123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651 |
- <?php
- declare(strict_types=1);
- /**
- * @copyright Copyright (c) 2018 Roeland Jago Douma <roeland@famdouma.nl>
- *
- * @author Roeland Jago Douma <roeland@famdouma.nl>
- *
- * @license GNU AGPL version 3 or any later version
- *
- * This program is free software: you can redistribute it and/or modify
- * it under the terms of the GNU Affero General Public License as
- * published by the Free Software Foundation, either version 3 of the
- * License, or (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU Affero General Public License for more details.
- *
- * You should have received a copy of the GNU Affero General Public License
- * along with this program. If not, see <http://www.gnu.org/licenses/>.
- *
- */
- namespace Test\Authentication\Token;
- use OC\Authentication\Exceptions\ExpiredTokenException;
- use OC\Authentication\Exceptions\InvalidTokenException;
- use OC\Authentication\Exceptions\PasswordlessTokenException;
- use OC\Authentication\Token\PublicKeyToken;
- use OC\Authentication\Token\PublicKeyTokenMapper;
- use OC\Authentication\Token\PublicKeyTokenProvider;
- use OCP\AppFramework\Db\DoesNotExistException;
- use OCP\AppFramework\Utility\ITimeFactory;
- use OCP\Authentication\Token\IToken;
- use OCP\ICacheFactory;
- use OCP\IConfig;
- use OCP\IDBConnection;
- use OCP\Security\ICrypto;
- use OCP\Security\IHasher;
- use PHPUnit\Framework\MockObject\MockObject;
- use Psr\Log\LoggerInterface;
- use Test\TestCase;
- class PublicKeyTokenProviderTest extends TestCase {
- /** @var PublicKeyTokenProvider|\PHPUnit\Framework\MockObject\MockObject */
- private $tokenProvider;
- /** @var PublicKeyTokenMapper|\PHPUnit\Framework\MockObject\MockObject */
- private $mapper;
- /** @var IHasher|\PHPUnit\Framework\MockObject\MockObject */
- private $hasher;
- /** @var ICrypto */
- private $crypto;
- /** @var IConfig|\PHPUnit\Framework\MockObject\MockObject */
- private $config;
- /** @var IDBConnection|MockObject */
- private IDBConnection $db;
- /** @var LoggerInterface|\PHPUnit\Framework\MockObject\MockObject */
- private $logger;
- /** @var ITimeFactory|\PHPUnit\Framework\MockObject\MockObject */
- private $timeFactory;
- /** @var ICacheFactory|\PHPUnit\Framework\MockObject\MockObject */
- private $cacheFactory;
- /** @var int */
- private $time;
- protected function setUp(): void {
- parent::setUp();
- $this->mapper = $this->createMock(PublicKeyTokenMapper::class);
- $this->hasher = \OC::$server->get(IHasher::class);
- $this->crypto = \OC::$server->getCrypto();
- $this->config = $this->createMock(IConfig::class);
- $this->config->method('getSystemValueInt')
- ->willReturnMap([
- ['session_lifetime', 60 * 60 * 24, 150],
- ['remember_login_cookie_lifetime', 60 * 60 * 24 * 15, 300],
- ['token_auth_activity_update', 60, 60],
- ]);
- $this->config->method('getSystemValue')
- ->willReturnMap([
- ['openssl', [], []],
- ]);
- $this->config->method('getSystemValueString')
- ->willReturnMap([
- ['secret', '', '1f4h9s'],
- ]);
- $this->db = $this->createMock(IDBConnection::class);
- $this->logger = $this->createMock(LoggerInterface::class);
- $this->timeFactory = $this->createMock(ITimeFactory::class);
- $this->time = 1313131;
- $this->timeFactory->method('getTime')
- ->willReturn($this->time);
- $this->cacheFactory = $this->createMock(ICacheFactory::class);
- $this->tokenProvider = new PublicKeyTokenProvider(
- $this->mapper,
- $this->crypto,
- $this->config,
- $this->db,
- $this->logger,
- $this->timeFactory,
- $this->hasher,
- $this->cacheFactory,
- );
- }
- public function testGenerateToken() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->assertInstanceOf(PublicKeyToken::class, $actual);
- $this->assertSame($uid, $actual->getUID());
- $this->assertSame($user, $actual->getLoginName());
- $this->assertSame($name, $actual->getName());
- $this->assertSame(IToken::DO_NOT_REMEMBER, $actual->getRemember());
- $this->assertSame($password, $this->tokenProvider->getPassword($actual, $token));
- }
- public function testGenerateTokenNoPassword(): void {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, false],
- ]);
- $this->expectException(PasswordlessTokenException::class);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->assertInstanceOf(PublicKeyToken::class, $actual);
- $this->assertSame($uid, $actual->getUID());
- $this->assertSame($user, $actual->getLoginName());
- $this->assertSame($name, $actual->getName());
- $this->assertSame(IToken::DO_NOT_REMEMBER, $actual->getRemember());
- $this->tokenProvider->getPassword($actual, $token);
- }
- public function testGenerateTokenLongPassword() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = '';
- for ($i = 0; $i < 500; $i++) {
- $password .= 'e';
- }
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $this->expectException(\RuntimeException::class);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- }
- public function testGenerateTokenInvalidName() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12'
- . 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12'
- . 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12'
- . 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->assertInstanceOf(PublicKeyToken::class, $actual);
- $this->assertSame($uid, $actual->getUID());
- $this->assertSame($user, $actual->getLoginName());
- $this->assertSame('User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12User-Agent: Mozill…', $actual->getName());
- $this->assertSame(IToken::DO_NOT_REMEMBER, $actual->getRemember());
- $this->assertSame($password, $this->tokenProvider->getPassword($actual, $token));
- }
- public function testUpdateToken() {
- $tk = new PublicKeyToken();
- $this->mapper->expects($this->once())
- ->method('updateActivity')
- ->with($tk, $this->time);
- $tk->setLastActivity($this->time - 200);
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $this->tokenProvider->updateTokenActivity($tk);
- $this->assertEquals($this->time, $tk->getLastActivity());
- }
- public function testUpdateTokenDebounce() {
- $tk = new PublicKeyToken();
- $this->config->method('getSystemValueInt')
- ->willReturnCallback(function ($value, $default) {
- return $default;
- });
- $tk->setLastActivity($this->time - 30);
- $this->mapper->expects($this->never())
- ->method('updateActivity')
- ->with($tk, $this->time);
- $this->tokenProvider->updateTokenActivity($tk);
- }
- public function testGetTokenByUser() {
- $this->mapper->expects($this->once())
- ->method('getTokenByUser')
- ->with('uid')
- ->willReturn(['token']);
- $this->assertEquals(['token'], $this->tokenProvider->getTokenByUser('uid'));
- }
- public function testGetPassword() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->assertSame($password, $this->tokenProvider->getPassword($actual, $token));
- }
- public function testGetPasswordPasswordLessToken() {
- $this->expectException(\OC\Authentication\Exceptions\PasswordlessTokenException::class);
- $token = 'token1234';
- $tk = new PublicKeyToken();
- $tk->setPassword(null);
- $this->tokenProvider->getPassword($tk, $token);
- }
- public function testGetPasswordInvalidToken() {
- $this->expectException(\OC\Authentication\Exceptions\InvalidTokenException::class);
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->tokenProvider->getPassword($actual, 'wrongtoken');
- }
- public function testSetPassword() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->mapper->method('getTokenByUser')
- ->with('user')
- ->willReturn([$actual]);
- $newpass = 'newpass';
- $this->mapper->expects($this->once())
- ->method('update')
- ->with($this->callback(function ($token) use ($newpass) {
- return $newpass === $this->tokenProvider->getPassword($token, 'tokentokentokentokentoken');
- }));
- $this->tokenProvider->setPassword($actual, $token, $newpass);
- $this->assertSame($newpass, $this->tokenProvider->getPassword($actual, 'tokentokentokentokentoken'));
- }
- public function testSetPasswordInvalidToken() {
- $this->expectException(\OC\Authentication\Exceptions\InvalidTokenException::class);
- $token = $this->createMock(IToken::class);
- $tokenId = 'token123';
- $password = '123456';
- $this->tokenProvider->setPassword($token, $tokenId, $password);
- }
- public function testInvalidateToken() {
- $this->mapper->expects($this->exactly(2))
- ->method('invalidate')
- ->withConsecutive(
- [hash('sha512', 'token7'.'1f4h9s')],
- [hash('sha512', 'token7')]
- );
- $this->tokenProvider->invalidateToken('token7');
- }
- public function testInvalidateTokenById() {
- $id = 123;
- $this->mapper->expects($this->once())
- ->method('getTokenById')
- ->with($id);
- $this->tokenProvider->invalidateTokenById('uid', $id);
- }
- public function testInvalidateOldTokens() {
- $defaultSessionLifetime = 60 * 60 * 24;
- $defaultRememberMeLifetime = 60 * 60 * 24 * 15;
- $this->config->expects($this->exactly(2))
- ->method('getSystemValueInt')
- ->willReturnMap([
- ['session_lifetime', $defaultSessionLifetime, 150],
- ['remember_login_cookie_lifetime', $defaultRememberMeLifetime, 300],
- ]);
- $this->mapper->expects($this->exactly(2))
- ->method('invalidateOld')
- ->withConsecutive(
- [$this->time - 150],
- [$this->time - 300]
- );
- $this->tokenProvider->invalidateOldTokens();
- }
- public function testInvalidateLastUsedBefore() {
- $this->mapper->expects($this->once())
- ->method('invalidateLastUsedBefore')
- ->with('user', 946684800);
- $this->tokenProvider->invalidateLastUsedBefore('user', 946684800);
- }
- public function testRenewSessionTokenWithoutPassword() {
- $token = 'oldIdtokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = null;
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $oldToken = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->mapper
- ->expects($this->once())
- ->method('getToken')
- ->with(hash('sha512', 'oldIdtokentokentokentoken' . '1f4h9s'))
- ->willReturn($oldToken);
- $this->mapper
- ->expects($this->once())
- ->method('insert')
- ->with($this->callback(function (PublicKeyToken $token) use ($user, $uid, $name) {
- return $token->getUID() === $uid &&
- $token->getLoginName() === $user &&
- $token->getName() === $name &&
- $token->getType() === IToken::DO_NOT_REMEMBER &&
- $token->getLastActivity() === $this->time &&
- $token->getPassword() === null;
- }));
- $this->mapper
- ->expects($this->once())
- ->method('delete')
- ->with($this->callback(function ($token) use ($oldToken) {
- return $token === $oldToken;
- }));
- $this->tokenProvider->renewSessionToken('oldIdtokentokentokentoken', 'newIdtokentokentokentoken');
- }
- public function testRenewSessionTokenWithPassword(): void {
- $token = 'oldIdtokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'password';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $oldToken = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $this->mapper
- ->expects($this->once())
- ->method('getToken')
- ->with(hash('sha512', 'oldIdtokentokentokentoken' . '1f4h9s'))
- ->willReturn($oldToken);
- $this->mapper
- ->expects($this->once())
- ->method('insert')
- ->with($this->callback(function (PublicKeyToken $token) use ($user, $uid, $name): bool {
- return $token->getUID() === $uid &&
- $token->getLoginName() === $user &&
- $token->getName() === $name &&
- $token->getType() === IToken::DO_NOT_REMEMBER &&
- $token->getLastActivity() === $this->time &&
- $token->getPassword() !== null &&
- $this->tokenProvider->getPassword($token, 'newIdtokentokentokentoken') === 'password';
- }));
- $this->mapper
- ->expects($this->once())
- ->method('delete')
- ->with($this->callback(function ($token) use ($oldToken): bool {
- return $token === $oldToken;
- }));
- $this->tokenProvider->renewSessionToken('oldIdtokentokentokentoken', 'newIdtokentokentokentoken');
- }
- public function testGetToken(): void {
- $token = new PublicKeyToken();
- $this->config->method('getSystemValue')
- ->with('secret')
- ->willReturn('mysecret');
- $this->mapper->method('getToken')
- ->with(
- $this->callback(function (string $token) {
- return hash('sha512', 'unhashedTokentokentokentokentoken'.'1f4h9s') === $token;
- })
- )->willReturn($token);
- $this->assertSame($token, $this->tokenProvider->getToken('unhashedTokentokentokentokentoken'));
- }
- public function testGetInvalidToken() {
- $this->expectException(InvalidTokenException::class);
- $this->mapper->expects($this->exactly(2))
- ->method('getToken')
- ->withConsecutive(
- [$this->callback(function (string $token): bool {
- return hash('sha512', 'unhashedTokentokentokentokentoken'.'1f4h9s') === $token;
- })],
- [$this->callback(function (string $token): bool {
- return hash('sha512', 'unhashedTokentokentokentokentoken') === $token;
- })]
- )->willThrowException(new DoesNotExistException('nope'));
- $this->tokenProvider->getToken('unhashedTokentokentokentokentoken');
- }
- public function testGetExpiredToken() {
- $token = 'tokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'passme';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $actual->setExpires(42);
- $this->mapper->method('getToken')
- ->with(
- $this->callback(function (string $token) {
- return hash('sha512', 'tokentokentokentokentoken'.'1f4h9s') === $token;
- })
- )->willReturn($actual);
- try {
- $this->tokenProvider->getToken('tokentokentokentokentoken');
- $this->fail();
- } catch (ExpiredTokenException $e) {
- $this->assertSame($actual, $e->getToken());
- }
- }
- public function testGetTokenById() {
- $token = $this->createMock(PublicKeyToken::class);
- $this->mapper->expects($this->once())
- ->method('getTokenById')
- ->with($this->equalTo(42))
- ->willReturn($token);
- $this->assertSame($token, $this->tokenProvider->getTokenById(42));
- }
- public function testGetInvalidTokenById() {
- $this->expectException(InvalidTokenException::class);
- $this->mapper->expects($this->once())
- ->method('getTokenById')
- ->with($this->equalTo(42))
- ->willThrowException(new DoesNotExistException('nope'));
- $this->tokenProvider->getTokenById(42);
- }
- public function testGetExpiredTokenById() {
- $token = new PublicKeyToken();
- $token->setExpires(42);
- $this->mapper->expects($this->once())
- ->method('getTokenById')
- ->with($this->equalTo(42))
- ->willReturn($token);
- try {
- $this->tokenProvider->getTokenById(42);
- $this->fail();
- } catch (ExpiredTokenException $e) {
- $this->assertSame($token, $e->getToken());
- }
- }
- public function testRotate() {
- $token = 'oldtokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = 'password';
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $new = $this->tokenProvider->rotate($actual, 'oldtokentokentokentokentoken', 'newtokentokentokentokentoken');
- $this->assertSame('password', $this->tokenProvider->getPassword($new, 'newtokentokentokentokentoken'));
- }
- public function testRotateNoPassword() {
- $token = 'oldtokentokentokentokentoken';
- $uid = 'user';
- $user = 'User';
- $password = null;
- $name = 'User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12) Gecko/20101026 Firefox/3.6.12';
- $type = IToken::PERMANENT_TOKEN;
- $actual = $this->tokenProvider->generateToken($token, $uid, $user, $password, $name, $type, IToken::DO_NOT_REMEMBER);
- $oldPrivate = $actual->getPrivateKey();
- $new = $this->tokenProvider->rotate($actual, 'oldtokentokentokentokentoken', 'newtokentokentokentokentoken');
- $newPrivate = $new->getPrivateKey();
- $this->assertNotSame($newPrivate, $oldPrivate);
- $this->assertNull($new->getPassword());
- }
- public function testMarkPasswordInvalidInvalidToken() {
- $token = $this->createMock(IToken::class);
- $this->expectException(InvalidTokenException::class);
- $this->tokenProvider->markPasswordInvalid($token, 'tokenId');
- }
- public function testMarkPasswordInvalid() {
- $token = $this->createMock(PublicKeyToken::class);
- $token->expects($this->once())
- ->method('setPasswordInvalid')
- ->with(true);
- $this->mapper->expects($this->once())
- ->method('update')
- ->with($token);
- $this->tokenProvider->markPasswordInvalid($token, 'tokenId');
- }
- public function testUpdatePasswords() {
- $uid = 'myUID';
- $token1 = $this->tokenProvider->generateToken(
- 'foobetokentokentokentoken',
- $uid,
- $uid,
- 'bar',
- 'random1',
- IToken::PERMANENT_TOKEN,
- IToken::REMEMBER);
- $token2 = $this->tokenProvider->generateToken(
- 'foobartokentokentokentoken',
- $uid,
- $uid,
- 'bar',
- 'random2',
- IToken::PERMANENT_TOKEN,
- IToken::REMEMBER);
- $this->config->method('getSystemValueBool')
- ->willReturnMap([
- ['auth.storeCryptedPassword', true, true],
- ]);
- $this->mapper->method('hasExpiredTokens')
- ->with($uid)
- ->willReturn(true);
- $this->mapper->expects($this->once())
- ->method('getTokenByUser')
- ->with($uid)
- ->willReturn([$token1, $token2]);
- $this->mapper->expects($this->exactly(2))
- ->method('update')
- ->with($this->callback(function (PublicKeyToken $t) use ($token1, $token2) {
- return $t === $token1 || $t === $token2;
- }));
- $this->tokenProvider->updatePasswords($uid, 'bar2');
- }
- }
|