setting private value using reflection in unit test

mebjas · mebjas · commit 37a83ffb877b · 2017-10-06T02:15:32.000+05:30
diff --git a/.travis.yml b/.travis.yml
@@ -3,16 +3,18 @@ php:
   - "5.6"
   - "5.5"
   - "5.4"
-  - "5.3"
   - "7.0"
   - "7.1"
   - hhvm
   - nightly
+  - "5.3"
+
 
 matrix:
     allow_failures:
     - php: nightly
     - php: hhvm
+    - php: "5.3"
 
 os:
   - linux
@@ -43,4 +45,4 @@ after_success:
 cache:
   directories:
   - vendor
-  - $HOME/.cache/composer
+  - $HOME/.cache/composer
diff --git a/libs/csrf/csrfprotector.php b/libs/csrf/csrfprotector.php
@@ -388,11 +388,11 @@ public static function refreshToken()
 			if (self::$cookieConfig === null) {
 				if (!isset(self::$config['cookieConfig']))
 					self::$config['cookieConfig'] = array();
-
 				self::$cookieConfig = new cookieConfig(self::$config['cookieConfig']);
 			}
 
-			setcookie(self::$config['CSRFP_TOKEN'], 
+			setcookie(
+				self::$config['CSRFP_TOKEN'], 
 				$token, 
 				time() + self::$cookieExpiryTime,
 				self::$cookieConfig->path,
diff --git a/test/csrfprotector_test.php b/test/csrfprotector_test.php
@@ -183,7 +183,13 @@ public function testSecureCookie()
         csrfprotector::refreshToken();
         $this->assertNotRegExp('/; secure/', csrfp_wrapper::getHeaderValue('Set-Cookie'));
 
-        csrfprotector::$config['cookieConfig'] = array('secure' => true);
+        // this one would generally fails, as init was already called and now private static
+        // property is set with secure as false;
+        $csrfp = new csrfProtector;
+        $reflection = new \ReflectionClass(get_class($csrfp));
+        $property = $reflection->getProperty('cookieConfig');
+        $property->setAccessible(true);
+        $property->setValue($csrfp, new cookieConfig(array('secure' => true)));
         csrfprotector::refreshToken();
         $this->assertRegExp('/; secure/', csrfp_wrapper::getHeaderValue('Set-Cookie'));
     }
