aboutsummaryrefslogtreecommitdiff
path: root/srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php
diff options
context:
space:
mode:
Diffstat (limited to 'srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php')
-rw-r--r--srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php524
1 files changed, 524 insertions, 0 deletions
diff --git a/srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php b/srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php
new file mode 100644
index 0000000..1fd0474
--- /dev/null
+++ b/srcs/phpmyadmin/vendor/pragmarx/google2fa/tests/Google2FATest.php
@@ -0,0 +1,524 @@
+<?php
+
+namespace PragmaRX\Google2FA\Tests;
+
+use PHPUnit\Framework\TestCase;
+use PragmaRX\Google2FA\Google2FA;
+use PragmaRX\Google2FA\Support\Constants as Google2FAConstants;
+
+class Google2FATest extends TestCase
+{
+ public function setUp(): void
+ {
+ $this->google2fa = new Google2FA();
+ }
+
+ public function testIsInitializable()
+ {
+ $this->assertInstanceOf(
+ 'PragmaRX\Google2FA\Google2FA',
+ $this->google2fa
+ );
+ }
+
+ public function testGeneratesAValidSecretKey()
+ {
+ $this->assertEquals(16, strlen($this->google2fa->generateSecretKey()));
+
+ $this->assertEquals(
+ 32,
+ strlen($this->google2fa->generateSecretKey(32))
+ );
+
+ $this->assertStringStartsWith(
+ 'MFXHI',
+ $this->google2fa->generateSecretKey(59, 'ant')
+ );
+
+ $this->assertStringStartsWith(
+ 'MFXHI',
+ $this->google2fa->generateSecretKey(59, 'ant')
+ );
+
+ $this->assertEquals(
+ $key = $this->google2fa->generateSecretKey(),
+ preg_replace(
+ '/[^' . Google2FAConstants::VALID_FOR_B32 . ']/',
+ '',
+ $key
+ )
+ );
+ }
+
+ public function testGeneratesASecretKeysCompatibleWithGoogleAuthenticator()
+ {
+ $this->assertEquals($size = 16, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size))); /// minimum = 128 bits
+ $this->assertEquals($size = 20, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false)->generateSecretKey($size))); /// recommended = 160 bits - not compatible
+ $this->assertEquals($size = 32, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size))); /// recommended = 256 bits - compatible
+ $this->assertEquals($size = 64, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size)));
+ $this->assertEquals($size = 128, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size)));
+ }
+
+ public function testGeneratesASecretKeysGenerationSize()
+ {
+ // 128 bits are allowed
+ $this->assertEquals($size = 16, strlen($this->google2fa->generateSecretKey($size))); /// minimum = 128 bits
+
+ // anything below 128 bits are NOT allowed
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\SecretKeyTooShortException::class);
+
+ $this->assertEquals($size = 2, strlen($this->google2fa->generateSecretKey($size))); /// minimum = 128 bits
+ $this->assertEquals($size = 4, strlen($this->google2fa->generateSecretKey($size))); /// minimum = 128 bits
+ $this->assertEquals($size = 8, strlen($this->google2fa->generateSecretKey($size))); /// minimum = 128 bits
+ }
+
+ public function testGeneratesASecretKeysNotCompatibleWithGoogleAuthenticator()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\IncompatibleWithGoogleAuthenticatorException::class);
+ $this->assertEquals($size = 15, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size)));
+
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\IncompatibleWithGoogleAuthenticatorException::class);
+ $this->assertEquals($size = 17, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size)));
+
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\IncompatibleWithGoogleAuthenticatorException::class);
+ $this->assertEquals($size = 21, strlen($this->google2fa->setEnforceGoogleAuthenticatorCompatibility(true)->generateSecretKey($size)));
+ }
+
+ public function testConvertsInvalidCharsToBase32()
+ {
+ $converted = $this->google2fa->generateBase32RandomKey(
+ 16,
+ '1234' .
+ chr(250) .
+ chr(251) .
+ chr(252) .
+ chr(253) .
+ chr(254) .
+ chr(255)
+ );
+
+ $valid = preg_replace(
+ '/[^' . Google2FAConstants::VALID_FOR_B32 . ']/',
+ '',
+ $converted
+ );
+
+ $this->assertEquals($converted, $valid);
+ }
+
+ public function testGetsValidTimestamps()
+ {
+ $ts = $this->google2fa->getTimestamp();
+
+ $this->assertLessThanOrEqual(PHP_INT_MAX, $ts);
+
+ $this->assertGreaterThanOrEqual(~PHP_INT_MAX, $ts);
+ }
+
+ public function testDecodesBase32Strings()
+ {
+ $result =
+ chr(0) .
+ chr(232) .
+ chr(196) .
+ chr(187) .
+ chr(190) .
+ chr(223) .
+ chr(26) .
+ chr(241) .
+ chr(145) .
+ chr(86);
+
+ $this->assertEquals(
+ $result,
+ $this->google2fa->base32Decode(Constants::SECRET)
+ );
+ }
+
+ public function testCreatesAOneTimePassword()
+ {
+ $this->assertEquals(
+ 6,
+ strlen($this->google2fa->getCurrentOtp(Constants::SECRET))
+ );
+ }
+
+ public function testVerifiesKeys()
+ {
+ // $ts 26213400 with KEY_REGENERATION 30 seconds is
+ // timestamp 786402000, which is 1994-12-02 21:00:00 UTC
+
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ 2,
+ 26213400
+ )
+ ); // 26213398
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '981084',
+ 2,
+ 26213400
+ )
+ ); // 26213399
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '512396',
+ 2,
+ 26213400
+ )
+ ); // 26213400
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '410272',
+ 2,
+ 26213400
+ )
+ ); // 26213401
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '239815',
+ 2,
+ 26213400
+ )
+ ); // 26213402
+
+ $this->assertFalse(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '313366',
+ 2,
+ 26213400
+ )
+ ); // 26213403
+ $this->assertFalse(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '093183',
+ 2,
+ 26213400
+ )
+ ); // 26213397
+ }
+
+ public function testVerifiesKeysNewer()
+ {
+ $this->assertFalse(
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '512396',
+ 26213401,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertFalse(
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '410272',
+ 26213401,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertEquals(
+ 26213402,
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '239815',
+ 26213401,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertFalse(
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '313366',
+ 26213401,
+ 2,
+ 26213400
+ )
+ );
+
+ $this->assertEquals(
+ 26213400,
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '512396',
+ null,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertEquals(
+ 26213401,
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '410272',
+ null,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertEquals(
+ 26213402,
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '239815',
+ null,
+ 2,
+ 26213400
+ )
+ );
+ $this->assertFalse(
+ $this->google2fa->verifyKeyNewer(
+ Constants::SECRET,
+ '313366',
+ null,
+ 2,
+ 26213400
+ )
+ );
+ }
+
+ public function testRemovesInvalidCharsFromSecret()
+ {
+ $this->assertEquals(
+ Constants::SECRET,
+ $this->google2fa->removeInvalidChars(Constants::SECRET . '!1-@@@')
+ );
+ }
+
+ public function testConvertsToBase32()
+ {
+ $this->assertEquals(
+ 'KBZGCZ3NMFJFQ',
+ $this->google2fa->toBase32('PragmaRX')
+ );
+ }
+
+ public function testSetsTheWindow()
+ {
+ $this->google2fa->setWindow(6);
+
+ $this->assertEquals(6, $this->google2fa->getWindow());
+
+ $this->assertEquals(1, $this->google2fa->getWindow(1));
+
+ $this->google2fa->setWindow(0);
+
+ $this->assertFalse(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213400
+ )
+ );
+
+ $this->google2fa->setWindow(2);
+
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213400
+ )
+ );
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213399
+ )
+ );
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213398
+ )
+ );
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213396
+ )
+ );
+ $this->assertFalse(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213395
+ )
+ );
+ }
+
+ public function testSetsTheSecret()
+ {
+ $this->assertFalse(
+ $this->google2fa->verify('558854', Constants::WRONG_SECRET)
+ );
+
+ $this->google2fa->setWindow(2);
+
+ $this->assertTrue(
+ $this->google2fa->verify(
+ '558854',
+ Constants::SECRET,
+ null,
+ 26213400
+ )
+ );
+
+ $this->google2fa->setSecret(Constants::SECRET);
+
+ $this->assertTrue(
+ $this->google2fa->verify('558854', null, null, 26213400)
+ );
+ }
+
+ public function testGetsKeyRegeneration()
+ {
+ $this->google2fa->setKeyRegeneration(11);
+
+ $this->assertEquals(11, $this->google2fa->getKeyRegeneration());
+ }
+
+ public function testGetsOtpLength()
+ {
+ $this->google2fa->setOneTimePasswordLength(7);
+
+ $this->assertEquals(7, $this->google2fa->getOneTimePasswordLength());
+ }
+
+ public function testGeneratesPasswordsInManyDifferentSizes()
+ {
+ $this->google2fa->setWindow(2);
+
+ $this->google2fa->setOneTimePasswordLength(6);
+
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '558854',
+ null,
+ 26213400
+ )
+ );
+
+ $this->google2fa->setOneTimePasswordLength(7);
+
+ $this->assertTrue(
+ $this->google2fa->verifyKey(
+ Constants::SECRET,
+ '8981084',
+ null,
+ 26213400
+ )
+ );
+ }
+
+ public function testShortSecretKey()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\SecretKeyTooShortException::class);
+
+ $this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false);
+
+ $this->google2fa->verifyKey(
+ Constants::SHORT_SECRET,
+ '558854',
+ null,
+ 26213400
+ );
+ }
+
+ public function testValidateKey()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\InvalidCharactersException::class);
+
+ $this->assertTrue(
+ is_numeric($this->google2fa->getCurrentOtp(Constants::SECRET))
+ );
+
+ $this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false);
+
+ $this->google2fa->getCurrentOtp(Constants::INVALID_SECRET);
+ }
+
+ public function testThrowsBaseException()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\Google2FAException::class);
+
+ $this->throwSecretKeyTooShortException();
+ }
+
+ public function testThrowsBaseExceptionContract()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\Contracts\Google2FA::class);
+
+ $this->throwSecretKeyTooShortException();
+ }
+
+ public function testThrowsSecretKeyTooShortException()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\SecretKeyTooShortException::class);
+
+ $this->throwSecretKeyTooShortException();
+ }
+
+ public function testThrowsSecretKeyTooShortExceptionContract()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\Contracts\SecretKeyTooShort::class);
+
+ $this->throwSecretKeyTooShortException();
+ }
+
+ public function testThrowsIncompatibleWithGoogleAuthenticatorExceptionInterface()
+ {
+ $this->expectException(\PragmaRX\Google2FA\Exceptions\Contracts\IncompatibleWithGoogleAuthenticator::class);
+
+ $this->throwIncompatibleWithGoogleAuthenticatorException();
+ }
+
+ public function throwSecretKeyTooShortException()
+ {
+ $this->google2fa->setEnforceGoogleAuthenticatorCompatibility(false);
+
+ $this->google2fa->verifyKey(
+ Constants::SHORT_SECRET, // <------------- BUG
+ '558854',
+ null,
+ 26213400
+ );
+ }
+
+ public function throwIncompatibleWithGoogleAuthenticatorException()
+ {
+ $this->google2fa
+ ->setEnforceGoogleAuthenticatorCompatibility(true)
+ ->generateSecretKey(17);
+
+ $this->assertEquals(
+ 17,
+ strlen(
+ $this->google2fa
+ ->setEnforceGoogleAuthenticatorCompatibility(false)
+ ->generateSecretKey(17)
+ )
+ );
+ }
+}
generated by cgit (git 2.34.1) at 2026-05-16 11:04:49 +0000