diff options
author | Christoph Wurst <christoph@owncloud.com> | 2016-06-01 10:42:38 +0200 |
---|---|---|
committer | Christoph Wurst <christoph@owncloud.com> | 2016-06-01 10:42:38 +0200 |
commit | da03a85c3c60adbcdd4f85d041263d4d5cee5ca5 (patch) | |
tree | a7736fae6ce4a3346795d89cc3a090731b6f8bbe /apps/dav/tests | |
parent | 0f2017c7da6332f66f05e93dd34ea1bf1c134148 (diff) | |
download | nextcloud-server-da03a85c3c60adbcdd4f85d041263d4d5cee5ca5.tar.gz nextcloud-server-da03a85c3c60adbcdd4f85d041263d4d5cee5ca5.zip |
block DAV if 2FA challenge needs to be solved first
Diffstat (limited to 'apps/dav/tests')
-rw-r--r-- | apps/dav/tests/unit/Connector/Sabre/AuthTest.php | 66 |
1 files changed, 63 insertions, 3 deletions
diff --git a/apps/dav/tests/unit/Connector/Sabre/AuthTest.php b/apps/dav/tests/unit/Connector/Sabre/AuthTest.php index e5b5fe21b1f..b3ab49a027e 100644 --- a/apps/dav/tests/unit/Connector/Sabre/AuthTest.php +++ b/apps/dav/tests/unit/Connector/Sabre/AuthTest.php @@ -27,11 +27,12 @@ namespace OCA\DAV\Tests\unit\Connector\Sabre; +use OC\Authentication\TwoFactorAuth\Manager; +use OC\User\Session; use OCP\IRequest; +use OCP\ISession; use OCP\IUser; use Test\TestCase; -use OCP\ISession; -use OC\User\Session; /** * Class AuthTest @@ -48,6 +49,8 @@ class AuthTest extends TestCase { private $userSession; /** @var IRequest */ private $request; + /** @var Manager */ + private $twoFactorManager; public function setUp() { parent::setUp(); @@ -57,10 +60,14 @@ class AuthTest extends TestCase { ->disableOriginalConstructor()->getMock(); $this->request = $this->getMockBuilder('\OCP\IRequest') ->disableOriginalConstructor()->getMock(); + $this->twoFactorManager = $this->getMockBuilder('\OC\Authentication\TwoFactorAuth\Manager') + ->disableOriginalConstructor() + ->getMock(); $this->auth = new \OCA\DAV\Connector\Sabre\Auth( $this->session, $this->userSession, - $this->request + $this->request, + $this->twoFactorManager ); } @@ -297,6 +304,59 @@ class AuthTest extends TestCase { /** * @expectedException \Sabre\DAV\Exception\NotAuthenticated + * @expectedExceptionMessage 2FA challenge not passed. + */ + public function testAuthenticateAlreadyLoggedInWithoutTwoFactorChallengePassed() { + $request = $this->getMockBuilder('Sabre\HTTP\RequestInterface') + ->disableOriginalConstructor() + ->getMock(); + $response = $this->getMockBuilder('Sabre\HTTP\ResponseInterface') + ->disableOriginalConstructor() + ->getMock(); + $this->userSession + ->expects($this->any()) + ->method('isLoggedIn') + ->willReturn(true); + $this->request + ->expects($this->any()) + ->method('getMethod') + ->willReturn('PROPFIND'); + $this->request + ->expects($this->any()) + ->method('isUserAgent') + ->with([ + '/^Mozilla\/5\.0 \([A-Za-z ]+\) (mirall|csyncoC)\/.*$/', + '/^Mozilla\/5\.0 \(Android\) ownCloud\-android.*$/', + '/^Mozilla\/5\.0 \(iOS\) ownCloud\-iOS.*$/', + ]) + ->willReturn(false); + $this->session + ->expects($this->any()) + ->method('get') + ->with('AUTHENTICATED_TO_DAV_BACKEND') + ->will($this->returnValue('LoggedInUser')); + $user = $this->getMockBuilder('\OCP\IUser') + ->disableOriginalConstructor() + ->getMock(); + $user->expects($this->any()) + ->method('getUID') + ->will($this->returnValue('LoggedInUser')); + $this->userSession + ->expects($this->any()) + ->method('getUser') + ->will($this->returnValue($user)); + $this->request + ->expects($this->once()) + ->method('passesCSRFCheck') + ->willReturn(true); + $this->twoFactorManager->expects($this->once()) + ->method('needsSecondFactor') + ->will($this->returnValue(true)); + $this->auth->check($request, $response); + } + + /** + * @expectedException \Sabre\DAV\Exception\NotAuthenticated * @expectedExceptionMessage CSRF check not passed. */ public function testAuthenticateAlreadyLoggedInWithoutCsrfTokenAndIncorrectlyDavAuthenticated() { |