tests/phpunit/includes/api/ApiLoginTest.php

   1 <?php
   2
   3 /**
   4  * @group API
   5  * @group Database
   6  * @group medium
   7  *
   8  * @covers ApiLogin
   9  */
  10 class ApiLoginTest extends ApiTestCase {
  11
  12         /**
  13          * Test result of attempted login with an empty username
  14          */
  15         public function testApiLoginNoName() {
  16                 $data = $this->doApiRequest( array( 'action' => 'login',
  17                         'lgname' => '', 'lgpassword' => self::$users['sysop']->password,
  18                 ) );
  19                 $this->assertEquals( 'NoName', $data[0]['login']['result'] );
  20         }
  21
  22         public function testApiLoginBadPass() {
  23                 global $wgServer;
  24
  25                 $user = self::$users['sysop'];
  26                 $user->user->logOut();
  27
  28                 if ( !isset( $wgServer ) ) {
  29                         $this->markTestIncomplete( 'This test needs $wgServer to be set in LocalSettings.php' );
  30                 }
  31                 $ret = $this->doApiRequest( array(
  32                         "action" => "login",
  33                         "lgname" => $user->username,
  34                         "lgpassword" => "bad",
  35                 ) );
  36
  37                 $result = $ret[0];
  38
  39                 $this->assertNotInternalType( "bool", $result );
  40                 $a = $result["login"]["result"];
  41                 $this->assertEquals( "NeedToken", $a );
  42
  43                 $token = $result["login"]["token"];
  44
  45                 $ret = $this->doApiRequest(
  46                         array(
  47                                 "action" => "login",
  48                                 "lgtoken" => $token,
  49                                 "lgname" => $user->username,
  50                                 "lgpassword" => "badnowayinhell",
  51                         ),
  52                         $ret[2]
  53                 );
  54
  55                 $result = $ret[0];
  56
  57                 $this->assertNotInternalType( "bool", $result );
  58                 $a = $result["login"]["result"];
  59
  60                 $this->assertEquals( "WrongPass", $a );
  61         }
  62
  63         public function testApiLoginGoodPass() {
  64                 global $wgServer;
  65
  66                 if ( !isset( $wgServer ) ) {
  67                         $this->markTestIncomplete( 'This test needs $wgServer to be set in LocalSettings.php' );
  68                 }
  69
  70                 $user = self::$users['sysop'];
  71                 $user->user->logOut();
  72
  73                 $ret = $this->doApiRequest( array(
  74                                 "action" => "login",
  75                                 "lgname" => $user->username,
  76                                 "lgpassword" => $user->password,
  77                         )
  78                 );
  79
  80                 $result = $ret[0];
  81                 $this->assertNotInternalType( "bool", $result );
  82                 $this->assertNotInternalType( "null", $result["login"] );
  83
  84                 $a = $result["login"]["result"];
  85                 $this->assertEquals( "NeedToken", $a );
  86                 $token = $result["login"]["token"];
  87
  88                 $ret = $this->doApiRequest(
  89                         array(
  90                                 "action" => "login",
  91                                 "lgtoken" => $token,
  92                                 "lgname" => $user->username,
  93                                 "lgpassword" => $user->password,
  94                         ),
  95                         $ret[2]
  96                 );
  97
  98                 $result = $ret[0];
  99
 100                 $this->assertNotInternalType( "bool", $result );
 101                 $a = $result["login"]["result"];
 102
 103                 $this->assertEquals( "Success", $a );
 104         }
 105
 106         /**
 107          * @group Broken
 108          */
 109         public function testApiLoginGotCookie() {
 110                 $this->markTestIncomplete( "The server can't do external HTTP requests, and the internal one won't give cookies" );
 111
 112                 global $wgServer, $wgScriptPath;
 113
 114                 if ( !isset( $wgServer ) ) {
 115                         $this->markTestIncomplete( 'This test needs $wgServer to be set in LocalSettings.php' );
 116                 }
 117                 $user = self::$users['sysop'];
 118
 119                 $req = MWHttpRequest::factory( self::$apiUrl . "?action=login&format=xml",
 120                         array( "method" => "POST",
 121                                 "postData" => array(
 122                                         "lgname" => $user->username,
 123                                         "lgpassword" => $user->password
 124                                 )
 125                         )
 126                 );
 127                 $req->execute();
 128
 129                 libxml_use_internal_errors( true );
 130                 $sxe = simplexml_load_string( $req->getContent() );
 131                 $this->assertNotInternalType( "bool", $sxe );
 132                 $this->assertThat( $sxe, $this->isInstanceOf( "SimpleXMLElement" ) );
 133                 $this->assertNotInternalType( "null", $sxe->login[0] );
 134
 135                 $a = $sxe->login[0]->attributes()->result[0];
 136                 $this->assertEquals( ' result="NeedToken"', $a->asXML() );
 137                 $token = (string)$sxe->login[0]->attributes()->token;
 138
 139                 $req->setData( array(
 140                         "lgtoken" => $token,
 141                         "lgname" => $user->username,
 142                         "lgpassword" => $user->password ) );
 143                 $req->execute();
 144
 145                 $cj = $req->getCookieJar();
 146                 $serverName = parse_url( $wgServer, PHP_URL_HOST );
 147                 $this->assertNotEquals( false, $serverName );
 148                 $serializedCookie = $cj->serializeToHttpRequest( $wgScriptPath, $serverName );
 149                 $this->assertNotEquals( '', $serializedCookie );
 150                 $this->assertRegexp( '/_session=[^;]*; .*UserID=[0-9]*; .*UserName=' . $user->userName . '; .*Token=/', $serializedCookie );
 151         }
 152
 153         public function testRunLogin() {
 154                 $sysopUser = self::$users['sysop'];
 155                 $data = $this->doApiRequest( array(
 156                         'action' => 'login',
 157                         'lgname' => $sysopUser->username,
 158                         'lgpassword' => $sysopUser->password ) );
 159
 160                 $this->assertArrayHasKey( "login", $data[0] );
 161                 $this->assertArrayHasKey( "result", $data[0]['login'] );
 162                 $this->assertEquals( "NeedToken", $data[0]['login']['result'] );
 163                 $token = $data[0]['login']['token'];
 164
 165                 $data = $this->doApiRequest( array(
 166                         'action' => 'login',
 167                         "lgtoken" => $token,
 168                         "lgname" => $sysopUser->username,
 169                         "lgpassword" => $sysopUser->password ), $data[2] );
 170
 171                 $this->assertArrayHasKey( "login", $data[0] );
 172                 $this->assertArrayHasKey( "result", $data[0]['login'] );
 173                 $this->assertEquals( "Success", $data[0]['login']['result'] );
 174                 $this->assertArrayHasKey( 'lgtoken', $data[0]['login'] );
 175         }
 176
 177 }