mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-15 04:18:01 +00:00
077a9a628e
* fix: typo ZITADEL uppercase for OTP Issuer * fix: password validation after change in current user agent * fix: otp validation after setup in current user agent * add waiting * add waiting * show u2f state * regenerate css * add useragentID to webauthn verify * return mfa attribute in mgmt * switch between providers * use preferredLoginName for webauthn display * some fixes * correct translations for login * add some missing event translations * fix usersession test * remove unnecessary cancel button on password change done
218 lines
7.0 KiB
Go
218 lines
7.0 KiB
Go
package model
|
|
|
|
import (
|
|
"encoding/json"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
"github.com/caos/zitadel/internal/crypto"
|
|
es_models "github.com/caos/zitadel/internal/eventstore/models"
|
|
es_model "github.com/caos/zitadel/internal/user/repository/eventsourcing/model"
|
|
)
|
|
|
|
func now() time.Time {
|
|
return time.Now().UTC().Round(1 * time.Second)
|
|
}
|
|
|
|
func TestAppendEvent(t *testing.T) {
|
|
type args struct {
|
|
event *es_models.Event
|
|
userView *UserSessionView
|
|
}
|
|
tests := []struct {
|
|
name string
|
|
args args
|
|
result *UserSessionView
|
|
}{
|
|
{
|
|
name: "append user password check succeeded event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.UserPasswordCheckSucceeded},
|
|
userView: &UserSessionView{},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: now()},
|
|
},
|
|
{
|
|
name: "append human password check succeeded event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanPasswordCheckSucceeded},
|
|
userView: &UserSessionView{},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: now()},
|
|
},
|
|
{
|
|
name: "append user password check failed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.UserPasswordCheckFailed},
|
|
userView: &UserSessionView{PasswordVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append human password check failed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanPasswordCheckFailed},
|
|
userView: &UserSessionView{PasswordVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append user password changed event",
|
|
args: args{
|
|
event: &es_models.Event{
|
|
CreationDate: now(),
|
|
Type: es_model.UserPasswordChanged,
|
|
Data: func() []byte {
|
|
d, _ := json.Marshal(&es_model.Password{
|
|
Secret: &crypto.CryptoValue{Crypted: []byte("test")},
|
|
})
|
|
return d
|
|
}(),
|
|
},
|
|
userView: &UserSessionView{UserAgentID: "id", PasswordVerification: now()},
|
|
},
|
|
result: &UserSessionView{UserAgentID: "id", ChangeDate: now(), PasswordVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append human password changed event",
|
|
args: args{
|
|
event: &es_models.Event{
|
|
CreationDate: now(),
|
|
Type: es_model.HumanPasswordChanged,
|
|
Data: func() []byte {
|
|
d, _ := json.Marshal(&es_model.PasswordChange{
|
|
Password: es_model.Password{
|
|
Secret: &crypto.CryptoValue{Crypted: []byte("test")},
|
|
},
|
|
})
|
|
return d
|
|
}(),
|
|
},
|
|
userView: &UserSessionView{UserAgentID: "id", PasswordVerification: now()},
|
|
},
|
|
result: &UserSessionView{UserAgentID: "id", ChangeDate: now(), PasswordVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append human password changed event same user agent",
|
|
args: args{
|
|
event: &es_models.Event{
|
|
CreationDate: now(),
|
|
Type: es_model.HumanPasswordChanged,
|
|
Data: func() []byte {
|
|
d, _ := json.Marshal(&es_model.PasswordChange{
|
|
Password: es_model.Password{
|
|
Secret: &crypto.CryptoValue{Crypted: []byte("test")},
|
|
},
|
|
UserAgentID: "id",
|
|
})
|
|
return d
|
|
}(),
|
|
},
|
|
userView: &UserSessionView{UserAgentID: "id", PasswordVerification: now()},
|
|
},
|
|
result: &UserSessionView{UserAgentID: "id", ChangeDate: now(), PasswordVerification: now()},
|
|
},
|
|
{
|
|
name: "append user otp verified event",
|
|
args: args{
|
|
event: &es_models.Event{
|
|
CreationDate: now(),
|
|
Type: es_model.MFAOTPVerified,
|
|
Data: nil,
|
|
},
|
|
userView: &UserSessionView{UserAgentID: "id"},
|
|
},
|
|
result: &UserSessionView{UserAgentID: "id", ChangeDate: now()},
|
|
},
|
|
{
|
|
name: "append user otp verified event same user agent",
|
|
args: args{
|
|
event: &es_models.Event{
|
|
CreationDate: now(),
|
|
Type: es_model.MFAOTPVerified,
|
|
Data: func() []byte {
|
|
d, _ := json.Marshal(&es_model.OTPVerified{
|
|
UserAgentID: "id",
|
|
})
|
|
return d
|
|
}(),
|
|
},
|
|
userView: &UserSessionView{UserAgentID: "id"},
|
|
},
|
|
result: &UserSessionView{UserAgentID: "id", ChangeDate: now(), SecondFactorVerification: now()},
|
|
},
|
|
{
|
|
name: "append user otp check succeeded event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.MFAOTPCheckSucceeded},
|
|
userView: &UserSessionView{},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: now()},
|
|
},
|
|
{
|
|
name: "append human otp check succeeded event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanMFAOTPCheckSucceeded},
|
|
userView: &UserSessionView{},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: now()},
|
|
},
|
|
{
|
|
name: "append user otp check failed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.MFAOTPCheckFailed},
|
|
userView: &UserSessionView{SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append human otp check failed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanMFAOTPCheckFailed},
|
|
userView: &UserSessionView{SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append user otp removed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.MFAOTPRemoved},
|
|
userView: &UserSessionView{SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append human otp removed event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanMFAOTPRemoved},
|
|
userView: &UserSessionView{SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), SecondFactorVerification: time.Time{}},
|
|
},
|
|
{
|
|
name: "append user signed out event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.SignedOut},
|
|
userView: &UserSessionView{PasswordVerification: now(), SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: time.Time{}, SecondFactorVerification: time.Time{}, State: 1},
|
|
},
|
|
{
|
|
name: "append human signed out event",
|
|
args: args{
|
|
event: &es_models.Event{CreationDate: now(), Type: es_model.HumanSignedOut},
|
|
userView: &UserSessionView{PasswordVerification: now(), SecondFactorVerification: now()},
|
|
},
|
|
result: &UserSessionView{ChangeDate: now(), PasswordVerification: time.Time{}, SecondFactorVerification: time.Time{}, State: 1},
|
|
},
|
|
}
|
|
for _, tt := range tests {
|
|
t.Run(tt.name, func(t *testing.T) {
|
|
tt.args.userView.AppendEvent(tt.args.event)
|
|
assert.Equal(t, tt.result, tt.args.userView)
|
|
})
|
|
}
|
|
}
|