Chris@0: # redMine - project management software Chris@0: # Copyright (C) 2006-2007 Jean-Philippe Lang Chris@0: # Chris@0: # This program is free software; you can redistribute it and/or Chris@0: # modify it under the terms of the GNU General Public License Chris@0: # as published by the Free Software Foundation; either version 2 Chris@0: # of the License, or (at your option) any later version. Chris@0: # Chris@0: # This program is distributed in the hope that it will be useful, Chris@0: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@0: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@0: # GNU General Public License for more details. Chris@0: # Chris@0: # You should have received a copy of the GNU General Public License Chris@0: # along with this program; if not, write to the Free Software Chris@0: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@0: Chris@0: require File.dirname(__FILE__) + '/../test_helper' Chris@0: require 'account_controller' Chris@0: Chris@0: # Re-raise errors caught by the controller. Chris@0: class AccountController; def rescue_action(e) raise e end; end Chris@0: Chris@0: class AccountControllerTest < ActionController::TestCase Chris@0: fixtures :users, :roles Chris@0: Chris@0: def setup Chris@0: @controller = AccountController.new Chris@0: @request = ActionController::TestRequest.new Chris@0: @response = ActionController::TestResponse.new Chris@0: User.current = nil Chris@0: end Chris@0: Chris@0: def test_login_should_redirect_to_back_url_param Chris@0: # request.uri is "test.host" in test environment Chris@0: post :login, :username => 'jsmith', :password => 'jsmith', :back_url => 'http%3A%2F%2Ftest.host%2Fissues%2Fshow%2F1' Chris@0: assert_redirected_to '/issues/show/1' Chris@0: end Chris@0: Chris@0: def test_login_should_not_redirect_to_another_host Chris@0: post :login, :username => 'jsmith', :password => 'jsmith', :back_url => 'http%3A%2F%2Ftest.foo%2Ffake' Chris@0: assert_redirected_to '/my/page' Chris@0: end Chris@0: Chris@0: def test_login_with_wrong_password Chris@0: post :login, :username => 'admin', :password => 'bad' Chris@0: assert_response :success Chris@0: assert_template 'login' Chris@0: assert_tag 'div', Chris@0: :attributes => { :class => "flash error" }, Chris@0: :content => /Invalid user or password/ Chris@0: end Chris@0: Chris@0: if Object.const_defined?(:OpenID) Chris@0: Chris@0: def test_login_with_openid_for_existing_user Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', Chris@0: :lastname => 'User', Chris@0: :mail => 'user@somedomain.com', Chris@0: :identity_url => 'http://openid.example.com/good_user') Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => existing_user.identity_url Chris@0: assert_redirected_to 'my/page' Chris@0: end Chris@0: Chris@0: def test_login_with_openid_for_existing_non_active_user Chris@0: Setting.self_registration = '2' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', Chris@0: :lastname => 'User', Chris@0: :mail => 'user@somedomain.com', Chris@0: :identity_url => 'http://openid.example.com/good_user', Chris@0: :status => User::STATUS_REGISTERED) Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => existing_user.identity_url Chris@0: assert_redirected_to 'login' Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_redirected_to 'my/account' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: assert_equal 'Cool', user.firstname Chris@0: assert_equal 'User', user.lastname Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_and_self_registration_off Chris@0: Setting.self_registration = '0' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_redirected_to home_url Chris@0: user = User.find_by_login('cool_user') Chris@0: assert ! user Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created_with_email_activation_should_have_a_token Chris@0: Setting.self_registration = '1' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_redirected_to 'login' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: Chris@0: token = Token.find_by_user_id_and_action(user.id, 'register') Chris@0: assert token Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created_with_manual_activation Chris@0: Setting.self_registration = '2' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_redirected_to 'login' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: assert_equal User::STATUS_REGISTERED, user.status Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_with_conflict_should_register Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', :lastname => 'User', :mail => 'user@somedomain.com') Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_response :success Chris@0: assert_template 'register' Chris@0: assert assigns(:user) Chris@0: assert_equal 'http://openid.example.com/good_user', assigns(:user)[:identity_url] Chris@0: end Chris@0: Chris@0: def test_setting_openid_should_return_true_when_set_to_true Chris@0: Setting.openid = '1' Chris@0: assert_equal true, Setting.openid? Chris@0: end Chris@0: Chris@0: else Chris@0: puts "Skipping openid tests." Chris@0: end Chris@0: Chris@0: def test_logout Chris@0: @request.session[:user_id] = 2 Chris@0: get :logout Chris@0: assert_redirected_to '' Chris@0: assert_nil @request.session[:user_id] Chris@0: end Chris@0: end