Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/old/dev/tests/integration/testsuite/Magento/User/Model/ |
<?php
/**
* Copyright © Magento, Inc. All rights reserved.
* See COPYING.txt for license details.
*/
namespace Magento\User\Model;
use Magento\Authorization\Model\Role;
use Magento\Email\Model\ResourceModel\Template\Collection as TemplateCollection;
use Magento\Framework\App\CacheInterface;
use Magento\Framework\App\Config\MutableScopeConfigInterface;
use Magento\Framework\Encryption\Encryptor;
use Magento\Framework\Exception\AuthenticationException;
use Magento\Framework\Exception\LocalizedException;
use Magento\Framework\Exception\NotFoundException;
use Magento\Framework\Exception\State\UserLockedException;
use Magento\Framework\Model\ResourceModel\Db\Collection\AbstractCollection;
use Magento\Framework\ObjectManagerInterface;
use Magento\Framework\Phrase;
use Magento\Framework\Stdlib\DateTime;
use Magento\TestFramework\Bootstrap as TestFrameworkBootstrap;
use Magento\TestFramework\Entity;
use Magento\TestFramework\Helper\Bootstrap;
use Magento\TestFramework\Mail\Template\TransportBuilderMock;
use Magento\User\Model\User as UserModel;
use PHPUnit\Framework\TestCase;
/**
* @magentoAppArea adminhtml
* @SuppressWarnings(PHPMD.CouplingBetweenObjects)
*/
class UserTest extends TestCase
{
/**
* @var UserModel
*/
protected $_model;
/**
* @var DateTime
*/
protected $_dateTime;
/**
* @var Role
*/
protected static $_newRole;
/**
* @var Encryptor
*/
private $encryptor;
/**
* @var CacheInterface
*/
private $cache;
/**
* @var ObjectManagerInterface
*/
private $objectManager;
/**
* @inheritDoc
*/
protected function setUp(): void
{
$this->objectManager = Bootstrap::getObjectManager();
$this->_model = $this->objectManager->create(UserModel::class);
$this->_dateTime = $this->objectManager->get(DateTime::class);
$this->encryptor = $this->objectManager->get(Encryptor::class);
$this->cache = $this->objectManager->get(CacheInterface::class);
}
/**
* @magentoDbIsolation enabled
*/
public function testCRUD()
{
$this->_model->setFirstname(
"John"
)->setLastname(
"Doe"
)->setUsername(
'user2'
)->setPassword(
TestFrameworkBootstrap::ADMIN_PASSWORD
)->setEmail(
'[email protected]'
);
$crud = new Entity($this->_model, ['firstname' => '_New_name_']);
$crud->testCrud();
}
/**
* @magentoDataFixture Magento/User/_files/dummy_user.php
*/
public function testCreatedOnUpdate()
{
$this->_model->loadByUsername('user_created_date');
$this->assertEquals('2010-01-06 00:00:00', $this->_model->getCreated());
//reload to update lognum record
$this->_model->getResource()->recordLogin($this->_model);
$this->_model->reload();
$this->assertEquals('2010-01-06 00:00:00', $this->_model->getCreated());
}
/**
* Ensure that an exception is not thrown, if the user does not exist
*/
public function testLoadByUsername()
{
$this->_model->loadByUsername('non_existing_user');
$this->assertNull($this->_model->getId(), 'The admin user has an unexpected ID');
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->assertNotEmpty($this->_model->getId(), 'The admin user should have been loaded');
}
/**
* Test that user role is updated after save
*
* @magentoDataFixture roleDataFixture
*/
public function testUpdateRoleOnSave()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->assertEquals(TestFrameworkBootstrap::ADMIN_ROLE_NAME, $this->_model->getRole()->getRoleName());
$this->_model->setRoleId(self::$_newRole->getId())->save();
$this->assertEquals('admin_role', $this->_model->getRole()->getRoleName());
}
/**
* phpcs:disable Magento2.Functions.StaticFunction
*/
public static function roleDataFixture()
{
self::$_newRole = Bootstrap::getObjectManager()->create(
Role::class
);
self::$_newRole->setName('admin_role')->setRoleType('G')->setPid('1');
self::$_newRole->save();
}
/**
* @magentoDbIsolation enabled
*/
public function testSaveExtra()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->_model->saveExtra(['test' => 'val']);
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$extra = $this->_model->getExtra();
$this->assertEquals($extra['test'], 'val');
}
/**
* @magentoDataFixture roleDataFixture
*/
public function testGetRoles()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$roles = $this->_model->getRoles();
$this->assertCount(1, $roles);
$this->assertEquals(TestFrameworkBootstrap::ADMIN_ROLE_NAME, $this->_model->getRole()->getRoleName());
$this->_model->setRoleId(self::$_newRole->getId())->save();
$roles = $this->_model->getRoles();
$this->assertCount(1, $roles);
$this->assertEquals(self::$_newRole->getId(), $roles[0]);
}
/**
* @magentoDataFixture roleDataFixture
*/
public function testGetRole()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$role = $this->_model->getRole();
$this->assertInstanceOf(Role::class, $role);
$this->assertEquals(TestFrameworkBootstrap::ADMIN_ROLE_NAME, $this->_model->getRole()->getRoleName());
$this->_model->setRoleId(self::$_newRole->getId())->save();
$role = $this->_model->getRole();
$this->assertEquals(self::$_newRole->getId(), $role->getId());
}
/**
* @magentoDbIsolation enabled
*/
public function testDeleteFromRole()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$roles = $this->_model->getRoles();
$this->_model->setRoleId(reset($roles))->deleteFromRole();
$role = $this->_model->getRole();
$this->assertNull($role->getId());
}
public function testRoleUserExists()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$role = $this->_model->getRole();
$this->_model->setRoleId($role->getId());
$this->assertTrue($this->_model->roleUserExists());
$this->_model->setRoleId(100);
$this->assertFalse($this->_model->roleUserExists());
}
public function testGetCollection()
{
$this->assertInstanceOf(
AbstractCollection::class,
$this->_model->getCollection()
);
}
public function testGetName()
{
$firstname = TestFrameworkBootstrap::ADMIN_FIRSTNAME;
$lastname = TestFrameworkBootstrap::ADMIN_LASTNAME;
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->assertEquals("$firstname $lastname", $this->_model->getName());
$this->assertEquals("$firstname///$lastname", $this->_model->getName('///'));
}
public function testGetUninitializedAclRole()
{
$newuser = $this->objectManager->create(UserModel::class);
$newuser->setUserId(10);
$this->assertNull($newuser->getAclRole(), "User role was not initialized and is expected to be empty.");
}
/**
* @magentoAppIsolation enabled
* @magentoAdminConfigFixture admin/captcha/enable 0
* @magentoAdminConfigFixture admin/security/use_case_sensitive_login 1
*/
public function testAuthenticate()
{
$this->assertFalse($this->_model->authenticate('User', TestFrameworkBootstrap::ADMIN_PASSWORD));
$this->assertTrue(
$this->_model->authenticate(
TestFrameworkBootstrap::ADMIN_NAME,
TestFrameworkBootstrap::ADMIN_PASSWORD
)
);
}
/**
* @magentoAppIsolation enabled
* @magentoAdminConfigFixture admin/captcha/enable 0
* @magentoConfigFixture current_store admin/security/use_case_sensitive_login 0
*/
public function testAuthenticateCaseInsensitive()
{
$this->assertTrue($this->_model->authenticate('user', TestFrameworkBootstrap::ADMIN_PASSWORD));
$this->assertTrue(
$this->_model->authenticate(
TestFrameworkBootstrap::ADMIN_NAME,
TestFrameworkBootstrap::ADMIN_PASSWORD
)
);
}
/**
* @magentoDbIsolation enabled
*/
public function testAuthenticateInactiveUser()
{
$this->expectException(AuthenticationException::class);
$this->_model->load(1);
$this->_model->setIsActive(0)->save();
$this->_model->authenticate(
TestFrameworkBootstrap::ADMIN_NAME,
TestFrameworkBootstrap::ADMIN_PASSWORD
);
}
/**
* @magentoDataFixture Magento/User/_files/user_with_custom_role.php
* @magentoDbIsolation enabled
*/
public function testAuthenticateUserWithoutRole()
{
$this->expectException(AuthenticationException::class);
$this->_model->loadByUsername('customRoleUser');
$roles = $this->_model->getRoles();
$this->_model->setRoleId(reset($roles))->deleteFromRole();
$this->_model->authenticate(
'customRoleUser',
TestFrameworkBootstrap::ADMIN_PASSWORD
);
}
/**
* @magentoDbIsolation enabled
* @magentoAdminConfigFixture admin/captcha/enable 0
*/
public function testLoginsAreLogged()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$lognum = $this->_model->getLognum();
$beforeLogin = time();
$this->_model->login(
TestFrameworkBootstrap::ADMIN_NAME,
TestFrameworkBootstrap::ADMIN_PASSWORD
)->reload();
$loginTime = strtotime($this->_model->getLogdate());
$this->assertTrue($beforeLogin <= $loginTime && $loginTime <= time());
$this->assertEquals(++$lognum, $this->_model->getLognum());
$beforeLogin = time();
$this->_model->login(
TestFrameworkBootstrap::ADMIN_NAME,
TestFrameworkBootstrap::ADMIN_PASSWORD
)->reload();
$loginTime = strtotime($this->_model->getLogdate());
$this->assertTrue($beforeLogin <= $loginTime && $loginTime <= time());
$this->assertEquals(++$lognum, $this->_model->getLognum());
}
public function testReload()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->_model->setFirstname('NewFirstName');
$this->assertEquals('NewFirstName', $this->_model->getFirstname());
$this->_model->reload();
$this->assertEquals(TestFrameworkBootstrap::ADMIN_FIRSTNAME, $this->_model->getFirstname());
}
/**
* @magentoDbIsolation enabled
*/
public function testHasAssigned2Role()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$role = $this->_model->hasAssigned2Role($this->_model);
$this->assertCount(1, $role);
$this->assertArrayHasKey('role_id', $role[0]);
$roles = $this->_model->getRoles();
$this->_model->setRoleId(reset($roles))->deleteFromRole();
$this->cache->clean(['user_assigned_role']);
$this->assertEmpty($this->_model->hasAssigned2Role($this->_model));
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSaveRequiredFieldsValidation()
{
$expectedMessages = '"User Name" is required. Enter and try again.' . PHP_EOL
. '"First Name" is required. Enter and try again.' . PHP_EOL
. '"Last Name" is required. Enter and try again.' . PHP_EOL
. 'Please enter a valid email.' . PHP_EOL
. 'Password is required field.' . PHP_EOL
. 'Invalid type given. String expected' . PHP_EOL
. 'Invalid type given. String, integer or float expected';
$this->expectException(LocalizedException::class);
$this->expectExceptionMessage($expectedMessages);
$this->_model->setSomething('some_value');
// force model change
$this->_model->save();
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSavePasswordHash()
{
$this->_model->setUsername(
'john.doe'
)->setFirstname(
'John'
)->setLastname(
'Doe'
)->setEmail(
'[email protected]'
)->setPassword(
'123123q'
);
$this->_model->save();
$this->assertStringNotContainsString(
'123123q',
$this->_model->getPassword(),
'Password is expected to be hashed'
);
$this->assertMatchesRegularExpression(
'/^[^\:]+\:[^\:]+\:/i',
$this->_model->getPassword(),
'Salt is expected to be saved along with the password'
);
/** @var UserModel $model */
$model = $this->objectManager->create(UserModel::class);
$model->load($this->_model->getId());
$this->assertEquals(
$this->_model->getPassword(),
$model->getPassword(),
'Password data has been corrupted during saving'
);
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSavePasswordsDoNotMatch()
{
$this->expectException(LocalizedException::class);
$this->expectExceptionMessage('Your password confirmation must match your password.');
$this->_model->setPassword('password2');
$this->_model->setPasswordConfirmation('password1');
$this->_model->save();
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSavePasswordTooShort()
{
$this->expectException(LocalizedException::class);
$this->expectExceptionMessage('Your password must include both numeric and alphabetic characters.');
$this->_model->setPassword('123456');
$this->_model->save();
}
/**
* @dataProvider beforeSavePasswordInsecureDataProvider
* @magentoDbIsolation enabled
* @param string $password
*/
public function testBeforeSavePasswordInsecure($password)
{
$this->expectException(LocalizedException::class);
$this->expectExceptionMessage('Your password must include both numeric and alphabetic characters.');
$this->_model->setPassword($password);
$this->_model->save();
}
public function beforeSavePasswordInsecureDataProvider()
{
return ['alpha chars only' => ['aaaaaaaa'], 'digits only' => ['1234567']];
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSaveUserIdentityViolation()
{
$this->expectException(LocalizedException::class);
$this->expectExceptionMessage('A user with the same user name or email already exists.');
$this->_model->setUsername('user');
$this->_model->save();
}
/**
* @magentoDbIsolation enabled
*/
public function testBeforeSaveValidationSuccess()
{
$this->_model->setUsername(
'user1'
)->setFirstname(
'John'
)->setLastname(
'Doe'
)->setEmail(
'[email protected]'
)->setPassword(
'1234abc'
)->setPasswordConfirmation(
'1234abc'
);
$this->_model->save();
}
/**
* @magentoDbIsolation enabled
*/
public function testChangeResetPasswordLinkToken()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$userId = $this->_model->getId();
$this->_model->changeResetPasswordLinkToken('test');
$date = $this->_model->getRpTokenCreatedAt();
$this->assertNotNull($date);
$this->_model->save();
$this->_model->load($userId);
$this->assertEquals('test', $this->_model->getRpToken());
$this->assertEquals(strtotime($date), strtotime($this->_model->getRpTokenCreatedAt()));
}
/**
* @magentoDbIsolation enabled
* @magentoAppIsolation enabled
* @magentoConfigFixture default/admin/emails/password_reset_link_expiration_period 2
*/
public function testIsResetPasswordLinkTokenExpired()
{
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->assertTrue($this->_model->isResetPasswordLinkTokenExpired());
$this->_model->changeResetPasswordLinkToken('test');
$this->_model->save();
$this->_model->loadByUsername(TestFrameworkBootstrap::ADMIN_NAME);
$this->assertFalse($this->_model->isResetPasswordLinkTokenExpired());
$this->_model->setRpTokenCreatedAt($this->_dateTime->formatDate(time() - 60 * 60 * 2 + 2));
$this->assertFalse($this->_model->isResetPasswordLinkTokenExpired());
$this->_model->setRpTokenCreatedAt($this->_dateTime->formatDate(time() - 60 * 60 * 2 - 1));
$this->assertTrue($this->_model->isResetPasswordLinkTokenExpired());
}
public function testGetSetHasAvailableResources()
{
$this->_model->setHasAvailableResources(true);
$this->assertTrue($this->_model->hasAvailableResources());
$this->_model->setHasAvailableResources(false);
$this->assertFalse($this->_model->hasAvailableResources());
}
/**
* Here we test if admin identity check executed successfully
*
* @magentoDataFixture Magento/User/_files/user_with_role.php
*/
public function testPerformIdentityCheck()
{
$this->_model->loadByUsername('adminUser');
$passwordString = TestFrameworkBootstrap::ADMIN_PASSWORD;
$this->_model->performIdentityCheck($passwordString);
}
/**
* Here we check for a wrong password
*
* @magentoDataFixture Magento/User/_files/user_with_role.php
*/
public function testPerformIdentityCheckWrongPassword()
{
$this->expectException(AuthenticationException::class);
$this->_model->loadByUsername('adminUser');
$passwordString = 'wrongPassword';
$this->_model->performIdentityCheck($passwordString);
$this->expectExceptionMessage(
'The password entered for the current user is invalid. Verify the password and try again.'
);
}
/**
* Here we check for a locked user
*
* @magentoDataFixture Magento/User/_files/locked_users.php
*/
public function testPerformIdentityCheckLockExpires()
{
$this->expectException(UserLockedException::class);
$this->_model->loadByUsername('adminUser2');
$this->_model->performIdentityCheck(TestFrameworkBootstrap::ADMIN_PASSWORD);
$this->expectExceptionMessage(
'The account sign-in was incorrect or your account is disabled temporarily. '
. 'Please wait and try again later.'
);
}
/**
* Verify custom notification is sent when new user created
*
* @magentoDbIsolation enabled
* @magentoDataFixture Magento/Email/Model/_files/email_template_new_user_notification.php
*/
public function testSendNotificationEmailsIfRequired()
{
/** @var MutableScopeConfigInterface $config */
$config = Bootstrap::getObjectManager()
->get(MutableScopeConfigInterface::class);
$config->setValue(
'admin/emails/new_user_notification_template',
$this->getCustomEmailTemplateId(
'admin_emails_new_user_notification_template'
)
);
$userModel = Bootstrap::getObjectManager()
->create(User::class);
$userModel->setFirstname(
'John'
)->setLastname(
'Doe'
)->setUsername(
'user2'
)->setPassword(
TestFrameworkBootstrap::ADMIN_PASSWORD
)->setEmail(
'[email protected]'
);
$userModel->save();
$userModel->sendNotificationEmailsIfRequired();
/** @var TransportBuilderMock $transportBuilderMock */
$transportBuilderMock = Bootstrap::getObjectManager()
->get(TransportBuilderMock::class);
$sentMessage = $transportBuilderMock->getSentMessage();
$this->assertSame(
'New User Notification Custom Text ' . $userModel->getFirstname() . ', ' . $userModel->getLastname(),
$sentMessage->getBodyText()
);
}
/**
* Return email template id by origin template code
*
* @param string $origTemplateCode
* @return int|null
* @throws NotFoundException
*/
private function getCustomEmailTemplateId(string $origTemplateCode): ?int
{
$templateId = null;
$templateCollection = Bootstrap::getObjectManager()
->create(TemplateCollection::class);
foreach ($templateCollection as $template) {
if ($template->getOrigTemplateCode() == $origTemplateCode) {
$templateId = (int) $template->getId();
}
}
if ($templateId === null) {
throw new NotFoundException(new Phrase(
'Customized %templateCode% email template not found',
['templateCode' => $origTemplateCode]
));
}
return $templateId;
}
/**
* Verify custom notification is correctly when reset admin password
*
* @magentoDataFixture Magento/Email/Model/_files/email_template_reset_password_user_notification.php
* @magentoDataFixture Magento/User/_files/user_with_role.php
*/
public function testNotificationEmailsIfResetPassword()
{
/** @var MutableScopeConfigInterface $config */
$config = Bootstrap::getObjectManager()
->get(MutableScopeConfigInterface::class);
$config->setValue(
'admin/emails/forgot_email_template',
$this->getCustomEmailTemplateId(
'admin_emails_forgot_email_template'
)
);
$userModel = $this->_model->loadByUsername('adminUser');
$notificator = $this->objectManager->get(\Magento\User\Model\Spi\NotificatorInterface::class);
$notificator->sendForgotPassword($userModel);
/** @var TransportBuilderMock $transportBuilderMock */
$transportBuilderMock = $this->objectManager->get(TransportBuilderMock::class);
$sentMessage = $transportBuilderMock->getSentMessage();
$this->assertStringContainsString(
'id='.$userModel->getId(),
quoted_printable_decode($sentMessage->getBodyText())
);
}
}