c19f6fd9ee
- Bump DESK_MOLONI version to 3.0.1 across module - Normalize hooks to after_client_* and instantiate PerfexHooks safely - Fix OAuthController view path and API client class name - Add missing admin views for webhook config/logs; adjust view loading - Harden client portal routes and admin routes mapping - Make Dashboard/Logs/Queue tolerant to optional model methods - Align log details query with existing schema; avoid broken joins This makes the module operational in Perfex (admin + client), reduces 404s, and avoids fatal errors due to inconsistent tables/methods.
540 lines
17 KiB
PHP
540 lines
17 KiB
PHP
<?php
|
|
|
|
defined('BASEPATH') or exit('No direct script access allowed');
|
|
|
|
/**
|
|
* API Client Integration Tests
|
|
*
|
|
* Comprehensive tests for Moloni API client functionality
|
|
*
|
|
* @package DeskMoloni
|
|
* @author Descomplicar®
|
|
* @copyright 2025 Descomplicar
|
|
* @version 3.0.0
|
|
*/
|
|
class ApiClientIntegrationTest extends PHPUnit\Framework\TestCase
|
|
{
|
|
private $CI;
|
|
private $api_client;
|
|
private $oauth;
|
|
private $token_manager;
|
|
private $test_company_id;
|
|
|
|
protected function setUp(): void
|
|
{
|
|
// Get CodeIgniter instance
|
|
$this->CI = &get_instance();
|
|
|
|
// Load required libraries
|
|
$this->CI->load->library('desk_moloni/moloniapiclient');
|
|
$this->CI->load->library('desk_moloni/molonioauth');
|
|
$this->CI->load->library('desk_moloni/tokenmanager');
|
|
|
|
$this->api_client = $this->CI->moloniapiclient;
|
|
$this->oauth = $this->CI->molonioauth;
|
|
$this->token_manager = $this->CI->tokenmanager;
|
|
|
|
// Test company ID
|
|
$this->test_company_id = (int)(getenv('MOLONI_TEST_COMPANY_ID') ?: 12345);
|
|
|
|
// Set up OAuth with valid tokens for testing
|
|
$this->setupTestAuth();
|
|
}
|
|
|
|
protected function tearDown(): void
|
|
{
|
|
// Clean up after tests
|
|
$this->token_manager->clear_tokens();
|
|
}
|
|
|
|
/**
|
|
* Set up test authentication
|
|
*/
|
|
private function setupTestAuth()
|
|
{
|
|
// Configure OAuth
|
|
$this->oauth->configure('test_client_id', 'test_client_secret');
|
|
|
|
// Add mock valid tokens
|
|
$this->token_manager->save_tokens([
|
|
'access_token' => 'test_access_token_' . time(),
|
|
'refresh_token' => 'test_refresh_token_' . time(),
|
|
'expires_in' => 3600,
|
|
'scope' => 'read write'
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Test API client configuration
|
|
*/
|
|
public function testApiClientConfiguration()
|
|
{
|
|
// Test default configuration
|
|
$status = $this->api_client->get_status();
|
|
$this->assertArrayHasKey('configuration', $status);
|
|
$this->assertArrayHasKey('timeout', $status['configuration']);
|
|
$this->assertArrayHasKey('max_retries', $status['configuration']);
|
|
|
|
// Test configuration update
|
|
$config = [
|
|
'timeout' => 45,
|
|
'max_retries' => 5,
|
|
'rate_limit_per_minute' => 40,
|
|
'log_requests' => false
|
|
];
|
|
|
|
$result = $this->api_client->configure($config);
|
|
$this->assertTrue($result);
|
|
|
|
// Verify configuration was applied
|
|
$status = $this->api_client->get_status();
|
|
$this->assertEquals(45, $status['configuration']['timeout']);
|
|
}
|
|
|
|
/**
|
|
* Test customer management endpoints
|
|
*/
|
|
public function testCustomerManagement()
|
|
{
|
|
// Test customer creation data validation
|
|
$invalid_customer = [
|
|
'name' => 'Test Customer'
|
|
// Missing required fields: company_id, vat
|
|
];
|
|
|
|
$this->expectException(InvalidArgumentException::class);
|
|
$this->expectExceptionMessage('Missing required fields');
|
|
|
|
$this->api_client->create_customer($invalid_customer);
|
|
}
|
|
|
|
/**
|
|
* Test valid customer creation
|
|
*/
|
|
public function testValidCustomerCreation()
|
|
{
|
|
$customer_data = [
|
|
'company_id' => $this->test_company_id,
|
|
'name' => 'Test Customer ' . time(),
|
|
'vat' => '123456789',
|
|
'email' => 'test@example.com',
|
|
'phone' => '+351912345678',
|
|
'address' => 'Test Address',
|
|
'city' => 'Porto',
|
|
'zip_code' => '4000-000'
|
|
];
|
|
|
|
// Since we can't make real API calls in tests, we'll test the validation
|
|
try {
|
|
// This would normally make an API call
|
|
// For testing, we verify the data structure is correct
|
|
$this->assertArrayHasKey('company_id', $customer_data);
|
|
$this->assertArrayHasKey('name', $customer_data);
|
|
$this->assertArrayHasKey('vat', $customer_data);
|
|
|
|
// Verify defaults are applied
|
|
$this->assertEquals(1, $customer_data['country_id'] ?? 1);
|
|
|
|
$this->assertTrue(true); // Test passes if no exceptions
|
|
|
|
} catch (Exception $e) {
|
|
// Expected in test environment without real API
|
|
$this->assertStringContainsString('OAuth not connected', $e->getMessage());
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Test customer update validation
|
|
*/
|
|
public function testCustomerUpdate()
|
|
{
|
|
$customer_id = 12345;
|
|
$update_data = [
|
|
'company_id' => $this->test_company_id,
|
|
'name' => 'Updated Customer Name',
|
|
'email' => 'updated@example.com'
|
|
];
|
|
|
|
try {
|
|
// Test that required fields are properly merged
|
|
$this->api_client->update_customer($customer_id, $update_data);
|
|
|
|
} catch (Exception $e) {
|
|
// In test environment, expect OAuth error
|
|
$this->assertStringContainsString('OAuth not connected', $e->getMessage());
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Test product management
|
|
*/
|
|
public function testProductManagement()
|
|
{
|
|
// Test invalid product data
|
|
$invalid_product = [
|
|
'name' => 'Test Product'
|
|
// Missing required fields: company_id, price
|
|
];
|
|
|
|
$this->expectException(InvalidArgumentException::class);
|
|
$this->api_client->create_product($invalid_product);
|
|
}
|
|
|
|
/**
|
|
* Test valid product creation
|
|
*/
|
|
public function testValidProductCreation()
|
|
{
|
|
$product_data = [
|
|
'company_id' => $this->test_company_id,
|
|
'name' => 'Test Product ' . time(),
|
|
'price' => 99.99,
|
|
'summary' => 'Test product description',
|
|
'reference' => 'PROD-' . time(),
|
|
'unit_id' => 1,
|
|
'has_stock' => 0
|
|
];
|
|
|
|
try {
|
|
// Verify data structure
|
|
$this->assertArrayHasKey('company_id', $product_data);
|
|
$this->assertArrayHasKey('name', $product_data);
|
|
$this->assertArrayHasKey('price', $product_data);
|
|
$this->assertIsFloat($product_data['price']);
|
|
|
|
$this->assertTrue(true);
|
|
|
|
} catch (Exception $e) {
|
|
$this->assertStringContainsString('OAuth not connected', $e->getMessage());
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Test invoice creation
|
|
*/
|
|
public function testInvoiceCreation()
|
|
{
|
|
// Test invalid invoice (missing products)
|
|
$invalid_invoice = [
|
|
'company_id' => $this->test_company_id,
|
|
'customer_id' => 12345,
|
|
'date' => date('Y-m-d'),
|
|
'products' => [] // Empty products array
|
|
];
|
|
|
|
$this->expectException(InvalidArgumentException::class);
|
|
$this->expectExceptionMessage('Invoice must contain at least one product');
|
|
|
|
$this->api_client->create_invoice($invalid_invoice);
|
|
}
|
|
|
|
/**
|
|
* Test valid invoice creation
|
|
*/
|
|
public function testValidInvoiceCreation()
|
|
{
|
|
$invoice_data = [
|
|
'company_id' => $this->test_company_id,
|
|
'customer_id' => 12345,
|
|
'date' => date('Y-m-d'),
|
|
'expiration_date' => date('Y-m-d', strtotime('+30 days')),
|
|
'products' => [
|
|
[
|
|
'product_id' => 1,
|
|
'name' => 'Test Product',
|
|
'qty' => 2,
|
|
'price' => 50.00,
|
|
'discount' => 0,
|
|
'tax' => 23
|
|
]
|
|
],
|
|
'notes' => 'Test invoice notes'
|
|
];
|
|
|
|
try {
|
|
// Verify data structure
|
|
$this->assertArrayHasKey('products', $invoice_data);
|
|
$this->assertIsArray($invoice_data['products']);
|
|
$this->assertNotEmpty($invoice_data['products']);
|
|
|
|
// Verify product structure
|
|
$product = $invoice_data['products'][0];
|
|
$this->assertArrayHasKey('product_id', $product);
|
|
$this->assertArrayHasKey('name', $product);
|
|
$this->assertArrayHasKey('qty', $product);
|
|
$this->assertArrayHasKey('price', $product);
|
|
|
|
$this->assertTrue(true);
|
|
|
|
} catch (Exception $e) {
|
|
$this->assertStringContainsString('OAuth not connected', $e->getMessage());
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Test rate limiting functionality
|
|
*/
|
|
public function testRateLimiting()
|
|
{
|
|
$status = $this->api_client->get_status();
|
|
|
|
$this->assertArrayHasKey('rate_limits', $status);
|
|
$this->assertArrayHasKey('per_minute', $status['rate_limits']);
|
|
$this->assertArrayHasKey('per_hour', $status['rate_limits']);
|
|
$this->assertArrayHasKey('current_minute', $status['rate_limits']);
|
|
$this->assertArrayHasKey('current_hour', $status['rate_limits']);
|
|
|
|
// Verify default limits
|
|
$this->assertGreaterThan(0, $status['rate_limits']['per_minute']);
|
|
$this->assertGreaterThan(0, $status['rate_limits']['per_hour']);
|
|
}
|
|
|
|
/**
|
|
* Test circuit breaker pattern
|
|
*/
|
|
public function testCircuitBreakerPattern()
|
|
{
|
|
$status = $this->api_client->get_status();
|
|
|
|
$this->assertArrayHasKey('circuit_breaker', $status);
|
|
$this->assertArrayHasKey('threshold', $status['circuit_breaker']);
|
|
$this->assertArrayHasKey('failures', $status['circuit_breaker']);
|
|
$this->assertArrayHasKey('is_open', $status['circuit_breaker']);
|
|
|
|
// Circuit breaker should be closed initially
|
|
$this->assertFalse($status['circuit_breaker']['is_open']);
|
|
$this->assertEquals(0, $status['circuit_breaker']['failures']);
|
|
}
|
|
|
|
/**
|
|
* Test error handling and retry logic
|
|
*/
|
|
public function testErrorHandlingAndRetry()
|
|
{
|
|
// Test authentication error detection
|
|
$auth_error = new Exception('HTTP 401: Unauthorized');
|
|
$this->assertTrue($this->isAuthError($auth_error));
|
|
|
|
$token_error = new Exception('invalid_token');
|
|
$this->assertTrue($this->isAuthError($token_error));
|
|
|
|
// Test rate limit error detection
|
|
$rate_limit_error = new Exception('HTTP 429: Too Many Requests');
|
|
$this->assertTrue($this->isRateLimitError($rate_limit_error));
|
|
|
|
// Test client error detection
|
|
$client_error = new Exception('HTTP 400: Bad Request');
|
|
$this->assertTrue($this->isClientError($client_error));
|
|
}
|
|
|
|
/**
|
|
* Test request logging functionality
|
|
*/
|
|
public function testRequestLogging()
|
|
{
|
|
// Enable request logging
|
|
$this->api_client->configure(['log_requests' => true]);
|
|
|
|
$status = $this->api_client->get_status();
|
|
$this->assertTrue($status['configuration']['log_requests'] ?? false);
|
|
|
|
// Test that log structure would be correct
|
|
$log_data = [
|
|
'endpoint' => 'customers/getAll',
|
|
'params' => json_encode(['company_id' => $this->test_company_id]),
|
|
'response' => null,
|
|
'error' => 'Test error',
|
|
'attempt' => 1,
|
|
'timestamp' => date('Y-m-d H:i:s')
|
|
];
|
|
|
|
$this->assertArrayHasKey('endpoint', $log_data);
|
|
$this->assertArrayHasKey('timestamp', $log_data);
|
|
$this->assertJson($log_data['params']);
|
|
}
|
|
|
|
/**
|
|
* Test pagination parameters
|
|
*/
|
|
public function testPaginationParameters()
|
|
{
|
|
$options = [
|
|
'qty' => 25,
|
|
'offset' => 50,
|
|
'search' => 'test'
|
|
];
|
|
|
|
// Test parameter merging for customers
|
|
$params = array_merge([
|
|
'company_id' => $this->test_company_id,
|
|
'qty' => $options['qty'] ?? 50,
|
|
'offset' => $options['offset'] ?? 0
|
|
], $options);
|
|
|
|
$this->assertEquals(25, $params['qty']);
|
|
$this->assertEquals(50, $params['offset']);
|
|
$this->assertEquals('test', $params['search']);
|
|
$this->assertEquals($this->test_company_id, $params['company_id']);
|
|
}
|
|
|
|
/**
|
|
* Test API endpoint URL construction
|
|
*/
|
|
public function testApiEndpointConstruction()
|
|
{
|
|
$base_url = 'https://api.moloni.pt/v1/';
|
|
$endpoint = 'customers/getAll';
|
|
|
|
$full_url = $base_url . $endpoint;
|
|
|
|
$this->assertEquals('https://api.moloni.pt/v1/customers/getAll', $full_url);
|
|
$this->assertStringStartsWith('https://', $full_url);
|
|
$this->assertStringContainsString('api.moloni.pt', $full_url);
|
|
}
|
|
|
|
/**
|
|
* Test HTTP headers construction
|
|
*/
|
|
public function testHttpHeaders()
|
|
{
|
|
$access_token = 'test_access_token';
|
|
|
|
$headers = [
|
|
'Authorization: Bearer ' . $access_token,
|
|
'Accept: application/json',
|
|
'User-Agent: Desk-Moloni/3.0',
|
|
'Cache-Control: no-cache'
|
|
];
|
|
|
|
$this->assertContains('Authorization: Bearer ' . $access_token, $headers);
|
|
$this->assertContains('Accept: application/json', $headers);
|
|
$this->assertContains('User-Agent: Desk-Moloni/3.0', $headers);
|
|
}
|
|
|
|
/**
|
|
* Test JSON encoding/decoding
|
|
*/
|
|
public function testJsonHandling()
|
|
{
|
|
$test_data = [
|
|
'company_id' => $this->test_company_id,
|
|
'name' => 'Test Customer',
|
|
'vat' => '123456789'
|
|
];
|
|
|
|
// Test JSON encoding
|
|
$json = json_encode($test_data);
|
|
$this->assertJson($json);
|
|
|
|
// Test JSON decoding
|
|
$decoded = json_decode($json, true);
|
|
$this->assertEquals($test_data, $decoded);
|
|
$this->assertEquals(JSON_ERROR_NONE, json_last_error());
|
|
}
|
|
|
|
/**
|
|
* Test OAuth integration
|
|
*/
|
|
public function testOAuthIntegration()
|
|
{
|
|
// Test that API client properly checks OAuth status
|
|
$this->assertTrue($this->oauth->is_configured());
|
|
$this->assertTrue($this->oauth->is_connected());
|
|
|
|
// Test access token retrieval
|
|
$token = $this->oauth->get_access_token();
|
|
$this->assertNotEmpty($token);
|
|
$this->assertStringStartsWith('test_access_token_', $token);
|
|
}
|
|
|
|
/**
|
|
* Test error message extraction
|
|
*/
|
|
public function testErrorMessageExtraction()
|
|
{
|
|
// Test various error response formats
|
|
$api_error_response = [
|
|
'error' => [
|
|
'message' => 'Invalid customer data'
|
|
]
|
|
];
|
|
|
|
$simple_error_response = [
|
|
'error' => 'Access denied'
|
|
];
|
|
|
|
$message_response = [
|
|
'message' => 'Validation failed'
|
|
];
|
|
|
|
// Test extraction logic
|
|
$this->assertEquals('Invalid customer data', $this->extractErrorMessage($api_error_response, 400));
|
|
$this->assertEquals('Access denied', $this->extractErrorMessage($simple_error_response, 400));
|
|
$this->assertEquals('Validation failed', $this->extractErrorMessage($message_response, 400));
|
|
$this->assertEquals('Bad Request', $this->extractErrorMessage(null, 400));
|
|
}
|
|
|
|
/**
|
|
* Helper method to test auth error detection
|
|
*/
|
|
private function isAuthError($exception)
|
|
{
|
|
$message = strtolower($exception->getMessage());
|
|
|
|
return strpos($message, 'unauthorized') !== false ||
|
|
strpos($message, 'invalid_token') !== false ||
|
|
strpos($message, 'token_expired') !== false ||
|
|
strpos($message, 'http 401') !== false;
|
|
}
|
|
|
|
/**
|
|
* Helper method to test rate limit error detection
|
|
*/
|
|
private function isRateLimitError($exception)
|
|
{
|
|
$message = strtolower($exception->getMessage());
|
|
|
|
return strpos($message, 'rate limit') !== false ||
|
|
strpos($message, 'too many requests') !== false ||
|
|
strpos($message, 'http 429') !== false;
|
|
}
|
|
|
|
/**
|
|
* Helper method to test client error detection
|
|
*/
|
|
private function isClientError($exception)
|
|
{
|
|
$message = $exception->getMessage();
|
|
|
|
return preg_match('/HTTP 4\d{2}/', $message);
|
|
}
|
|
|
|
/**
|
|
* Helper method to test error message extraction
|
|
*/
|
|
private function extractErrorMessage($response, $http_code)
|
|
{
|
|
if (is_array($response)) {
|
|
if (isset($response['error']['message'])) {
|
|
return $response['error']['message'];
|
|
}
|
|
if (isset($response['error'])) {
|
|
return is_string($response['error']) ? $response['error'] : 'API Error';
|
|
}
|
|
if (isset($response['message'])) {
|
|
return $response['message'];
|
|
}
|
|
}
|
|
|
|
$http_messages = [
|
|
400 => 'Bad Request',
|
|
401 => 'Unauthorized',
|
|
403 => 'Forbidden',
|
|
404 => 'Not Found',
|
|
429 => 'Too Many Requests',
|
|
500 => 'Internal Server Error'
|
|
];
|
|
|
|
return $http_messages[$http_code] ?? "HTTP Error {$http_code}";
|
|
}
|
|
} |