2012-07-07 09:40:01 +04:00
|
|
|
# Redmine - project management software
|
2013-01-12 13:29:31 +04:00
|
|
|
# Copyright (C) 2006-2013 Jean-Philippe Lang
|
2012-07-07 09:40:01 +04:00
|
|
|
#
|
|
|
|
# This program is free software; you can redistribute it and/or
|
|
|
|
# modify it under the terms of the GNU General Public License
|
|
|
|
# as published by the Free Software Foundation; either version 2
|
|
|
|
# of the License, or (at your option) any later version.
|
|
|
|
#
|
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
# GNU General Public License for more details.
|
|
|
|
#
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
# along with this program; if not, write to the Free Software
|
|
|
|
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
|
|
|
|
require File.expand_path('../../test_helper', __FILE__)
|
|
|
|
|
2012-07-07 13:26:26 +04:00
|
|
|
class AccountControllerOpenidTest < ActionController::TestCase
|
2012-07-07 09:40:01 +04:00
|
|
|
tests AccountController
|
|
|
|
fixtures :users, :roles
|
|
|
|
|
|
|
|
def setup
|
|
|
|
User.current = nil
|
2012-07-07 09:41:58 +04:00
|
|
|
Setting.openid = '1'
|
|
|
|
end
|
|
|
|
|
|
|
|
def teardown
|
|
|
|
Setting.openid = '0'
|
2012-07-07 09:40:01 +04:00
|
|
|
end
|
|
|
|
|
|
|
|
if Object.const_defined?(:OpenID)
|
|
|
|
|
|
|
|
def test_login_with_openid_for_existing_user
|
|
|
|
Setting.self_registration = '3'
|
|
|
|
existing_user = User.new(:firstname => 'Cool',
|
|
|
|
:lastname => 'User',
|
|
|
|
:mail => 'user@somedomain.com',
|
|
|
|
:identity_url => 'http://openid.example.com/good_user')
|
|
|
|
existing_user.login = 'cool_user'
|
|
|
|
assert existing_user.save!
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
post :login, :openid_url => existing_user.identity_url
|
|
|
|
assert_redirected_to '/my/page'
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_invalid_openid_provider
|
|
|
|
Setting.self_registration = '0'
|
|
|
|
post :login, :openid_url => 'http;//openid.example.com/good_user'
|
|
|
|
assert_redirected_to home_url
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_for_existing_non_active_user
|
|
|
|
Setting.self_registration = '2'
|
|
|
|
existing_user = User.new(:firstname => 'Cool',
|
|
|
|
:lastname => 'User',
|
|
|
|
:mail => 'user@somedomain.com',
|
|
|
|
:identity_url => 'http://openid.example.com/good_user',
|
|
|
|
:status => User::STATUS_REGISTERED)
|
|
|
|
existing_user.login = 'cool_user'
|
|
|
|
assert existing_user.save!
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
post :login, :openid_url => existing_user.identity_url
|
|
|
|
assert_redirected_to '/login'
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_with_new_user_created
|
|
|
|
Setting.self_registration = '3'
|
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_user'
|
|
|
|
assert_redirected_to '/my/account'
|
|
|
|
user = User.find_by_login('cool_user')
|
|
|
|
assert user
|
|
|
|
assert_equal 'Cool', user.firstname
|
|
|
|
assert_equal 'User', user.lastname
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_with_new_user_and_self_registration_off
|
|
|
|
Setting.self_registration = '0'
|
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_user'
|
|
|
|
assert_redirected_to home_url
|
|
|
|
user = User.find_by_login('cool_user')
|
2012-07-07 09:42:52 +04:00
|
|
|
assert_nil user
|
2012-07-07 09:40:01 +04:00
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_with_new_user_created_with_email_activation_should_have_a_token
|
|
|
|
Setting.self_registration = '1'
|
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_user'
|
|
|
|
assert_redirected_to '/login'
|
|
|
|
user = User.find_by_login('cool_user')
|
|
|
|
assert user
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
token = Token.find_by_user_id_and_action(user.id, 'register')
|
|
|
|
assert token
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_with_new_user_created_with_manual_activation
|
|
|
|
Setting.self_registration = '2'
|
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_user'
|
|
|
|
assert_redirected_to '/login'
|
|
|
|
user = User.find_by_login('cool_user')
|
|
|
|
assert user
|
|
|
|
assert_equal User::STATUS_REGISTERED, user.status
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_login_with_openid_with_new_user_with_conflict_should_register
|
|
|
|
Setting.self_registration = '3'
|
|
|
|
existing_user = User.new(:firstname => 'Cool', :lastname => 'User', :mail => 'user@somedomain.com')
|
|
|
|
existing_user.login = 'cool_user'
|
|
|
|
assert existing_user.save!
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_user'
|
|
|
|
assert_response :success
|
|
|
|
assert_template 'register'
|
|
|
|
assert assigns(:user)
|
|
|
|
assert_equal 'http://openid.example.com/good_user', assigns(:user)[:identity_url]
|
|
|
|
end
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 10:22:35 +04:00
|
|
|
def test_login_with_openid_with_new_user_with_missing_information_should_register
|
|
|
|
Setting.self_registration = '3'
|
2013-03-06 12:41:48 +04:00
|
|
|
|
2012-07-07 10:22:35 +04:00
|
|
|
post :login, :openid_url => 'http://openid.example.com/good_blank_user'
|
|
|
|
assert_response :success
|
|
|
|
assert_template 'register'
|
|
|
|
assert assigns(:user)
|
|
|
|
assert_equal 'http://openid.example.com/good_blank_user', assigns(:user)[:identity_url]
|
|
|
|
|
|
|
|
assert_select 'input[name=?]', 'user[login]'
|
|
|
|
assert_select 'input[name=?]', 'user[password]'
|
|
|
|
assert_select 'input[name=?]', 'user[password_confirmation]'
|
|
|
|
assert_select 'input[name=?][value=?]', 'user[identity_url]', 'http://openid.example.com/good_blank_user'
|
|
|
|
end
|
|
|
|
|
2013-12-21 16:04:38 +04:00
|
|
|
def test_post_login_should_not_verify_token_when_using_open_id
|
|
|
|
ActionController::Base.allow_forgery_protection = true
|
|
|
|
AccountController.any_instance.stubs(:using_open_id?).returns(true)
|
|
|
|
AccountController.any_instance.stubs(:authenticate_with_open_id).returns(true)
|
|
|
|
post :login
|
|
|
|
assert_response 200
|
|
|
|
ensure
|
|
|
|
ActionController::Base.allow_forgery_protection = false
|
|
|
|
end
|
|
|
|
|
2012-07-07 10:22:35 +04:00
|
|
|
def test_register_after_login_failure_should_not_require_user_to_enter_a_password
|
|
|
|
Setting.self_registration = '3'
|
|
|
|
|
|
|
|
assert_difference 'User.count' do
|
|
|
|
post :register, :user => {
|
|
|
|
:login => 'good_blank_user',
|
|
|
|
:password => '',
|
|
|
|
:password_confirmation => '',
|
|
|
|
:firstname => 'Cool',
|
|
|
|
:lastname => 'User',
|
|
|
|
:mail => 'user@somedomain.com',
|
|
|
|
:identity_url => 'http://openid.example.com/good_blank_user'
|
|
|
|
}
|
|
|
|
assert_response 302
|
|
|
|
end
|
|
|
|
|
2014-01-08 07:31:04 +04:00
|
|
|
user = User.order('id DESC').first
|
2012-07-07 10:22:35 +04:00
|
|
|
assert_equal 'http://openid.example.com/good_blank_user', user.identity_url
|
|
|
|
assert user.hashed_password.blank?, "Hashed password was #{user.hashed_password}"
|
|
|
|
end
|
|
|
|
|
2012-07-07 09:40:01 +04:00
|
|
|
def test_setting_openid_should_return_true_when_set_to_true
|
|
|
|
assert_equal true, Setting.openid?
|
|
|
|
end
|
|
|
|
|
|
|
|
else
|
|
|
|
puts "Skipping openid tests."
|
|
|
|
|
|
|
|
def test_dummy
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|