Merge branches 'master' and '84-validate-returns-true-with-wrong-top-level-elements' of github.com:SOHELAHMED7/php-openapi into 84-validate-returns-true-with-wrong-top-level-elements

Author: SOHELAHMED7

Makefile

@@ -37,7 +37,10 @@ fix-style: php-cs-fixer.phar
 	$(DOCKER_PHP) vendor/bin/indent --spaces .php_cs.dist
 	$(DOCKER_PHP) ./php-cs-fixer.phar fix src/ --diff
 
-install:
+cli:
+	docker-compose run --rm php bash
+
+install: composer.json package.json
 	$(DOCKER_PHP) composer install --prefer-dist --no-interaction --no-progress --ansi
 	$(DOCKER_NODE) yarn install
 
@@ -82,4 +85,3 @@ coverage: .php-openapi-covA .php-openapi-covB
 	grep -rhPo '^class \w+' src/spec/ | awk '{print $$2}' |grep -v '^Type$$' | sort > $@
 
 .PHONY: all check-style fix-style install test lint coverage
-

bin/php-openapi

@@ -215,7 +215,7 @@ switch ($command) {
 
         if ($outputFile === null) {
             if ($outputFormat === null) {
-                error("No output fromat specified, please specify --write-json or --write-yaml.", "usage");
+                error("No output format specified, please specify --write-json or --write-yaml.", "usage");
             } elseif ($outputFormat === 'json') {
                 fwrite(STDOUT, \cebe\openapi\Writer::writeToJson($openApi));
             } else {

src/ReferenceContext.php

@@ -121,10 +121,18 @@ private function reduceDots($path)
                 unset($parts[$i]);
                 continue;
             }
-            if ($i > 0 && $parts[$i] === '..' && $parts[$i - $parentOffset] !== '..') {
-                unset($parts[$i - $parentOffset]);
+            
+            if ($i > 0 && $parts[$i] === '..') {
+                $parent = $i - $parentOffset;
+                //Make sure parent exists, if not, check the next parent etc
+                while ($parent >= 0 && empty($parts[$parent])) {
+                    $parent--;
+                }
+                //Confirm parent is valid
+                if (!empty($parts[$parent]) && $parts[$parent] !== '..') {
+                    unset($parts[$parent]);
+                }
                 unset($parts[$i]);
-                $parentOffset += 2;
             }
         }
         return '/'.implode('/', $parts);

src/spec/OpenApi.php

@@ -37,7 +37,7 @@ protected function attributes(): array
             'servers' => [Server::class],
             'paths' => Paths::class,
             'components' => Components::class,
-            'security' => [SecurityRequirement::class],
+            'security' => SecurityRequirements::class,
             'tags' => [Tag::class],
             'externalDocs' => ExternalDocumentation::class,
         ];

src/spec/Operation.php

@@ -46,7 +46,7 @@ protected function attributes(): array
             'responses' => Responses::class,
             'callbacks' => [Type::STRING, Callback::class],
             'deprecated' => Type::BOOLEAN,
-            'security' => [SecurityRequirement::class],
+            'security' => SecurityRequirements::class,
             'servers' => [Server::class],
         ];
     }

src/spec/PathItem.php

@@ -180,7 +180,7 @@ public function resolveReferences(ReferenceContext $context = null)
                     foreach ($this->$attribute as $k => $item) {
                         if ($item instanceof Reference) {
                             $referencedObject = $item->resolve();
-                            $this->$attribute = [$k => $referencedObject] + $this->$attribute;
+                            $this->$attribute = $this->$attribute + [$k => $referencedObject];
                             if (!$referencedObject instanceof Reference && $referencedObject !== null) {
                                 $referencedObject->resolveReferences();
                             }

src/spec/SecurityRequirement.php

@@ -10,13 +10,20 @@
 use cebe\openapi\SpecBaseObject;
 
 /**
- * Lists the required security schemes to execute this operation.
+ * A required security scheme to execute this operation.
  *
  * @link https://github.com/OAI/OpenAPI-Specification/blob/3.0.2/versions/3.0.2.md#securityRequirementObject
  *
  */
 class SecurityRequirement extends SpecBaseObject
 {
+    private $_securityRequirement;
+    public function __construct(array $data)
+    {
+        parent::__construct($data);
+        $this->_securityRequirement = $data;
+    }
+
     /**
      * @return array array of attributes available in this object.
      */
@@ -34,4 +41,9 @@ protected function attributes(): array
     protected function performValidation()
     {
     }
+
+    public function getSerializableData()
+    {
+        return $this->_securityRequirement;
+    }
 }

src/spec/SecurityRequirements.php

@@ -0,0 +1,78 @@
+<?php
+
+/**
+ * @copyright Copyright (c) 2018 Carsten Brandt <[email protected]> and contributors
+ * @license https://github.com/cebe/php-openapi/blob/master/LICENSE
+ */
+
+namespace cebe\openapi\spec;
+
+use cebe\openapi\SpecBaseObject;
+
+/**
+ * Lists the required security schemes to execute this operation.
+ *
+ * @link https://github.com/OAI/OpenAPI-Specification/blob/3.0.2/versions/3.0.2.md#securityRequirementObject
+ *
+ */
+class SecurityRequirements extends SpecBaseObject
+{
+    private $_securityRequirements;
+
+    public function __construct(array $data)
+    {
+        parent::__construct($data);
+
+        foreach ($data as $index => $value) {
+            if (is_numeric($index)) { // read
+                $this->_securityRequirements[array_keys($value)[0]] = new SecurityRequirement(array_values($value)[0]);
+            } else { // write
+                $this->_securityRequirements[$index] = $value;
+            }
+        }
+        if ($data === []) {
+            $this->_securityRequirements = [];
+        }
+    }
+
+    /**
+     * @return array array of attributes available in this object.
+     */
+    protected function attributes(): array
+    {
+        // this object does not have a fixed set of attribute names
+        return [];
+    }
+
+    /**
+     * Perform validation on this object, check data against OpenAPI Specification rules.
+     *
+     * Call `addError()` in case of validation errors.
+     */
+    protected function performValidation()
+    {
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    public function getSerializableData()
+    {
+        $data = [];
+        foreach ($this->_securityRequirements ?? [] as $name => $securityRequirement) {
+            /** @var SecurityRequirement $securityRequirement */
+            $data[] = [$name => $securityRequirement->getSerializableData()];
+        }
+        return $data;
+    }
+
+    public function getRequirement(string $name)
+    {
+        return $this->_securityRequirements[$name] ?? null;
+    }
+
+    public function getRequirements()
+    {
+        return $this->_securityRequirements;
+    }
+}

tests/ReferenceContextTest.php

@@ -179,6 +179,22 @@ public function normalizeUriProvider()
                 '/var/www/api/../definitions.yaml',
                 'file:///var/www/definitions.yaml',
             ],
+            [
+                '/./definitions.yaml',
+                'file:///definitions.yaml',
+            ],            
+            [
+                '/var/www/api/schema/../../definitions.yaml',
+                'file:///var/www/definitions.yaml',
+            ],
+            [
+                '/var/www/api/schema/./../data/./../definitions.yaml',
+                'file:///var/www/api/definitions.yaml',
+            ],           
+            [
+                '/var/www/api/schema/./../definitions.yaml',
+                'file:///var/www/api/definitions.yaml',
+            ],            
             [
                 '/var/www/api/../definitions.yaml#/components/Pet',
                 'file:///var/www/definitions.yaml#/components/Pet',

tests/WriterTest.php

@@ -1,6 +1,13 @@
 <?php
 
+use cebe\openapi\spec\Components;
+use cebe\openapi\spec\Operation;
+use cebe\openapi\spec\PathItem;
+use cebe\openapi\spec\Response;
+use cebe\openapi\spec\Responses;
 use cebe\openapi\spec\SecurityRequirement;
+use cebe\openapi\spec\SecurityRequirements;
+use cebe\openapi\spec\SecurityScheme;
 
 class WriterTest extends \PHPUnit\Framework\TestCase
 {
@@ -137,7 +144,9 @@ public function testWriteEmptySecurityYaml()
     public function testWriteEmptySecurityPartJson()
     {
         $openapi = $this->createOpenAPI([
-            'security' => [new SecurityRequirement(['Bearer' => []])],
+            'security' => new SecurityRequirements([
+                'Bearer' => new SecurityRequirement([])
+            ]),
         ]);
 
         $json = \cebe\openapi\Writer::writeToJson($openapi);
@@ -166,7 +175,9 @@ public function testWriteEmptySecurityPartJson()
     public function testWriteEmptySecurityPartYaml()
     {
         $openapi = $this->createOpenAPI([
-            'security' => [new SecurityRequirement(['Bearer' => []])],
+            'security' => new SecurityRequirements([
+                'Bearer' => new SecurityRequirement([])
+            ]),
         ]);
 
         $yaml = \cebe\openapi\Writer::writeToYaml($openapi);
@@ -182,6 +193,105 @@ public function testWriteEmptySecurityPartYaml()
   -
     Bearer: []
 
+YAML
+        ),
+            $yaml
+        );
+    }
+
+    public function testSecurityAtPathOperationLevel()
+    {
+        $openapi = $this->createOpenAPI([
+            'components' => new Components([
+                'securitySchemes' => [
+                    'BearerAuth' => new SecurityScheme([
+                        'type' => 'http',
+                        'scheme' => 'bearer',
+                        'bearerFormat' => 'AuthToken and JWT Format' # optional, arbitrary value for documentation purposes
+                    ]),
+                ],
+            ]),
+            'paths' => [
+                '/test' => new PathItem([
+                    'get' => new Operation([
+                        'security' => new SecurityRequirements([
+                            'BearerAuth' => new SecurityRequirement([]),
+                        ]),
+                        'responses' => new Responses([
+                            200 => new Response(['description' => 'OK']),
+                        ])
+                    ])
+                ])
+            ]
+        ]);
+
+        $yaml = \cebe\openapi\Writer::writeToYaml($openapi);
+
+
+        $this->assertEquals(preg_replace('~\R~', "\n", <<<YAML
+openapi: 3.0.0
+info:
+  title: 'Test API'
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          description: OK
+      security:
+        -
+          BearerAuth: []
+components:
+  securitySchemes:
+    BearerAuth:
+      type: http
+      scheme: bearer
+      bearerFormat: 'AuthToken and JWT Format'
+
+YAML
+        ),
+            $yaml
+        );
+    }
+
+    public function testSecurityAtGlobalLevel()
+    {
+        $openapi = $this->createOpenAPI([
+            'components' => new Components([
+                'securitySchemes' => [
+                    'BearerAuth' => new SecurityScheme([
+                        'type' => 'http',
+                        'scheme' => 'bearer',
+                        'bearerFormat' => 'AuthToken and JWT Format' # optional, arbitrary value for documentation purposes
+                    ])
+                ],
+            ]),
+            'security' => new SecurityRequirements([
+                'BearerAuth' => new SecurityRequirement([])
+            ]),
+            'paths' => [],
+        ]);
+
+        $yaml = \cebe\openapi\Writer::writeToYaml($openapi);
+
+
+        $this->assertEquals(preg_replace('~\R~', "\n", <<<YAML
+openapi: 3.0.0
+info:
+  title: 'Test API'
+  version: 1.0.0
+paths: {  }
+components:
+  securitySchemes:
+    BearerAuth:
+      type: http
+      scheme: bearer
+      bearerFormat: 'AuthToken and JWT Format'
+security:
+  -
+    BearerAuth: []
+
 YAML
         ),
             $yaml