make sure we only use the first storage. added FIXME to support multiple storage pods

Author: ylebre

tests/phpunit/UserTest.php

@@ -0,0 +1,256 @@
+<?php
+namespace Pdsinterop\PhpSolid\Tests;
+
+require_once(__DIR__ . "/test-config.php");
+
+use Pdsinterop\PhpSolid\User;
+use Pdsinterop\PhpSolid\Db;
+
+class UserTest extends \PHPUnit\Framework\TestCase
+{
+	protected function setUp(): void
+	{
+		$futureTimestamp = new \DateTime();
+		$futureTimestamp->add(new \DateInterval('P120M'));
+		$statements = [
+			'DROP TABLE IF EXISTS allowedClients',
+			'DROP TABLE IF EXISTS userStorage',
+			'DROP TABLE IF EXISTS verify',
+			'DROP TABLE IF EXISTS users',
+			'CREATE TABLE IF NOT EXISTS allowedClients (
+				userId VARCHAR(255) NOT NULL PRIMARY KEY,
+				clientId VARCHAR(255) NOT NULL
+			)',
+			'CREATE TABLE IF NOT EXISTS userStorage (
+				userId VARCHAR(255) NOT NULL PRIMARY KEY,
+				storageUrl VARCHAR(255) NOT NULL
+			)',
+			'CREATE TABLE IF NOT EXISTS verify (
+				code VARCHAR(255) NOT NULL PRIMARY KEY,
+				data TEXT NOT NULL
+			)',
+			'CREATE TABLE IF NOT EXISTS users (
+				user_id VARCHAR(255) NOT NULL PRIMARY KEY,
+				email TEXT NOT NULL,
+				password TEXT NOT NULL,
+				data TEXT
+			)',
+			'INSERT INTO verify VALUES("test1", \'{"expires": 0, "hello": "world", "code": "test1"}\')',
+			'INSERT INTO verify VALUES("test2", \'{"expires": ' . $futureTimestamp->getTimestamp() . ', "hello": "world", "code": "test2"}\')'
+		];
+
+		Db::connect();
+		try {
+			// create tables
+			foreach($statements as $statement){
+				Db::$pdo->exec($statement);
+			}
+		} catch(\PDOException $e) {
+			echo $e->getMessage();
+		}
+	}
+
+	public function testSaveVerifyToken() {
+		$beforeExpires = new \DateTime();
+		$beforeExpires->add(new \DateInterval('PT29M'));
+
+		$afterExpires = new \DateTime();
+		$afterExpires->add(new \DateInterval('PT31M'));
+		$token = User::saveVerifyToken("verify", [
+			"hello" => "world"
+		]);
+		$this->assertTrue($token['expires'] > $beforeExpires->getTimestamp());
+		$this->assertTrue($token['expires'] < $afterExpires->getTimestamp());
+
+		$storedToken = User::getVerifyToken($token['code']);
+		$this->assertEquals($storedToken['hello'], "world");
+	}
+
+	public function testSavePasswordResetToken() {
+		$beforeExpires = new \DateTime();
+		$beforeExpires->add(new \DateInterval('PT29M'));
+
+		$afterExpires = new \DateTime();
+		$afterExpires->add(new \DateInterval('PT31M'));
+		$token = User::saveVerifyToken("verify", [
+			"hello" => "world"
+		]);
+		$this->assertTrue($token['expires'] > $beforeExpires->getTimestamp());
+		$this->assertTrue($token['expires'] < $afterExpires->getTimestamp());
+
+		$storedToken = User::getVerifyToken($token['code']);
+		$this->assertEquals($storedToken['hello'], "world");
+	}
+
+	public function testSaveAccountDeleteToken() {
+		$beforeExpires = new \DateTime();
+		$beforeExpires->add(new \DateInterval('PT29M'));
+
+		$afterExpires = new \DateTime();
+		$afterExpires->add(new \DateInterval('PT31M'));
+		$token = User::saveVerifyToken("verify", [
+			"hello" => "world"
+		]);
+		$this->assertTrue($token['expires'] > $beforeExpires->getTimestamp());
+		$this->assertTrue($token['expires'] < $afterExpires->getTimestamp());
+
+		$storedToken = User::getVerifyToken($token['code']);
+		$this->assertEquals($storedToken['hello'], "world");
+	}
+
+	public function testExpiredToken() {
+		$token = User::getVerifyToken("test1");
+		$this->assertFalse($token);
+	}
+
+	public function testNonExpiredToken() {
+		$token = User::getVerifyToken("test2");
+		$this->assertEquals($token['hello'], "world");
+	}
+
+	public function testCreateUser() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		$this->assertEquals($createdUser['email'], "[email protected]");
+		$this->assertTrue(isset($createdUser['webId']));
+		$this->assertTrue(isset($createdUser['userId']));
+		$this->assertTrue(strlen($createdUser['userId']) === 32);
+
+		$canLogIn = User::checkPassword($newUser['email'], $newUser['password']);
+		$this->assertTrue($canLogIn);
+	}
+	
+	public function testGetUser() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+
+		$userByEmail = User::getUser($newUser['email']);
+		$this->assertEquals($userByEmail['webId'], $createdUser['webId']);		
+		$this->assertEquals($userByEmail['hello'], 'world');
+		$this->assertTrue(isset($userByEmail['allowedClients']));
+		$this->assertEquals($userByEmail['issuer'], "https://solid.example.com");
+	}
+	
+	public function testGetUserById() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+
+		$userById = User::getUserById($createdUser['userId']);
+		$this->assertEquals($userById['webId'], $createdUser['webId']);		
+		$this->assertEquals($userById['hello'], 'world');
+		$this->assertTrue(isset($userById['allowedClients']));
+		$this->assertEquals($userById['issuer'], "https://solid.example.com");
+	}
+
+	public function testSetPasswordNonExistingUser() {
+		$result = User::setUserPassword("[email protected]", "hello123!@#ABC");
+		$this->assertFalse($result);
+	}
+
+	public function testSetWeakPassword() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		$result = User::setUserPassword($newUser['email'], "a");
+		$this->assertFalse($result);
+	}
+
+	public function testLogin() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		
+		$canLogIn = User::checkPassword($newUser['email'], $newUser['password']);
+		$this->assertTrue($canLogIn);
+	}
+
+	public function testLoginFailed() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		
+		$canLogIn = User::checkPassword($newUser['email'], "something else");
+		$this->assertFalse($canLogIn);
+	}
+
+	public function testSetStrongPassword() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		
+		$result = User::setUserPassword($newUser['email'], "this is a strong password because it is long enough");
+		$this->assertTrue($result);
+	}
+
+	public function testLoginAfterChange() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		$canLogIn = User::checkPassword($newUser['email'], $newUser['password']);
+		$this->assertTrue($canLogIn);
+		
+		$newPassword = "this is a strong password because it is long enough";
+		$result = User::setUserPassword($newUser['email'], $newPassword);
+		$this->assertTrue($result);
+
+		$canLogIn = User::checkPassword($newUser['email'], "something else");
+		$this->assertFalse($canLogIn);
+
+		$canLogIn = User::checkPassword($newUser['email'], $newUser['password']);
+		$this->assertFalse($canLogIn);
+
+		$canLogIn = User::checkPassword($newUser['email'], $newPassword);
+		$this->assertTrue($canLogIn);
+	}
+	
+	public function testUserStorage() {
+		$newUser = [
+			"password" => "hello123!@#ABC",
+			"email" => "[email protected]",
+			"hello" => "world"
+		];
+		$createdUser = User::createUser($newUser);
+		$storageUrl = "https://storage.example.com";
+		User::setStorage($createdUser['userId'], $storageUrl);
+		
+		$savedStorage = User::getStorage($createdUser['userId']);
+		
+		$this->assertTrue(in_array($storageUrl, $savedStorage));
+
+		$user = User::getUser($newUser['email']);
+		$this->assertTrue(in_array($storageUrl, $user['storage']));
+	}
+
+	// @TODO Write tests for these functions:
+	// userIdExists
+	// userEmailExists
+	// deleteAccount
+	// cleanupTokens
+}

tests/phpunit/test-config.php

@@ -3,3 +3,7 @@
 
 const DBPATH = ":memory:";
 const TRUSTED_IPS = ['127.0.0.100'];
+const BANNED_PASSWORDS = [];
+const MINIMUM_PASSWORD_ENTROPY = 10;
+const BASEDOMAIN = "solid.example.com";
+const BASEURL = "https://solid.example.com";

www/user/profile.php

@@ -23,9 +23,12 @@
 					$userId = preg_replace("/^id-/", "", $idPart);
 
 					$user = User::getUserById($userId);
-					if (!isset($user['storage'])) {
+					if (!isset($user['storage']) || !$user['storage']) {
 						$user['storage'] = "https://storage-" . $userId . "." . BASEDOMAIN . "/";
 					}
+					if (is_array($user['storage'])) { // empty array is already handled
+						$user['storage'] = array_values($user['storage'])[0]; // FIXME: Handle multiple storage pods
+					}
 					if (!isset($user['issuer'])) {
 						$user['issuer'] = BASEURL;
 					}