ulysia/szurubooru
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
szurubooru/tests/Tests/MiscTests/AuthTest.php
Marcin Kurczewski 0ebfaf991a Fixed login errors for corrupt cookies
2014-05-26 12:53:50 +02:00

250 lines
6.1 KiB
PHP
Raw Blame History

<?php
class AuthTest extends AbstractTest
{
public function testValidPassword()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
UserModel::save($user);
$this->assert->doesNotThrow(function()
{
Auth::login('existing', 'bleee', false);
});
$this->assert->isTrue(Auth::isLoggedIn());
$user = UserModel::getByName($user->getName());
$this->assert->areEqual(time(), $user->getLastLoginTime());
}
public function testAutoLogin()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
UserModel::save($user);
$token = base64_encode('existing') . '|' . base64_encode('bleee');
$_COOKIE['auth'] = TextHelper::encrypt($token);
$this->assert->doesNotThrow(function()
{
Auth::tryAutoLogin();
});
$this->assert->isTrue(Auth::isLoggedIn());
$user = UserModel::getByName($user->getName());
$this->assert->areEqual(time(), $user->getLastLoginTime());
}
public function testAutoLoginInvalidToken()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
UserModel::save($user);
$token = 'bleblebleąćęłóśńźż';
$_COOKIE['auth'] = TextHelper::encrypt($token);
$this->assert->doesNotThrow(function()
{
Auth::tryAutoLogin();
});
$this->assert->isFalse(Auth::isLoggedIn());
$token = 'bleblebleą|ćęłóśńźż';
$_COOKIE['auth'] = TextHelper::encrypt($token);
$this->assert->doesNotThrow(function()
{
Auth::tryAutoLogin();
});
$this->assert->isFalse(Auth::isLoggedIn());
$_COOKIE['auth'] = 'complete nonsense';
$this->assert->doesNotThrow(function()
{
Auth::tryAutoLogin();
});
$this->assert->isFalse(Auth::isLoggedIn());
}
public function testLoginViaEmail()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
$user->setConfirmedEmail('godzilla@whitestar.gov');
UserModel::save($user);
$this->assert->doesNotThrow(function() use ($user)
{
Auth::login($user->getConfirmedEmail(), 'bleee', false);
});
$this->assert->isTrue(Auth::isLoggedIn());
}
public function testLogout()
{
$this->assert->isFalse(Auth::isLoggedIn());
$this->testValidPassword();
$this->assert->isTrue(Auth::isLoggedIn());
Auth::setCurrentUser(null);
$this->assert->isFalse(Auth::isLoggedIn());
}
public function testInvalidUserName()
{
$this->assert->throws(function()
{
Auth::login('non-existing', 'wrong-password', false);
}, 'invalid user name');
}
public function testInvalidPassword()
{
$user = $this->prepareValidUser();
$user->setPassword('blee2');
UserModel::save($user);
$this->assert->throws(function()
{
Auth::login('existing', 'wrong-password', false);
}, 'invalid password');
}
public function testBanned()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
$user->ban();
UserModel::save($user);
$this->assert->throws(function()
{
Auth::login('existing', 'bleee', false);
}, 'You are banned');
}
public function testStaffConfirmationEnabledFail()
{
Core::getConfig()->registration->staffActivation = true;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(false);
UserModel::save($user);
$this->assert->throws(function()
{
Auth::login('existing', 'bleee', false);
}, 'staff hasn\'t confirmed');
}
public function testStaffConfirmationEnabledPass()
{
Core::getConfig()->registration->staffActivation = true;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(true);
UserModel::save($user);
$this->assert->doesNotThrow(function()
{
Auth::login('existing', 'bleee', false);
});
$this->assert->isTrue(Auth::isLoggedIn());
}
public function testStaffConfirmationDisabledPass()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = false;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(false);
UserModel::save($user);
$this->assert->doesNotThrow(function()
{
Auth::login('existing', 'bleee', false);
});
$this->assert->isTrue(Auth::isLoggedIn());
}
public function testMailConfirmationEnabledFail1()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = true;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(false);
UserModel::save($user);
$this->assert->throws(function()
{
Auth::login('existing', 'bleee', false);
}, 'need e-mail address confirmation');
}
public function testMailConfirmationEnabledFail2()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = true;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(false);
$user->setUnconfirmedEmail('test@example.com');
UserModel::save($user);
$this->assert->throws(function()
{
Auth::login('existing', 'bleee', false);
}, 'need e-mail address confirmation');
}
public function testMailConfirmationEnabledPass()
{
Core::getConfig()->registration->staffActivation = false;
Core::getConfig()->registration->needEmailForRegistering = true;
$user = $this->prepareValidUser();
$user->setStaffConfirmed(false);
$user->setConfirmedEmail('test@example.com');
UserModel::save($user);
$this->assert->doesNotThrow(function()
{
Auth::login('existing', 'bleee', false);
});
}
protected function prepareValidUser()
{
$user = UserModel::spawn();
$user->setAccessRank(new AccessRank(AccessRank::Registered));
$user->setName('existing');
$user->setPassword('bleee');
return $user;
}
}
Reference in a new issue View git blame Copy permalink