107 lines
3.1 KiB
PHP
107 lines
3.1 KiB
PHP
<?php
|
|
|
|
require_once dirname(__DIR__, 3) . '/app/includes/session_middleware.php';
|
|
|
|
use PHPUnit\Framework\TestCase;
|
|
|
|
class SessionMiddlewareTest extends TestCase
|
|
{
|
|
protected $config;
|
|
protected $app_root;
|
|
protected const SESSION_TIMEOUT = 7200; // 2 hours in seconds
|
|
|
|
protected function setUp(): void
|
|
{
|
|
parent::setUp();
|
|
|
|
// Mock server variables
|
|
$_SERVER['HTTP_USER_AGENT'] = 'PHPUnit Test Browser';
|
|
$_SERVER['REMOTE_ADDR'] = '127.0.0.1';
|
|
$_SERVER['HTTPS'] = 'on';
|
|
|
|
// Set up test config
|
|
$this->config = [
|
|
'folder' => '/app',
|
|
'domain' => 'localhost'
|
|
];
|
|
$this->app_root = 'https://localhost/app';
|
|
|
|
// Initialize session variables
|
|
$_SESSION = [
|
|
'user_id' => 1,
|
|
'username' => 'testuser',
|
|
'CREATED' => time(),
|
|
'LAST_ACTIVITY' => time()
|
|
];
|
|
}
|
|
|
|
protected function tearDown(): void
|
|
{
|
|
parent::tearDown();
|
|
}
|
|
|
|
public function testSessionStart()
|
|
{
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertTrue($result);
|
|
$this->assertArrayHasKey('LAST_ACTIVITY', $_SESSION);
|
|
$this->assertArrayHasKey('CREATED', $_SESSION);
|
|
$this->assertArrayHasKey('user_id', $_SESSION);
|
|
$this->assertEquals(1, $_SESSION['user_id']);
|
|
}
|
|
|
|
public function testSessionTimeout()
|
|
{
|
|
$_SESSION['LAST_ACTIVITY'] = time() - (self::SESSION_TIMEOUT + 60); // 2 hours + 1 minute ago
|
|
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertFalse($result);
|
|
$this->assertArrayNotHasKey('user_id', $_SESSION, 'Session should be cleared after timeout');
|
|
}
|
|
|
|
public function testSessionRegeneration()
|
|
{
|
|
$now = time();
|
|
$_SESSION['CREATED'] = $now - 1900; // 31+ minutes ago
|
|
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertTrue($result);
|
|
$this->assertEquals(1, $_SESSION['user_id']);
|
|
$this->assertGreaterThanOrEqual($now - 1900, $_SESSION['CREATED']);
|
|
$this->assertLessThanOrEqual($now + 10, $_SESSION['CREATED']);
|
|
}
|
|
|
|
public function testRememberMe()
|
|
{
|
|
$_SESSION['REMEMBER_ME'] = true;
|
|
$_SESSION['LAST_ACTIVITY'] = time() - (self::SESSION_TIMEOUT + 60); // More than 2 hours ago
|
|
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertTrue($result);
|
|
$this->assertArrayHasKey('user_id', $_SESSION);
|
|
}
|
|
|
|
public function testNoUserSession()
|
|
{
|
|
unset($_SESSION['user_id']);
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertFalse($result);
|
|
$this->assertArrayNotHasKey('user_id', $_SESSION);
|
|
}
|
|
|
|
public function testSessionHeaders()
|
|
{
|
|
$_SESSION['LAST_ACTIVITY'] = time() - (self::SESSION_TIMEOUT + 60); // 2 hours + 1 minute ago
|
|
|
|
$result = applySessionMiddleware($this->config, $this->app_root);
|
|
|
|
$this->assertFalse($result);
|
|
$this->assertArrayNotHasKey('user_id', $_SESSION, 'Session should be cleared after timeout');
|
|
}
|
|
}
|