yogiboook_new/tests/Feature/Api/Auth/Password/ResetControllerTest.php

<?php

namespace Tests\Feature\Api\Auth\Password;

use Carbon\Carbon;
use DB;
use Hash;
use Illuminate\Support\Str;
use Tests\Feature\ApiTestCase;
use Vanguard\User;

class ResetControllerTest extends ApiTestCase
{
    /** @test */
    public function password_reset()
    {
        $this->setSettings(['forgot_password' => true]);

        $user = User::factory()->create(['email' => 'test@test.com']);

        $token = $this->createNewToken();

        DB::table('password_resets')->insert([
            'email' => $user->email,
            'token' => Hash::make($token),
            'created_at' => Carbon::now(),
        ]);

        $this->resetPassword($token, $user->email)
            ->assertOk();

        $this->assertTrue(Hash::check('123123123', $user->fresh()->password));
    }

    /** @test */
    public function password_reset_with_expired_token()
    {
        $this->setSettings(['forgot_password' => true]);

        $user = User::factory()->create(['email' => 'test@test.com']);

        $token = $this->createNewToken();

        DB::table('password_resets')->insert([
            'email' => $user->email,
            'token' => Hash::make($token),
            'created_at' => Carbon::now()->subHours(2),
        ]);

        $this->resetPassword($token, $user->email)
            ->assertJson([
                'message' => 'This password reset token is invalid.',
            ]);
    }

    /** @test */
    public function password_reset_with_invalid_email()
    {
        $this->setSettings(['forgot_password' => true]);

        $user = User::factory()->create(['email' => 'test@test.com']);

        $token = $this->createNewToken();

        DB::table('password_resets')->insert([
            'email' => $user->email,
            'token' => Hash::make($token),
            'created_at' => Carbon::now(),
        ]);

        $this->resetPassword($token, 'foo@bar.com')
            ->assertOk()
            ->assertJson(['success' => true]);
    }

    private function resetPassword($token, $email)
    {
        return $this->postJson('api/password/reset', [
            'token' => $token,
            'email' => $email,
            'password' => '123123123',
            'password_confirmation' => '123123123',
        ]);
    }

    private function createNewToken()
    {
        $key = $this->app['config']['app.key'];

        if (Str::startsWith($key, 'base64:')) {
            $key = base64_decode(substr($key, 7));
        }

        return hash_hmac('sha256', Str::random(40), $key);
    }
}