ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
ilWACTokenTest.php
Go to the documentation of this file.
1<?php
2// declare(strict_types=1);
3/*
4 +-----------------------------------------------------------------------------+
5 | ILIAS open source |
6 +-----------------------------------------------------------------------------+
7 | Copyright (c) 1998-2009 ILIAS open source, University of Cologne |
8 | |
9 | This program is free software; you can redistribute it and/or |
10 | modify it under the terms of the GNU General Public License |
11 | as published by the Free Software Foundation; either version 2 |
12 | of the License, or (at your option) any later version. |
13 | |
14 | This program is distributed in the hope that it will be useful, |
15 | but WITHOUT ANY WARRANTY; without even the implied warranty of |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
17 | GNU General Public License for more details. |
18 | |
19 | You should have received a copy of the GNU General Public License |
20 | along with this program; if not, write to the Free Software |
21 | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. |
22 +-----------------------------------------------------------------------------+
23*/
24require_once('./libs/composer/vendor/autoload.php');
25
26require_once('./Services/WebAccessChecker/classes/class.ilWACSignedPath.php');
27require_once('./Services/WebAccessChecker/classes/class.ilWebAccessChecker.php');
28require_once('./Services/WebAccessChecker/classes/class.ilWACSignedPath.php');
29require_once('./Services/WebAccessChecker/classes/class.ilWACToken.php');
30
31use ILIAS\HTTP\Cookies\Cookie;
32use ILIAS\HTTP\Cookies\CookieFactory;
33use ILIAS\HTTP\Cookies\CookieFactoryImpl;
34use ILIAS\HTTP\Cookies\CookieJar;
35use ILIAS\HTTP\GlobalHttpState;
36use Mockery\Adapter\Phpunit\MockeryTestCase;
37use Mockery\MockInterface;
38use org\bovigo\vfs;
39use Psr\Http\Message\ResponseInterface;
40
52class ilWACTokenTest extends MockeryTestCase
53{
54 const ADDITIONAL_TIME = 1;
55 const LIFETIME = 2;
56 const SALT = 'SALT';
57 const CLIENT_NAME = 'client_name';
61 protected $backupGlobals = false;
65 protected $file_one;
69 protected $file_one_subfolder;
73 protected $file_one_subfolder_two;
77 protected $file_two;
81 protected $file_three;
85 protected $file_four;
89 protected $root;
93 private $http;
97 private $cookieFactory;
98
99
103 protected function setUp()
104 {
105 parent::setUp();
106
107 $this->root = vfs\vfsStream::setup('ilias.de');
108 $this->file_one = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/dummy.jpg')
109 ->at($this->root)->setContent('dummy');
110 $this->file_one_subfolder = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/mobile/dummy.jpg')
111 ->at($this->root)->setContent('dummy');
112 $this->file_one_subfolder_two = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/mobile/device/dummy.jpg')
113 ->at($this->root)->setContent('dummy');
114 $this->file_two = vfs\vfsStream::newFile('data/client_name/mobs/mm_123/dummy2.jpg')
115 ->at($this->root)->setContent('dummy2');
116 $this->file_three = vfs\vfsStream::newFile('data/client_name/mobs/mm_124/dummy.jpg')
117 ->at($this->root)->setContent('dummy');
118 $this->file_four = vfs\vfsStream::newFile('data/client_name/sec/ilBlog/mm_124/dummy.jpg')
119 ->at($this->root)->setContent('dummy');
120
121 //setup container for HttpServiceAware classes
122 $container = new \ILIAS\DI\Container();
123 $container['http'] = function ($c) {
124 return Mockery::mock(GlobalHttpState::class);
125 };
126
127 $this->http = $container['http'];
128
129
130 $GLOBALS["DIC"] = $container;
131
132 $this->cookieFactory = Mockery::mock(CookieFactoryImpl::class);
133
134 //because the cookie have no logic except cloning it self therefore it should be no problem to defer the function calls
135 $this->cookieFactory->shouldDeferMissing();
136
137 ilWACToken::setSALT(self::SALT);
138 }
139
140
141 public function testWithoutSigning()
142 {
143 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_one->url()), $this->http, $this->cookieFactory);
144
145 $cookieJar = Mockery::mock(CookieJar::class);
146
147 $cookieJar
148 ->shouldReceive('get')
149 ->times(6)
150 ->withAnyArgs()
151 ->andReturnNull();
152
153 $this->http->shouldReceive('cookieJar')
154 ->twice()
155 ->withNoArgs()
156 ->andReturn($cookieJar);
157
158 $this->assertFalse($ilWACSignedPath->isSignedPath());
159 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
160 $this->assertFalse($ilWACSignedPath->isFolderSigned());
161 $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
162 }
163
164
165 public function testSomeBasics()
166 {
167 $query = 'myparam=1234';
168 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_four->url() . '?'
169 . $query), $this->http, $this->cookieFactory);
170
171 $this->assertEquals('dummy.jpg', $ilWACSignedPath->getPathObject()->getFileName());
172 $this->assertEquals($query, $ilWACSignedPath->getPathObject()->getQuery());
173 $this->assertEquals('./data/' . self::CLIENT_NAME
174 . '/sec/ilBlog/mm_124/', $ilWACSignedPath->getPathObject()
175 ->getSecurePath());
176 $this->assertEquals('ilBlog', $ilWACSignedPath->getPathObject()->getSecurePathId());
177 $this->assertFalse($ilWACSignedPath->getPathObject()->isStreamable());
178 }
179
180
181 public function testTokenGeneration()
182 {
183 $ilWacPath = new ilWacPath($this->file_four->url());
184 $ilWACToken = new ilWACToken($ilWacPath->getPath(), self::CLIENT_NAME, 123456, 20);
185 $ilWACToken->generateToken();
186 $this->assertEquals('SALT-client_name-123456-20', $ilWACToken->getRawToken());
187 $this->assertEquals('./data/client_name/sec/ilBlog/mm_124/dummy.jpg', $ilWACToken->getId());
188
189 $this->assertEquals(self::SALT, ilWACToken::getSALT());
190 $ilWACToken = new ilWACToken($ilWacPath->getPath(), self::CLIENT_NAME, 123456, 20);
191 $this->assertEquals('b541e2bae42ee222f9be959b7ad2ab8844cbb05b', $ilWACToken->getToken());
192 $this->assertEquals('e45b98f267dc891c8206c844f7df29ea', $ilWACToken->getHashedId());
193 }
194
195
196 public function testCookieGeneration()
197 {
198 $expected_cookies = [
199 '19ab58dae37d8d8cf931727c35514642',
200 '19ab58dae37d8d8cf931727c35514642ts',
201 '19ab58dae37d8d8cf931727c35514642ttl',
202 ];
203
204 $cookieJar = Mockery::mock(CookieJar::class);
205
206 $response = Mockery::mock(ResponseInterface::class);
207
208 $this->http
209 ->shouldReceive('response')
210 ->times(3)
211 ->withNoArgs()
212 ->andReturn($response)
213 ->getMock()
214
215 ->shouldReceive('saveResponse')
216 ->times(3)
217 ->with($response);
218
219 $cookieJar
220 ->shouldReceive('with')
221 ->times(3)
222 ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
223 return strcmp($cookie->getName(), $expected_cookies[0]) === 0;
224 }))
225 ->andReturnSelf()
226 ->getMock()
227
228 ->shouldReceive('with')
229 ->times(3)
230 ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
231 return strcmp($cookie->getName(), $expected_cookies[1]) === 0;
232 }))
233 ->andReturnSelf()
234 ->getMock()
235
236 ->shouldReceive('with')
237 ->times(3)
238 ->with(Mockery::on(function (Cookie $cookie) use ($expected_cookies) {
239 return strcmp($cookie->getName(), $expected_cookies[2]) === 0;
240 }))
241 ->andReturnSelf()
242 ->getMock()
243
244 ->shouldReceive('renderIntoResponseHeader')
245 ->times(3)
246 ->withAnyArgs()
247 ->andReturn($response);
248
249 $this->http->shouldReceive('cookieJar')
250 ->times(3)
251 ->withNoArgs()
252 ->andReturn($cookieJar);
253
254 ilWACSignedPath::signFolderOfStartFile($this->file_one->url());
255
256 // in subfolder
257 ilWACSignedPath::signFolderOfStartFile($this->file_one_subfolder->url());
258
259 // in sub-subfolder
260 ilWACSignedPath::signFolderOfStartFile($this->file_one_subfolder->url());
261 }
262
263
264 public function testFileToken()
265 {
266 ilWACSignedPath::setTokenMaxLifetimeInSeconds(self::LIFETIME);
267 $lifetime = ilWACSignedPath::getTokenMaxLifetimeInSeconds();
268
269 // Request within lifetime
270 $signed_path = ilWACSignedPath::signFile($this->file_one->url());
271 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
272
273 $this->assertTrue($ilWACSignedPath->isSignedPath());
274 $this->assertTrue($ilWACSignedPath->isSignedPathValid());
275 $this->assertEquals($ilWACSignedPath->getPathObject()->getClient(), self::CLIENT_NAME);
276 $this->assertFalse($ilWACSignedPath->getPathObject()->isInSecFolder());
277 $this->assertTrue($ilWACSignedPath->getPathObject()->isImage());
278 $this->assertFalse($ilWACSignedPath->getPathObject()->isAudio());
279 $this->assertFalse($ilWACSignedPath->getPathObject()->isVideo());
280 $this->assertTrue($ilWACSignedPath->getPathObject()->hasTimestamp());
281 $this->assertTrue($ilWACSignedPath->getPathObject()->hasToken());
282
283 // Request after lifetime
284 $signed_path = ilWACSignedPath::signFile($this->file_four->url());
285 sleep($lifetime + self::ADDITIONAL_TIME);
286 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
287 $this->assertTrue($ilWACSignedPath->isSignedPath());
288 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
289 }
290
291
295 public function testFolderToken()
296 {
297 $response = Mockery::mock(ResponseInterface::class);
298 $cookieJar = Mockery::mock(CookieJar::class);
299
300 $this->http
301 ->shouldReceive('response')
302 ->once()
303 ->withNoArgs()
304 ->andReturn($response)
305 ->getMock()
306
307 ->shouldReceive('cookieJar')
308 ->once()
309 ->withNoArgs()
310 ->andReturn($cookieJar)
311 ->getMock()
312
313 ->shouldReceive('saveResponse')
314 ->once()
315 ->with($response);
316
317 $timestamp = 2 ** 31 - 31;
318 $ttl = 30;
319 $tokenId = '19ab58dae37d8d8cf931727c35514642';
320
321 $tokenCookie = $this->cookieFactory->create($tokenId, '344d7676240285cc714366038beb44d81bda1d4b');
322 $timestampCookie = $this->cookieFactory->create("{$tokenId}ts", "$timestamp");
323 $ttlCookie = $this->cookieFactory->create("{$tokenId}ttl", "$ttl");
324
325 $cookieJar
326 ->shouldReceive('with')
327 ->times(3)
328 ->with(Mockery::type(Cookie::class))
329 ->andReturnSelf()
330 ->getMock()
331
332 ->shouldReceive('renderIntoResponseHeader')
333 ->once()
334 ->withAnyArgs()
335 ->andReturn($response)
336 ->getMock()
337
338 ->shouldReceive('get')
339 ->times(3)
340 ->withAnyArgs()
341 ->andReturnValues([$tokenCookie, $timestampCookie, $ttlCookie])
342 ->getMock()
343
344 ->shouldReceive('get')
345 ->times(3)
346 ->withAnyArgs()
347 ->andReturnValues([$tokenCookie, $timestampCookie, $ttlCookie]);
348
349 ilWACSignedPath::setCookieMaxLifetimeInSeconds(self::LIFETIME);
350 $lifetime = ilWACSignedPath::getCookieMaxLifetimeInSeconds();
351
352 $signed_path = $this->file_one->url();
353 ilWACSignedPath::signFolderOfStartFile($signed_path);
354
355 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
356
357 self::markTestSkipped("WIP");
358 return;
359
360 $this->assertTrue($ilWACSignedPath->isFolderSigned());
361 $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
362 $this->assertEquals($ilWACSignedPath->getPathObject()->getClient(), self::CLIENT_NAME);
363 $this->assertFalse($ilWACSignedPath->getPathObject()->isInSecFolder());
364 $this->assertTrue($ilWACSignedPath->getPathObject()->isImage());
365 $this->assertFalse($ilWACSignedPath->getPathObject()->isAudio());
366 $this->assertFalse($ilWACSignedPath->getPathObject()->isVideo());
367 $this->assertTrue($ilWACSignedPath->getPathObject()->hasTimestamp());
368 $this->assertTrue($ilWACSignedPath->getPathObject()->hasToken());
369
370 // Request after lifetime
371 ilWACSignedPath::signFolderOfStartFile($signed_path);
372 sleep($lifetime + self::ADDITIONAL_TIME);
373 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
374 $this->assertTrue($ilWACSignedPath->isFolderSigned());
375 $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
376
377 // Revalidating cookie
378 $ilWACSignedPath->revalidatingFolderToken();
379 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($signed_path), $this->http, $this->cookieFactory);
380 $this->assertTrue($ilWACSignedPath->isFolderSigned());
381 $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
382
383 // Check other file
384 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_three->url()), $this->http, $this->cookieFactory);
385 $this->assertTrue($ilWACSignedPath->isFolderSigned());
386 $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
387 }
388
389
393 public function testFolderTokenWithSecondFile()
394 {
395 self::markTestSkipped("WIP");
396 return;
397 ilWACSignedPath::setCookieMaxLifetimeInSeconds(self::LIFETIME);
398 $lifetime = ilWACSignedPath::getCookieMaxLifetimeInSeconds();
399 // Sign File One
400
401 ilWACSignedPath::signFolderOfStartFile($this->file_one->url());
402 // Check File Two
403 $file_two = $this->file_two->url();
404 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($file_two), $this->http, $this->cookieFactory);
405 $this->assertTrue($ilWACSignedPath->isFolderSigned());
406 $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
407
408 // Request after lifetime
409 ilWACSignedPath::signFolderOfStartFile($file_two);
410 sleep($lifetime + self::ADDITIONAL_TIME);
411 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($file_two), $this->http, $this->cookieFactory);
412 $this->assertTrue($ilWACSignedPath->isFolderSigned());
413 $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
414
415 // Revalidating cookie
416 $ilWACSignedPath->revalidatingFolderToken();
417 $this->assertTrue($ilWACSignedPath->isFolderSigned());
418 $this->assertTrue($ilWACSignedPath->isFolderTokenValid());
419
420 // Check other file
421 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->file_three->url()), $this->http, $this->cookieFactory);
422 $this->assertFalse($ilWACSignedPath->isFolderSigned());
423 $this->assertFalse($ilWACSignedPath->isFolderTokenValid());
424 }
425
426
430 public function testModifiedTimestampNoMod()
431 {
432 self::markTestSkipped("WIP");
433 return;
434 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 0)), $this->http, $this->cookieFactory);
435 $this->assertTrue($ilWACSignedPath->isSignedPath());
436 $this->assertTrue($ilWACSignedPath->isSignedPathValid());
437 }
438
439
443 public function testModifiedTimestampAddTime()
444 {
445 self::markTestSkipped("WIP");
446 return;
447 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(self::ADDITIONAL_TIME, 0)), $this->http, $this->cookieFactory);
448 $this->assertTrue($ilWACSignedPath->isSignedPath());
449 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
450 }
451
452
453 public function testModifiedTimestampSubTime()
454 {
455 self::markTestSkipped("WIP");
456 return;
457 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(self::ADDITIONAL_TIME
458 * -1, 0)), $this->http, $this->cookieFactory);
459 $this->assertTrue($ilWACSignedPath->isSignedPath());
460 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
461 }
462
463
464 public function testModifiedTTL()
465 {
466 self::markTestSkipped("WIP");
467 return;
468 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 1)), $this->http, $this->cookieFactory);
469 $this->assertTrue($ilWACSignedPath->isSignedPath());
470 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
471 }
472
473
474 public function testModifiedTTLAndTimestamp()
475 {
476 self::markTestSkipped("WIP");
477 return;
478 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(1, 1)), $this->http, $this->cookieFactory);
479 $this->assertTrue($ilWACSignedPath->isSignedPath());
480 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
481 }
482
483
484 public function testModifiedToken()
485 {
486 self::markTestSkipped("WIP");
487 return;
488 $ilWACSignedPath = new ilWACSignedPath(new ilWACPath($this->getModifiedSignedPath(0, 0, md5('LOREM'))), $this->http, $this->cookieFactory);
489 $this->assertTrue($ilWACSignedPath->isSignedPath());
490 $this->assertFalse($ilWACSignedPath->isSignedPathValid());
491 }
492
493
500 protected function getModifiedSignedPath($add_ttl = 0, $add_timestamp = 0, $override_token = null)
501 {
502 ilWACSignedPath::setTokenMaxLifetimeInSeconds(self::LIFETIME);
503 $signed_path = ilWACSignedPath::signFile($this->file_one->url());
504
505 $parts = parse_url($signed_path);
506 $path = $parts['path'];
507 $query = $parts['query'];
508 parse_str($query, $query_array);
509 $token = $override_token ? $override_token : $query_array['il_wac_token'];
510 $ttl = (int) $query_array['il_wac_ttl'];
511 $ts = (int) $query_array['il_wac_ts'];
512 $path_with_token = $path . '?il_wac_token=' . $token;
513
514 $modified_ttl = $ttl + $add_ttl;
515 $modified_ts = $ts + $add_timestamp;
516
517 return $path_with_token . '&il_wac_ttl=' . $modified_ttl . '&il_wac_ts=' . $modified_ts;
518 }
519}
$timestamp
foreach($mandatory_scripts as $file) $timestamp
Definition: buildRTE.php:81
php
An exception for terminatinating execution or to throw for unit testing.
ilWACPath
Class ilWACPath.
Definition: class.ilWACPath.php:11
ilWACSignedPath
Class ilWACSignedPath.
Definition: class.ilWACSignedPath.php:24
ilWACSignedPath\signFile
static signFile($path_to_file)
Definition: class.ilWACSignedPath.php:233
ilWACSignedPath\getCookieMaxLifetimeInSeconds
static getCookieMaxLifetimeInSeconds()
Definition: class.ilWACSignedPath.php:432
ilWACSignedPath\setCookieMaxLifetimeInSeconds
static setCookieMaxLifetimeInSeconds($cookie_max_lifetime_in_seconds)
Definition: class.ilWACSignedPath.php:445
ilWACSignedPath\setTokenMaxLifetimeInSeconds
static setTokenMaxLifetimeInSeconds($token_max_lifetime_in_seconds)
Definition: class.ilWACSignedPath.php:419
ilWACSignedPath\signFolderOfStartFile
static signFolderOfStartFile($start_file_path)
Definition: class.ilWACSignedPath.php:254
ilWACSignedPath\getTokenMaxLifetimeInSeconds
static getTokenMaxLifetimeInSeconds()
Definition: class.ilWACSignedPath.php:407
ilWACTokenTest
TestCase for the ilWACTokenTest.
Definition: ilWACTokenTest.php:53
ilWACTokenTest\getModifiedSignedPath
getModifiedSignedPath($add_ttl=0, $add_timestamp=0, $override_token=null)
Definition: ilWACTokenTest.php:500
ilWACTokenTest\testFolderTokenWithSecondFile
testFolderTokenWithSecondFile()
@Test
Definition: ilWACTokenTest.php:393
ilWACTokenTest\testModifiedTimestampNoMod
testModifiedTimestampNoMod()
@Test
Definition: ilWACTokenTest.php:430
ilWACTokenTest\testModifiedTimestampAddTime
testModifiedTimestampAddTime()
@Test
Definition: ilWACTokenTest.php:443
ilWACToken
Class ilWACToken.
Definition: class.ilWACToken.php:13
ilWACToken\getSALT
static getSALT()
Definition: class.ilWACToken.php:278
ilWACToken\setSALT
static setSALT($salt)
Definition: class.ilWACToken.php:288
$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18
ILIAS\HTTP\GlobalHttpState
Interface GlobalHttpState.
Definition: GlobalHttpState.php:25
Psr\Http\Message\ResponseInterface
Representation of an outgoing, server-side response.
Definition: ResponseInterface.php:21
ILIAS\FileDelivery\http
static http()
Fetches the global http state from ILIAS.
Definition: HttpServiceAware.php:36
$query
$query
Definition: proxy_ylocal.php:13
$response
$response
Definition: proxy_ylocal.php:39
$container
$container
Definition: wac.php:13