refactor(validator): address review feedback for JSON content type matching

- Replace str_contains substring match with RFC 6838 structured syntax
  suffix matching (=== 'application/json' || str_ends_with('+json'))
- Rename findJsonSchema to findJsonContentType for clearer intent
- Handle JSON content type without schema key (skip validation, matching
  prior behavior) instead of producing contradictory error message
- Fix error message terminology: "JSON-compatible response schema"
- Add PHPDoc describing the matching strategy and RFC reference
- Add tests: empty body with problem+json, case-insensitive content type,
  schema-less JSON content type, OAS 3.1 non-JSON content type failure

Author: wadakatu

src/OpenApiResponseValidator.php

@@ -13,7 +13,7 @@
 use function implode;
 use function json_decode;
 use function json_encode;
-use function str_contains;
+use function str_ends_with;
 use function strtolower;
 
 final class OpenApiResponseValidator
@@ -67,22 +67,28 @@ public function validate(
 
         /** @var array<string, array<string, mixed>> $content */
         $content = $responseSpec['content'];
-        $schema = $this->findJsonSchema($content);
+        $jsonContentType = $this->findJsonContentType($content);
 
-        if ($schema === null) {
-            /** @var string[] $definedTypes */
+        if ($jsonContentType === null) {
             $definedTypes = array_keys($content);
 
             return OpenApiValidationResult::failure([
                 "No JSON-compatible content type found for {$method} {$matchedPath} (status {$statusCode}) in '{$specName}' spec. Defined content types: " . implode(', ', $definedTypes),
             ]);
         }
 
+        if (!isset($content[$jsonContentType]['schema'])) {
+            return OpenApiValidationResult::success($matchedPath);
+        }
+
         if ($responseBody === null) {
             return OpenApiValidationResult::failure([
-                "Response body is empty but {$method} {$matchedPath} (status {$statusCode}) defines a JSON schema in '{$specName}' spec.",
+                "Response body is empty but {$method} {$matchedPath} (status {$statusCode}) defines a JSON-compatible response schema in '{$specName}' spec.",
             ]);
         }
+
+        /** @var array<string, mixed> $schema */
+        $schema = $content[$jsonContentType]['schema'];
         $jsonSchema = OpenApiSchemaConverter::convert($schema, $version);
 
         // opis/json-schema requires an object, so encode then decode
@@ -121,16 +127,21 @@ public function validate(
     }
 
     /**
-     * @param array<string, array<string, mixed>> $content
+     * Find the first JSON-compatible content type from the response spec.
+     *
+     * Matches "application/json" exactly and any type with a "+json" structured
+     * syntax suffix (RFC 6838), such as "application/problem+json" and
+     * "application/vnd.api+json". Matching is case-insensitive.
      *
-     * @return null|array<string, mixed>
+     * @param array<string, array<string, mixed>> $content
      */
-    private function findJsonSchema(array $content): ?array
+    private function findJsonContentType(array $content): ?string
     {
         foreach ($content as $contentType => $mediaType) {
-            if (str_contains(strtolower($contentType), 'json') && isset($mediaType['schema'])) {
-                /** @var array<string, mixed> */
-                return $mediaType['schema'];
+            $lower = strtolower($contentType);
+
+            if ($lower === 'application/json' || str_ends_with($lower, '+json')) {
+                return $contentType;
             }
         }
 

tests/Unit/OpenApiResponseValidatorTest.php

@@ -195,6 +195,21 @@ public function v30_problem_json_invalid_response_fails(): void
         $this->assertNotEmpty($result->errors());
     }
 
+    #[Test]
+    public function v30_problem_json_empty_body_fails(): void
+    {
+        $result = $this->validator->validate(
+            'petstore-3.0',
+            'GET',
+            '/v1/pets',
+            400,
+            null,
+        );
+
+        $this->assertFalse($result->isValid());
+        $this->assertStringContainsString('Response body is empty', $result->errors()[0]);
+    }
+
     #[Test]
     public function v30_content_without_json_compatible_type_fails(): void
     {
@@ -211,6 +226,40 @@ public function v30_content_without_json_compatible_type_fails(): void
         $this->assertStringContainsString('application/xml', $result->errors()[0]);
     }
 
+    #[Test]
+    public function v30_case_insensitive_content_type_matches(): void
+    {
+        $result = $this->validator->validate(
+            'petstore-3.0',
+            'GET',
+            '/v1/pets',
+            422,
+            [
+                'type' => 'https://example.com/validation-error',
+                'title' => 'Validation Error',
+                'status' => 422,
+            ],
+        );
+
+        $this->assertTrue($result->isValid());
+        $this->assertSame('/v1/pets', $result->matchedPath());
+    }
+
+    #[Test]
+    public function v30_json_content_type_without_schema_skips_validation(): void
+    {
+        $result = $this->validator->validate(
+            'petstore-3.0',
+            'GET',
+            '/v1/pets',
+            500,
+            ['error' => 'something went wrong'],
+        );
+
+        $this->assertTrue($result->isValid());
+        $this->assertSame('/v1/pets', $result->matchedPath());
+    }
+
     // ========================================
     // OAS 3.1 tests
     // ========================================
@@ -274,6 +323,22 @@ public function v31_problem_json_valid_response_passes(): void
         $this->assertSame('/v1/pets', $result->matchedPath());
     }
 
+    #[Test]
+    public function v31_content_without_json_compatible_type_fails(): void
+    {
+        $result = $this->validator->validate(
+            'petstore-3.1',
+            'POST',
+            '/v1/pets',
+            415,
+            '<error>Unsupported</error>',
+        );
+
+        $this->assertFalse($result->isValid());
+        $this->assertStringContainsString('No JSON-compatible content type found', $result->errors()[0]);
+        $this->assertStringContainsString('application/xml', $result->errors()[0]);
+    }
+
     #[Test]
     public function v31_no_content_response_passes(): void
     {

tests/fixtures/specs/petstore-3.0.json

@@ -42,6 +42,34 @@
                             }
                         }
                     },
+                    "422": {
+                        "description": "Validation error",
+                        "content": {
+                            "Application/Problem+JSON": {
+                                "schema": {
+                                    "type": "object",
+                                    "required": ["type", "title", "status"],
+                                    "properties": {
+                                        "type": {
+                                            "type": "string"
+                                        },
+                                        "title": {
+                                            "type": "string"
+                                        },
+                                        "status": {
+                                            "type": "integer"
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    },
+                    "500": {
+                        "description": "Internal server error",
+                        "content": {
+                            "application/json": {}
+                        }
+                    },
                     "400": {
                         "description": "Bad request",
                         "content": {

tests/fixtures/specs/petstore-3.1.json

@@ -99,6 +99,16 @@
                                 }
                             }
                         }
+                    },
+                    "415": {
+                        "description": "Unsupported media type",
+                        "content": {
+                            "application/xml": {
+                                "schema": {
+                                    "type": "string"
+                                }
+                            }
+                        }
                     }
                 }
             }