2015-10-14 17:10:12 +02:00
|
|
|
<?php
|
|
|
|
|
2024-02-19 01:30:12 +01:00
|
|
|
namespace Tests\Wallabag\Controller;
|
2015-10-14 17:10:12 +02:00
|
|
|
|
2022-08-28 02:01:46 +02:00
|
|
|
use Doctrine\ORM\EntityManagerInterface;
|
2024-02-24 20:24:51 +01:00
|
|
|
use Tests\Wallabag\WallabagTestCase;
|
2024-02-19 01:30:12 +01:00
|
|
|
use Wallabag\Entity\User;
|
2015-10-14 17:10:12 +02:00
|
|
|
|
2024-02-24 20:24:51 +01:00
|
|
|
class SecurityControllerTest extends WallabagTestCase
|
2015-10-14 17:10:12 +02:00
|
|
|
{
|
2018-03-28 21:56:55 +02:00
|
|
|
public function testLoginWithEmail()
|
|
|
|
{
|
|
|
|
$this->logInAsUsingHttp('bigboss@wallabag.org');
|
2022-11-23 17:09:32 +01:00
|
|
|
$client = $this->getTestClient();
|
2018-03-28 21:56:55 +02:00
|
|
|
$client->followRedirects();
|
|
|
|
|
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 13:37:50 +02:00
|
|
|
$this->assertStringContainsString('config.form_feed.description', $crawler->filter('body')->extract(['_text'])[0]);
|
2018-03-28 21:56:55 +02:00
|
|
|
}
|
|
|
|
|
2015-10-14 17:10:12 +02:00
|
|
|
public function testLoginWithout2Factor()
|
|
|
|
{
|
|
|
|
$this->logInAs('admin');
|
2022-11-23 17:09:32 +01:00
|
|
|
$client = $this->getTestClient();
|
2015-10-14 17:10:12 +02:00
|
|
|
$client->followRedirects();
|
|
|
|
|
2016-03-09 08:59:08 +01:00
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 13:37:50 +02:00
|
|
|
$this->assertStringContainsString('config.form_feed.description', $crawler->filter('body')->extract(['_text'])[0]);
|
2015-10-14 17:10:12 +02:00
|
|
|
}
|
|
|
|
|
2018-12-02 12:43:05 +01:00
|
|
|
public function testLoginWith2FactorEmail()
|
2015-10-14 17:10:12 +02:00
|
|
|
{
|
2022-11-23 17:09:32 +01:00
|
|
|
$client = $this->getTestClient();
|
2015-10-14 17:10:12 +02:00
|
|
|
|
2016-03-09 08:59:08 +01:00
|
|
|
$client->followRedirects();
|
2015-10-15 13:17:21 +02:00
|
|
|
|
2022-08-28 02:01:46 +02:00
|
|
|
$em = $client->getContainer()->get(EntityManagerInterface::class);
|
2016-03-09 08:59:08 +01:00
|
|
|
$user = $em
|
2022-08-25 21:37:10 +02:00
|
|
|
->getRepository(User::class)
|
2016-03-09 08:59:08 +01:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 12:43:05 +01:00
|
|
|
$user->setEmailTwoFactor(true);
|
2016-03-09 08:59:08 +01:00
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-15 13:17:21 +02:00
|
|
|
|
2016-06-24 11:55:45 +02:00
|
|
|
$this->logInAsUsingHttp('admin');
|
2016-03-09 08:59:08 +01:00
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 13:37:50 +02:00
|
|
|
$this->assertStringContainsString('trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
2016-03-09 08:59:08 +01:00
|
|
|
|
|
|
|
// restore user
|
|
|
|
$user = $em
|
2022-08-25 21:37:10 +02:00
|
|
|
->getRepository(User::class)
|
2016-03-09 08:59:08 +01:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 12:43:05 +01:00
|
|
|
$user->setEmailTwoFactor(false);
|
2016-03-09 08:59:08 +01:00
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-14 17:10:12 +02:00
|
|
|
}
|
|
|
|
|
2018-12-02 12:43:05 +01:00
|
|
|
public function testLoginWith2FactorGoogle()
|
2015-10-14 17:10:12 +02:00
|
|
|
{
|
2022-11-23 17:09:32 +01:00
|
|
|
$client = $this->getTestClient();
|
2015-10-15 13:17:21 +02:00
|
|
|
|
2018-12-02 12:43:05 +01:00
|
|
|
$client->followRedirects();
|
|
|
|
|
2022-08-28 02:01:46 +02:00
|
|
|
$em = $client->getContainer()->get(EntityManagerInterface::class);
|
2016-03-09 08:59:08 +01:00
|
|
|
$user = $em
|
2022-08-25 21:37:10 +02:00
|
|
|
->getRepository(User::class)
|
2016-03-09 08:59:08 +01:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 12:43:05 +01:00
|
|
|
$user->setGoogleAuthenticatorSecret('26LDIHYGHNELOQEM');
|
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
|
|
|
|
|
|
|
$this->logInAsUsingHttp('admin');
|
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 13:37:50 +02:00
|
|
|
$this->assertStringContainsString('trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
2016-03-09 08:59:08 +01:00
|
|
|
|
2018-12-02 12:43:05 +01:00
|
|
|
// restore user
|
|
|
|
$user = $em
|
2022-08-25 21:37:10 +02:00
|
|
|
->getRepository(User::class)
|
2018-12-02 12:43:05 +01:00
|
|
|
->findOneByUsername('admin');
|
|
|
|
$user->setGoogleAuthenticatorSecret(null);
|
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-14 17:10:12 +02:00
|
|
|
}
|
2016-08-24 10:28:43 +02:00
|
|
|
|
|
|
|
public function testEnabledRegistration()
|
|
|
|
{
|
2022-11-23 17:09:32 +01:00
|
|
|
$client = $this->getTestClient();
|
2016-08-24 10:28:43 +02:00
|
|
|
|
|
|
|
if (!$client->getContainer()->getParameter('fosuser_registration')) {
|
|
|
|
$this->markTestSkipped('fosuser_registration is not enabled.');
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
$client->followRedirects();
|
2018-03-28 21:56:55 +02:00
|
|
|
$client->request('GET', '/register');
|
2020-06-15 13:37:50 +02:00
|
|
|
$this->assertStringContainsString('registration.submit', $client->getResponse()->getContent());
|
2016-08-24 10:28:43 +02:00
|
|
|
}
|
2015-10-14 17:10:12 +02:00
|
|
|
}
|