Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Branch: stable-2.6
Branches Tags
zammad
/
spec
/
lib
/
password_hash_spec.rb

password_hash_spec.rb 2.2 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. require 'rails_helper'
    2. 

  2. 

  3. RSpec.describe PasswordHash do
    4. 

  4. 

  5.   let(:pw_plain) { 'zammad' }
    6. 

  6. 

  7.   context 'stable API' do
    8. 

  8.     it 'responds to crypt' do
    9. 

  9.       expect(described_class).to respond_to(:crypt)
    10. 

  10.     end
    11. 

  11. 

  12.     it 'responds to verified?' do
    13. 

  13.       expect(described_class).to respond_to(:verified?)
    14. 

  14.     end
    15. 

  15. 

  16.     it 'responds to crypted?' do
    17. 

  17.       expect(described_class).to respond_to(:crypted?)
    18. 

  18.     end
    19. 

  19. 

  20.     it 'responds to legacy?' do
    21. 

  21.       expect(described_class).to respond_to(:legacy?)
    22. 

  22.     end
    23. 

  23. 

  24.     it 'responds to sha2' do
    25. 

  25.       expect(described_class).to respond_to(:sha2)
    26. 

  26.     end
    27. 

  27. 

  28.     it 'responds to hashed_sha2?' do
    29. 

  29.       expect(described_class).to respond_to(:hashed_sha2?)
    30. 

  30.     end
    31. 

  31. 

  32.     it 'responds to hashed_argon2?' do
    33. 

  33.       expect(described_class).to respond_to(:hashed_argon2?)
    34. 

  34.     end
    35. 

  35.   end
    36. 

  36. 

  37.   context 'encryption' do
    38. 

  38. 

  39.     it 'crypts passwords' do
    40. 

  40.       pw_crypted = described_class.crypt(pw_plain)
    41. 

  41.       expect(pw_crypted).not_to eq(pw_plain)
    42. 

  42.     end
    43. 

  43. 

  44.     it 'verifies crypted passwords' do
    45. 

  45.       pw_crypted = described_class.crypt(pw_plain)
    46. 

  46.       expect(described_class.verified?(pw_crypted, pw_plain)).to be true
    47. 

  47.     end
    48. 

  48. 

  49.     it 'detects crypted passwords' do
    50. 

  50.       pw_crypted = described_class.crypt(pw_plain)
    51. 

  51.       expect(described_class.crypted?(pw_crypted)).to be true
    52. 

  52.     end
    53. 

  53.   end
    54. 

  54. 

  55.   context 'legacy' do
    56. 

  56. 

  57.     let(:zammad_sha2) { '{sha2}dd9c764fa7ea18cd992c8600006d3dc3ac983d1ba22e9ba2d71f6207456be0ba' }
    58. 

  58. 

  59.     it 'requires hash to be not blank' do
    60. 

  60.       expect(described_class.legacy?(nil, pw_plain)).to be_falsy
    61. 

  61.       expect(described_class.legacy?('', pw_plain)).to be_falsy
    62. 

  62.     end
    63. 

  63. 

  64.     it 'requires password to be not nil' do
    65. 

  65.       expect(described_class.legacy?(zammad_sha2, nil)).to be_falsy
    66. 

  66.     end
    67. 

  67. 

  68.     it 'detects sha2 hashes' do
    69. 

  69.       expect(described_class.legacy?(zammad_sha2, pw_plain)).to be true
    70. 

  70.     end
    71. 

  71. 

  72.     it 'detects crypted passwords' do
    73. 

  73.       expect(described_class.crypted?(zammad_sha2)).to be true
    74. 

  74.     end
    75. 

  75. 

  76.     describe '::sha2' do
    77. 

  77. 

  78.       it 'creates sha2 hashes' do
    79. 

  79.         hashed = described_class.sha2(pw_plain)
    80. 

  80.         expect(hashed).to eq zammad_sha2
    81. 

  81.       end
    82. 

  82.     end
    83. 

  83. 

  84.     describe '::hashed_sha2?' do
    85. 

  85. 

  86.       it 'detects sha2 hashes' do
    87. 

  87.         expect(described_class.hashed_sha2?(zammad_sha2)).to be true
    88. 

  88.       end
    89. 

  89.     end
    90. 

  90.   end
    91. 

  91. 

  92. end
    93.