X-Git-Url: https://git.openstreetmap.org/rails.git/blobdiff_plain/92af0eccd59af0138b161f0aa841576221a40428..aa00e6b81e007a44eceb8d1a1d70b9b99ec4bc3a:/test/integration/user_login_test.rb diff --git a/test/integration/user_login_test.rb b/test/integration/user_login_test.rb index 0fe5b6570..66f8f4b09 100644 --- a/test/integration/user_login_test.rb +++ b/test/integration/user_login_test.rb @@ -1,24 +1,292 @@ -require File.dirname(__FILE__) + '/../test_helper' +require 'test_helper' -class UserLoginTest < ActionController::IntegrationTest +class UserLoginTest < ActionDispatch::IntegrationTest fixtures :users + def setup + openid_setup + end + + def test_login_email_password_normal + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_email_password_normal_upcase + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email.upcase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email.upcase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + end + + def test_login_email_password_normal_titlecase + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email.titlecase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email.titlecase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + end + + def test_login_email_password_public + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_email_password_public_upcase + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email.upcase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email.upcase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_email_password_public_titlecase + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.email.titlecase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.email.titlecase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_username_password_normal + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_username_password_normal_upcase + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name.upcase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name.upcase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + end + + def test_login_username_password_normal_titlecase + user = users(:normal_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name.titlecase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name.titlecase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + end + + def test_login_username_password_public + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_username_password_public_upcase + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name.upcase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name.upcase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + + def test_login_username_password_public_titlecase + user = users(:public_user) + + get '/login' + assert_response :redirect + assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" + follow_redirect! + assert_response :success + + post '/login', {'username' => user.display_name.titlecase, 'password' => "wrong", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' + + post '/login', {'username' => user.display_name.titlecase, 'password' => "test", :referer => "/history"} + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'changeset/history' + end + def test_login_openid_success get '/login' assert_response :redirect assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" follow_redirect! assert_response :success - post '/login', {'user[openid_url]' => "http://localhost:1123/john.doe?openid.success=true", :referer => "/browse"} + post '/login', {'openid_url' => "http://localhost:1123/john.doe?openid.success=true", :referer => "/history"} assert_response :redirect - res = openid_request(@response.redirected_to) - res2 = post '/login', res + res = openid_request(@response.redirect_url) + res2 = post '/login', res assert_response :redirect follow_redirect! - assert_response :success - assert_template 'changeset/list' + assert_response :success + assert_template 'changeset/history' end def test_login_openid_cancel @@ -27,14 +295,16 @@ class UserLoginTest < ActionController::IntegrationTest assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" follow_redirect! assert_response :success - post '/login', {'user[openid_url]' => "http://localhost:1123/john.doe", :referer => "/diary"} + post '/login', {'openid_url' => "http://localhost:1123/john.doe", :referer => "/diary"} assert_response :redirect - res = openid_request(@response.redirected_to) - post '/login', res + res = openid_request(@response.redirect_url) + post '/login', res - assert_response :success - assert_template 'login' + assert_response :redirect + follow_redirect! + assert_response :success + assert_template 'login' end def test_login_openid_invalid_provider @@ -43,10 +313,12 @@ class UserLoginTest < ActionController::IntegrationTest assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" follow_redirect! assert_response :success - #Use a different port that doesn't have the OpenID provider running on to test an invalid openID - post '/login', {'user[openid_url]' => "http://localhost:1124/john.doe", :referer => "/diary"} + #Use a different port that doesn't have the OpenID provider running on to test an invalid openID + post '/login', {'openid_url' => "http://localhost:1124/john.doe", :referer => "/diary"} + assert_response :redirect + follow_redirect! assert_response :success - assert_template 'login' + assert_template 'login' end def test_login_openid_invalid_url @@ -55,10 +327,12 @@ class UserLoginTest < ActionController::IntegrationTest assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" follow_redirect! assert_response :success - #Use a url with an invalid protocol to make sure it handles that correctly too - post '/login', {'user[openid_url]' => "htt://localhost:1123/john.doe", :referer => "/diary"} + #Use a url with an invalid protocol to make sure it handles that correctly too + post '/login', {'openid_url' => "htt://localhost:1123/john.doe", :referer => "/diary"} + assert_response :redirect + follow_redirect! assert_response :success - assert_template 'login' + assert_template 'login' end def test_login_openid_unknown @@ -67,15 +341,15 @@ class UserLoginTest < ActionController::IntegrationTest assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true" follow_redirect! assert_response :success - post '/login', {'user[openid_url]' => "http://localhost:1123/john.doe?openid.success=true_somethingelse", :referer => "/diary"} + post '/login', {'openid_url' => "http://localhost:1123/john.doe?openid.success=true_somethingelse", :referer => "/diary"} assert_response :redirect - res = openid_request(@response.redirected_to) - res2 = post '/login', res + res = openid_request(@response.redirect_url) + res2 = post '/login', res assert_response :redirect follow_redirect! - assert_response :success - assert_template 'user/new' + assert_response :success + assert_template 'user/new' end end