This repository has been archived on 2023-10-16. You can view files and clone it, but cannot push or open issues or pull requests.
2022-05-08 02:37:00 +08:00

225 lines
8.4 KiB
PHP

<?php
namespace PragmaRX\Google2FA\Tests;
use PHPUnit\Framework\TestCase;
use PragmaRX\Google2FA\Google2FA;
use PragmaRX\Google2FA\Support\Constants as Google2FAConstants;
class Google2FATest extends TestCase
{
public function setUp()
{
$this->google2fa = new Google2FA();
}
public function testIsInitializable()
{
$this->assertInstanceOf('PragmaRX\Google2FA\Google2FA', $this->google2fa);
}
public function testGeneratesAValidSecretKey()
{
$this->assertEquals(16, strlen($this->google2fa->generateSecretKey()));
$this->assertEquals(32, strlen($this->google2fa->generateSecretKey(32)));
$this->assertStringStartsWith('MFXHI', $this->google2fa->generateSecretKey(59, 'ant'));
$this->assertStringStartsWith('MFXHI', $this->google2fa->generateSecretKey(59, 'ant'));
$this->assertEquals($key = $this->google2fa->generateSecretKey(), preg_replace('/[^'.Google2FAConstants::VALID_FOR_B32.']/', '', $key));
}
/**
* @expectedException \PragmaRX\Google2FA\Exceptions\IncompatibleWithGoogleAuthenticatorException
*/
public function testGeneratesASecretKeysCompatibleWithGoogleAuthenticatorOrNot()
{
$this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey(17);
$this->assertEquals(17, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false)->generateSecretKey(17)));
}
public function testConvertsInvalidCharsToBase32()
{
$converted = $this->google2fa->generateBase32RandomKey(16, '1234'.chr(250).chr(251).chr(252).chr(253).chr(254).chr(255));
$valid = preg_replace('/[^'.Google2FAConstants::VALID_FOR_B32.']/', '', $converted);
$this->assertEquals($converted, $valid);
}
public function testGetsValidTimestamps()
{
$ts = $this->google2fa->getTimestamp();
$this->assertLessThanOrEqual(PHP_INT_MAX, $ts);
$this->assertGreaterThanOrEqual(~PHP_INT_MAX, $ts);
}
public function testDecodesBase32Strings()
{
$result = chr(0)
.chr(232)
.chr(196)
.chr(187)
.chr(190)
.chr(223)
.chr(26)
.chr(241)
.chr(145)
.chr(86);
$this->assertEquals($result, $this->google2fa->base32Decode(Constants::SECRET));
}
public function testCreatesAOneTimePassword()
{
$this->assertEquals(6, strlen($this->google2fa->getCurrentOtp(Constants::SECRET)));
}
public function testVerifiesKeys()
{
// $ts 26213400 with KEY_REGENERATION 30 seconds is
// timestamp 786402000, which is 1994-12-02 21:00:00 UTC
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', 2, 26213400)); // 26213398
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '981084', 2, 26213400)); // 26213399
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '512396', 2, 26213400)); // 26213400
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '410272', 2, 26213400)); // 26213401
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '239815', 2, 26213400)); // 26213402
$this->assertFalse($this->google2fa->verifyKey(Constants::SECRET, '313366', 2, 26213400)); // 26213403
$this->assertFalse($this->google2fa->verifyKey(Constants::SECRET, '093183', 2, 26213400)); // 26213397
}
public function testVerifiesKeysNewer()
{
$this->assertFalse($this->google2fa->verifyKeyNewer(Constants::SECRET, '512396', 26213401, 2, 26213400));
$this->assertFalse($this->google2fa->verifyKeyNewer(Constants::SECRET, '410272', 26213401, 2, 26213400));
$this->assertEquals(26213402, $this->google2fa->verifyKeyNewer(Constants::SECRET, '239815', 26213401, 2, 26213400));
$this->assertFalse($this->google2fa->verifyKeyNewer(Constants::SECRET, '313366', 26213401, 2, 26213400));
$this->assertEquals(26213400, $this->google2fa->verifyKeyNewer(Constants::SECRET, '512396', null, 2, 26213400));
$this->assertEquals(26213401, $this->google2fa->verifyKeyNewer(Constants::SECRET, '410272', null, 2, 26213400));
$this->assertEquals(26213402, $this->google2fa->verifyKeyNewer(Constants::SECRET, '239815', null, 2, 26213400));
$this->assertFalse($this->google2fa->verifyKeyNewer(Constants::SECRET, '313366', null, 2, 26213400));
}
public function testRemovesInvalidCharsFromSecret()
{
$this->assertEquals(Constants::SECRET, $this->google2fa->removeInvalidChars(Constants::SECRET.'!1-@@@'));
}
public function testCreatesAQrCode()
{
$this->assertEquals(Constants::URL, $this->google2fa->setAllowInsecureCallToGoogleApis(true)->getQRCodeGoogleUrl('PragmaRX', 'acr+pragmarx@antoniocarlosribeiro.com', Constants::SECRET));
}
/**
* @expectedException \PragmaRX\Google2FA\Exceptions\InsecureCallException
*/
public function testGetExceptionWhenUsingGoogleApis()
{
$this->assertEquals(Constants::URL, $this->google2fa->getQRCodeGoogleUrl('PragmaRX', 'acr+pragmarx@antoniocarlosribeiro.com', Constants::SECRET));
}
public function testConvertsToBase32()
{
$this->assertEquals('KBZGCZ3NMFJFQ', $this->google2fa->toBase32('PragmaRX'));
}
public function testSetsTheWindow()
{
$this->google2fa->setWindow(6);
$this->assertEquals(6, $this->google2fa->getWindow());
$this->assertEquals(1, $this->google2fa->getWindow(1));
$this->google2fa->setWindow(0);
$this->assertFalse($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213400));
$this->google2fa->setWindow(2);
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213400));
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213399));
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213398));
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213396));
$this->assertFalse($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213395));
}
public function testSetsTheSecret()
{
$this->assertFalse($this->google2fa->verify('558854', Constants::WRONG_SECRET));
$this->google2fa->setWindow(2);
$this->assertTrue($this->google2fa->verify('558854', Constants::SECRET, null, 26213400));
$this->google2fa->setSecret(Constants::SECRET);
$this->assertTrue($this->google2fa->verify('558854', null, null, 26213400));
}
public function testGetsKeyRegeneration()
{
$this->google2fa->setKeyRegeneration(11);
$this->assertEquals(11, $this->google2fa->getKeyRegeneration());
}
public function testGetsOtpLength()
{
$this->google2fa->setOneTimePasswordLength(7);
$this->assertEquals(7, $this->google2fa->getOneTimePasswordLength());
}
public function testGeneratesPasswordsInManyDifferentSizes()
{
$this->google2fa->setWindow(2);
$this->google2fa->setOneTimePasswordLength(6);
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '558854', null, 26213400));
$this->google2fa->setOneTimePasswordLength(7);
$this->assertTrue($this->google2fa->verifyKey(Constants::SECRET, '8981084', null, 26213400));
}
/**
* @expectedException \PragmaRX\Google2FA\Exceptions\SecretKeyTooShortException
*/
public function testShortSecretKey()
{
$this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false);
$this->google2fa->verifyKey(Constants::SHORT_SECRET, '558854', null, 26213400);
}
/**
* @expectedException \PragmaRX\Google2FA\Exceptions\InvalidCharactersException
*/
public function testValidateKey()
{
$this->assertTrue(is_numeric($this->google2fa->getCurrentOtp(Constants::SECRET)));
$this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false);
$this->google2fa->getCurrentOtp(Constants::INVALID_SECRET);
}
public function testQrcodeInline()
{
$this->assertEquals(
phpversion() >= '7.2' ? Constants::QRCODEPHPABOVE72 : Constants::QRCODEPHPBELOW72,
$this->google2fa->getQRCodeInline('PragmaRX', 'acr+pragmarx@antoniocarlosribeiro.com', Constants::SECRET)
);
}
}