Add trusted browser classes
- Added some tests
This commit is contained in:
		
					parent
					
						
							
								b633d75e6c
							
						
					
				
			
			
				commit
				
					
						72bb3bce34
					
				
			
		
					 7 changed files with 356 additions and 0 deletions
				
			
		
							
								
								
									
										56
									
								
								src/BaseEntity.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										56
									
								
								src/BaseEntity.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,56 @@ | ||||||
|  | <?php | ||||||
|  | /** | ||||||
|  |  * @copyright Copyright (C) 2020, Friendica | ||||||
|  |  * | ||||||
|  |  * @license GNU AGPL version 3 or any later version | ||||||
|  |  * | ||||||
|  |  * This program is free software: you can redistribute it and/or modify | ||||||
|  |  * it under the terms of the GNU Affero General Public License as | ||||||
|  |  * published by the Free Software Foundation, either version 3 of the | ||||||
|  |  * License, or (at your option) any later version. | ||||||
|  |  * | ||||||
|  |  * This program is distributed in the hope that it will be useful, | ||||||
|  |  * but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||||
|  |  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the | ||||||
|  |  * GNU Affero General Public License for more details. | ||||||
|  |  * | ||||||
|  |  * You should have received a copy of the GNU Affero General Public License | ||||||
|  |  * along with this program.  If not, see <https://www.gnu.org/licenses/>. | ||||||
|  |  * | ||||||
|  |  */ | ||||||
|  | 
 | ||||||
|  | namespace Friendica; | ||||||
|  | 
 | ||||||
|  | use Friendica\Network\HTTPException; | ||||||
|  | 
 | ||||||
|  | /** | ||||||
|  |  * The Entity classes directly inheriting from this abstract class are meant to represent a single business entity. | ||||||
|  |  * Their properties may or may not correspond with the database fields of the table we use to represent it. | ||||||
|  |  * Each model method must correspond to a business action being performed on this entity. | ||||||
|  |  * Only these methods will be allowed to alter the model data. | ||||||
|  |  * | ||||||
|  |  * To persist such a model, the associated Repository must be instantiated and the "save" method must be called | ||||||
|  |  * and passed the entity as a parameter. | ||||||
|  |  * | ||||||
|  |  * Ideally, the constructor should only be called in the associated Factory which will instantiate entities depending | ||||||
|  |  * on the provided data. | ||||||
|  |  * | ||||||
|  |  * Since these objects aren't meant to be using any dependency, including logging, unit tests can and must be | ||||||
|  |  * written for each and all of their methods | ||||||
|  |  */ | ||||||
|  | abstract class BaseEntity extends BaseDataTransferObject | ||||||
|  | { | ||||||
|  | 	/** | ||||||
|  | 	 * @param string $name | ||||||
|  | 	 * @return mixed | ||||||
|  | 	 * @throws HTTPException\InternalServerErrorException | ||||||
|  | 	 */ | ||||||
|  | 	public function __get(string $name) | ||||||
|  | 	{ | ||||||
|  | 		if (!property_exists($this, $name)) { | ||||||
|  | 			throw new HTTPException\InternalServerErrorException('Unknown property ' . $name . ' in Entity ' . static::class); | ||||||
|  | 		} | ||||||
|  | 
 | ||||||
|  | 		return $this->$name; | ||||||
|  | 	} | ||||||
|  | } | ||||||
							
								
								
									
										10
									
								
								src/Security/TwoFactor/Collection/TrustedBrowsers.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										10
									
								
								src/Security/TwoFactor/Collection/TrustedBrowsers.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,10 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Security\TwoFactor\Collection; | ||||||
|  | 
 | ||||||
|  | use Friendica\BaseCollection; | ||||||
|  | 
 | ||||||
|  | class TrustedBrowsers extends BaseCollection | ||||||
|  | { | ||||||
|  | 
 | ||||||
|  | } | ||||||
							
								
								
									
										33
									
								
								src/Security/TwoFactor/Factory/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										33
									
								
								src/Security/TwoFactor/Factory/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,33 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Security\TwoFactor\Factory; | ||||||
|  | 
 | ||||||
|  | use Friendica\BaseFactory; | ||||||
|  | use Friendica\Util\DateTimeFormat; | ||||||
|  | use Friendica\Util\Strings; | ||||||
|  | 
 | ||||||
|  | class TrustedBrowser extends BaseFactory | ||||||
|  | { | ||||||
|  | 	public function createForUserWithUserAgent($uid, $userAgent): \Friendica\Security\TwoFactor\Model\TrustedBrowser | ||||||
|  | 	{ | ||||||
|  | 		$trustedHash = Strings::getRandomHex(); | ||||||
|  | 
 | ||||||
|  | 		return new \Friendica\Security\TwoFactor\Model\TrustedBrowser( | ||||||
|  | 			$trustedHash, | ||||||
|  | 			$uid, | ||||||
|  | 			$userAgent, | ||||||
|  | 			DateTimeFormat::utcNow() | ||||||
|  | 		); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function createFromTableRow(array $row): \Friendica\Security\TwoFactor\Model\TrustedBrowser | ||||||
|  | 	{ | ||||||
|  | 		return new \Friendica\Security\TwoFactor\Model\TrustedBrowser( | ||||||
|  | 			$row['cookie_hash'], | ||||||
|  | 			$row['uid'], | ||||||
|  | 			$row['user_agent'], | ||||||
|  | 			$row['created'], | ||||||
|  | 			$row['last_used'] | ||||||
|  | 		); | ||||||
|  | 	} | ||||||
|  | } | ||||||
							
								
								
									
										51
									
								
								src/Security/TwoFactor/Model/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										51
									
								
								src/Security/TwoFactor/Model/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,51 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Security\TwoFactor\Model; | ||||||
|  | 
 | ||||||
|  | use Friendica\BaseEntity; | ||||||
|  | use Friendica\Util\DateTimeFormat; | ||||||
|  | 
 | ||||||
|  | /** | ||||||
|  |  * Class TrustedBrowser | ||||||
|  |  * | ||||||
|  |  * | ||||||
|  |  * @property-read $cookie_hash | ||||||
|  |  * @property-read $uid | ||||||
|  |  * @property-read $user_agent | ||||||
|  |  * @property-read $created | ||||||
|  |  * @property-read $last_used | ||||||
|  |  * @package Friendica\Model\TwoFactor | ||||||
|  |  */ | ||||||
|  | class TrustedBrowser extends BaseEntity | ||||||
|  | { | ||||||
|  | 	protected $cookie_hash; | ||||||
|  | 	protected $uid; | ||||||
|  | 	protected $user_agent; | ||||||
|  | 	protected $created; | ||||||
|  | 	protected $last_used; | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * Please do not use this constructor directly, instead use one of the method of the TrustedBroser factory. | ||||||
|  | 	 * | ||||||
|  | 	 * @see \Friendica\Security\TwoFactor\Factory\TrustedBrowser | ||||||
|  | 	 * | ||||||
|  | 	 * @param string      $cookie_hash | ||||||
|  | 	 * @param int         $uid | ||||||
|  | 	 * @param string      $user_agent | ||||||
|  | 	 * @param string      $created | ||||||
|  | 	 * @param string|null $last_used | ||||||
|  | 	 */ | ||||||
|  | 	public function __construct(string $cookie_hash, int $uid, string $user_agent, string $created, string $last_used = null) | ||||||
|  | 	{ | ||||||
|  | 		$this->cookie_hash = $cookie_hash; | ||||||
|  | 		$this->uid = $uid; | ||||||
|  | 		$this->user_agent = $user_agent; | ||||||
|  | 		$this->created = $created; | ||||||
|  | 		$this->last_used = $last_used; | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function recordUse() | ||||||
|  | 	{ | ||||||
|  | 		$this->last_used = DateTimeFormat::utcNow(); | ||||||
|  | 	} | ||||||
|  | } | ||||||
							
								
								
									
										98
									
								
								src/Security/TwoFactor/Repository/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										98
									
								
								src/Security/TwoFactor/Repository/TrustedBrowser.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,98 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Security\TwoFactor\Repository; | ||||||
|  | 
 | ||||||
|  | use Friendica\Security\TwoFactor\Model; | ||||||
|  | use Friendica\Security\TwoFactor\Collection\TrustedBrowsers; | ||||||
|  | use Friendica\Database\Database; | ||||||
|  | use Friendica\Network\HTTPException\NotFoundException; | ||||||
|  | use Psr\Log\LoggerInterface; | ||||||
|  | 
 | ||||||
|  | class TrustedBrowser | ||||||
|  | { | ||||||
|  | 	/** @var Database  */ | ||||||
|  | 	protected $db; | ||||||
|  | 
 | ||||||
|  | 	/** @var LoggerInterface  */ | ||||||
|  | 	protected $logger; | ||||||
|  | 
 | ||||||
|  | 	/** @var \Friendica\Security\TwoFactor\Factory\TrustedBrowser  */ | ||||||
|  | 	protected $factory; | ||||||
|  | 
 | ||||||
|  | 	protected static $table_name = '2fa_trusted_browser'; | ||||||
|  | 
 | ||||||
|  | 	public function __construct(Database $database, LoggerInterface $logger, \Friendica\Security\TwoFactor\Factory\TrustedBrowser $factory = null) | ||||||
|  | 	{ | ||||||
|  | 		$this->db = $database; | ||||||
|  | 		$this->logger = $logger; | ||||||
|  | 		$this->factory = $factory ?? new \Friendica\Security\TwoFactor\Factory\TrustedBrowser($logger); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * @param string $cookie_hash | ||||||
|  | 	 * @return Model\TrustedBrowser|null | ||||||
|  | 	 * @throws \Exception | ||||||
|  | 	 */ | ||||||
|  | 	public function selectOneByHash(string $cookie_hash): Model\TrustedBrowser | ||||||
|  | 	{ | ||||||
|  | 		$fields = $this->db->selectFirst(self::$table_name, [], ['cookie_hash' => $cookie_hash]); | ||||||
|  | 		if (!$this->db->isResult($fields)) { | ||||||
|  | 			throw new NotFoundException(''); | ||||||
|  | 		} | ||||||
|  | 
 | ||||||
|  | 		return $this->factory->createFromTableRow($fields); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function selectAllByUid(int $uid): TrustedBrowsers | ||||||
|  | 	{ | ||||||
|  | 		$rows = $this->db->selectToArray(self::$table_name, [], ['uid' => $uid]); | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowsers = []; | ||||||
|  | 		foreach ($rows as $fields) { | ||||||
|  | 			$trustedBrowsers[] = $this->factory->createFromTableRow($fields); | ||||||
|  | 		} | ||||||
|  | 
 | ||||||
|  | 		return new TrustedBrowsers($trustedBrowsers); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * @param Model\TrustedBrowser $trustedBrowser | ||||||
|  | 	 * @return bool | ||||||
|  | 	 * @throws \Exception | ||||||
|  | 	 */ | ||||||
|  | 	public function save(Model\TrustedBrowser $trustedBrowser): bool | ||||||
|  | 	{ | ||||||
|  | 		return $this->db->insert(self::$table_name, $trustedBrowser->toArray(), $this->db::INSERT_UPDATE); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * @param Model\TrustedBrowser $trustedBrowser | ||||||
|  | 	 * @return bool | ||||||
|  | 	 * @throws \Exception | ||||||
|  | 	 */ | ||||||
|  | 	public function remove(Model\TrustedBrowser $trustedBrowser): bool | ||||||
|  | 	{ | ||||||
|  | 		return $this->db->delete(self::$table_name, ['cookie_hash' => $trustedBrowser->cookie_hash]); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * @param int    $local_user | ||||||
|  | 	 * @param string $cookie_hash | ||||||
|  | 	 * @return bool | ||||||
|  | 	 * @throws \Exception | ||||||
|  | 	 */ | ||||||
|  | 	public function removeForUser(int $local_user, string $cookie_hash): bool | ||||||
|  | 	{ | ||||||
|  | 		return $this->db->delete(self::$table_name, ['cookie_hash' => $cookie_hash,'uid' => $local_user]); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	/** | ||||||
|  | 	 * @param int $local_user | ||||||
|  | 	 * @return bool | ||||||
|  | 	 * @throws \Exception | ||||||
|  | 	 */ | ||||||
|  | 	public function removeAllForUser(int $local_user): bool | ||||||
|  | 	{ | ||||||
|  | 		return $this->db->delete(self::$table_name, ['uid' => $local_user]); | ||||||
|  | 	} | ||||||
|  | } | ||||||
							
								
								
									
										62
									
								
								tests/src/Security/TwoFactor/Factory/TrustedBrowserTest.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										62
									
								
								tests/src/Security/TwoFactor/Factory/TrustedBrowserTest.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,62 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Test\src\Security\TwoFactor\Factory; | ||||||
|  | 
 | ||||||
|  | use Friendica\Security\TwoFactor\Factory\TrustedBrowser; | ||||||
|  | use Friendica\Util\DateTimeFormat; | ||||||
|  | use Friendica\Util\Logger\VoidLogger; | ||||||
|  | use Friendica\Util\Strings; | ||||||
|  | 
 | ||||||
|  | class TrustedBrowserTest extends \PHPUnit_Framework_TestCase | ||||||
|  | { | ||||||
|  | 	public function testCreateFromTableRowSuccess() | ||||||
|  | 	{ | ||||||
|  | 		$factory = new TrustedBrowser(new VoidLogger()); | ||||||
|  | 
 | ||||||
|  | 		$row = [ | ||||||
|  | 			'cookie_hash' => Strings::getRandomHex(), | ||||||
|  | 			'uid' => 42, | ||||||
|  | 			'user_agent' => 'PHPUnit', | ||||||
|  | 			'created' => DateTimeFormat::utcNow(), | ||||||
|  | 			'last_used' => null, | ||||||
|  | 		]; | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser = $factory->createFromTableRow($row); | ||||||
|  | 
 | ||||||
|  | 		$this->assertEquals($row, $trustedBrowser->toArray()); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function testCreateFromTableRowMissingData() | ||||||
|  | 	{ | ||||||
|  | 		$this->expectException(\TypeError::class); | ||||||
|  | 
 | ||||||
|  | 		$factory = new TrustedBrowser(new VoidLogger()); | ||||||
|  | 
 | ||||||
|  | 		$row = [ | ||||||
|  | 			'cookie_hash' => null, | ||||||
|  | 			'uid' => null, | ||||||
|  | 			'user_agent' => null, | ||||||
|  | 			'created' => null, | ||||||
|  | 			'last_used' => null, | ||||||
|  | 		]; | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser = $factory->createFromTableRow($row); | ||||||
|  | 
 | ||||||
|  | 		$this->assertEquals($row, $trustedBrowser->toArray()); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function testCreateForUserWithUserAgent() | ||||||
|  | 	{ | ||||||
|  | 		$factory = new TrustedBrowser(new VoidLogger()); | ||||||
|  | 
 | ||||||
|  | 		$uid = 42; | ||||||
|  | 		$userAgent = 'PHPUnit'; | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser = $factory->createForUserWithUserAgent($uid, $userAgent); | ||||||
|  | 
 | ||||||
|  | 		$this->assertNotEmpty($trustedBrowser->cookie_hash); | ||||||
|  | 		$this->assertEquals($uid, $trustedBrowser->uid); | ||||||
|  | 		$this->assertEquals($userAgent, $trustedBrowser->user_agent); | ||||||
|  | 		$this->assertNotEmpty($trustedBrowser->created); | ||||||
|  | 	} | ||||||
|  | } | ||||||
							
								
								
									
										46
									
								
								tests/src/Security/TwoFactor/Model/TrustedBrowserTest.php
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										46
									
								
								tests/src/Security/TwoFactor/Model/TrustedBrowserTest.php
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,46 @@ | ||||||
|  | <?php | ||||||
|  | 
 | ||||||
|  | namespace Friendica\Test\src\Security\TwoFactor\Model; | ||||||
|  | 
 | ||||||
|  | use Friendica\Security\TwoFactor\Model\TrustedBrowser; | ||||||
|  | use Friendica\Util\DateTimeFormat; | ||||||
|  | use Friendica\Util\Strings; | ||||||
|  | 
 | ||||||
|  | class TrustedBrowserTest extends \PHPUnit_Framework_TestCase | ||||||
|  | { | ||||||
|  | 	public function test__construct() | ||||||
|  | 	{ | ||||||
|  | 		$hash = Strings::getRandomHex(); | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser = new TrustedBrowser( | ||||||
|  | 			$hash, | ||||||
|  | 			42, | ||||||
|  | 			'PHPUnit', | ||||||
|  | 			DateTimeFormat::utcNow() | ||||||
|  | 		); | ||||||
|  | 
 | ||||||
|  | 		$this->assertEquals($hash, $trustedBrowser->cookie_hash); | ||||||
|  | 		$this->assertEquals(42, $trustedBrowser->uid); | ||||||
|  | 		$this->assertEquals('PHPUnit', $trustedBrowser->user_agent); | ||||||
|  | 		$this->assertNotEmpty($trustedBrowser->created); | ||||||
|  | 	} | ||||||
|  | 
 | ||||||
|  | 	public function testRecordUse() | ||||||
|  | 	{ | ||||||
|  | 		$hash = Strings::getRandomHex(); | ||||||
|  | 		$past = DateTimeFormat::utc('now - 5 minutes'); | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser = new TrustedBrowser( | ||||||
|  | 			$hash, | ||||||
|  | 			42, | ||||||
|  | 			'PHPUnit', | ||||||
|  | 			$past, | ||||||
|  | 			$past | ||||||
|  | 		); | ||||||
|  | 
 | ||||||
|  | 		$trustedBrowser->recordUse(); | ||||||
|  | 
 | ||||||
|  | 		$this->assertEquals($past, $trustedBrowser->created); | ||||||
|  | 		$this->assertGreaterThan($past, $trustedBrowser->last_used); | ||||||
|  | 	} | ||||||
|  | } | ||||||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue