diff options
| author | Jakub Senko <jakubsenko@gmail.com> | 2018-10-28 10:12:13 +0100 |
|---|---|---|
| committer | Jakub Senko <jakubsenko@gmail.com> | 2018-10-28 10:12:13 +0100 |
| commit | 1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f (patch) | |
| tree | 4ff64b0d309db4667f16d4acdb2906a4136686ad /tests/functional | |
| parent | 30d1048c8e3b66f3a3144974f9f3fc87054b2be2 (diff) | |
| download | forums-1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f.tar forums-1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f.tar.gz forums-1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f.tar.bz2 forums-1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f.tar.xz forums-1d2a654ad7f34367cc5f8c8b3d5893e617b92f3f.zip | |
[ticket/10432] Fix errors and address privacy concern
PHPBB3-10432
Diffstat (limited to 'tests/functional')
| -rw-r--r-- | tests/functional/user_password_reset_test.php | 16 |
1 files changed, 13 insertions, 3 deletions
diff --git a/tests/functional/user_password_reset_test.php b/tests/functional/user_password_reset_test.php index af53ba2b0d..2361eed066 100644 --- a/tests/functional/user_password_reset_test.php +++ b/tests/functional/user_password_reset_test.php @@ -23,17 +23,27 @@ class phpbb_functional_user_password_reset_test extends phpbb_functional_test_ca $this->add_lang('ucp'); $user_id = $this->create_user('reset-password-test-user', 'reset-password-test-user@test.com'); + // test without email $crawler = self::request('GET', "ucp.php?mode=sendpassword&sid={$this->sid}"); $form = $crawler->selectButton('submit')->form(); $crawler = self::submit($form); $this->assertContainsLang('NO_EMAIL_USER', $crawler->text()); + // test with non-existent email + $crawler = self::request('GET', "ucp.php?mode=sendpassword&sid={$this->sid}"); + $form = $crawler->selectButton('submit')->form(array( + 'email' => 'non-existent@email.com', + )); + $crawler = self::submit($form); + $this->assertContainsLang('PASSWORD_UPDATED_IF_EXISTED', $crawler->text()); + + // test with correct email $crawler = self::request('GET', "ucp.php?mode=sendpassword&sid={$this->sid}"); $form = $crawler->selectButton('submit')->form(array( 'email' => 'reset-password-test-user@test.com', )); $crawler = self::submit($form); - $this->assertContainsLang('PASSWORD_UPDATED', $crawler->text()); + $this->assertContainsLang('PASSWORD_UPDATED_IF_EXISTED', $crawler->text()); // Check if columns in database were updated for password reset $this->get_user_data('reset-password-test-user'); @@ -57,7 +67,7 @@ class phpbb_functional_user_password_reset_test extends phpbb_functional_test_ca 'username' => 'reset-password-test-user1', )); $crawler = self::submit($form); - $this->assertContainsLang('PASSWORD_UPDATED', $crawler->text()); + $this->assertContainsLang('PASSWORD_UPDATED_IF_EXISTED', $crawler->text()); // Check if columns in database were updated for password reset $this->get_user_data('reset-password-test-user1'); @@ -182,7 +192,7 @@ class phpbb_functional_user_password_reset_test extends phpbb_functional_test_ca $db = $this->get_db(); $sql = 'SELECT user_id, username, user_type, user_email, user_newpasswd, user_lang, user_notify_type, user_actkey, user_inactive_reason FROM ' . USERS_TABLE . " - WHERE username = '$username'"; + WHERE username = '" . $db->sql_escape($username) . "'"; $result = $db->sql_query($sql); $this->user_data = $db->sql_fetchrow($result); $db->sql_freeresult($result); |