OXDEV-9992 Add more tests and refactor naming

Author: TitaKoleva

metadata.php

@@ -178,7 +178,7 @@
             'name'  => TwoFactorAuthModuleSettings::TWO_FACTOR_TYPE,
             'type'  => 'select',
             'constraints' => 'otp|totp',
-            'value' => ''
+            'value' => 'otp'
         ],
     ],
 ];

src/Authentication/TwoFactorAuth/Infrastructure/Repository/UserRepository.php

@@ -48,7 +48,7 @@ public function getUserOTPData(string $userName): UserDTO
             $userData['OXID'],
             $userData['OESMOTPATTEMPTS'],
             $userData['OESMOTPCODE'],
-            new DateTime($userData['OESMOTPEXPTIME'])
+            $userData['OESMOTPEXPTIME'] ? new DateTime($userData['OESMOTPEXPTIME']) : null
         );
     }
 

src/Authentication/TwoFactorAuth/Service/ModuleSettingsService.php

@@ -33,6 +33,15 @@ public function getTwoFactorAuthType(): string
         return $this->getStringValue(self::TWO_FACTOR_TYPE);
     }
 
+    public function saveIsTwoFactorAuthEnabled(bool $value): void
+    {
+        $this->moduleSettingService->saveBoolean(
+            self::ACTIVE,
+            $value,
+            Module::MODULE_ID
+        );
+    }
+
     private function getStringValue(string $key): string
     {
         return $this->moduleSettingService->getString(

src/Authentication/TwoFactorAuth/Service/ModuleSettingsServiceInterface.php

@@ -12,4 +12,6 @@ interface ModuleSettingsServiceInterface
     public function isTwoFactorAuthEnabled(): bool;
 
     public function getTwoFactorAuthType(): string;
+
+    public function saveIsTwoFactorAuthEnabled(bool $value): void;
 }

src/Shared/Model/User.php

@@ -9,9 +9,11 @@
 
 namespace OxidEsales\SecurityModule\Shared\Model;
 
+use Doctrine\DBAL\Exception;
 use OxidEsales\Eshop\Core\Exception\InputException;
 use OxidEsales\Eshop\Core\Exception\UserException;
 use OxidEsales\Eshop\Core\Registry;
+use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Exception\UserNotFoundException;
 use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Service\UserServiceInterface;
 use OxidEsales\SecurityModule\Captcha\Captcha\Image\Exception\CaptchaValidateException as ImageCaptchaException;
 use OxidEsales\SecurityModule\Captcha\Captcha\HoneyPot\Exception\CaptchaValidateException as HoneyPotCaptchaException;
@@ -85,7 +87,7 @@ public function login($userName, $password, $setSessionCookie = false): bool
 
             try {
                 $userService->handleLogin($userName);
-            } catch (\Exception $e) {
+            } catch (Exception | UserNotFoundException $e) {
                 throw oxNew(UserException::class, 'ERROR_MESSAGE_USER_NOVALIDLOGIN');
             }
 

tests/Codeception/Acceptance/BaseCest.php

@@ -13,6 +13,8 @@
 use OxidEsales\EshopCommunity\Core\Di\ContainerFacade;
 use OxidEsales\SecurityModule\Authentication\OAuth2\Service\ModuleSettingsServiceInterface
     as OAuthModuleSettingsServiceInterface;
+use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Service\ModuleSettingsServiceInterface
+    as TwoFASettingsServiceInterface;
 use OxidEsales\SecurityModule\Captcha\Service\ModuleSettingsServiceInterface as CaptchaSettingsServiceInterface;
 use OxidEsales\SecurityModule\PasswordPolicy\Service\ModuleSettingsServiceInterface as PasswordSettingsServiceInterface;
 
@@ -38,6 +40,11 @@ protected function setCaptchaState(bool $state)
         ContainerFacade::get(CaptchaSettingsServiceInterface::class)->saveIsCaptchaEnabled($state);
     }
 
+    protected function setTwoFactorAuthState(bool $state)
+    {
+        ContainerFacade::get(TwoFASettingsServiceInterface::class)->saveIsTwoFactorAuthEnabled($state);
+    }
+
     protected function setProviderState(bool $state)
     {
         $moduleSettings = ContainerFacade::get(OAuthModuleSettingsServiceInterface::class);

tests/Codeception/Acceptance/TwoFAAuthenticationCest.php

@@ -0,0 +1,69 @@
+<?php
+
+/**
+ * Copyright © OXID eSales AG. All rights reserved.
+ * See LICENSE file for license details.
+ */
+
+declare(strict_types=1);
+
+namespace OxidEsales\SecurityModule\Tests\Codeception\Acceptance;
+
+use Codeception\Util\Fixtures;
+use OxidEsales\Codeception\Module\Translation\Translator;
+use OxidEsales\Codeception\Page\Account\UserLogin;
+use OxidEsales\Codeception\Page\Account\UserPasswordReminder;
+use OxidEsales\Codeception\Page\DataObject\ContactData;
+use OxidEsales\SecurityModule\Tests\Codeception\Support\AcceptanceTester;
+
+/**
+ * @group oe_security_module
+ * @group oe_security_module_two_fa
+ */
+class TwoFAAuthenticationCest extends BaseCest
+{
+    private string $otpInput = '#auth_code';
+    private string $otpSubmitBtn = '#auth_submit';
+    private string $otpResendBtn = 'RESENT_CODE';
+
+    public function _before(AcceptanceTester $I): void
+    {
+        $this->setCaptchaState(false);
+        $this->setPasswordState(false);
+        $this->setTwoFactorAuthState(true);
+    }
+
+    public function testRedirectToOTPAfterLogin(AcceptanceTester $I): void
+    {
+        $userData = $this->getExistingUserData();
+
+        $userLoginPage = new UserLogin($I);
+        $I->amOnPage($userLoginPage->URL);
+        $I->see(Translator::translate('LOGIN'));
+
+        $userLoginPage->login($userData['userLoginName'], $userData['userPassword']);
+
+        $I->waitForPageLoad();
+        $I->seeElement($this->otpInput);
+        $I->seeElement($this->otpSubmitBtn);
+        $I->see(Translator::translate($this->otpResendBtn));
+    }
+
+    public function testRedirectToOTPOnLoginBox(AcceptanceTester $I): void
+    {
+
+        $userData = $this->getExistingUserData();
+
+        $homePage = $I->openShop();
+        $accountMenu = $homePage->openAccountMenu();
+        $I->waitForText(Translator::translate('FORGOT_PASSWORD'));
+        $I->retryFillField($accountMenu->userLoginName, $userData['userLoginName']);
+        $I->retryFillField($accountMenu->userLoginPassword, $userData['userPassword']);
+        $I->retryClick($accountMenu->userLoginButton);
+
+        $I->waitForPageLoad();
+        $I->seeElement($this->otpInput);
+        $I->seeElement($this->otpSubmitBtn);
+        $I->see(Translator::translate($this->otpResendBtn));
+    }
+}

tests/Codeception/Support/Data/fixtures.sql

@@ -1,7 +1,7 @@
 SET @@session.sql_mode = '';
 
 REPLACE INTO `oxuser` (`OXID`, `OXACTIVE`, `OXRIGHTS`, `OXSHOPID`, `OXUSERNAME`, `OXPASSWORD`, `OXPASSSALT`, `OXCUSTNR`, `OXUSTID`, `OXCOMPANY`, `OXFNAME`, `OXLNAME`, `OXSTREET`, `OXSTREETNR`, `OXADDINFO`, `OXCITY`, `OXCOUNTRYID`, `OXZIP`, `OXFON`, `OXFAX`, `OXSAL`, `OXBONI`, `OXCREATE`, `OXREGISTER`, `OXPRIVFON`, `OXMOBFON`, `OXBIRTHDATE`)
-VALUES ('testuser', 1, 'user', 1, 'some_test_user@oxid-esales.dev', 'c9dadd994241c9e5fa6469547009328a', '7573657275736572', 8, '', 'UserCompany šÄßüл', 'UserNamešÄßüл', 'UserSurnamešÄßüл', 'Musterstr.šÄßüл', '1', 'User additional info šÄßüл', 'Musterstadt šÄßüл', 'testcountry_de', '79098', '0800 111111', '0800 111112', 'Mr', 500, '2008-02-05 14:42:42', '2008-02-05 14:42:42', '0800 111113', '0800 111114', '1980-01-01');
+VALUES ('testuser', 1, 'user', 1, 'some_test_user@oxid-esales.dev', '$2y$10$b186f117054b700a89de9uXDzfahkizUucitfPov3C2cwF5eit2M2', 'b186f117054b700a89de929ce90c6aef', 8, '', 'UserCompany šÄßüл', 'UserNamešÄßüл', 'UserSurnamešÄßüл', 'Musterstr.šÄßüл', '1', 'User additional info šÄßüл', 'Musterstadt šÄßüл', 'testcountry_de', '79098', '0800 111111', '0800 111112', 'Mr', 500, '2008-02-05 14:42:42', '2008-02-05 14:42:42', '0800 111113', '0800 111114', '1980-01-01');
 
 REPLACE INTO `oxarticles` (`OXID`, `OXSHOPID`, `OXPARENTID`, `OXACTIVE`, `OXARTNUM`, `OXTITLE`, `OXSHORTDESC`, `OXPRICE`, `OXPRICEA`, `OXPRICEB`, `OXPRICEC`, `OXTPRICE`, `OXUNITNAME`, `OXUNITQUANTITY`, `OXVAT`, `OXWEIGHT`, `OXSTOCK`, `OXSTOCKFLAG`, `OXSTOCKTEXT`, `OXNOSTOCKTEXT`, `OXDELIVERY`, `OXINSERT`, `OXTIMESTAMP`, `OXLENGTH`, `OXWIDTH`, `OXHEIGHT`, `OXSEARCHKEYS`, `OXISSEARCH`, `OXVARNAME`, `OXVARSTOCK`, `OXVARCOUNT`, `OXVARSELECT`, `OXVARMINPRICE`, `OXVARMAXPRICE`, `OXVARNAME_1`, `OXVARSELECT_1`, `OXTITLE_1`, `OXSHORTDESC_1`, `OXSEARCHKEYS_1`, `OXBUNDLEID`, `OXSTOCKTEXT_1`, `OXNOSTOCKTEXT_1`, `OXSORT`, `OXVENDORID`, `OXMANUFACTURERID`, `OXMINDELTIME`, `OXMAXDELTIME`, `OXDELTIMEUNIT`)
 VALUES ('1000', 1, '', 1, '1000', '[DE 4] Test product 0 šÄßüл', 'Test product 0 short desc [DE]', 50, 35, 45, 55, 0, 'kg', 2, NULL, 2, 15, 1, 'In stock [DE]', 'Out of stock [DE]', '0000-00-00', '2008-02-04', '2008-02-04 17:07:48', 1, 2, 2, 'search1000', 1, '', 0, 0, '', 50, 0, '', '', 'Test product 0 [EN] šÄßüл', 'Test product 0 short desc [EN] šÄßüл', 'šÄßüл1000', '', 'In stock [EN] šÄßüл', 'Out of stock [EN] šÄßüл', 0, 'testdistributor', 'testmanufacturer', 1, 1, 'DAY');

tests/Codeception/Support/Data/fixtures_ee.sql

@@ -1,7 +1,7 @@
 SET @@session.sql_mode = '';
 
 REPLACE INTO `oxuser` (`OXID`, `OXACTIVE`, `OXRIGHTS`, `OXSHOPID`, `OXUSERNAME`, `OXPASSWORD`, `OXPASSSALT`, `OXCUSTNR`, `OXUSTID`, `OXCOMPANY`, `OXFNAME`, `OXLNAME`, `OXSTREET`, `OXSTREETNR`, `OXADDINFO`, `OXCITY`, `OXCOUNTRYID`, `OXZIP`, `OXFON`, `OXFAX`, `OXSAL`, `OXBONI`, `OXCREATE`, `OXREGISTER`, `OXPRIVFON`, `OXMOBFON`, `OXBIRTHDATE`)
-VALUES ('testuser', 1, 'user', 1, 'some_test_user@oxid-esales.dev', 'c9dadd994241c9e5fa6469547009328a', '7573657275736572', 8, '', 'UserCompany šÄßüл', 'UserNamešÄßüл', 'UserSurnamešÄßüл', 'Musterstr.šÄßüл', '1', 'User additional info šÄßüл', 'Musterstadt šÄßüл', 'testcountry_de', '79098', '0800 111111', '0800 111112', 'Mr', 500, '2008-02-05 14:42:42', '2008-02-05 14:42:42', '0800 111113', '0800 111114', '1980-01-01');
+VALUES ('testuser', 1, 'user', 1, 'some_test_user@oxid-esales.dev', '$2y$10$b186f117054b700a89de9uXDzfahkizUucitfPov3C2cwF5eit2M2', 'b186f117054b700a89de929ce90c6aef', 8, '', 'UserCompany šÄßüл', 'UserNamešÄßüл', 'UserSurnamešÄßüл', 'Musterstr.šÄßüл', '1', 'User additional info šÄßüл', 'Musterstadt šÄßüл', 'testcountry_de', '79098', '0800 111111', '0800 111112', 'Mr', 500, '2008-02-05 14:42:42', '2008-02-05 14:42:42', '0800 111113', '0800 111114', '1980-01-01');
 
 REPLACE INTO `oxarticles` (`OXID`, `OXMAPID`, `OXSHOPID`, `OXPARENTID`, `OXACTIVE`, `OXARTNUM`, `OXTITLE`, `OXSHORTDESC`, `OXPRICE`, `OXPRICEA`, `OXPRICEB`, `OXPRICEC`, `OXTPRICE`, `OXUNITNAME`, `OXUNITQUANTITY`, `OXVAT`, `OXWEIGHT`, `OXSTOCK`, `OXSTOCKFLAG`, `OXSTOCKTEXT`, `OXNOSTOCKTEXT`, `OXDELIVERY`, `OXINSERT`, `OXTIMESTAMP`, `OXLENGTH`, `OXWIDTH`, `OXHEIGHT`, `OXSEARCHKEYS`, `OXISSEARCH`, `OXVARNAME`, `OXVARSTOCK`, `OXVARCOUNT`, `OXVARSELECT`, `OXVARMINPRICE`, `OXVARMAXPRICE`, `OXVARNAME_1`, `OXVARSELECT_1`, `OXTITLE_1`, `OXSHORTDESC_1`, `OXSEARCHKEYS_1`, `OXBUNDLEID`, `OXSTOCKTEXT_1`, `OXNOSTOCKTEXT_1`, `OXSORT`, `OXVENDORID`, `OXMANUFACTURERID`, `OXMINDELTIME`, `OXMAXDELTIME`, `OXDELTIMEUNIT`)
 VALUES ('1000', 1, 1, '', 1, '1000', '[DE 4] Test product 0 šÄßüл', 'Test product 0 short desc [DE]', 50, 35, 45, 55, 0, 'kg', 2, NULL, 2, 15, 1, 'In stock [DE]', 'Out of stock [DE]', '0000-00-00', '2008-02-04', '2008-02-04 17:07:48', 1, 2, 2, 'search1000', 1, '', 0, 0, '', 50, 0, '', '', 'Test product 0 [EN] šÄßüл', 'Test product 0 short desc [EN] šÄßüл', 'šÄßüл1000', '', 'In stock [EN] šÄßüл', 'Out of stock [EN] šÄßüл', 0, 'testdistributor', 'testmanufacturer', 1, 1, 'DAY');

tests/Integration/Shared/Model/UserTest.php

@@ -99,4 +99,21 @@ public function testLoginWithEmptyCaptcha()
         $subject = oxNew(User::class);
         $subject->login('', '');
     }
+
+    public function testLoginWithOtpEnabledAndInvalidPasswordThrows(): void
+    {
+        $this->requestMock
+            ->method('getRequestParameter')
+            ->willReturnCallback(function ($param) {
+                if ($param === 'captcha') {
+                    return 'valid_captcha';
+                }
+                return null;
+            });
+
+        $this->expectException(UserException::class);
+
+        $subject = oxNew(User::class);
+        $subject->login(uniqid(), uniqid());
+    }
 }