2015-08-24 18:13:16 +03:00
|
|
|
<?php
|
2021-04-19 16:50:30 +03:00
|
|
|
|
|
|
|
declare(strict_types=1);
|
|
|
|
|
2015-08-24 18:13:16 +03:00
|
|
|
/**
|
|
|
|
* @author Robin McCorkell <rmccorkell@owncloud.com>
|
|
|
|
*
|
|
|
|
* @copyright Copyright (c) 2015, ownCloud, Inc.
|
|
|
|
* @license AGPL-3.0
|
|
|
|
*
|
|
|
|
* This code is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
|
|
* as published by the Free Software Foundation.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
2016-05-19 10:02:58 +03:00
|
|
|
namespace Test\Security;
|
|
|
|
|
2019-11-22 22:52:10 +03:00
|
|
|
use OC\Security\CredentialsManager;
|
2021-04-20 18:03:29 +03:00
|
|
|
use OCP\DB\IResult;
|
|
|
|
use OCP\DB\QueryBuilder\IExpressionBuilder;
|
|
|
|
use OCP\DB\QueryBuilder\IQueryBuilder;
|
2019-11-22 22:52:10 +03:00
|
|
|
use OCP\IDBConnection;
|
|
|
|
use OCP\Security\ICrypto;
|
2015-08-24 18:13:16 +03:00
|
|
|
|
2020-04-15 17:44:28 +03:00
|
|
|
/**
|
|
|
|
* @group DB
|
|
|
|
*/
|
2015-08-24 18:13:16 +03:00
|
|
|
class CredentialsManagerTest extends \Test\TestCase {
|
|
|
|
|
|
|
|
/** @var ICrypto */
|
|
|
|
protected $crypto;
|
|
|
|
|
|
|
|
/** @var IDBConnection */
|
|
|
|
protected $dbConnection;
|
|
|
|
|
|
|
|
/** @var CredentialsManager */
|
|
|
|
protected $manager;
|
|
|
|
|
2019-11-21 18:40:38 +03:00
|
|
|
protected function setUp(): void {
|
2015-08-24 18:13:16 +03:00
|
|
|
parent::setUp();
|
2016-09-07 21:20:08 +03:00
|
|
|
$this->crypto = $this->createMock(ICrypto::class);
|
2021-01-03 17:28:31 +03:00
|
|
|
$this->dbConnection = $this->getMockBuilder(IDBConnection::class)
|
|
|
|
->disableOriginalConstructor()
|
|
|
|
->getMock();
|
2015-08-24 18:13:16 +03:00
|
|
|
$this->manager = new CredentialsManager($this->crypto, $this->dbConnection);
|
|
|
|
}
|
|
|
|
|
2016-10-28 14:48:58 +03:00
|
|
|
private function getQueryResult($row) {
|
2021-04-20 18:03:29 +03:00
|
|
|
$result = $this->createMock(IResult::class);
|
2016-01-15 17:18:55 +03:00
|
|
|
|
|
|
|
$result->expects($this->any())
|
|
|
|
->method('fetch')
|
2020-03-26 00:21:27 +03:00
|
|
|
->willReturn($row);
|
2016-01-15 17:18:55 +03:00
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
2015-08-24 18:13:16 +03:00
|
|
|
public function testStore() {
|
|
|
|
$userId = 'abc';
|
|
|
|
$identifier = 'foo';
|
|
|
|
$credentials = 'bar';
|
|
|
|
|
|
|
|
$this->crypto->expects($this->once())
|
|
|
|
->method('encrypt')
|
|
|
|
->with(json_encode($credentials))
|
|
|
|
->willReturn('baz');
|
|
|
|
|
|
|
|
$this->dbConnection->expects($this->once())
|
|
|
|
->method('setValues')
|
|
|
|
->with(CredentialsManager::DB_TABLE,
|
|
|
|
['user' => $userId, 'identifier' => $identifier],
|
|
|
|
['credentials' => 'baz']
|
|
|
|
);
|
|
|
|
|
|
|
|
$this->manager->store($userId, $identifier, $credentials);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testRetrieve() {
|
|
|
|
$userId = 'abc';
|
|
|
|
$identifier = 'foo';
|
|
|
|
|
|
|
|
$this->crypto->expects($this->once())
|
|
|
|
->method('decrypt')
|
|
|
|
->with('baz')
|
|
|
|
->willReturn(json_encode('bar'));
|
|
|
|
|
2021-04-20 18:03:29 +03:00
|
|
|
$eb = $this->createMock(IExpressionBuilder::class);
|
|
|
|
$qb = $this->createMock(IQueryBuilder::class);
|
|
|
|
$qb->method('select')->willReturnSelf();
|
|
|
|
$qb->method('from')->willReturnSelf();
|
|
|
|
$qb->method('where')->willReturnSelf();
|
|
|
|
$qb->method('expr')->willReturn($eb);
|
2015-08-24 18:13:16 +03:00
|
|
|
$qb->expects($this->once())
|
|
|
|
->method('execute')
|
2016-10-28 14:48:58 +03:00
|
|
|
->willReturn($this->getQueryResult(['credentials' => 'baz']));
|
2015-08-24 18:13:16 +03:00
|
|
|
|
2021-04-20 18:03:29 +03:00
|
|
|
$this->dbConnection->expects($this->once())
|
2015-08-24 18:13:16 +03:00
|
|
|
->method('getQueryBuilder')
|
|
|
|
->willReturn($qb);
|
|
|
|
|
|
|
|
$this->manager->retrieve($userId, $identifier);
|
|
|
|
}
|
2020-04-15 17:44:28 +03:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @dataProvider credentialsProvider
|
|
|
|
*/
|
|
|
|
public function testWithDB($userId, $identifier) {
|
|
|
|
$credentialsManager = \OC::$server->getCredentialsManager();
|
|
|
|
|
|
|
|
$secrets = 'Open Sesame';
|
|
|
|
|
|
|
|
$credentialsManager->store($userId, $identifier, $secrets);
|
|
|
|
$received = $credentialsManager->retrieve($userId, $identifier);
|
|
|
|
|
|
|
|
$this->assertSame($secrets, $received);
|
|
|
|
|
|
|
|
$removedRows = $credentialsManager->delete($userId, $identifier);
|
|
|
|
$this->assertSame(1, $removedRows);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function credentialsProvider() {
|
|
|
|
return [
|
|
|
|
[
|
|
|
|
'alice',
|
|
|
|
'privateCredentials'
|
|
|
|
],
|
|
|
|
[
|
2020-04-15 20:34:23 +03:00
|
|
|
'',
|
|
|
|
'systemCredentials',
|
|
|
|
],
|
2020-04-15 17:44:28 +03:00
|
|
|
];
|
|
|
|
}
|
2015-08-24 18:13:16 +03:00
|
|
|
}
|