From e9fedf3e5cd63aea4da7a71f6647ee427c62fa49 Mon Sep 17 00:00:00 2001
From: Frederic Guillot <fred@kanboard.net>
Date: Sat, 5 Dec 2015 20:31:27 -0500
Subject: Rewrite of the authentication and authorization system

---
 tests/units/Auth/TotpAuthTest.php | 63 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 63 insertions(+)
 create mode 100644 tests/units/Auth/TotpAuthTest.php

(limited to 'tests/units/Auth/TotpAuthTest.php')

diff --git a/tests/units/Auth/TotpAuthTest.php b/tests/units/Auth/TotpAuthTest.php
new file mode 100644
index 00000000..fcb7ea31
--- /dev/null
+++ b/tests/units/Auth/TotpAuthTest.php
@@ -0,0 +1,63 @@
+<?php
+
+require_once __DIR__.'/../Base.php';
+
+use Kanboard\Auth\TotpAuth;
+
+class TotpAuthTest extends Base
+{
+    public function testGetName()
+    {
+        $provider = new TotpAuth($this->container);
+        $this->assertEquals('Time-based One-time Password Algorithm', $provider->getName());
+    }
+
+    public function testGetSecret()
+    {
+        $provider = new TotpAuth($this->container);
+        $secret = $provider->getSecret();
+
+        $this->assertNotEmpty($secret);
+        $this->assertEquals($secret, $provider->getSecret());
+        $this->assertEquals($secret, $provider->getSecret());
+    }
+
+    public function testSetSecret()
+    {
+        $provider = new TotpAuth($this->container);
+        $provider->setSecret('mySecret');
+        $this->assertEquals('mySecret', $provider->getSecret());
+    }
+
+    public function testGetUrl()
+    {
+        $provider = new TotpAuth($this->container);
+        $this->assertEmpty($provider->getQrCodeUrl('me'));
+        $this->assertEmpty($provider->getKeyUrl('me'));
+
+        $provider->setSecret('mySecret');
+        $this->assertEquals(
+            'https://chart.googleapis.com/chart?chs=200x200&cht=qr&chld=M|0&chl=otpauth%3A%2F%2Ftotp%2Fme%3Fsecret%3DmySecret',
+            $provider->getQrCodeUrl('me')
+        );
+
+        $this->assertEquals('otpauth://totp/me?secret=mySecret', $provider->getKeyUrl('me'));
+    }
+
+    public function testAuthentication()
+    {
+        $provider = new TotpAuth($this->container);
+
+        $secret = $provider->getSecret();
+        $this->assertNotEmpty($secret);
+
+        $provider->setCode('1234');
+        $this->assertFalse($provider->authenticate());
+
+        if (!!`which oathtool`) {
+            $code = shell_exec('oathtool --totp -b '.$secret);
+            $provider->setCode(trim($code));
+            $this->assertTrue($provider->authenticate());
+        }
+    }
+}
-- 
cgit v1.2.3