MediaWiki REL1_30
UserTest.php
Go to the documentation of this file.
1<?php
2
3define( 'NS_UNITTEST', 5600 );
4define( 'NS_UNITTEST_TALK', 5601 );
5
6use MediaWiki\MediaWikiServices;
7use Wikimedia\TestingAccessWrapper;
8
12class UserTest extends MediaWikiTestCase {
16 protected $user;
17
18 protected function setUp() {
19 parent::setUp();
20
21 $this->setMwGlobals( [
22 'wgGroupPermissions' => [],
23 'wgRevokePermissions' => [],
24 ] );
25
26 $this->setUpPermissionGlobals();
27
28 $this->user = $this->getTestUser( [ 'unittesters' ] )->getUser();
29 }
30
31 private function setUpPermissionGlobals() {
32 global $wgGroupPermissions, $wgRevokePermissions;
33
34 # Data for regular $wgGroupPermissions test
35 $wgGroupPermissions['unittesters'] = [
36 'test' => true,
37 'runtest' => true,
38 'writetest' => false,
39 'nukeworld' => false,
40 ];
41 $wgGroupPermissions['testwriters'] = [
42 'test' => true,
43 'writetest' => true,
44 'modifytest' => true,
45 ];
46
47 # Data for regular $wgRevokePermissions test
48 $wgRevokePermissions['formertesters'] = [
49 'runtest' => true,
50 ];
51
52 # For the options test
53 $wgGroupPermissions['*'] = [
54 'editmyoptions' => true,
55 ];
56 }
57
61 public function testGroupPermissions() {
62 $rights = User::getGroupPermissions( [ 'unittesters' ] );
63 $this->assertContains( 'runtest', $rights );
64 $this->assertNotContains( 'writetest', $rights );
65 $this->assertNotContains( 'modifytest', $rights );
66 $this->assertNotContains( 'nukeworld', $rights );
67
68 $rights = User::getGroupPermissions( [ 'unittesters', 'testwriters' ] );
69 $this->assertContains( 'runtest', $rights );
70 $this->assertContains( 'writetest', $rights );
71 $this->assertContains( 'modifytest', $rights );
72 $this->assertNotContains( 'nukeworld', $rights );
73 }
74
78 public function testRevokePermissions() {
79 $rights = User::getGroupPermissions( [ 'unittesters', 'formertesters' ] );
80 $this->assertNotContains( 'runtest', $rights );
81 $this->assertNotContains( 'writetest', $rights );
82 $this->assertNotContains( 'modifytest', $rights );
83 $this->assertNotContains( 'nukeworld', $rights );
84 }
85
89 public function testUserPermissions() {
90 $rights = $this->user->getRights();
91 $this->assertContains( 'runtest', $rights );
92 $this->assertNotContains( 'writetest', $rights );
93 $this->assertNotContains( 'modifytest', $rights );
94 $this->assertNotContains( 'nukeworld', $rights );
95 }
96
100 public function testUserGetRightsHooks() {
101 $user = $this->getTestUser( [ 'unittesters', 'testwriters' ] )->getUser();
102 $userWrapper = TestingAccessWrapper::newFromObject( $user );
103
104 $rights = $user->getRights();
105 $this->assertContains( 'test', $rights, 'sanity check' );
106 $this->assertContains( 'runtest', $rights, 'sanity check' );
107 $this->assertContains( 'writetest', $rights, 'sanity check' );
108 $this->assertNotContains( 'nukeworld', $rights, 'sanity check' );
109
110 // Add a hook manipluating the rights
111 $this->mergeMwGlobalArrayValue( 'wgHooks', [ 'UserGetRights' => [ function ( $user, &$rights ) {
112 $rights[] = 'nukeworld';
113 $rights = array_diff( $rights, [ 'writetest' ] );
114 } ] ] );
115
116 $userWrapper->mRights = null;
117 $rights = $user->getRights();
118 $this->assertContains( 'test', $rights );
119 $this->assertContains( 'runtest', $rights );
120 $this->assertNotContains( 'writetest', $rights );
121 $this->assertContains( 'nukeworld', $rights );
122
123 // Add a Session that limits rights
124 $mock = $this->getMockBuilder( stdclass::class )
125 ->setMethods( [ 'getAllowedUserRights', 'deregisterSession', 'getSessionId' ] )
126 ->getMock();
127 $mock->method( 'getAllowedUserRights' )->willReturn( [ 'test', 'writetest' ] );
128 $mock->method( 'getSessionId' )->willReturn(
129 new MediaWiki\Session\SessionId( str_repeat( 'X', 32 ) )
130 );
131 $session = MediaWiki\Session\TestUtils::getDummySession( $mock );
132 $mockRequest = $this->getMockBuilder( FauxRequest::class )
133 ->setMethods( [ 'getSession' ] )
134 ->getMock();
135 $mockRequest->method( 'getSession' )->willReturn( $session );
136 $userWrapper->mRequest = $mockRequest;
137
138 $userWrapper->mRights = null;
139 $rights = $user->getRights();
140 $this->assertContains( 'test', $rights );
141 $this->assertNotContains( 'runtest', $rights );
142 $this->assertNotContains( 'writetest', $rights );
143 $this->assertNotContains( 'nukeworld', $rights );
144 }
145
150 public function testGetGroupsWithPermission( $expected, $right ) {
151 $result = User::getGroupsWithPermission( $right );
152 sort( $result );
153 sort( $expected );
154
155 $this->assertEquals( $expected, $result, "Groups with permission $right" );
156 }
157
158 public static function provideGetGroupsWithPermission() {
159 return [
160 [
161 [ 'unittesters', 'testwriters' ],
162 'test'
163 ],
164 [
165 [ 'unittesters' ],
166 'runtest'
167 ],
168 [
169 [ 'testwriters' ],
170 'writetest'
171 ],
172 [
173 [ 'testwriters' ],
174 'modifytest'
175 ],
176 ];
177 }
178
183 public function testIsIP( $value, $result, $message ) {
184 $this->assertEquals( $this->user->isIP( $value ), $result, $message );
185 }
186
187 public static function provideIPs() {
188 return [
189 [ '', false, 'Empty string' ],
190 [ ' ', false, 'Blank space' ],
191 [ '10.0.0.0', true, 'IPv4 private 10/8' ],
192 [ '10.255.255.255', true, 'IPv4 private 10/8' ],
193 [ '192.168.1.1', true, 'IPv4 private 192.168/16' ],
194 [ '203.0.113.0', true, 'IPv4 example' ],
195 [ '2002:ffff:ffff:ffff:ffff:ffff:ffff:ffff', true, 'IPv6 example' ],
196 // Not valid IPs but classified as such by MediaWiki for negated asserting
197 // of whether this might be the identifier of a logged-out user or whether
198 // to allow usernames like it.
199 [ '300.300.300.300', true, 'Looks too much like an IPv4 address' ],
200 [ '203.0.113.xxx', true, 'Assigned by UseMod to cloaked logged-out users' ],
201 ];
202 }
203
208 public function testIsValidUserName( $username, $result, $message ) {
209 $this->assertEquals( $this->user->isValidUserName( $username ), $result, $message );
210 }
211
212 public static function provideUserNames() {
213 return [
214 [ '', false, 'Empty string' ],
215 [ ' ', false, 'Blank space' ],
216 [ 'abcd', false, 'Starts with small letter' ],
217 [ 'Ab/cd', false, 'Contains slash' ],
218 [ 'Ab cd', true, 'Whitespace' ],
219 [ '192.168.1.1', false, 'IP' ],
220 [ '116.17.184.5/32', false, 'IP range' ],
221 [ '::e:f:2001/96', false, 'IPv6 range' ],
222 [ 'User:Abcd', false, 'Reserved Namespace' ],
223 [ '12abcd232', true, 'Starts with Numbers' ],
224 [ '?abcd', true, 'Start with ? mark' ],
225 [ '#abcd', false, 'Start with #' ],
226 [ 'Abcdകഖഗഘ', true, ' Mixed scripts' ],
227 [ 'ജോസ്‌തോമസ്', false, 'ZWNJ- Format control character' ],
228 [ 'Ab cd', false, ' Ideographic space' ],
229 [ '300.300.300.300', false, 'Looks too much like an IPv4 address' ],
230 [ '302.113.311.900', false, 'Looks too much like an IPv4 address' ],
231 [ '203.0.113.xxx', false, 'Reserved for usage by UseMod for cloaked logged-out users' ],
232 ];
233 }
234
240 public function testAllRightsWithMessage() {
241 // Getting all user rights, for core: User::$mCoreRights, for extensions: $wgAvailableRights
242 $allRights = User::getAllRights();
243 $allMessageKeys = Language::getMessageKeysFor( 'en' );
244
245 $rightsWithMessage = [];
246 foreach ( $allMessageKeys as $message ) {
247 // === 0: must be at beginning of string (position 0)
248 if ( strpos( $message, 'right-' ) === 0 ) {
249 $rightsWithMessage[] = substr( $message, strlen( 'right-' ) );
250 }
251 }
252
253 sort( $allRights );
254 sort( $rightsWithMessage );
255
256 $this->assertEquals(
257 $allRights,
258 $rightsWithMessage,
259 'Each user rights (core/extensions) has a corresponding right- message.'
260 );
261 }
262
268 public function testGetEditCount() {
269 $user = $this->getMutableTestUser()->getUser();
270
271 // let the user have a few (3) edits
272 $page = WikiPage::factory( Title::newFromText( 'Help:UserTest_EditCount' ) );
273 for ( $i = 0; $i < 3; $i++ ) {
274 $page->doEditContent(
275 ContentHandler::makeContent( (string)$i, $page->getTitle() ),
276 'test',
277 0,
278 false,
279 $user
280 );
281 }
282
283 $this->assertEquals(
284 3,
285 $user->getEditCount(),
286 'After three edits, the user edit count should be 3'
287 );
288
289 // increase the edit count
290 $user->incEditCount();
291
292 $this->assertEquals(
293 4,
294 $user->getEditCount(),
295 'After increasing the edit count manually, the user edit count should be 4'
296 );
297 }
298
304 public function testGetEditCountForAnons() {
305 $user = User::newFromName( 'Anonymous' );
306
307 $this->assertNull(
308 $user->getEditCount(),
309 'Edit count starts null for anonymous users.'
310 );
311
312 $user->incEditCount();
313
314 $this->assertNull(
315 $user->getEditCount(),
316 'Edit count remains null for anonymous users despite calls to increase it.'
317 );
318 }
319
325 public function testIncEditCount() {
326 $user = $this->getMutableTestUser()->getUser();
327 $user->incEditCount();
328
329 $reloadedUser = User::newFromId( $user->getId() );
330 $reloadedUser->incEditCount();
331
332 $this->assertEquals(
333 2,
334 $reloadedUser->getEditCount(),
335 'Increasing the edit count after a fresh load leaves the object up to date.'
336 );
337 }
338
344 public function testOptions() {
345 $user = $this->getMutableTestUser()->getUser();
346
347 $user->setOption( 'userjs-someoption', 'test' );
348 $user->setOption( 'rclimit', 200 );
349 $user->saveSettings();
350
351 $user = User::newFromName( $user->getName() );
352 $user->load( User::READ_LATEST );
353 $this->assertEquals( 'test', $user->getOption( 'userjs-someoption' ) );
354 $this->assertEquals( 200, $user->getOption( 'rclimit' ) );
355
356 $user = User::newFromName( $user->getName() );
357 MediaWikiServices::getInstance()->getMainWANObjectCache()->clearProcessCache();
358 $this->assertEquals( 'test', $user->getOption( 'userjs-someoption' ) );
359 $this->assertEquals( 200, $user->getOption( 'rclimit' ) );
360 }
361
367 public function testAnonOptions() {
368 global $wgDefaultUserOptions;
369 $this->user->setOption( 'userjs-someoption', 'test' );
370 $this->assertEquals( $wgDefaultUserOptions['rclimit'], $this->user->getOption( 'rclimit' ) );
371 $this->assertEquals( 'test', $this->user->getOption( 'userjs-someoption' ) );
372 }
373
383 public function testCheckPasswordValidity() {
384 $this->setMwGlobals( [
385 'wgPasswordPolicy' => [
386 'policies' => [
387 'sysop' => [
388 'MinimalPasswordLength' => 8,
389 'MinimumPasswordLengthToLogin' => 1,
390 'PasswordCannotMatchUsername' => 1,
391 ],
392 'default' => [
393 'MinimalPasswordLength' => 6,
394 'PasswordCannotMatchUsername' => true,
395 'PasswordCannotMatchBlacklist' => true,
396 'MaximalPasswordLength' => 40,
397 ],
398 ],
399 'checks' => [
400 'MinimalPasswordLength' => 'PasswordPolicyChecks::checkMinimalPasswordLength',
401 'MinimumPasswordLengthToLogin' => 'PasswordPolicyChecks::checkMinimumPasswordLengthToLogin',
402 'PasswordCannotMatchUsername' => 'PasswordPolicyChecks::checkPasswordCannotMatchUsername',
403 'PasswordCannotMatchBlacklist' => 'PasswordPolicyChecks::checkPasswordCannotMatchBlacklist',
404 'MaximalPasswordLength' => 'PasswordPolicyChecks::checkMaximalPasswordLength',
405 ],
406 ],
407 ] );
408
409 $user = static::getTestUser()->getUser();
410
411 // Sanity
412 $this->assertTrue( $user->isValidPassword( 'Password1234' ) );
413
414 // Minimum length
415 $this->assertFalse( $user->isValidPassword( 'a' ) );
416 $this->assertFalse( $user->checkPasswordValidity( 'a' )->isGood() );
417 $this->assertTrue( $user->checkPasswordValidity( 'a' )->isOK() );
418 $this->assertEquals( 'passwordtooshort', $user->getPasswordValidity( 'a' ) );
419
420 // Maximum length
421 $longPass = str_repeat( 'a', 41 );
422 $this->assertFalse( $user->isValidPassword( $longPass ) );
423 $this->assertFalse( $user->checkPasswordValidity( $longPass )->isGood() );
424 $this->assertFalse( $user->checkPasswordValidity( $longPass )->isOK() );
425 $this->assertEquals( 'passwordtoolong', $user->getPasswordValidity( $longPass ) );
426
427 // Matches username
428 $this->assertFalse( $user->checkPasswordValidity( $user->getName() )->isGood() );
429 $this->assertTrue( $user->checkPasswordValidity( $user->getName() )->isOK() );
430 $this->assertEquals( 'password-name-match', $user->getPasswordValidity( $user->getName() ) );
431
432 // On the forbidden list
433 $user = User::newFromName( 'Useruser' );
434 $this->assertFalse( $user->checkPasswordValidity( 'Passpass' )->isGood() );
435 $this->assertEquals( 'password-login-forbidden', $user->getPasswordValidity( 'Passpass' ) );
436 }
437
442 public function testGetCanonicalName( $name, $expectedArray ) {
443 // fake interwiki map for the 'Interwiki prefix' testcase
444 $this->mergeMwGlobalArrayValue( 'wgHooks', [
445 'InterwikiLoadPrefix' => [
446 function ( $prefix, &$iwdata ) {
447 if ( $prefix === 'interwiki' ) {
448 $iwdata = [
449 'iw_url' => 'http://example.com/',
450 'iw_local' => 0,
451 'iw_trans' => 0,
452 ];
453 return false;
454 }
455 },
456 ],
457 ] );
458
459 foreach ( $expectedArray as $validate => $expected ) {
460 $this->assertEquals(
461 $expected,
462 User::getCanonicalName( $name, $validate === 'false' ? false : $validate ), $validate );
463 }
464 }
465
466 public static function provideGetCanonicalName() {
467 return [
468 'Leading space' => [ ' Leading space', [ 'creatable' => 'Leading space' ] ],
469 'Trailing space ' => [ 'Trailing space ', [ 'creatable' => 'Trailing space' ] ],
470 'Namespace prefix' => [ 'Talk:Username', [ 'creatable' => false, 'usable' => false,
471 'valid' => false, 'false' => 'Talk:Username' ] ],
472 'Interwiki prefix' => [ 'interwiki:Username', [ 'creatable' => false, 'usable' => false,
473 'valid' => false, 'false' => 'Interwiki:Username' ] ],
474 'With hash' => [ 'name with # hash', [ 'creatable' => false, 'usable' => false ] ],
475 'Multi spaces' => [ 'Multi spaces', [ 'creatable' => 'Multi spaces',
476 'usable' => 'Multi spaces' ] ],
477 'Lowercase' => [ 'lowercase', [ 'creatable' => 'Lowercase' ] ],
478 'Invalid character' => [ 'in[]valid', [ 'creatable' => false, 'usable' => false,
479 'valid' => false, 'false' => 'In[]valid' ] ],
480 'With slash' => [ 'with / slash', [ 'creatable' => false, 'usable' => false, 'valid' => false,
481 'false' => 'With / slash' ] ],
482 ];
483 }
484
488 public function testEquals() {
489 $first = $this->getMutableTestUser()->getUser();
490 $second = User::newFromName( $first->getName() );
491
492 $this->assertTrue( $first->equals( $first ) );
493 $this->assertTrue( $first->equals( $second ) );
494 $this->assertTrue( $second->equals( $first ) );
495
496 $third = $this->getMutableTestUser()->getUser();
497 $fourth = $this->getMutableTestUser()->getUser();
498
499 $this->assertFalse( $third->equals( $fourth ) );
500 $this->assertFalse( $fourth->equals( $third ) );
501
502 // Test users loaded from db with id
503 $user = $this->getMutableTestUser()->getUser();
504 $fifth = User::newFromId( $user->getId() );
505 $sixth = User::newFromName( $user->getName() );
506 $this->assertTrue( $fifth->equals( $sixth ) );
507 }
508
512 public function testGetId() {
513 $user = static::getTestUser()->getUser();
514 $this->assertTrue( $user->getId() > 0 );
515 }
516
521 public function testLoggedIn() {
522 $user = $this->getMutableTestUser()->getUser();
523 $this->assertTrue( $user->isLoggedIn() );
524 $this->assertFalse( $user->isAnon() );
525
526 // Non-existent users are perceived as anonymous
527 $user = User::newFromName( 'UTNonexistent' );
528 $this->assertFalse( $user->isLoggedIn() );
529 $this->assertTrue( $user->isAnon() );
530
531 $user = new User;
532 $this->assertFalse( $user->isLoggedIn() );
533 $this->assertTrue( $user->isAnon() );
534 }
535
539 public function testCheckAndSetTouched() {
540 $user = $this->getMutableTestUser()->getUser();
541 $user = TestingAccessWrapper::newFromObject( $user );
542 $this->assertTrue( $user->isLoggedIn() );
543
544 $touched = $user->getDBTouched();
545 $this->assertTrue(
546 $user->checkAndSetTouched(), "checkAndSetTouched() succeded" );
547 $this->assertGreaterThan(
548 $touched, $user->getDBTouched(), "user_touched increased with casOnTouched()" );
549
550 $touched = $user->getDBTouched();
551 $this->assertTrue(
552 $user->checkAndSetTouched(), "checkAndSetTouched() succeded #2" );
553 $this->assertGreaterThan(
554 $touched, $user->getDBTouched(), "user_touched increased with casOnTouched() #2" );
555 }
556
560 public function testFindUsersByGroup() {
561 $users = User::findUsersByGroup( [] );
562 $this->assertEquals( 0, iterator_count( $users ) );
563
564 $users = User::findUsersByGroup( 'foo' );
565 $this->assertEquals( 0, iterator_count( $users ) );
566
567 $user = $this->getMutableTestUser( [ 'foo' ] )->getUser();
568 $users = User::findUsersByGroup( 'foo' );
569 $this->assertEquals( 1, iterator_count( $users ) );
570 $users->rewind();
571 $this->assertTrue( $user->equals( $users->current() ) );
572
573 // arguments have OR relationship
574 $user2 = $this->getMutableTestUser( [ 'bar' ] )->getUser();
575 $users = User::findUsersByGroup( [ 'foo', 'bar' ] );
576 $this->assertEquals( 2, iterator_count( $users ) );
577 $users->rewind();
578 $this->assertTrue( $user->equals( $users->current() ) );
579 $users->next();
580 $this->assertTrue( $user2->equals( $users->current() ) );
581
582 // users are not duplicated
583 $user = $this->getMutableTestUser( [ 'baz', 'boom' ] )->getUser();
584 $users = User::findUsersByGroup( [ 'baz', 'boom' ] );
585 $this->assertEquals( 1, iterator_count( $users ) );
586 $users->rewind();
587 $this->assertTrue( $user->equals( $users->current() ) );
588 }
589
595 public function testAutoblockCookies() {
596 // Set up the bits of global configuration that we use.
597 $this->setMwGlobals( [
598 'wgCookieSetOnAutoblock' => true,
599 'wgCookiePrefix' => 'wmsitetitle',
600 'wgSecretKey' => MWCryptRand::generateHex( 64, true ),
601 ] );
602
603 // 1. Log in a test user, and block them.
604 $user1tmp = $this->getTestUser()->getUser();
605 $request1 = new FauxRequest();
606 $request1->getSession()->setUser( $user1tmp );
607 $expiryFiveHours = wfTimestamp() + ( 5 * 60 * 60 );
608 $block = new Block( [
609 'enableAutoblock' => true,
610 'expiry' => wfTimestamp( TS_MW, $expiryFiveHours ),
611 ] );
612 $block->setTarget( $user1tmp );
613 $block->insert();
614 $user1 = User::newFromSession( $request1 );
615 $user1->mBlock = $block;
616 $user1->load();
617
618 // Confirm that the block has been applied as required.
619 $this->assertTrue( $user1->isLoggedIn() );
620 $this->assertTrue( $user1->isBlocked() );
621 $this->assertEquals( Block::TYPE_USER, $block->getType() );
622 $this->assertTrue( $block->isAutoblocking() );
623 $this->assertGreaterThanOrEqual( 1, $block->getId() );
624
625 // Test for the desired cookie name, value, and expiry.
626 $cookies = $request1->response()->getCookies();
627 $this->assertArrayHasKey( 'wmsitetitleBlockID', $cookies );
628 $this->assertEquals( $expiryFiveHours, $cookies['wmsitetitleBlockID']['expire'] );
629 $cookieValue = Block::getIdFromCookieValue( $cookies['wmsitetitleBlockID']['value'] );
630 $this->assertEquals( $block->getId(), $cookieValue );
631
632 // 2. Create a new request, set the cookies, and see if the (anon) user is blocked.
633 $request2 = new FauxRequest();
634 $request2->setCookie( 'BlockID', $block->getCookieValue() );
635 $user2 = User::newFromSession( $request2 );
636 $user2->load();
637 $this->assertNotEquals( $user1->getId(), $user2->getId() );
638 $this->assertNotEquals( $user1->getToken(), $user2->getToken() );
639 $this->assertTrue( $user2->isAnon() );
640 $this->assertFalse( $user2->isLoggedIn() );
641 $this->assertTrue( $user2->isBlocked() );
642 $this->assertEquals( true, $user2->getBlock()->isAutoblocking() ); // Non-strict type-check.
643 // Can't directly compare the objects becuase of member type differences.
644 // One day this will work: $this->assertEquals( $block, $user2->getBlock() );
645 $this->assertEquals( $block->getId(), $user2->getBlock()->getId() );
646 $this->assertEquals( $block->getExpiry(), $user2->getBlock()->getExpiry() );
647
648 // 3. Finally, set up a request as a new user, and the block should still be applied.
649 $user3tmp = $this->getTestUser()->getUser();
650 $request3 = new FauxRequest();
651 $request3->getSession()->setUser( $user3tmp );
652 $request3->setCookie( 'BlockID', $block->getId() );
653 $user3 = User::newFromSession( $request3 );
654 $user3->load();
655 $this->assertTrue( $user3->isLoggedIn() );
656 $this->assertTrue( $user3->isBlocked() );
657 $this->assertEquals( true, $user3->getBlock()->isAutoblocking() ); // Non-strict type-check.
658
659 // Clean up.
660 $block->delete();
661 }
662
667 public function testAutoblockCookiesDisabled() {
668 // Set up the bits of global configuration that we use.
669 $this->setMwGlobals( [
670 'wgCookieSetOnAutoblock' => false,
671 'wgCookiePrefix' => 'wm_no_cookies',
672 'wgSecretKey' => MWCryptRand::generateHex( 64, true ),
673 ] );
674
675 // 1. Log in a test user, and block them.
676 $testUser = $this->getTestUser()->getUser();
677 $request1 = new FauxRequest();
678 $request1->getSession()->setUser( $testUser );
679 $block = new Block( [ 'enableAutoblock' => true ] );
680 $block->setTarget( $testUser );
681 $block->insert();
682 $user = User::newFromSession( $request1 );
683 $user->mBlock = $block;
684 $user->load();
685
686 // 2. Test that the cookie IS NOT present.
687 $this->assertTrue( $user->isLoggedIn() );
688 $this->assertTrue( $user->isBlocked() );
689 $this->assertEquals( Block::TYPE_USER, $block->getType() );
690 $this->assertTrue( $block->isAutoblocking() );
691 $this->assertGreaterThanOrEqual( 1, $user->getBlockId() );
692 $this->assertGreaterThanOrEqual( $block->getId(), $user->getBlockId() );
693 $cookies = $request1->response()->getCookies();
694 $this->assertArrayNotHasKey( 'wm_no_cookiesBlockID', $cookies );
695
696 // Clean up.
697 $block->delete();
698 }
699
705 public function testAutoblockCookieInfiniteExpiry() {
706 $this->setMwGlobals( [
707 'wgCookieSetOnAutoblock' => true,
708 'wgCookiePrefix' => 'wm_infinite_block',
709 'wgSecretKey' => MWCryptRand::generateHex( 64, true ),
710 ] );
711 // 1. Log in a test user, and block them indefinitely.
712 $user1Tmp = $this->getTestUser()->getUser();
713 $request1 = new FauxRequest();
714 $request1->getSession()->setUser( $user1Tmp );
715 $block = new Block( [ 'enableAutoblock' => true, 'expiry' => 'infinity' ] );
716 $block->setTarget( $user1Tmp );
717 $block->insert();
718 $user1 = User::newFromSession( $request1 );
719 $user1->mBlock = $block;
720 $user1->load();
721
722 // 2. Test the cookie's expiry timestamp.
723 $this->assertTrue( $user1->isLoggedIn() );
724 $this->assertTrue( $user1->isBlocked() );
725 $this->assertEquals( Block::TYPE_USER, $block->getType() );
726 $this->assertTrue( $block->isAutoblocking() );
727 $this->assertGreaterThanOrEqual( 1, $user1->getBlockId() );
728 $cookies = $request1->response()->getCookies();
729 // Test the cookie's expiry to the nearest minute.
730 $this->assertArrayHasKey( 'wm_infinite_blockBlockID', $cookies );
731 $expOneDay = wfTimestamp() + ( 24 * 60 * 60 );
732 // Check for expiry dates in a 10-second window, to account for slow testing.
733 $this->assertEquals(
734 $expOneDay,
735 $cookies['wm_infinite_blockBlockID']['expire'],
736 'Expiry date',
737 5.0
738 );
739
740 // 3. Change the block's expiry (to 2 hours), and the cookie's should be changed also.
741 $newExpiry = wfTimestamp() + 2 * 60 * 60;
742 $block->mExpiry = wfTimestamp( TS_MW, $newExpiry );
743 $block->update();
744 $user2tmp = $this->getTestUser()->getUser();
745 $request2 = new FauxRequest();
746 $request2->getSession()->setUser( $user2tmp );
747 $user2 = User::newFromSession( $request2 );
748 $user2->mBlock = $block;
749 $user2->load();
750 $cookies = $request2->response()->getCookies();
751 $this->assertEquals( wfTimestamp( TS_MW, $newExpiry ), $block->getExpiry() );
752 $this->assertEquals( $newExpiry, $cookies['wm_infinite_blockBlockID']['expire'] );
753
754 // Clean up.
755 $block->delete();
756 }
757
758 public function testSoftBlockRanges() {
759 $setSessionUser = function ( User $user, WebRequest $request ) {
760 $this->setMwGlobals( 'wgUser', $user );
761 RequestContext::getMain()->setUser( $user );
762 RequestContext::getMain()->setRequest( $request );
763 TestingAccessWrapper::newFromObject( $user )->mRequest = $request;
764 $request->getSession()->setUser( $user );
765 };
766 $this->setMwGlobals( 'wgSoftBlockRanges', [ '10.0.0.0/8' ] );
767
768 // IP isn't in $wgSoftBlockRanges
769 $wgUser = new User();
770 $request = new FauxRequest();
771 $request->setIP( '192.168.0.1' );
772 $setSessionUser( $wgUser, $request );
773 $this->assertNull( $wgUser->getBlock() );
774
775 // IP is in $wgSoftBlockRanges
776 $wgUser = new User();
777 $request = new FauxRequest();
778 $request->setIP( '10.20.30.40' );
779 $setSessionUser( $wgUser, $request );
780 $block = $wgUser->getBlock();
781 $this->assertInstanceOf( Block::class, $block );
782 $this->assertSame( 'wgSoftBlockRanges', $block->getSystemBlockType() );
783
784 // Make sure the block is really soft
785 $wgUser = $this->getTestUser()->getUser();
786 $request = new FauxRequest();
787 $request->setIP( '10.20.30.40' );
788 $setSessionUser( $wgUser, $request );
789 $this->assertFalse( $wgUser->isAnon(), 'sanity check' );
790 $this->assertNull( $wgUser->getBlock() );
791 }
792
796 public function testAutoblockCookieInauthentic() {
797 // Set up the bits of global configuration that we use.
798 $this->setMwGlobals( [
799 'wgCookieSetOnAutoblock' => true,
800 'wgCookiePrefix' => 'wmsitetitle',
801 'wgSecretKey' => MWCryptRand::generateHex( 64, true ),
802 ] );
803
804 // 1. Log in a blocked test user.
805 $user1tmp = $this->getTestUser()->getUser();
806 $request1 = new FauxRequest();
807 $request1->getSession()->setUser( $user1tmp );
808 $block = new Block( [ 'enableAutoblock' => true ] );
809 $block->setTarget( $user1tmp );
810 $block->insert();
811 $user1 = User::newFromSession( $request1 );
812 $user1->mBlock = $block;
813 $user1->load();
814
815 // 2. Create a new request, set the cookie to an invalid value, and make sure the (anon)
816 // user not blocked.
817 $request2 = new FauxRequest();
818 $request2->setCookie( 'BlockID', $block->getId() . '!zzzzzzz' );
819 $user2 = User::newFromSession( $request2 );
820 $user2->load();
821 $this->assertTrue( $user2->isAnon() );
822 $this->assertFalse( $user2->isLoggedIn() );
823 $this->assertFalse( $user2->isBlocked() );
824
825 // Clean up.
826 $block->delete();
827 }
828
833 public function testAutoblockCookieNoSecretKey() {
834 // Set up the bits of global configuration that we use.
835 $this->setMwGlobals( [
836 'wgCookieSetOnAutoblock' => true,
837 'wgCookiePrefix' => 'wmsitetitle',
838 'wgSecretKey' => null,
839 ] );
840
841 // 1. Log in a blocked test user.
842 $user1tmp = $this->getTestUser()->getUser();
843 $request1 = new FauxRequest();
844 $request1->getSession()->setUser( $user1tmp );
845 $block = new Block( [ 'enableAutoblock' => true ] );
846 $block->setTarget( $user1tmp );
847 $block->insert();
848 $user1 = User::newFromSession( $request1 );
849 $user1->mBlock = $block;
850 $user1->load();
851 $this->assertTrue( $user1->isBlocked() );
852
853 // 2. Create a new request, set the cookie to just the block ID, and the user should
854 // still get blocked when they log in again.
855 $request2 = new FauxRequest();
856 $request2->setCookie( 'BlockID', $block->getId() );
857 $user2 = User::newFromSession( $request2 );
858 $user2->load();
859 $this->assertNotEquals( $user1->getId(), $user2->getId() );
860 $this->assertNotEquals( $user1->getToken(), $user2->getToken() );
861 $this->assertTrue( $user2->isAnon() );
862 $this->assertFalse( $user2->isLoggedIn() );
863 $this->assertTrue( $user2->isBlocked() );
864 $this->assertEquals( true, $user2->getBlock()->isAutoblocking() ); // Non-strict type-check.
865
866 // Clean up.
867 $block->delete();
868 }
869
870 public function testIsPingLimitable() {
871 $request = new FauxRequest();
872 $request->setIP( '1.2.3.4' );
873 $user = User::newFromSession( $request );
874
875 $this->setMwGlobals( 'wgRateLimitsExcludedIPs', [] );
876 $this->assertTrue( $user->isPingLimitable() );
877
878 $this->setMwGlobals( 'wgRateLimitsExcludedIPs', [ '1.2.3.4' ] );
879 $this->assertFalse( $user->isPingLimitable() );
880
881 $this->setMwGlobals( 'wgRateLimitsExcludedIPs', [ '1.2.3.0/8' ] );
882 $this->assertFalse( $user->isPingLimitable() );
883
884 $this->setMwGlobals( 'wgRateLimitsExcludedIPs', [] );
885 $noRateLimitUser = $this->getMockBuilder( User::class )->disableOriginalConstructor()
886 ->setMethods( [ 'getIP', 'getRights' ] )->getMock();
887 $noRateLimitUser->expects( $this->any() )->method( 'getIP' )->willReturn( '1.2.3.4' );
888 $noRateLimitUser->expects( $this->any() )->method( 'getRights' )->willReturn( [ 'noratelimit' ] );
889 $this->assertFalse( $noRateLimitUser->isPingLimitable() );
890 }
891
892 public function provideExperienceLevel() {
893 return [
894 [ 2, 2, 'newcomer' ],
895 [ 12, 3, 'newcomer' ],
896 [ 8, 5, 'newcomer' ],
897 [ 15, 10, 'learner' ],
898 [ 450, 20, 'learner' ],
899 [ 460, 33, 'learner' ],
900 [ 525, 28, 'learner' ],
901 [ 538, 33, 'experienced' ],
902 ];
903 }
904
908 public function testExperienceLevel( $editCount, $memberSince, $expLevel ) {
909 $this->setMwGlobals( [
910 'wgLearnerEdits' => 10,
911 'wgLearnerMemberSince' => 4,
912 'wgExperiencedUserEdits' => 500,
913 'wgExperiencedUserMemberSince' => 30,
914 ] );
915
916 $db = wfGetDB( DB_MASTER );
917
918 $data = new stdClass();
919 $data->user_id = 1;
920 $data->user_name = 'name';
921 $data->user_real_name = 'Real Name';
922 $data->user_touched = 1;
923 $data->user_token = 'token';
924 $data->user_email = 'a@a.a';
925 $data->user_email_authenticated = null;
926 $data->user_email_token = 'token';
927 $data->user_email_token_expires = null;
928 $data->user_editcount = $editCount;
929 $data->user_registration = $db->timestamp( time() - $memberSince * 86400 );
930 $user = User::newFromRow( $data );
931
932 $this->assertEquals( $expLevel, $user->getExperienceLevel() );
933 }
934
935 public function testExperienceLevelAnon() {
936 $user = User::newFromName( '10.11.12.13', false );
937
938 $this->assertFalse( $user->getExperienceLevel() );
939 }
940
941 public static function provideIsLocallBlockedProxy() {
942 return [
943 [ '1.2.3.4', '1.2.3.4' ],
944 [ '1.2.3.4', '1.2.3.0/16' ],
945 ];
946 }
947
952 public function testIsLocallyBlockedProxy( $ip, $blockListEntry ) {
953 $this->setMwGlobals(
954 'wgProxyList', []
955 );
956 $this->assertFalse( User::isLocallyBlockedProxy( $ip ) );
957
958 $this->setMwGlobals(
959 'wgProxyList',
960 [
961 $blockListEntry
962 ]
963 );
964 $this->assertTrue( User::isLocallyBlockedProxy( $ip ) );
965
966 $this->setMwGlobals(
967 'wgProxyList',
968 [
969 'test' => $blockListEntry
970 ]
971 );
972 $this->assertTrue( User::isLocallyBlockedProxy( $ip ) );
973
974 $this->hideDeprecated(
975 'IP addresses in the keys of $wgProxyList (found the following IP ' .
976 'addresses in keys: ' . $blockListEntry . ', please move them to values)'
977 );
978 $this->setMwGlobals(
979 'wgProxyList',
980 [
981 $blockListEntry => 'test'
982 ]
983 );
984 $this->assertTrue( User::isLocallyBlockedProxy( $ip ) );
985 }
986}
any
they could even be mouse clicks or menu items whatever suits your program You should also get your if any
Definition COPYING.txt:326
$wgDefaultUserOptions
$wgDefaultUserOptions
Settings added to this array will override the default globals for the user preferences used by anony...
Definition DefaultSettings.php:4862
$wgGroupPermissions
$wgGroupPermissions
Permission keys given to users in each group.
Definition DefaultSettings.php:5129
$wgRevokePermissions
$wgRevokePermissions
Permission keys revoked from users in each group.
Definition DefaultSettings.php:5268
wfGetDB
wfGetDB( $db, $groups=[], $wiki=false)
Get a Database object.
Definition GlobalFunctions.php:2857
wfTimestamp
wfTimestamp( $outputtype=TS_UNIX, $ts=0)
Get a timestamp string in one of various formats.
Definition GlobalFunctions.php:2041
$wgUser
$wgUser
Definition Setup.php:817
Block\getIdFromCookieValue
static getIdFromCookieValue( $cookieValue)
Get the stored ID from the 'BlockID' cookie.
Definition Block.php:1517
Block\TYPE_USER
const TYPE_USER
Definition Block.php:83
ContentHandler\makeContent
static makeContent( $text, Title $title=null, $modelId=null, $format=null)
Convenience function for creating a Content object from a given textual representation.
Definition ContentHandler.php:129
FauxRequest
WebRequest clone which takes values from a provided array.
Definition FauxRequest.php:33
MWCryptRand\generateHex
static generateHex( $chars, $forceStrong=false)
Generate a run of (ideally) cryptographically random data and return it in hexadecimal string format.
Definition MWCryptRand.php:76
MediaWikiTestCase\$users
static TestUser[] $users
Definition MediaWikiTestCase.php:44
MediaWikiTestCase\$db
Database $db
Primary database.
Definition MediaWikiTestCase.php:52
MediaWikiTestCase\getMutableTestUser
static getMutableTestUser( $groups=[])
Convenience method for getting a mutable test user.
Definition MediaWikiTestCase.php:160
MediaWikiTestCase\mergeMwGlobalArrayValue
mergeMwGlobalArrayValue( $name, $values)
Merges the given values into a MW global array variable.
Definition MediaWikiTestCase.php:807
MediaWikiTestCase\setMwGlobals
setMwGlobals( $pairs, $value=null)
Sets a global, maintaining a stashed version of the previous global to be restored in tearDown.
Definition MediaWikiTestCase.php:672
MediaWikiTestCase\hideDeprecated
hideDeprecated( $function)
Don't throw a warning if $function is deprecated and called later.
Definition MediaWikiTestCase.php:1467
MediaWikiTestCase\getTestUser
static getTestUser( $groups=[])
Convenience method for getting an immutable test user.
Definition MediaWikiTestCase.php:148
MediaWiki\MediaWikiServices
MediaWikiServices is the service locator for the application scope of MediaWiki.
Definition MediaWikiServices.php:78
RequestContext\getMain
static getMain()
Static methods.
Definition RequestContext.php:470
UserTest
Database.
Definition UserTest.php:12
UserTest\testUserPermissions
testUserPermissions()
User::getRights.
Definition UserTest.php:89
UserTest\testGetGroupsWithPermission
testGetGroupsWithPermission( $expected, $right)
provideGetGroupsWithPermission User::getGroupsWithPermission
Definition UserTest.php:150
UserTest\testExperienceLevelAnon
testExperienceLevelAnon()
Definition UserTest.php:935
UserTest\testUserGetRightsHooks
testUserGetRightsHooks()
User::getRights.
Definition UserTest.php:100
UserTest\testOptions
testOptions()
Test changing user options.
Definition UserTest.php:344
UserTest\testGetCanonicalName
testGetCanonicalName( $name, $expectedArray)
User::getCanonicalName() provideGetCanonicalName.
Definition UserTest.php:442
UserTest\$user
User $user
Definition UserTest.php:16
UserTest\testAutoblockCookies
testAutoblockCookies()
When a user is autoblocked a cookie is set with which to track them in case they log out and change I...
Definition UserTest.php:595
UserTest\testAutoblockCookieInfiniteExpiry
testAutoblockCookieInfiniteExpiry()
When a user is autoblocked and a cookie is set to track them, the expiry time of the cookie should ma...
Definition UserTest.php:705
UserTest\testAutoblockCookieInauthentic
testAutoblockCookieInauthentic()
Test that a modified BlockID cookie doesn't actually load the relevant block (T152951).
Definition UserTest.php:796
UserTest\testExperienceLevel
testExperienceLevel( $editCount, $memberSince, $expLevel)
provideExperienceLevel
Definition UserTest.php:908
UserTest\testIsPingLimitable
testIsPingLimitable()
Definition UserTest.php:870
UserTest\provideGetGroupsWithPermission
static provideGetGroupsWithPermission()
Definition UserTest.php:158
UserTest\testIsValidUserName
testIsValidUserName( $username, $result, $message)
provideUserNames User::isValidUserName
Definition UserTest.php:208
UserTest\testIsIP
testIsIP( $value, $result, $message)
provideIPs User::isIP
Definition UserTest.php:183
UserTest\testGetEditCount
testGetEditCount()
Test User::editCount medium User::getEditCount.
Definition UserTest.php:268
UserTest\testAutoblockCookieNoSecretKey
testAutoblockCookieNoSecretKey()
The BlockID cookie is normally verified with a HMAC, but not if wgSecretKey is not set.
Definition UserTest.php:833
UserTest\testSoftBlockRanges
testSoftBlockRanges()
Definition UserTest.php:758
UserTest\provideGetCanonicalName
static provideGetCanonicalName()
Definition UserTest.php:466
UserTest\testAnonOptions
testAnonOptions()
T39963 Make sure defaults are loaded when setOption is called.
Definition UserTest.php:367
UserTest\setUpPermissionGlobals
setUpPermissionGlobals()
Definition UserTest.php:31
UserTest\testIncEditCount
testIncEditCount()
Test User::editCount medium User::incEditCount.
Definition UserTest.php:325
UserTest\testGetEditCountForAnons
testGetEditCountForAnons()
Test User::editCount medium User::getEditCount.
Definition UserTest.php:304
UserTest\testRevokePermissions
testRevokePermissions()
User::getGroupPermissions.
Definition UserTest.php:78
UserTest\provideIsLocallBlockedProxy
static provideIsLocallBlockedProxy()
Definition UserTest.php:941
UserTest\provideExperienceLevel
provideExperienceLevel()
Definition UserTest.php:892
UserTest\testGetId
testGetId()
User::getId.
Definition UserTest.php:512
UserTest\testEquals
testEquals()
User::equals.
Definition UserTest.php:488
UserTest\testCheckPasswordValidity
testCheckPasswordValidity()
Test password validity checks.
Definition UserTest.php:383
UserTest\testIsLocallyBlockedProxy
testIsLocallyBlockedProxy( $ip, $blockListEntry)
provideIsLocallBlockedProxy User::isLocallyBlockedProxy
Definition UserTest.php:952
UserTest\testAllRightsWithMessage
testAllRightsWithMessage()
Test, if for all rights a right- message exist, which is used on Special:ListGroupRights as help text...
Definition UserTest.php:240
UserTest\testCheckAndSetTouched
testCheckAndSetTouched()
User::checkAndSetTouched.
Definition UserTest.php:539
UserTest\testLoggedIn
testLoggedIn()
User::isLoggedIn User::isAnon.
Definition UserTest.php:521
UserTest\testAutoblockCookiesDisabled
testAutoblockCookiesDisabled()
Make sure that no cookie is set to track autoblocked users when $wgCookieSetOnAutoblock is false.
Definition UserTest.php:667
UserTest\testGroupPermissions
testGroupPermissions()
User::getGroupPermissions.
Definition UserTest.php:61
UserTest\provideIPs
static provideIPs()
Definition UserTest.php:187
UserTest\testFindUsersByGroup
testFindUsersByGroup()
User::findUsersByGroup.
Definition UserTest.php:560
UserTest\provideUserNames
static provideUserNames()
Definition UserTest.php:212
User
The User object encapsulates all of the user-specific settings (user_id, name, rights,...
Definition User.php:51
User\setOption
setOption( $oname, $val)
Set the given option for a user.
Definition User.php:2969
User\incEditCount
incEditCount()
Deferred version of incEditCountImmediate()
Definition User.php:5110
WebRequest
The WebRequest class encapsulates getting at data passed in the URL or via a POSTed form stripping il...
Definition WebRequest.php:38
WikiPage\factory
static factory(Title $title)
Create a WikiPage object of the appropriate class for the given title.
Definition WikiPage.php:121
Wikimedia\Rdbms\Database\timestamp
timestamp( $ts=0)
Convert a timestamp in one of the formats accepted by wfTimestamp() to the format used for inserting ...
Definition Database.php:3081
$request
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
Definition hooks.txt:2775
$username
this hook is for auditing only or null if authentication failed before getting that far $username
Definition hooks.txt:783
false
processing should stop and the error should be shown to the user * false
Definition hooks.txt:187
MediaWiki
A helper class for throttling authentication attempts.
DB_MASTER
const DB_MASTER
Definition defines.php:26