soeren/fotospiel-app
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
5432456ffd65e4b4eb64ffdc0117b98e8d0dbaf8
fotospiel-app/tests/Feature/FullUserFlowTest.php

191 lines
6.8 KiB
PHP
Raw Blame History

<?php
namespace Tests\Feature;
use App\Mail\Welcome;
use App\Models\Package;
use App\Models\PackagePurchase;
use App\Models\Tenant;
use App\Models\TenantPackage;
use App\Models\User;
use Illuminate\Foundation\Testing\RefreshDatabase;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Mail;
use Stripe\StripeClient;
use Tests\TestCase;
class FullUserFlowTest extends TestCase
{
use RefreshDatabase;
public function test_full_user_flow_registration_login_paid_purchase()
{
Mail::fake();
// Schritt 1: Registrierung mit Free Package
$freePackage = Package::factory()->endcustomer()->create(['price' => 0]);
$registrationData = [
'username' => 'flowuser',
'email' => 'flow@example.com',
'password' => 'Password123!',
'password_confirmation' => 'Password123!',
'first_name' => 'Max',
'last_name' => 'Mustermann',
'address' => 'Musterstr. 1',
'phone' => '+49123456789',
'privacy_consent' => 1,
'package_id' => $freePackage->id,
];
$response = $this->post('/de/register', $registrationData);
$this->assertDatabaseHas('users', ['email' => 'flow@example.com']);
$user = User::where('email', 'flow@example.com')->first();
$this->assertDatabaseHas('tenants', ['user_id' => $user->id]);
$tenant = Tenant::where('user_id', $user->id)->first();
$this->assertAuthenticated();
$response->assertRedirect(route('verification.notice', absolute: false));
$this->assertNotNull($user);
$this->assertNotNull($tenant);
$this->assertDatabaseHas('tenant_packages', [
'tenant_id' => $tenant->id,
'package_id' => $freePackage->id,
'active' => true,
]);
$this->assertDatabaseHas('package_purchases', [
'tenant_id' => $tenant->id,
'package_id' => $freePackage->id,
'type' => 'endcustomer_event',
'price' => 0,
]);
$this->assertEquals('active', $tenant->subscription_status);
// Für E2E-Test: Simuliere Email-Verification
$user->markEmailAsVerified();
// Schritt 2: Logout und Login
Auth::logout();
$this->assertGuest();
$loginResponse = $this->post(route('login.store'), [
'login' => 'flow@example.com',
'password' => 'Password123!',
]);
$this->assertAuthenticated();
$loginResponse->assertRedirect(route('dashboard', absolute: false));
// Schritt 3: Paid Package Bestellung (Mock Stripe)
$paidPackage = Package::factory()->reseller()->create(['price' => 10]);
// Mock Stripe für Erfolg
$this->mock(StripeClient::class, function ($mock) {
$mock->shouldReceive('checkout->sessions->create')
->andReturn((object) ['url' => 'https://mock-stripe.com']);
});
// Simuliere Kauf (GET zu buy.packages, aber da es Redirect ist, prüfe Session oder folge)
// Für E2E: Angenommen, nach Mock wird Package zugewiesen (in real: Webhook, hier simuliere Success)
// Erstelle manuell für Test (in real: via Success-Route nach Zahlung)
// Simuliere Success nach Zahlung
TenantPackage::create([
'tenant_id' => $tenant->id,
'package_id' => $paidPackage->id,
'active' => true,
'price' => 10,
'purchased_at' => now(),
'expires_at' => now()->addYear(),
]);
PackagePurchase::create([
'tenant_id' => $tenant->id,
'package_id' => $paidPackage->id,
'type' => 'reseller_subscription',
'provider' => 'stripe',
'provider_id' => 'stripe',
'price' => 10,
'purchased_at' => now(),
]);
$tenant->update(['subscription_status' => 'active']);
// Assertions für gesamten Flow
$this->assertDatabaseHas('package_purchases', [
'tenant_id' => $tenant->id,
'package_id' => $paidPackage->id,
'type' => 'reseller_subscription',
'provider' => 'stripe',
]);
// Überprüfe, dass 2 Purchases existieren (Free + Paid)
$this->assertEquals(2, PackagePurchase::where('tenant_id', $tenant->id)->count());
// Mock Mails (nur Welcome, da Purchase keine dedizierte Klasse hat)
Mail::assertSent(Welcome::class, function ($mail) use ($user) {
return $mail->to[0]['address'] === $user->email;
});
// Finaler Redirect zu Success oder Dashboard
$successResponse = $this->actingAs($user)->get(route('marketing.success', $paidPackage->id));
$successResponse->assertRedirect('/event-admin');
$successResponse->assertStatus(302);
}
public function test_full_user_flow_with_errors()
{
// Schritt 1: Fehlgeschlagene Registrierung (kein Consent)
$response = $this->post('/de/register', [
'name' => 'Error User',
'username' => 'erroruser',
'email' => 'error@example.com',
'password' => 'Password123!',
'password_confirmation' => 'Password123!',
'first_name' => 'Max',
'last_name' => 'Mustermann',
'address' => 'Musterstr. 1',
'phone' => '+49123456789',
'privacy_consent' => false,
]);
$response->assertSessionHasErrors(['privacy_consent' => 'Die Datenschutzbestätigung muss akzeptiert werden.']);
$this->assertGuest();
$this->assertDatabaseMissing('users', ['email' => 'error@example.com']);
// Schritt 2: Fehlgeschlagener Login (Rate Limit)
$user = User::factory()->create([
'email' => 'ratelimit@example.com',
'password' => bcrypt('password'),
]);
for ($i = 0; $i < 5; $i++) {
$this->post(route('login.store'), [
'login' => 'ratelimit@example.com',
'password' => 'wrong',
]);
}
$throttleResponse = $this->post(route('login.store'), [
'login' => 'ratelimit@example.com',
'password' => 'wrong',
]);
$throttleResponse->assertSessionHasErrors(['login']);
$errors = session('errors');
$this->assertMatchesRegularExpression('/Zu viele Login-Versuche\. Bitte versuche es in \d+ Sekunden erneut\./', $errors->first('login'));
$this->assertGuest();
// Schritt 3: Bestellung ohne Auth blockiert
$package = Package::factory()->create(['price' => 10]);
$buyResponse = $this->get(route('buy.packages', $package->id));
$buyResponse->assertRedirect(route('register', ['package_id' => $package->id]));
// Nach Korrektur: Erfolgreicher Flow (kurz)
// ... (ähnlich wie oben, aber mit Error-Handling)
}
}
Reference in New Issue View Git Blame Copy Permalink