add unit tests for user and auth

2026-05-18 21:36:10 +03:00 · 2026-05-18 21:36:10 +03:00 · 410b752183
commit 410b752183
parent 613180d459
6 changed files with 315 additions and 0 deletions
--- a/backend/tests/Fakes/FakeSessionRepository.php
+++ b/backend/tests/Fakes/FakeSessionRepository.php
@ -0,0 +1,47 @@
 <?php
 namespace Tests\Fakes;
 use App\Auth\CreateSessionDto;
 use App\Auth\Session;
 use App\Auth\SessionRepository;
 use DateTimeImmutable;
 class FakeSessionRepository implements SessionRepository
 {
    private array $sessionsByToken = [];
    public function create(CreateSessionDto $dto): Session
    {
        $session = new Session(
            $dto->token,
            $dto->user,
            $dto->createdAt,
            $dto->expiresAt
        );
        $this->sessionsByToken[$dto->token] = $session;
        return $session;
    }
    public function findByToken(string $token): ?Session
    {
        if (! isset($this->sessionsByToken[$token])) {
            return null;
        }
        $stored = $this->sessionsByToken[$token];
        return new Session(
            $stored->getToken(),
            $stored->getUser(),
            $stored->getCreatedAt(),
            $stored->getExpiresAt()
        );
    }
    public function deleteByToken(string $token): void
    {
        unset($this->sessionsByToken[$token]);
    }
 }
--- a/backend/tests/Fakes/FakeUserRepository.php
+++ b/backend/tests/Fakes/FakeUserRepository.php
@ -0,0 +1,70 @@
 <?php
 namespace Tests\Fakes;
 use App\Shared\ValueObject\EmailAddress;
 use App\User\CreateUserDto;
 use App\User\User;
 use App\User\UserRepository;
 class FakeUserRepository implements UserRepository
 {
    private array $usersById = [];
    private array $usersByEmail = [];
    public function create(CreateUserDto $dto): User
    {
        $id = count($this->usersById) + 1;
        $user = new User($id, $dto->email, $dto->passwordHash);
        $this->usersById[$id] = $user;
        $this->usersByEmail[$dto->email->value()] = $user;
        return $user;
    }
    public function findByEmail(EmailAddress $email): ?User
    {
        if (! isset($this->usersByEmail[$email->value()])) {
            return null;
        }
        $stored = $this->usersByEmail[$email->value()];
        return new User(
            $stored->getId(),
            $stored->getEmail(),
            $stored->getPasswordHash()
        );
    }
    public function findByEmailDomain(string $domain): array
    {
        $result = [];
        foreach ($this->usersByEmail as $email => $stored) {
            if (str_ends_with($email, '@' . $domain)) {
                $result[] = new User(
                    $stored->getId(),
                    $stored->getEmail(),
                    $stored->getPasswordHash()
                );
            }
        }
        return $result;
    }
    public function find(int $id): ?User
    {
        if (! isset($this->usersById[$id])) {
            return null;
        }
        $stored = $this->usersById[$id];
        return new User(
            $stored->getId(),
            $stored->getEmail(),
            $stored->getPasswordHash()
        );
    }
 }
--- a/backend/tests/Unit/Auth/UseCases/AuthenticateUserTest.php
+++ b/backend/tests/Unit/Auth/UseCases/AuthenticateUserTest.php
@ -0,0 +1,89 @@
 <?php
 namespace Tests\Unit\Auth\UseCases;
 use App\Auth\PasswordHasher;
 use App\Auth\UseCases\AuthenticateUser\AuthenticateUser;
 use App\Auth\UseCases\AuthenticateUser\AuthenticateUserRequest;
 use App\Exceptions\BadRequestException;
 use App\Exceptions\UnauthorizedException;
 use App\Shared\ValueObject\EmailAddress;
 use App\User\User;
 use PHPUnit\Framework\TestCase;
 use Tests\Fakes\FakeUserRepository;
 class AuthenticateUserTest extends TestCase
 {
    private FakeUserRepository $userRepo;
    private PasswordHasher $hasher;
    private AuthenticateUser $authenticateUser;
    protected function setUp(): void
    {
        $this->userRepo = new FakeUserRepository();
        $this->hasher = new class implements PasswordHasher {
            public function hash(string $password): string
            {
                return 'hashed-' . $password;
            }
            public function verify(string $password, string $hash): bool
            {
                return $hash === 'hashed-' . $password;
            }
        };
        $this->authenticateUser = new AuthenticateUser($this->userRepo, $this->hasher);
    }
    public function testAuthenticatesValidUser(): void
    {
        $email = new EmailAddress('user@example.com');
        $this->userRepo->create(new \App\User\CreateUserDto($email, 'hashed-secret'));
        $request = new AuthenticateUserRequest('user@example.com', 'secret');
        $user = $this->authenticateUser->execute($request);
        $this->assertInstanceOf(User::class, $user);
        $this->assertSame('user@example.com', $user->getEmail()->value());
    }
    public function testThrowsWhenEmailMissing(): void
    {
        $this->expectException(BadRequestException::class);
        $this->expectExceptionMessage('email is required');
        $request = new AuthenticateUserRequest(null, 'secret');
        $this->authenticateUser->execute($request);
    }
    public function testThrowsWhenPasswordMissing(): void
    {
        $this->expectException(BadRequestException::class);
        $this->expectExceptionMessage('password is required');
        $request = new AuthenticateUserRequest('user@example.com', null);
        $this->authenticateUser->execute($request);
    }
    public function testThrowsWhenUserNotFound(): void
    {
        $this->expectException(UnauthorizedException::class);
        $this->expectExceptionMessage('invalid credentials');
        $request = new AuthenticateUserRequest('missing@example.com', 'secret');
        $this->authenticateUser->execute($request);
    }
    public function testThrowsWhenPasswordIncorrect(): void
    {
        $email = new EmailAddress('user@example.com');
        $this->userRepo->create(new \App\User\CreateUserDto($email, 'hashed-secret'));
        $this->expectException(UnauthorizedException::class);
        $this->expectExceptionMessage('invalid credentials');
        $request = new AuthenticateUserRequest('user@example.com', 'wrong');
        $this->authenticateUser->execute($request);
    }
 }
--- a/backend/tests/Unit/Auth/UseCases/CreateSessionTest.php
+++ b/backend/tests/Unit/Auth/UseCases/CreateSessionTest.php
@ -0,0 +1,51 @@
 <?php
 namespace Tests\Unit\Auth\UseCases;
 use App\Auth\Clock;
 use App\Auth\TokenGenerator;
 use App\Auth\UseCases\CreateSession\CreateSession;
 use App\Shared\ValueObject\EmailAddress;
 use App\User\User;
 use DateTimeImmutable;
 use PHPUnit\Framework\TestCase;
 use Tests\Fakes\FakeSessionRepository;
 class CreateSessionTest extends TestCase
 {
    private FakeSessionRepository $sessionRepo;
    private TokenGenerator $tokenGenerator;
    private Clock $clock;
    private CreateSession $createSession;
    protected function setUp(): void
    {
        $this->sessionRepo = new FakeSessionRepository();
        $this->tokenGenerator = new class implements TokenGenerator {
            public function generate(): string
            {
                return 'fake-token-123';
            }
        };
        $this->clock = new class implements Clock {
            public function now(): DateTimeImmutable
            {
                return new DateTimeImmutable('2026-05-18 12:00:00', new \DateTimeZone('UTC'));
            }
        };
        $this->createSession = new CreateSession($this->sessionRepo, $this->tokenGenerator, $this->clock);
    }
    public function testCreatesSessionForUser(): void
    {
        $email = new EmailAddress('user@example.com');
        $user = new User(1, $email, 'hashed-password');
        $session = $this->createSession->execute($user);
        $this->assertSame('fake-token-123', $session->getToken());
        $this->assertSame($user, $session->getUser());
        $this->assertFalse($session->isExpired($this->clock->now()));
    }
 }
--- a/backend/tests/Unit/Auth/UseCases/LogoutTest.php
+++ b/backend/tests/Unit/Auth/UseCases/LogoutTest.php
@ -0,0 +1,38 @@
 <?php
 namespace Tests\Unit\Auth\UseCases;
 use App\Auth\UseCases\Logout\Logout;
 use App\Shared\ValueObject\EmailAddress;
 use App\User\User;
 use PHPUnit\Framework\TestCase;
 use Tests\Fakes\FakeSessionRepository;
 class LogoutTest extends TestCase
 {
    private FakeSessionRepository $sessionRepo;
    private Logout $logout;
    protected function setUp(): void
    {
        $this->sessionRepo = new FakeSessionRepository();
        $this->logout = new Logout($this->sessionRepo);
    }
    public function testDeletesSessionByToken(): void
    {
        $email = new EmailAddress('user@example.com');
        $user = new User(1, $email, 'hashed-password');
        $session = $this->sessionRepo->create(new \App\Auth\CreateSessionDto(
            'session-token',
            $user,
            new \DateTimeImmutable(),
            new \DateTimeImmutable('+1 hour')
        ));
        $this->logout->execute('session-token');
        $this->assertNull($this->sessionRepo->findByToken('session-token'));
    }
 }
--- a/backend/tests/Unit/User/UserTest.php
+++ b/backend/tests/Unit/User/UserTest.php
@ -0,0 +1,20 @@
 <?php
 namespace Tests\Unit\User;
 use App\Shared\ValueObject\EmailAddress;
 use App\User\User;
 use PHPUnit\Framework\TestCase;
 class UserTest extends TestCase
 {
    public function testCreatesUserWithPasswordHash(): void
    {
        $email = new EmailAddress('test@example.com');
        $user = new User(1, $email, 'hashed-password');
        $this->assertSame(1, $user->getId());
        $this->assertSame($email, $user->getEmail());
        $this->assertSame('hashed-password', $user->getPasswordHash());
    }
 }