+<?php

+/**

+*

+* @package testing

+* @copyright (c) 2014 phpBB Group

+* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+*

+*/

+

+require_once dirname(__FILE__) . '/../../phpBB/includes/functions.php';

+require_once dirname(__FILE__) . '/../../phpBB/includes/functions_content.php';

+require_once dirname(__FILE__) . '/../../phpBB/includes/functions_posting.php';

+require_once dirname(__FILE__) . '/../../phpBB/includes/utf/utf_tools.php';

+

+/**

+* @group functional

+*/

+class phpbb_functional_download_test extends phpbb_functional_test_case

+{

+ protected $data = array();

+

+ public function test_setup_forums()

+ {

+ $this->login();

+ $this->admin_login();

+

+ $crawler = self::request('GET', "adm/index.php?i=acp_forums&mode=manage&sid={$this->sid}");

+ $form = $crawler->selectButton('addforum')->form(array(

+ 'forum_name' => 'Download #1',

+ ));

+ $crawler = self::submit($form);

+ $form = $crawler->selectButton('update')->form(array(

+ 'forum_perm_from' => 2,

+ ));

+ $crawler = self::submit($form);

+ }

+

+ public function test_create_post()

+ {

+ $this->login();

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ ));

+

+ // Test creating topic

+ $post = $this->create_topic($this->data['forums']['Download #1'], 'Download Topic #1', 'This is a test topic posted by the testing framework.', array('upload_files' => 1));

+ $crawler = self::request('GET', "viewtopic.php?t={$post['topic_id']}&sid={$this->sid}");

+

+ $this->assertContains('Download Topic #1', $crawler->filter('html')->text());

+ $this->data['topics']['Download Topic #1'] = (int) $post['topic_id'];

+ $this->data['posts']['Download Topic #1'] = (int) $this->get_parameter_from_link($crawler->filter('.post')->selectLink($this->lang('POST', '', ''))->link()->getUri(), 'p');

+

+ // Test creating a reply

+ $post2 = $this->create_post($this->data['forums']['Download #1'], $post['topic_id'], 'Re: Download Topic #1-#2', 'This is a test post posted by the testing framework.', array('upload_files' => 1));

+ $crawler = self::request('GET', "viewtopic.php?t={$post2['topic_id']}&sid={$this->sid}");

+

+ $this->assertContains('Re: Download Topic #1-#2', $crawler->filter('html')->text());

+ $this->data['posts']['Re: Download Topic #1-#2'] = (int) $this->get_parameter_from_link($crawler->filter('.post')->eq(1)->selectLink($this->lang('POST', '', ''))->link()->getUri(), 'p');

+ }

+

+ public function test_download_accessible()

+ {

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ 'topics' => array(

+ 'Download Topic #1',

+ ),

+ 'posts' => array(

+ 'Download Topic #1',

+ 'Re: Download Topic #1-#2',

+ ),

+ 'attachments' => true,

+ ));

+

+ // Download topic archive as guest

+ $crawler = self::request('GET', "download/file.php?archive=.zip&topic_id={$this->data['topics']['Download Topic #1']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download post archive as guest

+ $crawler = self::request('GET', "download/file.php?archive=.zip&post_id={$this->data['posts']['Re: Download Topic #1-#2']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download attachment as guest

+ $crawler = self::request('GET', "download/file.php?id={$this->data['attachments'][$this->data['posts']['Re: Download Topic #1-#2']]}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('image/jpeg', $finfo->buffer($content));

+ }

+

+ public function test_softdelete_post()

+ {

+ $this->login();

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ 'topics' => array(

+ 'Download Topic #1',

+ ),

+ 'posts' => array(

+ 'Download Topic #1',

+ 'Re: Download Topic #1-#2',

+ ),

+ ));

+ $this->add_lang('posting');

+

+ $crawler = self::request('GET', "posting.php?mode=delete&f={$this->data['forums']['Download #1']}&p={$this->data['posts']['Re: Download Topic #1-#2']}&sid={$this->sid}");

+ $this->assertContainsLang('DELETE_PERMANENTLY', $crawler->text());

+

+ $form = $crawler->selectButton('Yes')->form();

+ $crawler = self::submit($form);

+ $this->assertContainsLang('POST_DELETED', $crawler->text());

+

+ $crawler = self::request('GET', "viewtopic.php?t={$this->data['topics']['Download Topic #1']}&sid={$this->sid}");

+ $this->assertContains($this->lang('POST_DISPLAY', '', ''), $crawler->text());

+ }

+

+ public function test_download_softdeleted_post()

+ {

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ 'topics' => array(

+ 'Download Topic #1',

+ ),

+ 'posts' => array(

+ 'Download Topic #1',

+ 'Re: Download Topic #1-#2',

+ ),

+ 'attachments' => true,

+ ));

+ $this->add_lang('viewtopic');

+

+ // Download topic archive as guest: still works

+ $crawler = self::request('GET', "download/file.php?archive=.zip&topic_id={$this->data['topics']['Download Topic #1']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // No download post archive as guest

+ $crawler = self::request('GET', "download/file.php?archive=.zip&post_id={$this->data['posts']['Re: Download Topic #1-#2']}", array(), false);

+ self::assert_response_html(404);

+ $this->assertContainsLang('ERROR_NO_ATTACHMENT', $crawler->filter('#message')->text());

+

+ // No download attachment as guest

+ $crawler = self::request('GET', "download/file.php?id={$this->data['attachments'][$this->data['posts']['Re: Download Topic #1-#2']]}", array(), false);

+ self::assert_response_html(404);

+ $this->assertContainsLang('ERROR_NO_ATTACHMENT', $crawler->filter('#message')->text());

+

+ // Login as admin and try again, should work now.

+ $this->login();

+

+ // Download topic archive as admin

+ $crawler = self::request('GET', "download/file.php?archive=.zip&topic_id={$this->data['topics']['Download Topic #1']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download post archive as admin

+ $crawler = self::request('GET', "download/file.php?archive=.zip&post_id={$this->data['posts']['Re: Download Topic #1-#2']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download attachment as admin

+ $crawler = self::request('GET', "download/file.php?id={$this->data['attachments'][$this->data['posts']['Re: Download Topic #1-#2']]}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('image/jpeg', $finfo->buffer($content));

+ }

+

+ public function test_softdelete_topic()

+ {

+ $this->login();

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ 'topics' => array(

+ 'Download Topic #1',

+ ),

+ 'posts' => array(

+ 'Download Topic #1',

+ 'Re: Download Topic #1-#2',

+ ),

+ ));

+

+ $crawler = self::request('GET', "viewtopic.php?t={$this->data['topics']['Download Topic #1']}&sid={$this->sid}");

+

+ $this->add_lang('posting');

+ $form = $crawler->selectButton('Go')->eq(2)->form();

+ $form['action']->select('delete_topic');

+ $crawler = self::submit($form);

+ $this->assertContainsLang('DELETE_PERMANENTLY', $crawler->text());

+

+ $this->add_lang('mcp');

+ $form = $crawler->selectButton('Yes')->form();

+ $crawler = self::submit($form);

+ $this->assertContainsLang('TOPIC_DELETED_SUCCESS', $crawler->text());

+

+ $crawler = self::request('GET', "viewtopic.php?t={$this->data['topics']['Download Topic #1']}&sid={$this->sid}");

+ $this->assertContains('Download Topic #1', $crawler->filter('h2')->text());

+ }

+

+ public function test_download_softdeleted_topic()

+ {

+ $this->load_ids(array(

+ 'forums' => array(

+ 'Download #1',

+ ),

+ 'topics' => array(

+ 'Download Topic #1',

+ ),

+ 'posts' => array(

+ 'Download Topic #1',

+ 'Re: Download Topic #1-#2',

+ ),

+ 'attachments' => true,

+ ));

+ $this->add_lang('viewtopic');

+

+ // Download topic archive as guest: still works

+ $crawler = self::request('GET', "download/file.php?archive=.zip&topic_id={$this->data['topics']['Download Topic #1']}", array(), false);

+ self::assert_response_html(404);

+ $this->assertContainsLang('ERROR_NO_ATTACHMENT', $crawler->filter('#message')->text());

+

+ // No download post archive as guest

+ $crawler = self::request('GET', "download/file.php?archive=.zip&post_id={$this->data['posts']['Re: Download Topic #1-#2']}", array(), false);

+ self::assert_response_html(404);

+ $this->assertContainsLang('ERROR_NO_ATTACHMENT', $crawler->filter('#message')->text());

+

+ // No download attachment as guest

+ $crawler = self::request('GET', "download/file.php?id={$this->data['attachments'][$this->data['posts']['Re: Download Topic #1-#2']]}", array(), false);

+ self::assert_response_html(404);

+ $this->assertContainsLang('ERROR_NO_ATTACHMENT', $crawler->filter('#message')->text());

+

+ // Login as admin and try again, should work now.

+ $this->login();

+

+ // Download topic archive as admin

+ $crawler = self::request('GET', "download/file.php?archive=.zip&topic_id={$this->data['topics']['Download Topic #1']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download post archive as admin

+ $crawler = self::request('GET', "download/file.php?archive=.zip&post_id={$this->data['posts']['Re: Download Topic #1-#2']}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('application/zip', $finfo->buffer($content));

+

+ // Download attachment as admin

+ $crawler = self::request('GET', "download/file.php?id={$this->data['attachments'][$this->data['posts']['Re: Download Topic #1-#2']]}", array(), false);

+ self::assert_response_status_code(200);

+ $content = self::$client->getResponse()->getContent();

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ self::assertEquals('image/jpeg', $finfo->buffer($content));

+ }

+

+ public function load_ids($data)

+ {

+ $this->db = $this->get_db();

+

+ if (!empty($data['forums']))

+ {

+ $sql = 'SELECT *

+ FROM phpbb_forums

+ WHERE ' . $this->db->sql_in_set('forum_name', $data['forums']);

+ $result = $this->db->sql_query($sql);

+ while ($row = $this->db->sql_fetchrow($result))

+ {

+ if (in_array($row['forum_name'], $data['forums']))

+ {

+ $this->data['forums'][$row['forum_name']] = (int) $row['forum_id'];

+ }

+ }

+ $this->db->sql_freeresult($result);

+ }

+

+ if (!empty($data['topics']))

+ {

+ $sql = 'SELECT *

+ FROM phpbb_topics

+ WHERE ' . $this->db->sql_in_set('topic_title', $data['topics']);

+ $result = $this->db->sql_query($sql);

+ while ($row = $this->db->sql_fetchrow($result))

+ {

+ if (in_array($row['topic_title'], $data['topics']))

+ {

+ $this->data['topics'][$row['topic_title']] = (int) $row['topic_id'];

+ }

+ }

+ $this->db->sql_freeresult($result);

+ }

+

+ $post_ids = array();

+ if (!empty($data['posts']))

+ {

+ $sql = 'SELECT *

+ FROM phpbb_posts

+ WHERE ' . $this->db->sql_in_set('post_subject', $data['posts']);

+ $result = $this->db->sql_query($sql);

+ while ($row = $this->db->sql_fetchrow($result))

+ {

+ if (in_array($row['post_subject'], $data['posts']))

+ {

+ $this->data['posts'][$row['post_subject']] = (int) $row['post_id'];

+ $post_ids[] = (int) $row['post_id'];

+ }

+ }

+ $this->db->sql_freeresult($result);

+

+ if (isset($data['attachments']))

+ {

+ $sql = 'SELECT *

+ FROM phpbb_attachments

+ WHERE in_message = 0 AND ' . $this->db->sql_in_set('post_msg_id', $post_ids);

+ $result = $this->db->sql_query($sql);

+ while ($row = $this->db->sql_fetchrow($result))

+ {

+ $this->data['attachments'][(int) $row['post_msg_id']] = (int) $row['attach_id'];

+ }

+ $this->db->sql_freeresult($result);

+ }

+ }

+ }

+}

+ public function tearDown()

+ {

+ $this->login();

+ $this->admin_login();

+

+ $crawler = self::request('GET', 'adm/index.php?sid=' . $this->sid . '&i=acp_board&mode=security');

+

+ // Enable allow_password_reset again after test

+ $form = $crawler->selectButton('Submit')->form(array(

+ 'config[allow_password_reset]' => 1,

+ ));

+ $crawler = self::submit($form);

+ }

+<?php

+/**

+*

+* @package testing

+* @copyright (c) 2014 phpBB Group

+* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+*

+*/

+

+/**

+* @group functional

+*/

+class phpbb_functional_user_password_reset_test extends phpbb_functional_test_case

+{

+ protected $user_data;

+

+ public function test_password_reset()

+ {

+ $this->add_lang('ucp');

+ $user_id = $this->create_user('reset-password-test-user');

+

+ $crawler = self::request('GET', "ucp.php?mode=sendpassword&sid={$this->sid}");

+ $form = $crawler->selectButton('submit')->form(array(

+ 'username' => 'reset-password-test-user',

+ ));

+ $crawler = self::submit($form);

+ $this->assertContainsLang('NO_EMAIL_USER', $crawler->text());

+

+ $crawler = self::request('GET', "ucp.php?mode=sendpassword&sid={$this->sid}");

+ $form = $crawler->selectButton('submit')->form(array(

+ 'username' => 'reset-password-test-user',

+ 'email' => 'nobody@example.com',

+ ));

+ $crawler = self::submit($form);

+ $this->assertContainsLang('PASSWORD_UPDATED', $crawler->text());

+

+ // Check if columns in database were updated for password reset

+ $this->get_user_data();

+ $this->assertNotNull($this->user_data['user_actkey']);

+ $this->assertNotNull($this->user_data['user_newpasswd']);

+

+ // Make sure we know the password

+ $db = $this->get_db();

+ $this->passwords_manager = $this->get_passwords_manager();

+ $sql = 'UPDATE ' . USERS_TABLE . "

+ SET user_newpasswd = '" . $db->sql_escape($this->passwords_manager->hash('reset-password-test-user')) . "'

+ WHERE user_id = " . $user_id;

+ $db->sql_query($sql);

+ }

+

+ public function test_login_after_reset()

+ {

+ $this->login('reset-password-test-user');

+ }

+

+ public function data_activate_new_password()

+ {

+ return array(

+ array('WRONG_ACTIVATION', false, 'FOOBAR'),

+ array('ALREADY_ACTIVATED', 2, 'FOOBAR'),

+ array('PASSWORD_ACTIVATED', false, false),

+ array('ALREADY_ACTIVATED', false, false),

+ );

+ }

+

+ /**

+ * @dataProvider data_activate_new_password

+ */

+ public function test_activate_new_password($expected, $user_id, $act_key)

+ {

+ $this->add_lang('ucp');

+ $this->get_user_data();

+ $user_id = (!$user_id) ? $this->user_data['user_id'] : $user_id;

+ $act_key = (!$act_key) ? $this->user_data['user_actkey'] : $act_key;

+

+ $crawler = self::request('GET', "ucp.php?mode=activate&u=$user_id&k=$act_key&sid={$this->sid}");

+ $this->assertContainsLang($expected, $crawler->text());

+ }

+

+ public function test_login()

+ {

+ $this->add_lang('ucp');

+ $crawler = self::request('GET', 'ucp.php');

+ $this->assertContains($this->lang('LOGIN_EXPLAIN_UCP'), $crawler->filter('html')->text());

+

+ $form = $crawler->selectButton($this->lang('LOGIN'))->form();

+ $crawler = self::submit($form, array('username' => 'reset-password-test-user', 'password' => 'reset-password-test-user'));

+ $this->assertNotContains($this->lang('LOGIN'), $crawler->filter('.navbar')->text());

+

+ $cookies = self::$cookieJar->all();

+

+ // The session id is stored in a cookie that ends with _sid - we assume there is only one such cookie

+ foreach ($cookies as $cookie);

+ {

+ if (substr($cookie->getName(), -4) == '_sid')

+ {

+ $this->sid = $cookie->getValue();

+ }

+ }

+

+ $this->logout();

+

+ $crawler = self::request('GET', 'ucp.php');

+ $this->assertContains($this->lang('LOGIN_EXPLAIN_UCP'), $crawler->filter('html')->text());

+

+ $form = $crawler->selectButton($this->lang('LOGIN'))->form();

+ // Try logging in with the old password

+ $crawler = self::submit($form, array('username' => 'reset-password-test-user', 'password' => 'reset-password-test-userreset-password-test-user'));

+ $this->assertContains($this->lang('LOGIN_ERROR_PASSWORD', '', ''), $crawler->filter('html')->text());

+ }

+

+ protected function get_user_data()

+ {

+ $db = $this->get_db();

+ $sql = 'SELECT user_id, username, user_type, user_email, user_newpasswd, user_lang, user_notify_type, user_actkey, user_inactive_reason

+ FROM ' . USERS_TABLE . "

+ WHERE username = 'reset-password-test-user'";

+ $result = $db->sql_query($sql);

+ $this->user_data = $db->sql_fetchrow($result);

+ $db->sql_freeresult($result);

+ }

+}

+<?php

+/**

+*

+* @package testing

+* @copyright (c) 2014 phpBB Group

+* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+*

+*/

+

+class phpbb_profile_get_profile_value_test extends phpbb_test_case

+{

+ static public function get_profile_value_int_data()

+ {

+ return array(

+ array('\phpbb\profilefields\type\type_int', '10', true, 10),

+ array('\phpbb\profilefields\type\type_int', '0', true, 0),

+ array('\phpbb\profilefields\type\type_int', '', true, 0),

+ array('\phpbb\profilefields\type\type_int', null, true, 0),

+ array('\phpbb\profilefields\type\type_int', '10', false, 10),

+ array('\phpbb\profilefields\type\type_int', '0', false, 0),

+ array('\phpbb\profilefields\type\type_int', '', false, null),

+ array('\phpbb\profilefields\type\type_int', null, false, null),

+ );

+ }

+

+ /**

+ * @dataProvider get_profile_value_int_data

+ */

+ public function test_get_profile_value_int($type, $value, $show_novalue, $expected)

+ {

+ $cp = new $type(

+ $this->getMock('\phpbb\request\request'),

+ $this->getMock('\phpbb\template\template'),

+ $this->getMock('\phpbb\user')

+ );

+

+ $this->assertSame($expected, $cp->get_profile_value($value, array(

+ 'field_type' => $type,

+ 'field_show_novalue' => $show_novalue,

+ )));

+ }

+}

+ if (!empty($form_data['upload_files']))

+ {

+ for ($i = 0; $i < $form_data['upload_files']; $i++)

+ {

+ $file = array(

+ 'tmp_name' => __DIR__ . '/../functional/fixtures/files/valid.jpg',

+ 'name' => 'valid.jpg',

+ 'type' => 'image/jpeg',

+ 'size' => filesize(__DIR__ . '/../functional/fixtures/files/valid.jpg'),

+ 'error' => UPLOAD_ERR_OK,

+ );

+

+ $crawler = self::$client->request('POST', $posting_url, array('add_file' => $this->lang('ADD_FILE')), array('fileupload' => $file));

+ }

+ unset($form_data['upload_files']);

+ }

+