lemonldap-ng/lemonldap-ng-portal/t/76-2F-Ext-with-BruteForce.t

use Test::More;
use strict;
use IO::String;
use Data::Dumper;

require 't/test-lib.pm';

use_ok('Lemonldap::NG::Common::FormEncode');
count(1);

my $client = LLNG::Manager::Test->new( {
        ini => {
            logLevel                  => 'error',
            ext2fActivation           => 1,
            ext2fCodeActivation       => 0,
            ext2FSendCommand          => 't/sendOTP.pl -uid $uid',
            ext2FValidateCommand      => 't/vrfyOTP.pl -uid $uid -code $code',
            authentication            => 'Demo',
            userDB                    => 'Same',
            loginHistoryEnabled       => 1,
            bruteForceProtection      => 1,
            bruteForceProtectionTempo => 5,
        }
    }
);

my $res;

## First failed connection
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=ohwd'),
        length => 23
    ),
    '1st Bad Auth query'
);
count(1);
expectReject($res);

## Second failed connection
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=ohwd'),
        length => 23
    ),
    '2nd Bad Auth query'
);
count(1);
expectReject($res);

## Third failed connection
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=ohwd'),
        length => 23
    ),
    '3rd Bad Auth query'
);
count(1);
expectReject($res);

## Forth failed connection -> rejected
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=ohwd'),
        length => 23,
        accept => 'text/html',
    ),
    '4th Bad Auth query -> Rejected'
);
ok( $res->[2]->[0] =~ /<span trmsg="86">/, 'Protection enabled' )
  or print STDERR Dumper( $res->[2]->[0] );
count(2);

# Count down
Time::Fake->offset("+2s");

# Try to authenticate
# -------------------
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=dwho&checkLogins=1'),
        length => 37,
        accept => 'text/html',
    ),
    'Auth query'
);
ok( $res->[2]->[0] =~ /<span trmsg="86"><\/span>/,
    'Rejected -> Protection enabled' )
  or print STDERR Dumper( $res->[2]->[0] );
ok( $res->[2]->[0] =~ m%(\d) <span trspan="seconds">seconds</span>%,
    "LockTime = $1" );
ok( $1 < 5 && $1 >= 2, 'LockTime in range' )
  or print STDERR Dumper( $res->[2]->[0] );
count(4);

# Cool down
Time::Fake->offset("+6s");

# Try to authenticate again
# -------------------------
ok(
    $res = $client->_post(
        '/',
        IO::String->new('user=dwho&password=dwho&checkLogins=1'),
        length => 37,
        accept => 'text/html',
    ),
    'Auth query'
);
count(1);

my ( $host, $url, $query ) =
  expectForm( $res, undef, '/ext2fcheck?skin=bootstrap', 'token', 'code',
    'checkLogins' );

ok(
    $res->[2]->[0] =~
qr%<input name="code" value="" type="text" class="form-control" id="extcode" trplaceholder="code" autocomplete="one-time-code" />%,
    'Found EXTCODE input'
) or print STDERR Dumper( $res->[2]->[0] );

$query =~ s/code=/code=123456/;
ok(
    $res = $client->_post(
        '/ext2fcheck',
        IO::String->new($query),
        length => length($query),
        accept => 'text/html',
    ),
    'Post code'
);
count(2);
my $id = expectCookie($res);

ok( $res->[2]->[0] =~ /trspan="lastLogins"/, 'History found' )
  or print STDERR Dumper( $res->[2]->[0] );
my @c = ( $res->[2]->[0] =~ /<td>127.0.0.1/gs );
ok( @c == 4, 'Four entries found' )
  or print STDERR Dumper( $res->[2]->[0] );
count(2);

$client->logout($id);
clean_sessions();

done_testing( count() );
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`use Test::More;`
			`use strict;`
			`use IO::String;`
			`use Data::Dumper;`

			`require 't/test-lib.pm';`

			`use_ok('Lemonldap::NG::Common::FormEncode');`
			`count(1);`

tidy with new conf 2019-02-07 09:27:56 +01:00			`my $client = LLNG::Manager::Test->new( {`
make tidy 2018-10-12 10:04:03 +02:00			`ini => {`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`logLevel => 'error',`
			`ext2fActivation => 1,`
Improve unit test (#1632) 2019-02-14 22:09:59 +01:00			`ext2fCodeActivation => 0,`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`ext2FSendCommand => 't/sendOTP.pl -uid $uid',`
			`ext2FValidateCommand => 't/vrfyOTP.pl -uid $uid -code $code',`
			`authentication => 'Demo',`
			`userDB => 'Same',`
			`loginHistoryEnabled => 1,`
			`bruteForceProtection => 1,`
			`bruteForceProtectionTempo => 5,`
			`}`
			`}`
			`);`

			`my $res;`

			`## First failed connection`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/',`
			`IO::String->new('user=dwho&password=ohwd'),`
			`length => 23`
			`),`
Fix unit tests (#1506) 2018-12-13 00:12:49 +01:00			`'1st Bad Auth query'`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`);`
			`count(1);`
			`expectReject($res);`

			`## Second failed connection`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/',`
			`IO::String->new('user=dwho&password=ohwd'),`
			`length => 23`
			`),`
Fix unit tests (#1506) 2018-12-13 00:12:49 +01:00			`'2nd Bad Auth query'`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`);`
			`count(1);`
			`expectReject($res);`

Fix unit tests (#1506) 2018-12-13 00:12:49 +01:00			`## Third failed connection`
			`ok(`
			`$res = $client->_post(`
			`'/',`
			`IO::String->new('user=dwho&password=ohwd'),`
			`length => 23`
			`),`
			`'3rd Bad Auth query'`
			`);`
			`count(1);`
			`expectReject($res);`

			`## Forth failed connection -> rejected`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/',`
			`IO::String->new('user=dwho&password=ohwd'),`
			`length => 23,`
			`accept => 'text/html',`
			`),`
Fix unit tests (#1506) 2018-12-13 00:12:49 +01:00			`'4th Bad Auth query -> Rejected'`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`);`
Update unit tests (#2243) 2020-12-17 22:40:28 +01:00			`ok( $res->[2]->[0] =~ /<span trmsg="86">/, 'Protection enabled' )`
			`or print STDERR Dumper( $res->[2]->[0] );`
Don t prompt second factor after a failed log in attempt (#2088) 2020-02-26 22:31:22 +01:00			`count(2);`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
Don t prompt second factor after a failed log in attempt (#2088) 2020-02-26 22:31:22 +01:00			`# Count down`
Use Time::Fake to avoid sleeping during tests 2019-11-04 14:54:41 +01:00			`Time::Fake->offset("+2s");`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
			`# Try to authenticate`
			`# -------------------`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/',`
			`IO::String->new('user=dwho&password=dwho&checkLogins=1'),`
			`length => 37,`
			`accept => 'text/html',`
			`),`
			`'Auth query'`
			`);`
Update unit tests (#2243) 2020-12-17 22:40:28 +01:00			`ok( $res->[2]->[0] =~ /<span trmsg="86"><\/span>/,`
			`'Rejected -> Protection enabled' )`
			`or print STDERR Dumper( $res->[2]->[0] );`
			`ok( $res->[2]->[0] =~ m%(\d) <span trspan="seconds">seconds</span>%,`
			`"LockTime = $1" );`
			`ok( $1 < 5 && $1 >= 2, 'LockTime in range' )`
			`or print STDERR Dumper( $res->[2]->[0] );`
			`count(4);`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
Use Time::Fake to avoid sleeping during tests 2019-11-04 14:54:41 +01:00			`# Cool down`
			`Time::Fake->offset("+6s");`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
			`# Try to authenticate again`
			`# -------------------------`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/',`
			`IO::String->new('user=dwho&password=dwho&checkLogins=1'),`
			`length => 37,`
			`accept => 'text/html',`
			`),`
			`'Auth query'`
			`);`
			`count(1);`

Update unit tests (#2243) 2020-12-17 22:40:28 +01:00			`my ( $host, $url, $query ) =`
Tidy 2020-02-20 23:34:02 +01:00			`expectForm( $res, undef, '/ext2fcheck?skin=bootstrap', 'token', 'code',`
			`'checkLogins' );`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res->[2]->[0] =~`
Set on-time-code autocomplete (#2585) 2021-08-20 17:20:58 +02:00			`qr%<input name="code" value="" type="text" class="form-control" id="extcode" trplaceholder="code" autocomplete="one-time-code" />%,`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'Found EXTCODE input'`
			`) or print STDERR Dumper( $res->[2]->[0] );`

			`$query =~ s/code=/code=123456/;`
make tidy 2018-10-12 10:04:03 +02:00			`ok(`
			`$res = $client->_post(`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`'/ext2fcheck',`
			`IO::String->new($query),`
			`length => length($query),`
			`accept => 'text/html',`
			`),`
			`'Post code'`
			`);`
Don t prompt second factor after a failed log in attempt (#2088) 2020-02-26 22:31:22 +01:00			`count(2);`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`my $id = expectCookie($res);`

			`ok( $res->[2]->[0] =~ /trspan="lastLogins"/, 'History found' )`
make tidy 2018-10-12 10:04:03 +02:00			`or print STDERR Dumper( $res->[2]->[0] );`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00			`my @c = ( $res->[2]->[0] =~ /<td>127.0.0.1/gs );`
Update unit tests (#2243) 2020-12-17 22:40:28 +01:00			`ok( @c == 4, 'Four entries found' )`
make tidy 2018-10-12 10:04:03 +02:00			`or print STDERR Dumper( $res->[2]->[0] );`
Don t prompt second factor after a failed log in attempt (#2088) 2020-02-26 22:31:22 +01:00			`count(2);`
Append 2F unit tests & update manifest 2018-10-06 23:10:48 +02:00
			`$client->logout($id);`
			`clean_sessions();`

			`done_testing( count() );`