Merge branch '5.3-dev' into ghactions-codestyle

Author: laoneo

tests/System/integration/administrator/components/com_users/Mfa.cy.js

@@ -1,8 +1,8 @@
 import { TOTP } from 'totp-generator';
 
-afterEach(() => cy.db_getUserId().then((uid) => cy.task('queryDB', `DELETE FROM #__user_mfa WHERE user_id = ${uid}`)));
-
 describe('Test in backend that the user', () => {
+  afterEach(() => cy.db_getUserId().then((uid) => cy.task('queryDB', `DELETE FROM #__user_mfa WHERE user_id = ${uid}`)));
+
   it('can login with Multi-factor Authentication (email)', () => {
     cy.doAdministratorLogin();
     cy.visit('/administrator/index.php?option=com_users&view=users');
@@ -80,6 +80,44 @@ describe('Test in backend that the user', () => {
     cy.get('#com-users-methods-reset-message').contains('not enabled');
   });
 
+  it('can login with Multi-factor Authentication (passkey)', { browser: '!firefox' }, () => {
+    Cypress.automation('remote:debugger:protocol', { command: 'WebAuthn.enable', params: {} }).then(() => {
+      Cypress.automation('remote:debugger:protocol', {
+        command: 'WebAuthn.addVirtualAuthenticator',
+        params: {
+          options: {
+            protocol: 'ctap2', transport: 'internal', hasResidentKey: true, hasUserVerification: true, isUserVerified: true,
+          },
+        },
+      });
+    });
+    cy.doAdministratorLogin();
+    cy.visit('/administrator/index.php?option=com_users&view=users');
+    cy.get('.header-profile:visible').click();
+    cy.get('.header-profile a.dropdown-item').contains('Edit Account').click();
+    cy.get('#myTab div[role="tablist"] button[aria-controls="multifactorauth"]').click();
+    cy.get('.com-users-methods-list-method-name-webauthn a.com-users-methods-list-method-addnew').click();
+    cy.get('#com-users-method-edit-title').clear().type('Test Passkey');
+    cy.get('#toolbar-user-mfa-edit-save').click();
+    cy.get('.com-users-methods-list-method-name-webauthn .com-users-methods-list-method-record').contains('Test Passkey');
+    cy.clickToolbarButton('Cancel');
+    cy.doAdministratorLogout();
+    cy.get('#mod-login-username').type(Cypress.env('username'));
+    cy.get('#mod-login-password').type(Cypress.env('password'));
+    cy.get('#form-login').submit();
+    cy.get('#users-mfa-title').contains('Passkey');
+    cy.get('#toolbar-user-mfa-submit').click();
+    cy.visit('/administrator/index.php?option=com_users&view=users');
+    cy.get('.header-profile:visible').click();
+    cy.get('.header-profile a.dropdown-item').contains('Edit Account').click();
+    cy.get('#myTab div[role="tablist"] button[aria-controls="multifactorauth"]').click();
+    cy.get('#com-users-methods-reset-message').contains('is enabled');
+    cy.get('.com-users-methods-list-method-name-webauthn a.com-users-methods-list-method-record-delete').click();
+    cy.on('window:confirm', (text) => expect(text).to.contains('Are you sure you want to delete?'));
+    cy.get('#com-users-methods-reset-message').contains('not enabled');
+    cy.then(() => Cypress.automation('remote:debugger:protocol', { command: 'WebAuthn.disable', params: {} }));
+  });
+
   it('can login with Multi-factor Authentication (backup codes)', () => {
     cy.doAdministratorLogin();
     cy.visit('/administrator/index.php?option=com_users&view=users');

tests/System/integration/install/Installation.cy.js

@@ -28,9 +28,6 @@ describe('Install Joomla', () => {
     cy.setErrorReportingToDevelopment();
     cy.doAdministratorLogout();
 
-    // Update to the correct secret for the API tests because of the bearer token
-    cy.config_setParameter('secret', 'tEstValue');
-
     // Setup mailing
     cy.config_setParameter('mailonline', true);
     cy.config_setParameter('mailer', 'smtp');

tests/System/integration/site/components/com_users/Mfa.cy.js

@@ -1,8 +1,8 @@
 import { TOTP } from 'totp-generator';
 
-afterEach(() => cy.db_getUserId().then((uid) => cy.task('queryDB', `DELETE FROM #__user_mfa WHERE user_id = ${uid}`)));
-
 describe('Test in frontend that the user', () => {
+  afterEach(() => cy.db_getUserId().then((uid) => cy.task('queryDB', `DELETE FROM #__user_mfa WHERE user_id = ${uid}`)));
+
   it('can login with Multi-factor Authentication (email)', () => {
     cy.doFrontendLogin();
     cy.visit('/index.php?option=com_users&view=profile&layout=edit');
@@ -66,6 +66,37 @@ describe('Test in frontend that the user', () => {
     cy.get('#com-users-methods-reset-message').contains('not enabled');
   });
 
+  it('can login with Multi-factor Authentication (passkey)', { browser: '!firefox' }, () => {
+    Cypress.automation('remote:debugger:protocol', { command: 'WebAuthn.enable', params: {} }).then(() => {
+      Cypress.automation('remote:debugger:protocol', {
+        command: 'WebAuthn.addVirtualAuthenticator',
+        params: {
+          options: {
+            protocol: 'ctap2', transport: 'internal', hasResidentKey: true, hasUserVerification: true, isUserVerified: true,
+          },
+        },
+      });
+    });
+    cy.doFrontendLogin();
+    cy.visit('/index.php?option=com_users&view=profile&layout=edit');
+    cy.get('.com-users-methods-list-method-name-webauthn a.com-users-methods-list-method-addnew').click();
+    cy.get('#com-users-method-edit-title').clear().type('Test Passkey');
+    cy.get('#com-users-method-edit button.multifactorauth_webauthn_setup').click();
+    cy.get('.com-users-methods-list-method-name-webauthn .com-users-methods-list-method-record').contains('Test Passkey');
+    cy.doFrontendLogout();
+    cy.get('form.mod-login input[name="username"]').type(Cypress.env('username'));
+    cy.get('form.mod-login input[name="password"]').type(Cypress.env('password'));
+    cy.get('form.mod-login').submit();
+    cy.get('#users-mfa-title').contains('Passkey');
+    cy.get('#users-mfa-captive-button-submit').click();
+    cy.visit('/index.php?option=com_users&view=profile&layout=edit');
+    cy.get('#com-users-methods-reset-message').contains('is enabled');
+    cy.get('.com-users-methods-list-method-name-webauthn a.com-users-methods-list-method-record-delete').click();
+    cy.on('window:confirm', (text) => expect(text).to.contains('Are you sure you want to delete?'));
+    cy.get('#com-users-methods-reset-message').contains('not enabled');
+    cy.then(() => Cypress.automation('remote:debugger:protocol', { command: 'WebAuthn.disable', params: {} }));
+  });
+
   it('can login with Multi-factor Authentication (backup codes)', () => {
     cy.doFrontendLogin();
     cy.visit('/index.php?option=com_users&view=profile&layout=edit');

tests/System/support/commands/api.mjs

@@ -15,30 +15,20 @@ Cypress.Commands.add('api_patch', (path, body) => cy.api_getBearerToken().then((
 
 Cypress.Commands.add('api_delete', (path) => cy.api_getBearerToken().then((token) => cy.request({ method: 'DELETE', url: `/api/index.php/v1${path}`, headers: { Authorization: `Bearer ${token}` } })));
 
-Cypress.Commands.add('api_getBearerToken', () => cy.task('queryDB', "SELECT id FROM #__users WHERE username = 'api'").then((user) => {
-  if (user.length > 0) {
-    return 'c2hhMjU2OjM6ZTJmMjJlYTNlNTU0NmM1MDJhYTIzYzMwN2MxYzAwZTQ5NzJhMWRmOTUyNjY5MTk2YjE5ODJmZWMwZTcxNzgwMQ==';
-  }
-
-  return cy.db_createUser({
-    id: 3,
-    name: 'API',
-    email: '[email protected]',
-    username: 'api',
-    password: '123',
-    block: 0,
-    registerDate: '2000-01-01',
-    params: '{}',
-    group_id: 8,
-  }).then((id) => {
-    cy.task(
-      'queryDB',
-      'INSERT INTO #__user_profiles (user_id, profile_key, profile_value) VALUES '
-        + `('${id}', 'joomlatoken.token', 'dOi2m1NRrnBHlhaWK/WWxh3B5tqq1INbdf4DhUmYTI4=')`,
-    );
-    return cy.task(
-      'queryDB',
-      `INSERT INTO #__user_profiles (user_id, profile_key, profile_value) VALUES ('${id}', 'joomlatoken.enabled', 1)`,
-    );
-  }).then(() => 'c2hhMjU2OjM6ZTJmMjJlYTNlNTU0NmM1MDJhYTIzYzMwN2MxYzAwZTQ5NzJhMWRmOTUyNjY5MTk2YjE5ODJmZWMwZTcxNzgwMQ==');
-}));
+Cypress.Commands.add('api_getBearerToken', () => {
+  cy.session('apiToken', () => {
+    cy.db_getUserId().then((uid) => {
+      cy.doAdministratorLogin();
+      cy.visit(`/administrator/index.php?option=com_users&task=user.edit&id=${uid}#attrib-joomlatoken`);
+      cy.get('#fieldset-joomlatoken').then((fieldset) => {
+        if (fieldset.find('#jform_joomlatoken_reset1').length > 0) {
+          cy.get('#jform_joomlatoken_reset1').click();
+        }
+      });
+      cy.clickToolbarButton('Save');
+      cy.get('#jform_joomlatoken_token').invoke('val').then((token) => {
+        window.localStorage.setItem('authToken', token);
+      });
+    });
+  }).then(() => window.localStorage.getItem('authToken'));
+});