From 9b74586dfe37cc5eba478d66347f5eb84d0f6b58 Mon Sep 17 00:00:00 2001
From: Niklas <main@nikkl.me>
Date: Tue, 6 Jul 2021 13:54:38 +0200
Subject: [PATCH] Add authenticator test case

---
 tests/unit/RestfulServerTest.php            | 17 ++++++++++---
 tests/unit/Stubs/EmailOnlyAuthenticator.php | 28 +++++++++++++++++++++
 2 files changed, 41 insertions(+), 4 deletions(-)
 create mode 100644 tests/unit/Stubs/EmailOnlyAuthenticator.php

diff --git a/tests/unit/RestfulServerTest.php b/tests/unit/RestfulServerTest.php
index fbd4428..1ad2531 100644
--- a/tests/unit/RestfulServerTest.php
+++ b/tests/unit/RestfulServerTest.php
@@ -3,6 +3,7 @@
 namespace SilverStripe\RestfulServer\Tests;
 
 use SilverStripe\RestfulServer\RestfulServer;
+use SilverStripe\RestfulServer\Tests\Stubs\EmailOnlyAuthenticator;
 use SilverStripe\RestfulServer\Tests\Stubs\RestfulServerTestComment;
 use SilverStripe\RestfulServer\Tests\Stubs\RestfulServerTestExceptionThrown;
 use SilverStripe\RestfulServer\Tests\Stubs\RestfulServerTestSecretThing;
@@ -14,12 +15,11 @@ use SilverStripe\Core\Convert;
 use SilverStripe\Control\Controller;
 use SilverStripe\RestfulServer\Tests\Stubs\RestfulServerTestValidationFailure;
 use SilverStripe\Security\Member;
-use SilverStripe\Security\Security;
-use SilverStripe\ORM\DataObject;
 use SilverStripe\Dev\SapphireTest;
 use SilverStripe\RestfulServer\DataFormatter\JSONDataFormatter;
 use Page;
 use SilverStripe\Core\Config\Config;
+use SilverStripe\RestfulServer\BasicRestfulAuthenticator;
 
 /**
  *
@@ -53,6 +53,10 @@ class RestfulServerTest extends SapphireTest
     {
         parent::setUp();
         Director::config()->set('alternate_base_url', $this->baseURI);
+        RestfulServer::config()->set('authenticators', [
+            BasicRestfulAuthenticator::class,
+	        EmailOnlyAuthenticator::class,
+        ]);
         $this->logOut();
     }
 
@@ -142,9 +146,14 @@ class RestfulServerTest extends SapphireTest
         $this->assertEquals(401, $response->getStatusCode()); // Permission failure
 
         $_SERVER['PHP_AUTH_USER'] = 'editor@test.com';
-        $_SERVER['PHP_AUTH_PW'] = 'editor';
+
         $response = Director::test($url, $data, null, 'PUT');
-        $this->assertEquals(202, $response->getStatusCode()); // Accepted
+        $this->assertEquals(202, $response->getStatusCode()); // Accepted by Email
+
+        $_SERVER['PHP_AUTH_PW'] = 'editor';
+
+        $response = Director::test($url, $data, null, 'PUT');
+        $this->assertEquals(202, $response->getStatusCode()); // Accepted by BasicRestfulAuthenticator
 
         unset($_SERVER['PHP_AUTH_USER']);
         unset($_SERVER['PHP_AUTH_PW']);
diff --git a/tests/unit/Stubs/EmailOnlyAuthenticator.php b/tests/unit/Stubs/EmailOnlyAuthenticator.php
new file mode 100644
index 0000000..2319db5
--- /dev/null
+++ b/tests/unit/Stubs/EmailOnlyAuthenticator.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace SilverStripe\RestfulServer\Tests\Stubs;
+
+use SilverStripe\Dev\TestOnly;
+use SilverStripe\Security\Member;
+
+/**
+ * An unsecure test authenticator.
+ */
+class EmailOnlyAuthenticator implements TestOnly
+{
+    /**
+     * @return Member|false
+     */
+    public static function authenticate()
+    {
+        //if there is no username or password, fail
+        if (!isset($_SERVER['PHP_AUTH_USER'])) {
+            return null;
+        }
+
+        /** @var null|Member $member */
+        $member = Member::get()->find('Email', $_SERVER['PHP_AUTH_USER']);
+
+        return $member ?? false;
+    }
+}