diff options
| author | VirtualTam <virtualtam@flibidi.net> | 2018-05-06 17:06:36 +0200 |
|---|---|---|
| committer | VirtualTam <virtualtam@flibidi.net> | 2018-06-02 16:46:06 +0200 |
| commit | c689e108639a4f6aa9e15928422e14db7cbe30ca (patch) | |
| tree | 4c118404cc33f2542c01787b638581ba02bbb8bb /tests/security | |
| parent | 51f0128cdba52099c40693379e72f094b42a6f80 (diff) | |
| download | Shaarli-c689e108639a4f6aa9e15928422e14db7cbe30ca.tar.gz Shaarli-c689e108639a4f6aa9e15928422e14db7cbe30ca.tar.zst Shaarli-c689e108639a4f6aa9e15928422e14db7cbe30ca.zip | |
Refactor LoginManager stay-signed-in token management
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
Diffstat (limited to 'tests/security')
| -rw-r--r-- | tests/security/LoginManagerTest.php | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/tests/security/LoginManagerTest.php b/tests/security/LoginManagerTest.php index b957abe3..633f1bb9 100644 --- a/tests/security/LoginManagerTest.php +++ b/tests/security/LoginManagerTest.php | |||
| @@ -18,6 +18,18 @@ class LoginManagerTest extends TestCase | |||
| 18 | protected $server = []; | 18 | protected $server = []; |
| 19 | protected $trustedProxy = '10.1.1.100'; | 19 | protected $trustedProxy = '10.1.1.100'; |
| 20 | 20 | ||
| 21 | /** @var string User login */ | ||
| 22 | protected $login = 'johndoe'; | ||
| 23 | |||
| 24 | /** @var string User password */ | ||
| 25 | protected $password = 'IC4nHazL0g1n?'; | ||
| 26 | |||
| 27 | /** @var string Hash of the salted user password */ | ||
| 28 | protected $passwordHash = ''; | ||
| 29 | |||
| 30 | /** @var string Salt used by hash functions */ | ||
| 31 | protected $salt = '669e24fa9c5a59a613f98e8e38327384504a4af2'; | ||
| 32 | |||
| 21 | /** | 33 | /** |
| 22 | * Prepare or reset test resources | 34 | * Prepare or reset test resources |
| 23 | */ | 35 | */ |
| @@ -27,7 +39,12 @@ class LoginManagerTest extends TestCase | |||
| 27 | unlink($this->banFile); | 39 | unlink($this->banFile); |
| 28 | } | 40 | } |
| 29 | 41 | ||
| 42 | $this->passwordHash = sha1($this->password . $this->login . $this->salt); | ||
| 43 | |||
| 30 | $this->configManager = new \FakeConfigManager([ | 44 | $this->configManager = new \FakeConfigManager([ |
| 45 | 'credentials.login' => $this->login, | ||
| 46 | 'credentials.hash' => $this->passwordHash, | ||
| 47 | 'credentials.salt' => $this->salt, | ||
| 31 | 'resource.ban_file' => $this->banFile, | 48 | 'resource.ban_file' => $this->banFile, |
| 32 | 'resource.log' => $this->logFile, | 49 | 'resource.log' => $this->logFile, |
| 33 | 'security.ban_after' => 4, | 50 | 'security.ban_after' => 4, |
| @@ -196,4 +213,18 @@ class LoginManagerTest extends TestCase | |||
| 196 | $this->globals['IPBANS']['BANS'][$this->ipAddr] = time() - 3600; | 213 | $this->globals['IPBANS']['BANS'][$this->ipAddr] = time() - 3600; |
| 197 | $this->assertTrue($this->loginManager->canLogin($this->server)); | 214 | $this->assertTrue($this->loginManager->canLogin($this->server)); |
| 198 | } | 215 | } |
| 216 | |||
| 217 | /** | ||
| 218 | * Generate a token depending on the user credentials and client IP | ||
| 219 | */ | ||
| 220 | public function testGenerateStaySignedInToken() | ||
| 221 | { | ||
| 222 | $ipAddress = '10.1.47.179'; | ||
| 223 | $this->loginManager->generateStaySignedInToken($ipAddress); | ||
| 224 | |||
| 225 | $this->assertEquals( | ||
| 226 | sha1($this->passwordHash . $ipAddress . $this->salt), | ||
| 227 | $this->loginManager->getStaySignedInToken() | ||
| 228 | ); | ||
| 229 | } | ||
| 199 | } | 230 | } |