Update code for Cake 4

Author: ADmad

phpunit.xml.dist

@@ -3,7 +3,6 @@
     colors="true"
     processIsolation="false"
     stopOnFailure="false"
-    syntaxCheck="false"
     bootstrap="./tests/bootstrap.php"
     >
     <php>

src/Auth/JwtAuthenticate.php

@@ -1,4 +1,6 @@
 <?php
+declare(strict_types=1);
+
 namespace ADmad\JwtAuth\Auth;
 
 use Cake\Auth\BaseAuthenticate;
@@ -26,7 +28,7 @@
  *  ]);
  * ```
  *
- * @copyright 2015-2018 ADmad
+ * @copyright 2015-Present ADmad
  * @license MIT
  *
  * @see http://jwt.io
@@ -87,7 +89,7 @@ class JwtAuthenticate extends BaseAuthenticate
      *   used on this request.
      * @param array $config Array of config to use.
      */
-    public function __construct(ComponentRegistry $registry, $config)
+    public function __construct(ComponentRegistry $registry, array $config)
     {
         $defaultConfig = [
             'cookie' => false,
@@ -100,10 +102,6 @@ public function __construct(ComponentRegistry $registry, $config)
             'key' => null,
         ];
 
-        if (!class_exists(UnauthorizedException::class)) {
-            $defaultConfig['unauthenticatedException'] = 'Cake\Network\Exception\UnauthorizedException';
-        }
-
         $this->setConfig($defaultConfig);
 
         if (empty($config['allowedAlgs'])) {
@@ -149,7 +147,7 @@ public function getUser(ServerRequest $request)
             return false;
         }
 
-        $user = $this->_findUser($payload->sub);
+        $user = $this->_findUser((string)$payload->sub);
         if (!$user) {
             return false;
         }
@@ -166,7 +164,7 @@ public function getUser(ServerRequest $request)
      *
      * @return object|null Payload object on success, null on failurec
      */
-    public function getPayload($request = null)
+    public function getPayload(?ServerRequest $request = null)
     {
         if (!$request) {
             return $this->_payload;
@@ -189,7 +187,7 @@ public function getPayload($request = null)
      *
      * @return string|null Token string if found else null.
      */
-    public function getToken($request = null)
+    public function getToken(?ServerRequest $request = null)
     {
         $config = $this->_config;
 
@@ -230,7 +228,7 @@ public function getToken($request = null)
      *
      * @return object|null The JWT's payload as a PHP object, null on failure.
      */
-    protected function _decode($token)
+    protected function _decode(string $token)
     {
         $config = $this->_config;
         try {
@@ -247,6 +245,8 @@ protected function _decode($token)
             }
             $this->_error = $e;
         }
+
+        return null;
     }
 
     /**

tests/TestCase/Auth/JwtAuthenticateTest.php

@@ -1,4 +1,6 @@
 <?php
+declare(strict_types=1);
+
 namespace ADmad\JwtAuth\Auth\Test\TestCase\Auth;
 
 use ADmad\JwtAuth\Auth\JwtAuthenticate;
@@ -7,10 +9,11 @@
 use Cake\Http\Exception\UnauthorizedException;
 use Cake\Http\Response;
 use Cake\Http\ServerRequest;
+use Cake\I18n\FrozenTime;
 use Cake\I18n\Time;
-use Cake\ORM\TableRegistry;
 use Cake\TestSuite\TestCase;
 use Cake\Utility\Security;
+use DomainException;
 use Firebase\JWT\JWT;
 
 /**
@@ -19,16 +22,16 @@
 class JwtAuthenticateTest extends TestCase
 {
     public $fixtures = [
-        'plugin.ADmad\JwtAuth.users',
-        'plugin.ADmad\JwtAuth.groups',
+        'plugin.ADmad\JwtAuth.Users',
+        'plugin.ADmad\JwtAuth.Groups',
     ];
 
     /**
      * setup.
      *
      * @return void
      */
-    public function setUp()
+    public function setUp(): void
     {
         parent::setUp();
 
@@ -69,7 +72,7 @@ public function testConfig()
      */
     public function testAuthenticateTokenParameter()
     {
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
 
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
@@ -79,19 +82,19 @@ public function testAuthenticateTokenParameter()
             'group_id' => 1,
             'user_name' => 'admad',
             'email' => '[email protected]',
-            'created' => new Time('2014-03-17 01:18:23'),
-            'updated' => new Time('2014-03-17 01:20:31'),
+            'created' => new FrozenTime('2014-03-17 01:18:23'),
+            'updated' => new FrozenTime('2014-03-17 01:20:31'),
         ];
-        $request = new ServerRequest('posts/index?token=' . $this->token);
+        $request = new ServerRequest(['url' => 'posts/index?token=' . $this->token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertEquals($expected, $result);
 
         $this->auth->setConfig('parameter', 'tokenname');
-        $request = new ServerRequest('posts/index?tokenname=' . $this->token);
+        $request = new ServerRequest(['url' => 'posts/index?tokenname=' . $this->token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertEquals($expected, $result);
 
-        $request = new ServerRequest('posts/index?wrongtoken=' . $this->token);
+        $request = new ServerRequest(['url' => 'posts/index?wrongtoken=' . $this->token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
     }
@@ -103,15 +106,15 @@ public function testAuthenticateTokenParameter()
      */
     public function testAuthenticateTokenHeader()
     {
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
 
         $expected = [
             'id' => 1,
             'group_id' => 1,
             'user_name' => 'admad',
             'email' => '[email protected]',
-            'created' => new Time('2014-03-17 01:18:23'),
-            'updated' => new Time('2014-03-17 01:20:31'),
+            'created' => new FrozenTime('2014-03-17 01:18:23'),
+            'updated' => new FrozenTime('2014-03-17 01:20:31'),
         ];
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer ' . $this->token);
         $result = $this->auth->getUser($request, $this->response);
@@ -134,7 +137,7 @@ public function testAuthenticateTokenHeader()
      */
     public function testAuthenticateNoHeaderWithParameterDisabled()
     {
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
 
         $this->auth = new JwtAuthenticate($this->Registry, [
             'userModel' => 'Users',
@@ -144,7 +147,7 @@ public function testAuthenticateNoHeaderWithParameterDisabled()
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
 
-        $request = new ServerRequest('posts/index?token=' . $this->token);
+        $request = new ServerRequest(['url' => 'posts/index?token=' . $this->token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
     }
@@ -164,12 +167,12 @@ public function testQueryDatasourceFalse()
         $token = JWT::encode($expected, Security::getSalt());
         $this->auth->setConfig('queryDatasource', false);
 
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer ' . $token);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertEquals($expected, $result);
 
-        $request = new ServerRequest('posts/index?token=' . $token);
+        $request = new ServerRequest(['url' => 'posts/index?token=' . $token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertEquals($expected, $result);
     }
@@ -183,48 +186,12 @@ public function testWithValidTokenButNoUserInDb()
     {
         $token = JWT::encode(['id' => 4], Security::getSalt());
 
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer ' . $token);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
 
-        $request = new ServerRequest('posts/index?token=' . $token);
-        $result = $this->auth->getUser($request, $this->response);
-        $this->assertFalse($result);
-    }
-
-    /**
-     * test contain.
-     *
-     * @return void
-     */
-    public function testFindUserWithContain()
-    {
-        $request = new ServerRequest('posts/index');
-
-        $expected = [
-            'id' => 1,
-            'group_id' => 1,
-            'user_name' => 'admad',
-            'email' => '[email protected]',
-            'created' => new Time('2014-03-17 01:18:23'),
-            'updated' => new Time('2014-03-17 01:20:31'),
-            'group' => [
-                'id' => 1,
-                'title' => 'admin',
-            ],
-        ];
-        $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer ' . $this->token);
-
-        $this->auth->setConfig('contain', ['Groups']);
-        $table = TableRegistry::get('Users');
-        $table->belongsTo('Groups');
-
-        $result = $this->auth->getUser($request, $this->response);
-        $this->assertEquals($expected, $result);
-
-        $this->expectException('UnexpectedValueException');
-        $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer foobar');
+        $request = new ServerRequest(['url' => 'posts/index?token=' . $token]);
         $result = $this->auth->getUser($request, $this->response);
         $this->assertFalse($result);
     }
@@ -242,15 +209,15 @@ public function testAuthenticated()
     /**
      * test that with debug off for invalid token exception from JWT::decode()
      * is re-thrown.
-     *
-     * @expectedException DomainException
      */
     public function testExceptionForInvalidToken()
     {
-        $request = new ServerRequest('posts/index');
+        $this->expectException(DomainException::class);
+
+        $request = new ServerRequest();
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer this.is.invalid');
 
-        $result = $this->auth->getUser($request, $this->response);
+        $this->auth->getUser($request, $this->response);
     }
 
     /**
@@ -289,7 +256,7 @@ public function testUnauthenticatedNoException()
     public function testWithInvalidToken()
     {
         Configure::write('debug', false);
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
 
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer this.is.invalid');
         $result = $this->auth->getUser($request, $this->response);
@@ -312,12 +279,12 @@ public function testCustomKey()
         $payload = ['sub' => 100];
         $token = Jwt::encode($payload, $key);
 
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
         $request = $request->withEnv('HTTP_AUTHORIZATION', 'Bearer ' . $token);
         $result = $auth->getUser($request, $this->response);
         $this->assertEquals($payload, $result);
 
-        $request = new ServerRequest('posts/index?token=' . $token);
+        $request = new ServerRequest(['url' => '/posts/index?token=' . $token]);
         $result = $auth->getUser($request, $this->response);
         $this->assertEquals($payload, $result);
     }
@@ -329,7 +296,7 @@ public function testCustomKey()
      */
     public function testAuthenticateCookie()
     {
-        $request = new ServerRequest('posts/index');
+        $request = new ServerRequest();
 
         $this->auth = new JwtAuthenticate($this->Registry, [
             'userModel' => 'Users',
@@ -350,7 +317,7 @@ public function testAuthenticateCookie()
 
         $request = new ServerRequest([
             'url' => 'posts/index',
-            'cookies' => ['jwt' => $this->token]
+            'cookies' => ['jwt' => $this->token],
         ]);
 
         $result = $this->auth->getUser($request, $this->response);
@@ -359,15 +326,15 @@ public function testAuthenticateCookie()
         $this->auth->setConfig('cookie', 'tokenname');
         $request = new ServerRequest([
             'url' => 'posts/index',
-            'cookies' => ['tokenname' => $this->token]
+            'cookies' => ['tokenname' => $this->token],
         ]);
 
         $result = $this->auth->getUser($request, $this->response);
         $this->assertEquals($expected, $result);
 
         $request = new ServerRequest([
             'url' => 'posts/index',
-            'cookies' => ['wrongtoken' => $this->token]
+            'cookies' => ['wrongtoken' => $this->token],
         ]);
 
         $result = $this->auth->getUser($request, $this->response);

tests/bootstrap.php

@@ -1,5 +1,5 @@
 <?php
-use Cake\Core\Plugin;
+declare(strict_types=1);
 
 /*
  * Test suite bootstrap
@@ -22,5 +22,3 @@
 unset($findRoot);
 chdir($root);
 require $root . '/vendor/cakephp/cakephp/tests/bootstrap.php';
-
-Plugin::load('ADmad/JwtAuth', ['path' => dirname(dirname(__FILE__)) . DS]);