wiki.techinc.nl/tests/phpunit/includes/password/PasswordPolicyChecksTest.php

<?php
/**
 * Testing password-policy check functions
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License along
 * with this program; if not, write to the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
 * http://www.gnu.org/copyleft/gpl.html
 *
 * @file
 */

use MediaWiki\User\UserIdentityValue;

/**
 * See also the unit tests at \MediaWiki\Tests\Unit\PasswordPolicyChecksTest
 */
class PasswordPolicyChecksTest extends MediaWikiIntegrationTestCase {

	/**
	 * @covers PasswordPolicyChecks::checkPasswordCannotMatchUsername
	 *
	 * Uses MediaWikiServices for the content language, so can't move to unit tests
	 */
	public function testCheckPasswordCannotMatchUsername() {
		$user = UserIdentityValue::newRegistered( 42, 'user' );
		$statusOK = PasswordPolicyChecks::checkPasswordCannotMatchUsername(
			1, // policy value
			$user, // User
			'password'  // password
		);
		$this->assertTrue( $statusOK->isGood(), 'Password does not match username' );
		$statusLong = PasswordPolicyChecks::checkPasswordCannotMatchUsername(
			1, // policy value
			$user, // User
			'user'  // password
		);
		$this->assertFalse( $statusLong->isGood(), 'Password matches username' );
		$this->assertTrue( $statusLong->isOK(), 'Password matches username, not fatal' );
	}
}
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`<?php`
			`/**`
			`* Testing password-policy check functions`
			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation; either version 2 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License along`
			`* with this program; if not, write to the Free Software Foundation, Inc.,`
			`* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`* http://www.gnu.org/copyleft/gpl.html`
			`*`
			`* @file`
			`*/`

Remove User from password policy check interfaces This doesn't yet completely eliminate the dependency on user, because the individual password policy check functions are still documented to receive User. Password policy check functions can be defined by extensions, and configured via $wgPasswordPolicy, so we still need to unwrap user identity to a User before passing into the actual check. But, this removes User from the PassworkPolicyCheck interface. Change-Id: If813b9b0ebbeb89bc61331c9da8efb86e591bfb9 2021-06-09 19:50:25 +00:00			`use MediaWiki\User\UserIdentityValue;`

Split PasswordPolicyChecksTest into separate unit tests Change-Id: I1cec645a6a3c2b2e2dfb2edaf9d60ae5d67b6d17 2021-02-27 00:55:33 +00:00			`/**`
			`* See also the unit tests at \MediaWiki\Tests\Unit\PasswordPolicyChecksTest`
			`*/`
MediaWikiTestCase to MediaWikiIntegrationTestCase The name change happened some time ago, and I think its about time to start using the name name! (Done with a find and replace) My personal motivation for doing this is that I have started trying out vscode as an IDE for mediawiki development, and right now it doesn't appear to handle php aliases very well or at all. Change-Id: I412235d91ae26e4c1c6a62e0dbb7e7cf3c5ed4a6 2020-06-30 15:09:24 +00:00			`class PasswordPolicyChecksTest extends MediaWikiIntegrationTestCase {`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00
			`/**`
			`* @covers PasswordPolicyChecks::checkPasswordCannotMatchUsername`
Split PasswordPolicyChecksTest into separate unit tests Change-Id: I1cec645a6a3c2b2e2dfb2edaf9d60ae5d67b6d17 2021-02-27 00:55:33 +00:00			`*`
			`* Uses MediaWikiServices for the content language, so can't move to unit tests`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`*/`
			`public function testCheckPasswordCannotMatchUsername() {`
Remove User from password policy check interfaces This doesn't yet completely eliminate the dependency on user, because the individual password policy check functions are still documented to receive User. Password policy check functions can be defined by extensions, and configured via $wgPasswordPolicy, so we still need to unwrap user identity to a User before passing into the actual check. But, this removes User from the PassworkPolicyCheck interface. Change-Id: If813b9b0ebbeb89bc61331c9da8efb86e591bfb9 2021-06-09 19:50:25 +00:00			`$user = UserIdentityValue::newRegistered( 42, 'user' );`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`$statusOK = PasswordPolicyChecks::checkPasswordCannotMatchUsername(`
			`1, // policy value`
Clean up PasswordPolicyChecksTest Remove ::testPasswordPolicyDescriptionsExist(), should be redundant to PasswordPolicyStructureTest::testCheckMessage Use mock User objects instead of real ones, only ->getName() is needed Change-Id: I362cfcfdbbc53cef54e72bce9bab0d24829472d7 2021-03-14 18:57:51 +00:00			`$user, // User`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`'password' // password`
			`);`
			`$this->assertTrue( $statusOK->isGood(), 'Password does not match username' );`
			`$statusLong = PasswordPolicyChecks::checkPasswordCannotMatchUsername(`
			`1, // policy value`
Clean up PasswordPolicyChecksTest Remove ::testPasswordPolicyDescriptionsExist(), should be redundant to PasswordPolicyStructureTest::testCheckMessage Use mock User objects instead of real ones, only ->getName() is needed Change-Id: I362cfcfdbbc53cef54e72bce9bab0d24829472d7 2021-03-14 18:57:51 +00:00			`$user, // User`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`'user' // password`
			`);`
			`$this->assertFalse( $statusLong->isGood(), 'Password matches username' );`
Fix numerous class/function casing Change-Id: I23982bfa0548c9ea3bdb432be7982f1563930715 2016-03-18 13:55:54 +00:00			`$this->assertTrue( $statusLong->isOK(), 'Password matches username, not fatal' );`
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003 2015-04-23 01:48:48 +00:00			`}`
			`}`