wiki.techinc.nl/tests/phpunit/includes/session/SessionTest.php

<?php

namespace MediaWiki\Session;

use Psr\Log\LogLevel;
use MediaWikiTestCase;
use User;

/**
 * @group Session
 * @covers MediaWiki\Session\Session
 */
class SessionTest extends MediaWikiTestCase {

	public function testConstructor() {
		$backend = TestUtils::getDummySessionBackend();
		\TestingAccessWrapper::newFromObject( $backend )->requests = array( -1 => 'dummy' );
		\TestingAccessWrapper::newFromObject( $backend )->id = new SessionId( 'abc' );

		$session = new Session( $backend, 42, new \TestLogger );
		$priv = \TestingAccessWrapper::newFromObject( $session );
		$this->assertSame( $backend, $priv->backend );
		$this->assertSame( 42, $priv->index );

		$request = new \FauxRequest();
		$priv2 = \TestingAccessWrapper::newFromObject( $session->sessionWithRequest( $request ) );
		$this->assertSame( $backend, $priv2->backend );
		$this->assertNotSame( $priv->index, $priv2->index );
		$this->assertSame( $request, $priv2->getRequest() );
	}

	/**
	 * @dataProvider provideMethods
	 * @param string $m Method to test
	 * @param array $args Arguments to pass to the method
	 * @param bool $index Whether the backend method gets passed the index
	 * @param bool $ret Whether the method returns a value
	 */
	public function testMethods( $m, $args, $index, $ret ) {
		$mock = $this->getMock( 'MediaWiki\\Session\\DummySessionBackend',
			array( $m, 'deregisterSession' ) );
		$mock->expects( $this->once() )->method( 'deregisterSession' )
			->with( $this->identicalTo( 42 ) );

		$tmp = $mock->expects( $this->once() )->method( $m );
		$expectArgs = array();
		if ( $index ) {
			$expectArgs[] = $this->identicalTo( 42 );
		}
		foreach ( $args as $arg ) {
			$expectArgs[] = $this->identicalTo( $arg );
		}
		$tmp = call_user_func_array( array( $tmp, 'with' ), $expectArgs );

		$retval = new \stdClass;
		$tmp->will( $this->returnValue( $retval ) );

		$session = TestUtils::getDummySession( $mock, 42 );

		if ( $ret ) {
			$this->assertSame( $retval, call_user_func_array( array( $session, $m ), $args ) );
		} else {
			$this->assertNull( call_user_func_array( array( $session, $m ), $args ) );
		}

		// Trigger Session destructor
		$session = null;
	}

	public static function provideMethods() {
		return array(
			array( 'getId', array(), false, true ),
			array( 'getSessionId', array(), false, true ),
			array( 'resetId', array(), false, true ),
			array( 'getProvider', array(), false, true ),
			array( 'isPersistent', array(), false, true ),
			array( 'persist', array(), false, false ),
			array( 'shouldRememberUser', array(), false, true ),
			array( 'setRememberUser', array( true ), false, false ),
			array( 'getRequest', array(), true, true ),
			array( 'getUser', array(), false, true ),
			array( 'getAllowedUserRights', array(), false, true ),
			array( 'canSetUser', array(), false, true ),
			array( 'setUser', array( new \stdClass ), false, false ),
			array( 'suggestLoginUsername', array(), true, true ),
			array( 'shouldForceHTTPS', array(), false, true ),
			array( 'setForceHTTPS', array( true ), false, false ),
			array( 'getLoggedOutTimestamp', array(), false, true ),
			array( 'setLoggedOutTimestamp', array( 123 ), false, false ),
			array( 'getProviderMetadata', array(), false, true ),
			array( 'save', array(), false, false ),
			array( 'delaySave', array(), false, true ),
			array( 'renew', array(), false, false ),
		);
	}

	public function testDataAccess() {
		$session = TestUtils::getDummySession();
		$backend = \TestingAccessWrapper::newFromObject( $session )->backend;

		$this->assertEquals( 1, $session->get( 'foo' ) );
		$this->assertEquals( 'zero', $session->get( 0 ) );
		$this->assertFalse( $backend->dirty );

		$this->assertEquals( null, $session->get( 'null' ) );
		$this->assertEquals( 'default', $session->get( 'null', 'default' ) );
		$this->assertFalse( $backend->dirty );

		$session->set( 'foo', 55 );
		$this->assertEquals( 55, $backend->data['foo'] );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		$session->set( 1, 'one' );
		$this->assertEquals( 'one', $backend->data[1] );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		$session->set( 1, 'one' );
		$this->assertFalse( $backend->dirty );

		$this->assertTrue( $session->exists( 'foo' ) );
		$this->assertTrue( $session->exists( 1 ) );
		$this->assertFalse( $session->exists( 'null' ) );
		$this->assertFalse( $session->exists( 100 ) );
		$this->assertFalse( $backend->dirty );

		$session->remove( 'foo' );
		$this->assertArrayNotHasKey( 'foo', $backend->data );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;
		$session->remove( 1 );
		$this->assertArrayNotHasKey( 1, $backend->data );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		$session->remove( 101 );
		$this->assertFalse( $backend->dirty );

		$backend->data = array( 'a', 'b', '?' => 'c' );
		$this->assertSame( 3, $session->count() );
		$this->assertSame( 3, count( $session ) );
		$this->assertFalse( $backend->dirty );

		$data = array();
		foreach ( $session as $key => $value ) {
			$data[$key] = $value;
		}
		$this->assertEquals( $backend->data, $data );
		$this->assertFalse( $backend->dirty );

		$this->assertEquals( $backend->data, iterator_to_array( $session ) );
		$this->assertFalse( $backend->dirty );
	}

	public function testArrayAccess() {
		$logger = new \TestLogger;
		$session = TestUtils::getDummySession( null, -1, $logger );
		$backend = \TestingAccessWrapper::newFromObject( $session )->backend;

		$this->assertEquals( 1, $session['foo'] );
		$this->assertEquals( 'zero', $session[0] );
		$this->assertFalse( $backend->dirty );

		$logger->setCollect( true );
		$this->assertEquals( null, $session['null'] );
		$logger->setCollect( false );
		$this->assertFalse( $backend->dirty );
		$this->assertSame( array(
			array( LogLevel::DEBUG, 'Undefined index (auto-adds to session with a null value): null' )
		), $logger->getBuffer() );
		$logger->clearBuffer();

		$session['foo'] = 55;
		$this->assertEquals( 55, $backend->data['foo'] );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		$session[1] = 'one';
		$this->assertEquals( 'one', $backend->data[1] );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		$session[1] = 'one';
		$this->assertFalse( $backend->dirty );

		$session['bar'] = array( 'baz' => array() );
		$session['bar']['baz']['quux'] = 2;
		$this->assertEquals( array( 'baz' => array( 'quux' => 2 ) ), $backend->data['bar'] );

		$logger->setCollect( true );
		$session['bar2']['baz']['quux'] = 3;
		$logger->setCollect( false );
		$this->assertEquals( array( 'baz' => array( 'quux' => 3 ) ), $backend->data['bar2'] );
		$this->assertSame( array(
			array( LogLevel::DEBUG, 'Undefined index (auto-adds to session with a null value): bar2' )
		), $logger->getBuffer() );
		$logger->clearBuffer();

		$backend->dirty = false;
		$this->assertTrue( isset( $session['foo'] ) );
		$this->assertTrue( isset( $session[1] ) );
		$this->assertFalse( isset( $session['null'] ) );
		$this->assertFalse( isset( $session['missing'] ) );
		$this->assertFalse( isset( $session[100] ) );
		$this->assertFalse( $backend->dirty );

		unset( $session['foo'] );
		$this->assertArrayNotHasKey( 'foo', $backend->data );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;
		unset( $session[1] );
		$this->assertArrayNotHasKey( 1, $backend->data );
		$this->assertTrue( $backend->dirty );
		$backend->dirty = false;

		unset( $session[101] );
		$this->assertFalse( $backend->dirty );
	}

	public function testClear() {
		$session = TestUtils::getDummySession();
		$priv = \TestingAccessWrapper::newFromObject( $session );

		$backend = $this->getMock(
			'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )
		);
		$backend->expects( $this->once() )->method( 'canSetUser' )
			->will( $this->returnValue( true ) );
		$backend->expects( $this->once() )->method( 'setUser' )
			->with( $this->callback( function ( $user ) {
				return $user instanceof User && $user->isAnon();
			} ) );
		$backend->expects( $this->once() )->method( 'save' );
		$priv->backend = $backend;
		$session->clear();
		$this->assertSame( array(), $backend->data );
		$this->assertTrue( $backend->dirty );

		$backend = $this->getMock(
			'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )
		);
		$backend->data = array();
		$backend->expects( $this->once() )->method( 'canSetUser' )
			->will( $this->returnValue( true ) );
		$backend->expects( $this->once() )->method( 'setUser' )
			->with( $this->callback( function ( $user ) {
				return $user instanceof User && $user->isAnon();
			} ) );
		$backend->expects( $this->once() )->method( 'save' );
		$priv->backend = $backend;
		$session->clear();
		$this->assertFalse( $backend->dirty );

		$backend = $this->getMock(
			'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )
		);
		$backend->expects( $this->once() )->method( 'canSetUser' )
			->will( $this->returnValue( false ) );
		$backend->expects( $this->never() )->method( 'setUser' );
		$backend->expects( $this->once() )->method( 'save' );
		$priv->backend = $backend;
		$session->clear();
		$this->assertSame( array(), $backend->data );
		$this->assertTrue( $backend->dirty );
	}

	public function testTokens() {
		$rc = new \ReflectionClass( 'MediaWiki\\Session\\Session' );
		if ( !method_exists( $rc, 'newInstanceWithoutConstructor' ) ) {
			$this->markTestSkipped(
				'ReflectionClass::newInstanceWithoutConstructor isn\'t available'
			);
		}

		// Instead of actually constructing the Session, we use reflection to
		// bypass the constructor and plug a mock SessionBackend into the
		// private fields to avoid having to actually create a SessionBackend.
		$backend = new DummySessionBackend;
		$session = $rc->newInstanceWithoutConstructor();
		$priv = \TestingAccessWrapper::newFromObject( $session );
		$priv->backend = $backend;
		$priv->index = 42;

		$token = \TestingAccessWrapper::newFromObject( $session->getToken() );
		$this->assertArrayHasKey( 'wsTokenSecrets', $backend->data );
		$this->assertArrayHasKey( 'default', $backend->data['wsTokenSecrets'] );
		$secret = $backend->data['wsTokenSecrets']['default'];
		$this->assertSame( $secret, $token->secret );
		$this->assertSame( '', $token->salt );
		$this->assertTrue( $token->wasNew() );

		$token = \TestingAccessWrapper::newFromObject( $session->getToken( 'foo' ) );
		$this->assertSame( $secret, $token->secret );
		$this->assertSame( 'foo', $token->salt );
		$this->assertFalse( $token->wasNew() );

		$backend->data['wsTokenSecrets']['secret'] = 'sekret';
		$token = \TestingAccessWrapper::newFromObject(
			$session->getToken( array( 'bar', 'baz' ), 'secret' )
		);
		$this->assertSame( 'sekret', $token->secret );
		$this->assertSame( 'bar|baz', $token->salt );
		$this->assertFalse( $token->wasNew() );

		$session->resetToken( 'secret' );
		$this->assertArrayHasKey( 'wsTokenSecrets', $backend->data );
		$this->assertArrayHasKey( 'default', $backend->data['wsTokenSecrets'] );
		$this->assertArrayNotHasKey( 'secret', $backend->data['wsTokenSecrets'] );

		$session->resetAllTokens();
		$this->assertArrayNotHasKey( 'wsTokenSecrets', $backend->data );

	}
}
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271 2016-02-01 20:44:03 +00:00			`<?php`

			`namespace MediaWiki\Session;`

Session: Implement ArrayAccess Now that we dropped support for PHP 5.3.3, we can do this. The behavior of $session['foo'] when that key doesn't already exist is a little unexpected (it implicitly assigns null), but it's the best we can do. Change-Id: Ibef878867d46591a8bf542139a1719dfec3b83ab 2016-02-10 16:43:23 +00:00			`use Psr\Log\LogLevel;`
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271 2016-02-01 20:44:03 +00:00			`use MediaWikiTestCase;`
			`use User;`

			`/**`
			`* @group Session`
			`* @covers MediaWiki\Session\Session`
			`*/`
			`class SessionTest extends MediaWikiTestCase {`

			`public function testConstructor() {`
			`$backend = TestUtils::getDummySessionBackend();`
			`\TestingAccessWrapper::newFromObject( $backend )->requests = array( -1 => 'dummy' );`
			`\TestingAccessWrapper::newFromObject( $backend )->id = new SessionId( 'abc' );`

Session: Implement ArrayAccess Now that we dropped support for PHP 5.3.3, we can do this. The behavior of $session['foo'] when that key doesn't already exist is a little unexpected (it implicitly assigns null), but it's the best we can do. Change-Id: Ibef878867d46591a8bf542139a1719dfec3b83ab 2016-02-10 16:43:23 +00:00			`$session = new Session( $backend, 42, new \TestLogger );`
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271 2016-02-01 20:44:03 +00:00			`$priv = \TestingAccessWrapper::newFromObject( $session );`
			`$this->assertSame( $backend, $priv->backend );`
			`$this->assertSame( 42, $priv->index );`

			`$request = new \FauxRequest();`
			`$priv2 = \TestingAccessWrapper::newFromObject( $session->sessionWithRequest( $request ) );`
			`$this->assertSame( $backend, $priv2->backend );`
			`$this->assertNotSame( $priv->index, $priv2->index );`
			`$this->assertSame( $request, $priv2->getRequest() );`
			`}`

			`/**`
			`* @dataProvider provideMethods`
			`* @param string $m Method to test`
			`* @param array $args Arguments to pass to the method`
			`* @param bool $index Whether the backend method gets passed the index`
			`* @param bool $ret Whether the method returns a value`
			`*/`
			`public function testMethods( $m, $args, $index, $ret ) {`
			`$mock = $this->getMock( 'MediaWiki\\Session\\DummySessionBackend',`
			`array( $m, 'deregisterSession' ) );`
			`$mock->expects( $this->once() )->method( 'deregisterSession' )`
			`->with( $this->identicalTo( 42 ) );`

			`$tmp = $mock->expects( $this->once() )->method( $m );`
			`$expectArgs = array();`
			`if ( $index ) {`
			`$expectArgs[] = $this->identicalTo( 42 );`
			`}`
			`foreach ( $args as $arg ) {`
			`$expectArgs[] = $this->identicalTo( $arg );`
			`}`
			`$tmp = call_user_func_array( array( $tmp, 'with' ), $expectArgs );`

			`$retval = new \stdClass;`
			`$tmp->will( $this->returnValue( $retval ) );`

			`$session = TestUtils::getDummySession( $mock, 42 );`

			`if ( $ret ) {`
			`$this->assertSame( $retval, call_user_func_array( array( $session, $m ), $args ) );`
			`} else {`
			`$this->assertNull( call_user_func_array( array( $session, $m ), $args ) );`
			`}`

			`// Trigger Session destructor`
			`$session = null;`
			`}`

			`public static function provideMethods() {`
			`return array(`
			`array( 'getId', array(), false, true ),`
			`array( 'getSessionId', array(), false, true ),`
			`array( 'resetId', array(), false, true ),`
			`array( 'getProvider', array(), false, true ),`
			`array( 'isPersistent', array(), false, true ),`
			`array( 'persist', array(), false, false ),`
			`array( 'shouldRememberUser', array(), false, true ),`
			`array( 'setRememberUser', array( true ), false, false ),`
			`array( 'getRequest', array(), true, true ),`
			`array( 'getUser', array(), false, true ),`
			`array( 'getAllowedUserRights', array(), false, true ),`
			`array( 'canSetUser', array(), false, true ),`
			`array( 'setUser', array( new \stdClass ), false, false ),`
			`array( 'suggestLoginUsername', array(), true, true ),`
			`array( 'shouldForceHTTPS', array(), false, true ),`
			`array( 'setForceHTTPS', array( true ), false, false ),`
			`array( 'getLoggedOutTimestamp', array(), false, true ),`
			`array( 'setLoggedOutTimestamp', array( 123 ), false, false ),`
			`array( 'getProviderMetadata', array(), false, true ),`
			`array( 'save', array(), false, false ),`
			`array( 'delaySave', array(), false, true ),`
			`array( 'renew', array(), false, false ),`
			`);`
			`}`

			`public function testDataAccess() {`
			`$session = TestUtils::getDummySession();`
			`$backend = \TestingAccessWrapper::newFromObject( $session )->backend;`

			`$this->assertEquals( 1, $session->get( 'foo' ) );`
			`$this->assertEquals( 'zero', $session->get( 0 ) );`
			`$this->assertFalse( $backend->dirty );`

			`$this->assertEquals( null, $session->get( 'null' ) );`
			`$this->assertEquals( 'default', $session->get( 'null', 'default' ) );`
			`$this->assertFalse( $backend->dirty );`

			`$session->set( 'foo', 55 );`
			`$this->assertEquals( 55, $backend->data['foo'] );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`$session->set( 1, 'one' );`
			`$this->assertEquals( 'one', $backend->data[1] );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`$session->set( 1, 'one' );`
			`$this->assertFalse( $backend->dirty );`

			`$this->assertTrue( $session->exists( 'foo' ) );`
			`$this->assertTrue( $session->exists( 1 ) );`
			`$this->assertFalse( $session->exists( 'null' ) );`
			`$this->assertFalse( $session->exists( 100 ) );`
			`$this->assertFalse( $backend->dirty );`

			`$session->remove( 'foo' );`
			`$this->assertArrayNotHasKey( 'foo', $backend->data );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`
			`$session->remove( 1 );`
			`$this->assertArrayNotHasKey( 1, $backend->data );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`$session->remove( 101 );`
			`$this->assertFalse( $backend->dirty );`

			`$backend->data = array( 'a', 'b', '?' => 'c' );`
			`$this->assertSame( 3, $session->count() );`
			`$this->assertSame( 3, count( $session ) );`
			`$this->assertFalse( $backend->dirty );`

			`$data = array();`
			`foreach ( $session as $key => $value ) {`
			`$data[$key] = $value;`
			`}`
			`$this->assertEquals( $backend->data, $data );`
			`$this->assertFalse( $backend->dirty );`

			`$this->assertEquals( $backend->data, iterator_to_array( $session ) );`
			`$this->assertFalse( $backend->dirty );`
			`}`

Session: Implement ArrayAccess Now that we dropped support for PHP 5.3.3, we can do this. The behavior of $session['foo'] when that key doesn't already exist is a little unexpected (it implicitly assigns null), but it's the best we can do. Change-Id: Ibef878867d46591a8bf542139a1719dfec3b83ab 2016-02-10 16:43:23 +00:00			`public function testArrayAccess() {`
			`$logger = new \TestLogger;`
			`$session = TestUtils::getDummySession( null, -1, $logger );`
			`$backend = \TestingAccessWrapper::newFromObject( $session )->backend;`

			`$this->assertEquals( 1, $session['foo'] );`
			`$this->assertEquals( 'zero', $session[0] );`
			`$this->assertFalse( $backend->dirty );`

			`$logger->setCollect( true );`
			`$this->assertEquals( null, $session['null'] );`
			`$logger->setCollect( false );`
			`$this->assertFalse( $backend->dirty );`
			`$this->assertSame( array(`
			`array( LogLevel::DEBUG, 'Undefined index (auto-adds to session with a null value): null' )`
			`), $logger->getBuffer() );`
			`$logger->clearBuffer();`

			`$session['foo'] = 55;`
			`$this->assertEquals( 55, $backend->data['foo'] );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`$session[1] = 'one';`
			`$this->assertEquals( 'one', $backend->data[1] );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`$session[1] = 'one';`
			`$this->assertFalse( $backend->dirty );`

			`$session['bar'] = array( 'baz' => array() );`
			`$session['bar']['baz']['quux'] = 2;`
			`$this->assertEquals( array( 'baz' => array( 'quux' => 2 ) ), $backend->data['bar'] );`

			`$logger->setCollect( true );`
			`$session['bar2']['baz']['quux'] = 3;`
			`$logger->setCollect( false );`
			`$this->assertEquals( array( 'baz' => array( 'quux' => 3 ) ), $backend->data['bar2'] );`
			`$this->assertSame( array(`
			`array( LogLevel::DEBUG, 'Undefined index (auto-adds to session with a null value): bar2' )`
			`), $logger->getBuffer() );`
			`$logger->clearBuffer();`

			`$backend->dirty = false;`
			`$this->assertTrue( isset( $session['foo'] ) );`
			`$this->assertTrue( isset( $session[1] ) );`
			`$this->assertFalse( isset( $session['null'] ) );`
			`$this->assertFalse( isset( $session['missing'] ) );`
			`$this->assertFalse( isset( $session[100] ) );`
			`$this->assertFalse( $backend->dirty );`

			`unset( $session['foo'] );`
			`$this->assertArrayNotHasKey( 'foo', $backend->data );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`
			`unset( $session[1] );`
			`$this->assertArrayNotHasKey( 1, $backend->data );`
			`$this->assertTrue( $backend->dirty );`
			`$backend->dirty = false;`

			`unset( $session[101] );`
			`$this->assertFalse( $backend->dirty );`
			`}`

Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271 2016-02-01 20:44:03 +00:00			`public function testClear() {`
			`$session = TestUtils::getDummySession();`
			`$priv = \TestingAccessWrapper::newFromObject( $session );`

			`$backend = $this->getMock(`
			`'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )`
			`);`
			`$backend->expects( $this->once() )->method( 'canSetUser' )`
			`->will( $this->returnValue( true ) );`
			`$backend->expects( $this->once() )->method( 'setUser' )`
			`->with( $this->callback( function ( $user ) {`
			`return $user instanceof User && $user->isAnon();`
			`} ) );`
			`$backend->expects( $this->once() )->method( 'save' );`
			`$priv->backend = $backend;`
			`$session->clear();`
			`$this->assertSame( array(), $backend->data );`
			`$this->assertTrue( $backend->dirty );`

			`$backend = $this->getMock(`
			`'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )`
			`);`
			`$backend->data = array();`
			`$backend->expects( $this->once() )->method( 'canSetUser' )`
			`->will( $this->returnValue( true ) );`
			`$backend->expects( $this->once() )->method( 'setUser' )`
			`->with( $this->callback( function ( $user ) {`
			`return $user instanceof User && $user->isAnon();`
			`} ) );`
			`$backend->expects( $this->once() )->method( 'save' );`
			`$priv->backend = $backend;`
			`$session->clear();`
			`$this->assertFalse( $backend->dirty );`

			`$backend = $this->getMock(`
			`'MediaWiki\\Session\\DummySessionBackend', array( 'canSetUser', 'setUser', 'save' )`
			`);`
			`$backend->expects( $this->once() )->method( 'canSetUser' )`
			`->will( $this->returnValue( false ) );`
			`$backend->expects( $this->never() )->method( 'setUser' );`
			`$backend->expects( $this->once() )->method( 'save' );`
			`$priv->backend = $backend;`
			`$session->clear();`
			`$this->assertSame( array(), $backend->data );`
			`$this->assertTrue( $backend->dirty );`
			`}`

			`public function testTokens() {`
			`$rc = new \ReflectionClass( 'MediaWiki\\Session\\Session' );`
			`if ( !method_exists( $rc, 'newInstanceWithoutConstructor' ) ) {`
			`$this->markTestSkipped(`
			`'ReflectionClass::newInstanceWithoutConstructor isn\'t available'`
			`);`
			`}`

			`// Instead of actually constructing the Session, we use reflection to`
			`// bypass the constructor and plug a mock SessionBackend into the`
			`// private fields to avoid having to actually create a SessionBackend.`
			`$backend = new DummySessionBackend;`
			`$session = $rc->newInstanceWithoutConstructor();`
			`$priv = \TestingAccessWrapper::newFromObject( $session );`
			`$priv->backend = $backend;`
			`$priv->index = 42;`

			`$token = \TestingAccessWrapper::newFromObject( $session->getToken() );`
			`$this->assertArrayHasKey( 'wsTokenSecrets', $backend->data );`
			`$this->assertArrayHasKey( 'default', $backend->data['wsTokenSecrets'] );`
			`$secret = $backend->data['wsTokenSecrets']['default'];`
			`$this->assertSame( $secret, $token->secret );`
			`$this->assertSame( '', $token->salt );`
			`$this->assertTrue( $token->wasNew() );`

			`$token = \TestingAccessWrapper::newFromObject( $session->getToken( 'foo' ) );`
			`$this->assertSame( $secret, $token->secret );`
			`$this->assertSame( 'foo', $token->salt );`
			`$this->assertFalse( $token->wasNew() );`

			`$backend->data['wsTokenSecrets']['secret'] = 'sekret';`
			`$token = \TestingAccessWrapper::newFromObject(`
			`$session->getToken( array( 'bar', 'baz' ), 'secret' )`
			`);`
			`$this->assertSame( 'sekret', $token->secret );`
			`$this->assertSame( 'bar\|baz', $token->salt );`
			`$this->assertFalse( $token->wasNew() );`

			`$session->resetToken( 'secret' );`
			`$this->assertArrayHasKey( 'wsTokenSecrets', $backend->data );`
			`$this->assertArrayHasKey( 'default', $backend->data['wsTokenSecrets'] );`
			`$this->assertArrayNotHasKey( 'secret', $backend->data['wsTokenSecrets'] );`

			`$session->resetAllTokens();`
			`$this->assertArrayNotHasKey( 'wsTokenSecrets', $backend->data );`

			`}`
			`}`