2014-08-27 14:28:51 +00:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* Copyright (c) 2014 Lukas Reschke <lukas@owncloud.com>
|
|
|
|
* This file is licensed under the Affero General Public License version 3 or
|
|
|
|
* later.
|
|
|
|
* See the COPYING-README file.
|
|
|
|
*/
|
|
|
|
|
|
|
|
use \OC\Security\CertificateManager;
|
|
|
|
|
2015-11-03 00:52:41 +00:00
|
|
|
/**
|
|
|
|
* Class CertificateManagerTest
|
|
|
|
*
|
|
|
|
* @group DB
|
|
|
|
*/
|
2014-11-07 08:46:37 +00:00
|
|
|
class CertificateManagerTest extends \Test\TestCase {
|
2015-12-22 16:42:28 +00:00
|
|
|
use \Test\Traits\UserTrait;
|
|
|
|
use \Test\Traits\MountProviderTrait;
|
2014-08-27 14:28:51 +00:00
|
|
|
|
|
|
|
/** @var CertificateManager */
|
|
|
|
private $certificateManager;
|
|
|
|
/** @var String */
|
|
|
|
private $username;
|
|
|
|
|
2014-11-10 22:30:38 +00:00
|
|
|
protected function setUp() {
|
|
|
|
parent::setUp();
|
|
|
|
|
2014-11-07 08:46:37 +00:00
|
|
|
$this->username = $this->getUniqueID('', 20);
|
2015-12-22 16:42:28 +00:00
|
|
|
$this->createUser($this->username, '');
|
|
|
|
|
|
|
|
$storage = new \OC\Files\Storage\Temporary();
|
|
|
|
$this->registerMount($this->username, $storage, '/' . $this->username . '/');
|
2014-08-27 14:28:51 +00:00
|
|
|
|
|
|
|
\OC_Util::tearDownFS();
|
|
|
|
\OC_User::setUserId('');
|
|
|
|
\OC\Files\Filesystem::tearDown();
|
|
|
|
\OC_Util::setupFS($this->username);
|
|
|
|
|
2015-08-06 14:51:31 +00:00
|
|
|
$config = $this->getMock('OCP\IConfig');
|
|
|
|
$config->expects($this->any())->method('getSystemValue')
|
|
|
|
->with('installed', false)->willReturn(true);
|
|
|
|
|
|
|
|
$this->certificateManager = new CertificateManager($this->username, new \OC\Files\View(), $config);
|
2014-08-27 14:28:51 +00:00
|
|
|
}
|
|
|
|
|
2014-11-10 22:30:38 +00:00
|
|
|
protected function tearDown() {
|
2015-12-17 14:59:23 +00:00
|
|
|
$user = \OC::$server->getUserManager()->get($this->username);
|
2015-12-22 16:42:28 +00:00
|
|
|
if ($user !== null) {
|
|
|
|
$user->delete();
|
|
|
|
}
|
2014-11-10 22:30:38 +00:00
|
|
|
parent::tearDown();
|
2014-08-27 14:28:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
protected function assertEqualsArrays($expected, $actual) {
|
|
|
|
sort($expected);
|
|
|
|
sort($actual);
|
|
|
|
|
|
|
|
$this->assertEquals($expected, $actual);
|
|
|
|
}
|
|
|
|
|
|
|
|
function testListCertificates() {
|
|
|
|
// Test empty certificate bundle
|
|
|
|
$this->assertSame(array(), $this->certificateManager->listCertificates());
|
|
|
|
|
|
|
|
// Add some certificates
|
2015-12-22 16:42:28 +00:00
|
|
|
$this->certificateManager->addCertificate(file_get_contents(__DIR__ . '/../../data/certificates/goodCertificate.crt'), 'GoodCertificate');
|
2014-08-27 14:28:51 +00:00
|
|
|
$certificateStore = array();
|
2015-12-22 16:42:28 +00:00
|
|
|
$certificateStore[] = new \OC\Security\Certificate(file_get_contents(__DIR__ . '/../../data/certificates/goodCertificate.crt'), 'GoodCertificate');
|
2014-08-27 14:28:51 +00:00
|
|
|
$this->assertEqualsArrays($certificateStore, $this->certificateManager->listCertificates());
|
|
|
|
|
|
|
|
// Add another certificates
|
2015-12-22 16:42:28 +00:00
|
|
|
$this->certificateManager->addCertificate(file_get_contents(__DIR__ . '/../../data/certificates/expiredCertificate.crt'), 'ExpiredCertificate');
|
|
|
|
$certificateStore[] = new \OC\Security\Certificate(file_get_contents(__DIR__ . '/../../data/certificates/expiredCertificate.crt'), 'ExpiredCertificate');
|
2014-08-27 14:28:51 +00:00
|
|
|
$this->assertEqualsArrays($certificateStore, $this->certificateManager->listCertificates());
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @expectedException \Exception
|
|
|
|
* @expectedExceptionMessage Certificate could not get parsed.
|
|
|
|
*/
|
|
|
|
function testAddInvalidCertificate() {
|
|
|
|
$this->certificateManager->addCertificate('InvalidCertificate', 'invalidCertificate');
|
|
|
|
}
|
|
|
|
|
2015-04-16 08:48:25 +00:00
|
|
|
/**
|
|
|
|
* @return array
|
|
|
|
*/
|
|
|
|
public function dangerousFileProvider() {
|
|
|
|
return [
|
|
|
|
['.htaccess'],
|
|
|
|
['../../foo.txt'],
|
|
|
|
['..\..\foo.txt'],
|
|
|
|
];
|
|
|
|
}
|
|
|
|
|
2015-04-15 14:20:05 +00:00
|
|
|
/**
|
|
|
|
* @expectedException \Exception
|
|
|
|
* @expectedExceptionMessage Filename is not valid
|
2015-04-16 08:48:25 +00:00
|
|
|
* @dataProvider dangerousFileProvider
|
|
|
|
* @param string $filename
|
2015-04-15 14:20:05 +00:00
|
|
|
*/
|
2015-04-16 08:48:25 +00:00
|
|
|
function testAddDangerousFile($filename) {
|
2015-12-22 16:42:28 +00:00
|
|
|
$this->certificateManager->addCertificate(file_get_contents(__DIR__ . '/../../data/certificates/expiredCertificate.crt'), $filename);
|
2014-08-27 14:28:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
function testRemoveDangerousFile() {
|
|
|
|
$this->assertFalse($this->certificateManager->removeCertificate('../../foo.txt'));
|
|
|
|
}
|
|
|
|
|
|
|
|
function testRemoveExistingFile() {
|
2015-12-22 16:42:28 +00:00
|
|
|
$this->certificateManager->addCertificate(file_get_contents(__DIR__ . '/../../data/certificates/goodCertificate.crt'), 'GoodCertificate');
|
2014-08-27 14:28:51 +00:00
|
|
|
$this->assertTrue($this->certificateManager->removeCertificate('GoodCertificate'));
|
|
|
|
}
|
|
|
|
|
|
|
|
function testGetCertificateBundle() {
|
2015-01-20 16:00:29 +00:00
|
|
|
$this->assertSame('/' . $this->username . '/files_external/rootcerts.crt', $this->certificateManager->getCertificateBundle());
|
2014-08-27 14:28:51 +00:00
|
|
|
}
|
|
|
|
|
2015-01-20 19:34:34 +00:00
|
|
|
}
|