3 files changed, 59 insertions, 21 deletions
diff --git a/app/config/config.yml b/app/config/config.yml
index b2699c83..4a2c02bf 100644
--- a/app/config/config.yml
+++ b/app/config/config.yml
@@ -173,11 +173,10 @@ fos_oauth_server:
        user_provider: fos_user.user_manager
 scheb_two_factor:
    trusted_computer:
        enabled: true
        cookie_name: wllbg_trusted_computer
-        cookie_lifetime: 5184000
+        cookie_lifetime: 2592000
    email:
        enabled: true
diff --git a/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php b/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php
new file mode 100644
index 00000000..3402b340
--- /dev/null
+++ b/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php
@@ -0,0 +1,58 @@
+<?php
+namespace Wallabag\CoreBundle\Tests\Controller;
+use Wallabag\CoreBundle\Tests\WallabagCoreTestCase;
+class SecurityControllerTest extends WallabagCoreTestCase
+{
+    public function testLoginWithout2Factor()
+    {
+        $this->logInAs('admin');
+        $client = $this->getClient();
+        $client->followRedirects();
+        $client->request('GET', '/config');
+        $this->assertContains('RSS', $client->getResponse()->getContent());
+    }
+    public function testLoginWith2Factor()
+    {
+        $client = $this->getClient();
+        $client->followRedirects();
+        $em = $client->getContainer()->get('doctrine.orm.entity_manager');
+        $user = $em
+            ->getRepository('WallabagUserBundle:User')
+            ->findOneByUsername('admin');
+        $user->setTwoFactorAuthentication(true);
+        $em->persist($user);
+        $em->flush();
+        $this->logInAs('admin');
+        $client->request('GET', '/config');
+        $this->assertContains('trusted computer', $client->getResponse()->getContent());
+        // restore user
+        $user = $em
+            ->getRepository('WallabagUserBundle:User')
+            ->findOneByUsername('admin');
+        $user->setTwoFactorAuthentication(false);
+        $em->persist($user);
+        $em->flush();
+    }
+    public function testTrustedComputer()
+    {
+        $client = $this->getClient();
+        $em = $client->getContainer()->get('doctrine.orm.entity_manager');
+        $user = $em
+            ->getRepository('WallabagUserBundle:User')
+            ->findOneByUsername('admin');
+        $date = new \DateTime();
+        $user->addTrustedComputer('ABCDEF', $date->add(new \DateInterval('P1M')));
+        $this->assertTrue($user->isTrustedComputer('ABCDEF'));
+        $this->assertFalse($user->isTrustedComputer('FEDCBA'));
+    }
+}
diff --git a/src/Wallabag/UserBundle/Resources/config/services.yml b/src/Wallabag/UserBundle/Resources/config/services.yml
index 9cdd247d..e69de29b 100644
--- a/src/Wallabag/UserBundle/Resources/config/services.yml
+++ b/src/Wallabag/UserBundle/Resources/config/services.yml
@@ -1,19 +0,0 @@
-parameters:
-    wallabag_user.twofactor.email.provider.class: Wallabag\UserBundle\Security\TwoFactor\Email\Helper
-    wallabag_user.twofactor.email.interactive_login_listener.class: Wallabag\UserBundle\Security\TwoFactor\Email\InteractiveLoginListener
-    wallabag_user.twofactor.email.request_listener.class: Wallabag\UserBundle\Security\TwoFactor\Email\RequestListener
-services:
-    wallabag_user.twofactor.email.provider:
-        class: %wallabag_user.twofactor.email.provider.class%
-        arguments: ['@doctrine.orm.entity_manager', '@mailer']
-    wallabag_user.twofactor.email.interactive_login_listener:
-        class: %wallabag_user.twofactor.email.interactive_login_listener.class%
-        tags:
-            - { name: kernel.event_listener, event: security.interactive_login, method: onSecurityInteractiveLogin }
-        arguments: ['@wallabag_user.twofactor.email.provider']
-    wallabag_user.twofactor.email.request_listener:
-        class: %wallabag_user.twofactor.email.request_listener.class%
-        tags:
-            - { name: kernel.event_listener, event: kernel.request, method: onCoreRequest, priority: -1 }
-        arguments: ['@wallabag_user.twofactor.email.provider', '@security.context', '@templating', '@router']

diff --git a/app/config/config.yml b/app/config/config.yml index b2699c83..4a2c02bf 100644 --- a/app/config/config.yml +++ b/app/config/config.yml
@@ -173,11 +173,10 @@ fos_oauth_server:
173	user_provider: fos_user.user_manager	173	user_provider: fos_user.user_manager
174		174
175	scheb_two_factor:	175	scheb_two_factor:
176
177	trusted_computer:	176	trusted_computer:
178	enabled: true	177	enabled: true
179	cookie_name: wllbg_trusted_computer	178	cookie_name: wllbg_trusted_computer
180	cookie_lifetime: 5184000	179	cookie_lifetime: 2592000
181		180
182	email:	181	email:
183	enabled: true	182	enabled: true


diff --git a/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php b/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php new file mode 100644 index 00000000..3402b340 --- /dev/null +++ b/src/Wallabag/CoreBundle/Tests/Controller/SecurityControllerTest.php
@@ -0,0 +1,58 @@
		1	<?php
		2
		3	namespace Wallabag\CoreBundle\Tests\Controller;
		4
		5	use Wallabag\CoreBundle\Tests\WallabagCoreTestCase;
		6
		7	class SecurityControllerTest extends WallabagCoreTestCase
		8	{
		9	public function testLoginWithout2Factor()
		10	{
		11	$this->logInAs('admin');
		12	$client = $this->getClient();
		13	$client->followRedirects();
		14
		15	$client->request('GET', '/config');
		16	$this->assertContains('RSS', $client->getResponse()->getContent());
		17	}
		18
		19	public function testLoginWith2Factor()
		20	{
		21	$client = $this->getClient();
		22	$client->followRedirects();
		23
		24	$em = $client->getContainer()->get('doctrine.orm.entity_manager');
		25	$user = $em
		26	->getRepository('WallabagUserBundle:User')
		27	->findOneByUsername('admin');
		28	$user->setTwoFactorAuthentication(true);
		29	$em->persist($user);
		30	$em->flush();
		31
		32	$this->logInAs('admin');
		33	$client->request('GET', '/config');
		34	$this->assertContains('trusted computer', $client->getResponse()->getContent());
		35
		36	// restore user
		37	$user = $em
		38	->getRepository('WallabagUserBundle:User')
		39	->findOneByUsername('admin');
		40	$user->setTwoFactorAuthentication(false);
		41	$em->persist($user);
		42	$em->flush();
		43	}
		44
		45	public function testTrustedComputer()
		46	{
		47	$client = $this->getClient();
		48	$em = $client->getContainer()->get('doctrine.orm.entity_manager');
		49	$user = $em
		50	->getRepository('WallabagUserBundle:User')
		51	->findOneByUsername('admin');
		52
		53	$date = new \DateTime();
		54	$user->addTrustedComputer('ABCDEF', $date->add(new \DateInterval('P1M')));
		55	$this->assertTrue($user->isTrustedComputer('ABCDEF'));
		56	$this->assertFalse($user->isTrustedComputer('FEDCBA'));
		57	}
		58	}


diff --git a/src/Wallabag/UserBundle/Resources/config/services.yml b/src/Wallabag/UserBundle/Resources/config/services.yml index 9cdd247d..e69de29b 100644 --- a/src/Wallabag/UserBundle/Resources/config/services.yml +++ b/src/Wallabag/UserBundle/Resources/config/services.yml
@@ -1,19 +0,0 @@
1	parameters:
2	wallabag_user.twofactor.email.provider.class: Wallabag\UserBundle\Security\TwoFactor\Email\Helper
3	wallabag_user.twofactor.email.interactive_login_listener.class: Wallabag\UserBundle\Security\TwoFactor\Email\InteractiveLoginListener
4	wallabag_user.twofactor.email.request_listener.class: Wallabag\UserBundle\Security\TwoFactor\Email\RequestListener
5
6	services:
7	wallabag_user.twofactor.email.provider:
8	class: %wallabag_user.twofactor.email.provider.class%
9	arguments: ['@doctrine.orm.entity_manager', '@mailer']
10	wallabag_user.twofactor.email.interactive_login_listener:
11	class: %wallabag_user.twofactor.email.interactive_login_listener.class%
12	tags:
13	- { name: kernel.event_listener, event: security.interactive_login, method: onSecurityInteractiveLogin }
14	arguments: ['@wallabag_user.twofactor.email.provider']
15	wallabag_user.twofactor.email.request_listener:
16	class: %wallabag_user.twofactor.email.request_listener.class%
17	tags:
18	- { name: kernel.event_listener, event: kernel.request, method: onCoreRequest, priority: -1 }
19	arguments: ['@wallabag_user.twofactor.email.provider', '@security.context', '@templating', '@router']