TYPO3_8-7/_abstract_form_protection_test_8php_source.html

 <?php
 namespace TYPO3\CMS\Core\Tests\Unit\FormProtection;

 /*
  * This file is part of the TYPO3 CMS project.
  *
  * It is free software; you can redistribute it and/or modify it under
  * the terms of the GNU General Public License, either version 2
  * of the License, or any later version.
  *
  * For the full copyright and license information, please read the
  * LICENSE.txt file that was distributed with this source code.
  *
  * The TYPO3 project - inspiring people to share!
  */

 class AbstractFormProtectionTest extends \TYPO3\TestingFramework\Core\Unit\UnitTestCase
 {
     protected $subject;

     protected function setUp()
     {
         $this->subject = new \TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting();
     }

     // Tests concerning the basic functions

     public function generateTokenRetrievesTokenOnce()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['retrieveSessionToken'])
             ->getMock();
         $subject->expects($this->once())->method('retrieveSessionToken')->will($this->returnValue('token'));
         $subject->generateToken('foo');
         $subject->generateToken('foo');
     }

     public function validateTokenRetrievesTokenOnce()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['retrieveSessionToken'])
             ->getMock();
         $subject->expects($this->once())->method('retrieveSessionToken')->will($this->returnValue('token'));
         $subject->validateToken('foo', 'bar');
         $subject->validateToken('foo', 'bar');
     }

     public function cleanMakesTokenInvalid()
     {
         $formName = 'foo';
         $tokenId = $this->subject->generateToken($formName);
         $this->subject->clean();
         $this->assertFalse($this->subject->validateToken($tokenId, $formName));
     }

     public function cleanPersistsToken()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['persistSessionToken'])
             ->getMock();
         $subject->expects($this->once())->method('persistSessionToken');
         $subject->clean();
     }

     // Tests concerning generateToken

     public function generateTokenFormForEmptyFormNameThrowsException()
     {
         $this->expectException(\InvalidArgumentException::class);
         $this->expectExceptionCode(1294586643);
         $this->subject->generateToken('', 'edit', 'bar');
     }

     public function generateTokenFormForEmptyActionNotThrowsException()
     {
         $this->subject->generateToken('foo', '', '42');
     }

     public function generateTokenFormForEmptyFormInstanceNameNotThrowsException()
     {
         $this->subject->generateToken('foo', 'edit', '');
     }

     public function generateTokenFormForOmittedActionAndFormInstanceNameNotThrowsException()
     {
         $this->subject->generateToken('foo');
     }

     public function generateTokenReturns32CharacterHexToken()
     {
         $this->assertRegExp('/^[0-9a-f]{40}$/', $this->subject->generateToken('foo'));
     }

     public function generateTokenCalledTwoTimesWithSameParametersReturnsSameTokens()
     {
         $this->assertEquals($this->subject->generateToken('foo', 'edit', 'bar'), $this->subject->generateToken('foo', 'edit', 'bar'));
     }

     // Tests concerning validateToken

     public function validateTokenWithFourEmptyParametersNotThrowsException()
     {
         $this->subject->validateToken('', '', '', '');
     }

     public function validateTokenWithTwoEmptyAndTwoMissingParametersNotThrowsException()
     {
         $this->subject->validateToken('', '');
     }

     public function validateTokenWithDataFromGenerateTokenWithFormInstanceNameReturnsTrue()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $this->assertTrue($this->subject->validateToken($this->subject->generateToken($formName, $action, $formInstanceName), $formName, $action, $formInstanceName));
     }

     public function validateTokenWithDataFromGenerateTokenWithMissingActionAndFormInstanceNameReturnsTrue()
     {
         $formName = 'foo';
         $this->assertTrue($this->subject->validateToken($this->subject->generateToken($formName), $formName));
     }

     public function validateTokenWithValidDataCalledTwoTimesReturnsTrueOnSecondCall()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $tokenId = $this->subject->generateToken($formName, $action, $formInstanceName);
         $this->subject->validateToken($tokenId, $formName, $action, $formInstanceName);
         $this->assertTrue($this->subject->validateToken($tokenId, $formName, $action, $formInstanceName));
     }

     public function validateTokenWithMismatchingTokenIdReturnsFalse()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $this->subject->generateToken($formName, $action, $formInstanceName);
         $this->assertFalse($this->subject->validateToken('Hello world!', $formName, $action, $formInstanceName));
     }

     public function validateTokenWithMismatchingFormNameReturnsFalse()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $tokenId = $this->subject->generateToken($formName, $action, $formInstanceName);
         $this->assertFalse($this->subject->validateToken($tokenId, 'espresso', $action, $formInstanceName));
     }

     public function validateTokenWithMismatchingActionReturnsFalse()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $tokenId = $this->subject->generateToken($formName, $action, $formInstanceName);
         $this->assertFalse($this->subject->validateToken($tokenId, $formName, 'delete', $formInstanceName));
     }

     public function validateTokenWithMismatchingFormInstanceNameReturnsFalse()
     {
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $tokenId = $this->subject->generateToken($formName, $action, $formInstanceName);
         $this->assertFalse($this->subject->validateToken($tokenId, $formName, $action, 'beer'));
     }

     public function validateTokenForValidTokenNotCallsCreateValidationErrorMessage()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['createValidationErrorMessage'])
             ->getMock();
         $subject->expects($this->never())->method('createValidationErrorMessage');
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $token = $subject->generateToken($formName, $action, $formInstanceName);
         $subject->validateToken($token, $formName, $action, $formInstanceName);
         $subject->__destruct();
     }

     public function validateTokenForInvalidTokenCallsCreateValidationErrorMessage()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['createValidationErrorMessage'])
             ->getMock();
         $subject->expects($this->once())->method('createValidationErrorMessage');
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $subject->generateToken($formName, $action, $formInstanceName);
         $subject->validateToken('an invalid token ...', $formName, $action, $formInstanceName);
         $subject->__destruct();
     }

     public function validateTokenForInvalidFormNameCallsCreateValidationErrorMessage()
     {
         $subject = $this->getMockBuilder(\TYPO3\CMS\Core\Tests\Unit\FormProtection\Fixtures\FormProtectionTesting::class)
             ->setMethods(['createValidationErrorMessage'])
             ->getMock();
         $subject->expects($this->once())->method('createValidationErrorMessage');
         $formName = 'foo';
         $action = 'edit';
         $formInstanceName = 'bar';
         $token = $subject->generateToken($formName, $action, $formInstanceName);
         $subject->validateToken($token, 'another form name', $action, $formInstanceName);
         $subject->__destruct();
     }
 }
TYPO3

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithValidDataCalledTwoTimesReturnsTrueOnSecondCall
validateTokenWithValidDataCalledTwoTimesReturnsTrueOnSecondCall()
Definition: AbstractFormProtectionTest.php:179

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenReturns32CharacterHexToken
generateTokenReturns32CharacterHexToken()
Definition: AbstractFormProtectionTest.php:124

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\cleanPersistsToken
cleanPersistsToken()
Definition: AbstractFormProtectionTest.php:75

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\cleanMakesTokenInvalid
cleanMakesTokenInvalid()
Definition: AbstractFormProtectionTest.php:64

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenFormForOmittedActionAndFormInstanceNameNotThrowsException
generateTokenFormForOmittedActionAndFormInstanceNameNotThrowsException()
Definition: AbstractFormProtectionTest.php:116

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenFormForEmptyFormInstanceNameNotThrowsException
generateTokenFormForEmptyFormInstanceNameNotThrowsException()
Definition: AbstractFormProtectionTest.php:108

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenCalledTwoTimesWithSameParametersReturnsSameTokens
generateTokenCalledTwoTimesWithSameParametersReturnsSameTokens()
Definition: AbstractFormProtectionTest.php:132

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithMismatchingTokenIdReturnsFalse
validateTokenWithMismatchingTokenIdReturnsFalse()
Definition: AbstractFormProtectionTest.php:192

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenFormForEmptyFormNameThrowsException
generateTokenFormForEmptyFormNameThrowsException()
Definition: AbstractFormProtectionTest.php:90

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithMismatchingFormNameReturnsFalse
validateTokenWithMismatchingFormNameReturnsFalse()
Definition: AbstractFormProtectionTest.php:204

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithFourEmptyParametersNotThrowsException
validateTokenWithFourEmptyParametersNotThrowsException()
Definition: AbstractFormProtectionTest.php:143

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenRetrievesTokenOnce
validateTokenRetrievesTokenOnce()
Definition: AbstractFormProtectionTest.php:51

TYPO3\CMS\Core\Tests\Unit\FormProtection
Definition: AbstractFormProtectionTest.php:2

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithMismatchingFormInstanceNameReturnsFalse
validateTokenWithMismatchingFormInstanceNameReturnsFalse()
Definition: AbstractFormProtectionTest.php:228

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\$subject
$subject
Definition: AbstractFormProtectionTest.php:25

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithDataFromGenerateTokenWithFormInstanceNameReturnsTrue
validateTokenWithDataFromGenerateTokenWithFormInstanceNameReturnsTrue()
Definition: AbstractFormProtectionTest.php:159

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest
Definition: AbstractFormProtectionTest.php:20

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithDataFromGenerateTokenWithMissingActionAndFormInstanceNameReturnsTrue
validateTokenWithDataFromGenerateTokenWithMissingActionAndFormInstanceNameReturnsTrue()
Definition: AbstractFormProtectionTest.php:170

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithMismatchingActionReturnsFalse
validateTokenWithMismatchingActionReturnsFalse()
Definition: AbstractFormProtectionTest.php:216

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenRetrievesTokenOnce
generateTokenRetrievesTokenOnce()
Definition: AbstractFormProtectionTest.php:38

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\generateTokenFormForEmptyActionNotThrowsException
generateTokenFormForEmptyActionNotThrowsException()
Definition: AbstractFormProtectionTest.php:100

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\validateTokenWithTwoEmptyAndTwoMissingParametersNotThrowsException
validateTokenWithTwoEmptyAndTwoMissingParametersNotThrowsException()
Definition: AbstractFormProtectionTest.php:151

TYPO3\CMS\Core\Tests\Unit\FormProtection\AbstractFormProtectionTest\setUp
setUp()
Definition: AbstractFormProtectionTest.php:27