Laravel 积极测试缓存 json-请求
Laravel tests aggressively caches json-requests
我想测试 API 端点对不同用户的行为方式。我使用相应的 JWT 令牌创建三个用户并相应地访问端点。第一个完美无缺,但接下来的两个请求就好像它们是由第一个用户完成的一样。
代币肯定是对应用户的。手动访问此路由有效。我错过了什么吗?
还有其他人遇到过这个问题吗?有什么解决办法吗?
/**
* We want to test, if a private profile and/or status is visible to the user itself, a following user, a
* not-following user and a guest. Therefore we create three users: bob (private profile), gertrud (following bob),
* and alice (not following bob). Also Gertrud and bob will have their own seperate check-ins.
*/
public function setUp(): void {
parent::setUp();
$this->users = $this->createAliceBobAndGertrud();
}
/**
* Watching a private profile is characterized by being able to see ones statuses on a profile page.
* If the statuses are returned as null, you're not allowed to see the statuses.
*
* @test
*/
public function view_profile_of_private_user() {
// Can Alice see the profile of Bob? => no
$alice = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->alice->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$alice = json_decode($alice->getContent(), true);
$this->assertEquals(null, $alice['statuses']);
// Can Bob see the profile of bob? => yes
$bob = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->bob->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$bob = json_decode($bob->getContent(), true);
$this->assertNotEquals(null, $bob['statuses']);
// Can Gertrud see the profile of bob? => yes
$gertrud = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->gertrud->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$gertrud = json_decode($gertrud->getContent(), true);
$this->assertNotEquals(null, $gertrud['statuses']);
}
/**
* This method creates thee users: Gertrud, Alice and Bob.
* Bob is a private profile, followed by Gertrud. Alice is a seperate user, following nobody.
* Bob has one check in.
*
* @return stdClass
* @throws \App\Exceptions\AlreadyFollowingException
*/
public function createAliceBobAndGertrud(): stdClass {
$data = new stdClass();
$data->bob = new stdClass();
$data->gertrud = new stdClass();
$data->alice = new stdClass();
// Create Gertrud, Alice and Bob
$data->bob->user = $this->createGDPRAckedUser();
$data->bob->token = $data->bob->user->createToken('token')->accessToken;
$data->bob->user->privacy_ack_at = now();
$data->gertrud->user = $this->createGDPRAckedUser();
$data->gertrud->token = $data->gertrud->user->createToken('token')->accessToken;
$data->gertrud->user->privacy_ack_at = now();
$data->alice->user = $this->createGDPRAckedUser();
$data->alice->token = $data->alice->user->createToken('token')->accessToken;
$data->alice->user->privacy_ack_at = now();
$data->bob->user->save();
$data->gertrud->user->save();
$data->alice->user->save();
// Create new CheckIn for Bob
$now = new DateTime("+2 day 12:45");
$this->checkin("Frankfurt Hbf", $now, $data->bob->user);
// Make Gertrud follow bob and make bob's profile private
UserController::destroyFollow($data->alice->user, $data->bob->user);
UserController::createFollow($data->gertrud->user, $data->bob->user);
$data->bob->user->update(['private_profile' => 'true']);
$this->assertTrue($data->bob->user->private_profile);
return $data;
}
我认为问题在于您每次都在调用 withHeaders 而没有清除之前的 Authorization header 并且只有第一个 (Alice) 被检查。我会在每次调用后 debug/dump 请求 object 来验证 headers。
我想测试 API 端点对不同用户的行为方式。我使用相应的 JWT 令牌创建三个用户并相应地访问端点。第一个完美无缺,但接下来的两个请求就好像它们是由第一个用户完成的一样。
代币肯定是对应用户的。手动访问此路由有效。我错过了什么吗?
还有其他人遇到过这个问题吗?有什么解决办法吗?
/**
* We want to test, if a private profile and/or status is visible to the user itself, a following user, a
* not-following user and a guest. Therefore we create three users: bob (private profile), gertrud (following bob),
* and alice (not following bob). Also Gertrud and bob will have their own seperate check-ins.
*/
public function setUp(): void {
parent::setUp();
$this->users = $this->createAliceBobAndGertrud();
}
/**
* Watching a private profile is characterized by being able to see ones statuses on a profile page.
* If the statuses are returned as null, you're not allowed to see the statuses.
*
* @test
*/
public function view_profile_of_private_user() {
// Can Alice see the profile of Bob? => no
$alice = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->alice->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$alice = json_decode($alice->getContent(), true);
$this->assertEquals(null, $alice['statuses']);
// Can Bob see the profile of bob? => yes
$bob = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->bob->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$bob = json_decode($bob->getContent(), true);
$this->assertNotEquals(null, $bob['statuses']);
// Can Gertrud see the profile of bob? => yes
$gertrud = $this->withHeaders(['Authorization' => 'Bearer ' . $this->users->gertrud->token])
->get(route('api.v0.user', ['username' => $this->users->bob->user->username]));
$gertrud = json_decode($gertrud->getContent(), true);
$this->assertNotEquals(null, $gertrud['statuses']);
}
/**
* This method creates thee users: Gertrud, Alice and Bob.
* Bob is a private profile, followed by Gertrud. Alice is a seperate user, following nobody.
* Bob has one check in.
*
* @return stdClass
* @throws \App\Exceptions\AlreadyFollowingException
*/
public function createAliceBobAndGertrud(): stdClass {
$data = new stdClass();
$data->bob = new stdClass();
$data->gertrud = new stdClass();
$data->alice = new stdClass();
// Create Gertrud, Alice and Bob
$data->bob->user = $this->createGDPRAckedUser();
$data->bob->token = $data->bob->user->createToken('token')->accessToken;
$data->bob->user->privacy_ack_at = now();
$data->gertrud->user = $this->createGDPRAckedUser();
$data->gertrud->token = $data->gertrud->user->createToken('token')->accessToken;
$data->gertrud->user->privacy_ack_at = now();
$data->alice->user = $this->createGDPRAckedUser();
$data->alice->token = $data->alice->user->createToken('token')->accessToken;
$data->alice->user->privacy_ack_at = now();
$data->bob->user->save();
$data->gertrud->user->save();
$data->alice->user->save();
// Create new CheckIn for Bob
$now = new DateTime("+2 day 12:45");
$this->checkin("Frankfurt Hbf", $now, $data->bob->user);
// Make Gertrud follow bob and make bob's profile private
UserController::destroyFollow($data->alice->user, $data->bob->user);
UserController::createFollow($data->gertrud->user, $data->bob->user);
$data->bob->user->update(['private_profile' => 'true']);
$this->assertTrue($data->bob->user->private_profile);
return $data;
}
我认为问题在于您每次都在调用 withHeaders 而没有清除之前的 Authorization header 并且只有第一个 (Alice) 被检查。我会在每次调用后 debug/dump 请求 object 来验证 headers。