CommunityID/tests/modules/default/controllers/OpenidControllerTests.php

<?php

/*
* @copyright Copyright (C) 2005-2009 Keyboard Monkeys Ltd. http://www.kb-m.com
* @license http://creativecommons.org/licenses/BSD/ BSD License
* @author Keyboard Monkey Ltd
* @since  CommunityID 0.9
* @package CommunityID
* @packager Keyboard Monkeys
*/

require_once dirname(__FILE__) . '/../../../TestHarness.php';

class OpenidControllerTests extends PHPUnit_Framework_TestCase
{
    const USER_PASSWORD = 'secret';
    const CHECKID_QUERY = 'openid.ns=http%%3A%%2F%%2Fspecs.openid.net%%2Fauth%%2F2.0&openid.mode=checkid_setup&openid.identity=http%%3A%%2F%%2Flocalhost%%2Fcommunityid%%2Fidentity%%2Ftestuser&openid.claimed_id=http%%3A%%2F%%2Flocalhost%%2Fcommunityid%%2Fidentity%%2Ftestuser&openid.assoc_handle=%s&openid.return_to=http%%3A%%2F%%2Fwww.example.com&openid.realm=http%%3A%%2F%%2Fwww.example.com';

    private $_response;
    private $_tempDir;
    private $_user;

    // state isn't preserved accross test methods, so gotta use a static
    public static $assocHandle;

    public function __construct($name = NULL, array $data = array(), $dataName = '')
    {
        parent::__construct($name, $data, $dataName);
        $this->_tempDir = APP_DIR . '/tests/temp';
    }

    public function setUp()
    {
        TestHarness::setUp();

        Application::$front->returnResponse(true);
        $this->_response = new Zend_Controller_Response_Http();
        $this->_response->headersSentThrowsException = false;
        Application::$front->setResponse($this->_response);

        $users = new Users_Model_Users();

        $users->deleteTestEntries();

        $this->_user = $users->createRow();
        $this->_user->test = 1;
        $this->_user->username = 'testuser';
        $this->_user->role = Users_Model_User::ROLE_REGISTERED;
        $this->_user->openid = 'http://localhost/communityid/identity/'.$this->_user->username;
        $this->_user->setClearPassword(self::USER_PASSWORD);
        $this->_user->accepted_eula = 1;
        $this->_user->firstname = 'firstnametest';
        $this->_user->lastname = 'lastnametest';
        $this->_user->email = 'usertest@mailinator.com';
        $this->_user->token = '';
        $this->_user->save();
        Zend_Registry::set('user', $this->_user);

        // php-openid lib sucks
        $GLOBALS['Auth_OpenID_registered_aliases'] = array();
        $GLOBALS['_Auth_OpenID_Request_Modes'] = array('checkid_setup', 'checkid_immediate');
        $GLOBALS['Auth_OpenID_sreg_data_fields'] = array(
                                      'fullname' => 'Full Name',
                                      'nickname' => 'Nickname',
                                      'dob' => 'Date of Birth',
                                      'email' => 'E-mail Address',
                                      'gender' => 'Gender',
                                      'postcode' => 'Postal Code',
                                      'country' => 'Country',
                                      'language' => 'Language',
                                      'timezone' => 'Time Zone');
    }

    public function testIndexAction()
    {
        Application::$front->setRequest(new TestRequest('/openid'));
        try {
            Application::dispatch();
        } catch (Monkeys_BadUrlException $e) {
            $this->assertTrue(true);
            return;
        }

        $this->fail('Expected Monkeys_BadUrlException was not raised');
    }

    public function testProviderAssociateAction()
    {
        $_GET = array(
            'openid.ns'                 => 'http://specs.openid.net/auth/2.0',
            'openid.mode'               => 'associate',
            'openid.assoc_type'         => 'HMAC-SHA256',
            'openid.session_type'       => 'DH-SHA256',
            'openid.dh_modulus'         => 'ANz5OguIOXLsDhmYmsWizjEOHTdxfo2Vcbt2I3MYZuYe91ouJ4mLBX+YkcLiemOcPym2CBRYHNOyyjmG0mg3BVd9RcLn5S3IHHoXGHblzqdLFEi/368Ygo79JRnxTkXjgmY0rxlJ5bU1zIKaSDuKdiI+XUkKJX8Fvf8W8vsixYOr',
            'openid.dh_gen'             => 'Ag==',
            'openid.dh_consumer_public' => 'MFzHUMsSa4YSQ3JrcPSqyUaTQ3Z+QWKH6knvrREW7b6zQ2qMdOrpckgnUgo0pILMQpls8Ty/3JDv+IO29qASk2PwwZwxC2kXK/MQC/om5gs/IpjPSw1wK4bz2QTUHTRSxmtTxiq0tHYmIIqadz4TTMfXohMU2VCuYBqDNMHZFpk=',
        );

        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = http_build_query($_GET);

        Application::$front->setRequest(new TestRequest('/openid/provider'));
        Application::dispatch();

        $this->assertEquals(
            preg_match(
                "%
                    assoc_handle:(\{HMAC-SHA256\}\{[a-f0-9]+\}\{.*==\})\\x0A
                    assoc_type:HMAC-SHA256\\x0A
                    dh_server_public:.*\\x0A
                    enc_mac_key:.*\\x0A
                    expires_in:\d+\\x0A
                    ns:http://specs\.openid\.net/auth/2\.0\\x0A
                    session_type:DH-SHA256\\x0A
                %x",
                $this->_response->getBody(),
                $matches
            ),
            1
        );
        self::$assocHandle = urlencode($matches[1]);
    }

    public function testProviderCheckidSetupAction()
    {
        Zend_Auth::getInstance()->clearIdentity();
        Zend_Registry::getInstance()->offsetUnset('user');

        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = 'openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.mode=checkid_setup&openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser&openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser&openid.assoc_handle='.self::$assocHandle.'&openid.return_to=http%3A%2F%2Fwww.example.com&openid.realm=http%3A%2F%2Fwww.example.com';

        Zend_OpenId::$exitOnRedirect = false;

        Application::$front->setRequest(new TestRequest('/openid/provider?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('<form action="authenticate?'.$_SERVER['QUERY_STRING'].'" method="post" class="formGrid">', $this->_response->getBody());
    }

    public function testLoginAction()
    {
        Zend_Auth::getInstance()->clearIdentity();
        Zend_Registry::getInstance()->offsetUnset('user');

        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        Application::$front->setRequest(new TestRequest('/openid/login?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('<form action="authenticate?'.$_SERVER['QUERY_STRING'].'" method="post" class="formGrid">', $this->_response->getBody());
    }

    public function testAuthenticateEmptyUsernameAction()
    {
        $_SERVER['REQUEST_METHOD'] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        $_POST = array(
            'openIdIdentity'    => '',
            'password'          => self::USER_PASSWORD,
        );

        Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('Login', $this->_response->getBody());
    }

    public function testAuthenticateBadUsernameAction()
    {
        $_SERVER['REQUEST_METHOD'] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        $_POST = array(
            'openIdIdentity'    => 'whateva',
            'password'          => 'whatevaagain',
        );

        Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('Login', $this->_response->getBody());
    }

    public function testAuthenticateBadPasswordAction()
    {
        $_SERVER['REQUEST_METHOD'] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        $_POST = array(
            'openIdIdentity'    => $this->_user->openid,
            'password'          => 'badpassword',
        );

        Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('Login', $this->_response->getBody());
    }

    public function testAuthenticateSuccessfulAction()
    {
        Zend_Auth::getInstance()->clearIdentity();
        Zend_Registry::getInstance()->offsetUnset('user');

        $_SERVER['REQUEST_METHOD'] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        $_POST = array(
            'openIdIdentity'    => $this->_user->openid,
            'password'          => self::USER_PASSWORD,
        );

        Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains(
            'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',
            $this->_response->getBody()
        );
    }

    public function testTrustAction1()
    {
        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        Application::$front->setRequest(new TestRequest('/openid/provider?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains(
            'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',
            $this->_response->getBody()
        );
    }

    public function testTrustAction2()
    {
        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        Application::$front->setRequest(new TestRequest('/openid/trust?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains(
            'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',
            $this->_response->getBody()
        );
    }

    public function testTrustWithSreg()
    {
        $_SERVER['REQUEST_METHOD'] = 'GET';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);
        $_SERVER['QUERY_STRING'] .= '&openid.ns.sreg=http%3A%2F%2Fopenid.net%2Fextensions%2Fsreg%2F1.1&openid.sreg.optional=nickname%2Cmobilenum';

        Application::$front->setRequest(new TestRequest('/openid/trust?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $this->assertContains('<input type="text" name="openid_sreg_nickname" id="openid_sreg_nickname" value=""', $this->_response->getBody());
    }

    public function testProceedAction()
    {
        $_SERVER['REQUEST_METHOD'] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);

        // required for logging
        $_SERVER['REMOTE_ADDR'] = '127.0.0.1';

        $_POST = array(
            'action'    => 'proceed',
            'allow'     => 'Allow',
        );
        Application::$front->setRequest(new TestRequest('/openid/proceed?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $responseHeaders = $this->_response->getHeaders();

        $this->assertEquals(
            preg_match(
                '#
                        http://www.example.com\?
                        openid.assoc_handle='.self::$assocHandle.'
                        &openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser
                        &openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser
                        &openid.mode=id_res
                        &openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0
                        &openid.op_endpoint=http%3A%2F%2F.*
                        &openid.response_nonce='.gmdate('Y-m-d\T').'.*
                        &openid.return_to=http%3A%2F%2Fwww.example.com
                        &openid.sig=.*
                        &openid.signed=assoc_handle%2Cclaimed_id%2Cidentity%2Cmode%2Cns%2Cop_endpoint%2Cresponse_nonce%2Creturn_to%2Csigned
                #x',
                $responseHeaders[0]['value']
            ),
            1
        );
    }

    public function testProceedWithSreg()
    {
        $_POST = array(
            'openid_sreg_nickname'  => 'nicktest',
            'openid_sreg_email'     => 'test_x@mailinator.com',
            'openid_sreg_fullname'  => 'Michael Jordan',
            'action'                => 'proceed',
            'allow'                 => 'Allow',
        );

        $queryString = self::CHECKID_QUERY . "&openid.ns.sreg=http%%3A%%2F%%2Fopenid.net%%2Fextensions%%2Fsreg%%2F1.1&openid.sreg.required=nickname&openid.sreg.optional=email%%2Cfullname";

        $_SERVER["REQUEST_METHOD"] = 'POST';
        $_SERVER['QUERY_STRING'] = sprintf($queryString, self::$assocHandle);

        // required for logging
        $_SERVER['REMOTE_ADDR'] = '127.0.0.1';

        Application::$front->setRequest(new TestRequest('/openid/proceed?' . $_SERVER['QUERY_STRING']));
        Application::dispatch();

        $responseHeaders = $this->_response->getHeaders();

        $this->assertEquals(
            preg_match(
                '#
                    http://www.example.com\?
                    openid.assoc_handle='.self::$assocHandle.'
                    &openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser
                    &openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser
                    &openid.mode=id_res
                    &openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0
                    &openid.ns.sreg=http%3A%2F%2Fopenid.net%2Fextensions%2Fsreg%2F1.1
                    &openid.op_endpoint=http%3A%2F%2F.*
                    &openid.response_nonce='.gmdate('Y-m-d\T').'.*
                    &openid.return_to=http%3A%2F%2Fwww.example.com
                    &openid.sig=.*
                    &openid.signed=assoc_handle%2Cclaimed_id%2Cidentity%2Cmode%2Cns%2Cns.sreg%2Cop_endpoint%2Cresponse_nonce%2Creturn_to%2Csigned%2Csreg.email%2Csreg.fullname%2Csreg.nickname

                    &openid.sreg.email=test_x%40mailinator.com
                    &openid.sreg.fullname=Michael\+Jordan
                    &openid.sreg.nickname=nicktest
                #x',
                $responseHeaders[0]['value']
            ),
            1
        );
    }

    public function tearDown()
    {
        $users = new Users_Model_Users();
        $this->_user->delete();
    }
}
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`<?php`

			`/*`
			`* @copyright Copyright (C) 2005-2009 Keyboard Monkeys Ltd. http://www.kb-m.com`
			`* @license http://creativecommons.org/licenses/BSD/ BSD License`
			`* @author Keyboard Monkey Ltd`
			`* @since CommunityID 0.9`
			`* @package CommunityID`
			`* @packager Keyboard Monkeys`
			`*/`

			`require_once dirname(__FILE__) . '/../../../TestHarness.php';`

			`class OpenidControllerTests extends PHPUnit_Framework_TestCase`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`const USER_PASSWORD = 'secret';`
			`const CHECKID_QUERY = 'openid.ns=http%%3A%%2F%%2Fspecs.openid.net%%2Fauth%%2F2.0&openid.mode=checkid_setup&openid.identity=http%%3A%%2F%%2Flocalhost%%2Fcommunityid%%2Fidentity%%2Ftestuser&openid.claimed_id=http%%3A%%2F%%2Flocalhost%%2Fcommunityid%%2Fidentity%%2Ftestuser&openid.assoc_handle=%s&openid.return_to=http%%3A%%2F%%2Fwww.example.com&openid.realm=http%%3A%%2F%%2Fwww.example.com';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
			`private $_response;`
			`private $_tempDir;`
			`private $_user;`

			`// state isn't preserved accross test methods, so gotta use a static`
			`public static $assocHandle;`

			`public function __construct($name = NULL, array $data = array(), $dataName = '')`
			`{`
			`parent::__construct($name, $data, $dataName);`
			`$this->_tempDir = APP_DIR . '/tests/temp';`
			`}`

			`public function setUp()`
			`{`
			`TestHarness::setUp();`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->returnResponse(true);`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_response = new Zend_Controller_Response_Http();`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->_response->headersSentThrowsException = false;`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setResponse($this->_response);`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`$users = new Users_Model_Users();`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00
			`$users->deleteTestEntries();`

import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_user = $users->createRow();`
			`$this->_user->test = 1;`
			`$this->_user->username = 'testuser';`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`$this->_user->role = Users_Model_User::ROLE_REGISTERED;`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_user->openid = 'http://localhost/communityid/identity/'.$this->_user->username;`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->_user->setClearPassword(self::USER_PASSWORD);`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_user->accepted_eula = 1;`
			`$this->_user->firstname = 'firstnametest';`
			`$this->_user->lastname = 'lastnametest';`
			`$this->_user->email = 'usertest@mailinator.com';`
			`$this->_user->token = '';`
			`$this->_user->save();`
			`Zend_Registry::set('user', $this->_user);`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00
			`// php-openid lib sucks`
			`$GLOBALS['Auth_OpenID_registered_aliases'] = array();`
			`$GLOBALS['_Auth_OpenID_Request_Modes'] = array('checkid_setup', 'checkid_immediate');`
			`$GLOBALS['Auth_OpenID_sreg_data_fields'] = array(`
			`'fullname' => 'Full Name',`
			`'nickname' => 'Nickname',`
			`'dob' => 'Date of Birth',`
			`'email' => 'E-mail Address',`
			`'gender' => 'Gender',`
			`'postcode' => 'Postal Code',`
			`'country' => 'Country',`
			`'language' => 'Language',`
			`'timezone' => 'Time Zone');`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testIndexAction()`
			`{`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid'));`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`try {`
			`Application::dispatch();`
			`} catch (Monkeys_BadUrlException $e) {`
			`$this->assertTrue(true);`
			`return;`
			`}`

			`$this->fail('Expected Monkeys_BadUrlException was not raised');`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testProviderAssociateAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_GET = array(`
			`'openid.ns' => 'http://specs.openid.net/auth/2.0',`
			`'openid.mode' => 'associate',`
			`'openid.assoc_type' => 'HMAC-SHA256',`
			`'openid.session_type' => 'DH-SHA256',`
			`'openid.dh_modulus' => 'ANz5OguIOXLsDhmYmsWizjEOHTdxfo2Vcbt2I3MYZuYe91ouJ4mLBX+YkcLiemOcPym2CBRYHNOyyjmG0mg3BVd9RcLn5S3IHHoXGHblzqdLFEi/368Ygo79JRnxTkXjgmY0rxlJ5bU1zIKaSDuKdiI+XUkKJX8Fvf8W8vsixYOr',`
			`'openid.dh_gen' => 'Ag==',`
			`'openid.dh_consumer_public' => 'MFzHUMsSa4YSQ3JrcPSqyUaTQ3Z+QWKH6knvrREW7b6zQ2qMdOrpckgnUgo0pILMQpls8Ty/3JDv+IO29qASk2PwwZwxC2kXK/MQC/om5gs/IpjPSw1wK4bz2QTUHTRSxmtTxiq0tHYmIIqadz4TTMfXohMU2VCuYBqDNMHZFpk=',`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'GET';`
			`$_SERVER['QUERY_STRING'] = http_build_query($_GET);`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/provider'));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
			`$this->assertEquals(`
			`preg_match(`
			`"%`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`assoc_handle:(\{HMAC-SHA256\}\{[a-f0-9]+\}\{.*==\})\\x0A`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`assoc_type:HMAC-SHA256\\x0A`
			`dh_server_public:.*\\x0A`
			`enc_mac_key:.*\\x0A`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`expires_in:\d+\\x0A`
			`ns:http://specs\.openid\.net/auth/2\.0\\x0A`
			`session_type:DH-SHA256\\x0A`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`%x",`
			`$this->_response->getBody(),`
			`$matches`
			`),`
			`1`
			`);`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`self::$assocHandle = urlencode($matches[1]);`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testProviderCheckidSetupAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Zend_Auth::getInstance()->clearIdentity();`
			`Zend_Registry::getInstance()->offsetUnset('user');`

			`$_SERVER['REQUEST_METHOD'] = 'GET';`
			`$_SERVER['QUERY_STRING'] = 'openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.mode=checkid_setup&openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser&openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser&openid.assoc_handle='.self::$assocHandle.'&openid.return_to=http%3A%2F%2Fwww.example.com&openid.realm=http%3A%2F%2Fwww.example.com';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
			`Zend_OpenId::$exitOnRedirect = false;`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Application::$front->setRequest(new TestRequest('/openid/provider?' . $_SERVER['QUERY_STRING']));`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->assertContains('<form action="authenticate?'.$_SERVER['QUERY_STRING'].'" method="post" class="formGrid">', $this->_response->getBody());`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testLoginAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Zend_Auth::getInstance()->clearIdentity();`
			`Zend_Registry::getInstance()->offsetUnset('user');`

			`$_SERVER['REQUEST_METHOD'] = 'GET';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/login?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`$this->assertContains('<form action="authenticate?'.$_SERVER['QUERY_STRING'].'" method="post" class="formGrid">', $this->_response->getBody());`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`public function testAuthenticateEmptyUsernameAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

			`$_POST = array(`
			`'openIdIdentity' => '',`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`'password' => self::USER_PASSWORD,`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`$this->assertContains('Login', $this->_response->getBody());`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testAuthenticateBadUsernameAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

			`$_POST = array(`
			`'openIdIdentity' => 'whateva',`
			`'password' => 'whatevaagain',`
			`);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->assertContains('Login', $this->_response->getBody());`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testAuthenticateBadPasswordAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

			`$_POST = array(`
			`'openIdIdentity' => $this->_user->openid,`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`'password' => 'badpassword',`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->assertContains('Login', $this->_response->getBody());`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`}`

			`public function testAuthenticateSuccessfulAction()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Zend_Auth::getInstance()->clearIdentity();`
			`Zend_Registry::getInstance()->offsetUnset('user');`

			`$_SERVER['REQUEST_METHOD'] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

			`$_POST = array(`
			`'openIdIdentity' => $this->_user->openid,`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`'password' => self::USER_PASSWORD,`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/authenticate?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->assertContains(`
			`'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',`
			`$this->_response->getBody()`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`
			`}`

			`public function testTrustAction1()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'GET';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/provider?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$this->assertContains(`
			`'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',`
			`$this->_response->getBody()`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`
			`}`

			`public function testTrustAction2()`
			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'GET';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::$front->setRequest(new TestRequest('/openid/trust?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
			`$this->assertContains(`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`'A site identifying as <a href="http://www.example.com">http://www.example.com</a> has asked for confirmation that <a href="'.$this->_user->openid.'">'.$this->_user->openid.'</a> is your identity URL.',`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_response->getBody()`
			`);`
			`}`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`public function testTrustWithSreg()`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER['REQUEST_METHOD'] = 'GET';`
			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`
			`$_SERVER['QUERY_STRING'] .= '&openid.ns.sreg=http%3A%2F%2Fopenid.net%2Fextensions%2Fsreg%2F1.1&openid.sreg.optional=nickname%2Cmobilenum';`

			`Application::$front->setRequest(new TestRequest('/openid/trust?' . $_SERVER['QUERY_STRING']));`
			`Application::dispatch();`

			`$this->assertContains('<input type="text" name="openid_sreg_nickname" id="openid_sreg_nickname" value=""', $this->_response->getBody());`
			`}`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`public function testProceedAction()`
			`{`
			`$_SERVER['REQUEST_METHOD'] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf(self::CHECKID_QUERY, self::$assocHandle);`

			`// required for logging`
			`$_SERVER['REMOTE_ADDR'] = '127.0.0.1';`

			`$_POST = array(`
			`'action' => 'proceed',`
			`'allow' => 'Allow',`
			`);`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Application::$front->setRequest(new TestRequest('/openid/proceed?' . $_SERVER['QUERY_STRING']));`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$responseHeaders = $this->_response->getHeaders();`

import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->assertEquals(`
			`preg_match(`
			`'#`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`http://www.example.com\?`
			`openid.assoc_handle='.self::$assocHandle.'`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`&openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser`
			`&openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`&openid.mode=id_res`
			`&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`&openid.op_endpoint=http%3A%2F%2F.*`
			`&openid.response_nonce='.gmdate('Y-m-d\T').'.*`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`&openid.return_to=http%3A%2F%2Fwww.example.com`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`&openid.sig=.*`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`&openid.signed=assoc_handle%2Cclaimed_id%2Cidentity%2Cmode%2Cns%2Cop_endpoint%2Cresponse_nonce%2Creturn_to%2Csigned`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`#x',`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$responseHeaders[0]['value']`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`),`
			`1`
			`);`
			`}`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`public function testProceedWithSreg()`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`{`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_POST = array(`
			`'openid_sreg_nickname' => 'nicktest',`
			`'openid_sreg_email' => 'test_x@mailinator.com',`
			`'openid_sreg_fullname' => 'Michael Jordan',`
			`'action' => 'proceed',`
			`'allow' => 'Allow',`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`);`

			`$queryString = self::CHECKID_QUERY . "&openid.ns.sreg=http%%3A%%2F%%2Fopenid.net%%2Fextensions%%2Fsreg%%2F1.1&openid.sreg.required=nickname&openid.sreg.optional=email%%2Cfullname";`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$_SERVER["REQUEST_METHOD"] = 'POST';`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$_SERVER['QUERY_STRING'] = sprintf($queryString, self::$assocHandle);`

			`// required for logging`
			`$_SERVER['REMOTE_ADDR'] = '127.0.0.1';`

import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`Application::$front->setRequest(new TestRequest('/openid/proceed?' . $_SERVER['QUERY_STRING']));`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`Application::dispatch();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$responseHeaders = $this->_response->getHeaders();`

import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->assertEquals(`
			`preg_match(`
			`'#`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`http://www.example.com\?`
			`openid.assoc_handle='.self::$assocHandle.'`
			`&openid.claimed_id=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser`
			`&openid.identity=http%3A%2F%2Flocalhost%2Fcommunityid%2Fidentity%2Ftestuser`
			`&openid.mode=id_res`
			`&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0`
			`&openid.ns.sreg=http%3A%2F%2Fopenid.net%2Fextensions%2Fsreg%2F1.1`
			`&openid.op_endpoint=http%3A%2F%2F.*`
			`&openid.response_nonce='.gmdate('Y-m-d\T').'.*`
			`&openid.return_to=http%3A%2F%2Fwww.example.com`
			`&openid.sig=.*`
			`&openid.signed=assoc_handle%2Cclaimed_id%2Cidentity%2Cmode%2Cns%2Cns.sreg%2Cop_endpoint%2Cresponse_nonce%2Creturn_to%2Csigned%2Csreg.email%2Csreg.fullname%2Csreg.nickname`

			`&openid.sreg.email=test_x%40mailinator.com`
			`&openid.sreg.fullname=Michael\+Jordan`
			`&openid.sreg.nickname=nicktest`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`#x',`
import v1.1.0_RC2 \| 2009-09-20 2019-07-17 20:19:00 +00:00			`$responseHeaders[0]['value']`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`),`
			`1`
			`);`
			`}`

			`public function tearDown()`
			`{`
import v1.1.0_beta1 \| 2009-08-21 2019-07-17 20:16:19 +00:00			`$users = new Users_Model_Users();`
import v1.0.0-RC4 \| 2009-05-20 2019-07-17 20:08:50 +00:00			`$this->_user->delete();`
			`}`
			`}`