Home Explore Help
Sign In
githab
/
cakephp
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: 4.x
Branches Tags
cakephp
/
tests
/
TestCase
/
Auth
/
FallbackPasswordHasherTest.php

FallbackPasswordHasherTest.php 3.3 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. <?php
    2. 

  2. declare(strict_types=1);
    3. 

  3. 

  4. /**
    5. 

  5.  * CakePHP(tm) : Rapid Development Framework (https://cakephp.org)
    6. 

  6.  * Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
    7. 

  7.  *
    8. 

  8.  * Licensed under The MIT License
    9. 

  9.  * For full copyright and license information, please see the LICENSE.txt
    10. 

  10.  * Redistributions of files must retain the above copyright notice.
    11. 

  11.  *
    12. 

  12.  * @copyright     Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
    13. 

  13.  * @link          https://cakephp.org CakePHP(tm) Project
    14. 

  14.  * @since         3.0.0
    15. 

  15.  * @license       https://opensource.org/licenses/mit-license.php MIT License
    16. 

  16.  */
    17. 

  17. namespace Cake\Test\TestCase\Auth;
    18. 

  18. 

  19. use Cake\Auth\DefaultPasswordHasher;
    20. 

  20. use Cake\Auth\FallbackPasswordHasher;
    21. 

  21. use Cake\Auth\WeakPasswordHasher;
    22. 

  22. use Cake\TestSuite\TestCase;
    23. 

  23. use Cake\Utility\Security;
    24. 

  24. 

  25. /**
    26. 

  26.  * Test case for FallbackPasswordHasher
    27. 

  27.  */
    28. 

  28. class FallbackPasswordHasherTest extends TestCase
    29. 

  29. {
    30. 

  30.     public function setUp(): void
    31. 

  31.     {
    32. 

  32.         parent::setUp();
    33. 

  33.         Security::setSalt('YJfIxfs2guVoUubWDYhG93b0qyJfIxfs2guwvniR2G0FgaC9mia1390as13dla8kjasdlwerpoiASf');
    34. 

  34.     }
    35. 

  35. 

  36.     /**
    37. 

  37.      * Tests that only the first hasher is user for hashing a password
    38. 

  38.      */
    39. 

  39.     public function testHash(): void
    40. 

  40.     {
    41. 

  41.         $hasher = new FallbackPasswordHasher(['hashers' => ['Weak', 'Default']]);
    42. 

  42.         $weak = new WeakPasswordHasher();
    43. 

  43.         $this->assertSame($weak->hash('foo'), $hasher->hash('foo'));
    44. 

  44. 

  45.         $simple = new DefaultPasswordHasher();
    46. 

  46.         $hasher = new FallbackPasswordHasher(['hashers' => ['Weak', 'Default']]);
    47. 

  47.         $this->assertSame($weak->hash('foo'), $hasher->hash('foo'));
    48. 

  48.     }
    49. 

  49. 

  50.     /**
    51. 

  51.      * Tests that the check method will check with configured hashers until a match
    52. 

  52.      * is found
    53. 

  53.      */
    54. 

  54.     public function testCheck(): void
    55. 

  55.     {
    56. 

  56.         $hasher = new FallbackPasswordHasher(['hashers' => ['Weak', 'Default']]);
    57. 

  57.         $weak = new WeakPasswordHasher();
    58. 

  58.         $simple = new DefaultPasswordHasher();
    59. 

  59. 

  60.         $hash = $simple->hash('foo');
    61. 

  61.         $otherHash = $weak->hash('foo');
    62. 

  62.         $this->assertTrue($hasher->check('foo', $hash));
    63. 

  63.         $this->assertTrue($hasher->check('foo', $otherHash));
    64. 

  64.     }
    65. 

  65. 

  66.     /**
    67. 

  67.      * Tests that the check method will work with configured hashers including different
    68. 

  68.      * configs per hasher.
    69. 

  69.      */
    70. 

  70.     public function testCheckWithConfigs(): void
    71. 

  71.     {
    72. 

  72.         $hasher = new FallbackPasswordHasher(['hashers' => ['Default', 'Weak' => ['hashType' => 'md5']]]);
    73. 

  73.         $legacy = new WeakPasswordHasher(['hashType' => 'md5']);
    74. 

  74.         $simple = new DefaultPasswordHasher();
    75. 

  75. 

  76.         $hash = $simple->hash('foo');
    77. 

  77.         $legacyHash = $legacy->hash('foo');
    78. 

  78.         $this->assertNotSame($hash, $legacyHash);
    79. 

  79.         $this->assertTrue($hasher->check('foo', $hash));
    80. 

  80.         $this->assertTrue($hasher->check('foo', $legacyHash));
    81. 

  81.     }
    82. 

  82. 

  83.     /**
    84. 

  84.      * Tests that the password only needs to be re-built according to the first hasher
    85. 

  85.      */
    86. 

  86.     public function testNeedsRehash(): void
    87. 

  87.     {
    88. 

  88.         $hasher = new FallbackPasswordHasher(['hashers' => ['Default', 'Weak']]);
    89. 

  89.         $weak = new WeakPasswordHasher();
    90. 

  90.         $otherHash = $weak->hash('foo');
    91. 

  91.         $this->assertTrue($hasher->needsRehash($otherHash));
    92. 

  92. 

  93.         $simple = new DefaultPasswordHasher();
    94. 

  94.         $hash = $simple->hash('foo');
    95. 

  95.         $this->assertFalse($hasher->needsRehash($hash));
    96. 

  96.     }
    97. 

  97. }
    98.