113 lines
3.3 KiB
PHP
113 lines
3.3 KiB
PHP
<?php
|
|
|
|
use App\Models\User;
|
|
use Illuminate\Auth\Events\Verified;
|
|
use Illuminate\Support\Facades\Event;
|
|
use Illuminate\Support\Facades\URL;
|
|
|
|
test('email verification screen can be rendered', function () {
|
|
$user = User::factory()->unverified()->create();
|
|
|
|
$response = $this->actingAs($user)->get(route('verification.notice'));
|
|
|
|
$response->assertSuccessful();
|
|
});
|
|
|
|
test('email can be verified', function () {
|
|
$user = User::factory()->unverified()->create();
|
|
|
|
Event::fake();
|
|
|
|
$verificationUrl = URL::temporarySignedRoute(
|
|
'verification.verify',
|
|
now()->addMinutes(60),
|
|
['id' => $user->id, 'hash' => sha1($user->email)]
|
|
);
|
|
|
|
$response = $this->actingAs($user)->get($verificationUrl);
|
|
|
|
Event::assertDispatched(Verified::class);
|
|
expect($user->fresh()->hasVerifiedEmail())->toBeTrue();
|
|
$response->assertRedirect(route('dashboard', absolute: false).'?verified=1');
|
|
});
|
|
|
|
test('email is not verified with invalid hash', function () {
|
|
$user = User::factory()->unverified()->create();
|
|
|
|
$verificationUrl = URL::temporarySignedRoute(
|
|
'verification.verify',
|
|
now()->addMinutes(60),
|
|
['id' => $user->id, 'hash' => sha1('wrong-email')]
|
|
);
|
|
|
|
$this->actingAs($user)->get($verificationUrl);
|
|
|
|
expect($user->fresh()->hasVerifiedEmail())->toBeFalse();
|
|
});
|
|
|
|
test('email is not verified with invalid user id', function () {
|
|
$user = User::factory()->create([
|
|
'email_verified_at' => null,
|
|
]);
|
|
|
|
$verificationUrl = URL::temporarySignedRoute(
|
|
'verification.verify',
|
|
now()->addMinutes(60),
|
|
['id' => 123, 'hash' => sha1($user->email)]
|
|
);
|
|
|
|
$this->actingAs($user)->get($verificationUrl);
|
|
|
|
expect($user->fresh()->hasVerifiedEmail())->toBeFalse();
|
|
});
|
|
|
|
test('verified user is redirected to dashboard from verification prompt', function () {
|
|
$user = User::factory()->create([
|
|
'email_verified_at' => now(),
|
|
]);
|
|
|
|
$response = $this->actingAs($user)->get(route('verification.notice'));
|
|
|
|
$response->assertRedirect(route('dashboard', absolute: false));
|
|
});
|
|
|
|
test('already verified user visiting verification link is redirected without firing event again', function () {
|
|
$user = User::factory()->create([
|
|
'email_verified_at' => now(),
|
|
]);
|
|
|
|
Event::fake();
|
|
|
|
$verificationUrl = URL::temporarySignedRoute(
|
|
'verification.verify',
|
|
now()->addMinutes(60),
|
|
['id' => $user->id, 'hash' => sha1($user->email)]
|
|
);
|
|
|
|
$this->actingAs($user)->get($verificationUrl)
|
|
->assertRedirect(route('dashboard', absolute: false).'?verified=1');
|
|
|
|
expect($user->fresh()->hasVerifiedEmail())->toBeTrue();
|
|
Event::assertNotDispatched(Verified::class);
|
|
});
|
|
|
|
test('unverified user is redirected to verification notice from protected routes', function (string $route) {
|
|
$user = User::factory()->unverified()->onboarded()->create();
|
|
|
|
$this->actingAs($user)->get(route($route))
|
|
->assertRedirect(route('verification.notice'));
|
|
})->with([
|
|
'subscribe',
|
|
'onboarding',
|
|
'dashboard',
|
|
]);
|
|
|
|
test('verified user is not redirected to verification notice', function () {
|
|
$user = User::factory()->onboarded()->create();
|
|
|
|
$response = $this->actingAs($user)->get(route('subscribe'));
|
|
|
|
expect($response->headers->get('Location'))
|
|
->not->toBe(route('verification.notice'));
|
|
});
|