Sign upLogin

YetiForceCompany/YetiForceCRM

View on GitHub
Star
tests/Base/Z_Authy2FA.php

Summary

Maintainability
A
0 mins
Test Coverage
A
100%
<?php
/**
 * 2FA test class.
 *
 * @package   Tests
 *
 * @copyright YetiForce S.A.
 * @license   YetiForce Public License 6.5 (licenses/LicenseEN.txt or yetiforce.com)
 * @author    Arkadiusz Adach <a.adach@yetiforce.com>
 * @author    Mariusz Krzaczkowski <m.krzaczkowski@yetiforce.com>
 */

namespace Tests\Base;

class Z_Authy2FA extends \Tests\Base
{
    /**
     * @var \yii\db\Transaction
     */
    private static $transaction;
    /**
     * @var string
     */
    private static $userAuthyMode;
    /**
     * @var int
     */
    private static $userId;
    /**
     * @var string
     */
    private static $systemMode;

    /**
     * @codeCoverageIgnore
     * Setting of tests.
     */
    public static function setUpBeforeClass(): void
    {
        self::$userAuthyMode = \App\Config::security('USER_AUTHY_MODE');
        self::$transaction = \App\Db::getInstance()->beginTransaction();
        self::$systemMode = \App\Config::main('systemMode');
    }

    /**
     * Test method "verifyCode".
     */
    public function testVerifyCode()
    {
        $authMethod = new \Users_Totp_Authmethod(\App\User::getCurrentUserRealId());
        $secret = $authMethod->createSecret();
        $this->assertFalse($authMethod->verifyCode($secret, '123000'), 'The "verifyCode" method does not work');
        $this->assertTrue($authMethod->verifyCode($secret, $authMethod->getCode()), 'The "verifyCode" method does not work');
    }

    /**
     * Test user for 2FA.
     */
    public function testUser()
    {
        self::$userId = \App\User::getUserIdByName('demo');
        $this->assertIsInt(self::$userId, 'No user demo');
        \App\User::setCurrentUserId(self::$userId);
        $this->assertSame(\App\User::getCurrentUserId(), self::$userId);
        $userRecordModel = \Users_Record_Model::getInstanceById(self::$userId, 'Users');
        $userRecordModel->set('authy_secret_totp', '');
        $userRecordModel->set('authy_methods', '');
        $userRecordModel->save();
        $row = (new \App\Db\Query())
            ->select(['authy_secret_totp', 'authy_methods'])
            ->from('vtiger_users')
            ->where(['id' => self::$userId])
            ->one();
        $this->assertNotFalse($row, 'No record id: ' . self::$userId);
        $this->assertEmpty($row['authy_secret_totp']);
        $this->assertEmpty($row['authy_methods']);
    }

    /**
     * Test config for 2FA.
     */
    public function testConfig(): void
    {
        \App\Config::set('security', 'USER_AUTHY_MODE', 'TOTP_OFF');
        $this->assertSame(\App\Config::security('USER_AUTHY_MODE'), 'TOTP_OFF', 'Problem with saving the configuration');
        $this->assertFalse(\Users_Totp_Authmethod::isActive());
        \App\Config::set('security', 'USER_AUTHY_MODE', 'TOTP_OBLIGATORY');
        \App\Config::set('main', 'systemMode', 'demo');
        $this->assertFalse(\Users_Totp_Authmethod::isActive());
        \App\Config::set('main', 'systemMode', 'prod');
    }

    /**
     * Cleaning after tests.
     */
    public static function tearDownAfterClass(): void
    {
        self::$transaction->rollBack();
        \App\Config::set('security', 'USER_AUTHY_MODE', self::$userAuthyMode);
        \App\Config::set('main', 'systemMode', self::$systemMode);
        \App\Cache::clear();
    }
}