OXIESEC PANEL

Name	Size	Modified	Perms
📁 ..	-	08/12/2024 10:33:10 AM	rwxr-xr-x
📄 AccessTokenTest.php	18.63 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 ApplicationDefaultCredentialsTest.php	29.48 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 BaseTest.php	1.08 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 Cache	-	08/12/2024 10:33:43 AM	rwxr-xr-x
📄 CacheTraitTest.php	6.01 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 CredentialSource	-	08/12/2024 10:33:44 AM	rwxr-xr-x
📁 Credentials	-	08/12/2024 10:33:43 AM	rwxr-xr-x
📄 CredentialsLoaderTest.php	5.17 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 ExecutableHandler	-	08/12/2024 10:33:44 AM	rwxr-xr-x
📄 FetchAuthTokenCacheTest.php	28.14 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 FetchAuthTokenTest.php	8.38 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 GCECacheTest.php	5.53 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 HttpHandler	-	08/12/2024 10:33:45 AM	rwxr-xr-x
📄 IamTest.php	2.97 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 MetricsTraitTest.php	1.79 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 Middleware	-	08/12/2024 10:33:45 AM	rwxr-xr-x
📄 OAuth2Test.php	44.78 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 ObservabilityMetricsTest.php	7.7 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 ServiceAccountSignerTraitTest.php	1.9 KB	08/12/2024 10:33:11 AM	rw-r--r--
📄 bootstrap.php	1.03 KB	08/12/2024 10:33:11 AM	rw-r--r--
📁 fixtures	-	08/12/2024 10:36:15 AM	rwxr-xr-x
📁 fixtures2	-	08/12/2024 10:36:15 AM	rwxr-xr-x
📁 fixtures3	-	08/12/2024 10:33:44 AM	rwxr-xr-x
📁 fixtures4	-	08/12/2024 10:36:16 AM	rwxr-xr-x
📁 fixtures5	-	08/12/2024 10:36:16 AM	rwxr-xr-x
📁 fixtures6	-	08/12/2024 10:33:45 AM	rwxr-xr-x
📁 mocks	-	08/12/2024 10:33:45 AM	rwxr-xr-x
📄 phpstan-autoload.php	433 bytes	08/12/2024 10:33:11 AM	rw-r--r--

Editing: CredentialsLoaderTest.php

<?php
/*
 * Copyright 2020 Google Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

namespace Google\Auth\Tests;

use Google\Auth\CredentialsLoader;
use PHPUnit\Framework\TestCase;
use RuntimeException;
use UnexpectedValueException;

class CredentialsLoaderTest extends TestCase
{
    public function testUpdateMetadataSkipsWhenAuthenticationisSet()
    {
        $creds = new TestCredentialsLoader();
        $metadata = $creds->updateMetadata(['authentication' => 'foo']);
        $this->assertArrayHasKey('authentication', $metadata);
        $this->assertEquals('foo', $metadata['authentication']);
    }

/** @runInSeparateProcess */
    public function testGetDefaultClientCertSource()
    {
        putenv('HOME=' . __DIR__ . '/fixtures4/valid');

$callback = CredentialsLoader::getDefaultClientCertSource();
        $this->assertNotNull($callback);

$output = $callback();
        $this->assertEquals('foo', $output);
    }

/** @runInSeparateProcess */
    public function testNonExistantDefaultClientCertSource()
    {
        putenv('HOME=');

$callback = CredentialsLoader::getDefaultClientCertSource();
        $this->assertNull($callback);
    }

/**
     * @runInSeparateProcess
     */
    public function testDefaultClientCertSourceInvalidJsonThrowsException()
    {
        $this->expectException(UnexpectedValueException::class);
        $this->expectExceptionMessage('Invalid client cert source JSON');

putenv('HOME=' . __DIR__ . '/fixtures4/invalidjson');

CredentialsLoader::getDefaultClientCertSource();
    }

/**
     * @runInSeparateProcess
     */
    public function testDefaultClientCertSourceInvalidKeyThrowsException()
    {
        $this->expectException(UnexpectedValueException::class);
        $this->expectExceptionMessage('cert source requires "cert_provider_command"');

putenv('HOME=' . __DIR__ . '/fixtures4/invalidkey');

CredentialsLoader::getDefaultClientCertSource();
    }

/**
     * @runInSeparateProcess
     */
    public function testDefaultClientCertSourceInvalidValueThrowsException()
    {
        $this->expectException(UnexpectedValueException::class);
        $this->expectExceptionMessage('cert source expects "cert_provider_command" to be an array');

putenv('HOME=' . __DIR__ . '/fixtures4/invalidvalue');

CredentialsLoader::getDefaultClientCertSource();
    }

/**
     * @runInSeparateProcess
     */
    public function testActualDefaultClientCertSource()
    {
        $clientCertSource = CredentialsLoader::getDefaultClientCertSource();
        if (is_null($clientCertSource)) {
            $this->markTestSkipped('No client cert source found');
        }
        $creds = $clientCertSource();
        $this->assertTrue(is_string($creds));
        $this->assertStringContainsString('-----BEGIN CERTIFICATE-----', $creds);
        $this->assertStringContainsString('-----BEGIN PRIVATE KEY-----', $creds);
    }

/**
     * @runInSeparateProcess
     */
    public function testDefaultClientCertSourceInvalidCmdThrowsException()
    {
        $this->expectException(RuntimeException::class);
        $this->expectExceptionMessage('"cert_provider_command" failed with a nonzero exit code');

putenv('HOME=' . __DIR__ . '/fixtures4/invalidcmd');

$callback = CredentialsLoader::getDefaultClientCertSource();

// Close stderr so output doesnt show in our test runner
        fclose(STDERR);

$callback();
    }

/**
     * @runInSeparateProcess
     */
    public function testShouldLoadClientCertSourceInvalidValueIsFalse()
    {
        putenv(CredentialsLoader::MTLS_CERT_ENV_VAR . '=foo');

$this->assertFalse(CredentialsLoader::shouldLoadClientCertSource());
    }

/**
     * @runInSeparateProcess
     */
    public function testShouldLoadClientCertSourceDefaultValueIsFalse()
    {
        putenv(CredentialsLoader::MTLS_CERT_ENV_VAR);

$this->assertFalse(CredentialsLoader::shouldLoadClientCertSource());
    }

/**
     * @runInSeparateProcess
     */
    public function testShouldLoadClientCertSourceIsTrue()
    {
        putenv(CredentialsLoader::MTLS_CERT_ENV_VAR . '=true');

$this->assertTrue(CredentialsLoader::shouldLoadClientCertSource());
    }
}

class TestCredentialsLoader extends CredentialsLoader
{
    public function getCacheKey()
    {
        return 'test';
    }

public function fetchAuthToken(callable $httpHandler = null)
    {
        return 'test';
    }

public function getLastReceivedToken()
    {
        return null;
    }
}