mirror of
https://github.com/Combodo/iTop.git
synced 2026-02-13 07:24:13 +01:00
6cb08ba361
* add few APIs to ease tests * code style * log testname via IssueLog only through ItopDataTestCase * code style * ci: phpunit fix fatal error
171 lines
5.0 KiB
PHP
171 lines
5.0 KiB
PHP
<?php
|
|
|
|
namespace Combodo\iTop\Test\UnitTest\Webservices;
|
|
|
|
use Combodo\iTop\Test\UnitTest\ItopDataTestCase;
|
|
use Config;
|
|
use Exception;
|
|
use MetaModel;
|
|
|
|
class CliResetSessionTest extends ItopDataTestCase
|
|
{
|
|
public const USE_TRANSACTION = false;
|
|
|
|
private $sCookieFile = "";
|
|
private $sLogin;
|
|
private $sPassword = "Iuytrez9876543ç_è-(";
|
|
|
|
/**
|
|
* @throws Exception
|
|
*/
|
|
protected function setUp(): void
|
|
{
|
|
parent::setUp();
|
|
|
|
$this->BackupConfiguration();
|
|
|
|
$this->sLogin = "rest-user-".date('dmYHis');
|
|
$this->CreateTestOrganization();
|
|
|
|
$this->sCookieFile = tempnam(sys_get_temp_dir(), 'jsondata_');
|
|
|
|
$oRestProfile = \MetaModel::GetObjectFromOQL("SELECT URP_Profiles WHERE name = :name", ['name' => 'REST Services User'], true);
|
|
$oAdminProfile = \MetaModel::GetObjectFromOQL("SELECT URP_Profiles WHERE name = :name", ['name' => 'Administrator'], true);
|
|
|
|
if (is_object($oRestProfile) && is_object($oAdminProfile)) {
|
|
$oUser = $this->CreateUser($this->sLogin, $oRestProfile->GetKey(), $this->sPassword);
|
|
$this->AddProfileToUser($oUser, $oAdminProfile->GetKey());
|
|
}
|
|
}
|
|
|
|
protected function tearDown(): void
|
|
{
|
|
parent::tearDown();
|
|
|
|
if (!empty($this->sCookieFile)) {
|
|
unlink($this->sCookieFile);
|
|
}
|
|
}
|
|
|
|
protected function GivenConfigFileAllowedLoginTypes($aAllowedLoginTypes): void
|
|
{
|
|
@chmod(MetaModel::GetConfig()->GetLoadedFile(), 0770);
|
|
MetaModel::GetConfig()->SetAllowedLoginTypes($aAllowedLoginTypes);
|
|
MetaModel::GetConfig()->WriteToFile();
|
|
@chmod(MetaModel::GetConfig()->GetLoadedFile(), 0444);
|
|
}
|
|
|
|
public function GivenAFirstQueryHasBeenSentWithCookiesEnabled(): void
|
|
{
|
|
$aPostFields = [
|
|
'version' => '1.2',
|
|
'auth_user' => $this->sLogin,
|
|
'auth_pwd' => $this->sPassword,
|
|
'json_data' => '{"operation": "core/get", "class": "User", "key": 99999, "output_fields": "id"}',
|
|
];
|
|
$sOutput = $this->SendHTTPRequestWithCookies('webservices/rest.php', $aPostFields);
|
|
$this->assertStringStartsWith('{"code":0,"message":"Found: 0"', $sOutput, "Failed to establish the given: the first call should be successful (and set the session)");
|
|
}
|
|
|
|
public function LoginModesProvider()
|
|
{
|
|
return [
|
|
'no login_mode specified' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic',
|
|
'sForcedLoginMode' => null,
|
|
],
|
|
'form' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic',
|
|
'sForcedLoginMode' => 'form',
|
|
],
|
|
'external' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic',
|
|
'sForcedLoginMode' => 'external',
|
|
],
|
|
'basic' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic',
|
|
'sForcedLoginMode' => 'basic',
|
|
],
|
|
'url' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic|url',
|
|
'sForcedLoginMode' => 'url',
|
|
],
|
|
'cas' => [
|
|
'sConfiguredLoginModes' => 'form|external|basic|cas',
|
|
'sForcedLoginMode' => 'cas',
|
|
],
|
|
];
|
|
}
|
|
|
|
/**
|
|
* @dataProvider LoginModesProvider
|
|
*/
|
|
public function testVariousLoginModes($sAllowedLoginTypes, $sRequestedLoginMode)
|
|
{
|
|
$this->GivenConfigFileAllowedLoginTypes(explode('|', $sAllowedLoginTypes));
|
|
$this->GivenAFirstQueryHasBeenSentWithCookiesEnabled();
|
|
|
|
//2nd call to REST API made with previous session cookie
|
|
$sOutput = $this->SendHTTPRequestWithCookies('webservices/rest.php', [], $sRequestedLoginMode);
|
|
$this->assertStringContainsString('Invalid login', $sOutput, "Omitting auth_user/auth_pwd should not be allowed");
|
|
}
|
|
|
|
public function OtherWebServicesProvider()
|
|
{
|
|
return [
|
|
'import' => [ 'webservices/import.php' ],
|
|
'synchro_exec' => [ 'synchro/synchro_exec.php' ],
|
|
'synchro_import' => [ 'synchro/synchro_import.php' ],
|
|
];
|
|
}
|
|
|
|
/**
|
|
* @dataProvider OtherWebServicesProvider
|
|
*/
|
|
public function testVariousWebServices($sUri)
|
|
{
|
|
$this->GivenAFirstQueryHasBeenSentWithCookiesEnabled();
|
|
|
|
$sOutput = $this->SendHTTPRequestWithCookies($sUri, []);
|
|
$this->assertStringContainsString('Invalid login', $sOutput, "Omitting auth_user/auth_pwd should not be allowed");
|
|
}
|
|
|
|
/**
|
|
* @return array($iHttpCode, $sBody)
|
|
*/
|
|
private function SendHTTPRequestWithCookies($sUri, $aPostFields, $sForcedLoginMode = null): string
|
|
{
|
|
if (!is_null($sForcedLoginMode)) {
|
|
$sUri .= "?login_mode=$sForcedLoginMode";
|
|
}
|
|
|
|
$aCurlOptions = [
|
|
CURLOPT_COOKIEJAR => $this->sCookieFile,
|
|
CURLOPT_COOKIEFILE => $this->sCookieFile,
|
|
CURLOPT_HEADER => 1,
|
|
];
|
|
|
|
$sResponse = $this->CallItopUri($sUri, $aPostFields, $aCurlOptions);
|
|
var_dump($this->aLastCurlGetInfo);
|
|
/** $sResponse example
|
|
* "HTTP/1.1 200 OK
|
|
Date: Wed, 07 Jun 2023 05:00:40 GMT
|
|
Server: Apache/2.4.29 (Ubuntu)
|
|
Set-Cookie: itop-2e83d2e9b00e354fdc528621cac532ac=q7ldcjq0rvbn33ccr9q8u8e953; path=/
|
|
*/
|
|
//var_dump($sResponse);
|
|
$iHeaderSize = $this->aLastCurlGetInfo['header_size'] ?? 0;
|
|
$sBody = substr($sResponse, $iHeaderSize);
|
|
|
|
//$iHttpCode = intval(curl_getinfo($ch, CURLINFO_HTTP_CODE));
|
|
if (preg_match('/HTTP.* (\d*) /', $sResponse, $aMatches)) {
|
|
$sHttpCode = $aMatches[1];
|
|
} else {
|
|
$sHttpCode = $this->aLastCurlGetInfo['http_code'] ?? -1;
|
|
}
|
|
|
|
$this->assertEquals(200, $sHttpCode, "The test logic assumes that the HTTP request is correctly handled");
|
|
return $sBody;
|
|
}
|
|
}
|