File: ControllerTest.php

package info (click to toggle)
matomo 5.8.0-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 95,068 kB
  • sloc: php: 289,425; xml: 127,249; javascript: 112,130; python: 202; sh: 178; makefile: 20; sql: 10
file content (88 lines) | stat: -rw-r--r-- 2,672 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
 
<?php

/**
 * Matomo - free/libre analytics platform
 *
 * @link    https://matomo.org
 * @license https://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
 */

namespace Piwik\Plugins\UsersManager\tests\Integration;

use Piwik\Tests\Framework\TestCase\IntegrationTestCase;
use Piwik\Plugins\UsersManager\Controller;
use Piwik\Nonce;
use Piwik\Auth\PasswordStrength;
use Piwik\Date;
use Piwik\Plugins\UsersManager\Model;
use Piwik\Plugins\Login\PasswordVerifier;
use Piwik\Translation\Loader\DevelopmentLoader;
use Piwik\Translation\Loader\JsonFileLoader;
use Piwik\Translation\Translator;

/**
 * @group UsersManager
 * @group ControllerTest
 * @group Plugins
 */
class ControllerTest extends IntegrationTestCase
{
    /**
     * @var Controller
     */
    private $controller;
    private $post;

    public function setUp(): void
    {
        parent::setUp();

        $this->controller = new Controller(
            $translator = new Translator(new DevelopmentLoader(new JsonFileLoader())),
            $passwordVerify = new PasswordVerifier(),
            $userModel = new Model(),
            $passwordStrength = new PasswordStrength(true)
        );
        $this->post = $_POST;
    }

    public function tearDown(): void
    {
        parent::tearDown();
        $_POST = $this->post;
    }

    public function testRecordPasswordChangePasswordStrengthCheckWeakPassword()
    {
        $this->setupPostStateWithPassword('password1');

        $this->expectException(\Exception::class);
        $this->expectExceptionMessage('General_PasswordStrengthValidationFailed');
        $this->controller->recordPasswordChange();
    }

    public function testRecordPasswordChangePasswordStrengthCheckStrongPassword()
    {
        $this->setupPostStateWithPassword('Password111!');

        // create user to get test in a repeatable state
        $userLogin = 'super user was set';
        $userEmail = 'test@test.com';
        $usersModel = new Model();
        $usersModel->addUser($userLogin, $passwordHash = '', $userEmail, Date::now()->getDatetime());

        // expect test to get past strength check and fail when checking existing password
        $this->expectException(\Exception::class);
        $this->expectExceptionMessage('UsersManager_ConfirmWithReAuthentication');
        $this->controller->recordPasswordChange();
    }

    private function setupPostStateWithPassword(string $password)
    {
        $_POST['nonce'] = Nonce::getNonce('changePasswordNonce');
        $_POST['password'] = $password;
        $_POST['passwordBis'] = $password;
        // original password (irrelevant for test)
        $_POST['passwordConfirmation'] = '';
    }
}