[change] (UMCS-181) Refactor applepay adapter: Add test for merchant id key file.

Author: Ryouzanpaku

src/Services/EnvironmentService.php

@@ -41,7 +41,7 @@ class EnvironmentService
     public const ENV_VAR_TEST_PRIVATE_KEY_NON_3DS = 'UNZER_PAPI_TEST_PRIVATE_KEY_NON_3DS';
     public const ENV_VAR_TEST_PUBLIC_KEY_NON_3DS = 'UNZER_PAPI_TEST_PUBLIC_KEY_NON_3DS';
 
-    public const ENV_VAR_TEST_APPLE_MERCHANT_CERTIFICATE = 'UNZER_APPLE_MERCHANT_CERTIFICATE_PATH';
+    public const ENV_VAR_TEST_APPLE_MERCHANT_ID_FOLDER = 'UNZER_APPLE_MERCHANT_ID_PATH';
     public const ENV_VAR_TEST_APPLE_CA_CERTIFICATE = 'UNZER_APPLE_CA_CERTIFICATE_PATH';
 
     private const ENV_VAR_NAME_TIMEOUT = 'UNZER_PAPI_TIMEOUT';
@@ -142,13 +142,13 @@ public static function getTestPublicKey($non3ds = false): string
     }
 
     /**
-     * Returns the apple merchant certificate path set via environment variable.
+     * Returns the path to apple merchant ID folder set via environment variable.
      *
      * @return string
      */
-    public static function getAppleMerchantCertificatePath(): string
+    public static function getAppleMerchantIdPath(): string
     {
-        return stripslashes($_SERVER[self::ENV_VAR_TEST_APPLE_MERCHANT_CERTIFICATE] ?? '');
+        return stripslashes($_SERVER[self::ENV_VAR_TEST_APPLE_MERCHANT_ID_FOLDER] ?? '');
     }
 
     /**

test/integration/ApplepayAdapterTest.php

@@ -34,33 +34,33 @@
 
 class ApplepayAdapterTest extends BaseIntegrationTest
 {
+    /** @var string $appleCaCertificatePath Path to ca Certificate file. */
+    protected $appleCaCertificatePath;
+    /** @var string $merchantValidationUrl merchant validation url for testing. */
     private $merchantValidationUrl;
-    private $merchantValidationCertificatePath;
-    private $appleCaCertificatePath;
-
-    public function domainShouldBeValidatedCorrectlyDP()
-    {
-        return [
-            'invalid: example.domain.com' => ['https://example.domain.com', false],
-            'valid: https://apple-pay-gateway.apple.com/some/path' => ['https://apple-pay-gateway.apple.com/some/path', true],
-            'valid: https://cn-apple-pay-gateway.apple.com' => ['https://cn-apple-pay-gateway.apple.com', true],
-            'invalid: apple-pay-gateway-nc-pod1.apple.com' => ['apple-pay-gateway-nc-pod1.apple.com', false],
-            'invalid: (empty)' => ['', false],
-        ];
-    }
+    /** @var string $applepayCombinedCertPath Path to combined certificate file. */
+    private $applepayCombinedCertPath;
+    /** @var string $applepayCertPath Path to merchant ID certificate file. */
+    private $applepayCertPath;
+    /** @var string $applepayKeyPath Path to merchant ID key file. */
+    private $applepayKeyPath;
 
     /**
      * @inheritDoc
      */
     protected function setUp(): void
     {
         $this->merchantValidationUrl = 'https://apple-pay-gateway-cert.apple.com/paymentservices/startSession';
-        $this->merchantValidationCertificatePath = EnvironmentService::getAppleMerchantCertificatePath();
+
+        $appleMerchantIdPath = EnvironmentService::getAppleMerchantIdPath();
+        $this->applepayCertPath = $appleMerchantIdPath . 'merchant_id.pem';
+        $this->applepayKeyPath = $appleMerchantIdPath . 'merchant_id.key';
+        $this->applepayCombinedCertPath = $appleMerchantIdPath . 'apple-pay-cert.pem';
         $this->appleCaCertificatePath = EnvironmentService::getAppleCaCertificatePath();
     }
 
     /**
-     * test merchant validation request.
+     * Test merchant validation request.
      *
      * @test
      *
@@ -70,7 +70,7 @@ public function verifyMerchantValidationRequest(): void
     {
         $applepaySession = $this->createApplepaySession();
         $appleAdapter = new ApplepayAdapter();
-        $appleAdapter->init($this->merchantValidationCertificatePath, null, $this->appleCaCertificatePath);
+        $appleAdapter->init($this->applepayCertPath, $this->applepayKeyPath, $this->appleCaCertificatePath);
 
         $validationResponse = $appleAdapter->validateApplePayMerchant(
             $this->merchantValidationUrl,
@@ -81,17 +81,25 @@ public function verifyMerchantValidationRequest(): void
     }
 
     /**
-     * test merchant validation request without ca certificate.
+     * @return ApplepaySession
+     */
+    private function createApplepaySession(): ApplepaySession
+    {
+        return new ApplepaySession('merchantIdentifier', 'displayName', 'domainName');
+    }
+
+    /**
+     * Test merchant validation request without ca certificate.
      *
      * @test
      *
      * @throws ApplepayMerchantValidationException
      */
-    public function merchantValidationWorksWithoutCaCert(): void
+    public function merchantValidationWorksWithApplepayCertOnly(): void
     {
         $applepaySession = $this->createApplepaySession();
         $appleAdapter = new ApplepayAdapter();
-        $appleAdapter->init($this->merchantValidationCertificatePath);
+        $appleAdapter->init($this->applepayCombinedCertPath);
 
         $validationResponse = $appleAdapter->validateApplePayMerchant(
             $this->merchantValidationUrl,
@@ -101,6 +109,68 @@ public function merchantValidationWorksWithoutCaCert(): void
         $this->assertNotNull($validationResponse);
     }
 
+    /**
+     * Test merchant validation request without ca certificate.
+     *
+     * @test
+     *
+     * @throws ApplepayMerchantValidationException
+     */
+    public function merchantValidationWorksWithCertAndKey(): void
+    {
+        $applepaySession = $this->createApplepaySession();
+        $appleAdapter = new ApplepayAdapter();
+        $appleAdapter->init($this->applepayCertPath, $this->applepayKeyPath);
+
+        $validationResponse = $appleAdapter->validateApplePayMerchant(
+            $this->merchantValidationUrl,
+            $applepaySession
+        );
+
+        $this->assertNotNull($validationResponse);
+    }
+
+    /**
+     * Test merchant validation request without key and only the merchant id certificate should throw exception.
+     *
+     * @test
+     *
+     * @throws ApplepayMerchantValidationException
+     */
+    public function missingKeyShouldThrowException(): void
+    {
+        $applepaySession = $this->createApplepaySession();
+        $appleAdapter = new ApplepayAdapter();
+        $appleAdapter->init($this->applepayCertPath);
+
+        $this->expectException(ApplepayMerchantValidationException::class);
+        $appleAdapter->validateApplePayMerchant(
+            $this->merchantValidationUrl,
+            $applepaySession
+        );
+    }
+
+    /**
+     * Test merchant validation request without init() call should throw exception.
+     *
+     * @test
+     *
+     * @throws ApplepayMerchantValidationException
+     */
+    public function missingInitCallThrowsException(): void
+    {
+        $applepaySession = $this->createApplepaySession();
+        $appleAdapter = new ApplepayAdapter();
+
+        $this->expectException(ApplepayMerchantValidationException::class);
+        $this->expectExceptionMessage('No curl adapter initiated yet. Make sure to cal init() function before.');
+
+        $appleAdapter->validateApplePayMerchant(
+            $this->merchantValidationUrl,
+            $applepaySession
+        );
+    }
+
     /**
      * Merchant validation call should throw Exception if domain of Validation url is invalid.
      *
@@ -111,7 +181,7 @@ public function merchantValidationThrowsErrorForInvalidDomain(): void
     {
         $applepaySession = $this->createApplepaySession();
         $appleAdapter = new ApplepayAdapter();
-        $appleAdapter->init($this->merchantValidationCertificatePath);
+        $appleAdapter->init($this->applepayCombinedCertPath);
 
         $this->expectException(ApplepayMerchantValidationException::class);
         $this->expectExceptionMessage('Invalid URL used for merchantValidation request.');
@@ -140,11 +210,18 @@ public function domainShouldBeValidatedCorrectly($validationUrl, $expectedResult
         $this->assertEquals($expectedResult, $domainValidation);
     }
 
-    /**
-     * @return ApplepaySession
+    /** Provides different urls to test domain validation.
+     *
+     * @return array[]
      */
-    private function createApplepaySession(): ApplepaySession
+    public function domainShouldBeValidatedCorrectlyDP(): array
     {
-        return new ApplepaySession('merchantIdentifier', 'displayName', 'domainName');
+        return [
+            'invalid: example.domain.com' => ['https://example.domain.com', false],
+            'valid: https://apple-pay-gateway.apple.com/some/path' => ['https://apple-pay-gateway.apple.com/some/path', true],
+            'valid: https://cn-apple-pay-gateway.apple.com' => ['https://cn-apple-pay-gateway.apple.com', true],
+            'invalid: apple-pay-gateway-nc-pod1.apple.com' => ['apple-pay-gateway-nc-pod1.apple.com', false],
+            'invalid: (empty)' => ['', false],
+        ];
     }
 }