1 files changed, 186 insertions, 0 deletions

diff --git a/modules/rest/tests/Rest_Controller_Test.php b/modules/rest/tests/Rest_Controller_Test.php
new file mode 100644
index 00000000..6bebc47d
--- /dev/null
+++ b/modules/rest/tests/Rest_Controller_Test.php
@@ -0,0 +1,186 @@
+<?php defined("SYSPATH") or die("No direct script access.");
+/**
+ * Gallery - a web based photo album viewer and editor
+ * Copyright (C) 2000-2009 Bharat Mediratta
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or (at
+ * your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ * General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA  02110-1301, USA.
+ */
+class Rest_Controller_Test extends Unit_Test_Case {
+  public function setup() {
+    $this->_save = array($_GET, $_POST, $_SERVER);
+    $this->_user = identity::create_user("access_test", "Access Test", "password");
+    $key = ORM::factory("user_access_token");
+    $this->_access_key = $key->access_key = md5($this->_user->name . rand());
+    $key->user_id = $this->_user->id;
+    $key->save();
+
+    $root = ORM::factory("item", 1);
+    $this->_album = album::create($root, "album", "Test Album", rand());
+    $this->_child = album::create($this->_album, "child", "Test Child Album", rand());
+
+    $filename = MODPATH . "gallery/tests/test.jpg";
+    $rand = rand();
+    $this->_photo = photo::create($this->_child, $filename, "$rand.jpg", $rand);
+  }
+
+  public function teardown() {
+    list($_GET, $_POST, $_SERVER) = $this->_save;
+
+    try {
+      if (!empty($this->_user)) {
+        $this->_user->delete();
+      }
+      if (!empty($this->_album)) {
+        $this->_album->delete();
+      }
+    } catch (Exception $e) { }
+  }
+
+  public function rest_access_key_exists_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+    $_GET["user"] = "access_test";
+    $_GET["password"] = "password";
+
+    $this->assert_equal(
+      json_encode(array("status" => "OK", "token" => $this->_access_key)),
+      $this->_call_controller());
+  }
+
+  public function rest_access_key_generated_test() {
+    ORM::factory("user_access_token")
+      ->where("access_key", $this->_access_key)
+      ->delete();
+    $_SERVER["REQUEST_METHOD"] = "GET";
+    $_GET["user"] = "access_test";
+    $_GET["password"] = "password";
+
+    $results = json_decode($this->_call_controller());
+
+    $this->assert_equal("OK", $results->status);
+    $this->assert_false(empty($results->token));
+  }
+
+  public function rest_access_key_no_parameters_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Authorization failed"))),
+      $this->_call_controller());
+  }
+
+  public function rest_access_key_user_not_found_test() {
+    $_SERVER["REQUEST_METHOD"] = "POST";
+    $_POST["request"] = json_encode(array("user" => "access_test2", "password" => "password"));
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Authorization failed"))),
+      $this->_call_controller());
+  }
+
+  public function rest_access_key_invalid_password_test() {
+    $_SERVER["REQUEST_METHOD"] = "POST";
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Authorization failed"))),
+      $this->_call_controller());
+  }
+
+  public function rest_get_resource_no_request_key_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+
+    $this->assert_equal(
+      json_encode(array("status" => "OK", "message" => (string)t("Processed"),
+                        "photo" => array("path" => $this->_photo->relative_url(),
+                                        "title" => $this->_photo->title,
+                                        "thumb_url" => $this->_photo->thumb_url(),
+                                        "description" => $this->_photo->description,
+                                        "internet_address" => $this->_photo->slug))),
+      $this->_call_controller("rest", explode("/", $this->_photo->relative_url())));
+  }
+
+  public function rest_get_resource_invalid_key_test() {
+    $_SERVER["HTTP_X_GALLERY_REQUEST_KEY"] = md5($this->_access_key); // screw up the access key;
+    $_SERVER["REQUEST_METHOD"] = "GET";
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Authorization failed"))),
+      $this->_call_controller());
+  }
+
+  public function rest_get_resource_no_user_for_key_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+    $_SERVER["HTTP_X_GALLERY_REQUEST_KEY"] = $this->_access_key;
+
+    $this->_user->delete();
+    unset($this->_user);
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Authorization failed"))),
+      $this->_call_controller("rest", explode("/", $this->_photo->relative_url())));
+  }
+
+  public function rest_get_resource_no_handler_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+    $_SERVER["HTTP_X_GALLERY_REQUEST_KEY"] = $this->_access_key;
+    $_SERVER["HTTP_X_GALLERY_REQUEST_METHOD"] = "PUT";
+
+    $this->assert_equal(
+      json_encode(array("status" => "ERROR", "message" => (string)t("Service not implemented"))),
+      $this->_call_controller("rest", explode("/", $this->_photo->relative_url())));
+  }
+
+  public function rest_get_resource_test() {
+    $_SERVER["REQUEST_METHOD"] = "GET";
+    $_SERVER["HTTP_X_GALLERY_REQUEST_KEY"] = $this->_access_key;
+
+    $this->assert_equal(
+      json_encode(array("status" => "OK", "message" => (string)t("Processed"),
+                        "photo" => array("path" => $this->_photo->relative_url(),
+                                        "title" => $this->_photo->title,
+                                        "thumb_url" => $this->_photo->thumb_url(),
+                                        "description" => $this->_photo->description,
+                                        "internet_address" => $this->_photo->slug))),
+      $this->_call_controller("rest", explode("/", $this->_photo->relative_url())));
+  }
+
+  private function _call_controller($method="access_key", $arg=null) {
+    $controller = new Rest_Controller();
+
+    ob_start();
+    call_user_func_array(array($controller, $method), $arg);
+    $results = ob_get_contents();
+    ob_end_clean();
+
+    return $results;
+  }
+}
+
+class rest_rest {
+  static $request = null;
+
+  static function get($request) {
+    self::$request = $request;
+    $item = ORM::factory("item")
+      ->where("relative_url_cache", "=", implode("/", $request->arguments))
+      ->find();
+    $response["path"] = $item->relative_url();
+    $response["title"] = $item->title;
+    $response["thumb_url"] = $item->thumb_url();
+    $response["description"] = $item->description;
+    $response["internet_address"] = $item->slug;
+    return rest::success(array($item->type => $response), t("Processed"));
+  }
+
+}