Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Branch: stable-5.2
Branches Tags
zammad
/
spec
/
lib
/
auth
/
backend
/
ldap_spec.rb

ldap_spec.rb 2.2 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. # Copyright (C) 2012-2022 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. require 'lib/auth/backend/backend_examples'
    5. 

  5. 

  6. RSpec.describe ::Auth::Backend::Ldap do
    7. 

  7. 

  8.   let(:ldap_source) { create(:ldap_source) }
    9. 

  9.   let(:user)        { create(:user, source: "Ldap::#{ldap_source.id}") }
    10. 

  10.   let(:password)    { 'secure' }
    11. 

  11.   let(:auth)        { Auth.new(user.login, password) }
    12. 

  12.   let(:config) do
    13. 

  13.     {
    14. 

  14.       adapter: described_class.name
    15. 

  15.     }
    16. 

  16.   end
    17. 

  17.   let(:instance) { described_class.new(config, auth) }
    18. 

  18.   let(:ldap_integration) { true }
    19. 

  19. 

  20.   before do
    21. 

  21.     Setting.set('ldap_integration', ldap_integration)
    22. 

  22.   end
    23. 

  23. 

  24.   describe '#valid?' do
    25. 

  25.     let(:ldap_user) { instance_double(Ldap::User) }
    26. 

  26. 

  27.     before do
    28. 

  28.       allow(Ldap::User).to receive(:new).with(any_args).and_return(ldap_user)
    29. 

  29.       allow(ldap_user).to receive(:valid?).with(any_args).and_return(true)
    30. 

  30.     end
    31. 

  31. 

  32.     it_behaves_like 'Auth backend'
    33. 

  33. 

  34.     it 'authenticates users' do
    35. 

  35.       expect(instance.valid?).to be true
    36. 

  36.     end
    37. 

  37. 

  38.     context 'when custom login attribute is configured' do
    39. 

  39. 

  40.       let(:config) do
    41. 

  41.         super().merge(
    42. 

  42.           login_attributes: %w[firstname]
    43. 

  43.         )
    44. 

  44.       end
    45. 

  45. 

  46.       it 'authenticates' do
    47. 

  47.         allow(ldap_user).to receive(:valid?).with(user.firstname, password).and_return(true)
    48. 

  48. 

  49.         expect(instance.valid?).to be true
    50. 

  50.       end
    51. 

  51.     end
    52. 

  52. 

  53.     context 'when Setting ldap_integration is false' do
    54. 

  54. 

  55.       let(:ldap_integration) { false }
    56. 

  56. 

  57.       it "doesn't authenticate" do
    58. 

  58.         expect(instance.valid?).to be false
    59. 

  59.       end
    60. 

  60.     end
    61. 

  61. 

  62.     context 'when LDAP authentication fails' do
    63. 

  63. 

  64.       it "doesn't authenticate" do
    65. 

  65.         allow(ldap_user).to receive(:valid?).with(any_args).and_return(false)
    66. 

  66. 

  67.         expect(instance.valid?).to be false
    68. 

  68.       end
    69. 

  69.     end
    70. 

  70. 

  71.     context 'when User#source does not match Ldap' do
    72. 

  72. 

  73.       context 'when blank' do
    74. 

  74. 

  75.         let(:user) { create(:user) }
    76. 

  76. 

  77.         it "doesn't authenticate" do
    78. 

  78.           expect(instance.valid?).to be false
    79. 

  79.         end
    80. 

  80.       end
    81. 

  81. 

  82.       context 'when some other value' do
    83. 

  83. 

  84.         let(:user) { create(:user, source: 'some other value') }
    85. 

  85. 

  86.         it "doesn't authenticate" do
    87. 

  87.           expect(instance.valid?).to be false
    88. 

  88.         end
    89. 

  89.       end
    90. 

  90.     end
    91. 

  91.   end
    92. 

  92. end
    93.