tests/unit/Plugins/AuthenticationPluginTest.php

   1 <?php
   2
   3 declare(strict_types=1);
   4
   5 namespace PhpMyAdmin\Tests\Plugins;
   6
   7 use PhpMyAdmin\Config;
   8 use PhpMyAdmin\ConfigStorage\Relation;
   9 use PhpMyAdmin\ConfigStorage\RelationParameters;
  10 use PhpMyAdmin\Current;
  11 use PhpMyAdmin\Dbal\DatabaseInterface;
  12 use PhpMyAdmin\Exceptions\AuthenticationFailure;
  13 use PhpMyAdmin\Exceptions\ExitException;
  14 use PhpMyAdmin\Http\Factory\ServerRequestFactory;
  15 use PhpMyAdmin\Http\Response;
  16 use PhpMyAdmin\Plugins\AuthenticationPlugin;
  17 use PhpMyAdmin\ResponseRenderer;
  18 use PhpMyAdmin\Tests\AbstractTestCase;
  19 use PHPUnit\Framework\Attributes\CoversClass;
  20 use ReflectionProperty;
  21
  22 #[CoversClass(AuthenticationPlugin::class)]
  23 final class AuthenticationPluginTest extends AbstractTestCase
  24 {
  25     public function testCheckTwoFactor(): void
  26     {
  27         /** @psalm-suppress DeprecatedMethod */
  28         $config = Config::getInstance();
  29         /** @psalm-suppress InaccessibleProperty */
  30         $config->config->debug->simple2fa = true;
  31
  32         Current::$lang = 'en';
  33         $dbiDummy = $this->createDbiDummy();
  34         $dbiDummy->addResult(
  35             // phpcs:ignore Generic.Files.LineLength.TooLong
  36             "SELECT `config_data`, UNIX_TIMESTAMP(`timevalue`) ts FROM `db_pma`.`pma__userconfig` WHERE `username` = 'test_user'",
  37             [['{"2fa":{"backend":"simple","settings":[]}}', '1724620722']],
  38             ['config_data', 'ts'],
  39         );
  40         $dbiDummy->addResult('SELECT CURRENT_USER();', [['test_user@localhost']]);
  41         DatabaseInterface::$instance = $this->createDatabaseInterface($dbiDummy);
  42
  43         $object = new class extends AuthenticationPlugin {
  44             public function showLoginForm(): Response|null
  45             {
  46                 return null;
  47             }
  48
  49             public function readCredentials(): bool
  50             {
  51                 return false;
  52             }
  53
  54             public function showFailure(AuthenticationFailure $failure): Response
  55             {
  56                 throw new ExitException();
  57             }
  58         };
  59
  60         $_SESSION['two_factor_check'] = false;
  61
  62         $relationParameters = RelationParameters::fromArray([
  63             'user' => 'test_user',
  64             'db' => 'db_pma',
  65             'userconfigwork' => true,
  66             'userconfig' => 'pma__userconfig',
  67         ]);
  68         (new ReflectionProperty(Relation::class, 'cache'))->setValue(null, $relationParameters);
  69         (new ReflectionProperty(ResponseRenderer::class, 'instance'))->setValue(null, null);
  70         $responseRenderer = ResponseRenderer::getInstance();
  71         $responseRenderer->setAjax(false);
  72
  73         $request = ServerRequestFactory::create()->createServerRequest('GET', 'http://example.com/');
  74
  75         $object->user = 'test_user';
  76         $response = $object->checkTwoFactor($request);
  77
  78         self::assertNotNull($response);
  79         self::assertStringContainsString(
  80             'You have enabled two factor authentication, please confirm your login.',
  81             (string) $response->getBody(),
  82         );
  83
  84         $dbiDummy->assertAllQueriesConsumed();
  85         $dbiDummy->assertAllSelectsConsumed();
  86     }
  87
  88     public function testCheckTwoFactorConfirmation(): void
  89     {
  90         /** @psalm-suppress DeprecatedMethod */
  91         $config = Config::getInstance();
  92         /** @psalm-suppress InaccessibleProperty */
  93         $config->config->debug->simple2fa = true;
  94
  95         Current::$lang = 'en';
  96         $dbiDummy = $this->createDbiDummy();
  97         $dbiDummy->addResult(
  98             // phpcs:ignore Generic.Files.LineLength.TooLong
  99             "SELECT `config_data`, UNIX_TIMESTAMP(`timevalue`) ts FROM `db_pma`.`pma__userconfig` WHERE `username` = 'test_user'",
 100             [['{"2fa":{"backend":"simple","settings":[]}}', '1724620722']],
 101             ['config_data', 'ts'],
 102         );
 103         DatabaseInterface::$instance = $this->createDatabaseInterface($dbiDummy);
 104
 105         $object = new class extends AuthenticationPlugin {
 106             public function showLoginForm(): Response|null
 107             {
 108                 return null;
 109             }
 110
 111             public function readCredentials(): bool
 112             {
 113                 return false;
 114             }
 115
 116             public function showFailure(AuthenticationFailure $failure): Response
 117             {
 118                 throw new ExitException();
 119             }
 120         };
 121
 122         $_SESSION['two_factor_check'] = false;
 123
 124         $relationParameters = RelationParameters::fromArray([
 125             'user' => 'test_user',
 126             'db' => 'db_pma',
 127             'userconfigwork' => true,
 128             'userconfig' => 'pma__userconfig',
 129         ]);
 130         (new ReflectionProperty(Relation::class, 'cache'))->setValue(null, $relationParameters);
 131         (new ReflectionProperty(ResponseRenderer::class, 'instance'))->setValue(null, null);
 132         $responseRenderer = ResponseRenderer::getInstance();
 133         $responseRenderer->setAjax(false);
 134
 135         $request = ServerRequestFactory::create()->createServerRequest('POST', 'http://example.com/')
 136             ->withParsedBody(['2fa_confirm' => '1']);
 137
 138         $object->user = 'test_user';
 139         $response = $object->checkTwoFactor($request);
 140
 141         self::assertNull($response);
 142
 143         $dbiDummy->assertAllQueriesConsumed();
 144         $dbiDummy->assertAllSelectsConsumed();
 145     }
 146 }