Tests
Apiato is built with testing in mind.
In fact,
support for testing with PHPUnit is included out of the box
and a phpunit.xml
file is already set up for your application.
In addition to the testing capabilities provided by Laravel,
Apiato enhances the testing experience by including convenient helper methods.
These methods enable you to write expressive tests for your applications, further enhancing the testing process.
You can refer to Laravel documentation on HTTP tests for more information on the available testing methods.
To generate new tests you may use the following interactive commands:
php artisan apiato:generate:test:unit
php artisan apiato:generate:test:functional
php artisan apiato:generate:test:testcase
Definitions
Unit tests
Unit tests are tests that focus on a very small, isolated portion of your code. In fact, most unit tests probably focus on a single method.
Functional tests
Functional tests may test a larger portion of your code, including how several objects interact with each other or even a full HTTP request to a JSON endpoint. Generally, most of your tests should be functional tests. These types of tests provide the most confidence that your system as a whole is functioning as intended.
Rules
- All container-specific tests:
- MUST be placed in the
app/Containers/{Section}/{Container}/Tests
directory. - Functional tests:
- MUST be placed in the
app/Containers/{Section}/{Container}/Tests/Functional
directory. - API tests:
- MUST be placed in the
app/Containers/{Section}/{Container}/Tests/Functional/API
directory. - MUST extend the
App\Containers\{Section}\{Container}\Tests\Functional\ApiTestCase
class.- MUST extend the
App\Containers\{Section}\{Container}\Tests\FunctionalTestCase
class.- MUST extend the
App\Containers\{Section}\{Container}\Tests\ContainerTestCase
class.
- MUST extend the
- MUST extend the
- MUST be placed in the
- CLI tests:
- MUST be placed in the
app/Containers/{Section}/{Container}/Tests/Functional/CLI
directory. - MUST extend the
App\Containers\{Section}\{Container}\Tests\Functional\CliTestCase
class.- MUST extend the
App\Containers\{Section}\{Container}\Tests\FunctionalTestCase
class.- MUST extend the
App\Containers\{Section}\{Container}\Tests\ContainerTestCase
class.
- MUST extend the
- MUST extend the
- MUST be placed in the
- MUST be placed in the
- Unit tests:
- MUST be placed in the
app/Containers/{Section}/{Container}/Tests/Unit
directory. - MUST extend the
App\Containers\{Section}\{Container}\Tests\UnitTestCase
class.- MUST extend the
App\Containers\{Section}\{Container}\Tests\ContainerTestCase
class.
- MUST extend the
- Directory structure MUST exactly match the Container's directory structure.
- MUST be placed in the
- MUST be placed in the
- All
Ship
Unit tests:- MUST be placed in the
app/Ship/Tests/Unit
directory. - MUST extend the
App\Ship\Tests\ShipTestCase
class.
- MUST be placed in the
- All
ContainerTestCases
&ShipTestCase
MUST extend theApp\Ship\Parents\Tests\PhpUnit\TestCase
class.- The parent extension SHOULD be aliased as
ParentTestCase
.
- The parent extension SHOULD be aliased as
Folder Structure
app
├── Containers
│ └── Section
│ └── Container
│ └── Tests
│ ├── Functional
│ │ ├── API
│ │ │ ├── CreateUserTest.php
│ │ │ └── ...
│ │ ├── CLI
│ │ │ ├── CreateAdminCommandTest.php
│ │ │ └── ...
│ │ ├── ApiTestCase.php
│ │ └── CliTestCase.php
│ ├── Unit
│ │ ├── Actions
│ │ │ ├── CreateUserActionTest.php
│ │ │ └── ...
│ │ ├── AnotherDirectory
│ │ │ ├── ...
│ │ │ └── ...
│ │ └── UI
│ │ ├── API
│ │ │ ├── Controllers
│ │ │ ├── Requests
│ │ │ ├── Transformers
│ │ │ └── ...
│ │ └── WEB
│ │ ├── Controllers
│ │ ├── Requests
│ │ ├── Transformers
│ │ └── ...
│ ├── ContainerTestCase.php
│ ├── FunctionalTestCase.php
│ └── UnitTestCase.php
└── Ship
└── Tests
├── Unit
│ ├── UrlRuleTest.php
│ └── ...
└── ShipTestCase.php
Writing Tests
Unit tests are defined in the same manner as you would define them in Laravel. However, Functional tests follow a distinct approach. Here's an example of how to write functional tests:
namespace App\Containers\AppSection\User\Tests\Functional\API;
use App\Containers\AppSection\User\Data\Factories\UserFactory;
use App\Containers\AppSection\User\Tests\Functional\ApiTestCase;
use Illuminate\Testing\Fluent\AssertableJson;
use PHPUnit\Framework\Attributes\CoversNothing;
use PHPUnit\Framework\Attributes\Group;
#[Group('user')]
#[CoversNothing]
class FindUserByIdTest extends ApiTestCase
{
protected string $endpoint = 'get@v1/users/{id}';
protected bool $auth = true;
protected array $access = [
'permissions' => 'search-users',
'roles' => '',
];
public function testFindUser(): void
{
$user = $this->getTestingUser();
$response = $this->injectId($user->id)->makeCall();
$response->assertOk();
$response->assertJson(
static fn (AssertableJson $json) => $json->has('data')
->where('data.id', \Hashids::encode($user->id))
->etc()
);
}
}
To learn more about the properties and methods used,
such as endpoint
and makeCall
, please read to the following section.
Functional Tests
Properties
Certain test helper methods access properties defined in your test class to execute their tasks effectively. Below, we will explore these properties and their corresponding methods:
endpoint
The $endpoint
property is used
to define the endpoints you want to access when making a call using the makeCall
method.
It is defined as a string in the following format: method@url
.
class FindUserByIdTest extends ApiTestCase
{
protected string $endpoint = 'get@v1/profile';
public function testGetAuthenticatedUser(): void
{
$user = $this->getTestingUser();
$response = $this->makeCall();
// You can override the "endpoint" property in specific test methods
// $response = $this->endpoint('get@v1/users')->makeCall();
$response->assertOk();
// other assertions...
}
}
auth
The $auth
property is used to determine whether the endpoint being called requires authentication or not in your test class.
If you do not explicitly define the $auth
property in your test class, it will be defaulted to true
automatically.
In the context of testing, when auth
is set to true,
the makeCall
method will handle authentication by creating a testing user
(if one is not already available) and injecting their access token into the headers before making the API call.
class ListUsersTest extends ApiTestCase
{
protected string $endpoint = 'get@v1/users';
protected bool $auth = false;
public function testListUsers(): void
{
$response = $this->makeCall();
// You can override the "auth" property in specific test methods
// $response = $this->auth(true)->makeCall();
$response->assertOk();
// other assertions...
}
}
access
The $access
property is used
to define roles or permissions that you want to assign to your testing users within a test class.
When you use the getTestingUser
method,
the testing user instance will automatically inherit all the roles and permissions specified in the $access
property.
By setting the desired roles and permissions in the $access
property,
you can conveniently configure the testing user with the necessary access rights for your test scenarios.
This ensures that the testing user has the appropriate privileges when interacting with the application during testing.
class DeleteUserTest extends ApiTestCase
{
protected string $endpoint = 'delete@v1/users/{id}';
protected array $access = [
'permissions' => 'delete-users',
'roles' => 'admin',
];
public function testDeleteUser(): void
{
// The testing user will have the "delete-users" permission and "admin" role.
$user = $this->getTestingUser();
$response = $this->injectId($user->id)->makeCall();
$response->assertNoContent();
}
}
Methods
makeCall
injectId
getTestingUser
getTestingUserWithoutAccess
endpoint
auth
makeCall
To make a request to your application, you may invoke the makeCall
method within your functional test.
This method combines the functionalities of Laravel HTTP test helpers with the properties
defined in your functional test to make a request to the application.
The makeCall
method returns an instance of Illuminate\Testing\TestResponse
,
which provides a variety of helpful assertions
that allow you to inspect your application's responses.
$this->makeCall();
$this->makeCall([
'email' => $userDetails['email'],
'password' => $userDetails['password'],
]);
$this->makeCall($data, $headers);
injectId
The injectId
method enables you to inject an ID into the endpoint you want to test within your functional tests.
// user with ID 100
// endpoint = 'get@v1/users/{id}'
$this->injectId($user->id)->makeCall();
In this example, the original endpoint is 'get@v1/users/{id}'
, and the desired ID to be injected is 100
.
The injectId
method is then called with these parameters.
The method replaces {id}
in the endpoint with the provided ID,
resulting in the modified endpoint 'get@v1/users/100'
.
By default, injectId
will look for a string of {id}
in the endpoint to replace with the provided id. Remember
to provide the third parameter if your endpoint expects an id with a different name.
// endpoint = 'get@v1/users/{user_id}/articles/{id}'
// You can also chain multiple `injectId` calls!
$this->injectId($articles->id)->injectId($user->id, replace: '{user_id}')->makeCall();
When the Hash ID feature is enabled,
the injectId
method will automatically encode the provided ID before injecting it into the endpoint.
However, you have the option to control this behavior by using the second parameter of the injectId
method,
skipEncoding
.
// endpoint = 'get@v1/users/{user_id}'
// this will encode the id automatically
$this->injectId($user->id, skipEncoding: false, replace: '{user_id}')->makeCall($data);
// this will skip the encoding
$this->injectId($user->getHashedKey(), skipEncoding: true, replace: '{user_id}')->makeCall($data);
By utilizing the injectId
method, you can dynamically inject an ID into the endpoint,
allowing you to test specific resources or scenarios that depend on resource identifiers.
getTestingUser
When you call getTestingUser
method,
it returns a testing user instance with randomly generated attributes and all the roles and permissions
specified in the $access
property.
This ensures that the testing user has the appropriate access rights for the defined roles and permissions.
However,
you also have the flexibility
to override these attributes and access rights by passing the desired values as arguments to the method.
// The testing user will be created with randomly generated attributes
// and will inherit the roles and permissions specified in the `$access` property.
$user = $this->getTestingUser();
// The testing user will be created with the provided attributes and access rights.
$user = $this->getTestingUser([
'email' => '[email protected]',
'name' => 'Hello',
'password' => 'secret',
], [
'permissions' => 'jump',
'roles' => 'jumper',
]);
Additionally, to create an admin user, you can pass true
as the third argument when invoking getTestingUser
.
This will use the admin
state of app/Containers/AppSection/User/Data/Factories/UserFactory.php
to create the testing user.
$user = $this->getTestingUser(null, null, true);
The getTestingUser
method is configured to work with the default Apiato configuration.
However, if you are using a custom user model,
you will need to update the tests
configuration in app/Ship/Configs/apiato.php
.
This configuration file allows you
to specify your custom user model and the corresponding model factory state for testing.
getTestingUserWithoutAccess
The getTestingUserWithoutAccess
method allows you to obtain a testing user instance that doesn't have any assigned permissions or roles.
It is a shortcut for getTestingUser(null, null)
.
This skips all the roles and permissions defined in your test class $access
property.
$user = $this->getTestingUserWithoutAccess();
endpoint
The endpoint
method allows you to specify the endpoint you want to test within your functional tests.
This method is especially useful
when you need to override the default endpoint that is defined in the $endpoint
property of the test class,
specifically for a particular test method.
$this->endpoint('get@v1/register')->makeCall();
The order in which you call endpoint
method is crucial.
Make sure to call it before injectId
method,
or else injectId
will not replace the ID in the overridden endpoint.
auth
The auth
method allows you
to specify the authentication status of the endpoint you want to test within your functional tests.
This method is especially useful
when you need to override the default authentication status that is defined in the $auth
property of the test class,
specifically for a particular test method.
$this->auth(false)->makeCall();
Available Assertions
Apiato provides a variety of custom assertion methods that you may utilize when testing your application.
assertModelCastsIsEmpty
assertDatabaseTable
getGateMock
assertCriteriaPushedToRepository
assertNoCriteriaPushedToRepository
allowAddRequestCriteriaInvocation
assertModelCastsIsEmpty
The assertModelCastsIsEmpty
method allows you to assert that the $casts
property of a model is empty.
By default, the $casts
property of a model includes the id
and,
if the model is soft deletable, the deleted_at
.
This method excludes these default values from the assertion.
Here's an example of how to use assertModelCastsIsEmpty
:
$this->assertModelCastsIsEmpty($model);
In the code snippet above, $model
represents the instance of the model you want to test.
The assertModelCastsIsEmpty
method will verify that the $casts
property of the model is empty,
ignoring the default id
and deleted_at
values.
If you want to add additional values to the ignore list,
you can pass them as an array to the assertModelCastsIsEmpty
method.
$this->assertModelCastsIsEmpty($model, ['value1', 'value2']);
In this case, the assertion will ignore the id
, deleted_at
,
value1
, and value2
values when verifying the $casts
property of the model.
By using the assertModelCastsIsEmpty
method,
you can verify that the $casts
property of a model does not contain any unexpected values,
ensuring that the model's attributes are not automatically casted.
assertDatabaseTable
Available since Core v8.5.0
This method is used
to verify
if the database table specified by table
has the expected columns specified in the expectedColumns
array.
The array should be in the format ['column_name' => 'column_type'],
where the column type is a string representing the expected data type of the column.
$this->assertDatabaseTable('users', ['id' => 'bigint']);
getGateMock
Available since Core v8.5.0
This assertion helps you to test whether the Gate::allows
method is invoked with the correct arguments.
Let's
consider a scenario
where a request class utilizes the authorize
method
to determine whether a user has the necessary permissions to access a particular resource.
The primary objective is
to test whether the authorize
method correctly invokes the Gate::allows
method with the appropriate arguments.
// PUT '/users/{id}'
// UpdateUserRequest.php
public function authorize(Gate $gate): bool
{
// Here, we check if the user's id sent in the request has the necessary permissions to 'update'.
return $gate->allows('update', [User::find($this->id)]);
}
// UpdateUserRequestTest.php
public function testAuthorizeMethodGateCall(): void
{
$user = $this->getTestingUserWithoutAccess();
$request = UpdateUserRequest::injectData([], $user)
->withUrlParameters(['id' => $user->id]);
// If the id is sent as a body parameter in the request, you can use the following:
// $request = UpdateUserRequest::injectData(['id' => $user->getHashedKey()], $ user);
$gateMock = $this->getGateMock(policyMethodName: 'update', args: [
// Ensure you obtain a fresh model instance; using the $user variable directly will cause the test to fail.
User::find($user->id),
]);
$this->assertTrue($request->authorize($gateMock));
}
In this code, we're examining the testing of the authorize
method within a FormRequest class.
The main objective is to confirm that it appropriately interacts with Laravel's Gate functionality.
The test ensures that the Gate::allows
method is invoked with the correct parameters,
checking if users have the required permissions to perform updates.
If the authorization logic is correctly implemented, this test should pass,
ensuring that only users with the necessary permissions can perform updates.
assertCriteriaPushedToRepository
Available since Core v8.9.0
Asserts that a criteria is pushed to a repository.
In the following example, we want to test
if the UserIsAdminCriteria
is pushed to the UserRepository
when the ListUsersTask
is called with the admin
method.
public function testCanListAdminUsers(): void
{
$this->assertCriteriaPushedToRepository(
UserRepository::class,
UserIsAdminCriteria::class,
['admin' => true],
);
$task = app(ListUsersTask::class);
$task->admin();
}
assertNoCriteriaPushedToRepository
Available since Core v8.9.0
Asserts that no criteria is pushed to a repository.
In the following example, we want to test
if no criteria is pushed to the UserRepository
when the ListUsersTask
's admin
method is called with a null
value.
public function testCanListAllUsers(): void
{
$this->assertNoCriteriaPushedToRepository(UserRepository::class);
$task = app(ListUsersTask::class);
$task->admin(null);
}
allowAddRequestCriteriaInvocation
Available since Core v8.9.0
Allow addRequestCriteria
method invocation on the repository mock.
This is particularly useful when you want to test a repository that uses the
RequestCriteria.
public function testCanListAdminUsers(): void
{
$repositoryMock = $this->assertCriteriaPushedToRepository(
UserRepository::class,
UserIsAdminCriteria::class,
['admin' => true],
);
$this->allowAddRequestCriteriaInvocation($repositoryMock);
$task = app(ListUsersTask::class);
$task->admin();
}
Faker
An instance of Faker is automatically provided in every test class, allowing you to generate fake data easily.
You can access it using $this->faker
.
This feature is deprecated and will be removed in the next major release.
You should use the Laravel fake
helper function instead.
Test Helper Methods
Apiato provides a variety of helper methods that you may utilize when testing your application.
createSpyWithRepository
Available since Core v8.9.0
This method is useful when you want to test if a repository method is called within an Action, SubAction or a Task.
In the following example,
we want to test if the run
method of the CreateUserTask
is called within the CreateUserAction
.
public function testCanCreateUser(): void
{
$data = [
'email' => '[email protected]',
'password' => 'you-shall-not-pass',
];
$taskSpy = $this->createSpyWithRepository(CreateUserTask::class, UserRepository::class);
$action = app(CreateUserAction::class);
$action->run($data);
$taskSpy->shouldHaveReceived('run')->once()->with($data);
}
inIds
The inIds
method allows you to check if the given hashed ID exists within the provided model collection.
$hashedId = 'hashed_123';
$collection = Model::all();
$isInCollection = $this->inIds($hashedId, $collection);
By leveraging the inIds
method, you can streamline your testing process when working with hashed identifiers,
ensuring that the expected hashed IDs are present within your model collections.
This method will be removed in the next major release and will not be available in test classes.
Create Live Testing Data
To test your application using live testing data, such as creating items in an inventory, you can utilize the feature designed specifically for this purpose. It allows for the automatic generation of testing data, which can be helpful during staging or when real people are testing your application.
To create your live testing data, navigate to the app/Ship/Seeder/SeedTestingData.php
seeder class.
Within this class, you can define the logic and data generation process for your testing data.
Once you have defined your testing data, you can run the following command in your terminal:
php artisan apiato:seed-test
This command triggers the seeding process specifically for testing data, populating your application with the generated data.