lemonldap-ng/lemonldap-ng-portal/t/70-2F-TOTP-with-TTL.t

use Test::More;
use strict;
use IO::String;

require 't/test-lib.pm';
my $maintests = 22;

SKIP: {
    eval { require Convert::Base32 };
    if ($@) {
        skip 'Convert::Base32 is missing', $maintests;
    }
    require Lemonldap::NG::Common::TOTP;

    my $client = LLNG::Manager::Test->new( {
            ini => {
                logLevel               => 'error',
                totp2fSelfRegistration => 1,
                totp2fActivation       => 1,
                totp2fTTL              => 120,
                sfManagerRule          => 0,
                totp2fIssuer           => 'LLNG_Demo',
                portalMainLogo         => 'common/logos/logo_llng_old.png',
            }
        }
    );
    my $res;

    # Try to authenticate
    # -------------------
    ok(
        $res = $client->_post(
            '/',
            IO::String->new('user=dwho&password=dwho'),
            length => 23
        ),
        'Auth query'
    );
    my $id = expectCookie($res);

    ok(
        $res = $client->_get(
            '/',
            cookie => "lemonldap=$id",
            accept => 'text/html'
        ),
        'Get Menu'
    );
    ok( $res->[2]->[0] !~ m%<span trspan="sfaManager">sfaManager</span>%,
        'sfaManager link not found' )
      or print STDERR Dumper( $res->[2]->[0] );

    # TOTP form
    ok(
        $res = $client->_get(
            '/2fregisters',
            cookie => "lemonldap=$id",
            accept => 'text/html',
        ),
        'Form registration'
    );
    expectRedirection( $res, qr#/2fregisters/totp$# );
    ok(
        $res = $client->_get(
            '/2fregisters/totp',
            cookie => "lemonldap=$id",
            accept => 'text/html',
        ),
        'Form registration'
    );
    ok( $res->[2]->[0] =~ /totpregistration\.(?:min\.)?js/, 'Found TOTP js' );
    ok(
        $res->[2]->[0] =~ qr%<img src="/static/common/logos/logo_llng_old.png"%,
        'Found custom Main Logo'
    ) or print STDERR Dumper( $res->[2]->[0] );

    # JS query
    ok(
        $res = $client->_post(
            '/2fregisters/totp/getkey', IO::String->new(''),
            cookie => "lemonldap=$id",
            length => 0,
        ),
        'Get new key'
    );
    eval { $res = JSON::from_json( $res->[2]->[0] ) };
    ok( not($@), 'Content is JSON' )
      or explain( $res->[2]->[0], 'JSON content' );
    my ( $key, $token );
    ok( $key   = $res->{secret}, 'Found secret' ) or print STDERR Dumper($res);
    ok( $token = $res->{token},  'Found token' )  or print STDERR Dumper($res);
    ok( $res->{portal} eq 'LLNG_Demo', 'Found issuer' )
      or print STDERR Dumper($res);
    ok( $res->{user} eq 'dwho', 'Found user' )
      or print STDERR Dumper($res);
    $key = Convert::Base32::decode_base32($key);

    # Post code
    my $code;
    ok( $code = Lemonldap::NG::Common::TOTP::_code( undef, $key, 0, 30, 6 ),
        'Code' );
    ok( $code =~ /^\d{6}$/, 'Code contains 6 digits' );
    my $s = "code=$code&token=$token&TOTPName=myTOTP";
    ok(
        $res = $client->_post(
            '/2fregisters/totp/verify',
            IO::String->new($s),
            length => length($s),
            cookie => "lemonldap=$id",
        ),
        'Post code'
    );
    eval { $res = JSON::from_json( $res->[2]->[0] ) };
    ok( not($@), 'Content is JSON' )
      or explain( $res->[2]->[0], 'JSON content' );
    ok( $res->{result} == 1, 'TOTP is registered' );

    # Try to sign-in
    $client->logout($id);
    ok(
        $res = $client->_post(
            '/',
            IO::String->new('user=dwho&password=dwho'),
            length => 23,
            accept => 'text/html',
        ),
        'Auth query'
    );
    my ( $host, $url, $query ) =
      expectForm( $res, undef, '/totp2fcheck', 'token' );
    ok( $code = Lemonldap::NG::Common::TOTP::_code( undef, $key, 0, 30, 6 ),
        'Code' );
    $query =~ s/code=/code=$code/;
    ok(
        $res = $client->_post(
            '/totp2fcheck', IO::String->new($query),
            length => length($query),
        ),
        'Post code'
    );
    $id = expectCookie($res);
    $client->logout($id);

    # Skipping time until TOTP expiration
    Time::Fake->offset("+5m");

    # Try to sign-in
    ok(
        $res = $client->_post(
            '/',
            IO::String->new('user=dwho&password=dwho'),
            length => 23,
            accept => 'text/html',
        ),
        'Auth query'
    );
    $id = expectCookie($res);
    expectRedirection( $res, 'http://auth.example.com/' );
    $client->logout($id);
}
count($maintests);

clean_sessions();

done_testing( count() );
Add test (#1359) 2018-02-25 09:49:54 +01:00			`use Test::More;`
			`use strict;`
			`use IO::String;`

			`require 't/test-lib.pm';`
Improve unit tests (#2185) 2020-04-30 22:26:41 +02:00			`my $maintests = 22;`
Add test (#1359) 2018-02-25 09:49:54 +01:00
			`SKIP: {`
			`eval { require Convert::Base32 };`
			`if ($@) {`
			`skip 'Convert::Base32 is missing', $maintests;`
			`}`
			`require Lemonldap::NG::Common::TOTP;`

tidy with new conf 2019-02-07 09:27:56 +01:00			`my $client = LLNG::Manager::Test->new( {`
make tidy 2018-11-26 14:40:21 +01:00			`ini => {`
2F engine works with 1 2F enabled (#1148) 2018-03-08 20:36:32 +01:00			`logLevel => 'error',`
			`totp2fSelfRegistration => 1,`
			`totp2fActivation => 1,`
Use Time::Fake to avoid sleeping during tests 2019-11-04 14:54:41 +01:00			`totp2fTTL => 120,`
Improve unit tests (#2185) 2020-04-30 22:26:41 +02:00			`sfManagerRule => 0,`
Improve unit test (#1359) 2020-04-03 11:06:37 +02:00			`totp2fIssuer => 'LLNG_Demo',`
Append old LLNG logo & Fix unit tests (#1515) 2018-10-21 22:12:56 +02:00			`portalMainLogo => 'common/logos/logo_llng_old.png',`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`}`
			`}`
			`);`
			`my $res;`

			`# Try to authenticate`
			`# -------------------`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_post(`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`'/',`
			`IO::String->new('user=dwho&password=dwho'),`
			`length => 23`
			`),`
			`'Auth query'`
			`);`
			`my $id = expectCookie($res);`

Improve unit tests (#2185) 2020-04-30 22:26:41 +02:00			`ok(`
			`$res = $client->_get(`
			`'/',`
			`cookie => "lemonldap=$id",`
			`accept => 'text/html'`
			`),`
			`'Get Menu'`
			`);`
			`ok( $res->[2]->[0] !~ m%<span trspan="sfaManager">sfaManager</span>%,`
Better fix and improve unit test (#2337) 2020-10-03 15:05:13 +02:00			`'sfaManager link not found' )`
Improve unit tests (#2185) 2020-04-30 22:26:41 +02:00			`or print STDERR Dumper( $res->[2]->[0] );`

Add test (#1359) 2018-02-25 09:49:54 +01:00			`# TOTP form`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_get(`
Update TOTP test (#1359) 2018-03-15 07:14:47 +01:00			`'/2fregisters',`
			`cookie => "lemonldap=$id",`
			`accept => 'text/html',`
			`),`
			`'Form registration'`
			`);`
			`expectRedirection( $res, qr#/2fregisters/totp$# );`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_get(`
Update TOTP test (#1359) 2018-03-15 07:14:47 +01:00			`'/2fregisters/totp',`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`cookie => "lemonldap=$id",`
			`accept => 'text/html',`
			`),`
			`'Form registration'`
			`);`
			`ok( $res->[2]->[0] =~ /totpregistration\.(?:min\.)?js/, 'Found TOTP js' );`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res->[2]->[0] =~ qr%<img src="/static/common/logos/logo_llng_old.png"%,`
			`'Found custom Main Logo'`
			`) or print STDERR Dumper( $res->[2]->[0] );`
Add test (#1359) 2018-02-25 09:49:54 +01:00
			`# JS query`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_post(`
Update TOTP test (#1359) 2018-03-15 07:14:47 +01:00			`'/2fregisters/totp/getkey', IO::String->new(''),`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`cookie => "lemonldap=$id",`
			`length => 0,`
			`),`
			`'Get new key'`
			`);`
			`eval { $res = JSON::from_json( $res->[2]->[0] ) };`
			`ok( not($@), 'Content is JSON' )`
make tidy 2018-11-26 14:40:21 +01:00			`or explain( $res->[2]->[0], 'JSON content' );`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`my ( $key, $token );`
Improve unit test (#1359) 2020-04-03 11:06:37 +02:00			`ok( $key = $res->{secret}, 'Found secret' ) or print STDERR Dumper($res);`
			`ok( $token = $res->{token}, 'Found token' ) or print STDERR Dumper($res);`
			`ok( $res->{portal} eq 'LLNG_Demo', 'Found issuer' )`
			`or print STDERR Dumper($res);`
			`ok( $res->{user} eq 'dwho', 'Found user' )`
			`or print STDERR Dumper($res);`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`$key = Convert::Base32::decode_base32($key);`

			`# Post code`
			`my $code;`
			`ok( $code = Lemonldap::NG::Common::TOTP::_code( undef, $key, 0, 30, 6 ),`
			`'Code' );`
			`ok( $code =~ /^\d{6}$/, 'Code contains 6 digits' );`
Improve unit tests (#1782) 2019-06-07 19:50:19 +02:00			`my $s = "code=$code&token=$token&TOTPName=myTOTP";`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_post(`
Update TOTP test (#1359) 2018-03-15 07:14:47 +01:00			`'/2fregisters/totp/verify',`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`IO::String->new($s),`
			`length => length($s),`
			`cookie => "lemonldap=$id",`
			`),`
			`'Post code'`
			`);`
			`eval { $res = JSON::from_json( $res->[2]->[0] ) };`
			`ok( not($@), 'Content is JSON' )`
make tidy 2018-11-26 14:40:21 +01:00			`or explain( $res->[2]->[0], 'JSON content' );`
Better fix and improve unit test (#2337) 2020-10-03 15:05:13 +02:00			`ok( $res->{result} == 1, 'TOTP is registered' );`
Add test (#1359) 2018-02-25 09:49:54 +01:00
Fix typo 2018-06-13 21:51:01 +02:00			`# Try to sign-in`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`$client->logout($id);`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_post(`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`'/',`
			`IO::String->new('user=dwho&password=dwho'),`
			`length => 23,`
			`accept => 'text/html',`
			`),`
			`'Auth query'`
			`);`
make tidy 2018-11-26 14:40:21 +01:00			`my ( $host, $url, $query ) =`
			`expectForm( $res, undef, '/totp2fcheck', 'token' );`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`ok( $code = Lemonldap::NG::Common::TOTP::_code( undef, $key, 0, 30, 6 ),`
			`'Code' );`
			`$query =~ s/code=/code=$code/;`
make tidy 2018-11-26 14:40:21 +01:00			`ok(`
			`$res = $client->_post(`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`'/totp2fcheck', IO::String->new($query),`
			`length => length($query),`
			`),`
			`'Post code'`
			`);`
			`$id = expectCookie($res);`
			`$client->logout($id);`
Improve unit tests (#1782) 2019-06-07 19:50:19 +02:00
Use Time::Fake to avoid sleeping during tests 2019-11-04 14:54:41 +01:00			`# Skipping time until TOTP expiration`
			`Time::Fake->offset("+5m");`
Improve unit tests (#1782) 2019-06-07 19:50:19 +02:00
			`# Try to sign-in`
			`ok(`
			`$res = $client->_post(`
			`'/',`
			`IO::String->new('user=dwho&password=dwho'),`
			`length => 23,`
			`accept => 'text/html',`
			`),`
			`'Auth query'`
			`);`
			`$id = expectCookie($res);`
			`expectRedirection( $res, 'http://auth.example.com/' );`
Improve unit tests (#1796) 2019-06-14 23:03:38 +02:00			`$client->logout($id);`
Add test (#1359) 2018-02-25 09:49:54 +01:00			`}`
			`count($maintests);`

			`clean_sessions();`

			`done_testing( count() );`