mirror of
https://github.com/wallabag/wallabag.git
synced 2024-12-17 21:26:27 +00:00
a6b242a1fd
- Update SchebTwoFactorBundle to version 3
- Enable Google 2fa on the bundle
- Disallow ability to use both email and google as 2fa
- Update Ocramius Proxy Manager to handle typed function & attributes (from PHP 7)
- use `$this->addFlash` shortcut instead of `$this->get('session')->getFlashBag()->add`
- update admin to be able to create/reset the 2fa
109 lines
3.3 KiB
PHP
109 lines
3.3 KiB
PHP
<?php
|
|
|
|
namespace Tests\Wallabag\CoreBundle\Controller;
|
|
|
|
use Tests\Wallabag\CoreBundle\WallabagCoreTestCase;
|
|
|
|
class SecurityControllerTest extends WallabagCoreTestCase
|
|
{
|
|
public function testLoginWithEmail()
|
|
{
|
|
$this->logInAsUsingHttp('bigboss@wallabag.org');
|
|
$client = $this->getClient();
|
|
$client->followRedirects();
|
|
|
|
$crawler = $client->request('GET', '/config');
|
|
$this->assertContains('config.form_rss.description', $crawler->filter('body')->extract(['_text'])[0]);
|
|
}
|
|
|
|
public function testLoginWithout2Factor()
|
|
{
|
|
$this->logInAs('admin');
|
|
$client = $this->getClient();
|
|
$client->followRedirects();
|
|
|
|
$crawler = $client->request('GET', '/config');
|
|
$this->assertContains('config.form_rss.description', $crawler->filter('body')->extract(['_text'])[0]);
|
|
}
|
|
|
|
public function testLoginWith2FactorEmail()
|
|
{
|
|
$client = $this->getClient();
|
|
|
|
if (!$client->getContainer()->getParameter('twofactor_auth')) {
|
|
$this->markTestSkipped('twofactor_auth is not enabled.');
|
|
|
|
return;
|
|
}
|
|
|
|
$client->followRedirects();
|
|
|
|
$em = $client->getContainer()->get('doctrine.orm.entity_manager');
|
|
$user = $em
|
|
->getRepository('WallabagUserBundle:User')
|
|
->findOneByUsername('admin');
|
|
$user->setEmailTwoFactor(true);
|
|
$em->persist($user);
|
|
$em->flush();
|
|
|
|
$this->logInAsUsingHttp('admin');
|
|
$crawler = $client->request('GET', '/config');
|
|
$this->assertContains('scheb_two_factor.trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
|
|
|
// restore user
|
|
$user = $em
|
|
->getRepository('WallabagUserBundle:User')
|
|
->findOneByUsername('admin');
|
|
$user->setEmailTwoFactor(false);
|
|
$em->persist($user);
|
|
$em->flush();
|
|
}
|
|
|
|
public function testLoginWith2FactorGoogle()
|
|
{
|
|
$client = $this->getClient();
|
|
|
|
if (!$client->getContainer()->getParameter('twofactor_auth')) {
|
|
$this->markTestSkipped('twofactor_auth is not enabled.');
|
|
|
|
return;
|
|
}
|
|
|
|
$client->followRedirects();
|
|
|
|
$em = $client->getContainer()->get('doctrine.orm.entity_manager');
|
|
$user = $em
|
|
->getRepository('WallabagUserBundle:User')
|
|
->findOneByUsername('admin');
|
|
$user->setGoogleAuthenticatorSecret('26LDIHYGHNELOQEM');
|
|
$em->persist($user);
|
|
$em->flush();
|
|
|
|
$this->logInAsUsingHttp('admin');
|
|
$crawler = $client->request('GET', '/config');
|
|
$this->assertContains('scheb_two_factor.trusted', $crawler->filter('body')->extract(['_text'])[0]);
|
|
|
|
// restore user
|
|
$user = $em
|
|
->getRepository('WallabagUserBundle:User')
|
|
->findOneByUsername('admin');
|
|
$user->setGoogleAuthenticatorSecret(null);
|
|
$em->persist($user);
|
|
$em->flush();
|
|
}
|
|
|
|
public function testEnabledRegistration()
|
|
{
|
|
$client = $this->getClient();
|
|
|
|
if (!$client->getContainer()->getParameter('fosuser_registration')) {
|
|
$this->markTestSkipped('fosuser_registration is not enabled.');
|
|
|
|
return;
|
|
}
|
|
|
|
$client->followRedirects();
|
|
$client->request('GET', '/register');
|
|
$this->assertContains('registration.submit', $client->getResponse()->getContent());
|
|
}
|
|
}
|