Home Explore Help
Sign In
sangfroid
/
blogben
1
0
Fork 0
Files Issues 4 Pull Requests 0 Wiki
Tree: 779166828d
Branches Tags
blogben
/
tests
/
LoginControllerTest.php

LoginControllerTest.php 2.6 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. <?php
    2. 

  2. 

  3. namespace App\Tests;
    4. 

  4. 

  5. use App\Entity\User;
    6. 

  6. use Symfony\Bundle\FrameworkBundle\KernelBrowser;
    7. 

  7. use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;
    8. 

  8. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
    9. 

  9. 

  10. class LoginControllerTest extends WebTestCase
    11. 

  11. {
    12. 

  12.     private KernelBrowser $client;
    13. 

  13. 

  14.     protected function setUp(): void
    15. 

  15.     {
    16. 

  16.         $this->client = static::createClient();
    17. 

  17.         $container = static::getContainer();
    18. 

  18.         $em = $container->get('doctrine.orm.entity_manager');
    19. 

  19.         $userRepository = $em->getRepository(User::class);
    20. 

  20. 

  21.         // Remove any existing users from the test database
    22. 

  22.         foreach ($userRepository->findAll() as $user) {
    23. 

  23.             $em->remove($user);
    24. 

  24.         }
    25. 

  25. 

  26.         $em->flush();
    27. 

  27. 

  28.         // Create a User fixture
    29. 

  29.         /** @var UserPasswordHasherInterface $passwordHasher */
    30. 

  30.         $passwordHasher = $container->get('security.user_password_hasher');
    31. 

  31. 

  32.         $user = (new User())->setEmail('email@example.com');
    33. 

  33.         $user->setPassword($passwordHasher->hashPassword($user, 'password'));
    34. 

  34. 

  35.         $em->persist($user);
    36. 

  36.         $em->flush();
    37. 

  37.     }
    38. 

  38. 

  39.     public function testLogin(): void
    40. 

  40.     {
    41. 

  41.         // Denied - Can't login with invalid email address.
    42. 

  42.         $this->client->request('GET', '/login');
    43. 

  43.         self::assertResponseIsSuccessful();
    44. 

  44. 

  45.         $this->client->submitForm('Sign in', [
    46. 

  46.             '_username' => 'doesNotExist@example.com',
    47. 

  47.             '_password' => 'password',
    48. 

  48.         ]);
    49. 

  49. 

  50.         self::assertResponseRedirects('/login');
    51. 

  51.         $this->client->followRedirect();
    52. 

  52. 

  53.         // Ensure we do not reveal if the user exists or not.
    54. 

  54.         self::assertSelectorTextContains('.alert-danger', 'Invalid credentials.');
    55. 

  55. 

  56.         // Denied - Can't login with invalid password.
    57. 

  57.         $this->client->request('GET', '/login');
    58. 

  58.         self::assertResponseIsSuccessful();
    59. 

  59. 

  60.         $this->client->submitForm('Sign in', [
    61. 

  61.             '_username' => 'email@example.com',
    62. 

  62.             '_password' => 'bad-password',
    63. 

  63.         ]);
    64. 

  64. 

  65.         self::assertResponseRedirects('/login');
    66. 

  66.         $this->client->followRedirect();
    67. 

  67. 

  68.         // Ensure we do not reveal the user exists but the password is wrong.
    69. 

  69.         self::assertSelectorTextContains('.alert-danger', 'Invalid credentials.');
    70. 

  70. 

  71.         // Success - Login with valid credentials is allowed.
    72. 

  72.         $this->client->submitForm('Sign in', [
    73. 

  73.             '_username' => 'email@example.com',
    74. 

  74.             '_password' => 'password',
    75. 

  75.         ]);
    76. 

  76. 

  77.         self::assertResponseRedirects('/');
    78. 

  78.         $this->client->followRedirect();
    79. 

  79. 

  80.         self::assertSelectorNotExists('.alert-danger');
    81. 

  81.         self::assertResponseIsSuccessful();
    82. 

  82.     }
    83. 

  83. }
    84.