a1fb3de7d2
ApiTestCase resets global session data in setup, invalidating any existing cookies. ApiQueryInfo caches all tokens, these need to be cleared out so tokens are re-generated to match the fresh session. Until now, individual tests have been doing that, but there's no not to do this per default. Change-Id: Icefa362190c2e7d87d09bda30079255741824f55
189 lines
4.8 KiB
PHP
189 lines
4.8 KiB
PHP
<?php
|
|
|
|
abstract class ApiTestCase extends MediaWikiLangTestCase {
|
|
protected static $apiUrl;
|
|
|
|
/**
|
|
* @var ApiTestContext
|
|
*/
|
|
protected $apiContext;
|
|
|
|
function setUp() {
|
|
global $wgContLang, $wgAuth, $wgMemc, $wgRequest, $wgUser, $wgServer;
|
|
|
|
parent::setUp();
|
|
self::$apiUrl = $wgServer . wfScript( 'api' );
|
|
$wgMemc = new EmptyBagOStuff();
|
|
$wgContLang = Language::factory( 'en' );
|
|
$wgAuth = new StubObject( 'wgAuth', 'AuthPlugin' );
|
|
$wgRequest = new FauxRequest( array() );
|
|
|
|
ApiQueryInfo::resetTokenCache(); // tokens are invalid because we cleared the session
|
|
|
|
self::$users = array(
|
|
'sysop' => new TestUser(
|
|
'Apitestsysop',
|
|
'Api Test Sysop',
|
|
'api_test_sysop@example.com',
|
|
array( 'sysop' )
|
|
),
|
|
'uploader' => new TestUser(
|
|
'Apitestuser',
|
|
'Api Test User',
|
|
'api_test_user@example.com',
|
|
array()
|
|
)
|
|
);
|
|
|
|
$wgUser = self::$users['sysop']->user;
|
|
|
|
$this->apiContext = new ApiTestContext();
|
|
|
|
}
|
|
|
|
protected function doApiRequest( Array $params, Array $session = null, $appendModule = false, User $user = null ) {
|
|
global $wgRequest, $wgUser;
|
|
|
|
if ( is_null( $session ) ) {
|
|
# re-use existing global session by default
|
|
$session = $wgRequest->getSessionArray();
|
|
}
|
|
|
|
# set up global environment
|
|
if ( $user ) {
|
|
$wgUser = $user;
|
|
}
|
|
|
|
$wgRequest = new FauxRequest( $params, true, $session );
|
|
RequestContext::getMain()->setRequest( $wgRequest );
|
|
|
|
# set up local environment
|
|
$context = $this->apiContext->newTestContext( $wgRequest, $wgUser );
|
|
|
|
$module = new ApiMain( $context, true );
|
|
|
|
# run it!
|
|
$module->execute();
|
|
|
|
# construct result
|
|
$results = array(
|
|
$module->getResultData(),
|
|
$context->getRequest(),
|
|
$context->getRequest()->getSessionArray()
|
|
);
|
|
if( $appendModule ) {
|
|
$results[] = $module;
|
|
}
|
|
|
|
return $results;
|
|
}
|
|
|
|
/**
|
|
* Add an edit token to the API request
|
|
* This is cheating a bit -- we grab a token in the correct format and then add it to the pseudo-session and to the
|
|
* request, without actually requesting a "real" edit token
|
|
* @param $params Array: key-value API params
|
|
* @param $session Array|null: session array
|
|
* @param $user User|null A User object for the context
|
|
*/
|
|
protected function doApiRequestWithToken( Array $params, Array $session = null, User $user = null ) {
|
|
global $wgRequest;
|
|
|
|
if ( $session === null ) {
|
|
$session = $wgRequest->getSessionArray();
|
|
}
|
|
|
|
if ( $session['wsToken'] ) {
|
|
// add edit token to fake session
|
|
$session['wsEditToken'] = $session['wsToken'];
|
|
// add token to request parameters
|
|
$params['token'] = md5( $session['wsToken'] ) . User::EDIT_TOKEN_SUFFIX;
|
|
return $this->doApiRequest( $params, $session, false, $user );
|
|
} else {
|
|
throw new Exception( "request data not in right format" );
|
|
}
|
|
}
|
|
|
|
protected function doLogin() {
|
|
$data = $this->doApiRequest( array(
|
|
'action' => 'login',
|
|
'lgname' => self::$users['sysop']->username,
|
|
'lgpassword' => self::$users['sysop']->password ) );
|
|
|
|
$token = $data[0]['login']['token'];
|
|
|
|
$data = $this->doApiRequest( array(
|
|
'action' => 'login',
|
|
'lgtoken' => $token,
|
|
'lgname' => self::$users['sysop']->username,
|
|
'lgpassword' => self::$users['sysop']->password
|
|
), $data[2] );
|
|
|
|
return $data;
|
|
}
|
|
|
|
protected function getTokenList( $user, $session = null ) {
|
|
$data = $this->doApiRequest( array(
|
|
'action' => 'query',
|
|
'titles' => 'Main Page',
|
|
'intoken' => 'edit|delete|protect|move|block|unblock|watch',
|
|
'prop' => 'info' ), $session, false, $user->user );
|
|
return $data;
|
|
}
|
|
}
|
|
|
|
class UserWrapper {
|
|
public $userName, $password, $user;
|
|
|
|
public function __construct( $userName, $password, $group = '' ) {
|
|
$this->userName = $userName;
|
|
$this->password = $password;
|
|
|
|
$this->user = User::newFromName( $this->userName );
|
|
if ( !$this->user->getID() ) {
|
|
$this->user = User::createNew( $this->userName, array(
|
|
"email" => "test@example.com",
|
|
"real_name" => "Test User" ) );
|
|
}
|
|
$this->user->setPassword( $this->password );
|
|
|
|
if ( $group !== '' ) {
|
|
$this->user->addGroup( $group );
|
|
}
|
|
$this->user->saveSettings();
|
|
}
|
|
}
|
|
|
|
class MockApi extends ApiBase {
|
|
public function execute() { }
|
|
public function getVersion() { }
|
|
|
|
public function __construct() { }
|
|
|
|
public function getAllowedParams() {
|
|
return array(
|
|
'filename' => null,
|
|
'enablechunks' => false,
|
|
'sessionkey' => null,
|
|
);
|
|
}
|
|
}
|
|
|
|
class ApiTestContext extends RequestContext {
|
|
|
|
/**
|
|
* Returns a DerivativeContext with the request variables in place
|
|
*
|
|
* @param $request WebRequest request object including parameters and session
|
|
* @param $user User or null
|
|
* @return DerivativeContext
|
|
*/
|
|
public function newTestContext( WebRequest $request, User $user = null ) {
|
|
$context = new DerivativeContext( $this );
|
|
$context->setRequest( $request );
|
|
if ( $user !== null ) {
|
|
$context->setUser( $user );
|
|
}
|
|
return $context;
|
|
}
|
|
}
|