2015-10-14 15:10:12 +00:00
|
|
|
<?php
|
|
|
|
|
2016-06-01 19:27:35 +00:00
|
|
|
namespace Tests\Wallabag\CoreBundle\Controller;
|
2015-10-14 15:10:12 +00:00
|
|
|
|
2022-08-28 00:01:46 +00:00
|
|
|
use Doctrine\ORM\EntityManagerInterface;
|
2016-06-01 19:27:35 +00:00
|
|
|
use Tests\Wallabag\CoreBundle\WallabagCoreTestCase;
|
2022-08-25 19:37:10 +00:00
|
|
|
use Wallabag\UserBundle\Entity\User;
|
2015-10-14 15:10:12 +00:00
|
|
|
|
|
|
|
class SecurityControllerTest extends WallabagCoreTestCase
|
|
|
|
{
|
2018-03-28 19:56:55 +00:00
|
|
|
public function testLoginWithEmail()
|
|
|
|
{
|
|
|
|
$this->logInAsUsingHttp('bigboss@wallabag.org');
|
|
|
|
$client = $this->getClient();
|
|
|
|
$client->followRedirects();
|
|
|
|
|
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 11:37:50 +00:00
|
|
|
$this->assertStringContainsString('config.form_feed.description', $crawler->filter('body')->extract(['_text'])[0]);
|
2018-03-28 19:56:55 +00:00
|
|
|
}
|
|
|
|
|
2015-10-14 15:10:12 +00:00
|
|
|
public function testLoginWithout2Factor()
|
|
|
|
{
|
|
|
|
$this->logInAs('admin');
|
|
|
|
$client = $this->getClient();
|
|
|
|
$client->followRedirects();
|
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 11:37:50 +00:00
|
|
|
$this->assertStringContainsString('config.form_feed.description', $crawler->filter('body')->extract(['_text'])[0]);
|
2015-10-14 15:10:12 +00:00
|
|
|
}
|
|
|
|
|
2018-12-02 11:43:05 +00:00
|
|
|
public function testLoginWith2FactorEmail()
|
2015-10-14 15:10:12 +00:00
|
|
|
{
|
|
|
|
$client = $this->getClient();
|
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
if (!$client->getContainer()->getParameter('twofactor_auth')) {
|
|
|
|
$this->markTestSkipped('twofactor_auth is not enabled.');
|
2016-03-11 13:55:02 +00:00
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
return;
|
|
|
|
}
|
2015-10-14 15:10:12 +00:00
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
$client->followRedirects();
|
2015-10-15 11:17:21 +00:00
|
|
|
|
2022-08-28 00:01:46 +00:00
|
|
|
$em = $client->getContainer()->get(EntityManagerInterface::class);
|
2016-03-09 07:59:08 +00:00
|
|
|
$user = $em
|
2022-08-25 19:37:10 +00:00
|
|
|
->getRepository(User::class)
|
2016-03-09 07:59:08 +00:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 11:43:05 +00:00
|
|
|
$user->setEmailTwoFactor(true);
|
2016-03-09 07:59:08 +00:00
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-15 11:17:21 +00:00
|
|
|
|
2016-06-24 09:55:45 +00:00
|
|
|
$this->logInAsUsingHttp('admin');
|
2016-03-09 07:59:08 +00:00
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 11:37:50 +00:00
|
|
|
$this->assertStringContainsString('trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
2016-03-09 07:59:08 +00:00
|
|
|
|
|
|
|
// restore user
|
|
|
|
$user = $em
|
2022-08-25 19:37:10 +00:00
|
|
|
->getRepository(User::class)
|
2016-03-09 07:59:08 +00:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 11:43:05 +00:00
|
|
|
$user->setEmailTwoFactor(false);
|
2016-03-09 07:59:08 +00:00
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-14 15:10:12 +00:00
|
|
|
}
|
|
|
|
|
2018-12-02 11:43:05 +00:00
|
|
|
public function testLoginWith2FactorGoogle()
|
2015-10-14 15:10:12 +00:00
|
|
|
{
|
|
|
|
$client = $this->getClient();
|
2015-10-15 11:17:21 +00:00
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
if (!$client->getContainer()->getParameter('twofactor_auth')) {
|
|
|
|
$this->markTestSkipped('twofactor_auth is not enabled.');
|
2016-03-11 13:55:02 +00:00
|
|
|
|
2016-03-09 07:59:08 +00:00
|
|
|
return;
|
2015-10-15 11:17:21 +00:00
|
|
|
}
|
2016-03-09 07:59:08 +00:00
|
|
|
|
2018-12-02 11:43:05 +00:00
|
|
|
$client->followRedirects();
|
|
|
|
|
2022-08-28 00:01:46 +00:00
|
|
|
$em = $client->getContainer()->get(EntityManagerInterface::class);
|
2016-03-09 07:59:08 +00:00
|
|
|
$user = $em
|
2022-08-25 19:37:10 +00:00
|
|
|
->getRepository(User::class)
|
2016-03-09 07:59:08 +00:00
|
|
|
->findOneByUsername('admin');
|
2018-12-02 11:43:05 +00:00
|
|
|
$user->setGoogleAuthenticatorSecret('26LDIHYGHNELOQEM');
|
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
|
|
|
|
|
|
|
$this->logInAsUsingHttp('admin');
|
|
|
|
$crawler = $client->request('GET', '/config');
|
2020-06-15 11:37:50 +00:00
|
|
|
$this->assertStringContainsString('trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
2016-03-09 07:59:08 +00:00
|
|
|
|
2018-12-02 11:43:05 +00:00
|
|
|
// restore user
|
|
|
|
$user = $em
|
2022-08-25 19:37:10 +00:00
|
|
|
->getRepository(User::class)
|
2018-12-02 11:43:05 +00:00
|
|
|
->findOneByUsername('admin');
|
|
|
|
$user->setGoogleAuthenticatorSecret(null);
|
|
|
|
$em->persist($user);
|
|
|
|
$em->flush();
|
2015-10-14 15:10:12 +00:00
|
|
|
}
|
2016-08-24 08:28:43 +00:00
|
|
|
|
|
|
|
public function testEnabledRegistration()
|
|
|
|
{
|
|
|
|
$client = $this->getClient();
|
|
|
|
|
|
|
|
if (!$client->getContainer()->getParameter('fosuser_registration')) {
|
|
|
|
$this->markTestSkipped('fosuser_registration is not enabled.');
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
$client->followRedirects();
|
2018-03-28 19:56:55 +00:00
|
|
|
$client->request('GET', '/register');
|
2020-06-15 11:37:50 +00:00
|
|
|
$this->assertStringContainsString('registration.submit', $client->getResponse()->getContent());
|
2016-08-24 08:28:43 +00:00
|
|
|
}
|
2015-10-14 15:10:12 +00:00
|
|
|
}
|