Chris@1494: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1494: # Chris@1494: # This program is free software; you can redistribute it and/or Chris@1494: # modify it under the terms of the GNU General Public License Chris@1494: # as published by the Free Software Foundation; either version 2 Chris@1494: # of the License, or (at your option) any later version. Chris@1494: # Chris@1494: # This program is distributed in the hope that it will be useful, Chris@1494: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1494: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1494: # GNU General Public License for more details. Chris@1494: # Chris@1494: # You should have received a copy of the GNU General Public License Chris@1494: # along with this program; if not, write to the Free Software Chris@1494: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1494: Chris@1494: require File.expand_path('../../test_helper', __FILE__) Chris@1494: Chris@1494: class AccountControllerOpenidTest < ActionController::TestCase Chris@1494: tests AccountController Chris@1494: fixtures :users, :roles Chris@1494: Chris@1494: def setup Chris@1494: User.current = nil Chris@1494: Setting.openid = '1' Chris@1494: end Chris@1494: Chris@1494: def teardown Chris@1494: Setting.openid = '0' Chris@1494: end Chris@1494: Chris@1494: if Object.const_defined?(:OpenID) Chris@1494: Chris@1494: def test_login_with_openid_for_existing_user Chris@1494: Setting.self_registration = '3' Chris@1494: existing_user = User.new(:firstname => 'Cool', Chris@1494: :lastname => 'User', Chris@1494: :mail => 'user@somedomain.com', Chris@1494: :identity_url => 'http://openid.example.com/good_user') Chris@1494: existing_user.login = 'cool_user' Chris@1494: assert existing_user.save! Chris@1494: Chris@1494: post :login, :openid_url => existing_user.identity_url Chris@1494: assert_redirected_to '/my/page' Chris@1494: end Chris@1494: Chris@1494: def test_login_with_invalid_openid_provider Chris@1494: Setting.self_registration = '0' Chris@1494: post :login, :openid_url => 'http;//openid.example.com/good_user' Chris@1494: assert_redirected_to home_url Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_for_existing_non_active_user Chris@1494: Setting.self_registration = '2' Chris@1494: existing_user = User.new(:firstname => 'Cool', Chris@1494: :lastname => 'User', Chris@1494: :mail => 'user@somedomain.com', Chris@1494: :identity_url => 'http://openid.example.com/good_user', Chris@1494: :status => User::STATUS_REGISTERED) Chris@1494: existing_user.login = 'cool_user' Chris@1494: assert existing_user.save! Chris@1494: Chris@1494: post :login, :openid_url => existing_user.identity_url Chris@1494: assert_redirected_to '/login' Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_created Chris@1494: Setting.self_registration = '3' Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1494: assert_redirected_to '/my/account' Chris@1494: user = User.find_by_login('cool_user') Chris@1494: assert user Chris@1494: assert_equal 'Cool', user.firstname Chris@1494: assert_equal 'User', user.lastname Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_and_self_registration_off Chris@1494: Setting.self_registration = '0' Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1494: assert_redirected_to home_url Chris@1494: user = User.find_by_login('cool_user') Chris@1494: assert_nil user Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_created_with_email_activation_should_have_a_token Chris@1494: Setting.self_registration = '1' Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1494: assert_redirected_to '/login' Chris@1494: user = User.find_by_login('cool_user') Chris@1494: assert user Chris@1494: Chris@1494: token = Token.find_by_user_id_and_action(user.id, 'register') Chris@1494: assert token Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_created_with_manual_activation Chris@1494: Setting.self_registration = '2' Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1494: assert_redirected_to '/login' Chris@1494: user = User.find_by_login('cool_user') Chris@1494: assert user Chris@1494: assert_equal User::STATUS_REGISTERED, user.status Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_with_conflict_should_register Chris@1494: Setting.self_registration = '3' Chris@1494: existing_user = User.new(:firstname => 'Cool', :lastname => 'User', :mail => 'user@somedomain.com') Chris@1494: existing_user.login = 'cool_user' Chris@1494: assert existing_user.save! Chris@1494: Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1494: assert_response :success Chris@1494: assert_template 'register' Chris@1494: assert assigns(:user) Chris@1494: assert_equal 'http://openid.example.com/good_user', assigns(:user)[:identity_url] Chris@1494: end Chris@1494: Chris@1494: def test_login_with_openid_with_new_user_with_missing_information_should_register Chris@1494: Setting.self_registration = '3' Chris@1494: Chris@1494: post :login, :openid_url => 'http://openid.example.com/good_blank_user' Chris@1494: assert_response :success Chris@1494: assert_template 'register' Chris@1494: assert assigns(:user) Chris@1494: assert_equal 'http://openid.example.com/good_blank_user', assigns(:user)[:identity_url] Chris@1494: Chris@1494: assert_select 'input[name=?]', 'user[login]' Chris@1494: assert_select 'input[name=?]', 'user[password]' Chris@1494: assert_select 'input[name=?]', 'user[password_confirmation]' Chris@1494: assert_select 'input[name=?][value=?]', 'user[identity_url]', 'http://openid.example.com/good_blank_user' Chris@1494: end Chris@1494: Chris@1494: def test_post_login_should_not_verify_token_when_using_open_id Chris@1494: ActionController::Base.allow_forgery_protection = true Chris@1494: AccountController.any_instance.stubs(:using_open_id?).returns(true) Chris@1494: AccountController.any_instance.stubs(:authenticate_with_open_id).returns(true) Chris@1494: post :login Chris@1494: assert_response 200 Chris@1494: ensure Chris@1494: ActionController::Base.allow_forgery_protection = false Chris@1494: end Chris@1494: Chris@1494: def test_register_after_login_failure_should_not_require_user_to_enter_a_password Chris@1494: Setting.self_registration = '3' Chris@1494: Chris@1494: assert_difference 'User.count' do Chris@1494: post :register, :user => { Chris@1494: :login => 'good_blank_user', Chris@1494: :password => '', Chris@1494: :password_confirmation => '', Chris@1494: :firstname => 'Cool', Chris@1494: :lastname => 'User', Chris@1494: :mail => 'user@somedomain.com', Chris@1494: :identity_url => 'http://openid.example.com/good_blank_user' Chris@1494: } Chris@1494: assert_response 302 Chris@1494: end Chris@1494: Chris@1494: user = User.first(:order => 'id DESC') Chris@1494: assert_equal 'http://openid.example.com/good_blank_user', user.identity_url Chris@1494: assert user.hashed_password.blank?, "Hashed password was #{user.hashed_password}" Chris@1494: end Chris@1494: Chris@1494: def test_setting_openid_should_return_true_when_set_to_true Chris@1494: assert_equal true, Setting.openid? Chris@1494: end Chris@1494: Chris@1494: else Chris@1494: puts "Skipping openid tests." Chris@1494: Chris@1494: def test_dummy Chris@1494: end Chris@1494: end Chris@1494: end