test: update tests for Symfony session-based AuthnRequestSessionRepository

Author: kayjoosten

tests/bootstrap.php

@@ -21,6 +21,30 @@
 define('TEST_RESOURCES_DIR', __DIR__ . '/resources');
 
 require_once realpath(__DIR__) . '/../vendor/autoload.php';
+
+$worktreeRoot   = (string) realpath(__DIR__ . '/..');
+$vendorRealPath = (string) realpath(__DIR__ . '/../vendor');
+if (!str_starts_with($vendorRealPath, $worktreeRoot . DIRECTORY_SEPARATOR)) {
+    $worktreeLibrary = $worktreeRoot . '/library';
+    $worktreeSrc     = $worktreeRoot . '/src';
+    spl_autoload_register(static function (string $class) use ($worktreeLibrary, $worktreeSrc): bool {
+        $psr0File = $worktreeLibrary . '/' . str_replace('_', '/', $class) . '.php';
+        if (file_exists($psr0File)) {
+            require $psr0File;
+            return true;
+        }
+        if (str_starts_with($class, 'OpenConext\\')) {
+            $relative = substr($class, strlen('OpenConext\\'));
+            $psr4File = $worktreeSrc . '/OpenConext/' . str_replace('\\', '/', $relative) . '.php';
+            if (file_exists($psr4File)) {
+                require $psr4File;
+                return true;
+            }
+        }
+        return false;
+    }, true, true);
+}
+
 require_once realpath(__DIR__) . '/../src/Kernel.php';
 
 $kernel = new Kernel('test', true);

tests/library/EngineBlock/Test/Corto/Module/Service/ProcessConsentTest.php

@@ -80,16 +80,21 @@ class EngineBlock_Test_Corto_Module_Service_ProcessConsentTest extends TestCase
      */
     private $sessionMock;
 
+    /**
+     * @var EngineBlock_Saml2_AuthnRequestAnnotationDecorator
+     */
+    private $spRequest;
+
 
     public function setUp(): void
     {
         $diContainer = EngineBlock_ApplicationSingleton::getInstance()->getDiContainer();
 
+        $this->sspResponseMock = $this->mockSspResponse();  // sets $this->spRequest first
         $this->proxyServerMock    = $this->mockProxyServer();
         $this->xmlConverterMock   = $this->mockXmlConverter($diContainer->getXmlConverter());
         $this->consentFactoryMock = $diContainer->getConsentFactory();
         $this->authnStateHelperMock = $this->mockAuthnStateHelper();
-        $this->sspResponseMock = $this->mockSspResponse();
         $this->processingStateHelperMock = $this->mockProcessingStateHelper();
         $this->httpRequestMock = $this->mockHttpRequest();
     }
@@ -184,6 +189,11 @@ private function mockProxyServer()
             ))
             ->setBindingsModule($this->mockBindingsModule());
 
+        // Mock findRequestFromRequestId so no session lookup is needed
+        Phake::when($proxyServerMock)
+            ->findRequestFromRequestId('EBREQUEST')
+            ->thenReturn($this->spRequest);
+
         return $proxyServerMock;
     }
 
@@ -255,17 +265,7 @@ private function mockSspResponse()
         $issuer = new Issuer();
         $issuer->setValue('https://sp.example.edu');
         $spRequest->setIssuer($issuer);
-        $spRequest = new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($spRequest);
-
-        $ebRequest = new AuthnRequest();
-        $ebRequest->setId('EBREQUEST');
-        $ebRequest = new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($ebRequest);
-
-        $dummySessionLog = new Psr\Log\NullLogger();
-        $authnRequestRepository = new EngineBlock_Saml2_AuthnRequestSessionRepository($dummySessionLog);
-        $authnRequestRepository->store($spRequest);
-        $authnRequestRepository->store($ebRequest);
-        $authnRequestRepository->link($ebRequest, $spRequest);
+        $this->spRequest = new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($spRequest);
 
         $sspResponse = new Response();
         $sspResponse->setInResponseTo('EBREQUEST');

tests/library/EngineBlock/Test/Corto/Module/Service/ProvideConsentTest.php

@@ -184,9 +184,14 @@ private function mockProxyServer()
             array(new ServiceProvider('testSp'))
         ));
 
-        $bindingsModuleMock = $this->mockBindingsModule();
+        [$bindingsModuleMock, $spRequest] = $this->mockBindingsModule();
         $proxyServerMock->setBindingsModule($bindingsModuleMock);
 
+        // Mock findRequestFromRequestId so no session lookup is needed
+        Phake::when($proxyServerMock)
+            ->findRequestFromRequestId('EBREQUEST')
+            ->thenReturn($spRequest);
+
         Phake::when($proxyServerMock)
             ->renderTemplate(Phake::anyParameters())
             ->thenReturn(null);
@@ -199,9 +204,9 @@ private function mockProxyServer()
     }
 
     /**
-     * @return EngineBlock_Corto_Module_Bindings
+     * @return array{0: EngineBlock_Corto_Module_Bindings, 1: EngineBlock_Saml2_AuthnRequestAnnotationDecorator}
      */
-    private function mockBindingsModule()
+    private function mockBindingsModule(): array
     {
         $spRequest = new AuthnRequest();
         $spRequest->setId('SPREQUEST');
@@ -210,16 +215,6 @@ private function mockBindingsModule()
         $spRequest->setIssuer($issuer);
         $spRequest = new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($spRequest);
 
-        $ebRequest = new AuthnRequest();
-        $ebRequest->setId('EBREQUEST');
-        $ebRequest = new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($ebRequest);
-
-        $dummyLog = new Psr\Log\NullLogger();
-        $authnRequestRepository = new EngineBlock_Saml2_AuthnRequestSessionRepository($dummyLog);
-        $authnRequestRepository->store($spRequest);
-        $authnRequestRepository->store($ebRequest);
-        $authnRequestRepository->link($ebRequest, $spRequest);
-
         $assertion = new Assertion();
         $assertion->setAttributes(array(
             'urn:org:openconext:corto:internal:sp-entity-id' => array(
@@ -246,7 +241,7 @@ private function mockBindingsModule()
             ->receiveResponse(Phake::anyParameters())
             ->thenReturn($responseFixture);
 
-        return $bindingsModuleMock;
+        return [$bindingsModuleMock, $spRequest];
     }
 
     /**

tests/library/EngineBlock/Test/Saml2/AuthnRequestSessionRepositoryTest.php

@@ -16,23 +16,24 @@
  * limitations under the License.
  */
 
-use Mockery as m;
-use Mockery\Adapter\Phpunit\MockeryPHPUnitIntegration;
 use PHPUnit\Framework\TestCase;
 use SAML2\AuthnRequest;
+use Symfony\Component\HttpFoundation\Exception\SessionNotFoundException;
+use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\HttpFoundation\Session\Session;
+use Symfony\Component\HttpFoundation\Session\Storage\MockArraySessionStorage;
 
 class EngineBlock_Test_Saml2_AuthnRequestSessionRepositoryTest extends TestCase
 {
-    use MockeryPHPUnitIntegration;
+    private Session $session;
+    private EngineBlock_Saml2_AuthnRequestSessionRepository $repo;
 
     protected function setUp(): void
     {
-        $_SESSION = [];
-    }
-
-    protected function tearDown(): void
-    {
-        $_SESSION = [];
+        $this->session = new Session(new MockArraySessionStorage());
+        $requestStack = $this->createMock(RequestStack::class);
+        $requestStack->method('getSession')->willReturn($this->session);
+        $this->repo = new EngineBlock_Saml2_AuthnRequestSessionRepository($requestStack);
     }
 
     private function makeRequest(string $id): EngineBlock_Saml2_AuthnRequestAnnotationDecorator
@@ -42,33 +43,101 @@ private function makeRequest(string $id): EngineBlock_Saml2_AuthnRequestAnnotati
         return new EngineBlock_Saml2_AuthnRequestAnnotationDecorator($authnRequest);
     }
 
-    private function makeRepository(): EngineBlock_Saml2_AuthnRequestSessionRepository
+    public function test_store_saves_request(): void
+    {
+        $request = $this->makeRequest('_sp-request-A');
+
+        $this->repo->store($request);
+
+        $this->assertSame($request, $this->repo->findRequestById('_sp-request-A'));
+    }
+
+    public function test_find_request_by_id_returns_null_for_unknown_id(): void
     {
-        $logger = m::mock(Psr\Log\LoggerInterface::class);
-        return new EngineBlock_Saml2_AuthnRequestSessionRepository($logger);
+        $this->assertNull($this->repo->findRequestById('_unknown'));
     }
 
-    public function test_store_saves_request()
+    public function test_link_stores_request_mapping(): void
     {
-        $repository = $this->makeRepository();
-        $request = $this->makeRequest('_sp-request-A');
+        $spRequest  = $this->makeRequest('_sp-request-A');
+        $idpRequest = $this->makeRequest('_idp-request-B');
 
-        $repository->store($request);
+        $this->repo->store($spRequest);
+        $this->repo->link($idpRequest, $spRequest);
 
-        $storedRequest = $repository->findRequestById('_sp-request-A');
-        $this->assertSame($request, $storedRequest);
+        $this->assertSame('_sp-request-A', $this->repo->findLinkedRequestId('_idp-request-B'));
     }
 
-    public function test_link_stores_request_mapping()
+    public function test_find_linked_request_id_returns_null_for_unknown_id(): void
     {
-        $repository = $this->makeRepository();
-        $spRequest = $this->makeRequest('_sp-request-A');
-        $idpRequest = $this->makeRequest('_idp-request-B');
+        $this->assertNull($this->repo->findLinkedRequestId('_unknown'));
+    }
+
+    public function test_find_linked_request_id_returns_null_for_null_input(): void
+    {
+        $this->assertNull($this->repo->findLinkedRequestId(null));
+    }
+
+    public function test_store_and_find_multiple_requests(): void
+    {
+        $req1 = $this->makeRequest('_req-1');
+        $req2 = $this->makeRequest('_req-2');
+
+        $this->repo->store($req1);
+        $this->repo->store($req2);
+
+        $this->assertSame($req1, $this->repo->findRequestById('_req-1'));
+        $this->assertSame($req2, $this->repo->findRequestById('_req-2'));
+    }
+
+    public function test_store_is_noop_when_no_session_available(): void
+    {
+        $requestStack = $this->createMock(RequestStack::class);
+        $requestStack->method('getSession')
+            ->willThrowException(new SessionNotFoundException());
+
+        $repo = new EngineBlock_Saml2_AuthnRequestSessionRepository($requestStack);
+        $request = $this->makeRequest('_req-A');
+
+        $repo->store($request); // must not throw
+
+        $this->assertNull($repo->findRequestById('_req-A'));
+    }
+
+    public function test_link_is_noop_when_no_session_available(): void
+    {
+        $requestStack = $this->createMock(RequestStack::class);
+        $requestStack->method('getSession')
+            ->willThrowException(new SessionNotFoundException());
+
+        $repo = new EngineBlock_Saml2_AuthnRequestSessionRepository($requestStack);
+        $spRequest  = $this->makeRequest('_sp-A');
+        $idpRequest = $this->makeRequest('_idp-B');
+
+        $repo->link($idpRequest, $spRequest); // must not throw
+
+        $this->assertNull($repo->findLinkedRequestId('_idp-B'));
+    }
+
+    public function test_find_request_is_noop_when_no_session_available(): void
+    {
+        $requestStack = $this->createMock(RequestStack::class);
+        $requestStack->method('getSession')
+            ->willThrowException(new SessionNotFoundException());
+
+        $repo = new EngineBlock_Saml2_AuthnRequestSessionRepository($requestStack);
+
+        $this->assertNull($repo->findRequestById('_req-A'));
+    }
+
+    public function test_find_linked_is_noop_when_no_session_available(): void
+    {
+        $requestStack = $this->createMock(RequestStack::class);
+        $requestStack->method('getSession')
+            ->willThrowException(new SessionNotFoundException());
 
-        $repository->store($spRequest);
-        $repository->link($idpRequest, $spRequest);
+        $repo = new EngineBlock_Saml2_AuthnRequestSessionRepository($requestStack);
 
-        $linkedRequestId = $repository->findLinkedRequestId('_idp-request-B');
-        $this->assertSame('_sp-request-A', $linkedRequestId);
+        $this->assertNull($repo->findLinkedRequestId('_req-A'));
     }
 }