Chris@0: # redMine - project management software Chris@0: # Copyright (C) 2006-2007 Jean-Philippe Lang Chris@0: # Chris@0: # This program is free software; you can redistribute it and/or Chris@0: # modify it under the terms of the GNU General Public License Chris@0: # as published by the Free Software Foundation; either version 2 Chris@0: # of the License, or (at your option) any later version. Chris@0: # Chris@0: # This program is distributed in the hope that it will be useful, Chris@0: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@0: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@0: # GNU General Public License for more details. Chris@0: # Chris@0: # You should have received a copy of the GNU General Public License Chris@0: # along with this program; if not, write to the Free Software Chris@0: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@0: Chris@117: require File.expand_path('../../test_helper', __FILE__) Chris@0: require 'account_controller' Chris@0: Chris@0: # Re-raise errors caught by the controller. Chris@0: class AccountController; def rescue_action(e) raise e end; end Chris@0: Chris@0: class AccountControllerTest < ActionController::TestCase Chris@0: fixtures :users, :roles Chris@0: Chris@0: def setup Chris@0: @controller = AccountController.new Chris@0: @request = ActionController::TestRequest.new Chris@0: @response = ActionController::TestResponse.new Chris@0: User.current = nil Chris@0: end Chris@0: Chris@0: def test_login_should_redirect_to_back_url_param Chris@0: # request.uri is "test.host" in test environment Chris@0: post :login, :username => 'jsmith', :password => 'jsmith', :back_url => 'http%3A%2F%2Ftest.host%2Fissues%2Fshow%2F1' Chris@0: assert_redirected_to '/issues/show/1' Chris@0: end Chris@0: Chris@0: def test_login_should_not_redirect_to_another_host Chris@0: post :login, :username => 'jsmith', :password => 'jsmith', :back_url => 'http%3A%2F%2Ftest.foo%2Ffake' Chris@0: assert_redirected_to '/my/page' Chris@0: end Chris@0: Chris@0: def test_login_with_wrong_password Chris@0: post :login, :username => 'admin', :password => 'bad' Chris@0: assert_response :success Chris@0: assert_template 'login' Chris@0: assert_tag 'div', Chris@0: :attributes => { :class => "flash error" }, Chris@0: :content => /Invalid user or password/ Chris@0: end Chris@0: Chris@0: if Object.const_defined?(:OpenID) Chris@0: Chris@0: def test_login_with_openid_for_existing_user Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', Chris@0: :lastname => 'User', Chris@0: :mail => 'user@somedomain.com', Chris@0: :identity_url => 'http://openid.example.com/good_user') Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => existing_user.identity_url chris@37: assert_redirected_to '/my/page' Chris@0: end Chris@0: Chris@14: def test_login_with_invalid_openid_provider Chris@14: Setting.self_registration = '0' Chris@14: Setting.openid = '1' Chris@14: post :login, :openid_url => 'http;//openid.example.com/good_user' Chris@14: assert_redirected_to home_url Chris@14: end Chris@14: Chris@0: def test_login_with_openid_for_existing_non_active_user Chris@0: Setting.self_registration = '2' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', Chris@0: :lastname => 'User', Chris@0: :mail => 'user@somedomain.com', Chris@0: :identity_url => 'http://openid.example.com/good_user', Chris@0: :status => User::STATUS_REGISTERED) Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => existing_user.identity_url chris@37: assert_redirected_to '/login' Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' chris@37: assert_redirected_to '/my/account' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: assert_equal 'Cool', user.firstname Chris@0: assert_equal 'User', user.lastname Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_and_self_registration_off Chris@0: Setting.self_registration = '0' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_redirected_to home_url Chris@0: user = User.find_by_login('cool_user') Chris@0: assert ! user Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created_with_email_activation_should_have_a_token Chris@0: Setting.self_registration = '1' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' chris@37: assert_redirected_to '/login' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: Chris@0: token = Token.find_by_user_id_and_action(user.id, 'register') Chris@0: assert token Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_created_with_manual_activation Chris@0: Setting.self_registration = '2' Chris@0: Setting.openid = '1' Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' chris@37: assert_redirected_to '/login' Chris@0: user = User.find_by_login('cool_user') Chris@0: assert user Chris@0: assert_equal User::STATUS_REGISTERED, user.status Chris@0: end Chris@0: Chris@0: def test_login_with_openid_with_new_user_with_conflict_should_register Chris@0: Setting.self_registration = '3' Chris@0: Setting.openid = '1' Chris@0: existing_user = User.new(:firstname => 'Cool', :lastname => 'User', :mail => 'user@somedomain.com') Chris@0: existing_user.login = 'cool_user' Chris@0: assert existing_user.save! Chris@0: Chris@0: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@0: assert_response :success Chris@0: assert_template 'register' Chris@0: assert assigns(:user) Chris@0: assert_equal 'http://openid.example.com/good_user', assigns(:user)[:identity_url] Chris@0: end Chris@0: Chris@0: def test_setting_openid_should_return_true_when_set_to_true Chris@0: Setting.openid = '1' Chris@0: assert_equal true, Setting.openid? Chris@0: end Chris@0: Chris@0: else Chris@0: puts "Skipping openid tests." Chris@0: end Chris@0: Chris@0: def test_logout Chris@0: @request.session[:user_id] = 2 Chris@0: get :logout chris@37: assert_redirected_to '/' Chris@0: assert_nil @request.session[:user_id] Chris@0: end Chris@14: Chris@14: context "GET #register" do Chris@14: context "with self registration on" do Chris@14: setup do Chris@14: Setting.self_registration = '3' Chris@14: get :register Chris@14: end Chris@14: Chris@14: should_respond_with :success Chris@14: should_render_template :register Chris@14: should_assign_to :user Chris@14: end Chris@14: Chris@14: context "with self registration off" do Chris@14: setup do Chris@14: Setting.self_registration = '0' Chris@14: get :register Chris@14: end Chris@14: Chris@14: should_redirect_to('/') { home_url } Chris@14: end Chris@14: end Chris@14: Chris@14: # See integration/account_test.rb for the full test Chris@14: context "POST #register" do Chris@14: context "with self registration on automatic" do Chris@14: setup do Chris@14: Setting.self_registration = '3' Chris@14: post :register, :user => { Chris@14: :login => 'register', Chris@14: :password => 'test', Chris@14: :password_confirmation => 'test', Chris@14: :firstname => 'John', Chris@14: :lastname => 'Doe', Chris@14: :mail => 'register@example.com' Chris@14: } Chris@14: end Chris@14: Chris@14: should_respond_with :redirect Chris@14: should_assign_to :user Chris@14: should_redirect_to('my page') { {:controller => 'my', :action => 'account'} } Chris@14: Chris@14: should_create_a_new_user { User.last(:conditions => {:login => 'register'}) } Chris@14: Chris@14: should 'set the user status to active' do Chris@14: user = User.last(:conditions => {:login => 'register'}) Chris@14: assert user Chris@14: assert_equal User::STATUS_ACTIVE, user.status Chris@14: end Chris@14: end Chris@14: Chris@14: context "with self registration off" do Chris@14: setup do Chris@14: Setting.self_registration = '0' Chris@14: post :register Chris@14: end Chris@14: Chris@14: should_redirect_to('/') { home_url } Chris@14: end Chris@14: end Chris@14: Chris@0: end