Implement token-based auth API

2025-07-30 21:20:24 +02:00 · 2015-01-22 14:44:33 +10:30
parent 74c9b48870
commit ad269fdb5a
11 changed files with 194 additions and 44 deletions
--- a/tests/api/AuthCest.php
+++ b/tests/api/AuthCest.php
@@ -0,0 +1,55 @@
+<?php
+use \ApiTester;
+
+use Laracasts\TestDummy\Factory;
+
+class AuthCest
+{
+    protected $endpoint = '/api/auth';
+
+    public function loginWithEmail(ApiTester $I)
+    {
+        $I->wantTo('login via API with email');
+
+        $user = $I->haveAnAccount([
+            'email' => 'foo@bar.com',
+            'password' => 'pass7word'
+        ]);
+
+        $token = $I->login('foo@bar.com', 'pass7word');
+        $I->seeResponseCodeIs(200);
+        $I->seeResponseIsJson();
+        
+        $loggedIn = User::where('remember_token', $token)->first();
+        $I->assertEquals($user->id, $loggedIn->id);
+    }
+
+    public function loginWithUsername(ApiTester $I)
+    {
+        $I->wantTo('login via API with username');
+
+        $user = $I->haveAnAccount([
+            'username' => 'tobscure',
+            'password' => 'pass7word'
+        ]);
+
+        $token = $I->login('tobscure', 'pass7word');
+        $I->seeResponseCodeIs(200);
+        $I->seeResponseIsJson();
+        
+        $loggedIn = User::where('remember_token', $token)->first();
+        $I->assertEquals($user->id, $loggedIn->id);
+    }
+
+    public function invalidLogin(ApiTester $I)
+    {
+        $user = $I->haveAnAccount([
+            'email' => 'foo@bar.com',
+            'password' => 'pass7word'
+        ]);
+
+        $I->login('foo@bar.com', 'incorrect');
+        $I->seeResponseCodeIs(401);
+        $I->seeResponseIsJson();
+    }
+}