public function testCORSconfig()
{
$tokenObject = new UsfAuthToken('abc123', 'http://localhost/tokenAuth/');
//CORS config
$defaultCorsConfig = ['origin' => '', 'methods' => 'GET, POST, PUT, DELETE, OPTIONS', 'allowCredentials' => true, 'maxAge' => 86400, 'allowHeaders' => 'X-Requested-With'];
$defCorsConfig = Utility::getNonPublicPropertyValue($tokenObject, "_corsConfig");
$this->assertEquals($defaultCorsConfig, $defCorsConfig);
// empty CORS config
$customCorsConfig = [];
$tokenObject->setCorsConfig($customCorsConfig);
$tokenObject->setRequestMethod('OPTIONS');
$tokenObject->addCorsHeaders();
$correctHeaders = ["Access-Control-Allow-Origin: '*'", "Access-Control-Allow-Credentials: true", "Access-Control-Max-Age: 86400", "Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS", "Access-Control-Allow-Headers: X-Requested-With"];
$this->assertEquals($correctHeaders, Utils::headers_list());
}
