kanbanworkflowstimelinescrumrubyroadmapproject-planningproject-managementopenprojectangularissue-trackerifcgantt-chartganttbug-trackerboardsbcf
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
70 lines
2.2 KiB
70 lines
2.2 KiB
7 years ago
|
def first_login_step
|
||
|
|
visit signin_path
|
||
|
|
within('#login-form') do
|
||
|
|
fill_in('username', with: user.login)
|
||
|
|
fill_in('password', with: user_password)
|
||
|
|
click_link_or_button I18n.t(:button_login)
|
||
|
|
end
|
||
|
|
end
|
||
|
|
|
||
|
|
def two_factor_step(token)
|
||
|
|
expect(page).to have_selector('input#otp')
|
||
|
|
fill_in 'otp', with: token
|
||
|
|
click_button I18n.t(:button_login)
|
||
|
|
end
|
||
|
|
|
||
|
|
def expect_logged_in
|
||
|
|
visit my_account_path
|
||
|
|
expect(page).to have_selector('.form--field-container', text: user.login)
|
||
|
|
end
|
||
|
|
|
||
|
|
shared_examples 'login without 2FA' do
|
||
|
|
it 'logs in the user without any active devices' do
|
||
|
|
first_login_step
|
||
|
|
expect_logged_in
|
||
|
|
end
|
||
|
|
end
|
||
|
|
|
||
|
|
shared_examples 'create enforced sms device' do
|
||
|
|
it do
|
||
|
|
expect(page).to have_selector('.flash.info', text: I18n.t('two_factor_authentication.forced_registration.required_to_add_device'))
|
||
|
|
|
||
|
|
# Create SMS device
|
||
|
|
find('.mobile-otp-new-device-sms .button--tiny').click
|
||
|
|
fill_in 'device_phone_number', with: 'invalid'
|
||
|
|
click_on 'Continue'
|
||
|
|
|
||
|
|
|
||
|
|
# Expect error on invalid phone
|
||
|
|
expect(page).to have_selector('#errorExplanation', text: 'Phone number must be of format +XX XXXXXXXXX')
|
||
|
|
fill_in 'device_phone_number', with: '+49 123456789'
|
||
|
|
click_on 'Continue'
|
||
|
|
|
||
|
|
# Confirm page
|
||
|
|
expect(page).to have_selector('h2', text: I18n.t('two_factor_authentication.devices.confirm_device'))
|
||
|
|
expect(page).to have_selector('input#otp')
|
||
|
|
|
||
|
|
# Fill in wrong token
|
||
|
|
fill_in 'otp', with: 'whatever'
|
||
|
|
|
||
|
|
# Log token for next access
|
||
|
|
sms_token = nil
|
||
|
|
allow_any_instance_of(::OpenProject::TwoFactorAuthentication::TokenStrategy::Developer)
|
||
|
|
.to receive(:create_mobile_otp).and_wrap_original do |m|
|
||
|
|
sms_token = m.call
|
||
|
|
end
|
||
|
|
|
||
|
|
click_button I18n.t(:button_continue)
|
||
|
|
|
||
|
|
expect(page).to have_selector('h2', text: I18n.t('two_factor_authentication.devices.confirm_device'))
|
||
|
|
expect(page).to have_selector('input#otp')
|
||
|
|
expect(page).to have_selector('.flash.error', text: I18n.t('two_factor_authentication.devices.registration_failed_token_invalid'))
|
||
|
|
|
||
|
|
# Fill in wrong token
|
||
|
|
fill_in 'otp', with: sms_token
|
||
|
|
click_button I18n.t(:button_continue)
|
||
|
|
|
||
|
|
# Expected logged in after correct registration
|
||
|
|
expect_logged_in
|
||
|
|
end
|
||
|
|
end
|