126 lines
3.6 KiB
PHP
126 lines
3.6 KiB
PHP
<?php
|
|
/*
|
|
* Copyright (c) 2018 Hubzilla
|
|
*
|
|
* Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
* of this software and associated documentation files (the "Software"), to deal
|
|
* in the Software without restriction, including without limitation the rights
|
|
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
* copies of the Software, and to permit persons to whom the Software is
|
|
* furnished to do so, subject to the following conditions:
|
|
*
|
|
* The above copyright notice and this permission notice shall be included in
|
|
* all copies or substantial portions of the Software.
|
|
*
|
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
* SOFTWARE.
|
|
*/
|
|
|
|
namespace Zotlabs\Tests\Unit\Web;
|
|
|
|
use phpmock\phpunit\PHPMock;
|
|
use Zotlabs\Tests\Unit\UnitTestCase;
|
|
|
|
use Zotlabs\Web\HTTPSig;
|
|
|
|
/**
|
|
* @brief Unit Test case for HTTPSig class.
|
|
*
|
|
* @covers Zotlabs\Web\HTTPSig
|
|
*/
|
|
class PermissionDescriptionTest extends UnitTestCase {
|
|
|
|
use PHPMock;
|
|
|
|
/**
|
|
* @dataProvider generate_digestProvider
|
|
*/
|
|
function testGenerate_digest($text, $digest) {
|
|
$this->assertSame(
|
|
$digest,
|
|
HTTPSig::generate_digest($text, false)
|
|
);
|
|
}
|
|
public function generate_digestProvider() {
|
|
return [
|
|
'empty body text' => [
|
|
'',
|
|
'47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='
|
|
],
|
|
'sample body text' => [
|
|
'body text',
|
|
'2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI='
|
|
],
|
|
'NULL body text' => [
|
|
null,
|
|
'47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='
|
|
],
|
|
];
|
|
}
|
|
|
|
function testGeneratedDigestsOfDifferentTextShouldNotBeEqual() {
|
|
$this->assertNotSame(
|
|
HTTPSig::generate_digest('text1', false),
|
|
HTTPSig::generate_digest('text2', false)
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Process separation needed for header() check.
|
|
* @runInSeparateProcess
|
|
*/
|
|
function testGenerate_digestSendsHttpHeader() {
|
|
$ret = HTTPSig::generate_digest('body text', true);
|
|
|
|
$this->assertSame('2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI=', $ret);
|
|
$this->assertContains(
|
|
'Digest: SHA-256=2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI=',
|
|
xdebug_get_headers(),
|
|
'HTTP header Digest does not match'
|
|
);
|
|
}
|
|
|
|
/**
|
|
* @uses ::crypto_unencapsulate
|
|
*/
|
|
function testDecrypt_sigheader() {
|
|
$header = 'Header: iv="value_iv" key="value_key" alg="value_alg" data="value_data"';
|
|
$result = [
|
|
'iv' => 'value_iv',
|
|
'key' => 'value_key',
|
|
'alg' => 'value_alg',
|
|
'data' => 'value_data'
|
|
];
|
|
|
|
$this->assertSame($result, HTTPSig::decrypt_sigheader($header, 'site private key'));
|
|
}
|
|
/**
|
|
* @uses ::crypto_unencapsulate
|
|
*/
|
|
function testDecrypt_sigheaderUseSitePrivateKey() {
|
|
// Create a stub for global function get_config() with expectation
|
|
$t = $this->getFunctionMock('Zotlabs\Web', 'get_config');
|
|
$t->expects($this->once())->willReturn('system.prvkey');
|
|
|
|
$header = 'Header: iv="value_iv" key="value_key" alg="value_alg" data="value_data"';
|
|
$result = [
|
|
'iv' => 'value_iv',
|
|
'key' => 'value_key',
|
|
'alg' => 'value_alg',
|
|
'data' => 'value_data'
|
|
];
|
|
|
|
$this->assertSame($result, HTTPSig::decrypt_sigheader($header));
|
|
}
|
|
function testDecrypt_sigheaderIncompleteHeaderShouldReturnEmptyString() {
|
|
$header = 'Header: iv="value_iv" key="value_key"';
|
|
|
|
$this->assertEmpty(HTTPSig::decrypt_sigheader($header, 'site private key'));
|
|
}
|
|
}
|