1 files changed, 39 insertions, 12 deletions
diff --git a/tests/security/LoginManagerTest.php b/tests/security/LoginManagerTest.php
index d302983d..f7609fc6 100644
--- a/tests/security/LoginManagerTest.php
+++ b/tests/security/LoginManagerTest.php
@@ -2,6 +2,8 @@
 namespace Shaarli\Security;
+use Psr\Log\LoggerInterface;
+use Shaarli\FakeConfigManager;
 use Shaarli\TestCase;
 /**
@@ -9,7 +11,7 @@ use Shaarli\TestCase;
 */
 class LoginManagerTest extends TestCase
 {
-    /** @var \FakeConfigManager Configuration Manager instance */
+    /** @var FakeConfigManager Configuration Manager instance */
    protected $configManager = null;
    /** @var LoginManager Login Manager instance */
@@ -60,6 +62,9 @@ class LoginManagerTest extends TestCase
    /** @var CookieManager */
    protected $cookieManager;
+    /** @var BanManager */
+    protected $banManager;
    /**
     * Prepare or reset test resources
     */
@@ -71,7 +76,7 @@ class LoginManagerTest extends TestCase
        $this->passwordHash = sha1($this->password . $this->login . $this->salt);
-        $this->configManager = new \FakeConfigManager([
+        $this->configManager = new FakeConfigManager([
            'credentials.login' => $this->login,
            'credentials.hash' => $this->passwordHash,
            'credentials.salt' => $this->salt,
@@ -91,18 +96,29 @@ class LoginManagerTest extends TestCase
            return $this->cookie[$key] ?? null;
        });
        $this->sessionManager = new SessionManager($this->session, $this->configManager, 'session_path');
-        $this->loginManager = new LoginManager($this->configManager, $this->sessionManager, $this->cookieManager);
+        $this->banManager = $this->createMock(BanManager::class);
+        $this->loginManager = new LoginManager(
+            $this->configManager,
+            $this->sessionManager,
+            $this->cookieManager,
+            $this->banManager,
+            $this->createMock(LoggerInterface::class)
+        );
        $this->server['REMOTE_ADDR'] = $this->ipAddr;
    }
    /**
     * Record a failed login attempt
     */
-    public function testHandleFailedLogin()
+    public function testHandleFailedLogin(): void
    {
+        $this->banManager->expects(static::exactly(2))->method('handleFailedAttempt');
+        $this->banManager->method('isBanned')->willReturn(true);
        $this->loginManager->handleFailedLogin($this->server);
        $this->loginManager->handleFailedLogin($this->server);
-        $this->assertFalse($this->loginManager->canLogin($this->server));
+        static::assertFalse($this->loginManager->canLogin($this->server));
    }
    /**
@@ -114,8 +130,13 @@ class LoginManagerTest extends TestCase
            'REMOTE_ADDR' => $this->trustedProxy,
            'HTTP_X_FORWARDED_FOR' => $this->ipAddr,
        ];
+        $this->banManager->expects(static::exactly(2))->method('handleFailedAttempt');
+        $this->banManager->method('isBanned')->willReturn(true);
        $this->loginManager->handleFailedLogin($server);
        $this->loginManager->handleFailedLogin($server);
        $this->assertFalse($this->loginManager->canLogin($server));
    }
@@ -196,10 +217,16 @@ class LoginManagerTest extends TestCase
     */
    public function testCheckLoginStateNotConfigured()
    {
-        $configManager = new \FakeConfigManager([
+        $configManager = new FakeConfigManager([
            'resource.ban_file' => $this->banFile,
        ]);
-        $loginManager = new LoginManager($configManager, null, $this->cookieManager);
+        $loginManager = new LoginManager(
+            $configManager,
+            $this->sessionManager,
+            $this->cookieManager,
+            $this->banManager,
+            $this->createMock(LoggerInterface::class)
+        );
        $loginManager->checkLoginState('');
        $this->assertFalse($loginManager->isLoggedIn());
@@ -270,7 +297,7 @@ class LoginManagerTest extends TestCase
    public function testCheckCredentialsWrongLogin()
    {
        $this->assertFalse(
-            $this->loginManager->checkCredentials('', '', 'b4dl0g1n', $this->password)
+            $this->loginManager->checkCredentials('', 'b4dl0g1n', $this->password)
        );
    }
@@ -280,7 +307,7 @@ class LoginManagerTest extends TestCase
    public function testCheckCredentialsWrongPassword()
    {
        $this->assertFalse(
-            $this->loginManager->checkCredentials('', '', $this->login, 'b4dp455wd')
+            $this->loginManager->checkCredentials('', $this->login, 'b4dp455wd')
        );
    }
@@ -290,7 +317,7 @@ class LoginManagerTest extends TestCase
    public function testCheckCredentialsWrongLoginAndPassword()
    {
        $this->assertFalse(
-            $this->loginManager->checkCredentials('', '', 'b4dl0g1n', 'b4dp455wd')
+            $this->loginManager->checkCredentials('', 'b4dl0g1n', 'b4dp455wd')
        );
    }
@@ -300,7 +327,7 @@ class LoginManagerTest extends TestCase
    public function testCheckCredentialsGoodLoginAndPassword()
    {
        $this->assertTrue(
-            $this->loginManager->checkCredentials('', '', $this->login, $this->password)
+            $this->loginManager->checkCredentials('', $this->login, $this->password)
        );
    }
@@ -311,7 +338,7 @@ class LoginManagerTest extends TestCase
    {
        $this->configManager->set('ldap.host', 'dummy');
        $this->assertFalse(
-            $this->loginManager->checkCredentials('', '', $this->login, $this->password)
+            $this->loginManager->checkCredentials('', $this->login, $this->password)
        );
    }

diff --git a/tests/security/LoginManagerTest.php b/tests/security/LoginManagerTest.php index d302983d..f7609fc6 100644 --- a/tests/security/LoginManagerTest.php +++ b/tests/security/LoginManagerTest.php
@@ -2,6 +2,8 @@
2		2
3	namespace Shaarli\Security;	3	namespace Shaarli\Security;
4		4
		5	use Psr\Log\LoggerInterface;
		6	use Shaarli\FakeConfigManager;
5	use Shaarli\TestCase;	7	use Shaarli\TestCase;
6		8
7	/**	9	/**
@@ -9,7 +11,7 @@ use Shaarli\TestCase;
9	*/	11	*/
10	class LoginManagerTest extends TestCase	12	class LoginManagerTest extends TestCase
11	{	13	{
12	/** @var \FakeConfigManager Configuration Manager instance */	14	/** @var FakeConfigManager Configuration Manager instance */
13	protected $configManager = null;	15	protected $configManager = null;
14		16
15	/** @var LoginManager Login Manager instance */	17	/** @var LoginManager Login Manager instance */
@@ -60,6 +62,9 @@ class LoginManagerTest extends TestCase
60	/** @var CookieManager */	62	/** @var CookieManager */
61	protected $cookieManager;	63	protected $cookieManager;
62		64
		65	/** @var BanManager */
		66	protected $banManager;
		67
63	/**	68	/**
64	* Prepare or reset test resources	69	* Prepare or reset test resources
65	*/	70	*/
@@ -71,7 +76,7 @@ class LoginManagerTest extends TestCase
71		76
72	$this->passwordHash = sha1($this->password . $this->login . $this->salt);	77	$this->passwordHash = sha1($this->password . $this->login . $this->salt);
73		78
74	$this->configManager = new \FakeConfigManager([	79	$this->configManager = new FakeConfigManager([
75	'credentials.login' => $this->login,	80	'credentials.login' => $this->login,
76	'credentials.hash' => $this->passwordHash,	81	'credentials.hash' => $this->passwordHash,
77	'credentials.salt' => $this->salt,	82	'credentials.salt' => $this->salt,
@@ -91,18 +96,29 @@ class LoginManagerTest extends TestCase
91	return $this->cookie[$key] ?? null;	96	return $this->cookie[$key] ?? null;
92	});	97	});
93	$this->sessionManager = new SessionManager($this->session, $this->configManager, 'session_path');	98	$this->sessionManager = new SessionManager($this->session, $this->configManager, 'session_path');
94	$this->loginManager = new LoginManager($this->configManager, $this->sessionManager, $this->cookieManager);	99	$this->banManager = $this->createMock(BanManager::class);
		100	$this->loginManager = new LoginManager(
		101	$this->configManager,
		102	$this->sessionManager,
		103	$this->cookieManager,
		104	$this->banManager,
		105	$this->createMock(LoggerInterface::class)
		106	);
95	$this->server['REMOTE_ADDR'] = $this->ipAddr;	107	$this->server['REMOTE_ADDR'] = $this->ipAddr;
96	}	108	}
97		109
98	/**	110	/**
99	* Record a failed login attempt	111	* Record a failed login attempt
100	*/	112	*/
101	public function testHandleFailedLogin()	113	public function testHandleFailedLogin(): void
102	{	114	{
		115	$this->banManager->expects(static::exactly(2))->method('handleFailedAttempt');
		116	$this->banManager->method('isBanned')->willReturn(true);
		117
103	$this->loginManager->handleFailedLogin($this->server);	118	$this->loginManager->handleFailedLogin($this->server);
104	$this->loginManager->handleFailedLogin($this->server);	119	$this->loginManager->handleFailedLogin($this->server);
105	$this->assertFalse($this->loginManager->canLogin($this->server));	120
		121	static::assertFalse($this->loginManager->canLogin($this->server));
106	}	122	}
107		123
108	/**	124	/**
@@ -114,8 +130,13 @@ class LoginManagerTest extends TestCase
114	'REMOTE_ADDR' => $this->trustedProxy,	130	'REMOTE_ADDR' => $this->trustedProxy,
115	'HTTP_X_FORWARDED_FOR' => $this->ipAddr,	131	'HTTP_X_FORWARDED_FOR' => $this->ipAddr,
116	];	132	];
		133
		134	$this->banManager->expects(static::exactly(2))->method('handleFailedAttempt');
		135	$this->banManager->method('isBanned')->willReturn(true);
		136
117	$this->loginManager->handleFailedLogin($server);	137	$this->loginManager->handleFailedLogin($server);
118	$this->loginManager->handleFailedLogin($server);	138	$this->loginManager->handleFailedLogin($server);
		139
119	$this->assertFalse($this->loginManager->canLogin($server));	140	$this->assertFalse($this->loginManager->canLogin($server));
120	}	141	}
121		142
@@ -196,10 +217,16 @@ class LoginManagerTest extends TestCase
196	*/	217	*/
197	public function testCheckLoginStateNotConfigured()	218	public function testCheckLoginStateNotConfigured()
198	{	219	{
199	$configManager = new \FakeConfigManager([	220	$configManager = new FakeConfigManager([
200	'resource.ban_file' => $this->banFile,	221	'resource.ban_file' => $this->banFile,
201	]);	222	]);
202	$loginManager = new LoginManager($configManager, null, $this->cookieManager);	223	$loginManager = new LoginManager(
		224	$configManager,
		225	$this->sessionManager,
		226	$this->cookieManager,
		227	$this->banManager,
		228	$this->createMock(LoggerInterface::class)
		229	);
203	$loginManager->checkLoginState('');	230	$loginManager->checkLoginState('');
204		231
205	$this->assertFalse($loginManager->isLoggedIn());	232	$this->assertFalse($loginManager->isLoggedIn());
@@ -270,7 +297,7 @@ class LoginManagerTest extends TestCase
270	public function testCheckCredentialsWrongLogin()	297	public function testCheckCredentialsWrongLogin()
271	{	298	{
272	$this->assertFalse(	299	$this->assertFalse(
273	$this->loginManager->checkCredentials('', '', 'b4dl0g1n', $this->password)	300	$this->loginManager->checkCredentials('', 'b4dl0g1n', $this->password)
274	);	301	);
275	}	302	}
276		303
@@ -280,7 +307,7 @@ class LoginManagerTest extends TestCase
280	public function testCheckCredentialsWrongPassword()	307	public function testCheckCredentialsWrongPassword()
281	{	308	{
282	$this->assertFalse(	309	$this->assertFalse(
283	$this->loginManager->checkCredentials('', '', $this->login, 'b4dp455wd')	310	$this->loginManager->checkCredentials('', $this->login, 'b4dp455wd')
284	);	311	);
285	}	312	}
286		313
@@ -290,7 +317,7 @@ class LoginManagerTest extends TestCase
290	public function testCheckCredentialsWrongLoginAndPassword()	317	public function testCheckCredentialsWrongLoginAndPassword()
291	{	318	{
292	$this->assertFalse(	319	$this->assertFalse(
293	$this->loginManager->checkCredentials('', '', 'b4dl0g1n', 'b4dp455wd')	320	$this->loginManager->checkCredentials('', 'b4dl0g1n', 'b4dp455wd')
294	);	321	);
295	}	322	}
296		323
@@ -300,7 +327,7 @@ class LoginManagerTest extends TestCase
300	public function testCheckCredentialsGoodLoginAndPassword()	327	public function testCheckCredentialsGoodLoginAndPassword()
301	{	328	{
302	$this->assertTrue(	329	$this->assertTrue(
303	$this->loginManager->checkCredentials('', '', $this->login, $this->password)	330	$this->loginManager->checkCredentials('', $this->login, $this->password)
304	);	331	);
305	}	332	}
306		333
@@ -311,7 +338,7 @@ class LoginManagerTest extends TestCase
311	{	338	{
312	$this->configManager->set('ldap.host', 'dummy');	339	$this->configManager->set('ldap.host', 'dummy');
313	$this->assertFalse(	340	$this->assertFalse(
314	$this->loginManager->checkCredentials('', '', $this->login, $this->password)	341	$this->loginManager->checkCredentials('', $this->login, $this->password)
315	);	342	);
316	}	343	}
317		344