PasswordValidatorTest - Code Metrics - Inspection of "Thanks for contributing, you're awesome! :star: Pl..." - silverstripe/silverstripe-framework - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — 4.3 (#8601)

by Robbie

created 2018-11-13 12:08 UTC

PasswordValidatorTest A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	95
Duplicated Lines	0 %

Importance

Changes

Metric	Value
eloc	50
dl	0
loc	95
rs	10
c	0
b	0
f	0
wmc	5

5 Methods

Rating	Name	Size	Complexity
A	testValidateMinScore()	27	1
A	setUp()	8	1
A	testHistoricalPasswordCount()	22	1
A	testValidate()	8	1
A	testValidateMinLength()	11	1

<?php

namespace SilverStripe\Security\Tests;

use SilverStripe\Dev\SapphireTest;
use SilverStripe\Security\Member;
use SilverStripe\Security\PasswordValidator;

class PasswordValidatorTest extends SapphireTest
{
    /**
     * {@inheritDoc}
     * @var bool
     */
    protected $usesDatabase = true;

    protected function setUp()
    {
        parent::setUp();

        // Unset framework default values
        PasswordValidator::config()
            ->remove('min_length')
            ->remove('historic_count');
    }

    public function testValidate()
    {
        $v = new PasswordValidator();
        $r = $v->validate('', new Member());
        $this->assertTrue($r->isValid(), 'Empty password is valid by default');

        $r = $v->validate('mypassword', new Member());
        $this->assertTrue($r->isValid(), 'Non-Empty password is valid by default');
    }

    public function testValidateMinLength()
    {
        $v = new PasswordValidator();

        $v->setMinLength(4);
        $r = $v->validate('123', new Member());
        $this->assertFalse($r->isValid(), 'Password too short');

        $v->setMinLength(4);
        $r = $v->validate('1234', new Member());
        $this->assertTrue($r->isValid(), 'Password long enough');
    }

    public function testValidateMinScore()
    {
        // Set both score and set of tests
        $v = new PasswordValidator();
        $v->setMinTestScore(3);
        $v->setTestNames(["lowercase", "uppercase", "digits", "punctuation"]);

        $r = $v->validate('aA', new Member());
        $this->assertFalse($r->isValid(), 'Passing too few tests');

        $r = $v->validate('aA1', new Member());
        $this->assertTrue($r->isValid(), 'Passing enough tests');

        // Ensure min score without tests works (uses default tests)
        $v = new PasswordValidator();
        $v->setMinTestScore(3);

        $r = $v->validate('aA', new Member());
        $this->assertFalse($r->isValid(), 'Passing too few tests');

        $r = $v->validate('aA1', new Member());
        $this->assertTrue($r->isValid(), 'Passing enough tests');

        // Ensure that min score is only triggered if there are any failing tests at all
        $v->setMinTestScore(1000);
        $r = $v->validate('aA1!', new Member());
        $this->assertTrue($r->isValid(), 'Passing enough tests');
    }

    /**
     * Test that a certain number of historical passwords are checked if specified
     */
    public function testHistoricalPasswordCount()
    {
        $validator = new PasswordValidator;
        $validator->setHistoricCount(3);
        Member::set_password_validator($validator);

        $member = new Member;
        $member->FirstName = 'Repeat';
        $member->Surname = 'Password-Man';
        $member->Password = 'honk';
        $member->write();

        // Create a set of used passwords
        $member->changePassword('foobar');
        $member->changePassword('foobaz');
        $member->changePassword('barbaz');

        $this->assertFalse($member->changePassword('barbaz')->isValid());
        $this->assertFalse($member->changePassword('foobaz')->isValid());
        $this->assertFalse($member->changePassword('foobar')->isValid());
        $this->assertTrue($member->changePassword('honk')->isValid());
        $this->assertTrue($member->changePassword('newpassword')->isValid());
    }
}


1			<?php
2
3			namespace SilverStripe\Security\Tests;
4
5			use SilverStripe\Dev\SapphireTest;
6			use SilverStripe\Security\Member;
7			use SilverStripe\Security\PasswordValidator;
8
9			class PasswordValidatorTest extends SapphireTest
10			{
11			/**
12			* {@inheritDoc}
13			* @var bool
14			*/
15			protected $usesDatabase = true;
16
17			protected function setUp()
18			{
19			parent::setUp();
20
21			// Unset framework default values
22			PasswordValidator::config()
23			->remove('min_length')
24			->remove('historic_count');
25			}
26
27			public function testValidate()
28			{
29			$v = new PasswordValidator();
30			$r = $v->validate('', new Member());
31			$this->assertTrue($r->isValid(), 'Empty password is valid by default');
32
33			$r = $v->validate('mypassword', new Member());
34			$this->assertTrue($r->isValid(), 'Non-Empty password is valid by default');
35			}
36
37			public function testValidateMinLength()
38			{
39			$v = new PasswordValidator();
40
41			$v->setMinLength(4);
42			$r = $v->validate('123', new Member());
43			$this->assertFalse($r->isValid(), 'Password too short');
44
45			$v->setMinLength(4);
46			$r = $v->validate('1234', new Member());
47			$this->assertTrue($r->isValid(), 'Password long enough');
48			}
49
50			public function testValidateMinScore()
51			{
52			// Set both score and set of tests
53			$v = new PasswordValidator();
54			$v->setMinTestScore(3);
55			$v->setTestNames(["lowercase", "uppercase", "digits", "punctuation"]);
56
57			$r = $v->validate('aA', new Member());
58			$this->assertFalse($r->isValid(), 'Passing too few tests');
59
60			$r = $v->validate('aA1', new Member());
61			$this->assertTrue($r->isValid(), 'Passing enough tests');
62
63			// Ensure min score without tests works (uses default tests)
64			$v = new PasswordValidator();
65			$v->setMinTestScore(3);
66
67			$r = $v->validate('aA', new Member());
68			$this->assertFalse($r->isValid(), 'Passing too few tests');
69
70			$r = $v->validate('aA1', new Member());
71			$this->assertTrue($r->isValid(), 'Passing enough tests');
72
73			// Ensure that min score is only triggered if there are any failing tests at all
74			$v->setMinTestScore(1000);
75			$r = $v->validate('aA1!', new Member());
76			$this->assertTrue($r->isValid(), 'Passing enough tests');
77			}
78
79			/**
80			* Test that a certain number of historical passwords are checked if specified
81			*/
82			public function testHistoricalPasswordCount()
83			{
84			$validator = new PasswordValidator;
85			$validator->setHistoricCount(3);
86			Member::set_password_validator($validator);
87
88			$member = new Member;
89			$member->FirstName = 'Repeat';
90			$member->Surname = 'Password-Man';
91			$member->Password = 'honk';
92			$member->write();
93
94			// Create a set of used passwords
95			$member->changePassword('foobar');
96			$member->changePassword('foobaz');
97			$member->changePassword('barbaz');
98
99			$this->assertFalse($member->changePassword('barbaz')->isValid());
100			$this->assertFalse($member->changePassword('foobaz')->isValid());
101			$this->assertFalse($member->changePassword('foobar')->isValid());
102			$this->assertTrue($member->changePassword('honk')->isValid());
103			$this->assertTrue($member->changePassword('newpassword')->isValid());
104			}
105			}
106

silverstripe / silverstripe-framework

Pull Request — 4.3 (#8601)

PasswordValidatorTest A

Complexity

Size/Duplication

Importance

5 Methods

Duplication Side-by-Side

Filter issues like