tests and fixes

ackspony · ackspony · commit c5fc684e268d · 2018-11-29T17:46:33.000-08:00
- unit test for Request object
- fixes to bugs uncovered by uni tests
diff --git a/bin/add-endpoint.php b/bin/add-endpoint.php
@@ -408,12 +408,12 @@ function onOtherEvent(\Webhook\Payload\Event $payload) {
 try {
    $request = \Webhook\Request::service(file_get_contents('php://input'),isset($_SERVER)?$_SERVER:[]);
    if ($request->getRequestMethod()!=='POST') {
-      throw new \Webhook\InvalidRequest("requestMethod must be POST");
+      throw new \Webhook\InvalidRequestException("requestMethod must be POST");
    }
    $callback->validateRequest($request->getHubSignature(), $request->getMessageBody(), $request->getPayload());
-} catch(\Webhook\InvalidRequest $e) {
+} catch(\Webhook\InvalidRequestException $e) {
    http_response_code(500);
-   echo "Invalid Request: ".$e->getMessage();
+   echo $e->getMessage();
 }
 
 EOT;
diff --git a/coverage.txt b/coverage.txt
@@ -1,17 +1,29 @@
 
 
-Code Coverage Report:     
-  2018-11-29 09:49:46     
-                          
- Summary:                 
-  Classes: 57.14% (8/14)  
-  Methods: 46.15% (18/39) 
-  Lines:   30.60% (71/232)
+Code Coverage Report:      
+  2018-11-30 01:39:31      
+                           
+ Summary:                  
+  Classes: 66.67% (12/18)  
+  Methods: 72.09% (31/43)  
+  Lines:   54.21% (116/214)
 
 \Webhook::PopulatorTrait
   Methods: 100.00% ( 1/ 1)   Lines: 100.00% ( 11/ 11)
+\Webhook::Webhook\EventMissingException
+  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
+\Webhook::Webhook\InvalidRequestException
+  Methods:  50.00% ( 1/ 2)   Lines:  75.00% (  3/  4)
+\Webhook::Webhook\MessageBodyInvalidException
+  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
 \Webhook::Webhook\Payload
   Methods: 100.00% ( 2/ 2)   Lines: 100.00% (  5/  5)
+\Webhook::Webhook\Request
+  Methods:  66.67% ( 8/12)   Lines:  66.67% ( 34/ 51)
+\Webhook::Webhook\SignatureInvalidException
+  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
+\Webhook::Webhook\SignatureMissingException
+  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
 \Webhook\Payload::Webhook\Payload\Event
   Methods: 100.00% ( 4/ 4)   Lines: 100.00% ( 11/ 11)
 \Webhook\Payload::Webhook\Payload\PingEvent
diff --git a/src/Callback.php b/src/Callback.php
@@ -12,13 +12,13 @@ class Callback {
     * @param \Webhook\Payload $payload Payload object.
     * 
     * @return void
-    * @throws \Webhook\InvalidRequest
+    * @throws \Webhook\InvalidRequestException
     * @deprecated
     * @see \Webhook\Callback::validatePayload()
     */
    public function validateRequest(string $hubSignature,string $rawPayload, Payload $payload)  {
       if (!Request::isValidSignature($this->_hubSecret, $hubSignature, $rawPayload)) {
-         throw new InvalidRequest("secret validation failed");
+         throw new InvalidRequestException("secret validation failed");
       }
       return $this->validatePayload($payload);
    }
@@ -31,7 +31,7 @@ public function validateRequest(string $hubSignature,string $rawPayload, Payload
     * @param \Webhook\Payload $payload Payload object.
     * 
     * @return void
-    * @throws \Webhook\InvalidRequest
+    * @throws \Webhook\InvalidRequestException
     */
    public function validatePayload(Payload $payload)  {
       
@@ -65,7 +65,7 @@ public function validatePayload(Payload $payload)  {
             
          }
          unset($url);
-         if (!$found_urlRule_match) throw new InvalidRequest("failed to find a match for the payload's repository URL; expected one of '".implode(", ",$this->_urlRule)."', got instead {$payload->repository->url}");
+         if (!$found_urlRule_match) throw new InvalidRequestException("failed to find a match for the payload's repository URL; expected one of '".implode(", ",$this->_urlRule)."', got instead {$payload->repository->url}");
       }
       
       if (count($this->_eventRule)) {
@@ -76,7 +76,7 @@ public function validatePayload(Payload $payload)  {
                break 1;
             }
          }
-         if (!$found_eventRule_match) throw new InvalidRequest("failed to find a match for the payload's GitHub-Event type");
+         if (!$found_eventRule_match) throw new InvalidRequestException("failed to find a match for the payload's GitHub-Event type");
       }
       
       
diff --git a/src/EventMissingException.php b/src/EventMissingException.php
@@ -0,0 +1,9 @@
+<?php
+namespace Webhook;
+
+class EventMissingException extends InvalidRequestException {
+   const REASON_TEXT = "missing gitHubEvent";
+   public function __construct() {
+      parent::__construct(static::REASON_TEXT,static::REASON_CODE_MISSING_EVENT);
+   }
+}
diff --git a/src/InvalidRequest.php b/src/InvalidRequest.php
@@ -1,24 +1,8 @@
 <?php
 namespace Webhook;
 
-class InvalidRequest extends \Exception {
-   /**
-    * Provides the reason the request was invalid.
-    * @return string reason
-    */
-   public function getReason(): string {
-      return $this->_reason;
-   }
-   /**
-    * @var string reason the request was invalid
-    * @private
-    */
-   private $_reason;
-   /**
-    * @param string reason the request was invalid
-    */
-   public function __construct(string $reason) {
-      $this->_reason = $reason;
-      parent::__construct($reason);
-   }
-}
+/**
+ * Kept for legacy purposes.
+ * @deprecated
+ */
+class InvalidRequest extends InvalidRequestException{}
diff --git a/src/InvalidRequestException.php b/src/InvalidRequestException.php
@@ -0,0 +1,31 @@
+<?php
+namespace Webhook;
+
+class InvalidRequestException extends \Exception {
+   
+   const REASON_CODE_SIGNATURE_INVALID = 100;
+   const REASON_CODE_MISSING_EVENT = 101;
+   const REASON_CODE_MISSING_SIGNATURE = 102;
+   const REASON_CODE_MESSAGE_BODY_INVALID = 103;
+   
+   /**
+    * Provides the reason the request was invalid.
+    * @return string reason
+    */
+   public function getReason(): string {
+      return $this->_reason;
+   }
+   /**
+    * @var string reason the request was invalid
+    * @private
+    */
+   private $_reason;
+   /**
+    * @param string $reason reason the request was invalid
+    * @param int $reason_code reason code
+    */
+   public function __construct(string $reason="unknown error",int $reason_code=0) {
+      $this->_reason = $reason;
+      parent::__construct("Invalid Request: $reason",$reason_code);
+   }
+}
diff --git a/src/MessageBodyInvalidException.php b/src/MessageBodyInvalidException.php
@@ -0,0 +1,9 @@
+<?php
+namespace Webhook;
+
+class MessageBodyInvalidException extends InvalidRequestException {
+   const REASON_TEXT = "messageBody is invalid: must be a JSON object or urlencoded string";
+   public function __construct() {
+      parent::__construct(static::REASON_TEXT,static::REASON_CODE_MESSAGE_BODY_INVALID);
+   }
+}
diff --git a/src/Request.php b/src/Request.php
@@ -119,24 +119,25 @@ final public static function isValidSignature(string $hub_secret, string $hub_si
     * @param string $hub_secret Secret string known by the webhoook provider.
     *
     * @return void
-    * @throws \Webhook\InvalidRequest
+    * @throws \Webhook\SignatureInvalidException
     */
    public function validateSignature(string $hub_secret) {
       if (!self::isValidSignature($hub_secret, $this->_hubSignature, $this->_messageBody)) {
-         throw new InvalidRequest("secret validation failed");
+         throw new SignatureInvalidException;
       }
    }
    
    /**
-    * @param string $messageBody
-    * @param string $hubSignature
-    * @param string $gitHubEvent
-    * @param string $contentType Optional.
-    * @param string $gitHubDelivery Optional.
-    * @param string $requestMethod Optional.
-    * @param string $userAgent Optional.    
+    * @param string $messageBody request body; the string value of the payload
+    * @param string $hubSignature value of the 'X-Hub-Signature' header
+    * @param string $gitHubEvent github event that triggered this request (i.e. "push" or "ping")
+    * @param string $contentType Optionally specify mime type of the request body (i.e. "application/json")
+    * @param string $gitHubDelivery Optionally specify value of the 'X-GitHub-Delivery' header
+    * @param string $requestMethod Optionally specify request method (i.e. "POST")
+    * @param string $userAgent Optionally specify value of the 'User-Agent' header 
     * 
-    * @throws \Webhook\InvalidRequest if invalid value specified for hubSignature, or gitHubEvent;  
+    * @throws \Webhook\SignatureMissingException
+    * @throws \Webhook\EventMissingException
     */
    public function __construct(
          string $messageBody,string $hubSignature,string $gitHubEvent,
@@ -150,25 +151,33 @@ public function __construct(
       $this->_hubSignature = $hubSignature;
       $this->_gitHubDelivery = $gitHubDelivery;
       $this->_requestMethod = $requestMethod;
+      $this->_userAgent = $userAgent;
+      
+      $bodyObject = null;
       
       if (empty($this->_contentType)) {
-         $this->_contentType = (new \finfo(\FILEINFO_MIME_TYPE))->buffer($this->_messageBody);
+         if ((null!==($bodyObject = json_decode($this->_messageBody))) && is_object($bodyObject)) {
+            $this->_contentType = 'application/json';
+         }
       }
       
-      $bodyObject = null;
-      if ($this->_contentType == 'application/json') {
-         $bodyObject = json_decode($this->_messageBody);
-      } elseif ($this->_contentType == 'application/x-www-form-urlencoded') {
-         parse_str($this->_messageBody,$bodyObject);
+      if ($bodyObject===null) {
+         if ($this->_contentType === 'application/json') {
+            $bodyObject = json_decode($this->_messageBody);
+         }
+      }
+      
+      if (empty($bodyObject) || !is_object($bodyObject)) {
+         throw new MessageBodyInvalidException;
       }
       
       if (empty($this->_hubSignature)) {
-         throw new InvalidRequest("missing hubSignature");
+         throw new SignatureMissingException;
       }
       
       $payload = null;
       $eventSubns = "";
-      if (!empty($this->_gitHubEvent) && !empty($bodyObject)) {
+      if (!empty($this->_gitHubEvent)) {
          $eventSubns = str_replace(" ","",ucwords(str_replace("_"," ",$this->_gitHubEvent)))."Event";
          $payload = __NAMESPACE__ . '\Payload\\'.$eventSubns;
          if (class_exists($payload)) {
@@ -177,7 +186,7 @@ public function __construct(
             $this->_payload = new Payload\Event($bodyObject, $this->_gitHubEvent);
          }
       } else {
-         throw new InvalidRequest("missing gitHubEvent");
+         throw new EventMissingException;
       }
    }
    
diff --git a/src/SignatureInvalidException.php b/src/SignatureInvalidException.php
@@ -0,0 +1,9 @@
+<?php
+namespace Webhook;
+
+class SignatureInvalidException extends InvalidRequestException {
+   const REASON_TEXT = "invalid hubSignature";
+   public function __construct() {
+      parent::__construct(static::REASON_TEXT,static::REASON_CODE_SIGNATURE_INVALID);
+   }
+}
diff --git a/src/SignatureMissingException.php b/src/SignatureMissingException.php
@@ -0,0 +1,9 @@
+<?php
+namespace Webhook;
+
+class SignatureMissingException extends InvalidRequestException {
+   const REASON_TEXT = "missing hubSignature";
+   public function __construct() {
+      parent::__construct(static::REASON_TEXT,static::REASON_CODE_MISSING_SIGNATURE);
+   }
+}
diff --git a/tests.sh b/tests.sh
@@ -41,6 +41,7 @@ while getopts :?qhua-: arg; do { case $arg in
       html-coverage) HTML_COVERAGE_REPORT=1;;
       print-coverage) PRINT_COVERAGE=1;;
       show-coverage) PRINT_COVERAGE=1;;
+      coverage) PRINT_COVERAGE=1;;
       *) >&2 echo "$ME_NAME: unrecognized long option --$OPTARG"; OPTION_STATUS=$ME_ERROR_USAGE;;
    esac ;; 
    *) >&2 echo "$ME_NAME: unrecognized option -$OPTARG"; OPTION_STATUS=$ME_ERROR_USAGE;;
diff --git a/tests/phpunit/TestCase/PingPayloadTrait.php b/tests/phpunit/TestCase/PingPayloadTrait.php
@@ -2,8 +2,14 @@
 declare(strict_types=1);
 namespace Webhook\TestCase;
 
+use Webhook\Payload\PingEvent;
+
 trait PingPayloadTrait {
    
+   public static function getExpectedPingPayloadClass() : string {
+      return PingEvent::class;
+   }
+   
    public static function getExpectedPingEventName() : string {
       return 'ping';
    }
@@ -36,8 +42,12 @@ public static function getPingRequestObject() : \stdClass {
       return $request;
    }
    
+   public static function getPingRequestSignature(string $hub_secret) : string {
+      return 'sha1='.hash_hmac('sha1', static::getPingRequestBody(), $hub_secret);
+   }
+   
    public static function getPingRequestBody() : string {
-      return <<<"PUSH_REQUEST_BODY"
+      $body = <<<"PUSH_REQUEST_BODY"
 {
   "zen": "It's not fully flopped until it's farting.",
   "hook_id": 66666666,
@@ -187,6 +197,7 @@ public static function getPingRequestBody() : string {
   }
 }
 PUSH_REQUEST_BODY;
+      return json_encode(json_decode($body));
    }
    
    
diff --git a/tests/phpunit/TestCase/PushPayloadTrait.php b/tests/phpunit/TestCase/PushPayloadTrait.php
@@ -2,8 +2,14 @@
 declare(strict_types=1);
 namespace Webhook\TestCase;
 
+use Webhook\Payload\PushEvent;
+
 trait PushPayloadTrait {
    
+   public static function getExpectedPushPayloadClass() : string {
+      return PushEvent::class;
+   }
+   
    public static function getExpectedPushEventName() : string {
       return 'push';
    }
@@ -36,8 +42,12 @@ public static function getPushRequestObject() : \stdClass {
       return $request;
    }
    
+   public static function getPushRequestSignature(string $hub_secret) : string {
+      return 'sha1='.hash_hmac('sha1', static::getPushRequestBody(), $hub_secret);
+   }
+   
    public static function getPushRequestBody() : string {
-      return <<<"PUSH_REQUEST_BODY"
+      $body = <<<"PUSH_REQUEST_BODY"
 {
   "ref": "refs/heads/master",
   "before": "d6f2bdc7ec0a166a436113029a1d8caa05e8bc2d",
@@ -247,6 +257,7 @@ public static function getPushRequestBody() : string {
   }
 }
 PUSH_REQUEST_BODY;
+      return json_encode(json_decode($body));
    }
    
    
diff --git a/tests/phpunit/Tests/Unit/RequestDataTest.php b/tests/phpunit/Tests/Unit/RequestDataTest.php
diff --git a/tests/phpunit/Tests/Unit/RequestSignatureTest.php b/tests/phpunit/Tests/Unit/RequestSignatureTest.php
diff --git a/web/endpoint-example.php b/web/endpoint-example.php

Original file line number	Diff line number	Diff line change
`@@ -12,13 +12,13 @@ class Callback {`
`12`	`12`	`* @param \Webhook\Payload $payload Payload object.`
`13`	`13`	`*`
`14`	`14`	`* @return void`
`15`		`- * @throws \Webhook\InvalidRequest`
	`15`	`+ * @throws \Webhook\InvalidRequestException`
`16`	`16`	`* @deprecated`
`17`	`17`	`* @see \Webhook\Callback::validatePayload()`
`18`	`18`	`*/`
`19`	`19`	`public function validateRequest(string $hubSignature,string $rawPayload, Payload $payload) {`
`20`	`20`	`if (!Request::isValidSignature($this->_hubSecret, $hubSignature, $rawPayload)) {`
`21`		`- throw new InvalidRequest("secret validation failed");`
	`21`	`+ throw new InvalidRequestException("secret validation failed");`
`22`	`22`	`}`
`23`	`23`	`return $this->validatePayload($payload);`
`24`	`24`	`}`
`@@ -31,7 +31,7 @@ public function validateRequest(string $hubSignature,string $rawPayload, Payload`
`31`	`31`	`* @param \Webhook\Payload $payload Payload object.`
`32`	`32`	`*`
`33`	`33`	`* @return void`
`34`		`- * @throws \Webhook\InvalidRequest`
	`34`	`+ * @throws \Webhook\InvalidRequestException`
`35`	`35`	`*/`
`36`	`36`	`public function validatePayload(Payload $payload) {`
`37`	`37`
`@@ -65,7 +65,7 @@ public function validatePayload(Payload $payload) {`
`65`	`65`
`66`	`66`	`}`
`67`	`67`	`unset($url);`
`68`		`- if (!$found_urlRule_match) throw new InvalidRequest("failed to find a match for the payload's repository URL; expected one of '".implode(", ",$this->_urlRule)."', got instead {$payload->repository->url}");`
	`68`	`+ if (!$found_urlRule_match) throw new InvalidRequestException("failed to find a match for the payload's repository URL; expected one of '".implode(", ",$this->_urlRule)."', got instead {$payload->repository->url}");`
`69`	`69`	`}`
`70`	`70`
`71`	`71`	`if (count($this->_eventRule)) {`
`@@ -76,7 +76,7 @@ public function validatePayload(Payload $payload) {`
`76`	`76`	`break 1;`
`77`	`77`	`}`
`78`	`78`	`}`
`79`		`- if (!$found_eventRule_match) throw new InvalidRequest("failed to find a match for the payload's GitHub-Event type");`
	`79`	`+ if (!$found_eventRule_match) throw new InvalidRequestException("failed to find a match for the payload's GitHub-Event type");`
`80`	`80`	`}`
`81`	`81`
`82`	`82`