colin
/
bookstack
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
bookstack/tests/Auth/SocialAuthTest.php

216 lines
10 KiB
PHP
Raw Normal View History

Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
<?php
namespace Tests\Auth;
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
Fixed social auth login audit log messages Was logging the whole social account instance instead of just the method. Updated tests to cover. Fixes #2930
2021-09-16 03:55:10 +08:00
use BookStack\Actions\ActivityType;
Added test for social account detach
2021-06-15 05:30:53 +08:00
use BookStack\Auth\SocialAccount;
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
use BookStack\Auth\User;
Standardised facade usage to use via their FQCN Done via Laravel Shift Workbench
2021-09-26 22:37:55 +08:00
use Illuminate\Support\Facades\DB;
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
use Laravel\Socialite\Contracts\Factory;
use Laravel\Socialite\Contracts\Provider;
use Mockery;
Updated test files to be PSR-4 compliant Closes #1924
2020-04-04 08:16:05 +08:00
use Tests\TestCase;
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
class SocialAuthTest extends TestCase
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
{
Cleaned tests up, Started LDAP tests, Created LDAP wrapper
2016-01-16 07:21:47 +08:00
public function test_social_registration()
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
{
Laravel 8 shift squash & merge (#3029) * Temporarily moved back config path * Apply Laravel coding style * Shift exception handler * Shift HTTP kernel and middleware * Shift service providers * Convert options array to fluent methods * Shift to class based routes * Shift console routes * Ignore temporary framework files * Shift to class based factories * Namespace seeders * Shift PSR-4 autoloading * Shift config files * Default config files * Shift Laravel dependencies * Shift return type of base TestCase methods * Shift cleanup * Applied stylci style changes * Reverted config files location * Applied manual changes to Laravel 8 shift Co-authored-by: Shift <shift@laravelshift.com>
2021-10-31 04:29:59 +08:00
$user = User::factory()->make();
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
$this->setSettings(['registration-enabled' => 'true']);
Cleaned tests up, Started LDAP tests, Created LDAP wrapper
2016-01-16 07:21:47 +08:00
config(['GOOGLE_APP_ID' => 'abc123', 'GOOGLE_APP_SECRET' => '123abc', 'APP_URL' => 'http://localhost']);
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
Added login/register theme events
2021-03-20 05:54:50 +08:00
$mockSocialite = $this->mock(Factory::class);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$mockSocialDriver = Mockery::mock(Provider::class);
$mockSocialUser = Mockery::mock(\Laravel\Socialite\Contracts\User::class);
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
$mockSocialite->shouldReceive('driver')->twice()->with('google')->andReturn($mockSocialDriver);
$mockSocialDriver->shouldReceive('redirect')->once()->andReturn(redirect('/'));
$mockSocialDriver->shouldReceive('user')->once()->andReturn($mockSocialUser);
$mockSocialUser->shouldReceive('getId')->twice()->andReturn(1);
$mockSocialUser->shouldReceive('getEmail')->twice()->andReturn($user->email);
$mockSocialUser->shouldReceive('getName')->once()->andReturn($user->name);
$mockSocialUser->shouldReceive('getAvatar')->once()->andReturn('avatar_placeholder');
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$this->get('/register/service/google');
$this->get('/login/service/google/callback');
$this->assertDatabaseHas('users', ['name' => $user->name, 'email' => $user->email]);
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
$user = $user->whereEmail($user->email)->first();
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$this->assertDatabaseHas('social_accounts', ['user_id' => $user->id]);
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
}
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
public function test_social_login()
{
config([
'GOOGLE_APP_ID' => 'abc123', 'GOOGLE_APP_SECRET' => '123abc',
'GITHUB_APP_ID' => 'abc123', 'GITHUB_APP_SECRET' => '123abc',
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'APP_URL' => 'http://localhost',
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
]);
Added login/register theme events
2021-03-20 05:54:50 +08:00
$mockSocialite = $this->mock(Factory::class);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$mockSocialDriver = Mockery::mock(Provider::class);
$mockSocialUser = Mockery::mock(\Laravel\Socialite\Contracts\User::class);
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
$mockSocialUser->shouldReceive('getId')->twice()->andReturn('logintest123');
$mockSocialDriver->shouldReceive('user')->twice()->andReturn($mockSocialUser);
$mockSocialite->shouldReceive('driver')->twice()->with('google')->andReturn($mockSocialDriver);
$mockSocialite->shouldReceive('driver')->twice()->with('github')->andReturn($mockSocialDriver);
$mockSocialDriver->shouldReceive('redirect')->twice()->andReturn(redirect('/'));
// Test login routes
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$resp = $this->get('/login');
$resp->assertElementExists('a#social-login-google[href$="/login/service/google"]');
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
$resp = $this->followingRedirects()->get('/login/service/google');
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$resp->assertSee('login-form');
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
// Test social callback
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$resp = $this->followingRedirects()->get('/login/service/google/callback');
$resp->assertSee('login-form');
$resp->assertSee(trans('errors.social_account_not_used', ['socialAccount' => 'Google']));
$resp = $this->get('/login');
$resp->assertElementExists('a#social-login-github[href$="/login/service/github"]');
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
$resp = $this->followingRedirects()->get('/login/service/github');
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$resp->assertSee('login-form');
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
// Test social callback with matching social account
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
DB::table('social_accounts')->insert([
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'user_id' => $this->getAdmin()->id,
'driver' => 'github',
'driver_id' => 'logintest123',
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
]);
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$resp = $this->followingRedirects()->get('/login/service/github/callback');
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
$resp->assertDontSee('login-form');
Fixed social auth login audit log messages Was logging the whole social account instance instead of just the method. Updated tests to cover. Fixes #2930
2021-09-16 03:55:10 +08:00
$this->assertActivityExists(ActivityType::AUTH_LOGIN, null, 'github; (' . $this->getAdmin()->id . ') ' . $this->getAdmin()->name);
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
}
Added test for social account detach
2021-06-15 05:30:53 +08:00
public function test_social_account_detach()
{
$editor = $this->getEditor();
config([
'GITHUB_APP_ID' => 'abc123', 'GITHUB_APP_SECRET' => '123abc',
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'APP_URL' => 'http://localhost',
Added test for social account detach
2021-06-15 05:30:53 +08:00
]);
$socialAccount = SocialAccount::query()->forceCreate([
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'user_id' => $editor->id,
'driver' => 'github',
Added test for social account detach
2021-06-15 05:30:53 +08:00
'driver_id' => 'logintest123',
]);
$resp = $this->actingAs($editor)->get($editor->getEditUrl());
Made social account detach a POST request Closes #2808
2021-06-15 05:37:58 +08:00
$resp->assertElementContains('form[action$="/login/service/github/detach"]', 'Disconnect Account');
Added test for social account detach
2021-06-15 05:30:53 +08:00
Made social account detach a POST request Closes #2808
2021-06-15 05:37:58 +08:00
$resp = $this->post('/login/service/github/detach');
Added test for social account detach
2021-06-15 05:30:53 +08:00
$resp->assertRedirect($editor->getEditUrl());
$resp = $this->followRedirects($resp);
$resp->assertSee('Github account was successfully disconnected from your profile.');
$this->assertDatabaseMissing('social_accounts', ['id' => $socialAccount->id]);
}
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
public function test_social_autoregister()
{
config([
'services.google.client_id' => 'abc123', 'services.google.client_secret' => '123abc',
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'APP_URL' => 'http://localhost',
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
]);
Laravel 8 shift squash & merge (#3029) * Temporarily moved back config path * Apply Laravel coding style * Shift exception handler * Shift HTTP kernel and middleware * Shift service providers * Convert options array to fluent methods * Shift to class based routes * Shift console routes * Ignore temporary framework files * Shift to class based factories * Namespace seeders * Shift PSR-4 autoloading * Shift config files * Default config files * Shift Laravel dependencies * Shift return type of base TestCase methods * Shift cleanup * Applied stylci style changes * Reverted config files location * Applied manual changes to Laravel 8 shift Co-authored-by: Shift <shift@laravelshift.com>
2021-10-31 04:29:59 +08:00
$user = User::factory()->make();
Added login/register theme events
2021-03-20 05:54:50 +08:00
$mockSocialite = $this->mock(Factory::class);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$mockSocialDriver = Mockery::mock(Provider::class);
$mockSocialUser = Mockery::mock(\Laravel\Socialite\Contracts\User::class);
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$mockSocialUser->shouldReceive('getId')->times(4)->andReturn(1);
$mockSocialUser->shouldReceive('getEmail')->times(2)->andReturn($user->email);
$mockSocialUser->shouldReceive('getName')->once()->andReturn($user->name);
$mockSocialUser->shouldReceive('getAvatar')->once()->andReturn('avatar_placeholder');
$mockSocialDriver->shouldReceive('user')->times(2)->andReturn($mockSocialUser);
$mockSocialite->shouldReceive('driver')->times(4)->with('google')->andReturn($mockSocialDriver);
$mockSocialDriver->shouldReceive('redirect')->twice()->andReturn(redirect('/'));
$googleAccountNotUsedMessage = trans('errors.social_account_not_used', ['socialAccount' => 'Google']);
$this->get('/login/service/google');
$resp = $this->followingRedirects()->get('/login/service/google/callback');
$resp->assertSee($googleAccountNotUsedMessage);
config(['services.google.auto_register' => true]);
$this->get('/login/service/google');
$resp = $this->followingRedirects()->get('/login/service/google/callback');
$resp->assertDontSee($googleAccountNotUsedMessage);
$this->assertDatabaseHas('users', ['name' => $user->name, 'email' => $user->email, 'email_confirmed' => false]);
$user = $user->whereEmail($user->email)->first();
$this->assertDatabaseHas('social_accounts', ['user_id' => $user->id]);
}
public function test_social_auto_email_confirm()
{
config([
'services.google.client_id' => 'abc123', 'services.google.client_secret' => '123abc',
Apply fixes from StyleCI
2021-06-26 23:23:15 +08:00
'APP_URL' => 'http://localhost', 'services.google.auto_register' => true, 'services.google.auto_confirm' => true,
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
]);
Laravel 8 shift squash & merge (#3029) * Temporarily moved back config path * Apply Laravel coding style * Shift exception handler * Shift HTTP kernel and middleware * Shift service providers * Convert options array to fluent methods * Shift to class based routes * Shift console routes * Ignore temporary framework files * Shift to class based factories * Namespace seeders * Shift PSR-4 autoloading * Shift config files * Default config files * Shift Laravel dependencies * Shift return type of base TestCase methods * Shift cleanup * Applied stylci style changes * Reverted config files location * Applied manual changes to Laravel 8 shift Co-authored-by: Shift <shift@laravelshift.com>
2021-10-31 04:29:59 +08:00
$user = User::factory()->make();
Added login/register theme events
2021-03-20 05:54:50 +08:00
$mockSocialite = $this->mock(Factory::class);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$mockSocialDriver = Mockery::mock(Provider::class);
$mockSocialUser = Mockery::mock(\Laravel\Socialite\Contracts\User::class);
Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.
2018-09-22 01:05:06 +08:00
$mockSocialUser->shouldReceive('getId')->times(3)->andReturn(1);
$mockSocialUser->shouldReceive('getEmail')->times(2)->andReturn($user->email);
$mockSocialUser->shouldReceive('getName')->once()->andReturn($user->name);
$mockSocialUser->shouldReceive('getAvatar')->once()->andReturn('avatar_placeholder');
$mockSocialDriver->shouldReceive('user')->times(1)->andReturn($mockSocialUser);
$mockSocialite->shouldReceive('driver')->times(2)->with('google')->andReturn($mockSocialDriver);
$mockSocialDriver->shouldReceive('redirect')->once()->andReturn(redirect('/'));
$this->get('/login/service/google');
$this->get('/login/service/google/callback');
$this->assertDatabaseHas('users', ['name' => $user->name, 'email' => $user->email, 'email_confirmed' => true]);
$user = $user->whereEmail($user->email)->first();
$this->assertDatabaseHas('social_accounts', ['user_id' => $user->id]);
Added tests to cover social login actions Closes #244
2017-01-02 22:56:58 +08:00
}
Added google select_account test Also cleaned the function naming a little to be more descriptive of the work they do.
2018-11-10 22:52:43 +08:00
public function test_google_select_account_option_changes_redirect_url()
{
config()->set('services.google.select_account', 'true');
$resp = $this->get('/login/service/google');
Updated to laravel 6
2019-09-14 21:12:39 +08:00
$this->assertStringContainsString('prompt=select_account', $resp->headers->get('Location'));
Added google select_account test Also cleaned the function naming a little to be more descriptive of the work they do.
2018-11-10 22:52:43 +08:00
}
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
public function test_social_registration_with_no_name_uses_email_as_name()
{
Laravel 8 shift squash & merge (#3029) * Temporarily moved back config path * Apply Laravel coding style * Shift exception handler * Shift HTTP kernel and middleware * Shift service providers * Convert options array to fluent methods * Shift to class based routes * Shift console routes * Ignore temporary framework files * Shift to class based factories * Namespace seeders * Shift PSR-4 autoloading * Shift config files * Default config files * Shift Laravel dependencies * Shift return type of base TestCase methods * Shift cleanup * Applied stylci style changes * Reverted config files location * Applied manual changes to Laravel 8 shift Co-authored-by: Shift <shift@laravelshift.com>
2021-10-31 04:29:59 +08:00
$user = User::factory()->make(['email' => 'nonameuser@example.com']);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$this->setSettings(['registration-enabled' => 'true']);
config(['GITHUB_APP_ID' => 'abc123', 'GITHUB_APP_SECRET' => '123abc', 'APP_URL' => 'http://localhost']);
Added login/register theme events
2021-03-20 05:54:50 +08:00
$mockSocialite = $this->mock(Factory::class);
Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853
2020-03-11 03:09:22 +08:00
$mockSocialDriver = Mockery::mock(Provider::class);
$mockSocialUser = Mockery::mock(\Laravel\Socialite\Contracts\User::class);
$mockSocialite->shouldReceive('driver')->twice()->with('github')->andReturn($mockSocialDriver);
$mockSocialDriver->shouldReceive('redirect')->once()->andReturn(redirect('/'));
$mockSocialDriver->shouldReceive('user')->once()->andReturn($mockSocialUser);
$mockSocialUser->shouldReceive('getId')->twice()->andReturn(1);
$mockSocialUser->shouldReceive('getEmail')->twice()->andReturn($user->email);
$mockSocialUser->shouldReceive('getName')->once()->andReturn('');
$mockSocialUser->shouldReceive('getAvatar')->once()->andReturn('avatar_placeholder');
$this->get('/register/service/github');
$this->get('/login/service/github/callback');
$this->assertDatabaseHas('users', ['name' => 'nonameuser', 'email' => $user->email]);
$user = $user->whereEmail($user->email)->first();
$this->assertDatabaseHas('social_accounts', ['user_id' => $user->id]);
}
Started Social Auth Testing
2015-09-23 04:07:50 +08:00
}