public function testGetUserWithoutCodeOrSignedRequestOrSession() { $facebook = new PersistentFBPublic(array('appId' => self::APP_ID, 'secret' => self::SECRET)); // deliberately leave $_REQUEST and _$SESSION empty $this->assertEmpty($_REQUEST, 'GET, POST, and COOKIE params exist even though ' . 'they should. Test cannot succeed unless all of ' . '$_REQUEST is empty.'); $this->assertEmpty($_SESSION, 'Session is carrying state and should not be.'); $this->assertEmpty($facebook->getUser(), 'Got a user id, even without a signed request, ' . 'access token, or session variable.'); $this->assertEmpty($_SESSION, 'Session superglobal incorrectly populated by getUser.'); }