire
\sleep(6);
// Ensure JWT no longer works after expiration
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-jwt' => $jwt,
]));
$this->assertEquals(401, $response['headers']['status-code']);
Added tests
2020-12-28 20:31:55 +00:00
return [];
}
add tests
2021-02-16 13:49:21 +00:00
public function testCreateAnonymousAccount()
{
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/anonymous', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]);
add env var and console prevention
2021-02-23 22:43:05 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix(account): add anon sessiom id
2021-05-20 13:41:55 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEmpty($response['body']['secret']);
add tests
2021-02-16 13:49:21 +00:00
fix: failing tests
2023-12-08 23:17:13 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
add tests
2021-02-16 13:49:21 +00:00
Track a user's last activity A user will have an accessedAt timestamp that will update at most once per day if they make some API call. This timestamp can then be used find active users and calculate daily, weekly, and monthly active users. To ensure consistent updates to the user the $user from the resource is always updated to the user making the request, including requests like Create Account, Update Team Membership Status, and Create Phone Session (confirmation). This ensures the shutdown can update the accessedAt timestamp if there was a $user set.
2023-07-07 00:12:39 +00:00
\usleep(1000 * 30); // wait for 30ms to let the shutdown update accessedAt
$apiKey = $this->getProject()['apiKey'];
$userId = $response['body']['userId'];
$response = $this->client->call(Client::METHOD_GET, '/users/' . $userId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $apiKey,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Track a user's last activity A user will have an accessedAt timestamp that will update at most once per day if they make some API call. This timestamp can then be used find active users and calculate daily, weekly, and monthly active users. To ensure consistent updates to the user the $user from the resource is always updated to the user making the request, including requests like Create Account, Update Team Membership Status, and Create Phone Session (confirmation). This ensures the shutdown can update the accessedAt timestamp if there was a $user set.
2023-07-07 00:12:39 +00:00
$this->assertArrayHasKey('accessedAt', $response['body']);
Add missing accessedAt values when creating users
2023-08-23 01:34:23 +00:00
Track a user's last activity A user will have an accessedAt timestamp that will update at most once per day if they make some API call. This timestamp can then be used find active users and calculate daily, weekly, and monthly active users. To ensure consistent updates to the user the $user from the resource is always updated to the user making the request, including requests like Create Account, Update Team Membership Status, and Create Phone Session (confirmation). This ensures the shutdown can update the accessedAt timestamp if there was a $user set.
2023-07-07 00:12:39 +00:00
$this->assertNotEmpty($response['body']['accessedAt']);
add tests
2021-02-16 13:49:21 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/anonymous', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add tests
2021-02-16 13:49:21 +00:00
]);
add env var and console prevention
2021-02-23 22:43:05 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
add tests
2021-02-16 13:49:21 +00:00
return $session;
}
Throw error when email is not available for account verification
2025-09-22 08:56:23 +00:00
/**
* @depends testCreateAnonymousAccount
*/
public function testCreateAnonymousAccountVerification($session): array
{
$response = $this->client->call(Client::METHOD_POST, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'url' => 'http://localhost/verification',
]);
change error codes
2025-10-03 10:59:39 +00:00
$this->assertEquals(400, $response['body']['code']);
Throw error when email is not available for account verification
2025-09-22 08:56:23 +00:00
$this->assertEquals('user_email_not_found', $response['body']['type']);
return [];
}
add tests
2021-02-16 13:49:21 +00:00
/**
* @depends testCreateAnonymousAccount
*/
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
public function testUpdateAnonymousAccountPassword($session)
add tests
2021-02-16 13:49:21 +00:00
{
/**
feat: review comments
2021-05-06 13:21:36 +00:00
* Test for FAILURE
add tests
2021-02-16 13:49:21 +00:00
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add tests
2021-02-16 13:49:21 +00:00
]), [
update tests
2021-02-16 14:14:36 +00:00
'oldPassword' => '',
add tests
2021-02-16 13:49:21 +00:00
]);
feat: review comments
2021-05-06 13:21:36 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
add tests
2021-02-16 13:49:21 +00:00
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
return $session;
add tests
2021-02-16 13:49:21 +00:00
}
update tests
2021-02-16 14:14:36 +00:00
/**
* @depends testUpdateAnonymousAccountPassword
*/
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
public function testUpdateAnonymousAccountEmail($session)
update tests
2021-02-16 14:14:36 +00:00
{
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$email = uniqid() . 'new@localhost.test';
update tests
2021-02-16 14:14:36 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
update tests
2021-02-16 14:14:36 +00:00
]), [
'email' => $email,
'password' => '',
]);
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
update tests
2021-02-16 14:14:36 +00:00
return [];
}
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
public function testConvertAnonymousAccount()
add tests
2021-02-16 13:49:21 +00:00
{
add tests for oauth2
2021-02-16 15:51:08 +00:00
$session = $this->testCreateAnonymousAccount();
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$email = uniqid() . 'new@localhost.test';
add tests
2021-02-16 13:49:21 +00:00
$password = 'new-password';
add test to convert to existing email
2021-02-16 15:01:15 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_POST, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::unique(),
add test to convert to existing email
2021-02-16 15:01:15 +00:00
'email' => $email,
'password' => $password
]);
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add test to convert to existing email
2021-02-16 15:01:15 +00:00
]), [
'email' => $email,
'password' => $password,
]);
fix: tests
2024-03-04 09:36:02 +00:00
$this->assertEquals(409, $response['headers']['status-code']);
add test to convert to existing email
2021-02-16 15:01:15 +00:00
add tests
2021-02-16 13:49:21 +00:00
/**
* Test for SUCCESS
*/
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$email = uniqid() . 'new@localhost.test';
add test to convert to existing email
2021-02-16 15:01:15 +00:00
add tests
2021-02-16 13:49:21 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add tests
2021-02-16 13:49:21 +00:00
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
add tests
2021-02-16 13:49:21 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
add tests
2021-02-16 13:49:21 +00:00
$this->assertEquals($response['body']['email'], $email);
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
add test to login after converting
2021-02-16 14:20:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
update e2e test for anonymous user verification
2023-07-06 18:50:13 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/verification', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fixed linting errors
2023-07-11 04:03:02 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
update e2e test for anonymous user verification
2023-07-06 18:50:13 +00:00
]), [
'url' => 'http://localhost'
]);
fixed linting errors
2023-07-11 04:03:02 +00:00
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
add test to login after converting
2021-02-16 14:20:15 +00:00
add tests
2021-02-16 13:49:21 +00:00
return [];
}
add tests for oauth2
2021-02-16 15:51:08 +00:00
fix: anonymous account tests
2021-04-16 16:50:16 +00:00
public function testConvertAnonymousAccountOAuth2()
add tests for oauth2
2021-02-16 15:51:08 +00:00
{
$session = $this->testCreateAnonymousAccount();
$provider = 'mock';
$appId = '1';
$secret = '123456';
/**
* Test for SUCCESS
*/
Fixed OAuth2 tests
2021-07-17 21:21:33 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Fixed OAuth2 tests
2021-07-17 21:21:33 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Fixed OAuth2 tests
2021-07-17 21:21:33 +00:00
$userId = $response['body']['$id'] ?? '';
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
add tests for oauth2
2021-02-16 15:51:08 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
fix test
2023-01-17 01:17:37 +00:00
'enabled' => true,
add tests for oauth2
2021-02-16 15:51:08 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
add tests for oauth2
2021-02-16 15:51:08 +00:00
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/oauth2/' . $provider, array_merge([
add tests for oauth2
2021-02-16 15:51:08 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add tests for oauth2
2021-02-16 15:51:08 +00:00
]), [
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
]);
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
add tests for oauth2
2021-02-16 15:51:08 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
feat: cors service
2025-12-07 20:29:45 +00:00
$sessionCookieKey = 'a_session_' . $this->getProject()['$id'];
$this->assertArrayHasKey(
$sessionCookieKey,
$response['cookies'],
"Failed asserting that session cookie '$sessionCookieKey' is set. Cookies: " . json_encode($response['cookies'])
);
$session = $response['cookies'][$sessionCookieKey];
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
add tests for oauth2
2021-02-16 15:51:08 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
add tests for oauth2
2021-02-16 15:51:08 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Fixed OAuth2 tests
2021-07-17 21:21:33 +00:00
$this->assertEquals($response['body']['$id'], $userId);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertEquals('User Name', $response['body']['name']);
$this->assertEquals('useroauth@localhost.test', $response['body']['email']);
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
// Since we only support one oauth user, let's also check updateSession here
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/current', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
]));
$this->assertEquals(200, $response['headers']['status-code']);
Improve tests
2024-03-04 08:23:39 +00:00
$this->assertEmpty($response['body']['secret']);
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
$this->assertEquals('123456', $response['body']['providerAccessToken']);
$this->assertEquals('tuvwxyz', $response['body']['providerRefreshToken']);
change function names
2022-07-13 14:02:49 +00:00
$this->assertGreaterThan(DateTime::addSeconds(new \DateTime(), 14400 - 5), $response['body']['providerAccessTokenExpiry']); // 5 seconds allowed networking delay
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
$initialExpiry = $response['body']['providerAccessTokenExpiry'];
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
sleep(3);
$response = $this->client->call(Client::METHOD_PATCH, '/account/sessions/current', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Implement new test for oauth and improve mocks
2022-02-04 10:23:06 +00:00
]));
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals('123456', $response['body']['providerAccessToken']);
$this->assertEquals('tuvwxyz', $response['body']['providerRefreshToken']);
$this->assertNotEquals($initialExpiry, $response['body']['providerAccessTokenExpiry']);
add tests for oauth2
2021-02-16 15:51:08 +00:00
Fix identity connecting - Add MockUnverified OAuth2 provider config - Add /v1/mock/tests/general/oauth2/user-unverified endpoint - Add MockUnverified class for unverified OAuth2 flow - Update Mock::isEmailVerified to respect user['verified'] flag - Add end-to-end tests for linking unverified and verified OAuth2 users - Enable stopOnFailure in phpunit.xml
2025-12-18 12:44:04 +00:00
// Clean up - delete the user
$response = $this->client->call(Client::METHOD_DELETE, '/users/' . $userId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
]));
$this->assertEquals(204, $response['headers']['status-code']);
return [];
}
public function testOAuthUnverifiedEmailCannotLinkToExistingAccount()
{
$provider = 'mock-unverified';
$appId = '1';
$secret = '123456';
// First, create a user with the same email that the unverified OAuth will try to use
$email = 'useroauthunverified@localhost.test';
$password = 'password';
$response = $this->client->call(Client::METHOD_POST, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
], [
'userId' => ID::unique(),
'email' => $email,
'password' => $password,
]);
$this->assertEquals(201, $response['headers']['status-code']);
$existingUserId = $response['body']['$id'];
// Enable the mock-unverified provider
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
'enabled' => true,
]);
$this->assertEquals(200, $response['headers']['status-code']);
// Attempt OAuth login with unverified email - should fail because existing user has same email
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/oauth2/' . $provider, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
]);
$this->assertEquals(400, $response['headers']['status-code']);
$this->assertEquals('failure', $response['body']['result']);
// Clean up - delete the user
$response = $this->client->call(Client::METHOD_DELETE, '/users/' . $existingUserId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
]));
$this->assertEquals(204, $response['headers']['status-code']);
return [];
}
public function testOAuthVerifiedEmailCanLinkToExistingAccount()
{
$provider = 'mock';
$appId = '1';
$secret = '123456';
$email = 'useroauth@localhost.test';
// Create a user with the same email that the verified OAuth will try to use
$response = $this->client->call(Client::METHOD_POST, '/account', [
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
], [
'userId' => ID::unique(),
'email' => $email,
'password' => 'password',
]);
$this->assertEquals(201, $response['headers']['status-code']);
$existingUserId = $response['body']['$id'];
// Enable the mock provider
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/oauth2', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'provider' => $provider,
'appId' => $appId,
'secret' => $secret,
'enabled' => true,
]);
$this->assertEquals(200, $response['headers']['status-code']);
// Attempt OAuth login with verified email - should succeed and link to existing account
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/oauth2/' . $provider, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'success' => 'http://localhost/v1/mock/tests/general/oauth2/success',
'failure' => 'http://localhost/v1/mock/tests/general/oauth2/failure',
]);
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals('success', $response['body']['result']);
// Verify the OAuth identity was linked to the existing user
$sessionCookieKey = 'a_session_' . $this->getProject()['$id'];
$session = $response['cookies'][$sessionCookieKey];
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals($existingUserId, $response['body']['$id']);
$this->assertEquals($email, $response['body']['email']);
// Clean up - delete the user
$response = $this->client->call(Client::METHOD_DELETE, '/users/' . $existingUserId, array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
]));
$this->assertEquals(204, $response['headers']['status-code']);
add tests for oauth2
2021-02-16 15:51:08 +00:00
return [];
}
Add Tests
2021-06-16 10:41:15 +00:00
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
public function testGetSessionByID()
{
Add Tests
2021-06-16 10:41:15 +00:00
$session = $this->testCreateAnonymousAccount();
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/current', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Add Tests
2021-06-16 10:41:15 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Improve tests
2024-03-04 08:23:39 +00:00
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertEquals('anonymous', $response['body']['provider']);
Add Tests
2021-06-16 10:41:15 +00:00
$sessionID = $response['body']['$id'];
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/' . $sessionID, array_merge([
Add Tests
2021-06-16 10:41:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Add Tests
2021-06-16 10:41:15 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
Improve tests
2024-03-04 08:23:39 +00:00
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertEquals('anonymous', $response['body']['provider']);
Add Tests
2021-06-16 10:41:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account/sessions/97823askjdkasd80921371980', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
fix: tests and generate specs
2022-05-16 10:11:37 +00:00
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
Add Tests
2021-06-16 10:41:15 +00:00
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(404, $response['headers']['status-code']);
Add Tests
2021-06-16 10:41:15 +00:00
}
fix(user): search integrity
2022-04-26 10:07:33 +00:00
/**
* @depends testUpdateAccountName
*/
public function testUpdateAccountNameSearch($data): void
{
$id = $data['id'] ?? '';
$newName = 'Lorem';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/users', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
Consolidate List Users API params Replace search, limit, offset, cursor, cursorDirection, and orderType params with a single queries param since the Queries V2 change now allows for different types of queries.
2022-08-15 19:35:50 +00:00
'search' => $newName,
fix(user): search integrity
2022-04-26 10:07:33 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['users']);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertCount(2, $response['body']['users']);
$this->assertEquals($newName, $response['body']['users'][1]['name']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
$response = $this->client->call(Client::METHOD_GET, '/users', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
Consolidate List Users API params Replace search, limit, offset, cursor, cursorDirection, and orderType params with a single queries param since the Queries V2 change now allows for different types of queries.
2022-08-15 19:35:50 +00:00
'search' => $id,
fix(user): search integrity
2022-04-26 10:07:33 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['users']);
$this->assertCount(1, $response['body']['users']);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals($newName, $response['body']['users'][0]['name']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
}
/**
* @depends testUpdateAccountEmail
*/
public function testUpdateAccountEmailSearch($data): void
{
$id = $data['id'] ?? '';
$email = $data['email'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_GET, '/users', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
Consolidate List Users API params Replace search, limit, offset, cursor, cursorDirection, and orderType params with a single queries param since the Queries V2 change now allows for different types of queries.
2022-08-15 19:35:50 +00:00
'search' => '"' . $email . '"',
fix(user): search integrity
2022-04-26 10:07:33 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['users']);
$this->assertCount(1, $response['body']['users']);
$this->assertEquals($response['body']['users'][0]['email'], $email);
$response = $this->client->call(Client::METHOD_GET, '/users', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
Consolidate List Users API params Replace search, limit, offset, cursor, cursorDirection, and orderType params with a single queries param since the Queries V2 change now allows for different types of queries.
2022-08-15 19:35:50 +00:00
'search' => $id,
fix(user): search integrity
2022-04-26 10:07:33 +00:00
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
fix(user): search integrity
2022-04-26 10:07:33 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['users']);
$this->assertCount(1, $response['body']['users']);
$this->assertEquals($response['body']['users'][0]['email'], $email);
}
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
public function testCreatePhone(): array
{
$number = '+123456789';
/**
* Test for SUCCESS
*/
feat: Matej renaming plan
2023-11-30 11:35:52 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/phone', array_merge([
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::unique(),
Adpated tests
2022-08-14 18:09:24 +00:00
'phone' => $number,
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
test: fix magic url assertions
2023-10-10 13:36:53 +00:00
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['expire']));
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$userId = $response['body']['userId'];
tests: fix flaky account tests commit-id:3865765d
2025-06-02 16:09:03 +00:00
$smsRequest = $this->assertLastRequest(function (array $request) use ($number) {
$this->assertEquals('Appwrite Mock Message Sender', $request['headers']['User-Agent']);
$this->assertEquals('username', $request['headers']['X-Username']);
$this->assertEquals('password', $request['headers']['X-Key']);
$this->assertEquals('POST', $request['method']);
$this->assertEquals('+123456789', $request['data']['from']);
$this->assertEquals($number, $request['data']['to']);
Fix flakyness of account tests
2025-06-26 16:07:59 +00:00
}, Scope::REQUEST_TYPE_SMS);
WIP integrate messaging library (cherry picked from commit 9a25f77e3e7e76f6c93cc3ce1985f43426a0debf) # Conflicts: # app/workers/messaging.php # src/Appwrite/SMS/Adapter/Mock.php # tests/e2e/Services/Account/AccountCustomClientTest.php
2022-09-28 05:45:07 +00:00
$data['token'] = $smsRequest['data']['message'];
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$data['id'] = $userId;
$data['number'] = $number;
Try fix phone test
2024-02-20 12:54:17 +00:00
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::unique()
]);
$this->assertEquals(400, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
return $data;
}
/**
* @depends testCreatePhone
*/
public function testCreateSessionWithPhone(array $data): array
{
$id = $data['id'] ?? '';
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
$token = explode(" ", $data['token'])[0] ?? '';
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$number = $data['number'] ?? '';
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::custom('ewewe'),
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
'secret' => $token,
]);
feat: replace session confirmation endpoints
2023-10-12 13:38:32 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => 'sdasdasdasd',
]);
$this->assertEquals(401, $response['headers']['status-code']);
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => $token,
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertNotEmpty($response['body']['userId']);
fix: failing tests
2023-12-08 23:17:13 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
addressing comments
2023-02-05 20:39:41 +00:00
$this->assertEquals(true, (new DatetimeValidator())->isValid($response['body']['registration']));
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertEquals($response['body']['phone'], $number);
$this->assertTrue($response['body']['phoneVerification']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => $token,
]);
$this->assertEquals(401, $response['headers']['status-code']);
$data['session'] = $session;
return $data;
}
/**
* @depends testCreateSessionWithPhone
*/
public function testConvertPhoneToPassword(array $data): array
{
$session = $data['session'];
$email = uniqid() . 'new@localhost.test';
$password = 'new-password';
/**
* Test for SUCCESS
*/
$email = uniqid() . 'new@localhost.test';
$response = $this->client->call(Client::METHOD_PATCH, '/account/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertEquals($response['body']['email'], $email);
feat: account sessions for emails
2022-06-14 08:17:50 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => $password,
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
return $data;
}
/**
* @depends testConvertPhoneToPassword
*/
public function testUpdatePhone(array $data): array
{
$newPhone = '+45632569856';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
Adpated tests
2022-08-14 18:09:24 +00:00
'phone' => $newPhone,
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
'password' => 'new-password'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$this->assertEquals($response['body']['phone'], $newPhone);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), []);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
$data['phone'] = $newPhone;
return $data;
}
test: e2e universal token
2023-10-11 13:21:20 +00:00
/**
* @depends testGetAccountSessions
* @depends testGetAccountLogs
*/
test: rename create session test
2024-01-09 12:44:50 +00:00
public function testCreateSession(array $data): array
test: e2e universal token
2023-10-11 13:21:20 +00:00
{
tests: fix
2023-12-05 11:00:26 +00:00
$response = $this->client->call(Client::METHOD_POST, '/users/' . $data['id'] . '/tokens', [
test: e2e universal token
2023-10-11 13:21:20 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
test: fix create custom session params
2023-11-02 13:15:29 +00:00
], [
'expire' => 60
test: e2e universal token
2023-10-11 13:21:20 +00:00
]);
tests: fix
2023-12-05 11:00:26 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: e2e universal token
2023-10-11 13:21:20 +00:00
$userId = $response['body']['userId'];
$secret = $response['body']['secret'];
/**
* Test for SUCCESS
*/
test: fix puts that should be posts
2024-01-09 18:05:21 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', [
test: e2e universal token
2023-10-11 13:21:20 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
], [
'userId' => $userId,
tests: fix
2023-12-05 11:00:26 +00:00
'secret' => $secret
test: e2e universal token
2023-10-11 13:21:20 +00:00
]);
$this->assertEquals(201, $response['headers']['status-code']);
tests: fix
2023-12-05 11:00:26 +00:00
$this->assertEquals($data['id'], $response['body']['userId']);
test: e2e universal token
2023-10-11 13:21:20 +00:00
$this->assertNotEmpty($response['body']['$id']);
$this->assertNotEmpty($response['body']['expire']);
feat: replace session confirmation endpoints
2023-10-12 13:38:32 +00:00
$this->assertEmpty($response['body']['secret']);
chore: added test cases for forwarded user agent
2025-01-27 13:58:46 +00:00
$this->assertEquals('browser', $response['body']['clientType']);
$this->assertEquals('CH', $response['body']['clientCode']);
$this->assertEquals('Chrome', $response['body']['clientName']);
// Forwarded User Agent with API Key
$response = $this->client->call(Client::METHOD_POST, '/users/' . $data['id'] . '/tokens', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
'expire' => 60
]);
$userId = $response['body']['userId'];
$secret = $response['body']['secret'];
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
'x-forwarded-user-agent' => 'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36'
], [
'userId' => $userId,
'secret' => $secret
]);
$this->assertEquals('browser', $response['body']['clientType']);
$this->assertEquals('CM', actual: $response['body']['clientCode']);
$this->assertEquals('Chrome Mobile', $response['body']['clientName']);
// Forwarded User Agent without API Key
$response = $this->client->call(Client::METHOD_POST, '/users/' . $data['id'] . '/tokens', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-appwrite-key' => $this->getProject()['apiKey'],
], [
'expire' => 60
]);
$userId = $response['body']['userId'];
$secret = $response['body']['secret'];
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', [
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'x-forwarded-user-agent' => 'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36'
], [
'userId' => $userId,
'secret' => $secret
]);
$this->assertEquals('browser', $response['body']['clientType']);
$this->assertEquals('CH', $response['body']['clientCode']);
$this->assertEquals('Chrome', $response['body']['clientName']);
test: e2e universal token
2023-10-11 13:21:20 +00:00
/**
* Test for FAILURE
*/
// Invalid userId
test: fix puts that should be posts
2024-01-09 18:05:21 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', [
test: e2e universal token
2023-10-11 13:21:20 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
], [
'userId' => ID::custom('ewewe'),
'secret' => $secret,
]);
$this->assertEquals(401, $response['headers']['status-code']);
// Invalid secret
test: fix puts that should be posts
2024-01-09 18:05:21 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/token', [
test: e2e universal token
2023-10-11 13:21:20 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
], [
'userId' => $userId,
'secret' => '123456',
]);
$this->assertEquals(401, $response['headers']['status-code']);
chore: fmt
2023-10-11 13:21:59 +00:00
test: e2e universal token
2023-10-11 13:21:20 +00:00
return $data;
}
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
/**
* @depends testUpdatePhone
*/
public function testPhoneVerification(array $data): array
{
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_POST, '/account/verification/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
Fix account tests using old token
2025-06-26 18:47:59 +00:00
$this->assertNotEmpty($response['body']['$createdAt']);
chore: cleanup pr
2023-10-13 15:10:55 +00:00
$this->assertEmpty($response['body']['secret']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['expire']));
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
Fix account tests using old token
2025-06-26 18:47:59 +00:00
$tokenCreatedAt = $response['body']['$createdAt'];
$smsRequest = $this->assertLastRequest(function ($request) use ($tokenCreatedAt) {
tests: fix flaky account tests commit-id:3865765d
2025-06-02 16:09:03 +00:00
$this->assertArrayHasKey('data', $request);
Fix account tests using old token
2025-06-26 18:47:59 +00:00
$this->assertArrayHasKey('time', $request);
Improve flaky tests logging
2025-06-25 13:53:59 +00:00
$this->assertArrayHasKey('message', $request['data'], "Last request missing message: " . \json_encode($request));
Fix account tests using old token
2025-06-26 18:47:59 +00:00
// Ensure we are not using token from last sms login
$tokenRecievedAt = $request['time'];
$this->assertGreaterThan($tokenCreatedAt, $tokenRecievedAt);
Fix flakyness of account tests
2025-06-26 16:07:59 +00:00
}, Scope::REQUEST_TYPE_SMS);
Fix tests
2024-02-25 12:05:14 +00:00
chore: update tests
2025-03-05 18:40:41 +00:00
/**
* Test for FAILURE
*/
// disable phone sessions
$response = $this->client->call(Client::METHOD_PATCH, '/projects/' . $this->getProject()['$id'] . '/auth/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => 'console',
'cookie' => 'a_session_console=' . $this->getRoot()['session'],
]), [
'status' => false,
]);
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals(false, $response['body']['authPhone']);
$response = $this->client->call(Client::METHOD_POST, '/account/verification/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
$this->assertEquals(501, $response['headers']['status-code']);
$this->assertEquals("Phone authentication is disabled for this project", $response['body']['message']);
Update sms mock to use request catcher
2022-09-19 08:09:48 +00:00
return \array_merge($data, [
fix: phone verification flaky test
2024-02-25 16:41:37 +00:00
'token' => \substr($smsRequest['data']['message'], 0, 6)
Update sms mock to use request catcher
2022-09-19 08:09:48 +00:00
]);
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
}
/**
* @depends testPhoneVerification
*/
public function testUpdatePhoneVerification($data): array
{
$id = $data['id'] ?? '';
$session = $data['session'] ?? '';
Update sms mock to use request catcher
2022-09-19 08:09:48 +00:00
$secret = $data['token'] ?? '';
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/verification/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'userId' => $id,
Update sms mock to use request catcher
2022-09-19 08:09:48 +00:00
'secret' => $secret,
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
]);
$this->assertEquals(200, $response['headers']['status-code']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/verification/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
ID updates
2022-08-14 10:33:36 +00:00
'userId' => ID::custom('ewewe'),
Update sms mock to use request catcher
2022-09-19 08:09:48 +00:00
'secret' => $secret,
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
]);
$this->assertEquals(404, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_PUT, '/account/verification/phone', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'userId' => $id,
'secret' => '999999',
]);
$this->assertEquals(401, $response['headers']['status-code']);
return $data;
}
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
public function testCreateMagicUrl(): array
{
$email = \time() . 'user@appwrite.io';
/**
* Test for SUCCESS
*/
feat: Matej renaming plan
2023-11-30 11:35:52 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/magic-url', array_merge([
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::unique(),
'email' => $email,
// 'url' => 'http://localhost/magiclogin',
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertEmpty($response['body']['secret']);
Rename security phrases
2024-02-01 10:41:01 +00:00
$this->assertEmpty($response['body']['phrase']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['expire']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$userId = $response['body']['userId'];
$lastEmail = $this->getLastEmail();
$this->assertEquals($email, $lastEmail['to'][0]['address']);
fix: typo
2024-01-10 10:37:27 +00:00
$this->assertEquals($this->getProject()['name'] . ' Login', $lastEmail['subject']);
tests
2025-07-24 14:09:23 +00:00
$this->assertStringContainsStringIgnoringCase('Sign in to '. $this->getProject()['name'] . ' with your secure link. Expires in 1 hour.', $lastEmail['text']);
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
$this->assertStringNotContainsStringIgnoringCase('security phrase', $lastEmail['text']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
test: fix account tests
2024-01-10 10:27:38 +00:00
$token = substr($lastEmail['text'], strpos($lastEmail['text'], '&secret=', 0) + 8, 64);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$expireTime = strpos($lastEmail['text'], 'expire=' . urlencode($response['body']['expire']), 0);
$this->assertNotFalse($expireTime);
$secretTest = strpos($lastEmail['text'], 'secret=' . $response['body']['secret'], 0);
$this->assertNotFalse($secretTest);
$userIDTest = strpos($lastEmail['text'], 'userId=' . $response['body']['userId'], 0);
$this->assertNotFalse($userIDTest);
/**
* Test for FAILURE
*/
feat: Matej renaming plan
2023-11-30 11:35:52 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/magic-url', array_merge([
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::unique(),
'email' => $email,
'url' => 'localhost/magiclogin',
]);
$this->assertEquals(400, $response['headers']['status-code']);
feat: Matej renaming plan
2023-11-30 11:35:52 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/magic-url', array_merge([
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::unique(),
'email' => $email,
'url' => 'http://remotehost/magiclogin',
]);
$this->assertEquals(400, $response['headers']['status-code']);
feat: Matej renaming plan
2023-11-30 11:35:52 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/tokens/magic-url', array_merge([
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
]);
$this->assertEquals(400, $response['headers']['status-code']);
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/magic-url', array_merge([
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
'userId' => ID::unique(),
'email' => $email,
Rename security phrases
2024-02-01 10:41:01 +00:00
'phrase' => true
feat: add update and verification method for account and users
2022-06-08 12:50:31 +00:00
]);
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
Rename security phrases
2024-02-01 10:41:01 +00:00
$this->assertNotEmpty($response['body']['phrase']);
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
$lastEmail = $this->getLastEmail();
Rename security phrases
2024-02-01 10:41:01 +00:00
$this->assertStringContainsStringIgnoringCase($response['body']['phrase'], $lastEmail['text']);
Merge branch '1.5.x' of https://github.com/appwrite/appwrite into feat-ssr
2024-01-13 09:55:44 +00:00
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$data['token'] = $token;
$data['id'] = $userId;
$data['email'] = $email;
return $data;
}
/**
* @depends testCreateMagicUrl
*/
public function testCreateSessionWithMagicUrl($data): array
{
$id = $data['id'] ?? '';
$token = $data['token'] ?? '';
$email = $data['email'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/magic-url', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => $token,
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertNotEmpty($response['body']['userId']);
$this->assertEmpty($response['body']['secret']);
$sessionId = $response['body']['$id'];
fix: tests
2023-12-11 19:41:58 +00:00
$session = $response['cookies']['a_session_' . $this->getProject()['$id']];
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $email);
$this->assertTrue($response['body']['emailVerification']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/magic-url', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => ID::custom('ewewe'),
'secret' => $token,
]);
$this->assertEquals(401, $response['headers']['status-code']);
$response = $this->client->call(Client::METHOD_PUT, '/account/sessions/magic-url', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'userId' => $id,
'secret' => 'sdasdasdasd',
]);
$this->assertEquals(401, $response['headers']['status-code']);
$data['sessionId'] = $sessionId;
$data['session'] = $session;
return $data;
}
/**
* @depends testCreateSessionWithMagicUrl
*/
public function testUpdateAccountPasswordWithMagicUrl($data): array
{
$email = $data['email'] ?? '';
$session = $data['session'] ?? '';
/**
* Test for SUCCESS
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(200, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertIsArray($response['body']);
$this->assertNotEmpty($response['body']);
$this->assertNotEmpty($response['body']['$id']);
chore: misc test assertions improvements
2024-06-05 18:23:31 +00:00
$this->assertTrue((new DatetimeValidator())->isValid($response['body']['registration']));
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEquals($response['body']['email'], $email);
$response = $this->client->call(Client::METHOD_POST, '/account/sessions/email', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'email' => $email,
'password' => 'new-password',
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$this->assertEmpty($response['body']['secret']);
/**
* Test for FAILURE
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]));
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), []);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(400, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Existing user tries to update password by passing wrong old password -> SHOULD FAIL
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password',
'oldPassword' => 'wrong-password',
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
/**
* Existing user tries to update password without passing old password -> SHOULD FAIL
*/
$response = $this->client->call(Client::METHOD_PATCH, '/account/password', array_merge([
'origin' => 'http://localhost',
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $session,
]), [
'password' => 'new-password'
]);
test: fix
2023-10-26 14:04:47 +00:00
$this->assertEquals(401, $response['headers']['status-code']);
test: seperate client and server tests
2023-10-26 08:43:15 +00:00
$data['password'] = 'new-password';
return $data;
}
Update tests
2024-10-22 01:35:11 +00:00
public function testCreatePushTarget(): void
{
Fix tests
2024-10-22 01:54:34 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/targets/push', \array_merge([
Update tests
2024-10-22 01:35:11 +00:00
'content-type' => 'application/json',
Fix tests
2024-10-22 01:54:34 +00:00
'x-appwrite-project' => $this->getProject()['$id']
], $this->getHeaders()), [
Update tests
2024-10-22 01:35:11 +00:00
'targetId' => ID::unique(),
'identifier' => 'test-identifier',
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
$this->assertEquals('test-identifier', $response['body']['identifier']);
}
public function testUpdatePushTarget(): void
{
Fix tests
2024-10-22 01:54:34 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/targets/push', \array_merge([
Update tests
2024-10-22 01:35:11 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Fix tests
2024-10-22 01:54:34 +00:00
], $this->getHeaders()), [
Update tests
2024-10-22 01:35:11 +00:00
'targetId' => ID::unique(),
Fix tests
2024-10-22 01:54:34 +00:00
'identifier' => 'test-identifier-2',
Update tests
2024-10-22 01:35:11 +00:00
]);
$this->assertEquals(201, $response['headers']['status-code']);
$this->assertNotEmpty($response['body']['$id']);
Fix tests
2024-10-22 01:54:34 +00:00
$this->assertEquals('test-identifier-2', $response['body']['identifier']);
Update tests
2024-10-22 01:35:11 +00:00
Fix tests
2024-10-22 01:54:34 +00:00
$response = $this->client->call(Client::METHOD_PUT, '/account/targets/'. $response['body']['$id'] .'/push', \array_merge([
Update tests
2024-10-22 01:35:11 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Fix tests
2024-10-22 01:54:34 +00:00
], $this->getHeaders()), [
Update tests
2024-10-22 01:35:11 +00:00
'identifier' => 'test-identifier-updated',
]);
$this->assertEquals(200, $response['headers']['status-code']);
$this->assertEquals('test-identifier-updated', $response['body']['identifier']);
$this->assertEquals(false, $response['body']['expired']);
}
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
public function testMFARecoveryCodeChallenge(): void
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
{
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
// Generate recovery codes using existing authenticated session
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$response = $this->client->call(Client::METHOD_POST, '/account/mfa/recovery-codes', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), []);
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$this->assertEquals(201, $response['headers']['status-code']);
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
$this->assertNotEmpty($response['body']['recoveryCodes']);
$recoveryCodes = $response['body']['recoveryCodes'];
$this->assertGreaterThan(0, count($recoveryCodes));
// Create recovery code challenge
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$challenge = $this->client->call(Client::METHOD_POST, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'factor' => 'recoveryCode'
]);
$this->assertEquals(201, $challenge['headers']['status-code']);
$this->assertNotEmpty($challenge['body']['$id']);
$challengeId = $challenge['body']['$id'];
// Test SUCCESS: Verify with valid recovery code (this tests the bug fix)
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$verification = $this->client->call(Client::METHOD_PUT, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'challengeId' => $challengeId,
'otp' => $recoveryCodes[0]
]);
$this->assertEquals(200, $verification['headers']['status-code']);
$this->assertArrayHasKey('factors', $verification['body']);
$this->assertContains('recoveryCode', $verification['body']['factors']);
// Test that the code was consumed (can't use again)
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$challenge2 = $this->client->call(Client::METHOD_POST, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'factor' => 'recoveryCode'
]);
$this->assertEquals(201, $challenge2['headers']['status-code']);
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$verification2 = $this->client->call(Client::METHOD_PUT, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'challengeId' => $challenge2['body']['$id'],
'otp' => $recoveryCodes[0] // Same code should fail
]);
$this->assertEquals(401, $verification2['headers']['status-code']);
// Test FAILURE: Invalid recovery code
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$challenge3 = $this->client->call(Client::METHOD_POST, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'factor' => 'recoveryCode'
]);
$this->assertEquals(201, $challenge3['headers']['status-code']);
fix: MFA recovery code validation and test status code - Fixed HTTP status code: POST /v1/account/mfa/recovery-codes now returns 201 (CREATED) instead of 200 - Updated testMFARecoveryCodeChallenge to expect 201 status code - Added array_merge with origin header to all API calls in test for proper CORS validation - Removed trailing whitespace for PSR-12 compliance Fixes #10740
2025-12-10 00:07:43 +00:00
$verification3 = $this->client->call(Client::METHOD_PUT, '/account/mfa/challenge', array_merge([
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
Simplify testMFARecoveryCodeChallenge to use existing session
2025-12-10 20:20:52 +00:00
], $this->getHeaders()), [
fix: resolve MFA recovery code validation in 1.8.0 Remove strtolower() from recovery code type comparison (line 4945) Remove strtolower() from match statement (line 4967) Add comprehensive test for recovery code challenge validation Fixes issue where recovery codes fail with 'Invalid token' error Fixes #10740
2025-12-08 20:48:40 +00:00
'challengeId' => $challenge3['body']['$id'],
'otp' => 'invalid-code-123'
]);
$this->assertEquals(401, $verification3['headers']['status-code']);
}
fix(user): search integrity
2022-04-26 10:07:33 +00:00
}
Reference in a new issue Copy permalink