2014-02-20 17:05:45 +04:00
|
|
|
<?php
|
|
|
|
|
/**
|
|
|
|
|
* ownCloud
|
|
|
|
|
*
|
|
|
|
|
* @author Arthur Schiwon
|
|
|
|
|
* @copyright 2013 Arthur Schiwon blizzz@owncloud.com
|
|
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 3 of the License, or any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU AFFERO GENERAL PUBLIC LICENSE for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Affero General Public
|
|
|
|
|
* License along with this library. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
namespace OCA\user_ldap\tests;
|
|
|
|
|
|
|
|
|
|
use \OCA\user_ldap\lib\Access;
|
|
|
|
|
use \OCA\user_ldap\lib\Connection;
|
|
|
|
|
use \OCA\user_ldap\lib\ILDAPWrapper;
|
|
|
|
|
|
|
|
|
|
class Test_Access extends \PHPUnit_Framework_TestCase {
|
|
|
|
|
private function getConnecterAndLdapMock() {
|
|
|
|
|
static $conMethods;
|
|
|
|
|
static $accMethods;
|
2014-03-31 12:48:38 +04:00
|
|
|
static $umMethods;
|
2014-02-20 17:05:45 +04:00
|
|
|
|
|
|
|
|
if(is_null($conMethods) || is_null($accMethods)) {
|
|
|
|
|
$conMethods = get_class_methods('\OCA\user_ldap\lib\Connection');
|
|
|
|
|
$accMethods = get_class_methods('\OCA\user_ldap\lib\Access');
|
2014-03-31 12:48:38 +04:00
|
|
|
$umMethods = get_class_methods('\OCA\user_ldap\lib\user\Manager');
|
2014-02-20 17:05:45 +04:00
|
|
|
}
|
|
|
|
|
$lw = $this->getMock('\OCA\user_ldap\lib\ILDAPWrapper');
|
|
|
|
|
$connector = $this->getMock('\OCA\user_ldap\lib\Connection',
|
|
|
|
|
$conMethods,
|
|
|
|
|
array($lw, null, null));
|
2014-03-31 12:48:38 +04:00
|
|
|
$um = $this->getMock('\OCA\user_ldap\lib\user\Manager',
|
|
|
|
|
$umMethods, array(
|
|
|
|
|
$this->getMock('\OCP\IConfig'),
|
|
|
|
|
$this->getMock('\OCA\user_ldap\lib\FilesystemHelper'),
|
|
|
|
|
$this->getMock('\OCA\user_ldap\lib\LogWrapper'),
|
|
|
|
|
$this->getMock('\OCP\IAvatarManager'),
|
|
|
|
|
$this->getMock('\OCP\Image')));
|
2014-02-20 17:05:45 +04:00
|
|
|
|
2014-03-31 12:48:38 +04:00
|
|
|
return array($lw, $connector, $um);
|
2014-02-20 17:05:45 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testEscapeFilterPartValidChars() {
|
2014-03-31 12:48:38 +04:00
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
2014-02-20 17:05:45 +04:00
|
|
|
|
|
|
|
|
$input = 'okay';
|
|
|
|
|
$this->assertTrue($input === $access->escapeFilterPart($input));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testEscapeFilterPartEscapeWildcard() {
|
2014-03-31 12:48:38 +04:00
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
2014-02-20 17:05:45 +04:00
|
|
|
|
|
|
|
|
$input = '*';
|
|
|
|
|
$expected = '\\\\*';
|
|
|
|
|
$this->assertTrue($expected === $access->escapeFilterPart($input));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testEscapeFilterPartEscapeWildcard2() {
|
2014-03-31 12:48:38 +04:00
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
2014-02-20 17:05:45 +04:00
|
|
|
|
|
|
|
|
$input = 'foo*bar';
|
|
|
|
|
$expected = 'foo\\\\*bar';
|
|
|
|
|
$this->assertTrue($expected === $access->escapeFilterPart($input));
|
|
|
|
|
}
|
2014-07-02 00:02:41 +04:00
|
|
|
|
|
|
|
|
public function testConvertSID2StrSuccess() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
2014-07-11 14:13:54 +04:00
|
|
|
if(!function_exists('\bcadd')) {
|
|
|
|
|
$this->markTestSkipped('bcmath not available');
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-02 00:02:41 +04:00
|
|
|
$sidBinary = file_get_contents(__DIR__ . '/data/sid.dat');
|
|
|
|
|
$sidExpected = 'S-1-5-21-249921958-728525901-1594176202';
|
|
|
|
|
|
|
|
|
|
$this->assertSame($sidExpected, $access->convertSID2Str($sidBinary));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testConvertSID2StrInputError() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
2014-07-11 14:13:54 +04:00
|
|
|
if(!function_exists('\bcadd')) {
|
|
|
|
|
$this->markTestSkipped('bcmath not available');
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-02 00:02:41 +04:00
|
|
|
$sidIllegal = 'foobar';
|
|
|
|
|
$sidExpected = '';
|
|
|
|
|
|
|
|
|
|
$this->assertSame($sidExpected, $access->convertSID2Str($sidIllegal));
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-11 14:13:54 +04:00
|
|
|
public function testConvertSID2StrNoBCMath() {
|
|
|
|
|
if(function_exists('\bcadd')) {
|
|
|
|
|
$removed = false;
|
|
|
|
|
if(function_exists('runkit_function_remove')) {
|
|
|
|
|
$removed = !runkit_function_remove('\bcadd');
|
|
|
|
|
}
|
|
|
|
|
if(!$removed) {
|
|
|
|
|
$this->markTestSkipped('bcadd could not be removed for ' .
|
|
|
|
|
'testing without bcmath');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
$sidBinary = file_get_contents(__DIR__ . '/data/sid.dat');
|
|
|
|
|
$sidExpected = '';
|
|
|
|
|
|
|
|
|
|
$this->assertSame($sidExpected, $access->convertSID2Str($sidBinary));
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-02 00:02:41 +04:00
|
|
|
public function testGetDomainDNFromDNSuccess() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
$inputDN = 'uid=zaphod,cn=foobar,dc=my,dc=server,dc=com';
|
|
|
|
|
$domainDN = 'dc=my,dc=server,dc=com';
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->with($inputDN, 0)
|
|
|
|
|
->will($this->returnValue(explode(',', $inputDN)));
|
|
|
|
|
|
|
|
|
|
$this->assertSame($domainDN, $access->getDomainDNFromDN($inputDN));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testGetDomainDNFromDNError() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
$inputDN = 'foobar';
|
|
|
|
|
$expected = '';
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->with($inputDN, 0)
|
|
|
|
|
->will($this->returnValue(false));
|
|
|
|
|
|
|
|
|
|
$this->assertSame($expected, $access->getDomainDNFromDN($inputDN));
|
|
|
|
|
}
|
2014-08-11 18:40:41 +04:00
|
|
|
|
|
|
|
|
public function stringResemblesDNYes() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
$input = 'foo=bar,bar=foo,dc=foobar';
|
|
|
|
|
$interResult = array(
|
|
|
|
|
'count' => 3,
|
|
|
|
|
0 => 'foo=bar',
|
|
|
|
|
1 => 'bar=foo',
|
|
|
|
|
2 => 'dc=foobar'
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->will($this->returnValue($interResult));
|
|
|
|
|
|
|
|
|
|
$this->assertTrue($access->stringResemblesDN($input));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function stringResemblesDNYesLDAPmod() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$lw = new \OCA\user_ldap\lib\LDAP();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
if(!function_exists('ldap_explode_dn')) {
|
|
|
|
|
$this->markTestSkipped('LDAP Module not available');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$input = 'foo=bar,bar=foo,dc=foobar';
|
|
|
|
|
$interResult = array(
|
|
|
|
|
'count' => 3,
|
|
|
|
|
0 => 'foo=bar',
|
|
|
|
|
1 => 'bar=foo',
|
|
|
|
|
2 => 'dc=foobar'
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->will($this->returnValue($interResult));
|
|
|
|
|
|
|
|
|
|
$this->assertTrue($access->stringResemblesDN($input));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function stringResemblesDNNo() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
$input = 'foobarbarfoodcfoobar';
|
|
|
|
|
$interResult = false;
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->will($this->returnValue($interResult));
|
|
|
|
|
|
|
|
|
|
$this->assertFalse($access->stringResemblesDN($input));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function stringResemblesDNNoLDAPMod() {
|
|
|
|
|
list($lw, $con, $um) = $this->getConnecterAndLdapMock();
|
|
|
|
|
$lw = new \OCA\user_ldap\lib\LDAP();
|
|
|
|
|
$access = new Access($con, $lw, $um);
|
|
|
|
|
|
|
|
|
|
if(!function_exists('ldap_explode_dn')) {
|
|
|
|
|
$this->markTestSkipped('LDAP Module not available');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$input = 'foobarbarfoodcfoobar';
|
|
|
|
|
$interResult = false;
|
|
|
|
|
|
|
|
|
|
$lw->expects($this->once())
|
|
|
|
|
->method('explodeDN')
|
|
|
|
|
->will($this->returnValue($interResult));
|
|
|
|
|
|
|
|
|
|
$this->assertFalse($access->stringResemblesDN($input));
|
|
|
|
|
}
|
2014-07-02 00:02:41 +04:00
|
|
|
}
|
