탐색 도움말
로그인
RISCI_ATOM
/
nextcloud-server
의 미러 https://github.com/nextcloud/server.git
1
0
포크 0
파일 이슈 23 위키
브렌치: master
브랜치 태그
nextcloud-serve...
/
tests
/
lib
/
Security
/
Ip
/
RemoteAddressTest.php

RemoteAddressTest.php 2.2 KB
고유링크 히스토리 Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. /**
    6. 

  6.  * SPDX-FileCopyrightText: 2024 Nextcloud GmbH and Nextcloud contributors
    7. 

  7.  * SPDX-License-Identifier: AGPL-3.0-or-later
    8. 

  8.  */
    9. 

  9. 

  10. namespace Test\Security\Ip;
    11. 

  11. 

  12. use OC\Security\Ip\RemoteAddress;
    13. 

  13. use OCP\IConfig;
    14. 

  14. use OCP\IRequest;
    15. 

  15. 

  16. class RemoteAddressTest extends \Test\TestCase {
    17. 

  17. 	private IConfig $config;
    18. 

  18. 	private IRequest $request;
    19. 

  19. 

  20. 	protected function setUp(): void {
    21. 

  21. 		parent::setUp();
    22. 

  22. 		$this->config = $this->createMock(IConfig::class);
    23. 

  23. 		$this->request = $this->createMock(IRequest::class);
    24. 

  24. 	}
    25. 

  25. 

  26. 	/**
    27. 

  27. 	 * @param mixed $allowedRanges
    28. 

  28. 	 * @dataProvider dataProvider
    29. 

  29. 	 */
    30. 

  30. 	public function testAllowedIps(string $remoteIp, $allowedRanges, bool $expected): void {
    31. 

  31. 		$this->request
    32. 

  32. 			->method('getRemoteAddress')
    33. 

  33. 			->willReturn($remoteIp);
    34. 

  34. 		$this->config
    35. 

  35. 			->method('getSystemValue')
    36. 

  36. 			->with('allowed_admin_ranges', false)
    37. 

  37. 			->willReturn($allowedRanges);
    38. 

  38. 

  39. 		$remoteAddress = new RemoteAddress($this->config, $this->request);
    40. 

  40. 

  41. 		$this->assertEquals($expected, $remoteAddress->allowsAdminActions());
    42. 

  42. 	}
    43. 

  43. 

  44. 	/**
    45. 

  45. 	 * @return array<string, mixed, bool>
    46. 

  46. 	 */
    47. 

  47. 	public function dataProvider(): array {
    48. 

  48. 		return [
    49. 

  49. 			// No IP (ie. CLI)
    50. 

  50. 			['', ['192.168.1.2/24'], true],
    51. 

  51. 			['', ['fe80/8'], true],
    52. 

  52. 			// No configuration
    53. 

  53. 			['1.2.3.4', false, true],
    54. 

  54. 			['1234:4567:8910::', false, true],
    55. 

  55. 			// v6 Zone ID
    56. 

  56. 			['fe80::1fc4:15d8:78db:2319%enp4s0', false, true],
    57. 

  57. 			// Empty configuration
    58. 

  58. 			['1.2.3.4', [], true],
    59. 

  59. 			['1234:4567:8910::', [], true],
    60. 

  60. 			// Invalid configuration
    61. 

  61. 			['1.2.3.4', 'hello', true],
    62. 

  62. 			['1234:4567:8910::', 'world', true],
    63. 

  63. 			// Mixed configuration
    64. 

  64. 			['192.168.1.5', ['1.2.3.*', '1234::/8'], false],
    65. 

  65. 			['::1', ['127.0.0.1', '1234::/8'], false],
    66. 

  66. 			['192.168.1.5', ['192.168.1.0/24', '1234::/8'], true],
    67. 

  67. 			// Allowed IP
    68. 

  68. 			['1.2.3.4', ['1.2.3.*'], true],
    69. 

  69. 			['fc00:1:2:3::1', ['fc00::/7'], true],
    70. 

  70. 			['1.2.3.4', ['192.168.1.2/24', '1.2.3.0/24'], true],
    71. 

  71. 			['1234:4567:8910::1', ['fe80::/8','1234:4567::/16'], true],
    72. 

  72. 			// Blocked IP
    73. 

  73. 			['192.168.1.5', ['1.2.3.*'], false],
    74. 

  74. 			['9234:4567:8910::', ['1234:4567::1'], false],
    75. 

  75. 			['192.168.2.1', ['192.168.1.2/24', '1.2.3.0/24'], false],
    76. 

  76. 			['9234:4567:8910::', ['fe80::/8','1234:4567::/16'], false],
    77. 

  77. 		];
    78. 

  78. 	}
    79. 

  79. }
    80.