2016-04-01 15:35:37 +00:00
|
|
|
<?php
|
2016-05-26 17:56:05 +00:00
|
|
|
/**
|
2016-07-21 14:49:16 +00:00
|
|
|
* @copyright Copyright (c) 2016, ownCloud, Inc.
|
|
|
|
*
|
|
|
|
* @author Joas Schilling <coding@schilljs.com>
|
|
|
|
* @author Lukas Reschke <lukas@statuscode.ch>
|
|
|
|
* @author Roeland Jago Douma <roeland@famdouma.nl>
|
2016-05-26 17:56:05 +00:00
|
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
|
|
*
|
|
|
|
* @license AGPL-3.0
|
|
|
|
*
|
|
|
|
* This code is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
|
|
* as published by the Free Software Foundation.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
|
|
*
|
|
|
|
*/
|
2016-05-25 14:04:15 +00:00
|
|
|
namespace OCA\DAV\Tests\unit\Connector;
|
2016-04-01 15:35:37 +00:00
|
|
|
|
|
|
|
use OCP\IRequest;
|
|
|
|
use OCP\ISession;
|
|
|
|
use OCP\Share\Exceptions\ShareNotFound;
|
|
|
|
use OCP\Share\IManager;
|
|
|
|
|
2016-04-21 11:36:52 +00:00
|
|
|
/**
|
2016-05-25 14:04:15 +00:00
|
|
|
* Class PublicAuthTest
|
2016-04-21 11:36:52 +00:00
|
|
|
*
|
|
|
|
* @group DB
|
2017-05-04 09:20:20 +00:00
|
|
|
*
|
2016-05-25 14:04:15 +00:00
|
|
|
* @package OCA\DAV\Tests\unit\Connector
|
2016-04-21 11:36:52 +00:00
|
|
|
*/
|
2016-05-25 14:04:15 +00:00
|
|
|
class PublicAuthTest extends \Test\TestCase {
|
2016-04-01 15:35:37 +00:00
|
|
|
|
|
|
|
/** @var ISession|\PHPUnit_Framework_MockObject_MockObject */
|
|
|
|
private $session;
|
|
|
|
/** @var IRequest|\PHPUnit_Framework_MockObject_MockObject */
|
|
|
|
private $request;
|
|
|
|
/** @var IManager|\PHPUnit_Framework_MockObject_MockObject */
|
|
|
|
private $shareManager;
|
|
|
|
/** @var \OCA\DAV\Connector\PublicAuth */
|
|
|
|
private $auth;
|
|
|
|
|
|
|
|
/** @var string */
|
|
|
|
private $oldUser;
|
|
|
|
|
|
|
|
protected function setUp() {
|
|
|
|
parent::setUp();
|
|
|
|
|
2016-07-15 07:52:46 +00:00
|
|
|
$this->session = $this->getMockBuilder('\OCP\ISession')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
|
|
|
$this->request = $this->getMockBuilder('\OCP\IRequest')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
|
|
|
$this->shareManager = $this->getMockBuilder('\OCP\Share\IManager')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
|
|
|
|
$this->auth = new \OCA\DAV\Connector\PublicAuth(
|
|
|
|
$this->request,
|
|
|
|
$this->shareManager,
|
|
|
|
$this->session
|
|
|
|
);
|
|
|
|
|
|
|
|
// Store current user
|
|
|
|
$this->oldUser = \OC_User::getUser();
|
|
|
|
}
|
|
|
|
|
|
|
|
protected function tearDown() {
|
|
|
|
\OC_User::setIncognitoMode(false);
|
|
|
|
|
|
|
|
// Set old user
|
|
|
|
\OC_User::setUserId($this->oldUser);
|
|
|
|
\OC_Util::setupFS($this->oldUser);
|
|
|
|
|
|
|
|
parent::tearDown();
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testNoShare() {
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willThrowException(new ShareNotFound());
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertFalse($result);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testShareNoPassword() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn(null);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertTrue($result);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testSharePasswordFancyShareType() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(42);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertFalse($result);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public function testSharePasswordRemote() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_REMOTE);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertTrue($result);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testSharePasswordLinkValidPassword() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_LINK);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('checkPassword')->with(
|
|
|
|
$this->equalTo($share),
|
|
|
|
$this->equalTo('password')
|
|
|
|
)->willReturn(true);
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertTrue($result);
|
|
|
|
}
|
|
|
|
|
2017-05-04 09:20:20 +00:00
|
|
|
public function testSharePasswordMailValidPassword() {
|
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_EMAIL);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('checkPassword')->with(
|
|
|
|
$this->equalTo($share),
|
|
|
|
$this->equalTo('password')
|
|
|
|
)->willReturn(true);
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertTrue($result);
|
|
|
|
}
|
|
|
|
|
2016-04-01 15:35:37 +00:00
|
|
|
public function testSharePasswordLinkValidSession() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_LINK);
|
|
|
|
$share->method('getId')->willReturn('42');
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$this->shareManager->method('checkPassword')
|
|
|
|
->with(
|
|
|
|
$this->equalTo($share),
|
|
|
|
$this->equalTo('password')
|
|
|
|
)->willReturn(false);
|
|
|
|
|
|
|
|
$this->session->method('exists')->with('public_link_authenticated')->willReturn(true);
|
|
|
|
$this->session->method('get')->with('public_link_authenticated')->willReturn('42');
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertTrue($result);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testSharePasswordLinkInvalidSession() {
|
2016-07-15 07:52:46 +00:00
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2016-04-01 15:35:37 +00:00
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_LINK);
|
|
|
|
$share->method('getId')->willReturn('42');
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$this->shareManager->method('checkPassword')
|
|
|
|
->with(
|
|
|
|
$this->equalTo($share),
|
|
|
|
$this->equalTo('password')
|
|
|
|
)->willReturn(false);
|
|
|
|
|
|
|
|
$this->session->method('exists')->with('public_link_authenticated')->willReturn(true);
|
|
|
|
$this->session->method('get')->with('public_link_authenticated')->willReturn('43');
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertFalse($result);
|
|
|
|
}
|
2017-05-04 09:20:20 +00:00
|
|
|
|
|
|
|
|
|
|
|
public function testSharePasswordMailInvalidSession() {
|
|
|
|
$share = $this->getMockBuilder('OCP\Share\IShare')
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
|
|
|
$share->method('getPassword')->willReturn('password');
|
|
|
|
$share->method('getShareType')->willReturn(\OCP\Share::SHARE_TYPE_EMAIL);
|
|
|
|
$share->method('getId')->willReturn('42');
|
|
|
|
|
|
|
|
$this->shareManager->expects($this->once())
|
|
|
|
->method('getShareByToken')
|
|
|
|
->willReturn($share);
|
|
|
|
|
|
|
|
$this->shareManager->method('checkPassword')
|
|
|
|
->with(
|
|
|
|
$this->equalTo($share),
|
|
|
|
$this->equalTo('password')
|
|
|
|
)->willReturn(false);
|
|
|
|
|
|
|
|
$this->session->method('exists')->with('public_link_authenticated')->willReturn(true);
|
|
|
|
$this->session->method('get')->with('public_link_authenticated')->willReturn('43');
|
|
|
|
|
|
|
|
$result = $this->invokePrivate($this->auth, 'validateUserPass', ['username', 'password']);
|
|
|
|
|
|
|
|
$this->assertFalse($result);
|
|
|
|
}
|
|
|
|
|
2016-04-01 15:35:37 +00:00
|
|
|
}
|