dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Login token is OK (#1140)

Browse Source
This commit is contained in:
Xavier Guimard 2017-01-25 21:22:43 +00:00
parent 2e77ef4cc4
commit f59ec29f48
1 changed files with 46 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
lemonldap-ng-portal/t/42-Token.t
View File

@ -7,7 +7,14 @@ require 't/test-lib.pm';
my $res;
my $client = LLNG::Manager::Test->new(
{ ini => { logLevel => 'debug', useSafeJail => 1, requireToken => 1, } } );
{
ini => {
logLevel => 'error',
useSafeJail => 1,
requireToken => 1,
}
}
);
# Test normal first access
# ------------------------
@ -19,6 +26,44 @@ ok( $res = $client->_get( '/', accept => 'text/html' ), 'Unauth request' );
count(1);
my ( $host, $url, $query ) = expectForm( $res, '#', undef, 'token' );
$query =~ s/.*\b(token=[^&]+).*/$1/;
# Try to auth without token
ok(
$res = $client->_post(
'/',
IO::String->new('user=dwho&password=dwho'),
length => 23
),
'Try to auth without token'
);
count(1);
expectReject($res);
# Try to auth with token
$query .= '&user=dwho&password=dwho';
ok(
$res =
$client->_post( '/', IO::String->new($query), length => length($query) ),
'Try to auth with token'
);
count(1);
expectOK($res);
my $id = expectCookie($res);
# Verify auth
ok( $res = $client->_get( '/', cookie => "lemonldap=$id" ), 'Verify auth' );
count(1);
expectOK($res);
# Try to reuse the same token
ok(
$res =
$client->_post( '/', IO::String->new($query), length => length($query) ),
'Try to reuse the same token'
);
count(1);
expectReject($res);
clean_sessions();