setAuthToken(AuthKeysFixture::ADMIN_API_KEY); $this->post( self::ENDPOINT, [ 'individual_id' => UsersFixture::USER_REGULAR_USER_ID, 'organisation_id' => OrganisationsFixture::ORGANISATION_A_ID, 'role_id' => RolesFixture::ROLE_REGULAR_USER_ID, 'disabled' => false, 'username' => 'test', 'password' => 'Password123456!', ] ); $this->assertResponseOk(); $this->assertResponseContains('"username": "test"'); $this->assertDbRecordExists('Users', ['username' => 'test']); //TODO: $this->assertRequestMatchesOpenApiSpec(); $this->assertResponseMatchesOpenApiSpec(self::ENDPOINT, 'post'); } public function testAddUserNotAllowedAsRegularUser(): void { $this->setAuthToken(AuthKeysFixture::REGULAR_USER_API_KEY); $this->post( self::ENDPOINT, [ 'individual_id' => UsersFixture::USER_REGULAR_USER_ID, 'organisation_id' => OrganisationsFixture::ORGANISATION_A_ID, 'role_id' => RolesFixture::ROLE_REGULAR_USER_ID, 'disabled' => false, 'username' => 'test', 'password' => 'Password123456!' ] ); $this->assertResponseCode(405); $this->assertDbRecordNotExists('Users', ['username' => 'test']); //TODO: $this->assertRequestMatchesOpenApiSpec(); $this->assertResponseMatchesOpenApiSpec(self::ENDPOINT, 'post'); } }