dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Special:UserLogin: Consolidate create account buttons
[lhc/web/wiklou.git] / tests / phpunit / includes / user / UserTest.php
1 <?php
2
3 define( 'NS_UNITTEST', 5600 );
4 define( 'NS_UNITTEST_TALK', 5601 );
5
6 /**
7 * @group Database
8 */
9 class UserTest extends MediaWikiTestCase {
10 /**
11 * @var User
12 */
13 protected $user;
14
15 protected function setUp() {
16 parent::setUp();
17
18 $this->setMwGlobals( [
19 'wgGroupPermissions' => [],
20 'wgRevokePermissions' => [],
21 ] );
22
23 $this->setUpPermissionGlobals();
24
25 $this->user = new User;
26 $this->user->addGroup( 'unittesters' );
27 }
28
29 private function setUpPermissionGlobals() {
30 global $wgGroupPermissions, $wgRevokePermissions;
31
32 # Data for regular $wgGroupPermissions test
33 $wgGroupPermissions['unittesters'] = [
34 'test' => true,
35 'runtest' => true,
36 'writetest' => false,
37 'nukeworld' => false,
38 ];
39 $wgGroupPermissions['testwriters'] = [
40 'test' => true,
41 'writetest' => true,
42 'modifytest' => true,
43 ];
44
45 # Data for regular $wgRevokePermissions test
46 $wgRevokePermissions['formertesters'] = [
47 'runtest' => true,
48 ];
49
50 # For the options test
51 $wgGroupPermissions['*'] = [
52 'editmyoptions' => true,
53 ];
54 }
55
56 /**
57 * @covers User::getGroupPermissions
58 */
59 public function testGroupPermissions() {
60 $rights = User::getGroupPermissions( [ 'unittesters' ] );
61 $this->assertContains( 'runtest', $rights );
62 $this->assertNotContains( 'writetest', $rights );
63 $this->assertNotContains( 'modifytest', $rights );
64 $this->assertNotContains( 'nukeworld', $rights );
65
66 $rights = User::getGroupPermissions( [ 'unittesters', 'testwriters' ] );
67 $this->assertContains( 'runtest', $rights );
68 $this->assertContains( 'writetest', $rights );
69 $this->assertContains( 'modifytest', $rights );
70 $this->assertNotContains( 'nukeworld', $rights );
71 }
72
73 /**
74 * @covers User::getGroupPermissions
75 */
76 public function testRevokePermissions() {
77 $rights = User::getGroupPermissions( [ 'unittesters', 'formertesters' ] );
78 $this->assertNotContains( 'runtest', $rights );
79 $this->assertNotContains( 'writetest', $rights );
80 $this->assertNotContains( 'modifytest', $rights );
81 $this->assertNotContains( 'nukeworld', $rights );
82 }
83
84 /**
85 * @covers User::getRights
86 */
87 public function testUserPermissions() {
88 $rights = $this->user->getRights();
89 $this->assertContains( 'runtest', $rights );
90 $this->assertNotContains( 'writetest', $rights );
91 $this->assertNotContains( 'modifytest', $rights );
92 $this->assertNotContains( 'nukeworld', $rights );
93 }
94
95 /**
96 * @dataProvider provideGetGroupsWithPermission
97 * @covers User::getGroupsWithPermission
98 */
99 public function testGetGroupsWithPermission( $expected, $right ) {
100 $result = User::getGroupsWithPermission( $right );
101 sort( $result );
102 sort( $expected );
103
104 $this->assertEquals( $expected, $result, "Groups with permission $right" );
105 }
106
107 public static function provideGetGroupsWithPermission() {
108 return [
109 [
110 [ 'unittesters', 'testwriters' ],
111 'test'
112 ],
113 [
114 [ 'unittesters' ],
115 'runtest'
116 ],
117 [
118 [ 'testwriters' ],
119 'writetest'
120 ],
121 [
122 [ 'testwriters' ],
123 'modifytest'
124 ],
125 ];
126 }
127
128 /**
129 * @dataProvider provideIPs
130 * @covers User::isIP
131 */
132 public function testIsIP( $value, $result, $message ) {
133 $this->assertEquals( $this->user->isIP( $value ), $result, $message );
134 }
135
136 public static function provideIPs() {
137 return [
138 [ '', false, 'Empty string' ],
139 [ ' ', false, 'Blank space' ],
140 [ '10.0.0.0', true, 'IPv4 private 10/8' ],
141 [ '10.255.255.255', true, 'IPv4 private 10/8' ],
142 [ '192.168.1.1', true, 'IPv4 private 192.168/16' ],
143 [ '203.0.113.0', true, 'IPv4 example' ],
144 [ '2002:ffff:ffff:ffff:ffff:ffff:ffff:ffff', true, 'IPv6 example' ],
145 // Not valid IPs but classified as such by MediaWiki for negated asserting
146 // of whether this might be the identifier of a logged-out user or whether
147 // to allow usernames like it.
148 [ '300.300.300.300', true, 'Looks too much like an IPv4 address' ],
149 [ '203.0.113.xxx', true, 'Assigned by UseMod to cloaked logged-out users' ],
150 ];
151 }
152
153 /**
154 * @dataProvider provideUserNames
155 * @covers User::isValidUserName
156 */
157 public function testIsValidUserName( $username, $result, $message ) {
158 $this->assertEquals( $this->user->isValidUserName( $username ), $result, $message );
159 }
160
161 public static function provideUserNames() {
162 return [
163 [ '', false, 'Empty string' ],
164 [ ' ', false, 'Blank space' ],
165 [ 'abcd', false, 'Starts with small letter' ],
166 [ 'Ab/cd', false, 'Contains slash' ],
167 [ 'Ab cd', true, 'Whitespace' ],
168 [ '192.168.1.1', false, 'IP' ],
169 [ 'User:Abcd', false, 'Reserved Namespace' ],
170 [ '12abcd232', true, 'Starts with Numbers' ],
171 [ '?abcd', true, 'Start with ? mark' ],
172 [ '#abcd', false, 'Start with #' ],
173 [ 'Abcdകഖഗഘ', true, ' Mixed scripts' ],
174 [ 'ജോസ്‌തോമസ്', false, 'ZWNJ- Format control character' ],
175 [ 'Ab cd', false, ' Ideographic space' ],
176 [ '300.300.300.300', false, 'Looks too much like an IPv4 address' ],
177 [ '302.113.311.900', false, 'Looks too much like an IPv4 address' ],
178 [ '203.0.113.xxx', false, 'Reserved for usage by UseMod for cloaked logged-out users' ],
179 ];
180 }
181
182 /**
183 * Test, if for all rights a right- message exist,
184 * which is used on Special:ListGroupRights as help text
185 * Extensions and core
186 */
187 public function testAllRightsWithMessage() {
188 // Getting all user rights, for core: User::$mCoreRights, for extensions: $wgAvailableRights
189 $allRights = User::getAllRights();
190 $allMessageKeys = Language::getMessageKeysFor( 'en' );
191
192 $rightsWithMessage = [];
193 foreach ( $allMessageKeys as $message ) {
194 // === 0: must be at beginning of string (position 0)
195 if ( strpos( $message, 'right-' ) === 0 ) {
196 $rightsWithMessage[] = substr( $message, strlen( 'right-' ) );
197 }
198 }
199
200 sort( $allRights );
201 sort( $rightsWithMessage );
202
203 $this->assertEquals(
204 $allRights,
205 $rightsWithMessage,
206 'Each user rights (core/extensions) has a corresponding right- message.'
207 );
208 }
209
210 /**
211 * Test User::editCount
212 * @group medium
213 * @covers User::getEditCount
214 */
215 public function testEditCount() {
216 $user = User::newFromName( 'UnitTestUser' );
217
218 if ( !$user->getId() ) {
219 $user->addToDatabase();
220 }
221
222 // let the user have a few (3) edits
223 $page = WikiPage::factory( Title::newFromText( 'Help:UserTest_EditCount' ) );
224 for ( $i = 0; $i < 3; $i++ ) {
225 $page->doEdit( (string)$i, 'test', 0, false, $user );
226 }
227
228 $user->clearInstanceCache();
229 $this->assertEquals(
230 3,
231 $user->getEditCount(),
232 'After three edits, the user edit count should be 3'
233 );
234
235 // increase the edit count and clear the cache
236 $user->incEditCount();
237
238 $user->clearInstanceCache();
239 $this->assertEquals(
240 4,
241 $user->getEditCount(),
242 'After increasing the edit count manually, the user edit count should be 4'
243 );
244 }
245
246 /**
247 * Test changing user options.
248 * @covers User::setOption
249 * @covers User::getOption
250 */
251 public function testOptions() {
252 $user = User::newFromName( 'UnitTestUser' );
253
254 if ( !$user->getId() ) {
255 $user->addToDatabase();
256 }
257
258 $user->setOption( 'userjs-someoption', 'test' );
259 $user->setOption( 'cols', 200 );
260 $user->saveSettings();
261
262 $user = User::newFromName( 'UnitTestUser' );
263 $this->assertEquals( 'test', $user->getOption( 'userjs-someoption' ) );
264 $this->assertEquals( 200, $user->getOption( 'cols' ) );
265 }
266
267 /**
268 * Bug 37963
269 * Make sure defaults are loaded when setOption is called.
270 * @covers User::loadOptions
271 */
272 public function testAnonOptions() {
273 global $wgDefaultUserOptions;
274 $this->user->setOption( 'userjs-someoption', 'test' );
275 $this->assertEquals( $wgDefaultUserOptions['cols'], $this->user->getOption( 'cols' ) );
276 $this->assertEquals( 'test', $this->user->getOption( 'userjs-someoption' ) );
277 }
278
279 /**
280 * Test password validity checks. There are 3 checks in core,
281 * - ensure the password meets the minimal length
282 * - ensure the password is not the same as the username
283 * - ensure the username/password combo isn't forbidden
284 * @covers User::checkPasswordValidity()
285 * @covers User::getPasswordValidity()
286 * @covers User::isValidPassword()
287 */
288 public function testCheckPasswordValidity() {
289 $this->setMwGlobals( [
290 'wgPasswordPolicy' => [
291 'policies' => [
292 'sysop' => [
293 'MinimalPasswordLength' => 8,
294 'MinimumPasswordLengthToLogin' => 1,
295 'PasswordCannotMatchUsername' => 1,
296 ],
297 'default' => [
298 'MinimalPasswordLength' => 6,
299 'PasswordCannotMatchUsername' => true,
300 'PasswordCannotMatchBlacklist' => true,
301 'MaximalPasswordLength' => 30,
302 ],
303 ],
304 'checks' => [
305 'MinimalPasswordLength' => 'PasswordPolicyChecks::checkMinimalPasswordLength',
306 'MinimumPasswordLengthToLogin' => 'PasswordPolicyChecks::checkMinimumPasswordLengthToLogin',
307 'PasswordCannotMatchUsername' => 'PasswordPolicyChecks::checkPasswordCannotMatchUsername',
308 'PasswordCannotMatchBlacklist' => 'PasswordPolicyChecks::checkPasswordCannotMatchBlacklist',
309 'MaximalPasswordLength' => 'PasswordPolicyChecks::checkMaximalPasswordLength',
310 ],
311 ],
312 ] );
313
314 $user = User::newFromName( 'Useruser' );
315 // Sanity
316 $this->assertTrue( $user->isValidPassword( 'Password1234' ) );
317
318 // Minimum length
319 $this->assertFalse( $user->isValidPassword( 'a' ) );
320 $this->assertFalse( $user->checkPasswordValidity( 'a' )->isGood() );
321 $this->assertTrue( $user->checkPasswordValidity( 'a' )->isOK() );
322 $this->assertEquals( 'passwordtooshort', $user->getPasswordValidity( 'a' ) );
323
324 // Maximum length
325 $longPass = str_repeat( 'a', 31 );
326 $this->assertFalse( $user->isValidPassword( $longPass ) );
327 $this->assertFalse( $user->checkPasswordValidity( $longPass )->isGood() );
328 $this->assertFalse( $user->checkPasswordValidity( $longPass )->isOK() );
329 $this->assertEquals( 'passwordtoolong', $user->getPasswordValidity( $longPass ) );
330
331 // Matches username
332 $this->assertFalse( $user->checkPasswordValidity( 'Useruser' )->isGood() );
333 $this->assertTrue( $user->checkPasswordValidity( 'Useruser' )->isOK() );
334 $this->assertEquals( 'password-name-match', $user->getPasswordValidity( 'Useruser' ) );
335
336 // On the forbidden list
337 $this->assertFalse( $user->checkPasswordValidity( 'Passpass' )->isGood() );
338 $this->assertEquals( 'password-login-forbidden', $user->getPasswordValidity( 'Passpass' ) );
339 }
340
341 /**
342 * @covers User::getCanonicalName()
343 * @dataProvider provideGetCanonicalName
344 */
345 public function testGetCanonicalName( $name, $expectedArray ) {
346 // fake interwiki map for the 'Interwiki prefix' testcase
347 $this->mergeMwGlobalArrayValue( 'wgHooks', [
348 'InterwikiLoadPrefix' => [
349 function ( $prefix, &$iwdata ) {
350 if ( $prefix === 'interwiki' ) {
351 $iwdata = [
352 'iw_url' => 'http://example.com/',
353 'iw_local' => 0,
354 'iw_trans' => 0,
355 ];
356 return false;
357 }
358 },
359 ],
360 ] );
361
362 foreach ( $expectedArray as $validate => $expected ) {
363 $this->assertEquals(
364 $expected,
365 User::getCanonicalName( $name, $validate === 'false' ? false : $validate ), $validate );
366 }
367 }
368
369 public static function provideGetCanonicalName() {
370 return [
371 'Leading space' => [ ' Leading space', [ 'creatable' => 'Leading space' ] ],
372 'Trailing space ' => [ 'Trailing space ', [ 'creatable' => 'Trailing space' ] ],
373 'Namespace prefix' => [ 'Talk:Username', [ 'creatable' => false, 'usable' => false,
374 'valid' => false, 'false' => 'Talk:Username' ] ],
375 'Interwiki prefix' => [ 'interwiki:Username', [ 'creatable' => false, 'usable' => false,
376 'valid' => false, 'false' => 'Interwiki:Username' ] ],
377 'With hash' => [ 'name with # hash', [ 'creatable' => false, 'usable' => false ] ],
378 'Multi spaces' => [ 'Multi spaces', [ 'creatable' => 'Multi spaces',
379 'usable' => 'Multi spaces' ] ],
380 'Lowercase' => [ 'lowercase', [ 'creatable' => 'Lowercase' ] ],
381 'Invalid character' => [ 'in[]valid', [ 'creatable' => false, 'usable' => false,
382 'valid' => false, 'false' => 'In[]valid' ] ],
383 'With slash' => [ 'with / slash', [ 'creatable' => false, 'usable' => false, 'valid' => false,
384 'false' => 'With / slash' ] ],
385 ];
386 }
387
388 /**
389 * @covers User::equals
390 */
391 public function testEquals() {
392 $first = User::newFromName( 'EqualUser' );
393 $second = User::newFromName( 'EqualUser' );
394
395 $this->assertTrue( $first->equals( $first ) );
396 $this->assertTrue( $first->equals( $second ) );
397 $this->assertTrue( $second->equals( $first ) );
398
399 $third = User::newFromName( '0' );
400 $fourth = User::newFromName( '000' );
401
402 $this->assertFalse( $third->equals( $fourth ) );
403 $this->assertFalse( $fourth->equals( $third ) );
404
405 // Test users loaded from db with id
406 $user = User::newFromName( 'EqualUnitTestUser' );
407 if ( !$user->getId() ) {
408 $user->addToDatabase();
409 }
410
411 $id = $user->getId();
412
413 $fifth = User::newFromId( $id );
414 $sixth = User::newFromName( 'EqualUnitTestUser' );
415 $this->assertTrue( $fifth->equals( $sixth ) );
416 }
417
418 /**
419 * @covers User::getId
420 */
421 public function testGetId() {
422 $user = User::newFromName( 'UTSysop' );
423 $this->assertTrue( $user->getId() > 0 );
424
425 }
426
427 /**
428 * @covers User::isLoggedIn
429 * @covers User::isAnon
430 */
431 public function testLoggedIn() {
432 $user = User::newFromName( 'UTSysop' );
433 $this->assertTrue( $user->isLoggedIn() );
434 $this->assertFalse( $user->isAnon() );
435
436 // Non-existent users are perceived as anonymous
437 $user = User::newFromName( 'UTNonexistent' );
438 $this->assertFalse( $user->isLoggedIn() );
439 $this->assertTrue( $user->isAnon() );
440
441 $user = new User;
442 $this->assertFalse( $user->isLoggedIn() );
443 $this->assertTrue( $user->isAnon() );
444 }
445
446 /**
447 * @covers User::checkAndSetTouched
448 */
449 public function testCheckAndSetTouched() {
450 $user = TestingAccessWrapper::newFromObject( User::newFromName( 'UTSysop' ) );
451 $this->assertTrue( $user->isLoggedIn() );
452
453 $touched = $user->getDBTouched();
454 $this->assertTrue(
455 $user->checkAndSetTouched(), "checkAndSetTouched() succeded" );
456 $this->assertGreaterThan(
457 $touched, $user->getDBTouched(), "user_touched increased with casOnTouched()" );
458
459 $touched = $user->getDBTouched();
460 $this->assertTrue(
461 $user->checkAndSetTouched(), "checkAndSetTouched() succeded #2" );
462 $this->assertGreaterThan(
463 $touched, $user->getDBTouched(), "user_touched increased with casOnTouched() #2" );
464 }
465 }
Wiklou, le Wiki du Wiklou