2008-09-21 17:28:12 +04:00
|
|
|
# Redmine - project management software
|
2012-05-05 16:56:53 +04:00
|
|
|
# Copyright (C) 2006-2012 Jean-Philippe Lang
|
2008-09-21 17:28:12 +04:00
|
|
|
#
|
|
|
|
# This program is free software; you can redistribute it and/or
|
|
|
|
# modify it under the terms of the GNU General Public License
|
|
|
|
# as published by the Free Software Foundation; either version 2
|
|
|
|
# of the License, or (at your option) any later version.
|
2011-08-29 12:15:27 +04:00
|
|
|
#
|
2008-09-21 17:28:12 +04:00
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
# GNU General Public License for more details.
|
2011-08-29 12:15:27 +04:00
|
|
|
#
|
2008-09-21 17:28:12 +04:00
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
# along with this program; if not, write to the Free Software
|
|
|
|
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
|
2010-12-13 02:24:34 +03:00
|
|
|
require File.expand_path('../../test_helper', __FILE__)
|
2008-09-21 17:28:12 +04:00
|
|
|
|
2009-09-13 21:14:35 +04:00
|
|
|
class AuthSourceLdapTest < ActiveSupport::TestCase
|
2012-03-01 20:26:10 +04:00
|
|
|
include Redmine::I18n
|
2010-02-26 11:42:40 +03:00
|
|
|
fixtures :auth_sources
|
2011-08-29 12:15:27 +04:00
|
|
|
|
2008-09-21 17:28:12 +04:00
|
|
|
def setup
|
|
|
|
end
|
2011-08-29 12:15:27 +04:00
|
|
|
|
2008-09-21 17:28:12 +04:00
|
|
|
def test_create
|
|
|
|
a = AuthSourceLdap.new(:name => 'My LDAP', :host => 'ldap.example.net', :port => 389, :base_dn => 'dc=example,dc=net', :attr_login => 'sAMAccountName')
|
|
|
|
assert a.save
|
|
|
|
end
|
2011-08-29 12:15:27 +04:00
|
|
|
|
2008-09-21 17:28:12 +04:00
|
|
|
def test_should_strip_ldap_attributes
|
|
|
|
a = AuthSourceLdap.new(:name => 'My LDAP', :host => 'ldap.example.net', :port => 389, :base_dn => 'dc=example,dc=net', :attr_login => 'sAMAccountName',
|
|
|
|
:attr_firstname => 'givenName ')
|
|
|
|
assert a.save
|
|
|
|
assert_equal 'givenName', a.reload.attr_firstname
|
|
|
|
end
|
2010-02-16 19:40:50 +03:00
|
|
|
|
2011-08-29 18:03:57 +04:00
|
|
|
def test_replace_port_zero_to_389
|
|
|
|
a = AuthSourceLdap.new(
|
|
|
|
:name => 'My LDAP', :host => 'ldap.example.net', :port => 0,
|
|
|
|
:base_dn => 'dc=example,dc=net', :attr_login => 'sAMAccountName',
|
|
|
|
:attr_firstname => 'givenName ')
|
|
|
|
assert a.save
|
|
|
|
assert_equal 389, a.port
|
|
|
|
end
|
|
|
|
|
2012-03-01 20:26:10 +04:00
|
|
|
def test_filter_should_be_validated
|
|
|
|
set_language_if_valid 'en'
|
|
|
|
|
|
|
|
a = AuthSourceLdap.new(:name => 'My LDAP', :host => 'ldap.example.net', :port => 389, :attr_login => 'sn')
|
|
|
|
a.filter = "(mail=*@redmine.org"
|
|
|
|
assert !a.valid?
|
2012-03-24 18:07:42 +04:00
|
|
|
assert_include "LDAP filter is invalid", a.errors.full_messages
|
2012-03-01 20:26:10 +04:00
|
|
|
|
|
|
|
a.filter = "(mail=*@redmine.org)"
|
|
|
|
assert a.valid?
|
|
|
|
end
|
|
|
|
|
2010-02-16 19:40:50 +03:00
|
|
|
if ldap_configured?
|
|
|
|
context '#authenticate' do
|
|
|
|
setup do
|
2010-02-26 11:42:40 +03:00
|
|
|
@auth = AuthSourceLdap.find(1)
|
2012-02-20 01:39:29 +04:00
|
|
|
@auth.update_attribute :onthefly_register, true
|
2010-02-16 19:40:50 +03:00
|
|
|
end
|
|
|
|
|
|
|
|
context 'with a valid LDAP user' do
|
2010-02-26 11:50:37 +03:00
|
|
|
should 'return the user attributes' do
|
2010-02-26 12:13:12 +03:00
|
|
|
attributes = @auth.authenticate('example1','123456')
|
|
|
|
assert attributes.is_a?(Hash), "An hash was not returned"
|
2010-02-26 11:50:37 +03:00
|
|
|
assert_equal 'Example', attributes[:firstname]
|
|
|
|
assert_equal 'One', attributes[:lastname]
|
|
|
|
assert_equal 'example1@redmine.org', attributes[:mail]
|
|
|
|
assert_equal @auth.id, attributes[:auth_source_id]
|
|
|
|
attributes.keys.each do |attribute|
|
|
|
|
assert User.new.respond_to?("#{attribute}="), "Unexpected :#{attribute} attribute returned"
|
|
|
|
end
|
2010-02-16 19:40:50 +03:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'with an invalid LDAP user' do
|
|
|
|
should 'return nil' do
|
|
|
|
assert_equal nil, @auth.authenticate('nouser','123456')
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'without a login' do
|
|
|
|
should 'return nil' do
|
|
|
|
assert_equal nil, @auth.authenticate('','123456')
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'without a password' do
|
|
|
|
should 'return nil' do
|
|
|
|
assert_equal nil, @auth.authenticate('edavis','')
|
|
|
|
end
|
|
|
|
end
|
2011-08-29 12:15:27 +04:00
|
|
|
|
2012-03-01 20:26:10 +04:00
|
|
|
context 'without filter' do
|
|
|
|
should 'return any user' do
|
|
|
|
assert @auth.authenticate('example1','123456')
|
|
|
|
assert @auth.authenticate('edavis', '123456')
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'with filter' do
|
|
|
|
setup do
|
|
|
|
@auth.filter = "(mail=*@redmine.org)"
|
|
|
|
end
|
|
|
|
|
|
|
|
should 'return user who matches the filter only' do
|
|
|
|
assert @auth.authenticate('example1','123456')
|
|
|
|
assert_nil @auth.authenticate('edavis', '123456')
|
|
|
|
end
|
|
|
|
end
|
2010-02-16 19:40:50 +03:00
|
|
|
end
|
2012-07-07 13:36:04 +04:00
|
|
|
|
|
|
|
def test_authenticate_should_timeout
|
|
|
|
auth_source = AuthSourceLdap.find(1)
|
|
|
|
auth_source.timeout = 1
|
|
|
|
def auth_source.initialize_ldap_con(*args); sleep(5); end
|
|
|
|
|
|
|
|
assert_raise AuthSourceTimeoutException do
|
|
|
|
auth_source.authenticate 'example1', '123456'
|
|
|
|
end
|
|
|
|
end
|
2012-12-26 15:23:53 +04:00
|
|
|
|
|
|
|
def test_search_should_return_matching_entries
|
|
|
|
results = AuthSource.search("exa")
|
|
|
|
assert_equal 1, results.size
|
|
|
|
result = results.first
|
|
|
|
assert_kind_of Hash, result
|
|
|
|
assert_equal "example1", result[:login]
|
|
|
|
assert_equal "Example", result[:firstname]
|
|
|
|
assert_equal "One", result[:lastname]
|
|
|
|
assert_equal "example1@redmine.org", result[:mail]
|
|
|
|
assert_equal 1, result[:auth_source_id]
|
|
|
|
end
|
|
|
|
|
|
|
|
def test_search_with_no_match_should_return_an_empty_array
|
|
|
|
results = AuthSource.search("wro")
|
|
|
|
assert_equal [], results
|
|
|
|
end
|
|
|
|
|
|
|
|
def test_search_with_exception_should_return_an_empty_array
|
|
|
|
Net::LDAP.stubs(:new).raises(Net::LDAP::LdapError, 'Cannot connect')
|
|
|
|
|
|
|
|
results = AuthSource.search("exa")
|
|
|
|
assert_equal [], results
|
|
|
|
end
|
2010-02-16 19:40:50 +03:00
|
|
|
else
|
|
|
|
puts '(Test LDAP server not configured)'
|
|
|
|
end
|
2008-09-21 17:28:12 +04:00
|
|
|
end
|