initial commit

2026-05-17 13:26:14 +02:00
commit 75299b723d
176 changed files with 20327 additions and 0 deletions
--- a/tests/Feature/Api/WhmcsApiTest.php
+++ b/tests/Feature/Api/WhmcsApiTest.php
@@ -0,0 +1,86 @@
+<?php
+
+namespace Tests\Feature\Api;
+
+use App\Models\HostingPlan;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+use Illuminate\Support\Facades\Http;
+use Illuminate\Support\Facades\Queue;
+use Tests\TestCase;
+
+class WhmcsApiTest extends TestCase
+{
+    use RefreshDatabase;
+
+    protected function setUp(): void
+    {
+        parent::setUp();
+
+        config([
+            'hosting.whmcs.enabled' => true,
+            'hosting.whmcs.api_secret' => 'test-secret',
+            'hosting.whmcs.allowed_ips' => [],
+        ]);
+
+        HostingPlan::query()->create([
+            'slug' => 'small',
+            'name' => 'Small',
+            'cpu' => 2,
+            'ram' => 4096,
+            'disk' => 40,
+            'max_backups' => 4,
+            'is_active' => true,
+        ]);
+    }
+
+    public function test_provision_requires_valid_signature(): void
+    {
+        $this->postJson('/api/whmcs/services', [])
+            ->assertStatus(401);
+    }
+
+    public function test_provision_with_valid_signature(): void
+    {
+        Queue::fake();
+        Http::fake(['*' => Http::response(['data' => null], 200)]);
+
+        $body = [
+            'whmcs_service_id' => 1001,
+            'whmcs_client_id' => 42,
+            'client_email' => 'kunde@example.com',
+            'client_name' => 'Max Kunde',
+            'plan_slug' => 'small',
+            'hostname' => 'vm-test',
+            'subdomain' => 'vmtest',
+            'behind_traefik' => true,
+            'provision_mode' => 'template',
+            'template_slug' => 'debian-12',
+        ];
+
+        $json = json_encode($body);
+        $timestamp = time();
+        $signature = hash_hmac('sha256', $timestamp.'.'.$json, 'test-secret');
+
+        $this->postJson('/api/whmcs/services', $body, [
+            'X-Whmcs-Timestamp' => $timestamp,
+            'X-Whmcs-Signature' => $signature,
+        ])
+            ->assertStatus(202)
+            ->assertJsonPath('vmid', 2000);
+
+        $this->assertDatabaseHas('whmcs_services', ['whmcs_service_id' => 1001]);
+        $this->assertDatabaseHas('vmid_reservations', ['vmid' => 2000, 'status' => 'reserved']);
+    }
+
+    private function signedRequest(string $method, string $uri, array $body = []): \Illuminate\Testing\TestResponse
+    {
+        $json = json_encode($body);
+        $timestamp = time();
+        $signature = hash_hmac('sha256', $timestamp.'.'.$json, 'test-secret');
+
+        return $this->json($method, $uri, $body, [
+            'X-Whmcs-Timestamp' => $timestamp,
+            'X-Whmcs-Signature' => $signature,
+        ]);
+    }
+}