Apache2-AuthCookieDBI
view release on metacpan or search on metacpan
use strict;
use warnings;
use English qw(-no_match_vars);
use FindBin qw($Bin);
use lib "$Bin/mock_libs";
use Apache2::RequestRec; # from mocks
use Apache2::Const -compile => qw( OK HTTP_FORBIDDEN );
use Crypt::CBC; # from mocks
use Digest::MD5 qw( md5_hex ); # from mocks
use Digest::SHA;
use Data::Dumper;
use Mock::Tieable;
use Test::More tests => 71;
use constant CLASS_UNDER_TEST => 'Apache2::AuthCookieDBI';
use constant EMPTY_STRING => q{};
use constant TRUE => 1;
use_ok(CLASS_UNDER_TEST);
test_authen_cred();
test_check_password();
test_defined_or_empty();
test_decrypt_session_key();
test_encrypt_session_key();
test_dir_config_var();
test_authen_ses_key();
test_get_cipher_for_type();
test_group();
test__dbi_connect();
test_get_crypted_password();
test_user_is_active();
test__get_new_session();
exit;
sub set_up {
my $auth_name = shift;
my $mock_config = shift || _mock_config_for_auth_name($auth_name);
my $r = Apache2::RequestRec->new(
auth_name => $auth_name,
mock_config => $mock_config
); # from mock_libs
return $r;
}
sub _mock_config_for_auth_name {
my ($auth_name) = @_;
my %mock_config = (
"${auth_name}DBI_DSN" => 'test_DBI_DSN',
"${auth_name}DBI_User" => 'test_DBI_User',
"${auth_name}DBI_Password" => 'test_DBI_Password',
"${auth_name}DBI_SecretKey" => 'test_DBI_SecretKey',
"${auth_name}DBI_PasswordField" => 'test_DBI_PasswordField',
"${auth_name}DBI_UsersTable" => 'test_DBI_Userstable',
"${auth_name}DBI_UserField" => 'test_DBI_UserField',
"${auth_name}DBI_UserActiveField" => EMPTY_STRING,
);
return \%mock_config;
}
sub test_authen_cred {
my $auth_name = 'testing_authen_cred';
my $secret_key = 'test secret key';
my $mock_config = {
$auth_name . 'DBI_DSN' => 'test DSN',
$auth_name . 'DBI_SecretKey' => $secret_key,
$auth_name . 'DBI_User' => $auth_name,
);
return TRUE;
}
sub test_decrypt_session_key {
my $auth_name = 'testing_decrypt_session_key';
my $r = set_up($auth_name);
my %encryption_types = (
none => {},
des => {},
idea => {},
blowfish => {},
blowfish_pp => {},
);
my $secret_key = $r->{'mock_config'}->{"${auth_name}DBI_SecretKey"};
my $session_key = 'mock_session_key';
foreach my $encryption_type ( sort keys %encryption_types ) {
my @args = ( $session_key, $secret_key, $auth_name, $encryption_type );
my $encrypted_key = CLASS_UNDER_TEST->_encrypt_session_key(@args);
#Test::More::diag("Encryption type: '$encryption_type' key: '$encrypted_key'");
my $decrypted_key
= CLASS_UNDER_TEST->decrypt_session_key( $r, $encryption_type,
$encrypted_key, $secret_key );
Test::More::ok( defined $decrypted_key,
"Got decrypted key for '$encryption_type'" )
|| Test::More::diag( join "\n", @{ $r->log->error() } );
$r->{'_error_messages'} = [];
}
}
sub test_defined_or_empty {
my $user = 'matisse';
my $password; # undef
my @other_stuff = qw( a b c );
my @args = ( $user, $password, @other_stuff );
my $expected = scalar @args + 1; # Add 1 for the class argument
is( CLASS_UNDER_TEST->_defined_or_empty( $user, $password, @other_stuff ),
$expected, '_defined_or_empty returns expected number of items.' );
return TRUE;
}
sub test_encrypt_session_key {
my $session_key = 'mock_session_key';
my $secret_key = 'mock secret key';
my $auth_name = 'test_encrypt_session_key';
my $expected = {
none => $session_key,
des => "DES:$secret_key:$session_key",
idea => "IDEA:$secret_key:$session_key",
blowfish => "Blowfish:$secret_key:$session_key",
blowfish_pp => "Blowfish_PP:$secret_key:$session_key",
};
# These tests will use a fake version of Crypt::CBC -- see set_up()
# We are just testing that the expecyed methods got called with the
# expected parameters. Basically we arre using the mock CBC object as
# a "sensor" object. Look in t/mock_libs/ to see the mock object code.
#
foreach my $encryption_type ( sort keys %{$expected} ) {
my @args = ( $session_key, $secret_key, $auth_name, $encryption_type );
my $mock_crypt_text = CLASS_UNDER_TEST->_encrypt_session_key(@args);
my $un_hexified = $mock_crypt_text;
if ( $encryption_type ne 'none' ) {
$un_hexified = pack 'H*', $mock_crypt_text;
}
is( $un_hexified, $expected->{$encryption_type},
"_encrypt_session_key() using '$encryption_type' (returned '$mock_crypt_text')"
);
}
return TRUE;
}
sub test_get_cipher_for_type {
# ( $dbi_encryption_type, $auth_name, $secret_key )
my $auth_name = 'Sample Auth Name';
my $secret_key = 'Sample Secret Key String';
my @test_cases = (
{ dbi_encryption_type => 'des',
expected_cipher_type => 'DES',
},
{ dbi_encryption_type => 'idea',
expected_cipher_type => 'IDEA',
},
{ dbi_encryption_type => 'blowfish',
expected_cipher_type => 'Blowfish',
},
{ dbi_encryption_type => 'blowfish_pp',
expected_cipher_type => 'Blowfish_PP',
},
{ dbi_encryption_type => 'BLOWFISH_PP', # verify case-insensitive
expected_cipher_type => 'Blowfish_PP',
},
);
foreach my $case (@test_cases) {
my $dbi_encryption_type = $case->{'dbi_encryption_type'};
my $mock_cbc
= CLASS_UNDER_TEST->_get_cipher_for_type( $dbi_encryption_type,
$auth_name, $secret_key, );
Test::More::is( $mock_cbc->{'-key'}, $secret_key,
"_get_cipher_for_type() for $dbi_encryption_type - secret_key" );
my $expected_cipher_type = $case->{'expected_cipher_type'};
Test::More::is( $mock_cbc->{'-cipher'},
$expected_cipher_type,
"_get_cipher_for_type() for $dbi_encryption_type - cipher_type" );
my $second_mock_from_same_args
= CLASS_UNDER_TEST->_get_cipher_for_type( $dbi_encryption_type,
$auth_name, $secret_key, );
Test::More::is( $second_mock_from_same_args, $mock_cbc,
"_get_cipher_for_type($dbi_encryption_type,$auth_name, $secret_key) cached CBC object"
);
}
my $unsupported_type = 'BunnyRabbits';
eval {
CLASS_UNDER_TEST->_get_cipher_for_type( $unsupported_type, $auth_name,
$secret_key, );
};
Test::More::like(
$EVAL_ERROR,
qr/Unsupported encryption type: '$unsupported_type'/,
'_get_cipher_for_type() throws exception on unsupported encryption type.'
);
return TRUE;
}
sub test_get_crypted_password {
my $auth_name = 'test_get_crypted_password';
my $user = 'test_user';
my $r = set_up($auth_name);
my $expected_password = 'mock_crypted_password';
my $got_password;
{
no warnings qw(once redefine);
local *DBI::Mock::sth::fetchrow_array = sub {
return ($expected_password);
};
$got_password = CLASS_UNDER_TEST->_get_crypted_password( $r, $user );
}
Test::More::is( $got_password, $expected_password,
'_get_crypted_password() with default config.' );
# Simulate password not found
{
no warnings qw(once redefine);
local *DBI::Mock::sth::fetchrow_array = sub {
return () # empty array, password not found;
};
$got_password = CLASS_UNDER_TEST->_get_crypted_password( $r, $user );
}
Test::More::ok( !$got_password,
'_get_crypted_password() with password not found' );
my $got_errrors = $r->log->error(); # from the mock request object
Test::More::is( scalar @$got_errrors,
1, '_get_crypted_password() logs password not found' );
my $class = CLASS_UNDER_TEST;
Test::More::like(
$got_errrors->[0],
qr/\A${class}\tCould not select password/,
'_get_crypted_password() error message for password not found'
);
return TRUE;
}
sub test_group {
my $auth_name = 'test_group';
my $r = set_up($auth_name);
( run in 0.639 second using v1.01-cache-2.11-cpan-df04353d9ac )