X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/9dc9724e15bdd6d2bd316f7fa24592da72124bc5..refs/pull/2023/head:/tests/Auth/AuthTest.php diff --git a/tests/Auth/AuthTest.php b/tests/Auth/AuthTest.php index 0affff799..40bcda713 100644 --- a/tests/Auth/AuthTest.php +++ b/tests/Auth/AuthTest.php @@ -1,9 +1,17 @@ -put('app-public', 'true'); $this->visit('/') ->seePageIs('/') - ->see('Sign In'); + ->see('Log In'); } public function test_registration_showing() @@ -41,7 +49,7 @@ class AuthTest extends TestCase { // Set settings and get user instance $this->setSettings(['registration-enabled' => 'true']); - $user = factory(\BookStack\User::class)->make(); + $user = factory(User::class)->make(); // Test form and ensure user is created $this->visit('/register') @@ -55,6 +63,43 @@ class AuthTest extends TestCase ->seeInDatabase('users', ['name' => $user->name, 'email' => $user->email]); } + public function test_empty_registration_redirects_back_with_errors() + { + // Set settings and get user instance + $this->setSettings(['registration-enabled' => 'true']); + + // Test form and ensure user is created + $this->visit('/register') + ->press('Create Account') + ->see('The name field is required') + ->seePageIs('/register'); + } + + public function test_registration_validation() + { + $this->setSettings(['registration-enabled' => 'true']); + + $this->visit('/register') + ->type('1', '#name') + ->type('1', '#email') + ->type('1', '#password') + ->press('Create Account') + ->see('The name must be at least 2 characters.') + ->see('The email must be a valid email address.') + ->see('The password must be at least 8 characters.') + ->seePageIs('/register'); + } + + public function test_sign_up_link_on_login() + { + $this->visit('/login') + ->dontSee('Sign up'); + + $this->setSettings(['registration-enabled' => 'true']); + + $this->visit('/login') + ->see('Sign up'); + } public function test_confirmed_registration() { @@ -63,7 +108,7 @@ class AuthTest extends TestCase // Set settings and get user instance $this->setSettings(['registration-enabled' => 'true', 'registration-confirmation' => 'true']); - $user = factory(\BookStack\User::class)->make(); + $user = factory(User::class)->make(); // Go through registration process $this->visit('/register') @@ -76,7 +121,7 @@ class AuthTest extends TestCase ->seeInDatabase('users', ['name' => $user->name, 'email' => $user->email, 'email_confirmed' => false]); // Ensure notification sent - $dbUser = \BookStack\User::where('email', '=', $user->email)->first(); + $dbUser = User::where('email', '=', $user->email)->first(); Notification::assertSentTo($dbUser, ConfirmEmail::class); // Test access and resend confirmation email @@ -104,7 +149,39 @@ class AuthTest extends TestCase public function test_restricted_registration() { $this->setSettings(['registration-enabled' => 'true', 'registration-confirmation' => 'true', 'registration-restrict' => 'example.com']); - $user = factory(\BookStack\User::class)->make(); + $user = factory(User::class)->make(); + // Go through registration process + $this->visit('/register') + ->type($user->name, '#name') + ->type($user->email, '#email') + ->type($user->password, '#password') + ->press('Create Account') + ->seePageIs('/register') + ->dontSeeInDatabase('users', ['email' => $user->email]) + ->see('That email domain does not have access to this application'); + + $user->email = 'barry@example.com'; + + $this->visit('/register') + ->type($user->name, '#name') + ->type($user->email, '#email') + ->type($user->password, '#password') + ->press('Create Account') + ->seePageIs('/register/confirm') + ->seeInDatabase('users', ['name' => $user->name, 'email' => $user->email, 'email_confirmed' => false]); + + $this->visit('/')->seePageIs('/login') + ->type($user->email, '#email') + ->type($user->password, '#password') + ->press('Log In') + ->seePageIs('/register/confirm/awaiting') + ->seeText('Email Address Not Confirmed'); + } + + public function test_restricted_registration_with_confirmation_disabled() + { + $this->setSettings(['registration-enabled' => 'true', 'registration-confirmation' => 'false', 'registration-restrict' => 'example.com']); + $user = factory(User::class)->make(); // Go through registration process $this->visit('/register') ->type($user->name, '#name') @@ -124,15 +201,22 @@ class AuthTest extends TestCase ->press('Create Account') ->seePageIs('/register/confirm') ->seeInDatabase('users', ['name' => $user->name, 'email' => $user->email, 'email_confirmed' => false]); + + $this->visit('/')->seePageIs('/login') + ->type($user->email, '#email') + ->type($user->password, '#password') + ->press('Log In') + ->seePageIs('/register/confirm/awaiting') + ->seeText('Email Address Not Confirmed'); } public function test_user_creation() { - $user = factory(\BookStack\User::class)->make(); + $user = factory(User::class)->make(); $this->asAdmin() ->visit('/settings/users') - ->click('Add new user') + ->click('Add New User') ->type($user->name, '#name') ->type($user->email, '#email') ->check('roles[admin]') @@ -146,7 +230,7 @@ class AuthTest extends TestCase public function test_user_updating() { - $user = \BookStack\User::all()->last(); + $user = $this->getNormalUser(); $password = $user->password; $this->asAdmin() ->visit('/settings/users') @@ -162,7 +246,7 @@ class AuthTest extends TestCase public function test_user_password_update() { - $user = \BookStack\User::all()->last(); + $user = $this->getNormalUser(); $userProfilePage = '/settings/users/' . $user->id; $this->asAdmin() ->visit($userProfilePage) @@ -176,13 +260,13 @@ class AuthTest extends TestCase ->press('Save') ->seePageIs('/settings/users'); - $userPassword = \BookStack\User::find($user->id)->password; + $userPassword = User::find($user->id)->password; $this->assertTrue(Hash::check('newpassword', $userPassword)); } public function test_user_deletion() { - $userDetails = factory(\BookStack\User::class)->make(); + $userDetails = factory(User::class)->make(); $user = $this->getEditor($userDetails->toArray()); $this->asAdmin() @@ -196,7 +280,16 @@ class AuthTest extends TestCase public function test_user_cannot_be_deleted_if_last_admin() { - $adminRole = \BookStack\Role::getRole('admin'); + $adminRole = Role::getRole('admin'); + + // Delete all but one admin user if there are more than one + $adminUsers = $adminRole->users; + if (count($adminUsers) > 1) { + foreach ($adminUsers->splice(1) as $user) { + $user->delete(); + } + } + // Ensure we currently only have 1 admin user $this->assertEquals(1, $adminRole->users()->count()); $user = $adminRole->users->first(); @@ -218,6 +311,76 @@ class AuthTest extends TestCase ->seePageIs('/login'); } + public function test_reset_password_flow() + { + Notification::fake(); + + $this->visit('/login')->click('Forgot Password?') + ->seePageIs('/password/email') + ->type('admin@admin.com', 'email') + ->press('Send Reset Link') + ->see('A password reset link will be sent to admin@admin.com if that email address is found in the system.'); + + $this->seeInDatabase('password_resets', [ + 'email' => 'admin@admin.com' + ]); + + $user = User::where('email', '=', 'admin@admin.com')->first(); + + Notification::assertSentTo($user, ResetPassword::class); + $n = Notification::sent($user, ResetPassword::class); + + $this->visit('/password/reset/' . $n->first()->token) + ->see('Reset Password') + ->submitForm('Reset Password', [ + 'email' => 'admin@admin.com', + 'password' => 'randompass', + 'password_confirmation' => 'randompass' + ])->seePageIs('/') + ->see('Your password has been successfully reset'); + } + + public function test_reset_password_flow_shows_success_message_even_if_wrong_password_to_prevent_user_discovery() + { + $this->visit('/login')->click('Forgot Password?') + ->seePageIs('/password/email') + ->type('barry@admin.com', 'email') + ->press('Send Reset Link') + ->see('A password reset link will be sent to barry@admin.com if that email address is found in the system.') + ->dontSee('We can\'t find a user'); + + + $this->visit('/password/reset/arandometokenvalue') + ->see('Reset Password') + ->submitForm('Reset Password', [ + 'email' => 'barry@admin.com', + 'password' => 'randompass', + 'password_confirmation' => 'randompass' + ])->followRedirects() + ->seePageIs('/password/reset/arandometokenvalue') + ->dontSee('We can\'t find a user') + ->see('The password reset token is invalid for this email address.'); + } + + public function test_reset_password_page_shows_sign_links() + { + $this->setSettings(['registration-enabled' => 'true']); + $this->visit('/password/email') + ->seeLink('Log in') + ->seeLink('Sign up'); + } + + public function test_login_redirects_to_initially_requested_url_correctly() + { + config()->set('app.url', 'http://localhost'); + $page = Page::query()->first(); + + $this->visit($page->getUrl()) + ->seePageUrlIs(url('/login')); + $this->login('admin@admin.com', 'password') + ->seePageUrlIs($page->getUrl()); + } + /** * Perform a login * @param string $email @@ -229,6 +392,6 @@ class AuthTest extends TestCase return $this->visit('/login') ->type($email, '#email') ->type($password, '#password') - ->press('Sign In'); + ->press('Log In'); } }