[ Versioned::class ] ]; protected function setUp(): void { parent::setUp(); if (!class_exists(Versioned::class)) { $this->markTestSkipped("Versioned is required"); return; } // Remove password validation Member::set_password_validator(null); } protected function tearDown(): void { $this->logOut(); parent::tearDown(); } public function testAuthenticate() { $mockDate1 = '2010-01-01 10:00:00'; $readingMode = sprintf('Archive.%s.Stage', $mockDate1); /** @var Member $member */ $member = DBDatetime::withFixedNow($mockDate1, function () { $member = Member::create(); $member->update([ 'FirstName' => 'Jane', 'Surname' => 'Doe', 'Email' => 'jane.doe@example.com' ]); $member->write(); $member->changePassword('password', true); return $member; }); $member->changePassword('new-password', true); /** @var ValidationResult $results */ $results = Versioned::withVersionedMode(function () use ($readingMode) { Versioned::set_reading_mode($readingMode); $authenticator = new MemberAuthenticator(); // Test correct login /** @var ValidationResult $message */ $authenticator->authenticate( [ 'Email' => 'jane.doe@example.com', 'Password' => 'password' ], Controller::curr()->getRequest(), $result ); return $result; }); $this->assertFalse( $results->isValid(), 'Authenticate using old credentials fails even when using an old reading mode' ); /** @var ValidationResult $results */ $results = Versioned::withVersionedMode(function () use ($readingMode) { Versioned::set_reading_mode($readingMode); $authenticator = new MemberAuthenticator(); // Test correct login /** @var ValidationResult $message */ $authenticator->authenticate( [ 'Email' => 'jane.doe@example.com', 'Password' => 'new-password' ], Controller::curr()->getRequest(), $result ); return $result; }); $this->assertTrue( $results->isValid(), 'Authenticate using current credentials succeeds even when using an old reading mode' ); } public function testAuthenticateAgainstLiveStage() { /** @var Member $member */ $member = Member::create(); $member->update([ 'FirstName' => 'Jane', 'Surname' => 'Doe', 'Email' => 'jane.doe@example.com' ]); $member->write(); $member->changePassword('password', true); $member->publishSingle(); $member->changePassword('new-password', true); /** @var ValidationResult $results */ $results = Versioned::withVersionedMode(function () { Versioned::set_stage(Versioned::LIVE); $authenticator = new MemberAuthenticator(); // Test correct login /** @var ValidationResult $message */ $authenticator->authenticate( [ 'Email' => 'jane.doe@example.com', 'Password' => 'password' ], Controller::curr()->getRequest(), $result ); return $result; }); $this->assertFalse( $results->isValid(), 'Authenticate using "published" credentials fails when draft credentials have changed' ); /** @var ValidationResult $results */ $results = Versioned::withVersionedMode(function () { Versioned::set_stage(Versioned::LIVE); $authenticator = new MemberAuthenticator(); // Test correct login /** @var ValidationResult $message */ $authenticator->authenticate( [ 'Email' => 'jane.doe@example.com', 'Password' => 'new-password' ], Controller::curr()->getRequest(), $result ); return $result; }); $this->assertTrue( $results->isValid(), 'Authenticate using current credentials succeeds even when "published" credentials are different' ); } }