Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-05 08:04:09 +01:00
Code Issues Packages Projects Releases Wiki Activity

chore(tests): Change tests namespace

Browse Source 
Signed-off-by: Rubén D <nuxsmin@syspass.org>
This commit is contained in:
Rubén D
2023-12-09 11:45:33 +01:00
parent f519f6b23e
commit ea72a0cc6a
175 changed files with 703 additions and 690 deletions
Download Patch File Download Diff File Expand all files Collapse all files

981
tests/SPT/Http/RequestTest.php Normal file
View File

@@ -0,0 +1,981 @@
<?php
/*
* sysPass
*
* @author nuxsmin
* @link https://syspass.org
* @copyright 2012-2023, Rubén Domínguez nuxsmin@$syspass.org
*
* This file is part of sysPass.
*
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*/
namespace Http;
use Klein\DataCollection\DataCollection;
use Klein\DataCollection\HeaderDataCollection;
use PHPUnit\Framework\MockObject\Exception;
use PHPUnit\Framework\MockObject\MockObject;
use RuntimeException;
use SP\Core\Crypt\Hash;
use SP\Domain\Core\Crypt\CryptPKIInterface;
use SP\Domain\Core\Exceptions\SPException;
use SP\Domain\Http\Method;
use SP\Http\Request;
use SPT\UnitaryTestCase;
use function PHPUnit\Framework\exactly;
/**
* Class RequestTest
*
* @group unitary
*/
class RequestTest extends UnitaryTestCase
{
private \Klein\Request|MockObject $kleinRequest;
private CryptPKIInterface|MockObject $cryptPKI;
private HeaderDataCollection|MockObject $headers;
private DataCollection $paramsGet;
private DataCollection $paramsPost;
private DataCollection $server;
private DataCollection $files;
/**
* @throws Exception
*/
public function testIsJson()
{
$this->headers->expects(self::once())
->method('get')
->with('Accept')
->willReturn('application/json');
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertTrue($request->isJson());
}
private function ensureGet(): void
{
$this->kleinRequest
->expects(self::once())
->method('method')
->willReturn('GET');
}
/**
* @throws Exception
*/
public function testIsJsonFalse()
{
$this->headers->expects(self::once())
->method('get')
->with('Accept')
->willReturn('test');
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertFalse($request->isJson());
}
public function testAnalyzeString()
{
$this->ensureGet();
$this->paramsGet->set('test', 'a_value');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeString('test');
$this->assertEquals('a_value', $out);
}
public function testAnalyzeStringWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeString('test', 'a_default_value');
$this->assertEquals('a_default_value', $out);
}
public function testGetServerPort()
{
$this->ensureGet();
$this->server->set('SERVER_PORT', 1080);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(1080, $request->getServerPort());
}
public function testGetServerPortWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(80, $request->getServerPort());
}
public function testAnalyzeBool()
{
$this->ensureGet();
$this->paramsGet->set('test', 'True');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeBool('test');
$this->assertTrue($out);
}
public function testAnalyzeBoolWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeBool('test');
$this->assertFalse($out);
}
public function testGetXForwardedData()
{
$host = self::$faker->domainName;
$proto = 'http';
$this->ensureGet();
$this->headers->expects(exactly(4))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded-Host'],
['Http-Forwarded-Proto'],
['Http-Forwarded'],
['Http-Forwarded-For'])
)
->willReturn($host, $proto, null, null);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$expected = [
'host' => $host,
'proto' => $proto,
'for' => null
];
$this->assertEquals($expected, $request->getXForwardedData());
}
public function testGetXForwardedDataWithEmpty()
{
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded-Host'],
['Http-Forwarded-Proto'])
)
->willReturn('', '');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertNull($request->getXForwardedData());
}
public function testGetFile()
{
$this->ensureGet();
$this->files->set('test_file', ['a' => 'file']);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->getFile('test_file');
$expected = ['a' => 'file'];
$this->assertEquals($expected, $out);
}
public function testGetFileWithNoEntry()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->getFile('test_file');
$this->assertNull($out);
}
public function testGetMethodWithGet()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(Method::GET, $request->getMethod());
}
public function testGetMethodWithPost()
{
$this->ensurePost();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(Method::POST, $request->getMethod());
}
private function ensurePost(): void
{
$this->kleinRequest
->expects(self::once())
->method('method')
->willReturn('POST');
}
public function testGetClientAddressFromServer()
{
$address = self::$faker->ipv4;
$this->server->set('REMOTE_ADDR', $address);
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'], ['Http-Forwarded-For'])
)
->willReturn(null, null);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($address, $request->getClientAddress());
}
public function testGetClientAddressWithForwarded()
{
$address = self::$faker->ipv4;
$domain = self::$faker->domainName;
$this->server->set('REMOTE_ADDR', 'test');
$this->ensureGet();
$this->headers->expects(exactly(1))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('for=%s;host=%s;proto=https', $address, $domain));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($address, $request->getClientAddress());
}
public function testGetClientAddressWithForwardedFor()
{
$address = self::$faker->ipv4;
$this->server->set('REMOTE_ADDR', 'test');
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'], ['Http-Forwarded-For'])
)
->willReturn(null, sprintf('%s,', $address));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($address, $request->getClientAddress());
}
public function testGetClientAddressWithForwardedForFull()
{
$addresses = sprintf('%s,%s', self::$faker->ipv4, self::$faker->ipv6);
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'], ['Http-Forwarded-For'])
)
->willReturn(null, $addresses);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($addresses, $request->getClientAddress(true));
}
public function testGetServer()
{
$this->ensureGet();
$this->server->set('test', 123);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->getServer('test');
self::assertEquals('123', $out);
}
public function testGetServerWithoutEntry()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->getServer('test');
self::assertEmpty($out);
}
public function testAnalyzeArray()
{
$this->ensureGet();
$this->paramsGet->set('test', ['a' => 'test', 'b' => 1]);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeArray('test');
$this->assertEquals(['a' => 'test', 'b' => 1], $out);
}
public function testAnalyzeArrayWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeArray('test', null, ['c' => 'test', 'd' => 1]);
$this->assertEquals(['c' => 'test', 'd' => 1], $out);
}
public function testAnalyzeArrayWithMapper()
{
$mapper = static fn(array $items) => array_map('strtoupper', $items);
$this->ensureGet();
$this->paramsGet->set('test', ['a' => 'a_test', 'b' => 1]);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeArray('test', $mapper);
$this->assertEquals(['a' => 'A_TEST', 'b' => 1], $out);
}
public function testGetForwardedData()
{
$address = self::$faker->ipv4;
$domain = self::$faker->domainName;
$this->server->set('REMOTE_ADDR', 'test');
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('for=%s;host=%s;proto=https', $address, $domain));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$expected = [
'host' => $domain,
'proto' => 'https',
'for' => [$address],
];
$this->assertEquals($expected, $request->getForwardedData());
}
public function testGetForwardedDataWhitEmptyHost()
{
$this->server->set('REMOTE_ADDR', 'test');
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('for=%s;proto=https', self::$faker->ipv4));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertNull($request->getForwardedData());
}
public function testGetForwardedDataWhitEmptyProto()
{
$this->server->set('REMOTE_ADDR', 'test');
$this->ensureGet();
$this->headers->expects(self::exactly(2))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('host=%s;for=192.168.0.1', self::$faker->domainName));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertNull($request->getForwardedData());
}
public function testCheckReload()
{
$this->ensureGet();
$this->headers->expects(self::once())
->method('get')
->with('Cache-Control')
->willReturn('max-age=0');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertTrue($request->checkReload());
}
public function testCheckReloadFalse()
{
$this->ensureGet();
$this->headers->expects(self::once())
->method('get')
->with('Cache-Control')
->willReturn('test');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertFalse($request->checkReload());
}
public function testAnalyzeEmail()
{
$this->ensureGet();
$this->paramsGet->set('test', 'me@email.com');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEmail('test');
$this->assertEquals('me@email.com', $out);
}
public function testAnalyzeEmailWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEmail('test', 'another@email.com');
$this->assertEquals('another@email.com', $out);
}
public function testAnalyzeInt()
{
$this->ensureGet();
$this->paramsGet->set('test', 123);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeInt('test');
$this->assertEquals(123, $out);
}
public function testAnalyzeIntWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeInt('test', 456);
$this->assertEquals(456, $out);
}
public function testIsHttps()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertFalse($request->isHttps());
}
public function testGetRequest()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($this->kleinRequest, $request->getRequest());
}
public function testIsAjaxWithHeader()
{
$this->ensureGet();
$this->headers
->expects(self::once())
->method('get')
->with('X-Requested-With')
->willReturn('XMLHttpRequest');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertTrue($request->isAjax());
}
public function testIsAjaxWithQueryParameter()
{
$this->ensureGet();
$this->headers
->expects(self::once())
->method('get')
->with('X-Requested-With')
->willReturn('test');
$this->paramsGet->set('isAjax', 1);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertTrue($request->isAjax());
}
public function testIsAjaxFalse()
{
$this->ensureGet();
$this->headers
->expects(self::once())
->method('get')
->with('X-Requested-With')
->willReturn('test');
$this->paramsGet->set('isAjax', 0);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertFalse($request->isAjax());
}
public function testAnalyzeEncrypted()
{
$this->ensureGet();
$this->paramsGet->set('test', base64_encode('value_encrypted'));
$this->cryptPKI
->expects(self::once())
->method('decryptRSA')
->with('value_encrypted')
->willReturn('value');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEncrypted('test');
$this->assertEquals('value', $out);
}
public function testAnalyzeEncryptedWithDecryptToNull()
{
$this->ensureGet();
$this->paramsGet->set('test', 'value_encrypted');
$this->cryptPKI
->expects(self::once())
->method('decryptRSA')
->with(self::anything())
->willReturn(null);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEncrypted('test');
$this->assertEquals('value_encrypted', $out);
}
public function testAnalyzeEncryptedWithWrongParam()
{
$this->ensureGet();
$this->cryptPKI->expects(self::never())->method('decryptRSA');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEncrypted('test');
$this->assertEmpty($out);
}
public function testAnalyzeEncryptedWithException()
{
$this->ensureGet();
$this->paramsGet->set('test', 'value_encrypted');
$this->cryptPKI
->expects(self::once())
->method('decryptRSA')
->willThrowException(new RuntimeException());
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeEncrypted('test');
$this->assertEquals('value_encrypted', $out);
}
/**
* @throws SPException
*/
public function testVerifySignature()
{
$params = [
'a' => 1,
'b' => 2,
'c' => 3
];
$signature = Hash::signMessage(implode('&', $params), 'a_key');
$this->ensureGet();
$this->paramsGet->set('h', $signature);
$this->kleinRequest
->expects(self::once())
->method('params')
->with('h')
->willReturn($params);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$request->verifySignature('a_key');
}
/**
* @throws SPException
*/
public function testVerifySignatureWithParam()
{
$signature = Hash::signMessage('a_value', 'a_key');
$this->ensureGet();
$this->paramsGet->set('h', $signature);
$this->paramsGet->set('test', 'a_value');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$request->verifySignature('a_key', 'test');
}
/**
* @throws SPException
*/
public function testVerifySignatureWithoutHash()
{
$params = [
'a' => 1,
'b' => 2,
'c' => 3
];
$signature = Hash::signMessage(implode('&', $params), 'a_key');
$this->ensureGet();
$this->kleinRequest->expects(self::never())->method('params');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->expectException(SPException::class);
$this->expectExceptionMessage('URI string altered');
$request->verifySignature('a_key');
}
public function testGetForwardedFor()
{
$addresses = [
self::$faker->ipv4,
self::$faker->ipv6
];
$this->ensureGet();
$this->headers->expects(exactly(1))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('for=%s,for=%s', $addresses[0], $addresses[1]));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($addresses, $request->getForwardedFor());
}
public function testGetForwardedForWithXForwarded()
{
$addresses = [
self::$faker->ipv4,
self::$faker->ipv6
];
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'], ['Http-Forwarded-For'])
)
->willReturn(null, sprintf('%s,%s', $addresses[0], $addresses[1]));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals($addresses, $request->getForwardedFor());
}
public function testGetForwardedForFail()
{
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'], ['Http-Forwarded-For'])
)
->willReturn(null, null);
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertNull($request->getForwardedFor());
}
public function testAnalyzeUnsafeString()
{
$this->ensureGet();
$this->paramsGet->set('test', 'me@email.com');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeUnsafeString('test');
$this->assertEquals('me@email.com', $out);
}
public function testAnalyzeUnsafeStringWithDefault()
{
$this->ensureGet();
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->analyzeUnsafeString('test', 'another@email.com');
$this->assertEquals('another@email.com', $out);
}
public function testGetSecureAppPath()
{
$path = '../../opt/project/index.php';
$out = Request::getSecureAppPath($path);
$this->assertEquals('/opt/project/index.php', $out);
}
public function testGetSecureAppPathWithUnknownFile()
{
$path = '../../opt/project/index.test';
$out = Request::getSecureAppPath($path);
$this->assertEmpty($out);
}
public function testGetSecureAppPathWhithWrongBase()
{
$path = '../../opt/project/index.test';
$out = Request::getSecureAppPath($path, '/tmp');
$this->assertEmpty($out);
}
public function testGetHttpHost()
{
$address = self::$faker->ipv4;
$domain = self::$faker->domainName;
$this->ensureGet();
$this->headers->expects(exactly(2))
->method('get')
->with('Http-Forwarded')
->willReturn(sprintf('for=%s;host=%s;proto=https', $address, $domain));
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(sprintf('https://%s', $domain), $request->getHttpHost());
}
public function testGetHttpHostWithXForwarded()
{
$domain = self::$faker->domainName;
$this->ensureGet();
$this->headers->expects(exactly(4))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'],
['Http-Forwarded-Host'],
['Http-Forwarded-Proto'],
['Http-Forwarded'])
)
->willReturn('', $domain, 'https', 'for=10.10.10.10');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(sprintf('https://%s', $domain), $request->getHttpHost());
}
public function testGetHttpHostWithXForwardedWithServer()
{
$domain = self::$faker->domainName;
$this->server->set('HTTP_HOST', $domain);
$this->ensureGet();
$this->headers->expects(exactly(3))
->method('get')
->with(
...
self::withConsecutive(['Http-Forwarded'],
['Http-Forwarded-Host'],
['Http-Forwarded-Proto'])
)
->willReturn('', '', '');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$this->assertEquals(sprintf('http://%s', $domain), $request->getHttpHost());
}
public function testGetHeader()
{
$this->ensureGet();
$this->headers
->expects(self::once())
->method('get')
->with('test')
->willReturn('a_value');
$request = new Request($this->kleinRequest, $this->cryptPKI);
$out = $request->getHeader('test');
$this->assertEquals('a_value', $out);
}
public function testGetSecureAppFile()
{
$path = '../../opt/project/index.php';
$out = Request::getSecureAppFile($path);
$this->assertEquals('index.php', $out);
}
public function testGetSecureAppFileWithUnknownFile()
{
$path = '../../opt/project/index.test';
$out = Request::getSecureAppFile($path);
$this->assertEquals('', $out);
}
public function testGetSecureAppFileWithWrongBase()
{
$path = '../../opt/project/index.php';
$out = Request::getSecureAppFile($path, '/tmp');
$this->assertEquals('', $out);
}
protected function setUp(): void
{
parent::setUp();
$this->kleinRequest = $this->createMock(\Klein\Request::class);
$this->cryptPKI = $this->createMock(CryptPKIInterface::class);
$this->headers = $this->createMock(HeaderDataCollection::class);
$this->kleinRequest
->expects(self::atMost(1))
->method('headers')
->willReturn($this->headers);
$this->paramsGet = new DataCollection();
$this->kleinRequest
->expects(self::atMost(1))
->method('paramsGet')
->willReturn($this->paramsGet);
$this->paramsPost = new DataCollection();
$this->kleinRequest
->expects(self::atMost(1))
->method('paramsPost')
->willReturn($this->paramsPost);
$this->server = new DataCollection();
$this->kleinRequest
->expects(self::any())
->method('server')
->willReturn($this->server);
$this->files = new DataCollection();
$this->kleinRequest
->expects(self::any())
->method('files')
->willReturn($this->files);
}
}