stage 2 of oauth removal, switch to sanctum pat tokens completed, docs updated

2025-11-07 07:46:53 +01:00
parent 776da57ca9
commit 67affd3317
41 changed files with 124 additions and 2148 deletions
--- a/tests/Feature/TenantCreditsTest.php
+++ b/tests/Feature/TenantCreditsTest.php
@@ -2,10 +2,10 @@

 namespace Tests\Feature;

-use App\Models\OAuthClient;
 use App\Models\Tenant;
+use App\Models\User;
 use Illuminate\Foundation\Testing\RefreshDatabase;
-use Illuminate\Support\Str;
+use Illuminate\Support\Facades\Hash;
 use Tests\TestCase;

 class TenantCreditsTest extends TestCase
@@ -19,16 +19,21 @@ class TenantCreditsTest extends TestCase
            'event_credits_balance' => 0,
        ]);

-        $client = OAuthClient::create([
-            'id' => (string) Str::uuid(),
-            'client_id' => 'tenant-admin-app',
+        $user = User::factory()->create([
            'tenant_id' => $tenant->id,
-            'redirect_uris' => ['http://localhost/callback'],
-            'scopes' => ['tenant:read', 'tenant:write'],
-            'is_active' => true,
+            'role' => 'tenant_admin',
+            'email' => 'tenant-admin@example.com',
+            'password' => Hash::make('password'),
        ]);

-        [$accessToken] = $this->obtainTokens($client);
+        $login = $this->postJson('/api/v1/tenant-auth/login', [
+            'login' => $user->email,
+            'password' => 'password',
+        ]);
+
+        $login->assertOk();
+
+        $accessToken = $login->json('token');

        $headers = [
            'Authorization' => 'Bearer '.$accessToken,
@@ -77,46 +82,5 @@ class TenantCreditsTest extends TestCase
        $syncResponse->assertOk()
            ->assertJsonStructure(['balance', 'subscription_active', 'server_time']);
    }
-
-    private function obtainTokens(OAuthClient $client): array
-    {
-        $codeVerifier = 'tenant-credits-code-verifier-1234567890';
-        $codeChallenge = rtrim(strtr(base64_encode(hash('sha256', $codeVerifier, true)), '+/', '-_'), '=');
-        $state = Str::random(10);
-
-        $response = $this->get('/api/v1/oauth/authorize?' . http_build_query([
-            'client_id' => $client->client_id,
-            'redirect_uri' => 'http://localhost/callback',
-            'response_type' => 'code',
-            'scope' => 'tenant:read tenant:write',
-            'state' => $state,
-            'code_challenge' => $codeChallenge,
-            'code_challenge_method' => 'S256',
-        ]));
-
-        $response->assertRedirect();
-        $location = $response->headers->get('Location');
-        $this->assertNotNull($location);
-
-        $query = [];
-        parse_str(parse_url($location, PHP_URL_QUERY) ?? '', $query);
-        $authorizationCode = $query['code'] ?? null;
-        $this->assertNotNull($authorizationCode, 'Authorization code should be present');
-
-        $tokenResponse = $this->post('/api/v1/oauth/token', [
-            'grant_type' => 'authorization_code',
-            'code' => $authorizationCode,
-            'client_id' => $client->client_id,
-            'redirect_uri' => 'http://localhost/callback',
-            'code_verifier' => $codeVerifier,
-        ]);
-
-        $tokenResponse->assertOk();
-
-        return [
-            $tokenResponse->json('access_token'),
-            $tokenResponse->json('refresh_token'),
-        ];
-    }
 }