public function testCORSconfig() { $tokenObject = new UsfAuthToken('abc123', 'http://localhost/tokenAuth/'); //CORS config $defaultCorsConfig = ['origin' => '', 'methods' => 'GET, POST, PUT, DELETE, OPTIONS', 'allowCredentials' => true, 'maxAge' => 86400, 'allowHeaders' => 'X-Requested-With']; $defCorsConfig = Utility::getNonPublicPropertyValue($tokenObject, "_corsConfig"); $this->assertEquals($defaultCorsConfig, $defCorsConfig); // empty CORS config $customCorsConfig = []; $tokenObject->setCorsConfig($customCorsConfig); $tokenObject->setRequestMethod('OPTIONS'); $tokenObject->addCorsHeaders(); $correctHeaders = ["Access-Control-Allow-Origin: '*'", "Access-Control-Allow-Credentials: true", "Access-Control-Max-Age: 86400", "Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS", "Access-Control-Allow-Headers: X-Requested-With"]; $this->assertEquals($correctHeaders, Utils::headers_list()); }