Add means of testing Fever authentication

5 years ago · 1ce95ef4d9
2 changed files with 27 additions and 2 deletions
--- a/lib/REST/Fever/API.php
+++ b/lib/REST/Fever/API.php
@ -111,4 +111,12 @@ class API extends \JKingWeb\Arsse\REST\AbstractHandler {
    public static function userUnregister(string $user): bool {
        return (bool) Arsse::$db->tokenRevoke($user, "fever.login");
    }
+
+    public static function userAuthenticate(string $user, string $password): bool {
+        try {
+            return (bool) Arsse::$db->tokenLookup("fever.login", md5("$user:$password"));
+        } catch (ExceptionInput $e) {
+            return false;
+        }
+    }
 }
--- a/tests/cases/REST/Fever/TestAPI.php
+++ b/tests/cases/REST/Fever/TestAPI.php
@ -80,7 +80,7 @@ class TestAPI extends \JKingWeb\Arsse\Test\AbstractTest {
        self::clearData();
    }

-    /** @dataProvider provideAuthenticationRequests */
+    /** @dataProvider provideTokenAuthenticationRequests */
    public function testAuthenticateAUserToken(bool $httpRequired, bool $tokenEnforced, string $httpUser = null, array $dataPost, array $dataGet, ResponseInterface $exp) {
        self::setConf([
            'userHTTPAuthRequired' => $httpRequired,
@ -93,7 +93,7 @@ class TestAPI extends \JKingWeb\Arsse\Test\AbstractTest {
        $this->assertMessage($exp, $act);
    }

-    public function provideAuthenticationRequests() {
+    public function provideTokenAuthenticationRequests() {
        $success = new JsonResponse(['api_version' => API::LEVEL, 'auth' => 1]);
        $failure = new JsonResponse(['api_version' => API::LEVEL, 'auth' => 0]);
        $denied = new EmptyResponse(401);
@ -184,4 +184,21 @@ class TestAPI extends \JKingWeb\Arsse\Test\AbstractTest {
        $this->assertFalse(API::userUnregister("john.doe@example.com"));
        \Phake::verify(Arsse::$db)->tokenRevoke("john.doe@example.com", "fever.login");
    }
+
+    /** @dataProvider provideUserAuthenticationRequests */
+    public function testAuthenticateAUserName(string $user, string $password, bool $exp) {
+        \Phake::when(Arsse::$db)->tokenLookup->thenThrow(new ExceptionInput("constraintViolation"));
+        \Phake::when(Arsse::$db)->tokenLookup("fever.login", md5("jane.doe@example.com:secret"))->thenReturn(['user' => "jane.doe@example.com"]);
+        \Phake::when(Arsse::$db)->tokenLookup("fever.login", md5("john.doe@example.com:superman"))->thenReturn(['user' => "john.doe@example.com"]);
+        $this->assertSame($exp, API::userAuthenticate($user, $password));
+    }
+
+    public function provideUserAuthenticationRequests() {
+        return [
+            ["jane.doe@example.com", "secret",   true],
+            ["jane.doe@example.com", "superman", false],
+            ["john.doe@example.com", "secret",   false],
+            ["john.doe@example.com", "superman", true],
+        ];
+    }
 }