AuthControllerTest.php

<?php
/**
 * Copyright (c) 2012, Agence Française Informatique (AFI). All rights reserved.
 *
 * AFI-OPAC 2.0 is free software; you can redistribute it and/or modify
 * it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE as published by
 * the Free Software Foundation.
 *
 * There are special exceptions to the terms and conditions of the AGPL as it
 * is applied to this software (see README file).
 *
 * AFI-OPAC 2.0 is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
 *
 * You should have received a copy of the GNU AFFERO GENERAL PUBLIC LICENSE
 * along with AFI-OPAC 2.0; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301  USA 
 */
require_once 'AbstractControllerTestCase.php';

abstract class PortailWithOneLoginModuleTestCase extends AbstractControllerTestCase {
	public function setUp() {
		parent::setUp();

		Storm_Test_ObjectWrapper::onLoaderOfModel('Class_IntBib')
			->whenCalled('findAllBy')
			->answers([]);

		$cfg_accueil = array('modules' => array(4 => array('division' => '4',
																									'id_module' => 4,
																									'type_module' => 'LOGIN',
																									'preferences' => array(
																											'titre'	=> 'Se connecter',
																											'identifiant' => 'Numéro de carte',
																											'mot_de_passe'=> 'Année de naissance',
																											'identifiant_exemple' => 'jj-mm-aaaa',
																											'mot_de_passe_exemple' => '1983',
																											'lien_connexion' => 'please, log me',
																											'lien_mot_de_passe_oublie' => 'me rappelle plus'))),
												 'options' => 	array());

		Class_Profil::getCurrentProfil()
			->setBrowser('opac')
			->setCfgAccueil(ZendAfi_Filters_Serialize::serialize($cfg_accueil));
	}
}



class AuthControllerInviteLoggedTest extends PortailWithOneLoginModuleTestCase {
	protected function _loginHook($account) {
		$account->ROLE = "invite";
		$account->ROLE_LEVEL = 1;
	}

	public function setUp() {
		parent::setUp();
		$this->dispatch('/opac/');
	}

	/** @test */
	public function noLinkPretsShouldBePresent() {
		$this->assertNotXPath('//div[@id="boite_login"]//a[contains(@href, "prets")]');
	}

	/** @test */
	public function linkSeDeconnecterShouldBePresent() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "auth/logout")]');
	}
}




class AuthControllerAbonneSIGBLoggedTest extends PortailWithOneLoginModuleTestCase {
	protected function _loginHook($account) {
		$account->ROLE = "abonne_sigb";
		$account->ROLE_LEVEL = ZendAfi_Acl_AdminControllerRoles::ABONNE_SIGB;
		$account->ID_USER      = 5;
		$account->ID_SITE      = 1;
	}

	public function setUp() {
		$this->emprunteur_patrick = Class_WebService_SIGB_Emprunteur::newInstance(5, 'patrick')
			->empruntsAddAll(array(Class_WebService_SIGB_Emprunt::newInstanceWithEmptyExemplaire()
														 ->setDateRetour('23/12/2056'),

														 Class_WebService_SIGB_Emprunt::newInstanceWithEmptyExemplaire()
														 ->setDateRetour('3/2/2056'),

														 Class_WebService_SIGB_Emprunt::newInstanceWithEmptyExemplaire()
														 ->setDateRetour('23/1/1999')))
			
			->reservationsAddAll(array(Class_WebService_SIGB_Reservation::newInstanceWithEmptyExemplaire()));

		Class_Users::getLoader()->newInstanceWithId(5)
			->setLogin('patrick')
			->setIdabon(456)
			->setFicheSigb(array('fiche' => $this->emprunteur_patrick));

		parent::setUp();
		$this->dispatch('/opac/');
	}


	/** @test */
	public function linkPretsShouldBePresent() {
		$this->assertXPathContentContains('//div[@id="boite_login"]//a[contains(@href, "prets")]', '3');
	}


	/** @test */
	public function linkReservationsShouldBePresent() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "reservations")]');
	}


	/** @test */
	public function linkSeDeconnecterShouldBePresent() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "auth/logout")]');
	}
}



class AuthControllerAbonneSIGBLoggedLogoutTest extends PortailWithOneLoginModuleTestCase {
	public function setUp() {
		parent::setUp();
		$this->dispatch('/opac/auth/logout');
	}

	/** @test */
	public function answerShouldRedirectToRoot() {
		$this->assertRedirectTo('/');
	}
}




abstract class AuthControllerNobodyLoggedTestCase extends PortailWithOneLoginModuleTestCase {
	protected function _loginHook($account) {
		$account->ROLE = "";
		$account->ROLE_LEVEL = 0;
		$account->ID_USER = "";
		$account->PSEUDO = "";
	}
}




class AuthControllerNobodyLoggedAndRegistrationAllowedBoiteLoginTest extends AuthControllerNobodyLoggedTestCase {
	public function setUp() {
		parent::setUp();

		Class_AdminVar::getLoader()
			->newInstanceWithId('INTERDIRE_ENREG_UTIL')
			->setValeur(0);

		$this->dispatch('/opac/');
	}


	public function testLinkSeConnecter() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@onclick, "submit")]');
		$this->assertXPathContentContains('//div[@id="boite_login"]//a[contains(@onclick, "submit")]',
																			'please, log me');
	}

	public function testLinkLostPassword() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "auth/lostpass")]');
		$this->assertXPathContentContains('//div[@id="boite_login"]//a[contains(@href, "auth/lostpass")]',
																			'me rappelle plus');
	}

	public function testLinkSenregistrer() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "auth/register")]');
		$this->assertXPathContentContains('//div[@id="boite_login"]//a[contains(@href, "auth/register")]',
																			"S'enregistrer");
	}


	public function testCanAccessRegisterPage() {
		$this->dispatch('auth/register');
		$this->assertAction('register');
		$this->assertController('auth');
		$this->assertNotRedirect('/');
	}


	/** @test */
	public function inputIdentifiantShouldHavePlaceHolderJJ_MM_AAAA() {
		$this->assertXPath('//input[@name="username"][@placeholder="jj-mm-aaaa"]');
	}


	/** @test */
	public function inputPasswordShouldHavePlaceHolder1983() {
		$this->assertXPath('//input[@name="password"][@placeholder="1983"]');
	}


	/** @test */
	function headShouldContainsAbonnesJS() {		
		$this->assertXPath('//head//script[contains(@src,"public/opac/js/abonne.js")]', $this->_response->getBody());
	}


	/** @test */
	function headShouldContainsAdminCommonJS() {
		$this->assertXPath('//head//script[contains(@src,"public/admin/js/common.js")]');
	}


	/** @test */
	function headShouldContainsJQuery() {
		$this->assertXPath('//head//script[contains(@src, "jquery")]');
	}
}




class AuthControllerNobodyLoggedAndRegistrationAllowedAjaxLoginTest extends AuthControllerNobodyLoggedTestCase {
	public function setUp() {
		parent::setUp();

		Class_AdminVar::getLoader()
			->newInstanceWithId('INTERDIRE_ENREG_UTIL')
			->setValeur(0);

		$this->dispatch('/opac/auth/ajaxlogin', true);
	}


	public function testLinkLostPassword() {
		$this->assertXPath('//div//a[contains(@onclick, "getUsername")]');
	}

	
	public function testLinkSenregistrer() {
		$this->assertXPath('//div//a[contains(@href, "auth/register")]');
		$this->assertXPathContentContains('//div//a[contains(@href, "auth/register")]',
																			"S'enregistrer");
	}
}




class AuthControllerNobodyLoggedAndNoRegistrationTest extends AuthControllerNobodyLoggedTestCase {
	public function setUp() {
		$interdire_enregistrement = new Class_AdminVar();
		$interdire_enregistrement
			->setId('INTERDIRE_ENREG_UTIL')
			->setValeur(1);
		Class_AdminVar::getLoader()->cacheInstance($interdire_enregistrement);

		parent::setUp();
		$this->dispatch('/opac/');
	}


	public function testLinkSenregistrerNotHere() {
		$this->assertNotXPath('//div[@id="boite_login"]//a[contains(@href, "auth/register")]');
	}


	public function testCannotAccessRegisterPage() {
		$this->dispatch('auth/register');
		$this->assertRedirect('/');
	}
}




class AuthControllerNobodyLoggedAndNoRegistrationAllowedAjaxLoginTest extends AuthControllerNobodyLoggedTestCase {
	public function setUp() {
		parent::setUp();

		Class_AdminVar::getLoader()
			->newInstanceWithId('INTERDIRE_ENREG_UTIL')
			->setValeur(1);

		$this->dispatch('/opac/auth/ajaxlogin', true);
	}


	public function testLinkLostPassword() {
		$this->assertXPath('//div//a[contains(@onclick, "getUsername")]');
	}

	
	public function testNoLinkSenregistrer() {
		$this->assertNotXPath('//div//a[contains(@href, "auth/register")]');
	}


	/** @test */
	public function iframeCssShouldIncluded() {
		$this->assertXPath('//link[contains(@href, "iframe.css")]');
	}
}




class AuthControllerNobodyLoggedTest extends PortailWithOneLoginModuleTestCase {
	public function setUp() {
		parent::setUp();
		ZendAfi_Auth::getInstance()->clearIdentity();
		$this->dispatch('/opac/auth/login');
	}


	/** 
	 * @group integration
	 * @test 
	 */
	public function pageShouldBeHtml5Valid() {
		$this->assertHTML5($this->_response->getBody());
	}
}




class AuthControllerNumilogConnectedUserDeconnexionTest extends PortailWithOneLoginModuleTestCase {
	public function setUp() {
		parent::setUp();
		
		$this->dispatch('/opac/auth/login?service=http://numilog?deconnexion=ok', true);
	}


	/** 
	 * @test 
	 */
	public function pageShouldBeRedirectedToHome() {
		$this->assertRedirectTo('/opac');

	}
}




class AuthControllerAdminIsLoggedTest extends PortailWithOneLoginModuleTestCase {
	protected function _loginHook($account) {
		$account->ROLE = "abonne_sigb";
		$account->ROLE_LEVEL = ZendAfi_Acl_AdminControllerRoles::ADMIN_PORTAIL;
		$account->ID_USER = "1";
		$account->PSEUDO = "sysadm";
	}


	public function setUp() {
		$this->sysadm = new Class_Users();
		$this->sysadm
			->setPseudo('sysadm')
			->setRoleLevel(ZendAfi_Acl_AdminControllerRoles::ADMIN_PORTAIL)
			->setRole('super_admin')
			->setLogin('sysadm')
			->setPassword('sysadmPassword')
			->setIdSite(1)
			->setIdabon('')
			->setId(1);
		Class_Users::getLoader()->cacheInstance($this->sysadm);

		parent::setUp();
		$this->dispatch('/opac/auth/login');
	}


	public function testBoiteLoginDisplaysBienvenueSysadm() {
		$this->assertQueryContentContains('#boite_login .welcome', 'Bienvenue sysadm');
	}


	public function testLinkSeDeconnecter() {
		$this->assertXPath('//div[@id="boite_login"]//a[contains(@href, "auth/logout")]',
																			$this->_response->getBody());
		$this->assertXPathContentContains('//div[@id="boite_login"]//a[contains(@href, "auth/logout")]',
																			'Se déconnecter');
	}


	public function testLinkFonctionAdmin() {
		$this->assertXPath("//div[@class='configuration_module']//img[contains(@onclick,'admin/modules/auth?config=site&type_module=auth&id_profil=2&action1=login')]");
	}
}




class AuthControllerPostTest extends AuthControllerNobodyLoggedTestCase {
	/** @test */
	public function emptyPasswordShouldRedirectToAuthLogin()	{
		$this->postDispatch('/opac/auth/boitelogin?id_module=4',
												array('username' => 'My overkill username',
															'password' => ''));
		$this->assertRedirectTo('/auth/login');
	}


	/** 
	 * @test 
	 * @group integration
	 */
	public function validAuthenticationShouldRedirectToRefererrer()	{
		$user = Class_Users::getLoader()->findFirstBy(array());
		$_SERVER['HTTP_REFERER'] = BASE_URL.'cms/viewarticle/12';

		$this->postDispatch('/opac/auth/boitelogin?id_module=4',
												array('username' => $user->getLogin(),
															'password' => $user->getPassword()));
		$this->assertRedirectTo(BASE_URL.'cms/viewarticle/12');
	}
}




abstract class AuthControllerPostSimpleTestCase extends AuthControllerNobodyLoggedTestCase {
	protected $_auth;

	public function setUp() {
		parent::setUp();
		$this->_auth = Storm_Test_ObjectWrapper::mock()
			->whenCalled('authenticateLoginPassword')
			->answers(false)
			->whenCalled('hasIdentity')
			->answers(false)
			->whenCalled('getIdentity')
			->answers(null);
		
		ZendAfi_Auth::setInstance($this->_auth);
	}


	public function tearDown() {
		ZendAfi_Auth::setInstance(null);
		parent::tearDown();
	}
}



class AuthControllerPostSimpleSuccessfulTest extends AuthControllerPostSimpleTestCase {
	protected $_web_analytics_client;

	public function setUp() {
		parent::setUp();

		$marcel = Class_Users::newInstanceWithId(2, ['nom' => 'Marcel'])->beAbonneSIGB();

		$this->_auth
			->whenCalled('authenticateLoginPassword')
			->with('foo', 'bar')
			->willDo( 
				function() use($marcel)  {
					$this->_auth->whenCalled('getIdentity')->answers($marcel);
					return true;
				});


		$this->_web_analytics_client = Storm_Test_ObjectWrapper::mock()
			->whenCalled('trackEvent')
			->answers(true);
		ZendAfi_Controller_Action_Helper_TrackEvent::setDefaultWebAnalyticsClient($this->_web_analytics_client);

		$this->postDispatch('/opac/auth/login',
												['username' => 'foo', 'password' => 'bar']);
	}


	/** @test */
	public function responseShouldBeARedirect() {
		$this->assertRedirect();
	}


	/** @test */
	public function trackEventShouldBeGenerated() {
		$this->assertTrue($this->_web_analytics_client->methodHasBeenCalledWithParams('trackEvent', 
																																									['authentification',
																																									 'connexion',
																																									 'utilisateur',
																																										2]));
	}
}




class AuthControllerPostSimpleFailureTest extends AuthControllerPostSimpleTestCase {
	/** @test */
	public function withAuthenticationFailureResponseShouldNotBeARedirect() {
		$this->postDispatch('/opac/auth/login',
												['username' => 'foo', 'password' => 'bar']);

		$this->assertNotRedirect();
	}
}





?>