public function testInvokesSignatureVerifier()
{
$expected = new GnupgVerificationResult(['fingerprint' => 'foobar', 'summary' => 'baz']);
$this->verifier->verify('foo', 'bar')->willReturn($expected);
$service = new SignatureService($this->verifier->reveal());
$this->assertEquals($expected, $service->verify('foo', 'bar'));
}
/**
* @expectedException \PharIo\Phive\VerificationFailedException
*/
public function testThrowsExceptionIfChecksumVerificationFails()
{
$url = new Url('https://example.com/foo.phar');
$expectedHash = new Sha1Hash(sha1('foo'));
$release = new Release(new Version('1.0.0'), $url, $expectedHash);
$signatureUrl = new Url('https://example.com/foo.phar.asc');
$pharFile = new File(new Filename('foo.phar'), 'foo');
$this->fileDownloader->download($url)->willReturn($pharFile);
$this->fileDownloader->download($signatureUrl)->willReturn(new File(new Filename('foo.phar.asc'), 'bar'));
$this->signatureService->verify('foo', 'bar')->willReturn(true);
$this->checksumService->verify($expectedHash, $pharFile)->shouldBeCalled()->willReturn(false);
$downloader = new PharDownloader($this->fileDownloader->reveal(), $this->signatureService->reveal(), $this->checksumService->reveal());
$downloader->download($release);
}
