Strona główna Odkrywaj Pomoc
Zaloguj się
fphammerle
/
yii2-client-cert-auth
kopia lustrzana https://github.com/fphammerle/yii2-client-cert-auth
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Przeglądaj źródła

Authenticator: added method loginByDistinguishedName()

Fabian Peter Hammerle 8 lat temu
rodzic
aab1fe8e63
commit
b0a800d02a
2 zmienionych plików z 77 dodań i 3 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 14 3
      Authenticator.php
  2. 63 0
      tests/AuthenticatorTest.php

+ 14 - 3
Authenticator.php
Wyświetl plik 

@@ -5,10 +5,21 @@ namespace fphammerle\yii2\auth\clientcert;
 
 class Authenticator extends \yii\base\Component
 
 {
 
     /**
 
-     * @return string
 
+     * @see \yii\web\User::switchIdentity
 
+     * @return IdentityInterface|null
 
      */
 
-    public static function foo()
 
+    public function loginByDistinguishedName($dn, $duration = 0)
 
     {
 
-        return 'bar';
 
+        $subj = Subject::findByDistinguishedName($dn);
 
+        if($subj) {
 
+            \Yii::$app->user->switchIdentity($subj->identity, $duration);
 
+            if(\Yii::$app->user->identity == $subj->identity) {
 
+                return $subj->identity;
 
+            } else {
 
+                return null;
 
+            }
 
+        } else {
 
+            return null;
 
+        }
 
     }
 
 }

+ 63 - 0
tests/AuthenticatorTest.php
Wyświetl plik 

@@ -0,0 +1,63 @@
 
+<?php
 
+
 
+namespace fphammerle\yii2\auth\clientcert\tests;
 
+
 
+use \fphammerle\yii2\auth\clientcert\Authenticator;
 
+use \fphammerle\yii2\auth\clientcert\Subject;
 
+use \fphammerle\yii2\auth\clientcert\migrations;
 
+
 
+class AuthenticatorTest extends TestCase
 
+{
 
+    protected $alice;
 
+    protected $bob;
 
+
 
+    protected function setUp()
 
+    {
 
+        $this->mockApplication();
 
+        ob_start();
 
+        (new migrations\CreateSubjectTable)->up();
 
+        ob_end_clean();
 
+
 
+        $this->alice = new models\User('alice');
 
+        $this->bob = new models\User('bob');
 
+        $this->assertTrue($this->alice->save());
 
+        $this->assertTrue($this->bob->save());
 
+
 
+        (new Subject($this->alice, 'CN=Alice,C=AT'))->save();
 
+        (new Subject($this->alice, 'CN=Alice,O=Office,C=AT'))->save();
 
+        (new Subject($this->bob, 'CN=Bob,C=AT'))->save();
 
+
 
+        $this->assertNull(self::getIdentity());
 
+    }
 
+
 
+    public static function getIdentity()
 
+    {
 
+        return \Yii::$app->user->getIdentity();
 
+    }
 
+
 
+    public function testLoginByDN()
 
+    {
 
+        $a = new Authenticator;
 
+        $this->assertNull(self::getIdentity());
 
+
 
+        $u = $a->loginByDistinguishedName('CN=Alice,C=AT');
 
+        $this->assertEquals($this->alice->id, $u->id);
 
+        $this->assertEquals($this->alice->id, self::getIdentity()->id);
 
+
 
+        $u = $a->loginByDistinguishedName('CN=Alice,O=Secret,C=AT');
 
+        $this->assertNull($u);
 
+        $this->assertEquals($this->alice->id, self::getIdentity()->id);
 
+
 
+        $u = $a->loginByDistinguishedName('CN=Bob,C=AT');
 
+        $this->assertEquals($this->bob->id, $u->id);
 
+        $this->assertEquals($this->bob->id, self::getIdentity()->id);
 
+
 
+        $u = $a->loginByDistinguishedName('');
 
+        $this->assertNull($u);
 
+        $this->assertEquals($this->bob->id, self::getIdentity()->id);
 
+
 
+        $u = $a->loginByDistinguishedName(NULL);
 
+        $this->assertNull($u);
 
+        $this->assertEquals($this->bob->id, self::getIdentity()->id);
 
+    }
 
+}