132 lignes
4.3 KiB
PHP
132 lignes
4.3 KiB
PHP
<?php
|
|
|
|
/**
|
|
* This Software is the property of Data Development and is protected
|
|
* by copyright law - it is NOT Freeware.
|
|
* Any unauthorized use of this software without a valid license
|
|
* is a violation of the license agreement and will be prosecuted by
|
|
* civil and criminal law.
|
|
* http://www.shopmodule.com
|
|
*
|
|
* @copyright (C) D3 Data Development (Inh. Thomas Dartsch)
|
|
* @author D3 Data Development - Daniel Seifert <support@shopmodule.com>
|
|
* @link http://www.oxidmodule.com
|
|
*/
|
|
|
|
namespace D3\Webauthn\tests\integration;
|
|
|
|
use D3\Webauthn\Application\Model\WebauthnConf;
|
|
use OxidEsales\Eshop\Application\Controller\Admin\LoginController;
|
|
use OxidEsales\Eshop\Core\Database\Adapter\DatabaseInterface;
|
|
use OxidEsales\Eshop\Core\Registry;
|
|
|
|
class passwordAdminAuthTest extends integrationTestCase
|
|
{
|
|
protected $userList = [
|
|
1 => 'userId1',
|
|
2 => 'userId2',
|
|
3 => 'userId3',
|
|
4 => 'userId4',
|
|
];
|
|
|
|
public function createTestData()
|
|
{
|
|
/** @var DatabaseInterface $db */
|
|
$db = d3GetOxidDIC()->get('d3ox.webauthn.'.DatabaseInterface::class.'.assoc');
|
|
$admin = $db->getOne('SELECT oxid FROM oxuser WHERE oxrights = \'malladmin\'');
|
|
Registry::getSession()->setVariable(WebauthnConf::OXID_ADMIN_AUTH, $admin);
|
|
$this->createUser(
|
|
$this->userList[1],
|
|
[
|
|
'oxactive' => 1,
|
|
'oxrights' => 'user',
|
|
'oxshopid' => 1,
|
|
'oxusername' => 'noadmin@user.localhost',
|
|
'oxpassword' => '$2y$10$QErMJNHQCoN03tfCUQDRfOvbwvqfzwWw1iI/7bC49fKQrPKoDdnaK', // 123456
|
|
'oxstreet' => __CLASS__,
|
|
],
|
|
true
|
|
);
|
|
|
|
$this->createUser(
|
|
$this->userList[2],
|
|
[
|
|
'oxactive' => 1,
|
|
'oxrights' => 'malladmin',
|
|
'oxshopid' => 1,
|
|
'oxusername' => 'admin@user.localhost',
|
|
'oxpassword' => '$2y$10$QErMJNHQCoN03tfCUQDRfOvbwvqfzwWw1iI/7bC49fKQrPKoDdnaK', // 123456
|
|
'oxstreet' => __CLASS__,
|
|
],
|
|
true
|
|
);
|
|
|
|
$this->createUser(
|
|
$this->userList[3],
|
|
[
|
|
'oxactive' => 1,
|
|
'oxrights' => 'malladmin',
|
|
'oxshopid' => 2,
|
|
'oxusername' => 'wrongshop@user.localhost',
|
|
'oxpassword' => '$2y$10$QErMJNHQCoN03tfCUQDRfOvbwvqfzwWw1iI/7bC49fKQrPKoDdnaK', // 123456
|
|
'oxstreet' => __CLASS__,
|
|
],
|
|
true
|
|
);
|
|
|
|
$this->createUser(
|
|
$this->userList[4],
|
|
[
|
|
'oxactive' => 0,
|
|
'oxrights' => 'malladmin',
|
|
'oxshopid' => 1,
|
|
'oxusername' => 'inactive@user.localhost',
|
|
'oxpassword' => '$2y$10$QErMJNHQCoN03tfCUQDRfOvbwvqfzwWw1iI/7bC49fKQrPKoDdnaK', // 123456
|
|
'oxstreet' => __CLASS__,
|
|
],
|
|
true
|
|
);
|
|
}
|
|
|
|
public function cleanTestData()
|
|
{
|
|
$this->deleteUser($this->userList[1]);
|
|
$this->deleteUser($this->userList[2]);
|
|
$this->deleteUser($this->userList[3]);
|
|
$this->deleteUser($this->userList[4]);
|
|
}
|
|
|
|
/**
|
|
* @test
|
|
* @dataProvider loginDataProvider
|
|
*/
|
|
public function testCheckLoginReturn($username, $password, $expected)
|
|
{
|
|
$_POST['user'] = $username;
|
|
$_POST['pwd'] = $password;
|
|
|
|
/** @var LoginController $login */
|
|
$login = oxNew(LoginController::class);
|
|
|
|
$this->assertSame(
|
|
$expected,
|
|
$login->checklogin()
|
|
);
|
|
}
|
|
|
|
/**
|
|
* @return array[]
|
|
*/
|
|
public function loginDataProvider(): array
|
|
{
|
|
return [
|
|
'not existing account' => ['unknown@user.localhost', '123456', null],
|
|
'missing password' => ['admin@user.localhost', null, null],
|
|
'inactive account' => ['inactive@user.localhost', '123456', null],
|
|
'no backend account' => ['noadmin@user.localhost', '123456', null],
|
|
'wrong shop account' => ['wrongshop@user.localhost', '123456', 'admin_start'],
|
|
'account ok' => ['admin@user.localhost', '123456', 'admin_start'],
|
|
];
|
|
}
|
|
}
|