259 lines
6.3 KiB
PHP
259 lines
6.3 KiB
PHP
<?php
|
|
class AuthTest extends AbstractTest
|
|
{
|
|
public function testValidPassword()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
UserModel::save($user);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
});
|
|
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
|
|
$this->assertValidUser(UserModel::getByName($user->getName()));
|
|
$this->assertValidUser(Auth::getCurrentUser());
|
|
}
|
|
|
|
public function testAutoLogin()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
UserModel::save($user);
|
|
|
|
$this->assert->isNull($user->getLastLoginTime());
|
|
|
|
$token = base64_encode('existing') . '|' . base64_encode('bleee');
|
|
$_COOKIE['auth'] = TextHelper::encrypt($token);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::tryAutoLogin();
|
|
});
|
|
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
|
|
$this->assertValidUser(UserModel::getByName($user->getName()));
|
|
$this->assertValidUser(Auth::getCurrentUser());
|
|
}
|
|
|
|
public function testAutoLoginInvalidToken()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
UserModel::save($user);
|
|
|
|
$token = 'bleblebleąćęłóśńźż';
|
|
$_COOKIE['auth'] = TextHelper::encrypt($token);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::tryAutoLogin();
|
|
});
|
|
|
|
$this->assert->isFalse(Auth::isLoggedIn());
|
|
|
|
$token = 'bleblebleą|ćęłóśńźż';
|
|
$_COOKIE['auth'] = TextHelper::encrypt($token);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::tryAutoLogin();
|
|
});
|
|
|
|
$this->assert->isFalse(Auth::isLoggedIn());
|
|
|
|
$_COOKIE['auth'] = 'complete nonsense';
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::tryAutoLogin();
|
|
});
|
|
|
|
$this->assert->isFalse(Auth::isLoggedIn());
|
|
}
|
|
|
|
public function testLoginViaEmail()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setConfirmedEmail('godzilla@whitestar.gov');
|
|
UserModel::save($user);
|
|
|
|
$this->assert->doesNotThrow(function() use ($user)
|
|
{
|
|
Auth::login($user->getConfirmedEmail(), 'bleee', false);
|
|
});
|
|
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
}
|
|
|
|
public function testLogout()
|
|
{
|
|
$this->assert->isFalse(Auth::isLoggedIn());
|
|
$this->testValidPassword();
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
Auth::setCurrentUser(null);
|
|
$this->assert->isFalse(Auth::isLoggedIn());
|
|
}
|
|
|
|
public function testInvalidUserName()
|
|
{
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('non-existing', 'wrong-password', false);
|
|
}, 'invalid user name');
|
|
}
|
|
|
|
public function testInvalidPassword()
|
|
{
|
|
$user = $this->prepareValidUser();
|
|
$user->setPassword('blee2');
|
|
UserModel::save($user);
|
|
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('existing', 'wrong-password', false);
|
|
}, 'invalid password');
|
|
}
|
|
|
|
public function testBanned()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->ban();
|
|
UserModel::save($user);
|
|
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
}, 'You are banned');
|
|
}
|
|
|
|
public function testStaffConfirmationEnabledFail()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = true;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(false);
|
|
UserModel::save($user);
|
|
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
}, 'staff hasn\'t confirmed');
|
|
}
|
|
|
|
public function testStaffConfirmationEnabledPass()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = true;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(true);
|
|
UserModel::save($user);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
});
|
|
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
}
|
|
|
|
public function testStaffConfirmationDisabledPass()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = false;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(false);
|
|
UserModel::save($user);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
});
|
|
|
|
$this->assert->isTrue(Auth::isLoggedIn());
|
|
}
|
|
|
|
public function testMailConfirmationEnabledFail1()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = true;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(false);
|
|
UserModel::save($user);
|
|
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
}, 'need e-mail address confirmation');
|
|
}
|
|
|
|
public function testMailConfirmationEnabledFail2()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = true;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(false);
|
|
$user->setUnconfirmedEmail('test@example.com');
|
|
UserModel::save($user);
|
|
|
|
$this->assert->throws(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
}, 'need e-mail address confirmation');
|
|
}
|
|
|
|
public function testMailConfirmationEnabledPass()
|
|
{
|
|
Core::getConfig()->registration->staffActivation = false;
|
|
Core::getConfig()->registration->needEmailForRegistering = true;
|
|
|
|
$user = $this->prepareValidUser();
|
|
$user->setStaffConfirmed(false);
|
|
$user->setConfirmedEmail('test@example.com');
|
|
UserModel::save($user);
|
|
|
|
$this->assert->doesNotThrow(function()
|
|
{
|
|
Auth::login('existing', 'bleee', false);
|
|
});
|
|
}
|
|
|
|
|
|
|
|
protected function prepareValidUser()
|
|
{
|
|
$user = UserModel::spawn();
|
|
$user->setAccessRank(new AccessRank(AccessRank::Registered));
|
|
$user->setName('existing');
|
|
$user->setPassword('bleee');
|
|
return $user;
|
|
}
|
|
|
|
private function assertValidUser($user)
|
|
{
|
|
$this->assert->areEqual('existing', $user->getName());
|
|
$this->assert->areEqual(time(), $user->getLastLoginTime());
|
|
}
|
|
}
|