[Security] Rename User to InMemoryUser

Author: chalasr

Tests/Authentication/Provider/DaoAuthenticationProviderTest.php

@@ -21,8 +21,8 @@
 use Symfony\Component\Security\Core\Exception\AuthenticationServiceException;
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
 use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
-use Symfony\Component\Security\Core\User\User;
 use Symfony\Component\Security\Core\User\UserCheckerInterface;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
@@ -174,7 +174,7 @@ public function testCheckAuthenticationWhenCredentialsAre0()
 
         $method->invoke(
             $provider,
-            new User('username', 'password'),
+            new InMemoryUser('username', 'password'),
             $token
         );
     }
@@ -198,7 +198,7 @@ public function testCheckAuthenticationWhenCredentialsAreNotValid()
               ->willReturn('foo')
         ;
 
-        $method->invoke($provider, new User('username', 'password'), $token);
+        $method->invoke($provider, new InMemoryUser('username', 'password'), $token);
     }
 
     public function testCheckAuthenticationDoesNotReauthenticateWhenPasswordHasChanged()
@@ -270,12 +270,12 @@ public function testCheckAuthentication()
               ->willReturn('foo')
         ;
 
-        $method->invoke($provider, new User('username', 'password'), $token);
+        $method->invoke($provider, new InMemoryUser('username', 'password'), $token);
     }
 
     public function testPasswordUpgrades()
     {
-        $user = new User('user', 'pwd');
+        $user = new InMemoryUser('user', 'pwd');
 
         $hasher = $this->createMock(PasswordHasherInterface::class);
         $hasher->expects($this->once())

Tests/Authentication/Provider/LdapBindAuthenticationProviderTest.php

@@ -20,7 +20,7 @@
 use Symfony\Component\Security\Core\Authentication\Provider\LdapBindAuthenticationProvider;
 use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
-use Symfony\Component\Security\Core\User\User;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Core\User\UserCheckerInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
@@ -41,7 +41,7 @@ public function testEmptyPasswordShouldThrowAnException()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', '', 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', '', 'key'));
     }
 
     public function testNullPasswordShouldThrowAnException()
@@ -56,7 +56,7 @@ public function testNullPasswordShouldThrowAnException()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', null, 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', null, 'key'));
     }
 
     public function testBindFailureShouldThrowAnException()
@@ -76,7 +76,7 @@ public function testBindFailureShouldThrowAnException()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
     }
 
     public function testRetrieveUser()
@@ -136,7 +136,7 @@ public function testQueryForDn()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
     }
 
     public function testQueryWithUserForDn()
@@ -178,7 +178,7 @@ public function testQueryWithUserForDn()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
     }
 
     public function testEmptyQueryResultShouldThrowAnException()
@@ -214,6 +214,6 @@ public function testEmptyQueryResultShouldThrowAnException()
         $reflection = new \ReflectionMethod($provider, 'checkAuthentication');
         $reflection->setAccessible(true);
 
-        $reflection->invoke($provider, new User('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
+        $reflection->invoke($provider, new InMemoryUser('foo', null), new UsernamePasswordToken('foo', 'bar', 'key'));
     }
 }

Tests/Authentication/Provider/RememberMeAuthenticationProviderTest.php

@@ -19,7 +19,7 @@
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
 use Symfony\Component\Security\Core\Exception\DisabledException;
 use Symfony\Component\Security\Core\Exception\LogicException;
-use Symfony\Component\Security\Core\User\User;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Core\User\UserCheckerInterface;
 use Symfony\Component\Security\Core\User\UserInterface;
 
@@ -59,7 +59,7 @@ public function testAuthenticateThrowsOnNonUserInterfaceInstance()
         $this->expectExceptionMessage('Method "Symfony\Component\Security\Core\Authentication\Token\RememberMeToken::getUser()" must return a "Symfony\Component\Security\Core\User\UserInterface" instance, "string" returned.');
 
         $provider = $this->getProvider();
-        $token = new RememberMeToken(new User('dummyuser', null), 'foo', 'test');
+        $token = new RememberMeToken(new InMemoryUser('dummyuser', null), 'foo', 'test');
         $token->setUser('stringish-user');
         $provider->authenticate($token);
     }

Tests/Authentication/Token/switch-user-token-4.4.txt

@@ -23,7 +23,7 @@
 use Symfony\Component\Security\Core\Authorization\ExpressionLanguage;
 use Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter;
 use Symfony\Component\Security\Core\Authorization\Voter\RoleVoter;
-use Symfony\Component\Security\Core\User\User;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 
 class ExpressionLanguageTest extends TestCase
 {
@@ -49,7 +49,7 @@ public function testIsAuthenticated($token, $expression, $result)
     public function provider()
     {
         $roles = ['ROLE_USER', 'ROLE_ADMIN'];
-        $user = new User('username', 'password', $roles);
+        $user = new InMemoryUser('username', 'password', $roles);
 
         $noToken = null;
         $anonymousToken = new AnonymousToken('firewall', 'anon.');

Tests/Authorization/ExpressionLanguageTest.php

@@ -18,7 +18,7 @@
 use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
 use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 use Symfony\Component\Security\Core\Security;
-use Symfony\Component\Security\Core\User\User;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 
 class SecurityTest extends TestCase
 {
@@ -66,7 +66,7 @@ public function getUserTests()
 
         yield [new StringishUser(), null];
 
-        $user = new User('nice_user', 'foo');
+        $user = new InMemoryUser('nice_user', 'foo');
         yield [$user, $user];
     }
 

Tests/SecurityTest.php

@@ -15,9 +15,9 @@
 use Symfony\Component\Security\Core\Exception\UnsupportedUserException;
 use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
 use Symfony\Component\Security\Core\User\ChainUserProvider;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
 use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
-use Symfony\Component\Security\Core\User\User;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
@@ -250,7 +250,7 @@ public function testAcceptsTraversable()
 
     public function testPasswordUpgrades()
     {
-        $user = new User('user', 'pwd');
+        $user = new InMemoryUser('user', 'pwd');
 
         $provider1 = $this->getMockForAbstractClass(MigratingProvider::class);
         $provider1

Tests/User/ChainUserProviderTest.php

@@ -0,0 +1,41 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Tests\User;
+
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Security\Core\Exception\DisabledException;
+use Symfony\Component\Security\Core\User\InMemoryUser;
+use Symfony\Component\Security\Core\User\InMemoryUserChecker;
+use Symfony\Component\Security\Core\User\UserInterface;
+
+class InMemoryUserCheckerTest extends TestCase
+{
+    public function testCheckPostAuthNotAdvancedUserInterface()
+    {
+        $checker = new InMemoryUserChecker();
+
+        $this->assertNull($checker->checkPostAuth($this->createMock(UserInterface::class)));
+    }
+
+    public function testCheckPostAuthPass()
+    {
+        $checker = new InMemoryUserChecker();
+        $this->assertNull($checker->checkPostAuth(new InMemoryUser('John', 'password')));
+    }
+
+    public function testCheckPreAuthDisabled()
+    {
+        $this->expectException(DisabledException::class);
+        $checker = new InMemoryUserChecker();
+        $checker->checkPreAuth(new InMemoryUser('John', 'password', [], false));
+    }
+}

Tests/User/InMemoryUserCheckerTest.php

@@ -12,12 +12,16 @@
 namespace Symfony\Component\Security\Core\Tests\User;
 
 use PHPUnit\Framework\TestCase;
+use Symfony\Bridge\PhpUnit\ExpectDeprecationTrait;
 use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
+use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Core\User\InMemoryUserProvider;
 use Symfony\Component\Security\Core\User\User;
 
 class InMemoryUserProviderTest extends TestCase
 {
+    use ExpectDeprecationTrait;
+
     public function testConstructor()
     {
         $provider = $this->createProvider();
@@ -29,6 +33,21 @@ public function testConstructor()
     }
 
     public function testRefresh()
+    {
+        $user = new InMemoryUser('fabien', 'bar');
+
+        $provider = $this->createProvider();
+
+        $refreshedUser = $provider->refreshUser($user);
+        $this->assertEquals('foo', $refreshedUser->getPassword());
+        $this->assertEquals(['ROLE_USER'], $refreshedUser->getRoles());
+        $this->assertFalse($refreshedUser->isEnabled());
+    }
+
+    /**
+     * @group legacy
+     */
+    public function testRefreshWithLegacyUser()
     {
         $user = new User('fabien', 'bar');
 

Tests/User/InMemoryUserProviderTest.php

@@ -0,0 +1,105 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Tests\User;
+
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Security\Core\User\EquatableInterface;
+use Symfony\Component\Security\Core\User\InMemoryUser;
+use Symfony\Component\Security\Core\User\UserInterface;
+
+class InMemoryUserTest extends TestCase
+{
+    public function testConstructorException()
+    {
+        $this->expectException(\InvalidArgumentException::class);
+        new InMemoryUser('', 'superpass');
+    }
+
+    public function testGetRoles()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $this->assertEquals([], $user->getRoles());
+
+        $user = new InMemoryUser('fabien', 'superpass', ['ROLE_ADMIN']);
+        $this->assertEquals(['ROLE_ADMIN'], $user->getRoles());
+    }
+
+    public function testGetPassword()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $this->assertEquals('superpass', $user->getPassword());
+    }
+
+    public function testGetUsername()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $this->assertEquals('fabien', $user->getUsername());
+    }
+
+    public function testGetSalt()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $this->assertNull($user->getSalt());
+    }
+
+    public function testIsEnabled()
+    {
+        $user = new InMemoryUser('mathilde', 'k');
+        $this->assertTrue($user->isEnabled());
+
+        $user = new InMemoryUser('robin', 'superpass', [], false);
+        $this->assertFalse($user->isEnabled());
+    }
+
+    public function testEraseCredentials()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $user->eraseCredentials();
+        $this->assertEquals('superpass', $user->getPassword());
+    }
+
+    public function testToString()
+    {
+        $user = new InMemoryUser('fabien', 'superpass');
+        $this->assertEquals('fabien', (string) $user);
+    }
+
+    /**
+     * @dataProvider isEqualToData
+     *
+     * @param bool                             $expectation
+     * @param EquatableInterface|UserInterface $a
+     * @param EquatableInterface|UserInterface $b
+     */
+    public function testIsEqualTo($expectation, $a, $b)
+    {
+        $this->assertSame($expectation, $a->isEqualTo($b));
+        $this->assertSame($expectation, $b->isEqualTo($a));
+    }
+
+    public static function isEqualToData()
+    {
+        return [
+            [true, new InMemoryUser('username', 'password'), new InMemoryUser('username', 'password')],
+            [false, new InMemoryUser('username', 'password', ['ROLE']), new InMemoryUser('username', 'password')],
+            [false, new InMemoryUser('username', 'password', ['ROLE']), new InMemoryUser('username', 'password', ['NO ROLE'])],
+            [false, new InMemoryUser('diff', 'diff'), new InMemoryUser('username', 'password')],
+            [false, new InMemoryUser('diff', 'diff', [], false), new InMemoryUser('username', 'password')],
+        ];
+    }
+
+    public function testIsEqualToWithDifferentUser()
+    {
+        $user = new InMemoryUser('username', 'password');
+        $this->assertFalse($user->isEqualTo($this->createMock(UserInterface::class)));
+    }
+}