Mercurial > hg > cmmr2012-drupal-site

annotate core/modules/user/src/Tests/UserRegistrationTest.php @ 0:c75dbcec494b

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Initial commit from drush-created site
author Chris Cannam
date Thu, 05 Jul 2018 14:24:15 +0000
parents
children
rev   line source
Chris@0 1 <?php
Chris@0 2
Chris@0 3 namespace Drupal\user\Tests;
Chris@0 4
Chris@0 5 use Drupal\Core\Entity\Entity\EntityFormDisplay;
Chris@0 6 use Drupal\Component\Utility\SafeMarkup;
Chris@0 7 use Drupal\Core\Field\FieldStorageDefinitionInterface;
Chris@0 8 use Drupal\field\Entity\FieldConfig;
Chris@0 9 use Drupal\field\Entity\FieldStorageConfig;
Chris@0 10 use Drupal\simpletest\WebTestBase;
Chris@0 11
Chris@0 12 /**
Chris@0 13 * Tests registration of user under different configurations.
Chris@0 14 *
Chris@0 15 * @group user
Chris@0 16 */
Chris@0 17 class UserRegistrationTest extends WebTestBase {
Chris@0 18
Chris@0 19 /**
Chris@0 20 * Modules to enable.
Chris@0 21 *
Chris@0 22 * @var array
Chris@0 23 */
Chris@0 24 public static $modules = ['field_test'];
Chris@0 25
Chris@0 26 public function testRegistrationWithEmailVerification() {
Chris@0 27 $config = $this->config('user.settings');
Chris@0 28 // Require email verification.
Chris@0 29 $config->set('verify_mail', TRUE)->save();
Chris@0 30
Chris@0 31 // Set registration to administrator only.
Chris@0 32 $config->set('register', USER_REGISTER_ADMINISTRATORS_ONLY)->save();
Chris@0 33 $this->drupalGet('user/register');
Chris@0 34 $this->assertResponse(403, 'Registration page is inaccessible when only administrators can create accounts.');
Chris@0 35
Chris@0 36 // Allow registration by site visitors without administrator approval.
Chris@0 37 $config->set('register', USER_REGISTER_VISITORS)->save();
Chris@0 38 $edit = [];
Chris@0 39 $edit['name'] = $name = $this->randomMachineName();
Chris@0 40 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 41 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 42 $this->assertText(t('A welcome message with further instructions has been sent to your email address.'), 'User registered successfully.');
Chris@0 43
Chris@0 44 /** @var EntityStorageInterface $storage */
Chris@0 45 $storage = $this->container->get('entity_type.manager')->getStorage('user');
Chris@0 46 $accounts = $storage->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 47 $new_user = reset($accounts);
Chris@0 48 $this->assertTrue($new_user->isActive(), 'New account is active after registration.');
Chris@0 49 $resetURL = user_pass_reset_url($new_user);
Chris@0 50 $this->drupalGet($resetURL);
Chris@0 51 $this->assertTitle(t('Set password | Drupal'), 'Page title is "Set password".');
Chris@0 52
Chris@0 53 // Allow registration by site visitors, but require administrator approval.
Chris@0 54 $config->set('register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL)->save();
Chris@0 55 $edit = [];
Chris@0 56 $edit['name'] = $name = $this->randomMachineName();
Chris@0 57 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 58 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 59 $this->container->get('entity.manager')->getStorage('user')->resetCache();
Chris@0 60 $accounts = $storage->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 61 $new_user = reset($accounts);
Chris@0 62 $this->assertFalse($new_user->isActive(), 'New account is blocked until approved by an administrator.');
Chris@0 63 }
Chris@0 64
Chris@0 65 public function testRegistrationWithoutEmailVerification() {
Chris@0 66 $config = $this->config('user.settings');
Chris@0 67 // Don't require email verification and allow registration by site visitors
Chris@0 68 // without administrator approval.
Chris@0 69 $config
Chris@0 70 ->set('verify_mail', FALSE)
Chris@0 71 ->set('register', USER_REGISTER_VISITORS)
Chris@0 72 ->save();
Chris@0 73
Chris@0 74 $edit = [];
Chris@0 75 $edit['name'] = $name = $this->randomMachineName();
Chris@0 76 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 77
Chris@0 78 // Try entering a mismatching password.
Chris@0 79 $edit['pass[pass1]'] = '99999.0';
Chris@0 80 $edit['pass[pass2]'] = '99999';
Chris@0 81 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 82 $this->assertText(t('The specified passwords do not match.'), 'Typing mismatched passwords displays an error message.');
Chris@0 83
Chris@0 84 // Enter a correct password.
Chris@0 85 $edit['pass[pass1]'] = $new_pass = $this->randomMachineName();
Chris@0 86 $edit['pass[pass2]'] = $new_pass;
Chris@0 87 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 88 $this->container->get('entity.manager')->getStorage('user')->resetCache();
Chris@0 89 $accounts = $this->container->get('entity_type.manager')->getStorage('user')
Chris@0 90 ->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 91 $new_user = reset($accounts);
Chris@0 92 $this->assertNotNull($new_user, 'New account successfully created with matching passwords.');
Chris@0 93 $this->assertText(t('Registration successful. You are now logged in.'), 'Users are logged in after registering.');
Chris@0 94 $this->drupalLogout();
Chris@0 95
Chris@0 96 // Allow registration by site visitors, but require administrator approval.
Chris@0 97 $config->set('register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL)->save();
Chris@0 98 $edit = [];
Chris@0 99 $edit['name'] = $name = $this->randomMachineName();
Chris@0 100 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 101 $edit['pass[pass1]'] = $pass = $this->randomMachineName();
Chris@0 102 $edit['pass[pass2]'] = $pass;
Chris@0 103 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 104 $this->assertText(t('Thank you for applying for an account. Your account is currently pending approval by the site administrator.'), 'Users are notified of pending approval');
Chris@0 105
Chris@0 106 // Try to log in before administrator approval.
Chris@0 107 $auth = [
Chris@0 108 'name' => $name,
Chris@0 109 'pass' => $pass,
Chris@0 110 ];
Chris@0 111 $this->drupalPostForm('user/login', $auth, t('Log in'));
Chris@0 112 $this->assertText(t('The username @name has not been activated or is blocked.', ['@name' => $name]), 'User cannot log in yet.');
Chris@0 113
Chris@0 114 // Activate the new account.
Chris@0 115 $accounts = $this->container->get('entity_type.manager')->getStorage('user')
Chris@0 116 ->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 117 $new_user = reset($accounts);
Chris@0 118 $admin_user = $this->drupalCreateUser(['administer users']);
Chris@0 119 $this->drupalLogin($admin_user);
Chris@0 120 $edit = [
Chris@0 121 'status' => 1,
Chris@0 122 ];
Chris@0 123 $this->drupalPostForm('user/' . $new_user->id() . '/edit', $edit, t('Save'));
Chris@0 124 $this->drupalLogout();
Chris@0 125
Chris@0 126 // Log in after administrator approval.
Chris@0 127 $this->drupalPostForm('user/login', $auth, t('Log in'));
Chris@0 128 $this->assertText(t('Member for'), 'User can log in after administrator approval.');
Chris@0 129 }
Chris@0 130
Chris@0 131 public function testRegistrationEmailDuplicates() {
Chris@0 132 // Don't require email verification and allow registration by site visitors
Chris@0 133 // without administrator approval.
Chris@0 134 $this->config('user.settings')
Chris@0 135 ->set('verify_mail', FALSE)
Chris@0 136 ->set('register', USER_REGISTER_VISITORS)
Chris@0 137 ->save();
Chris@0 138
Chris@0 139 // Set up a user to check for duplicates.
Chris@0 140 $duplicate_user = $this->drupalCreateUser();
Chris@0 141
Chris@0 142 $edit = [];
Chris@0 143 $edit['name'] = $this->randomMachineName();
Chris@0 144 $edit['mail'] = $duplicate_user->getEmail();
Chris@0 145
Chris@0 146 // Attempt to create a new account using an existing email address.
Chris@0 147 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 148 $this->assertText(t('The email address @email is already taken.', ['@email' => $duplicate_user->getEmail()]), 'Supplying an exact duplicate email address displays an error message');
Chris@0 149
Chris@0 150 // Attempt to bypass duplicate email registration validation by adding spaces.
Chris@0 151 $edit['mail'] = ' ' . $duplicate_user->getEmail() . ' ';
Chris@0 152
Chris@0 153 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 154 $this->assertText(t('The email address @email is already taken.', ['@email' => $duplicate_user->getEmail()]), 'Supplying a duplicate email address with added whitespace displays an error message');
Chris@0 155 }
Chris@0 156
Chris@0 157 /**
Chris@0 158 * Tests that UUID isn't cached in form state on register form.
Chris@0 159 *
Chris@0 160 * This is a regression test for https://www.drupal.org/node/2500527 to ensure
Chris@0 161 * that the form is not cached on GET requests.
Chris@0 162 */
Chris@0 163 public function testUuidFormState() {
Chris@0 164 \Drupal::service('module_installer')->install(['image']);
Chris@0 165 \Drupal::service('router.builder')->rebuild();
Chris@0 166
Chris@0 167 // Add a picture field in order to ensure that no form cache is written,
Chris@0 168 // which breaks registration of more than 1 user every 6 hours.
Chris@0 169 $field_storage = FieldStorageConfig::create([
Chris@0 170 'field_name' => 'user_picture',
Chris@0 171 'entity_type' => 'user',
Chris@0 172 'type' => 'image',
Chris@0 173 ]);
Chris@0 174 $field_storage->save();
Chris@0 175
Chris@0 176 $field = FieldConfig::create([
Chris@0 177 'field_name' => 'user_picture',
Chris@0 178 'entity_type' => 'user',
Chris@0 179 'bundle' => 'user',
Chris@0 180 ]);
Chris@0 181 $field->save();
Chris@0 182
Chris@0 183 $form_display = EntityFormDisplay::create([
Chris@0 184 'targetEntityType' => 'user',
Chris@0 185 'bundle' => 'user',
Chris@0 186 'mode' => 'default',
Chris@0 187 'status' => TRUE,
Chris@0 188 ]);
Chris@0 189 $form_display->setComponent('user_picture', [
Chris@0 190 'type' => 'image_image',
Chris@0 191 ]);
Chris@0 192 $form_display->save();
Chris@0 193
Chris@0 194 // Don't require email verification and allow registration by site visitors
Chris@0 195 // without administrator approval.
Chris@0 196 $this->config('user.settings')
Chris@0 197 ->set('verify_mail', FALSE)
Chris@0 198 ->set('register', USER_REGISTER_VISITORS)
Chris@0 199 ->save();
Chris@0 200
Chris@0 201 $edit = [];
Chris@0 202 $edit['name'] = $this->randomMachineName();
Chris@0 203 $edit['mail'] = $edit['name'] . '@example.com';
Chris@0 204 $edit['pass[pass2]'] = $edit['pass[pass1]'] = $this->randomMachineName();
Chris@0 205
Chris@0 206 // Create one account.
Chris@0 207 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 208 $this->assertResponse(200);
Chris@0 209
Chris@0 210 $user_storage = \Drupal::entityManager()->getStorage('user');
Chris@0 211
Chris@0 212 $this->assertTrue($user_storage->loadByProperties(['name' => $edit['name']]));
Chris@0 213 $this->drupalLogout();
Chris@0 214
Chris@0 215 // Create a second account.
Chris@0 216 $edit['name'] = $this->randomMachineName();
Chris@0 217 $edit['mail'] = $edit['name'] . '@example.com';
Chris@0 218 $edit['pass[pass2]'] = $edit['pass[pass1]'] = $this->randomMachineName();
Chris@0 219
Chris@0 220 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 221 $this->assertResponse(200);
Chris@0 222
Chris@0 223 $this->assertTrue($user_storage->loadByProperties(['name' => $edit['name']]));
Chris@0 224 }
Chris@0 225
Chris@0 226 public function testRegistrationDefaultValues() {
Chris@0 227 // Don't require email verification and allow registration by site visitors
Chris@0 228 // without administrator approval.
Chris@0 229 $config_user_settings = $this->config('user.settings')
Chris@0 230 ->set('verify_mail', FALSE)
Chris@0 231 ->set('register', USER_REGISTER_VISITORS)
Chris@0 232 ->save();
Chris@0 233
Chris@0 234 // Set the default timezone to Brussels.
Chris@0 235 $config_system_date = $this->config('system.date')
Chris@0 236 ->set('timezone.user.configurable', 1)
Chris@0 237 ->set('timezone.default', 'Europe/Brussels')
Chris@0 238 ->save();
Chris@0 239
Chris@0 240 // Check the presence of expected cache tags.
Chris@0 241 $this->drupalGet('user/register');
Chris@0 242 $this->assertCacheTag('config:user.settings');
Chris@0 243
Chris@0 244 $edit = [];
Chris@0 245 $edit['name'] = $name = $this->randomMachineName();
Chris@0 246 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 247 $edit['pass[pass1]'] = $new_pass = $this->randomMachineName();
Chris@0 248 $edit['pass[pass2]'] = $new_pass;
Chris@0 249 $this->drupalPostForm(NULL, $edit, t('Create new account'));
Chris@0 250
Chris@0 251 // Check user fields.
Chris@0 252 $accounts = $this->container->get('entity_type.manager')->getStorage('user')
Chris@0 253 ->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 254 $new_user = reset($accounts);
Chris@0 255 $this->assertEqual($new_user->getUsername(), $name, 'Username matches.');
Chris@0 256 $this->assertEqual($new_user->getEmail(), $mail, 'Email address matches.');
Chris@0 257 $this->assertTrue(($new_user->getCreatedTime() > REQUEST_TIME - 20), 'Correct creation time.');
Chris@0 258 $this->assertEqual($new_user->isActive(), $config_user_settings->get('register') == USER_REGISTER_VISITORS ? 1 : 0, 'Correct status field.');
Chris@0 259 $this->assertEqual($new_user->getTimezone(), $config_system_date->get('timezone.default'), 'Correct time zone field.');
Chris@0 260 $this->assertEqual($new_user->langcode->value, \Drupal::languageManager()->getDefaultLanguage()->getId(), 'Correct language field.');
Chris@0 261 $this->assertEqual($new_user->preferred_langcode->value, \Drupal::languageManager()->getDefaultLanguage()->getId(), 'Correct preferred language field.');
Chris@0 262 $this->assertEqual($new_user->init->value, $mail, 'Correct init field.');
Chris@0 263 }
Chris@0 264
Chris@0 265 /**
Chris@0 266 * Tests username and email field constraints on user registration.
Chris@0 267 *
Chris@0 268 * @see \Drupal\user\Plugin\Validation\Constraint\UserNameUnique
Chris@0 269 * @see \Drupal\user\Plugin\Validation\Constraint\UserMailUnique
Chris@0 270 */
Chris@0 271 public function testUniqueFields() {
Chris@0 272 $account = $this->drupalCreateUser();
Chris@0 273
Chris@0 274 $edit = ['mail' => 'test@example.com', 'name' => $account->getUsername()];
Chris@0 275 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 276 $this->assertRaw(SafeMarkup::format('The username %value is already taken.', ['%value' => $account->getUsername()]));
Chris@0 277
Chris@0 278 $edit = ['mail' => $account->getEmail(), 'name' => $this->randomString()];
Chris@0 279 $this->drupalPostForm('user/register', $edit, t('Create new account'));
Chris@0 280 $this->assertRaw(SafeMarkup::format('The email address %value is already taken.', ['%value' => $account->getEmail()]));
Chris@0 281 }
Chris@0 282
Chris@0 283 /**
Chris@0 284 * Tests Field API fields on user registration forms.
Chris@0 285 */
Chris@0 286 public function testRegistrationWithUserFields() {
Chris@0 287 // Create a field on 'user' entity type.
Chris@0 288 $field_storage = FieldStorageConfig::create([
Chris@0 289 'field_name' => 'test_user_field',
Chris@0 290 'entity_type' => 'user',
Chris@0 291 'type' => 'test_field',
Chris@0 292 'cardinality' => 1,
Chris@0 293 ]);
Chris@0 294 $field_storage->save();
Chris@0 295 $field = FieldConfig::create([
Chris@0 296 'field_storage' => $field_storage,
Chris@0 297 'label' => 'Some user field',
Chris@0 298 'bundle' => 'user',
Chris@0 299 'required' => TRUE,
Chris@0 300 ]);
Chris@0 301 $field->save();
Chris@0 302 entity_get_form_display('user', 'user', 'default')
Chris@0 303 ->setComponent('test_user_field', ['type' => 'test_field_widget'])
Chris@0 304 ->save();
Chris@0 305 entity_get_form_display('user', 'user', 'register')
Chris@0 306 ->save();
Chris@0 307
Chris@0 308 // Check that the field does not appear on the registration form.
Chris@0 309 $this->drupalGet('user/register');
Chris@0 310 $this->assertNoText($field->label(), 'The field does not appear on user registration form');
Chris@0 311 $this->assertCacheTag('config:core.entity_form_display.user.user.register');
Chris@0 312 $this->assertCacheTag('config:user.settings');
Chris@0 313
Chris@0 314 // Have the field appear on the registration form.
Chris@0 315 entity_get_form_display('user', 'user', 'register')
Chris@0 316 ->setComponent('test_user_field', ['type' => 'test_field_widget'])
Chris@0 317 ->save();
Chris@0 318
Chris@0 319 $this->drupalGet('user/register');
Chris@0 320 $this->assertText($field->label(), 'The field appears on user registration form');
Chris@0 321 $this->assertRegistrationFormCacheTagsWithUserFields();
Chris@0 322
Chris@0 323 // Check that validation errors are correctly reported.
Chris@0 324 $edit = [];
Chris@0 325 $edit['name'] = $name = $this->randomMachineName();
Chris@0 326 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 327 // Missing input in required field.
Chris@0 328 $edit['test_user_field[0][value]'] = '';
Chris@0 329 $this->drupalPostForm(NULL, $edit, t('Create new account'));
Chris@0 330 $this->assertRegistrationFormCacheTagsWithUserFields();
Chris@0 331 $this->assertRaw(t('@name field is required.', ['@name' => $field->label()]), 'Field validation error was correctly reported.');
Chris@0 332 // Invalid input.
Chris@0 333 $edit['test_user_field[0][value]'] = '-1';
Chris@0 334 $this->drupalPostForm(NULL, $edit, t('Create new account'));
Chris@0 335 $this->assertRegistrationFormCacheTagsWithUserFields();
Chris@0 336 $this->assertRaw(t('%name does not accept the value -1.', ['%name' => $field->label()]), 'Field validation error was correctly reported.');
Chris@0 337
Chris@0 338 // Submit with valid data.
Chris@0 339 $value = rand(1, 255);
Chris@0 340 $edit['test_user_field[0][value]'] = $value;
Chris@0 341 $this->drupalPostForm(NULL, $edit, t('Create new account'));
Chris@0 342 // Check user fields.
Chris@0 343 $accounts = $this->container->get('entity_type.manager')->getStorage('user')
Chris@0 344 ->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 345 $new_user = reset($accounts);
Chris@0 346 $this->assertEqual($new_user->test_user_field->value, $value, 'The field value was correctly saved.');
Chris@0 347
Chris@0 348 // Check that the 'add more' button works.
Chris@0 349 $field_storage->setCardinality(FieldStorageDefinitionInterface::CARDINALITY_UNLIMITED);
Chris@0 350 $field_storage->save();
Chris@0 351 foreach (['js', 'nojs'] as $js) {
Chris@0 352 $this->drupalGet('user/register');
Chris@0 353 $this->assertRegistrationFormCacheTagsWithUserFields();
Chris@0 354 // Add two inputs.
Chris@0 355 $value = rand(1, 255);
Chris@0 356 $edit = [];
Chris@0 357 $edit['test_user_field[0][value]'] = $value;
Chris@0 358 if ($js == 'js') {
Chris@0 359 $this->drupalPostAjaxForm(NULL, $edit, 'test_user_field_add_more');
Chris@0 360 $this->drupalPostAjaxForm(NULL, $edit, 'test_user_field_add_more');
Chris@0 361 }
Chris@0 362 else {
Chris@0 363 $this->drupalPostForm(NULL, $edit, t('Add another item'));
Chris@0 364 $this->drupalPostForm(NULL, $edit, t('Add another item'));
Chris@0 365 }
Chris@0 366 // Submit with three values.
Chris@0 367 $edit['test_user_field[1][value]'] = $value + 1;
Chris@0 368 $edit['test_user_field[2][value]'] = $value + 2;
Chris@0 369 $edit['name'] = $name = $this->randomMachineName();
Chris@0 370 $edit['mail'] = $mail = $edit['name'] . '@example.com';
Chris@0 371 $this->drupalPostForm(NULL, $edit, t('Create new account'));
Chris@0 372 // Check user fields.
Chris@0 373 $accounts = $this->container->get('entity_type.manager')->getStorage('user')
Chris@0 374 ->loadByProperties(['name' => $name, 'mail' => $mail]);
Chris@0 375 $new_user = reset($accounts);
Chris@0 376 $this->assertEqual($new_user->test_user_field[0]->value, $value, format_string('@js : The field value was correctly saved.', ['@js' => $js]));
Chris@0 377 $this->assertEqual($new_user->test_user_field[1]->value, $value + 1, format_string('@js : The field value was correctly saved.', ['@js' => $js]));
Chris@0 378 $this->assertEqual($new_user->test_user_field[2]->value, $value + 2, format_string('@js : The field value was correctly saved.', ['@js' => $js]));
Chris@0 379 }
Chris@0 380 }
Chris@0 381
Chris@0 382 /**
Chris@0 383 * Asserts the presence of cache tags on registration form with user fields.
Chris@0 384 */
Chris@0 385 protected function assertRegistrationFormCacheTagsWithUserFields() {
Chris@0 386 $this->assertCacheTag('config:core.entity_form_display.user.user.register');
Chris@0 387 $this->assertCacheTag('config:field.field.user.user.test_user_field');
Chris@0 388 $this->assertCacheTag('config:field.storage.user.test_user_field');
Chris@0 389 $this->assertCacheTag('config:user.settings');
Chris@0 390 }
Chris@0 391
Chris@0 392 }