ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
ilWACTokenTest.php
Go to the documentation of this file.
1 <?php
2 // declare(strict_types=1);
3 /*
4  +-----------------------------------------------------------------------------+
5  | ILIAS open source |
6  +-----------------------------------------------------------------------------+
7  | Copyright (c) 1998-2009 ILIAS open source, University of Cologne |
8  | |
9  | This program is free software; you can redistribute it and/or |
10  | modify it under the terms of the GNU General Public License |
11  | as published by the Free Software Foundation; either version 2 |
12  | of the License, or (at your option) any later version. |
13  | |
14  | This program is distributed in the hope that it will be useful, |
15  | but WITHOUT ANY WARRANTY; without even the implied warranty of |
16  | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
17  | GNU General Public License for more details. |
18  | |
19  | You should have received a copy of the GNU General Public License |
20  | along with this program; if not, write to the Free Software |
21  | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. |
22  +-----------------------------------------------------------------------------+
23 */
24 require_once('./libs/composer/vendor/autoload.php');
25 
26 require_once('./Services/WebAccessChecker/classes/class.ilWACSignedPath.php');
27 require_once('./Services/WebAccessChecker/classes/class.ilWebAccessChecker.php');
28 require_once('./Services/WebAccessChecker/classes/class.ilWACSignedPath.php');
29 require_once('./Services/WebAccessChecker/classes/class.ilWACToken.php');
30 
31 use ILIAS\HTTP\Cookies\Cookie;
32 use ILIAS\HTTP\Cookies\CookieFactory;
33 use ILIAS\HTTP\Cookies\CookieFactoryImpl;
34 use ILIAS\HTTP\Cookies\CookieJar;
35 use ILIAS\HTTP\GlobalHttpState;
36 use Mockery\Adapter\Phpunit\MockeryTestCase;
37 use Mockery\MockInterface;
38 use org\bovigo\vfs;
39 use Psr\Http\Message\ResponseInterface;
40 
52 class ilWACTokenTest extends MockeryTestCase
53 {
54  const ADDITIONAL_TIME = 1;
55  const LIFETIME = 2;
56  const SALT = 'SALT';
57  const CLIENT_NAME = 'client_name';
61  protected $backupGlobals = false;
65  protected $file_one;
69  protected $file_one_subfolder;
73  protected $file_one_subfolder_two;
77  protected $file_two;
81  protected $file_three;
85  protected $file_four;
89  protected $root;
93  private $http;
97  private $cookieFactory;
98 
99 
103  protected function setUp()
104  {
105  parent::setUp();
106 
107  $this->root = vfs\vfsStream::setup('ilias.de');
108  $this->file_one = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/dummy.jpg')
109  ->at($this->root)->setContent('dummy');
110  $this->file_one_subfolder = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/mobile/dummy.jpg')
111  ->at($this->root)->setContent('dummy');
112  $this->file_one_subfolder_two = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/mobile/device/dummy.jpg')
113  ->at($this->root)->setContent('dummy');
114  $this->file_two = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/dummy2.jpg')
115  ->at($this->root)->setContent('dummy2');
116  $this->file_three = vfs\vfsStream::newFile('data/client_name/mobs/mm_124/dummy.jpg')
117  ->at($this->root)->setContent('dummy');
118  $this->file_four = vfs\vfsStream::newFile('data/client_name/sec/ilBlog/mm_124/dummy.jpg')
119  ->at($this->root)->setContent('dummy');
120 
121  //setup container for HttpServiceAware classes
122  $container = new \ILIAS\DI\Container();
123  $container['http'] = function ($c) {
124  return Mockery::mock(GlobalHttpState::class);
125  };
126 
127  $this->http = $container['http'];
128 
129 
130  $GLOBALS["DIC"] = $container;
131 
132  $this->cookieFactory = Mockery::mock(CookieFactoryImpl::class);
133 
134  //because the cookie have no logic except cloning it self therefore it should be no problem to defer the function calls
135  $this->cookieFactory->shouldDeferMissing();
136 
137  ilWACToken::setSALT(self::SALT);
138  }
139 
140 
141  public function testWithoutSigning()
142  {
143  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_one->url()), $this->http, $this->cookieFactory);
144 
145  $cookieJar = Mockery::mock(CookieJar::class);
146 
147  $cookieJar
148  ->shouldReceive('get')
149  ->times(6)
150  ->withAnyArgs()
151  ->andReturnNull();
152 
153  $this->http->shouldReceive('cookieJar')
154  ->twice()
155  ->withNoArgs()
156  ->andReturn($cookieJar);
157 
158  $this->assertFalse($ilWACSignedPath->isSignedPath());
159  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
160  $this->assertFalse($ilWACSignedPath->isFolderSigned());
161  $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
162  }
163 
164 
165  public function testSomeBasics()
166  {
167  $query = 'myparam=1234';
168  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_four->url() . '?'
169  . $query), $this->http, $this->cookieFactory);
170 
171  $this->assertEquals('dummy.jpg', $ilWACSignedPath->getPathObject()->getFileName());
172  $this->assertEquals($query, $ilWACSignedPath->getPathObject()->getQuery());
173  $this->assertEquals('./data/' . self::CLIENT_NAME
174  . '/sec/ilBlog/mm_124/', $ilWACSignedPath->getPathObject()
175  ->getSecurePath());
176  $this->assertEquals('ilBlog', $ilWACSignedPath->getPathObject()->getSecurePathId());
177  $this->assertFalse($ilWACSignedPath->getPathObject()->isStreamable());
178  }
179 
180 
181  public function testTokenGeneration()
182  {
183  $ilWacPath = new ilWacPath($this->file_four->url());
184  $ilWACToken = new ilWACToken($ilWacPath->getPath(), self::CLIENT_NAME, 123456, 20);
185  $ilWACToken->generateToken();
186  $this->assertEquals('SALT-client_name-123456-20', $ilWACToken->getRawToken());
187  $this->assertEquals('./data/client_name/sec/ilBlog/mm_124/dummy.jpg', $ilWACToken->getId());
188 
189  $this->assertEquals(self::SALT, ilWACToken::getSALT());
190  $ilWACToken = new ilWACToken($ilWacPath->getPath(), self::CLIENT_NAME, 123456, 20);
191  $this->assertEquals('b541e2bae42ee222f9be959b7ad2ab8844cbb05b', $ilWACToken->getToken());
192  $this->assertEquals('e45b98f267dc891c8206c844f7df29ea', $ilWACToken->getHashedId());
193  }
194 
195 
196  public function testCookieGeneration()
197  {
198  $expected_cookies = [
199  '19ab58dae37d8d8cf931727c35514642',
200  '19ab58dae37d8d8cf931727c35514642ts',
201  '19ab58dae37d8d8cf931727c35514642ttl',
202  ];
203 
204  $cookieJar = Mockery::mock(CookieJar::class);
205 
206  $response = Mockery::mock(ResponseInterface::class);
207 
208  $this->http
209  ->shouldReceive('response')
210  ->times(3)
211  ->withNoArgs()
212  ->andReturn($response)
213  ->getMock()
214 
215  ->shouldReceive('saveResponse')
216  ->times(3)
217  ->with($response);
218 
219  $cookieJar
220  ->shouldReceive('with')
221  ->times(3)
222  ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
223  return strcmp($cookie->getName(), $expected_cookies[0]) === 0;
224  }))
225  ->andReturnSelf()
226  ->getMock()
227 
228  ->shouldReceive('with')
229  ->times(3)
230  ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
231  return strcmp($cookie->getName(), $expected_cookies[1]) === 0;
232  }))
233  ->andReturnSelf()
234  ->getMock()
235 
236  ->shouldReceive('with')
237  ->times(3)
238  ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
239  return strcmp($cookie->getName(), $expected_cookies[2]) === 0;
240  }))
241  ->andReturnSelf()
242  ->getMock()
243 
244  ->shouldReceive('renderIntoResponseHeader')
245  ->times(3)
246  ->withAnyArgs()
247  ->andReturn($response);
248 
249  $this->http->shouldReceive('cookieJar')
250  ->times(3)
251  ->withNoArgs()
252  ->andReturn($cookieJar);
253 
254  ilWACSignedPath::signFolderOfStartFile($this->file_one->url());
255 
256  // in subfolder
257  ilWACSignedPath::signFolderOfStartFile($this->file_one_subfolder->url());
258 
259  // in sub-subfolder
260  ilWACSignedPath::signFolderOfStartFile($this->file_one_subfolder->url());
261  }
262 
263 
264  public function testFileToken()
265  {
266  ilWACSignedPath::setTokenMaxLifetimeInSeconds(self::LIFETIME);
267  $lifetime = ilWACSignedPath::getTokenMaxLifetimeInSeconds();
268 
269  // Request within lifetime
270  $signed_path = ilWACSignedPath::signFile($this->file_one->url());
271  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
272 
273  $this->assertTrue($ilWACSignedPath->isSignedPath());
274  $this->assertTrue($ilWACSignedPath->isSignedPathValid());
275  $this->assertEquals($ilWACSignedPath->getPathObject()->getClient(), self::CLIENT_NAME);
276  $this->assertFalse($ilWACSignedPath->getPathObject()->isInSecFolder());
277  $this->assertTrue($ilWACSignedPath->getPathObject()->isImage());
278  $this->assertFalse($ilWACSignedPath->getPathObject()->isAudio());
279  $this->assertFalse($ilWACSignedPath->getPathObject()->isVideo());
280  $this->assertTrue($ilWACSignedPath->getPathObject()->hasTimestamp());
281  $this->assertTrue($ilWACSignedPath->getPathObject()->hasToken());
282 
283  // Request after lifetime
284  $signed_path = ilWACSignedPath::signFile($this->file_four->url());
285  sleep($lifetime + self::ADDITIONAL_TIME);
286  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
287  $this->assertTrue($ilWACSignedPath->isSignedPath());
288  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
289  }
290 
291 
295  public function testFolderToken()
296  {
297  $response = Mockery::mock(ResponseInterface::class);
298  $cookieJar = Mockery::mock(CookieJar::class);
299 
300  $this->http
301  ->shouldReceive('response')
302  ->once()
303  ->withNoArgs()
304  ->andReturn($response)
305  ->getMock()
306 
307  ->shouldReceive('cookieJar')
308  ->once()
309  ->withNoArgs()
310  ->andReturn($cookieJar)
311  ->getMock()
312 
313  ->shouldReceive('saveResponse')
314  ->once()
315  ->with($response);
316 
317  $timestamp = 2 ** 31 - 31;
318  $ttl = 30;
319  $tokenId = '19ab58dae37d8d8cf931727c35514642';
320 
321  $tokenCookie = $this->cookieFactory->create($tokenId, '344d7676240285cc714366038beb44d81bda1d4b');
322  $timestampCookie = $this->cookieFactory->create("{$tokenId}ts", "$timestamp");
323  $ttlCookie = $this->cookieFactory->create("{$tokenId}ttl", "$ttl");
324 
325  $cookieJar
326  ->shouldReceive('with')
327  ->times(3)
328  ->with(Mockery::type(Cookie::class))
329  ->andReturnSelf()
330  ->getMock()
331 
332  ->shouldReceive('renderIntoResponseHeader')
333  ->once()
334  ->withAnyArgs()
335  ->andReturn($response)
336  ->getMock()
337 
338  ->shouldReceive('get')
339  ->times(3)
340  ->withAnyArgs()
341  ->andReturnValues([$tokenCookie, $timestampCookie, $ttlCookie])
342  ->getMock()
343 
344  ->shouldReceive('get')
345  ->times(3)
346  ->withAnyArgs()
347  ->andReturnValues([$tokenCookie, $timestampCookie, $ttlCookie]);
348 
349  ilWACSignedPath::setCookieMaxLifetimeInSeconds(self::LIFETIME);
350  $lifetime = ilWACSignedPath::getCookieMaxLifetimeInSeconds();
351 
352  $signed_path = $this->file_one->url();
353  ilWACSignedPath::signFolderOfStartFile($signed_path);
354 
355  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
356 
357  self::markTestSkipped("WIP");
358  return;
359 
360  $this->assertTrue($ilWACSignedPath->isFolderSigned());
361  $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
362  $this->assertEquals($ilWACSignedPath->getPathObject()->getClient(), self::CLIENT_NAME);
363  $this->assertFalse($ilWACSignedPath->getPathObject()->isInSecFolder());
364  $this->assertTrue($ilWACSignedPath->getPathObject()->isImage());
365  $this->assertFalse($ilWACSignedPath->getPathObject()->isAudio());
366  $this->assertFalse($ilWACSignedPath->getPathObject()->isVideo());
367  $this->assertTrue($ilWACSignedPath->getPathObject()->hasTimestamp());
368  $this->assertTrue($ilWACSignedPath->getPathObject()->hasToken());
369 
370  // Request after lifetime
371  ilWACSignedPath::signFolderOfStartFile($signed_path);
372  sleep($lifetime + self::ADDITIONAL_TIME);
373  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
374  $this->assertTrue($ilWACSignedPath->isFolderSigned());
375  $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
376 
377  // Revalidating cookie
378  $ilWACSignedPath->revalidatingFolderToken();
379  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
380  $this->assertTrue($ilWACSignedPath->isFolderSigned());
381  $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
382 
383  // Check other file
384  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_three->url()), $this->http, $this->cookieFactory);
385  $this->assertTrue($ilWACSignedPath->isFolderSigned());
386  $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
387  }
388 
389 
393  public function testFolderTokenWithSecondFile()
394  {
395  self::markTestSkipped("WIP");
396  return;
397  ilWACSignedPath::setCookieMaxLifetimeInSeconds(self::LIFETIME);
398  $lifetime = ilWACSignedPath::getCookieMaxLifetimeInSeconds();
399  // Sign File One
400 
401  ilWACSignedPath::signFolderOfStartFile($this->file_one->url());
402  // Check File Two
403  $file_two = $this->file_two->url();
404  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($file_two), $this->http, $this->cookieFactory);
405  $this->assertTrue($ilWACSignedPath->isFolderSigned());
406  $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
407 
408  // Request after lifetime
409  ilWACSignedPath::signFolderOfStartFile($file_two);
410  sleep($lifetime + self::ADDITIONAL_TIME);
411  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($file_two), $this->http, $this->cookieFactory);
412  $this->assertTrue($ilWACSignedPath->isFolderSigned());
413  $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
414 
415  // Revalidating cookie
416  $ilWACSignedPath->revalidatingFolderToken();
417  $this->assertTrue($ilWACSignedPath->isFolderSigned());
418  $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
419 
420  // Check other file
421  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_three->url()), $this->http, $this->cookieFactory);
422  $this->assertFalse($ilWACSignedPath->isFolderSigned());
423  $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
424  }
425 
426 
430  public function testModifiedTimestampNoMod()
431  {
432  self::markTestSkipped("WIP");
433  return;
434  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 0)), $this->http, $this->cookieFactory);
435  $this->assertTrue($ilWACSignedPath->isSignedPath());
436  $this->assertTrue($ilWACSignedPath->isSignedPathValid());
437  }
438 
439 
443  public function testModifiedTimestampAddTime()
444  {
445  self::markTestSkipped("WIP");
446  return;
447  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(self::ADDITIONAL_TIME, 0)), $this->http, $this->cookieFactory);
448  $this->assertTrue($ilWACSignedPath->isSignedPath());
449  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
450  }
451 
452 
453  public function testModifiedTimestampSubTime()
454  {
455  self::markTestSkipped("WIP");
456  return;
457  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(self::ADDITIONAL_TIME
458  * -1, 0)), $this->http, $this->cookieFactory);
459  $this->assertTrue($ilWACSignedPath->isSignedPath());
460  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
461  }
462 
463 
464  public function testModifiedTTL()
465  {
466  self::markTestSkipped("WIP");
467  return;
468  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 1)), $this->http, $this->cookieFactory);
469  $this->assertTrue($ilWACSignedPath->isSignedPath());
470  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
471  }
472 
473 
474  public function testModifiedTTLAndTimestamp()
475  {
476  self::markTestSkipped("WIP");
477  return;
478  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(1, 1)), $this->http, $this->cookieFactory);
479  $this->assertTrue($ilWACSignedPath->isSignedPath());
480  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
481  }
482 
483 
484  public function testModifiedToken()
485  {
486  self::markTestSkipped("WIP");
487  return;
488  $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 0, md5('LOREM'))), $this->http, $this->cookieFactory);
489  $this->assertTrue($ilWACSignedPath->isSignedPath());
490  $this->assertFalse($ilWACSignedPath->isSignedPathValid());
491  }
492 
493 
500  protected function getModifiedSignedPath($add_ttl = 0, $add_timestamp = 0, $override_token = null)
501  {
502  ilWACSignedPath::setTokenMaxLifetimeInSeconds(self::LIFETIME);
503  $signed_path = ilWACSignedPath::signFile($this->file_one->url());
504 
505  $parts = parse_url($signed_path);
506  $path = $parts['path'];
507  $query = $parts['query'];
508  parse_str($query, $query_array);
509  $token = $override_token ? $override_token : $query_array['il_wac_token'];
510  $ttl = (int) $query_array['il_wac_ttl'];
511  $ts = (int) $query_array['il_wac_ts'];
512  $path_with_token = $path . '?il_wac_token=' . $token;
513 
514  $modified_ttl = $ttl + $add_ttl;
515  $modified_ts = $ts + $add_timestamp;
516 
517  return $path_with_token . '&il_wac_ttl=' . $modified_ttl . '&il_wac_ts=' . $modified_ts;
518  }
519 }
ilWACSignedPath\getCookieMaxLifetimeInSeconds
static getCookieMaxLifetimeInSeconds()
Definition: class.ilWACSignedPath.php:432
ilWACTokenTest\getModifiedSignedPath
getModifiedSignedPath($add_ttl=0, $add_timestamp=0, $override_token=null)
Definition: ilWACTokenTest.php:500
$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18
ilWACPath
Class ilWACPath.
Definition: class.ilWACPath.php:10
$container
$container
Definition: wac.php:13
ilWACTokenTest
TestCase for the ilWACTokenTest.
Definition: ilWACTokenTest.php:52
ilWACSignedPath\signFolderOfStartFile
static signFolderOfStartFile($start_file_path)
Definition: class.ilWACSignedPath.php:254
ILIAS\FileDelivery\http
static http()
Fetches the global http state from ILIAS.
Definition: HttpServiceAware.php:36
ilWACSignedPath\setCookieMaxLifetimeInSeconds
static setCookieMaxLifetimeInSeconds($cookie_max_lifetime_in_seconds)
Definition: class.ilWACSignedPath.php:445
ilWACSignedPath
Class ilWACSignedPath.
Definition: class.ilWACSignedPath.php:23
ilWACToken\getSALT
static getSALT()
Definition: class.ilWACToken.php:278
$query
$query
Definition: proxy_ylocal.php:13
ilWACSignedPath\signFile
static signFile($path_to_file)
Definition: class.ilWACSignedPath.php:233
ilWACToken
Class ilWACToken.
Definition: class.ilWACToken.php:12
ilWACToken\setSALT
static setSALT($salt)
Definition: class.ilWACToken.php:288
ILIAS\HTTP\Cookies\Cookie\getName
getName()
Cookie name.
$timestamp
foreach($mandatory_scripts as $file) $timestamp
Definition: buildRTE.php:81
ilWACSignedPath\setTokenMaxLifetimeInSeconds
static setTokenMaxLifetimeInSeconds($token_max_lifetime_in_seconds)
Definition: class.ilWACSignedPath.php:419
ilWACSignedPath\getTokenMaxLifetimeInSeconds
static getTokenMaxLifetimeInSeconds()
Definition: class.ilWACSignedPath.php:407
$response
$response
Definition: proxy_ylocal.php:39