PhpStan: Add test for non-string token in WOPI request.

Author: donquixote

tests/src/Kernel/Controller/WopiControllerTest.php

@@ -364,6 +364,30 @@ public function testMissingToken(): void {
     }
   }
 
+  /**
+   * Tests different routes using a non-string 'token' query parameter.
+   *
+   * This can only happen if the requests comes from a source that is not
+   * Collabora Online, or if an unexpected change was introduced in a new
+   * version of Collabora Online.
+   *
+   * @covers ::wopiCheckFileInfo
+   * @covers ::wopiGetFile
+   * @covers ::wopiPutFile
+   */
+  public function testNonStringToken(): void {
+    $requests = $this->createRequests();
+    foreach ($requests as $name => $request) {
+      // Replace the token with a value that is not in the JWT format.
+      $request->query->set('access_token', ['not a string']);
+      $this->assertAccessDeniedResponse(
+        'Expected a string access token, found array.',
+        $request,
+        $name,
+      );
+    }
+  }
+
   /**
    * Tests different routes using an invalid token.
    *