1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099 |
- <?php
- /**
- * @copyright Copyright (c) 2016, ownCloud, Inc.
- *
- * @author Arthur Schiwon <blizzz@arthur-schiwon.de>
- * @author Frédéric Fortier <frederic.fortier@oronospolytechnique.com>
- * @author Joas Schilling <coding@schilljs.com>
- * @author Lukas Reschke <lukas@statuscode.ch>
- * @author Morris Jobke <hey@morrisjobke.de>
- * @author Roeland Jago Douma <roeland@famdouma.nl>
- * @author Thomas Müller <thomas.mueller@tmit.eu>
- * @author Victor Dubiniuk <dubiniuk@owncloud.com>
- * @author Vincent Petry <pvince81@owncloud.com>
- * @author Vinicius Cubas Brand <vinicius@eita.org.br>
- * @author Xuanwo <xuanwo@yunify.com>
- *
- * @license AGPL-3.0
- *
- * This code is free software: you can redistribute it and/or modify
- * it under the terms of the GNU Affero General Public License, version 3,
- * as published by the Free Software Foundation.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU Affero General Public License for more details.
- *
- * You should have received a copy of the GNU Affero General Public License, version 3,
- * along with this program. If not, see <http://www.gnu.org/licenses/>
- *
- */
- namespace OCA\User_LDAP\Tests;
- use OCA\User_LDAP\GroupPluginManager;
- use OCP\GroupInterface;
- use OCA\User_LDAP\Access;
- use OCA\User_LDAP\Connection;
- use OCA\User_LDAP\Group_LDAP as GroupLDAP;
- use OCA\User_LDAP\ILDAPWrapper;
- use OCA\User_LDAP\User\Manager;
- use Test\TestCase;
- /**
- * Class GroupLDAPTest
- *
- * @group DB
- *
- * @package OCA\User_LDAP\Tests
- */
- class Group_LDAPTest extends TestCase {
- /**
- * @return \PHPUnit_Framework_MockObject_MockObject|Access
- */
- private function getAccessMock() {
- static $conMethods;
- static $accMethods;
- if(is_null($conMethods) || is_null($accMethods)) {
- $conMethods = get_class_methods('\OCA\User_LDAP\Connection');
- $accMethods = get_class_methods('\OCA\User_LDAP\Access');
- }
- $lw = $this->createMock(ILDAPWrapper::class);
- $connector = $this->getMockBuilder('\OCA\User_LDAP\Connection')
- ->setMethods($conMethods)
- ->setConstructorArgs([$lw, null, null])
- ->getMock();
- $access = $this->createMock(Access::class);
- $access->expects($this->any())
- ->method('getConnection')
- ->will($this->returnValue($connector));
- return $access;
- }
- private function getPluginManagerMock() {
- return $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')->getMock();
- }
-
- /**
- * @param Access|\PHPUnit_Framework_MockObject_MockObject $access
- */
- private function enableGroups($access) {
- $access->connection = $this->createMock(Connection::class);
- $access->connection->expects($this->any())
- ->method('__get')
- ->will($this->returnCallback(function($name) {
- if($name === 'ldapDynamicGroupMemberURL') {
- return '';
- }
- return 1;
- }));
- }
- public function testCountEmptySearchString() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $groupDN = 'cn=group,dc=foo,dc=bar';
- $this->enableGroups($access);
- $access->expects($this->any())
- ->method('groupname2dn')
- ->will($this->returnValue($groupDN));
- $access->expects($this->any())
- ->method('readAttribute')
- ->willReturnCallback(function($dn) use ($groupDN) {
- if($dn === $groupDN) {
- return [
- 'uid=u11,ou=users,dc=foo,dc=bar',
- 'uid=u22,ou=users,dc=foo,dc=bar',
- 'uid=u33,ou=users,dc=foo,dc=bar',
- 'uid=u34,ou=users,dc=foo,dc=bar'
- ];
- }
- return [];
- });
- // for primary groups
- $access->expects($this->once())
- ->method('countUsers')
- ->will($this->returnValue(2));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $users = $groupBackend->countUsersInGroup('group');
- $this->assertSame(6, $users);
- }
- public function testCountWithSearchString() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $access->expects($this->any())
- ->method('groupname2dn')
- ->will($this->returnValue('cn=group,dc=foo,dc=bar'));
- $access->expects($this->any())
- ->method('fetchListOfUsers')
- ->will($this->returnValue([]));
- $access->expects($this->any())
- ->method('readAttribute')
- ->will($this->returnCallback(function($name) {
- //the search operation will call readAttribute, thus we need
- //to anaylze the "dn". All other times we just need to return
- //something that is neither null or false, but once an array
- //with the users in the group – so we do so all other times for
- //simplicicity.
- if(strpos($name, 'u') === 0) {
- return strpos($name, '3');
- }
- return ['u11', 'u22', 'u33', 'u34'];
- }));
- $access->expects($this->any())
- ->method('dn2username')
- ->will($this->returnCallback(function() {
- return 'foobar' . \OC::$server->getSecureRandom()->generate(7);
- }));
- $groupBackend = new GroupLDAP($access,$pluginManager);
- $users = $groupBackend->countUsersInGroup('group', '3');
- $this->assertSame(2, $users);
- }
- public function testCountUsersWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','countUsersInGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::COUNT_USERS)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('countUsersInGroup')
- ->with('gid', 'search')
- ->willReturn(42);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->countUsersInGroup('gid', 'search'),42);
- }
- public function testGidNumber2NameSuccess() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue([['dn' => ['cn=foo,dc=barfoo,dc=bar']]]));
- $access->expects($this->once())
- ->method('dn2groupname')
- ->with('cn=foo,dc=barfoo,dc=bar')
- ->will($this->returnValue('MyGroup'));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->gidNumber2Name('3117', $userDN);
- $this->assertSame('MyGroup', $group);
- }
- public function testGidNumberID2NameNoGroup() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue(array()));
- $access->expects($this->never())
- ->method('dn2groupname');
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->gidNumber2Name('3117', $userDN);
- $this->assertSame(false, $group);
- }
- public function testGidNumberID2NameNoName() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue([['dn' => ['cn=foo,dc=barfoo,dc=bar']]]));
- $access->expects($this->once())
- ->method('dn2groupname')
- ->will($this->returnValue(false));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->gidNumber2Name('3117', $userDN);
- $this->assertSame(false, $group);
- }
- public function testGetEntryGidNumberValue() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $dn = 'cn=foobar,cn=foo,dc=barfoo,dc=bar';
- $attr = 'gidNumber';
- $access->expects($this->once())
- ->method('readAttribute')
- ->with($dn, $attr)
- ->will($this->returnValue(array('3117')));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $gid = $groupBackend->getGroupGidNumber($dn);
- $this->assertSame('3117', $gid);
- }
- public function testGetEntryGidNumberNoValue() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $dn = 'cn=foobar,cn=foo,dc=barfoo,dc=bar';
- $attr = 'gidNumber';
- $access->expects($this->once())
- ->method('readAttribute')
- ->with($dn, $attr)
- ->will($this->returnValue(false));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $gid = $groupBackend->getGroupGidNumber($dn);
- $this->assertSame(false, $gid);
- }
- public function testPrimaryGroupID2NameSuccess() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('getSID')
- ->with($userDN)
- ->will($this->returnValue('S-1-5-21-249921958-728525901-1594176202'));
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue([['dn' => ['cn=foo,dc=barfoo,dc=bar']]]));
- $access->expects($this->once())
- ->method('dn2groupname')
- ->with('cn=foo,dc=barfoo,dc=bar')
- ->will($this->returnValue('MyGroup'));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->primaryGroupID2Name('3117', $userDN);
- $this->assertSame('MyGroup', $group);
- }
- public function testPrimaryGroupID2NameNoSID() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('getSID')
- ->with($userDN)
- ->will($this->returnValue(false));
- $access->expects($this->never())
- ->method('searchGroups');
- $access->expects($this->never())
- ->method('dn2groupname');
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->primaryGroupID2Name('3117', $userDN);
- $this->assertSame(false, $group);
- }
- public function testPrimaryGroupID2NameNoGroup() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('getSID')
- ->with($userDN)
- ->will($this->returnValue('S-1-5-21-249921958-728525901-1594176202'));
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue(array()));
- $access->expects($this->never())
- ->method('dn2groupname');
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->primaryGroupID2Name('3117', $userDN);
- $this->assertSame(false, $group);
- }
- public function testPrimaryGroupID2NameNoName() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $userDN = 'cn=alice,cn=foo,dc=barfoo,dc=bar';
- $access->expects($this->once())
- ->method('getSID')
- ->with($userDN)
- ->will($this->returnValue('S-1-5-21-249921958-728525901-1594176202'));
- $access->expects($this->once())
- ->method('searchGroups')
- ->will($this->returnValue([['dn' => ['cn=foo,dc=barfoo,dc=bar']]]));
- $access->expects($this->once())
- ->method('dn2groupname')
- ->will($this->returnValue(false));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $group = $groupBackend->primaryGroupID2Name('3117', $userDN);
- $this->assertSame(false, $group);
- }
- public function testGetEntryGroupIDValue() {
- //tests getEntryGroupID via getGroupPrimaryGroupID
- //which is basically identical to getUserPrimaryGroupIDs
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $dn = 'cn=foobar,cn=foo,dc=barfoo,dc=bar';
- $attr = 'primaryGroupToken';
- $access->expects($this->once())
- ->method('readAttribute')
- ->with($dn, $attr)
- ->will($this->returnValue(array('3117')));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $gid = $groupBackend->getGroupPrimaryGroupID($dn);
- $this->assertSame('3117', $gid);
- }
- public function testGetEntryGroupIDNoValue() {
- //tests getEntryGroupID via getGroupPrimaryGroupID
- //which is basically identical to getUserPrimaryGroupIDs
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $dn = 'cn=foobar,cn=foo,dc=barfoo,dc=bar';
- $attr = 'primaryGroupToken';
- $access->expects($this->once())
- ->method('readAttribute')
- ->with($dn, $attr)
- ->will($this->returnValue(false));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $gid = $groupBackend->getGroupPrimaryGroupID($dn);
- $this->assertSame(false, $gid);
- }
- /**
- * tests whether Group Backend behaves correctly when cache with uid and gid
- * is hit
- */
- public function testInGroupHitsUidGidCache() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $uid = 'someUser';
- $gid = 'someGroup';
- $cacheKey = 'inGroup'.$uid.':'.$gid;
- $access->connection->expects($this->once())
- ->method('getFromCache')
- ->with($cacheKey)
- ->will($this->returnValue(true));
- $access->expects($this->never())
- ->method('username2dn');
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $groupBackend->inGroup($uid, $gid);
- }
- public function testGetGroupsWithOffset() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $access->expects($this->once())
- ->method('nextcloudGroupNames')
- ->will($this->returnValue(array('group1', 'group2')));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $groups = $groupBackend->getGroups('', 2, 2);
- $this->assertSame(2, count($groups));
- }
- /**
- * tests that a user listing is complete, if all it's members have the group
- * as their primary.
- */
- public function testUsersInGroupPrimaryMembersOnly() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $access->connection->expects($this->any())
- ->method('getFromCache')
- ->will($this->returnValue(null));
- $access->expects($this->any())
- ->method('readAttribute')
- ->will($this->returnCallback(function($dn, $attr) {
- if($attr === 'primaryGroupToken') {
- return array(1337);
- } else if($attr === 'gidNumber') {
- return [4211];
- }
- return array();
- }));
- $access->expects($this->any())
- ->method('groupname2dn')
- ->will($this->returnValue('cn=foobar,dc=foo,dc=bar'));
- $access->expects($this->exactly(2))
- ->method('nextcloudUserNames')
- ->willReturnOnConsecutiveCalls(['lisa', 'bart', 'kira', 'brad'], ['walle', 'dino', 'xenia']);
- $access->userManager = $this->createMock(Manager::class);
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $users = $groupBackend->usersInGroup('foobar');
- $this->assertSame(7, count($users));
- }
- /**
- * tests that a user listing is complete, if all it's members have the group
- * as their primary.
- */
- public function testUsersInGroupPrimaryAndUnixMembers() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $access->connection->expects($this->any())
- ->method('getFromCache')
- ->will($this->returnValue(null));
- $access->expects($this->any())
- ->method('readAttribute')
- ->will($this->returnCallback(function($dn, $attr) {
- if($attr === 'primaryGroupToken') {
- return array(1337);
- }
- return array();
- }));
- $access->expects($this->any())
- ->method('groupname2dn')
- ->will($this->returnValue('cn=foobar,dc=foo,dc=bar'));
- $access->expects($this->once())
- ->method('nextcloudUserNames')
- ->will($this->returnValue(array('lisa', 'bart', 'kira', 'brad')));
- $access->userManager = $this->createMock(Manager::class);
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $users = $groupBackend->usersInGroup('foobar');
- $this->assertSame(4, count($users));
- }
- /**
- * tests that a user counting is complete, if all it's members have the group
- * as their primary.
- */
- public function testCountUsersInGroupPrimaryMembersOnly() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $access->connection->expects($this->any())
- ->method('getFromCache')
- ->will($this->returnValue(null));
- $access->expects($this->any())
- ->method('readAttribute')
- ->will($this->returnCallback(function($dn, $attr) {
- if($attr === 'primaryGroupToken') {
- return array(1337);
- }
- return array();
- }));
- $access->expects($this->any())
- ->method('groupname2dn')
- ->will($this->returnValue('cn=foobar,dc=foo,dc=bar'));
- $access->expects($this->once())
- ->method('countUsers')
- ->will($this->returnValue(4));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $users = $groupBackend->countUsersInGroup('foobar');
- $this->assertSame(4, $users);
- }
- public function testGetUserGroupsMemberOf() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $this->enableGroups($access);
- $dn = 'cn=userX,dc=foobar';
- $access->connection->hasPrimaryGroups = false;
- $access->connection->hasGidNumber = false;
- $access->expects($this->any())
- ->method('username2dn')
- ->will($this->returnValue($dn));
- $access->expects($this->exactly(3))
- ->method('readAttribute')
- ->will($this->onConsecutiveCalls(['cn=groupA,dc=foobar', 'cn=groupB,dc=foobar'], [], []));
- $access->expects($this->exactly(2))
- ->method('dn2groupname')
- ->will($this->returnArgument(0));
- $access->expects($this->exactly(1))
- ->method('groupsMatchFilter')
- ->will($this->returnArgument(0));
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $groups = $groupBackend->getUserGroups('userX');
- $this->assertSame(2, count($groups));
- }
- public function testGetUserGroupsMemberOfDisabled() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $access->connection = $this->createMock(Connection::class);
- $access->connection->expects($this->any())
- ->method('__get')
- ->will($this->returnCallback(function($name) {
- if($name === 'useMemberOfToDetectMembership') {
- return 0;
- } else if($name === 'ldapDynamicGroupMemberURL') {
- return '';
- }
- return 1;
- }));
- $dn = 'cn=userX,dc=foobar';
- $access->connection->hasPrimaryGroups = false;
- $access->connection->hasGidNumber = false;
- $access->expects($this->once())
- ->method('username2dn')
- ->will($this->returnValue($dn));
- $access->expects($this->never())
- ->method('readAttribute')
- ->with($dn, 'memberOf');
- $access->expects($this->once())
- ->method('nextcloudGroupNames')
- ->will($this->returnValue([]));
- $access->expects($this->any())
- ->method('groupsMatchFilter')
- ->willReturnArgument(0);
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $groupBackend->getUserGroups('userX');
- }
- public function testGetGroupsByMember() {
- $access = $this->getAccessMock();
- $pluginManager = $this->getPluginManagerMock();
- $access->connection = $this->createMock(Connection::class);
- $access->connection->expects($this->any())
- ->method('__get')
- ->will($this->returnCallback(function($name) {
- switch($name) {
- case 'useMemberOfToDetectMembership':
- return 0;
- case 'ldapDynamicGroupMemberURL':
- return '';
- case 'ldapNestedGroups':
- return false;
- case 'ldapGroupMemberAssocAttr':
- return 'member';
- }
- return 1;
- }));
- $dn = 'cn=userX,dc=foobar';
- $access->connection->hasPrimaryGroups = false;
- $access->connection->hasGidNumber = false;
- $access->expects($this->exactly(2))
- ->method('username2dn')
- ->will($this->returnValue($dn));
- $access->expects($this->never())
- ->method('readAttribute')
- ->with($dn, 'memberOf');
- $group1 = [
- 'cn' => 'group1',
- 'dn' => ['cn=group1,ou=groups,dc=domain,dc=com'],
- ];
- $group2 = [
- 'cn' => 'group2',
- 'dn' => ['cn=group2,ou=groups,dc=domain,dc=com'],
- ];
- $access->expects($this->once())
- ->method('nextcloudGroupNames')
- ->with([$group1, $group2])
- ->will($this->returnValue(['group1', 'group2']));
- $access->expects($this->once())
- ->method('fetchListOfGroups')
- ->will($this->returnValue([$group1, $group2]));
- $access->expects($this->any())
- ->method('groupsMatchFilter')
- ->willReturnArgument(0);
- $groupBackend = new GroupLDAP($access, $pluginManager);
- $groups = $groupBackend->getUserGroups('userX');
- $this->assertEquals(['group1', 'group2'], $groups);
- $groupsAgain = $groupBackend->getUserGroups('userX');
- $this->assertEquals(['group1', 'group2'], $groupsAgain);
- }
- public function testCreateGroupWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','createGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::CREATE_GROUP)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('createGroup')
- ->with('gid')
- ->willReturn('result');
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->createGroup('gid'),true);
- }
- /**
- * @expectedException \Exception
- */
- public function testCreateGroupFailing() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions', 'createGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::CREATE_GROUP)
- ->willReturn(false);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $ldap->createGroup('gid');
- }
- public function testDeleteGroupWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','deleteGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::DELETE_GROUP)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('deleteGroup')
- ->with('gid')
- ->willReturn('result');
- $mapper = $this->getMockBuilder('\OCA\User_LDAP\Mapping\GroupMapping')
- ->setMethods(['unmap'])
- ->disableOriginalConstructor()
- ->getMock();
- $access = $this->getAccessMock();
- $access->expects($this->any())
- ->method('getGroupMapper')
- ->will($this->returnValue($mapper));
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->deleteGroup('gid'),'result');
- }
- /**
- * @expectedException \Exception
- */
- public function testDeleteGroupFailing() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions', 'deleteGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::DELETE_GROUP)
- ->willReturn(false);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $ldap->deleteGroup('gid');
- }
- public function testAddToGroupWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','addToGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::ADD_TO_GROUP)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('addToGroup')
- ->with('uid', 'gid')
- ->willReturn('result');
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->addToGroup('uid', 'gid'),'result');
- }
- /**
- * @expectedException \Exception
- */
- public function testAddToGroupFailing() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions', 'addToGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::ADD_TO_GROUP)
- ->willReturn(false);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $ldap->addToGroup('uid', 'gid');
- }
- public function testRemoveFromGroupWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','removeFromGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::REMOVE_FROM_GROUP)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('removeFromGroup')
- ->with('uid', 'gid')
- ->willReturn('result');
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->removeFromGroup('uid', 'gid'),'result');
- }
- /**
- * @expectedException \Exception
- */
- public function testRemoveFromGroupFailing() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions', 'removeFromGroup'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::REMOVE_FROM_GROUP)
- ->willReturn(false);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $ldap->removeFromGroup('uid', 'gid');
- }
- public function testGetGroupDetailsWithPlugin() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions','getGroupDetails'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::GROUP_DETAILS)
- ->willReturn(true);
- $pluginManager->expects($this->once())
- ->method('getGroupDetails')
- ->with('gid')
- ->willReturn('result');
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertEquals($ldap->getGroupDetails('gid'),'result');
- }
- /**
- * @expectedException \Exception
- */
- public function testGetGroupDetailsFailing() {
- /** @var GroupPluginManager|\PHPUnit_Framework_MockObject_MockObject $pluginManager */
- $pluginManager = $this->getMockBuilder('\OCA\User_LDAP\GroupPluginManager')
- ->setMethods(['implementsActions', 'getGroupDetails'])
- ->getMock();
- $pluginManager->expects($this->once())
- ->method('implementsActions')
- ->with(GroupInterface::GROUP_DETAILS)
- ->willReturn(false);
- $access = $this->getAccessMock();
- $access->connection = $this->createMock(Connection::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $ldap->getGroupDetails('gid');
- }
- public function groupMemberProvider() {
- $base = 'dc=species,dc=earth';
- $groups0 = [
- 'uid=3723,' . $base,
- 'uid=8372,' . $base,
- 'uid=8427,' . $base,
- 'uid=2333,' . $base,
- 'uid=4754,' . $base,
- ];
- $groups1 = [
- '3723',
- '8372',
- '8427',
- '2333',
- '4754',
- ];
- $groups2Nested = ['6642', '1424'];
- $expGroups2 = array_merge($groups1, $groups2Nested);
- return [
- [ #0 – test DNs
- 'cn=Birds,' . $base,
- $groups0,
- ['cn=Birds,' . $base => $groups0]
- ],
- [ #1 – test uids
- 'cn=Birds,' . $base,
- $groups1,
- ['cn=Birds,' . $base => $groups1]
- ],
- ];
- }
- /**
- * @param string $groupDN
- * @param string[] $expectedMembers
- * @param array $groupsInfo
- * @dataProvider groupMemberProvider
- */
- public function testGroupMembers($groupDN, $expectedMembers, $groupsInfo = null) {
- $access = $this->getAccessMock();
- $access->expects($this->any())
- ->method('readAttribute')
- ->willReturnCallback(function($group) use ($groupDN, $expectedMembers, $groupsInfo) {
- if(isset($groupsInfo[$group])) {
- return $groupsInfo[$group];
- }
- return [];
- });
- $access->connection = $this->createMock(Connection::class);
- if(count($groupsInfo) > 1) {
- $access->connection->expects($this->any())
- ->method('__get')
- ->willReturnCallback(function($name) {
- if($name === 'ldapNestedGroups') {
- return 1;
- }
- return null;
- });
- }
- /** @var GroupPluginManager $pluginManager */
- $pluginManager = $this->createMock(GroupPluginManager::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $resultingMembers = $this->invokePrivate($ldap, '_groupMembers', [$groupDN]);
- $this->assertEquals($expectedMembers, $resultingMembers, '', 0.0, 10, true);
- }
- public function displayNameProvider() {
- return [
- ['Graphic Novelists', ['Graphic Novelists']],
- ['', false],
- ];
- }
- /**
- * @dataProvider displayNameProvider
- */
- public function testGetDisplayName(string $expected, $ldapResult) {
- $gid = 'graphic_novelists';
- $access = $this->getAccessMock();
- $access->expects($this->atLeastOnce())
- ->method('readAttribute')
- ->willReturn($ldapResult);
- $access->connection = $this->createMock(Connection::class);
- $access->connection->expects($this->any())
- ->method('__get')
- ->willReturnCallback(function($name) {
- if($name === 'ldapGroupMemberAssocAttr') {
- return 'member';
- } else if($name === 'ldapGroupFilter') {
- return 'objectclass=nextcloudGroup';
- } else if($name === 'ldapGroupDisplayName') {
- return 'cn';
- }
- return null;
- });
- /** @var GroupPluginManager $pluginManager */
- $pluginManager = $this->createMock(GroupPluginManager::class);
- $ldap = new GroupLDAP($access, $pluginManager);
- $this->assertSame($expected, $ldap->getDisplayName($gid));
- }
- }
|