Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Branch: stable
Branches Tags
zammad
/
spec
/
lib
/
password_hash_spec.rb

password_hash_spec.rb 2.3 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. RSpec.describe PasswordHash do
    6. 

  6. 

  7.   let(:pw_plain) { 'zammad' }
    8. 

  8. 

  9.   context 'stable API' do
    10. 

  10.     it 'responds to crypt' do
    11. 

  11.       expect(described_class).to respond_to(:crypt)
    12. 

  12.     end
    13. 

  13. 

  14.     it 'responds to verified?' do
    15. 

  15.       expect(described_class).to respond_to(:verified?)
    16. 

  16.     end
    17. 

  17. 

  18.     it 'responds to crypted?' do
    19. 

  19.       expect(described_class).to respond_to(:crypted?)
    20. 

  20.     end
    21. 

  21. 

  22.     it 'responds to legacy?' do
    23. 

  23.       expect(described_class).to respond_to(:legacy?)
    24. 

  24.     end
    25. 

  25. 

  26.     it 'responds to sha2' do
    27. 

  27.       expect(described_class).to respond_to(:sha2)
    28. 

  28.     end
    29. 

  29. 

  30.     it 'responds to hashed_sha2?' do
    31. 

  31.       expect(described_class).to respond_to(:hashed_sha2?)
    32. 

  32.     end
    33. 

  33. 

  34.     it 'responds to hashed_argon2?' do
    35. 

  35.       expect(described_class).to respond_to(:hashed_argon2?)
    36. 

  36.     end
    37. 

  37.   end
    38. 

  38. 

  39.   context 'encryption' do
    40. 

  40. 

  41.     it 'crypts passwords' do
    42. 

  42.       pw_crypted = described_class.crypt(pw_plain)
    43. 

  43.       expect(pw_crypted).not_to eq(pw_plain)
    44. 

  44.     end
    45. 

  45. 

  46.     it 'verifies crypted passwords' do
    47. 

  47.       pw_crypted = described_class.crypt(pw_plain)
    48. 

  48.       expect(described_class.verified?(pw_crypted, pw_plain)).to be true
    49. 

  49.     end
    50. 

  50. 

  51.     it 'detects crypted passwords' do
    52. 

  52.       pw_crypted = described_class.crypt(pw_plain)
    53. 

  53.       expect(described_class.crypted?(pw_crypted)).to be true
    54. 

  54.     end
    55. 

  55.   end
    56. 

  56. 

  57.   context 'legacy' do
    58. 

  58. 

  59.     let(:zammad_sha2) { '{sha2}dd9c764fa7ea18cd992c8600006d3dc3ac983d1ba22e9ba2d71f6207456be0ba' }
    60. 

  60. 

  61.     it 'requires hash to be not blank' do
    62. 

  62.       expect(described_class).not_to be_legacy(nil, pw_plain)
    63. 

  63.       expect(described_class).not_to be_legacy('', pw_plain)
    64. 

  64.     end
    65. 

  65. 

  66.     it 'requires password to be not nil' do
    67. 

  67.       expect(described_class).not_to be_legacy(zammad_sha2, nil)
    68. 

  68.     end
    69. 

  69. 

  70.     it 'detects sha2 hashes' do
    71. 

  71.       expect(described_class.legacy?(zammad_sha2, pw_plain)).to be true
    72. 

  72.     end
    73. 

  73. 

  74.     it 'detects crypted passwords' do
    75. 

  75.       expect(described_class.crypted?(zammad_sha2)).to be true
    76. 

  76.     end
    77. 

  77. 

  78.     describe '::sha2' do
    79. 

  79. 

  80.       it 'creates sha2 hashes' do
    81. 

  81.         hashed = described_class.sha2(pw_plain)
    82. 

  82.         expect(hashed).to eq zammad_sha2
    83. 

  83.       end
    84. 

  84.     end
    85. 

  85. 

  86.     describe '::hashed_sha2?' do
    87. 

  87. 

  88.       it 'detects sha2 hashes' do
    89. 

  89.         expect(described_class.hashed_sha2?(zammad_sha2)).to be true
    90. 

  90.       end
    91. 

  91.     end
    92. 

  92.   end
    93. 

  93. 

  94. end
    95.