* * @copyright Copyright (c) 2016, ownCloud, Inc. * @license AGPL-3.0 * * This code is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License, version 3, * as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License, version 3, * along with this program. If not, see * */ namespace Test\Core\Controller; use OC\Core\Controller\TwoFactorChallengeController; use Test\TestCase; class TwoFactorChallengeControllerTest extends TestCase { private $request; private $twoFactorManager; private $userSession; private $session; private $urlGenerator; /** @var TwoFactorChallengeController|\PHPUnit_Framework_MockObject_MockObject */ private $controller; protected function setUp() { parent::setUp(); $this->request = $this->getMockBuilder('\OCP\IRequest')->getMock(); $this->twoFactorManager = $this->getMockBuilder('\OC\Authentication\TwoFactorAuth\Manager') ->disableOriginalConstructor() ->getMock(); $this->userSession = $this->getMockBuilder('\OCP\IUserSession')->getMock(); $this->session = $this->getMockBuilder('\OCP\ISession')->getMock(); $this->urlGenerator = $this->getMockBuilder('\OCP\IURLGenerator')->getMock(); $this->controller = $this->getMockBuilder('OC\Core\Controller\TwoFactorChallengeController') ->setConstructorArgs([ 'core', $this->request, $this->twoFactorManager, $this->userSession, $this->session, $this->urlGenerator, ]) ->setMethods(['getLogoutAttribute']) ->getMock(); $this->controller->expects($this->any()) ->method('getLogoutAttribute') ->willReturn('logoutAttribute'); } public function testSelectChallenge() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $providers = [ 'prov1', 'prov2', ]; $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProviders') ->with($user) ->will($this->returnValue($providers)); $this->twoFactorManager->expects($this->once()) ->method('getBackupProvider') ->with($user) ->will($this->returnValue('backup')); $expected = new \OCP\AppFramework\Http\TemplateResponse('core', 'twofactorselectchallenge', [ 'providers' => $providers, 'backupProvider' => 'backup', 'redirect_url' => '/some/url', 'logout_attribute' => 'logoutAttribute', ], 'guest'); $this->assertEquals($expected, $this->controller->selectChallenge('/some/url')); } public function testShowChallenge() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $provider = $this->getMockBuilder('\OCP\Authentication\TwoFactorAuth\IProvider') ->disableOriginalConstructor() ->getMock(); $backupProvider = $this->getMockBuilder('\OCP\Authentication\TwoFactorAuth\IProvider') ->disableOriginalConstructor() ->getMock(); $tmpl = $this->getMockBuilder('\OCP\Template') ->disableOriginalConstructor() ->getMock(); $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProvider') ->with($user, 'myprovider') ->will($this->returnValue($provider)); $this->twoFactorManager->expects($this->once()) ->method('getBackupProvider') ->with($user) ->will($this->returnValue($backupProvider)); $provider->expects($this->once()) ->method('getId') ->will($this->returnValue('u2f')); $backupProvider->expects($this->once()) ->method('getId') ->will($this->returnValue('backup_codes')); $this->session->expects($this->once()) ->method('exists') ->with('two_factor_auth_error') ->will($this->returnValue(true)); $this->session->expects($this->once()) ->method('remove') ->with('two_factor_auth_error'); $provider->expects($this->once()) ->method('getTemplate') ->with($user) ->will($this->returnValue($tmpl)); $tmpl->expects($this->once()) ->method('fetchPage') ->will($this->returnValue('')); $expected = new \OCP\AppFramework\Http\TemplateResponse('core', 'twofactorshowchallenge', [ 'error' => true, 'provider' => $provider, 'backupProvider' => $backupProvider, 'logout_attribute' => 'logoutAttribute', 'template' => '', ], 'guest'); $this->assertEquals($expected, $this->controller->showChallenge('myprovider', '/re/dir/ect/url')); } public function testShowInvalidChallenge() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProvider') ->with($user, 'myprovider') ->will($this->returnValue(null)); $this->urlGenerator->expects($this->once()) ->method('linkToRoute') ->with('core.TwoFactorChallenge.selectChallenge') ->will($this->returnValue('select/challenge/url')); $expected = new \OCP\AppFramework\Http\RedirectResponse('select/challenge/url'); $this->assertEquals($expected, $this->controller->showChallenge('myprovider', 'redirect/url')); } public function testSolveChallenge() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $provider = $this->getMockBuilder('\OCP\Authentication\TwoFactorAuth\IProvider') ->disableOriginalConstructor() ->getMock(); $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProvider') ->with($user, 'myprovider') ->will($this->returnValue($provider)); $this->twoFactorManager->expects($this->once()) ->method('verifyChallenge') ->with('myprovider', $user, 'token') ->will($this->returnValue(true)); $expected = new \OCP\AppFramework\Http\RedirectResponse(\OC_Util::getDefaultPageUrl()); $this->assertEquals($expected, $this->controller->solveChallenge('myprovider', 'token')); } public function testSolveChallengeInvalidProvider() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProvider') ->with($user, 'myprovider') ->will($this->returnValue(null)); $this->urlGenerator->expects($this->once()) ->method('linkToRoute') ->with('core.TwoFactorChallenge.selectChallenge') ->will($this->returnValue('select/challenge/url')); $expected = new \OCP\AppFramework\Http\RedirectResponse('select/challenge/url'); $this->assertEquals($expected, $this->controller->solveChallenge('myprovider', 'token')); } public function testSolveInvalidChallenge() { $user = $this->getMockBuilder('\OCP\IUser')->getMock(); $provider = $this->getMockBuilder('\OCP\Authentication\TwoFactorAuth\IProvider') ->disableOriginalConstructor() ->getMock(); $this->userSession->expects($this->once()) ->method('getUser') ->will($this->returnValue($user)); $this->twoFactorManager->expects($this->once()) ->method('getProvider') ->with($user, 'myprovider') ->will($this->returnValue($provider)); $this->twoFactorManager->expects($this->once()) ->method('verifyChallenge') ->with('myprovider', $user, 'token') ->will($this->returnValue(false)); $this->session->expects($this->once()) ->method('set') ->with('two_factor_auth_error', true); $this->urlGenerator->expects($this->once()) ->method('linkToRoute') ->with('core.TwoFactorChallenge.showChallenge', [ 'challengeProviderId' => 'myprovider', 'redirect_url' => '/url', ]) ->will($this->returnValue('files/index/url')); $provider->expects($this->once()) ->method('getId') ->will($this->returnValue('myprovider')); $expected = new \OCP\AppFramework\Http\RedirectResponse('files/index/url'); $this->assertEquals($expected, $this->controller->solveChallenge('myprovider', 'token', '/url')); } }