solocla/casadoc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
casadoc/tests/Feature/Api/Profile/TwoFactorControllerTest.php

164 lines
4.3 KiB
PHP
Raw Permalink Blame History

<?php
namespace Tests\Feature\Api\Profile;
use Authy;
use Event;
use Mockery;
use Tests\Feature\ApiTestCase;
use Vanguard\Events\User\TwoFactorEnabled;
use Vanguard\Http\Resources\UserResource;
use Vanguard\User;
class TwoFactorControllerTest extends ApiTestCase
{
/** @test */
public function update_2fa_unathenticated()
{
$this->setSettings(['2fa.enabled' => true]);
User::factory()->create();
$this->putJson("api/me/2fa")
->assertStatus(401);
}
/** @test */
public function enable_two_factor_auth()
{
$this->setSettings(['2fa.enabled' => true]);
$this->withoutExceptionHandling();
Event::fake([
TwoFactorEnabled::class,
]);
$user = $this->login();
Authy::shouldReceive('isEnabled')->andReturn(false);
Authy::shouldReceive('register')->andReturnNull();
Authy::shouldReceive('sendTwoFactorVerificationToken');
$data = ['country_code' => '1', 'phone_number' => '123'];
$this->putJson("api/me/2fa", $data)
->assertOk()
->assertJson(['message' => 'Verification token sent.']);
$this->assertDatabaseHas('users', [
'id' => $user->id,
'two_factor_country_code' => $data['country_code'],
'two_factor_phone' => $data['phone_number']
]);
Event::assertNotDispatched(TwoFactorEnabled::class);
}
/** @test */
public function verify_user_phone_with_correct_token()
{
$this->setSettings(['2fa.enabled' => true]);
Event::fake([
TwoFactorEnabled::class,
]);
$user = $this->login();
Authy::shouldReceive('isEnabled')->andReturn(false);
Authy::shouldReceive('tokenIsValid')->with(Mockery::any(), '123123')->andReturn(true);
$response = $this->postJson("api/me/2fa/verify", ['token' => '123123']);
$updatedUser = (new UserResource($user->fresh()))->resolve();
$response->assertOk()
->assertJsonFragment($updatedUser);
$this->assertDatabaseHas('users', [
'id' => $user->id,
'two_factor_options' => '{"enabled":true}'
]);
Event::assertDispatched(TwoFactorEnabled::class);
}
/** @test */
public function verify_user_phone_with_invalid_token()
{
$this->setSettings(['2fa.enabled' => true]);
$user = $this->login();
Authy::shouldReceive('isEnabled')->andReturn(false);
Authy::shouldReceive('tokenIsValid')->andReturn(false);
$this->postJson("api/me/2fa/verify", ['token' => '123123'])
->assertStatus(422)
->assertJson(['message' => 'Invalid 2FA token.']);
$this->assertDatabaseMissing('users', [
'id' => $user->id,
'two_factor_options' => '{"enabled":true}'
]);
}
/** @test */
public function enable_two_factor_auth_when_it_is_already_enabled()
{
$this->setSettings(['2fa.enabled' => true]);
$this->login();
Authy::shouldReceive('isEnabled')->andReturn(true);
$data = ['country_code' => '1', 'phone_number' => '123'];
$this->putJson("api/me/2fa", $data)
->assertStatus(422)
->assertJson([
'message' => '2FA is already enabled for this user.'
]);
}
/** @test */
public function disable_two_factor_auth()
{
$this->setSettings(['2fa.enabled' => true]);
$user = User::factory()->create([
'two_factor_country_code' => '1',
'two_factor_phone' => '123'
]);
$this->be($user, self::API_GUARD);
Authy::shouldReceive('isEnabled')->andReturn(true);
Authy::shouldReceive('delete')->andReturnNull();
$response = $this->deleteJson("api/me/2fa");
$user = (new UserResource($user->fresh()))->resolve();
$response->assertOk()
->assertJsonFragment($user);
}
/** @test */
public function disable_2fa_when_it_is_already_disabled()
{
$this->setSettings(['2fa.enabled' => true]);
$this->login();
Authy::shouldReceive('isEnabled')->andReturn(false);
$this->deleteJson("api/me/2fa")
->assertStatus(422)
->assertJson([
'message' => '2FA is not enabled for this user.'
]);
}
}
Reference in New Issue View Git Blame Copy Permalink