]>
Commit | Line | Data |
---|---|---|
ef00f9d2 A |
1 | <?php |
2 | ||
3 | declare(strict_types=1); | |
4 | ||
5 | namespace Shaarli\Front\Controller\Admin; | |
6 | ||
ef00f9d2 | 7 | use Shaarli\Config\ConfigManager; |
46503323 | 8 | use Shaarli\Front\Exception\OpenShaarliPasswordException; |
ef00f9d2 A |
9 | use Shaarli\Front\Exception\WrongTokenException; |
10 | use Shaarli\Security\SessionManager; | |
a5a9cf23 | 11 | use Shaarli\TestCase; |
ef00f9d2 A |
12 | use Slim\Http\Request; |
13 | use Slim\Http\Response; | |
14 | ||
15 | class PasswordControllerTest extends TestCase | |
16 | { | |
17 | use FrontAdminControllerMockHelper; | |
18 | ||
19 | /** @var PasswordController */ | |
20 | protected $controller; | |
21 | ||
22 | /** @var mixed[] Variables assigned to the template */ | |
23 | protected $assignedVariables = []; | |
24 | ||
25 | public function setUp(): void | |
26 | { | |
27 | $this->createContainer(); | |
28 | $this->assignTemplateVars($this->assignedVariables); | |
29 | ||
30 | $this->controller = new PasswordController($this->container); | |
31 | } | |
32 | ||
33 | /** | |
34 | * Test displaying the change password page. | |
35 | */ | |
36 | public function testGetPage(): void | |
37 | { | |
38 | $request = $this->createMock(Request::class); | |
39 | $response = new Response(); | |
40 | ||
41 | $result = $this->controller->index($request, $response); | |
42 | ||
43 | static::assertSame(200, $result->getStatusCode()); | |
44 | static::assertSame('changepassword', (string) $result->getBody()); | |
45 | static::assertSame('Change password - Shaarli', $this->assignedVariables['pagetitle']); | |
46 | } | |
47 | ||
48 | /** | |
49 | * Change the password with valid parameters | |
50 | */ | |
51 | public function testPostNewPasswordDefault(): void | |
52 | { | |
53 | $request = $this->createMock(Request::class); | |
54 | $request->method('getParam')->willReturnCallback(function (string $key): string { | |
55 | if ('oldpassword' === $key) { | |
56 | return 'old'; | |
57 | } | |
58 | if ('setpassword' === $key) { | |
59 | return 'new'; | |
60 | } | |
61 | ||
62 | return $key; | |
63 | }); | |
64 | $response = new Response(); | |
65 | ||
66 | $this->container->conf = $this->createMock(ConfigManager::class); | |
67 | $this->container->conf->method('get')->willReturnCallback(function (string $key, $default) { | |
68 | if ('credentials.hash' === $key) { | |
69 | return sha1('old' . 'credentials.login' . 'credentials.salt'); | |
70 | } | |
71 | ||
72 | return strpos($key, 'credentials') !== false ? $key : $default; | |
73 | }); | |
74 | $this->container->conf->expects(static::once())->method('write')->with(true); | |
75 | ||
76 | $this->container->conf | |
77 | ->method('set') | |
78 | ->willReturnCallback(function (string $key, string $value) { | |
79 | if ('credentials.hash' === $key) { | |
80 | static::assertSame(sha1('new' . 'credentials.login' . 'credentials.salt'), $value); | |
81 | } | |
82 | }) | |
83 | ; | |
84 | ||
85 | $result = $this->controller->change($request, $response); | |
86 | ||
87 | static::assertSame(200, $result->getStatusCode()); | |
88 | static::assertSame('changepassword', (string) $result->getBody()); | |
89 | static::assertSame('Change password - Shaarli', $this->assignedVariables['pagetitle']); | |
90 | } | |
91 | ||
92 | /** | |
93 | * Change the password with a wrong existing password | |
94 | */ | |
95 | public function testPostNewPasswordWrongOldPassword(): void | |
96 | { | |
97 | $request = $this->createMock(Request::class); | |
98 | $request->method('getParam')->willReturnCallback(function (string $key): string { | |
99 | if ('oldpassword' === $key) { | |
100 | return 'wrong'; | |
101 | } | |
102 | if ('setpassword' === $key) { | |
103 | return 'new'; | |
104 | } | |
105 | ||
106 | return $key; | |
107 | }); | |
108 | $response = new Response(); | |
109 | ||
110 | $this->container->conf = $this->createMock(ConfigManager::class); | |
111 | $this->container->conf->method('get')->willReturnCallback(function (string $key, $default) { | |
112 | if ('credentials.hash' === $key) { | |
113 | return sha1('old' . 'credentials.login' . 'credentials.salt'); | |
114 | } | |
115 | ||
116 | return strpos($key, 'credentials') !== false ? $key : $default; | |
117 | }); | |
118 | ||
119 | $this->container->conf->expects(static::never())->method('set'); | |
120 | $this->container->conf->expects(static::never())->method('write'); | |
121 | ||
122 | $this->container->sessionManager | |
123 | ->expects(static::once()) | |
124 | ->method('setSessionParameter') | |
125 | ->with(SessionManager::KEY_ERROR_MESSAGES, ['The old password is not correct.']) | |
126 | ; | |
127 | ||
128 | $result = $this->controller->change($request, $response); | |
129 | ||
130 | static::assertSame(400, $result->getStatusCode()); | |
131 | static::assertSame('changepassword', (string) $result->getBody()); | |
132 | static::assertSame('Change password - Shaarli', $this->assignedVariables['pagetitle']); | |
133 | } | |
134 | ||
135 | /** | |
136 | * Change the password with a wrong existing password | |
137 | */ | |
138 | public function testPostNewPasswordWrongToken(): void | |
139 | { | |
140 | $this->container->sessionManager = $this->createMock(SessionManager::class); | |
141 | $this->container->sessionManager->method('checkToken')->willReturn(false); | |
142 | ||
143 | $this->container->conf->expects(static::never())->method('set'); | |
144 | $this->container->conf->expects(static::never())->method('write'); | |
145 | ||
146 | $request = $this->createMock(Request::class); | |
147 | $response = new Response(); | |
148 | ||
149 | $this->expectException(WrongTokenException::class); | |
150 | ||
151 | $this->controller->change($request, $response); | |
152 | } | |
153 | ||
154 | /** | |
155 | * Change the password with an empty new password | |
156 | */ | |
157 | public function testPostNewEmptyPassword(): void | |
158 | { | |
159 | $this->container->sessionManager | |
160 | ->expects(static::once()) | |
161 | ->method('setSessionParameter') | |
162 | ->with(SessionManager::KEY_ERROR_MESSAGES, ['You must provide the current and new password to change it.']) | |
163 | ; | |
164 | ||
165 | $this->container->conf->expects(static::never())->method('set'); | |
166 | $this->container->conf->expects(static::never())->method('write'); | |
167 | ||
168 | $request = $this->createMock(Request::class); | |
169 | $request->method('getParam')->willReturnCallback(function (string $key): string { | |
170 | if ('oldpassword' === $key) { | |
171 | return 'old'; | |
172 | } | |
173 | if ('setpassword' === $key) { | |
174 | return ''; | |
175 | } | |
176 | ||
177 | return $key; | |
178 | }); | |
179 | $response = new Response(); | |
180 | ||
181 | $result = $this->controller->change($request, $response); | |
182 | ||
183 | static::assertSame(400, $result->getStatusCode()); | |
184 | static::assertSame('changepassword', (string) $result->getBody()); | |
185 | static::assertSame('Change password - Shaarli', $this->assignedVariables['pagetitle']); | |
186 | } | |
46503323 A |
187 | |
188 | /** | |
189 | * Change the password on an open shaarli | |
190 | */ | |
191 | public function testPostNewPasswordOnOpenShaarli(): void | |
192 | { | |
193 | $this->container->conf = $this->createMock(ConfigManager::class); | |
194 | $this->container->conf->method('get')->with('security.open_shaarli')->willReturn(true); | |
195 | ||
196 | $request = $this->createMock(Request::class); | |
197 | $response = new Response(); | |
198 | ||
199 | $this->expectException(OpenShaarliPasswordException::class); | |
200 | ||
201 | $this->controller->change($request, $response); | |
202 | } | |
ef00f9d2 | 203 | } |