Chris@1115: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1115: # Chris@1115: # This program is free software; you can redistribute it and/or Chris@1115: # modify it under the terms of the GNU General Public License Chris@1115: # as published by the Free Software Foundation; either version 2 Chris@1115: # of the License, or (at your option) any later version. Chris@1115: # Chris@1115: # This program is distributed in the hope that it will be useful, Chris@1115: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1115: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1115: # GNU General Public License for more details. Chris@1115: # Chris@1115: # You should have received a copy of the GNU General Public License Chris@1115: # along with this program; if not, write to the Free Software Chris@1115: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1115: Chris@1115: require File.expand_path('../../test_helper', __FILE__) Chris@1115: Chris@1115: class AccountControllerOpenidTest < ActionController::TestCase Chris@1115: tests AccountController Chris@1115: fixtures :users, :roles Chris@1115: Chris@1115: def setup Chris@1115: User.current = nil Chris@1115: Setting.openid = '1' Chris@1115: end Chris@1115: Chris@1115: def teardown Chris@1115: Setting.openid = '0' Chris@1115: end Chris@1115: Chris@1115: if Object.const_defined?(:OpenID) Chris@1115: Chris@1115: def test_login_with_openid_for_existing_user Chris@1115: Setting.self_registration = '3' Chris@1115: existing_user = User.new(:firstname => 'Cool', Chris@1115: :lastname => 'User', Chris@1115: :mail => 'user@somedomain.com', Chris@1115: :identity_url => 'http://openid.example.com/good_user') Chris@1115: existing_user.login = 'cool_user' Chris@1115: assert existing_user.save! Chris@1464: Chris@1115: post :login, :openid_url => existing_user.identity_url Chris@1115: assert_redirected_to '/my/page' Chris@1115: end Chris@1464: Chris@1115: def test_login_with_invalid_openid_provider Chris@1115: Setting.self_registration = '0' Chris@1115: post :login, :openid_url => 'http;//openid.example.com/good_user' Chris@1115: assert_redirected_to home_url Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_for_existing_non_active_user Chris@1115: Setting.self_registration = '2' Chris@1115: existing_user = User.new(:firstname => 'Cool', Chris@1115: :lastname => 'User', Chris@1115: :mail => 'user@somedomain.com', Chris@1115: :identity_url => 'http://openid.example.com/good_user', Chris@1115: :status => User::STATUS_REGISTERED) Chris@1115: existing_user.login = 'cool_user' Chris@1115: assert existing_user.save! Chris@1464: Chris@1115: post :login, :openid_url => existing_user.identity_url Chris@1115: assert_redirected_to '/login' Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_created Chris@1115: Setting.self_registration = '3' Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1115: assert_redirected_to '/my/account' Chris@1115: user = User.find_by_login('cool_user') Chris@1115: assert user Chris@1115: assert_equal 'Cool', user.firstname Chris@1115: assert_equal 'User', user.lastname Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_and_self_registration_off Chris@1115: Setting.self_registration = '0' Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1115: assert_redirected_to home_url Chris@1115: user = User.find_by_login('cool_user') Chris@1115: assert_nil user Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_created_with_email_activation_should_have_a_token Chris@1115: Setting.self_registration = '1' Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1115: assert_redirected_to '/login' Chris@1115: user = User.find_by_login('cool_user') Chris@1115: assert user Chris@1464: Chris@1115: token = Token.find_by_user_id_and_action(user.id, 'register') Chris@1115: assert token Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_created_with_manual_activation Chris@1115: Setting.self_registration = '2' Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1115: assert_redirected_to '/login' Chris@1115: user = User.find_by_login('cool_user') Chris@1115: assert user Chris@1115: assert_equal User::STATUS_REGISTERED, user.status Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_with_conflict_should_register Chris@1115: Setting.self_registration = '3' Chris@1115: existing_user = User.new(:firstname => 'Cool', :lastname => 'User', :mail => 'user@somedomain.com') Chris@1115: existing_user.login = 'cool_user' Chris@1115: assert existing_user.save! Chris@1464: Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_user' Chris@1115: assert_response :success Chris@1115: assert_template 'register' Chris@1115: assert assigns(:user) Chris@1115: assert_equal 'http://openid.example.com/good_user', assigns(:user)[:identity_url] Chris@1115: end Chris@1464: Chris@1115: def test_login_with_openid_with_new_user_with_missing_information_should_register Chris@1115: Setting.self_registration = '3' Chris@1464: Chris@1115: post :login, :openid_url => 'http://openid.example.com/good_blank_user' Chris@1115: assert_response :success Chris@1115: assert_template 'register' Chris@1115: assert assigns(:user) Chris@1115: assert_equal 'http://openid.example.com/good_blank_user', assigns(:user)[:identity_url] Chris@1115: Chris@1115: assert_select 'input[name=?]', 'user[login]' Chris@1115: assert_select 'input[name=?]', 'user[password]' Chris@1115: assert_select 'input[name=?]', 'user[password_confirmation]' Chris@1115: assert_select 'input[name=?][value=?]', 'user[identity_url]', 'http://openid.example.com/good_blank_user' Chris@1115: end Chris@1115: Chris@1464: def test_post_login_should_not_verify_token_when_using_open_id Chris@1464: ActionController::Base.allow_forgery_protection = true Chris@1464: AccountController.any_instance.stubs(:using_open_id?).returns(true) Chris@1464: AccountController.any_instance.stubs(:authenticate_with_open_id).returns(true) Chris@1464: post :login Chris@1464: assert_response 200 Chris@1464: ensure Chris@1464: ActionController::Base.allow_forgery_protection = false Chris@1464: end Chris@1464: Chris@1115: def test_register_after_login_failure_should_not_require_user_to_enter_a_password Chris@1115: Setting.self_registration = '3' Chris@1115: Chris@1115: assert_difference 'User.count' do Chris@1115: post :register, :user => { Chris@1115: :login => 'good_blank_user', Chris@1115: :password => '', Chris@1115: :password_confirmation => '', Chris@1115: :firstname => 'Cool', Chris@1115: :lastname => 'User', Chris@1115: :mail => 'user@somedomain.com', Chris@1115: :identity_url => 'http://openid.example.com/good_blank_user' Chris@1115: } Chris@1115: assert_response 302 Chris@1115: end Chris@1115: Chris@1115: user = User.first(:order => 'id DESC') Chris@1115: assert_equal 'http://openid.example.com/good_blank_user', user.identity_url Chris@1115: assert user.hashed_password.blank?, "Hashed password was #{user.hashed_password}" Chris@1115: end Chris@1115: Chris@1115: def test_setting_openid_should_return_true_when_set_to_true Chris@1115: assert_equal true, Setting.openid? Chris@1115: end Chris@1115: Chris@1115: else Chris@1115: puts "Skipping openid tests." Chris@1115: Chris@1115: def test_dummy Chris@1115: end Chris@1115: end Chris@1115: end