X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=tests%2Forg%2Fcacert%2Fgigi%2Fpages%2Fwot%2FTestAssurance.java;h=0af859ccc979ad664a0cc47a682ae9365ce25bba;hb=d3fae2244debf99eb93281c7302e8bd397868c49;hp=f104c67e81a7c161f7974bb25799c30b7ae18c48;hpb=952f3ddd9438cf10ba25a5d9f1e9d8a04d75e0dc;p=gigi.git diff --git a/tests/org/cacert/gigi/pages/wot/TestAssurance.java b/tests/org/cacert/gigi/pages/wot/TestAssurance.java index f104c67e..0af859cc 100644 --- a/tests/org/cacert/gigi/pages/wot/TestAssurance.java +++ b/tests/org/cacert/gigi/pages/wot/TestAssurance.java @@ -10,14 +10,23 @@ import java.net.MalformedURLException; import java.net.URLConnection; import java.net.URLEncoder; import java.sql.SQLException; +import java.sql.Timestamp; import java.text.SimpleDateFormat; import java.util.Calendar; import java.util.Date; import java.util.regex.Pattern; +import org.cacert.gigi.GigiApiException; +import org.cacert.gigi.database.GigiPreparedStatement; +import org.cacert.gigi.dbObjects.Country; +import org.cacert.gigi.dbObjects.Group; +import org.cacert.gigi.dbObjects.User; import org.cacert.gigi.pages.account.MyDetails; import org.cacert.gigi.testUtils.IOUtils; import org.cacert.gigi.testUtils.ManagedTest; +import org.cacert.gigi.testUtils.TestEmailReceiver.TestMail; +import org.cacert.gigi.util.DayDate; +import org.cacert.gigi.util.Notary; import org.hamcrest.Matcher; import org.junit.Before; import org.junit.Test; @@ -28,6 +37,8 @@ public class TestAssurance extends ManagedTest { private String assureeM; + private int assureeName; + private String cookie; @Before @@ -37,7 +48,8 @@ public class TestAssurance extends ManagedTest { assureeM = createUniqueName() + "@cacert-test.org"; createAssuranceUser("a", "b", assurerM, TEST_PASSWORD); - createVerifiedUser("a", "c", assureeM, TEST_PASSWORD); + int assureeId = createVerifiedUser("a", "c", assureeM, TEST_PASSWORD); + assureeName = User.getById(assureeId).getPreferredName().getId(); cookie = login(assurerM, TEST_PASSWORD); } @@ -85,16 +97,25 @@ public class TestAssurance extends ManagedTest { @Test public void testAssureForm() throws IOException { - executeSuccess("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10"); + executeSuccess("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + } + + @Test + public void testAssureFormEmpty() throws IOException { + URLConnection uc = buildupAssureFormConnection(true); + uc.getOutputStream().write(("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&rules=1&assertion=1&points=10").getBytes("UTF-8")); + uc.getOutputStream().flush(); + String data = IOUtils.readURL(uc); + assertThat(data, hasError()); } @Test public void testAssureFormContanisData() throws IOException { URLConnection uc = buildupAssureFormConnection(true); - uc.getOutputStream().write(("date=2000-01-01&location=testcase&rules=1&assertion=1&points=10").getBytes("UTF-8")); + uc.getOutputStream().write(("assuredName=" + assureeName + "&date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&rules=1&assertion=1&points=10").getBytes("UTF-8")); uc.getOutputStream().flush(); String data = IOUtils.readURL(uc); - assertThat(data, containsString("2000-01-01")); + assertThat(data, containsString(validVerificationDateString())); assertThat(data, containsString("testcase")); } @@ -102,7 +123,7 @@ public class TestAssurance extends ManagedTest { public void testAssureFormNoCSRF() throws IOException { // override csrf HttpURLConnection uc = (HttpURLConnection) buildupAssureFormConnection(false); - uc.getOutputStream().write(("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8")); + uc.getOutputStream().write(("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8")); uc.getOutputStream().flush(); assertEquals(500, uc.getResponseCode()); } @@ -111,41 +132,30 @@ public class TestAssurance extends ManagedTest { public void testAssureFormWrongCSRF() throws IOException { // override csrf HttpURLConnection uc = (HttpURLConnection) buildupAssureFormConnection(false); - uc.getOutputStream().write(("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10&csrf=aragc").getBytes("UTF-8")); + uc.getOutputStream().write(("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10&csrf=aragc").getBytes("UTF-8")); uc.getOutputStream().flush(); assertEquals(500, uc.getResponseCode()); } - @Test - public void testAssureFormRaceName() throws IOException, SQLException { - testAssureFormRace(true, false); - } - @Test public void testAssureFormRaceDoB() throws IOException, SQLException { - testAssureFormRace(false, false); - } - - @Test - public void testAssureFormRaceNameBlind() throws IOException, SQLException { - testAssureFormRace(true, true); + testAssureFormRace(false); } @Test public void testAssureFormRaceDoBBlind() throws IOException, SQLException { - testAssureFormRace(false, true); + testAssureFormRace(true); } - public void testAssureFormRace(boolean name, boolean succeed) throws IOException, SQLException { + public void testAssureFormRace(boolean succeed) throws IOException, SQLException { URLConnection uc = buildupAssureFormConnection(true); String assureeCookie = login(assureeM, TEST_PASSWORD); - String newName = "lname=" + (name && !succeed ? "a" : "c") + "&fname=a&mname=&suffix="; - String newDob = "day=1&month=1&year=" + ( !name && !succeed ? 1911 : 1910); + String newDob = "day=1&month=1&year=" + ( !succeed ? 1911 : 1910); - assertNull(executeBasicWebInteraction(assureeCookie, MyDetails.PATH, newName + "&" + newDob + "&processDetails", 0)); + assertNull(executeBasicWebInteraction(assureeCookie, MyDetails.PATH, newDob + "&action=updateDoB", 0)); - uc.getOutputStream().write(("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8")); + uc.getOutputStream().write(("assuredName=" + assureeName + "&date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10").getBytes("UTF-8")); uc.getOutputStream().flush(); String error = fetchStartErrorMessage(IOUtils.readURL(uc)); if (succeed) { @@ -160,7 +170,7 @@ public class TestAssurance extends ManagedTest { public void testAssureFormFuture() throws IOException { SimpleDateFormat sdf = new SimpleDateFormat("yyyy"); int year = Integer.parseInt(sdf.format(new Date(System.currentTimeMillis()))) + 2; - executeFails("date=" + year + "-01-01&location=testcase&certify=1&rules=1&assertion=1&points=10"); + executeFails("date=" + year + "-01-01&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); } @Test @@ -170,49 +180,77 @@ public class TestAssurance extends ManagedTest { c.setTimeInMillis(System.currentTimeMillis()); c.add(Calendar.HOUR_OF_DAY, 12); - executeSuccess("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&certify=1&rules=1&assertion=1&points=10"); + executeSuccess("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + } + + @Test + public void testAssureFormPastInRange() throws IOException { + executeSuccess("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + } + + @Test + public void testAssureFormPastOnLimit() throws IOException { + SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd"); + Calendar c = Calendar.getInstance(); + c.setTimeInMillis(System.currentTimeMillis()); + c.add(Calendar.MONTH, -Notary.LIMIT_MAX_MONTHS_VERIFICATION); + c.add(Calendar.DAY_OF_MONTH, 1); + + executeSuccess("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + } + + @Test + public void testAssureFormPastOutOfRange() throws IOException { + SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd"); + Calendar c = Calendar.getInstance(); + c.setTimeInMillis(System.currentTimeMillis()); + c.add(Calendar.MONTH, -Notary.LIMIT_MAX_MONTHS_VERIFICATION); + + executeFails("date=" + sdf.format(new Date(c.getTimeInMillis())) + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); } @Test public void testAssureFormNoLoc() throws IOException { - executeFails("date=2000-01-01&location=a&certify=1&rules=1&assertion=1&points=10"); - executeFails("date=2000-01-01&location=&certify=1&rules=1&assertion=1&points=10"); + executeFails("date=" + validVerificationDateString() + "&location=a&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + executeFails("date=" + validVerificationDateString() + "&location=&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); } @Test public void testAssureFormInvalDate() throws IOException { - executeFails("date=20000101&location=testcase&certify=1&rules=1&assertion=1&points=10"); - executeFails("date=&location=testcase&certify=1&rules=1&assertion=1&points=10"); + executeFails("date=20000101&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + executeFails("date=&location=testcase&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); } @Test public void testAssureFormBoxes() throws IOException { - executeFails("date=2000-01-01&location=testcase&certify=0&rules=1&assertion=1&points=10"); - executeFails("date=2000-01-01&location=testcase&certify=1&rules=&assertion=1&points=10"); - executeFails("date=2000-01-01&location=testcase&certify=1&rules=1&assertion=z&points=10"); + executeFails("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=0&rules=1&assertion=1&points=10"); + executeFails("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=&assertion=1&points=10"); + executeFails("date=" + validVerificationDateString() + "&location=testcase&countryCode=DE&certify=1&rules=1&assertion=z&points=10"); } @Test - public void testAssureListingValid() throws IOException { + public void testAssureListingValid() throws IOException, GigiApiException { String uniqueLoc = createUniqueName(); - execute("date=2000-01-01&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10"); + execute("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); String cookie = login(assureeM, TEST_PASSWORD); - URLConnection url = get(cookie, MyPoints.PATH); + URLConnection url = get(cookie, Points.PATH); String resp = IOUtils.readURL(url); - resp = resp.split(Pattern.quote(""))[0]; + resp = resp.split(Pattern.quote(""))[1]; assertThat(resp, containsString(uniqueLoc)); + assertThat(resp, containsString(Country.getCountryByCode("DE", Country.CountryCodeType.CODE_2_CHARS).getName())); } @Test - public void testAssurerListingValid() throws IOException { + public void testAssurerListingValid() throws IOException, GigiApiException { String uniqueLoc = createUniqueName(); - executeSuccess("date=2000-01-01&location=" + uniqueLoc + "&certify=1&rules=1&assertion=1&points=10"); + executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); String cookie = login(assurerM, TEST_PASSWORD); - URLConnection url = get(cookie, MyPoints.PATH); + URLConnection url = get(cookie, Points.PATH); String resp = IOUtils.readURL(url); - resp = resp.split(Pattern.quote(""))[1]; + resp = resp.split(Pattern.quote(""))[2]; assertThat(resp, containsString(uniqueLoc)); + assertThat(resp, containsString(Country.getCountryByCode("DE", Country.CountryCodeType.CODE_2_CHARS).getName())); } private void executeFails(String query) throws MalformedURLException, IOException { @@ -227,7 +265,7 @@ public class TestAssurance extends ManagedTest { private String execute(String query) throws MalformedURLException, IOException { URLConnection uc = buildupAssureFormConnection(true); - uc.getOutputStream().write((query).getBytes("UTF-8")); + uc.getOutputStream().write(("assuredName=" + assureeName + "&" + query).getBytes("UTF-8")); uc.getOutputStream().flush(); return IOUtils.readURL(uc); } @@ -250,4 +288,89 @@ public class TestAssurance extends ManagedTest { return uc; } + @Test + public void testMultipleAssurance() throws IOException { + + User users[] = User.findByEmail(assurerM); + int agentID = users[0].getId(); + + users = User.findByEmail(assureeM); + int applicantID = users[0].getId(); + + // enter first entry 200 days in the past + try (GigiPreparedStatement ps = new GigiPreparedStatement("INSERT INTO `notary` SET `from`=?, `to`=?, `points`=?, `location`=?, `date`=?, `when`=? ")) { + ps.setInt(1, agentID); + ps.setInt(2, applicantID); + ps.setInt(3, 10); + ps.setString(4, "test-location"); + ps.setString(5, "2010-01-01"); + ps.setTimestamp(6, new Timestamp(System.currentTimeMillis() - DayDate.MILLI_DAY * 200)); + ps.execute(); + } + + // enter second entry + String uniqueLoc = createUniqueName(); + executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + + // enter third entry on the same day + URLConnection uc = get(cookie, AssurePage.PATH); + uc.setDoOutput(true); + uc.getOutputStream().write(("email=" + URLEncoder.encode(assureeM, "UTF-8") + "&day=1&month=1&year=1910&search").getBytes("UTF-8")); + assertThat(IOUtils.readURL(uc), hasError()); + + } + + @Test + public void testAssureFormNoCountry() throws IOException { + executeFails("date=" + validVerificationDateString() + "&location=testcase&countryCode=&certify=1&rules=1&assertion=1&points=10"); + } + + @Test + public void testRANotificationSet() throws IOException, GigiApiException { + getMailReceiver().clearMails(); + + User users[] = User.findByEmail(assurerM); + assertTrue("user RA Agent not found", users != null && users.length > 0); + + User u = users[0]; + u.grantGroup(u, Group.VERIFY_NOTIFICATION); + clearCaches(); + cookie = login(assurerM, TEST_PASSWORD); + + String targetMail = u.getEmail(); + + // enter verification + String uniqueLoc = createUniqueName(); + executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + TestMail tm; + + do { + tm = getMailReceiver().receive(); + } while ( !tm.getTo().equals(targetMail)); + assertThat(tm.getMessage(), containsString("You entered a verification for the account with email address " + assureeM)); + + } + + @Test + public void testRANotificationNotSet() throws IOException, GigiApiException { + getMailReceiver().clearMails(); + + User users[] = User.findByEmail(assurerM); + assertTrue("user RA Agent not found", users != null && users.length > 0); + + User u = users[0]; + u.revokeGroup(u, Group.VERIFY_NOTIFICATION); + clearCaches(); + cookie = login(assurerM, TEST_PASSWORD); + + // enter verification + String uniqueLoc = createUniqueName(); + executeSuccess("date=" + validVerificationDateString() + "&location=" + uniqueLoc + "&countryCode=DE&certify=1&rules=1&assertion=1&points=10"); + + TestMail tm; + + tm = getMailReceiver().receive(); + assertThat(tm.getMessage(), not(containsString("You entered a verification for the account with email address " + assureeM))); + + } }