Merge remote-tracking branch 'origin/feat/two-factor-auth' into feat/two-factor-auth

pushpak1300 · pushpak1300 · commit 56bc4e35f883 · 2025-09-09T00:05:21.000+05:30
diff --git a/tests/Feature/Auth/AuthenticationTest.php b/tests/Feature/Auth/AuthenticationTest.php
@@ -61,20 +61,6 @@ public function test_users_with_two_factor_enabled_are_redirected_to_two_factor_
         $this->assertGuest();
     }
 
-    public function test_users_without_two_factor_enabled_login_normally()
-    {
-        $user = User::factory()->create();
-
-        $response = $this->post(route('login'), [
-            'email' => $user->email,
-            'password' => 'password',
-        ]);
-
-        $this->assertAuthenticated();
-        $response->assertRedirect(route('dashboard', absolute: false));
-        $response->assertSessionMissing('login.id');
-    }
-
     public function test_users_can_not_authenticate_with_invalid_password()
     {
         $user = User::factory()->create();
diff --git a/tests/Feature/Auth/PasswordConfirmationTest.php b/tests/Feature/Auth/PasswordConfirmationTest.php
@@ -18,6 +18,7 @@ public function test_confirm_password_screen_can_be_rendered()
         $response = $this->actingAs($user)->get(route('password.confirm'));
 
         $response->assertStatus(200);
+
         $response->assertInertia(fn (Assert $page) => $page
             ->component('auth/ConfirmPassword')
         );
diff --git a/tests/Feature/Auth/TwoFactorChallengeTest.php b/tests/Feature/Auth/TwoFactorChallengeTest.php
@@ -12,7 +12,7 @@ class TwoFactorChallengeTest extends TestCase
 {
     use RefreshDatabase;
 
-    public function test_two_factor_challenge_redirects_when_not_authenticated(): void
+    public function test_two_factor_challenge_redirects_to_login_when_not_authenticated(): void
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -23,7 +23,7 @@ public function test_two_factor_challenge_redirects_when_not_authenticated(): vo
         $response->assertRedirect(route('login'));
     }
 
-    public function test_two_factor_challenge_renders_correct_inertia_component(): void
+    public function test_two_factor_challenge_can_be_rendered(): void
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -53,41 +53,4 @@ public function test_two_factor_challenge_renders_correct_inertia_component(): v
                 ->component('auth/TwoFactorChallenge')
             );
     }
-
-    public function test_two_factor_authentication_is_rate_limited(): void
-    {
-        if (! Features::enabled(Features::twoFactorAuthentication())) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => true,
-            'confirmPassword' => true,
-        ]);
-
-        $user = User::factory()->create();
-
-        $user->forceFill([
-            'two_factor_secret' => encrypt(implode(range('A', 'P'))),
-            'two_factor_recovery_codes' => encrypt(json_encode(['recovery-code-1', 'recovery-code-2'])),
-            'two_factor_confirmed_at' => now(),
-        ])->save();
-
-        $this->post(route('login'), [
-            'email' => $user->email,
-            'password' => 'password',
-        ]);
-
-        foreach (range(0, 4) as $ignored) {
-            $this->post(route('two-factor.login.store'), [
-                'code' => '000000',
-            ])->assertSessionHasErrors('code');
-        }
-
-        $response = $this->post(route('two-factor.login.store'), [
-            'code' => '000000',
-        ]);
-
-        $response->assertTooManyRequests();
-    }
 }
diff --git a/tests/Feature/Settings/TwoFactorAuthenticationTest.php b/tests/Feature/Settings/TwoFactorAuthenticationTest.php
@@ -12,7 +12,7 @@ class TwoFactorAuthenticationTest extends TestCase
 {
     use RefreshDatabase;
 
-    public function test_two_factor_settings_page_is_displayed()
+    public function test_two_factor_settings_page_can_be_rendered()
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -34,7 +34,7 @@ public function test_two_factor_settings_page_is_displayed()
             );
     }
 
-    public function test_two_factor_settings_page_requires_password_confirmation()
+    public function test_two_factor_settings_page_requires_password_confirmation_when_enabled()
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -53,7 +53,7 @@ public function test_two_factor_settings_page_requires_password_confirmation()
         $response->assertRedirect(route('password.confirm'));
     }
 
-    public function test_two_factor_settings_page_does_not_requires_password_confirmation_if_that_feature_is_disabled()
+    public function test_two_factor_settings_page_does_not_requires_password_confirmation_when_disabled()
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -74,7 +74,7 @@ public function test_two_factor_settings_page_does_not_requires_password_confirm
             );
     }
 
-    public function test_two_factor_settings_page_returns_forbidden_when_two_factor_is_disabled()
+    public function test_two_factor_settings_page_returns_forbidden_response_when_two_factor_is_disabled()
     {
         if (! Features::canManageTwoFactorAuthentication()) {
             $this->markTestSkipped('Two-factor authentication is not enabled.');
@@ -89,123 +89,4 @@ public function test_two_factor_settings_page_returns_forbidden_when_two_factor_
             ->get(route('two-factor.show'))
             ->assertForbidden();
     }
-
-    public function test_controller_sets_confirming_data_when_enabling_two_factor_with_confirmation()
-    {
-        if (! Features::canManageTwoFactorAuthentication()) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => true,
-            'confirmPassword' => false,
-        ]);
-
-        $user = User::factory()->create();
-
-        $this->actingAs($user)
-            ->withSession(['auth.password_confirmed_at' => time()])
-            ->withSession(['two_factor_empty_at' => time() - 10])
-            ->post(route('two-factor.enable'));
-
-        $this->get(route('two-factor.show'))
-            ->assertOk();
-
-        $this->assertNotNull(session('two_factor_confirming_at'));
-    }
-
-    public function test_user_can_view_setting_page_when_confirm_disabled()
-    {
-        if (! Features::canManageTwoFactorAuthentication()) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => false,
-            'confirmPassword' => false,
-        ]);
-
-        $user = User::factory()->create();
-
-        $this->actingAs($user)
-            ->get(route('two-factor.show'))
-            ->assertOk()
-            ->assertInertia(fn (Assert $page) => $page
-                ->component('settings/TwoFactor')
-                ->where('requiresConfirmation', false)
-            );
-    }
-
-    public function test_controller_sets_empty_session_data_when_transitioning_to_disabled_state()
-    {
-        if (! Features::canManageTwoFactorAuthentication()) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => true,
-            'confirmPassword' => false,
-        ]);
-
-        $user = User::factory()->create();
-
-        $this->actingAs($user)
-            ->get(route('two-factor.show'))
-            ->assertSessionHas('two_factor_empty_at');
-    }
-
-    public function test_controller_removes_confirming_session_data_when_cleanup_triggered()
-    {
-        if (! Features::canManageTwoFactorAuthentication()) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => true,
-            'confirmPassword' => false,
-        ]);
-
-        $user = User::factory()->create();
-
-        $user->forceFill([
-            'two_factor_secret' => encrypt('test-secret'),
-            'two_factor_recovery_codes' => encrypt(json_encode(['code1', 'code2'])),
-        ])->save();
-
-        $this->actingAs($user)
-            ->withSession(['two_factor_confirming_at' => time() - 100])
-            ->get(route('two-factor.show'))
-            ->assertSessionMissing('two_factor_confirming_at')
-            ->assertSessionHas('two_factor_empty_at');
-    }
-
-    public function test_two_factor_authentication_disabled_when_confirmation_abandoned_between_requests()
-    {
-        if (! Features::canManageTwoFactorAuthentication()) {
-            $this->markTestSkipped('Two-factor authentication is not enabled.');
-        }
-
-        Features::twoFactorAuthentication([
-            'confirm' => true,
-            'confirmPassword' => false,
-        ]);
-
-        $user = User::factory()->create();
-
-        $user->forceFill([
-            'two_factor_secret' => encrypt('test-secret'),
-            'two_factor_recovery_codes' => encrypt(json_encode(['code1', 'code2'])),
-            'two_factor_confirmed_at' => null,
-        ])->save();
-
-        $this->actingAs($user)
-            ->withSession(['two_factor_confirming_at' => time() - 100])
-            ->get(route('two-factor.show'));
-
-        $this->assertDatabaseHas('users', [
-            'id' => $user->id,
-            'two_factor_secret' => null,
-            'two_factor_recovery_codes' => null,
-        ]);
-    }
 }
