ILIAS  trunk Revision v11.0_alpha-3011-gc6b235a2e85
ilBcryptPhpPasswordEncoderTest.php
Go to the documentation of this file.
1<?php
2
19declare(strict_types=1);
20
21use PHPUnit\Framework\Attributes\Depends;
22use PHPUnit\Framework\Attributes\DoesNotPerformAssertions;
23use PHPUnit\Framework\Attributes\DataProvider;
24
25final class ilBcryptPhpPasswordEncoderTest extends ilPasswordBaseTestCase
26{
27 private const string VALID_COSTS = '08';
28 private const string PASSWORD = 'password';
29 private const string WRONG_PASSWORD = 'wrong_password';
30
34 public static function costsProvider(): array
35 {
36 $data = [];
37 for ($i = 4; $i <= 31; ++$i) {
38 $data[sprintf('Costs: %s', $i)] = [(string) $i];
39 }
40
41 return $data;
42 }
43
44 public function testInstanceCanBeCreated(): ilBcryptPhpPasswordEncoder
45 {
46 $default_costs_encoder = new ilBcryptPhpPasswordEncoder();
47 $this->assertTrue((int) $default_costs_encoder->getCosts() > 4 && (int) $default_costs_encoder->getCosts() < 32);
48
49 $encoder = new ilBcryptPhpPasswordEncoder([
50 'cost' => self::VALID_COSTS
51 ]);
52 $this->assertInstanceOf(ilBcryptPhpPasswordEncoder::class, $encoder);
53 $this->assertSame(self::VALID_COSTS, $encoder->getCosts());
54
55 return $encoder;
56 }
57
58 #[Depends('testInstanceCanBeCreated')]
59 public function testCostsCanBeRetrievedWhenCostsAreSet(ilBcryptPhpPasswordEncoder $encoder): void
60 {
61 $expected = '04';
62
63 $encoder->setCosts($expected);
64 $this->assertSame($expected, $encoder->getCosts());
65 }
66
67 #[Depends('testInstanceCanBeCreated')]
68 public function testCostsCannotBeSetAboveRange(ilBcryptPhpPasswordEncoder $encoder): void
69 {
70 $this->expectException(ilPasswordException::class);
71 $encoder->setCosts('32');
72 }
73
74 #[Depends('testInstanceCanBeCreated')]
75 public function testCostsCannotBeSetBelowRange(ilBcryptPhpPasswordEncoder $encoder): void
76 {
77 $this->expectException(ilPasswordException::class);
78 $encoder->setCosts('3');
79 }
80
81 #[Depends('testInstanceCanBeCreated')]
82 #[DataProvider('costsProvider')]
83 #[DoesNotPerformAssertions]
84 public function testCostsCanBeSetInRange(string $costs, ilBcryptPhpPasswordEncoder $encoder): void
85 {
86 $encoder->setCosts($costs);
87 }
88
89 #[Depends('testInstanceCanBeCreated')]
90 public function testPasswordShouldBeCorrectlyEncodedAndVerified(
91 ilBcryptPhpPasswordEncoder $encoder
92 ): ilBcryptPhpPasswordEncoder {
93 $encoder->setCosts(self::VALID_COSTS);
94 $encoded_password = $encoder->encodePassword(self::PASSWORD, '');
95 $this->assertTrue($encoder->isPasswordValid($encoded_password, self::PASSWORD, ''));
96 $this->assertFalse($encoder->isPasswordValid($encoded_password, self::WRONG_PASSWORD, ''));
97
98 return $encoder;
99 }
100
101 #[Depends('testInstanceCanBeCreated')]
102 public function testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding(
103 ilBcryptPhpPasswordEncoder $encoder
104 ): void {
105 $this->expectException(ilPasswordException::class);
106 $encoder->setCosts(self::VALID_COSTS);
107 $encoder->encodePassword(str_repeat('a', 5000), '');
108 }
109
110 #[Depends('testInstanceCanBeCreated')]
111 public function testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength(
112 ilBcryptPhpPasswordEncoder $encoder
113 ): void {
114 $encoder->setCosts(self::VALID_COSTS);
115 $this->assertFalse($encoder->isPasswordValid('encoded', str_repeat('a', 5000), ''));
116 }
117
118 #[Depends('testInstanceCanBeCreated')]
119 public function testNameShouldBeBcryptPhp(ilBcryptPhpPasswordEncoder $encoder): void
120 {
121 $this->assertSame('bcryptphp', $encoder->getName());
122 }
123
124 #[Depends('testInstanceCanBeCreated')]
125 public function testCostsCanBeDeterminedDynamically(ilBcryptPhpPasswordEncoder $encoder): void
126 {
127 $costs_default = $encoder->benchmarkCost();
128 $costs_target = $encoder->benchmarkCost(0.5);
129
130 $this->assertTrue($costs_default > 4 && $costs_default < 32);
131 $this->assertTrue($costs_target > 4 && $costs_target < 32);
132 $this->assertIsInt($costs_default);
133 $this->assertIsInt($costs_target);
134 $this->assertNotEquals($costs_default, $costs_target);
135 }
136
137 #[Depends('testInstanceCanBeCreated')]
138 public function testEncoderDoesNotRelyOnSalts(ilBcryptPhpPasswordEncoder $encoder): void
139 {
140 $this->assertFalse($encoder->requiresSalt());
141 }
142
143 #[Depends('testInstanceCanBeCreated')]
144 public function testReencodingIsDetectedWhenNecessary(ilBcryptPhpPasswordEncoder $encoder): void
145 {
146 $raw = self::PASSWORD;
147
148 $encoder->setCosts('8');
149 $encoded = $encoder->encodePassword($raw, '');
150 $encoder->setCosts('8');
151 $this->assertFalse($encoder->requiresReencoding($encoded));
152
153 $encoder->setCosts('9');
154 $this->assertTrue($encoder->requiresReencoding($encoded));
155 }
156}
ilBasePasswordEncoder\requiresSalt
requiresSalt()
Returns whether the encoder requires a salt.
Definition: class.ilBasePasswordEncoder.php:67
ilBcryptPhpPasswordEncoderTest\testCostsCannotBeSetBelowRange
testCostsCannotBeSetBelowRange(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:75
ilBcryptPhpPasswordEncoderTest\testReencodingIsDetectedWhenNecessary
testReencodingIsDetectedWhenNecessary(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:144
ilBcryptPhpPasswordEncoderTest\testCostsCanBeDeterminedDynamically
testCostsCanBeDeterminedDynamically(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:125
ilBcryptPhpPasswordEncoderTest\testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding
testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:102
ilBcryptPhpPasswordEncoderTest\testEncoderDoesNotRelyOnSalts
testEncoderDoesNotRelyOnSalts(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:138
ilBcryptPhpPasswordEncoderTest\testCostsCannotBeSetAboveRange
testCostsCannotBeSetAboveRange(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:68
ilBcryptPhpPasswordEncoderTest\testNameShouldBeBcryptPhp
testNameShouldBeBcryptPhp(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:119
ilBcryptPhpPasswordEncoderTest\testCostsCanBeSetInRange
testCostsCanBeSetInRange(string $costs, ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:84
ilBcryptPhpPasswordEncoderTest\testCostsCanBeRetrievedWhenCostsAreSet
testCostsCanBeRetrievedWhenCostsAreSet(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:59
ilBcryptPhpPasswordEncoderTest\testPasswordShouldBeCorrectlyEncodedAndVerified
testPasswordShouldBeCorrectlyEncodedAndVerified(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:90
ilBcryptPhpPasswordEncoderTest\testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength
testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength(ilBcryptPhpPasswordEncoder $encoder)
Definition: ilBcryptPhpPasswordEncoderTest.php:111
ilBcryptPhpPasswordEncoder\requiresReencoding
requiresReencoding(string $encoded)
Returns whether the encoded password needs to be re-encoded.
Definition: class.ilBcryptPhpPasswordEncoder.php:106
ilBcryptPhpPasswordEncoder\getName
getName()
Returns a unique name/id of the concrete password encoder.
Definition: class.ilBcryptPhpPasswordEncoder.php:69
ilBcryptPhpPasswordEncoder\encodePassword
encodePassword(string $raw, string $salt)
Encodes the raw password.
Definition: class.ilBcryptPhpPasswordEncoder.php:90
ilBcryptPhpPasswordEncoder\isPasswordValid
isPasswordValid(string $encoded, string $raw, string $salt)
Checks a raw password against an encoded password.
Definition: class.ilBcryptPhpPasswordEncoder.php:101
ilPasswordException
Class for user password exception handling in ILIAS.
Definition: class.ilPasswordException.php:26