Home Explore Help
Sign In
bachir
/
materio-base-d7
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6de56c702c
Branches Tags
materio-base...
/
sites
/
all
/
modules
/
contrib
/
form
/
honeypot
/
honeypot.test

honeypot.test 4.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @file
    5. 

  5.  * Testing for Honeypot module.
    6. 

  6.  */
    7. 

  7. 

  8. /**
    9. 

  9.  * Test the functionality of the Honeypot module for an admin user.
    10. 

  10.  */
    11. 

  11. class HoneypotFormTestCase extends DrupalWebTestCase {
    12. 

  12.   protected $admin_user;
    13. 

  13.   protected $web_user;
    14. 

  14.   protected $node;
    15. 

  15. 

  16.   public static function getInfo() {
    17. 

  17.     return array(
    18. 

  18.       'name' => 'Honeypot form protections',
    19. 

  19.       'description' => 'Ensure that Honeypot protects site forms properly.',
    20. 

  20.       'group' => 'Form API',
    21. 

  21.     );
    22. 

  22.   }
    23. 

  23. 

  24.   public function setUp() {
    25. 

  25.     // Enable modules required for this test.
    26. 

  26.     parent::setUp(array('honeypot', 'comment'));
    27. 

  27. 

  28.     // Set up required Honeypot variables.
    29. 

  29.     variable_set('honeypot_element_name', 'url');
    30. 

  30.     variable_set('honeypot_time_limit', 0); // Disable time_limit protection.
    31. 

  31.     variable_set('honeypot_protect_all_forms', TRUE); // Test protecting all forms.
    32. 

  32.     variable_set('honeypot_log', FALSE);
    33. 

  33. 

  34.     // Set up other required variables.
    35. 

  35.     variable_set('user_email_verification', TRUE);
    36. 

  36.     variable_set('user_register', USER_REGISTER_VISITORS);
    37. 

  37. 

  38.     // Set up admin user.
    39. 

  39.     $this->admin_user = $this->drupalCreateUser(array(
    40. 

  40.       'administer honeypot',
    41. 

  41.       'bypass honeypot protection',
    42. 

  42.       'administer content types',
    43. 

  43.       'administer users',
    44. 

  44.       'access comments',
    45. 

  45.       'post comments',
    46. 

  46.       'skip comment approval',
    47. 

  47.       'administer comments',
    48. 

  48.     ));
    49. 

  49. 

  50.     // Set up web user.
    51. 

  51.     $this->web_user = $this->drupalCreateUser(array(
    52. 

  52.       'access comments',
    53. 

  53.       'post comments',
    54. 

  54.       'create article content',
    55. 

  55.     ));
    56. 

  56. 

  57.     // Set up example node.
    58. 

  58.     $this->node = $this->drupalCreateNode(array(
    59. 

  59.       'type' => 'article',
    60. 

  60.       'promote' => 1,
    61. 

  61.       'uid' => $this->web_user->uid,
    62. 

  62.     ));
    63. 

  63.   }
    64. 

  64. 

  65.   /**
    66. 

  66.    * Test user registration (anonymous users).
    67. 

  67.    */
    68. 

  68.   public function testProtectRegisterUserNormal() {
    69. 

  69.     // Set up form and submit it.
    70. 

  70.     $edit['name'] = $this->randomName();
    71. 

  71.     $edit['mail'] = $edit['name'] . '@example.com';
    72. 

  72.     $this->drupalPost('user/register', $edit, t('Create new account'));
    73. 

  73. 

  74.     // Form should have been submitted successfully.
    75. 

  75.     $this->assertText(t('A welcome message with further instructions has been sent to your e-mail address.'), 'User registered successfully.');
    76. 

  76.   }
    77. 

  77. 

  78.   public function testProtectUserRegisterHoneypotFilled() {
    79. 

  79.     // Set up form and submit it.
    80. 

  80.     $edit['name'] = $this->randomName();
    81. 

  81.     $edit['mail'] = $edit['name'] . '@example.com';
    82. 

  82.     $edit['url'] = 'http://www.example.com/';
    83. 

  83.     $this->drupalPost('user/register', $edit, t('Create new account'));
    84. 

  84. 

  85.     // Form should have error message.
    86. 

  86.     $this->assertText(t('There was a problem with your form submission. Please refresh the page and try again.'), 'Registration form protected by honeypot.');
    87. 

  87.   }
    88. 

  88. 

  89.   public function testProtectRegisterUserTooFast() {
    90. 

  90.     // Enable time limit for honeypot.
    91. 

  91.     variable_set('honeypot_time_limit', 5);
    92. 

  92. 

  93.     // Set up form and submit it.
    94. 

  94.     $edit['name'] = $this->randomName();
    95. 

  95.     $edit['mail'] = $edit['name'] . '@example.com';
    96. 

  96.     $this->drupalPost('user/register', $edit, t('Create new account'));
    97. 

  97. 

  98.     // Form should have error message.
    99. 

  99.     $this->assertText(t('There was a problem with your form submission. Please wait'), 'Registration form protected by time limit.');
    100. 

  100.   }
    101. 

  101. 

  102.   public function testProtectCommentFormNormal() {
    103. 

  103.     $comment = 'Test comment.';
    104. 

  104. 

  105.     // Disable time limit for honeypot.
    106. 

  106.     variable_set('honeypot_time_limit', 0);
    107. 

  107. 

  108.     // Log in the web user.
    109. 

  109.     $this->drupalLogin($this->web_user);
    110. 

  110. 

  111.     // Set up form and submit it.
    112. 

  112.     $edit['comment_body[' . LANGUAGE_NONE . '][0][value]'] = $comment;
    113. 

  113.     $this->drupalPost('comment/reply/' . $this->node->nid, $edit, t('Save'));
    114. 

  114.     $this->assertText(t('Your comment has been posted.'), 'Comment posted successfully.');
    115. 

  115.   }
    116. 

  116. 

  117.   public function testProtectCommentFormHoneypotFilled() {
    118. 

  118.     $comment = 'Test comment.';
    119. 

  119. 

  120.     // Log in the web user.
    121. 

  121.     $this->drupalLogin($this->web_user);
    122. 

  122. 

  123.     // Set up form and submit it.
    124. 

  124.     $edit['comment_body[' . LANGUAGE_NONE . '][0][value]'] = $comment;
    125. 

  125.     $edit['url'] = 'http://www.example.com/';
    126. 

  126.     $this->drupalPost('comment/reply/' . $this->node->nid, $edit, t('Save'));
    127. 

  127.     $this->assertText(t('There was a problem with your form submission. Please refresh the page and try again.'), 'Comment posted successfully.');
    128. 

  128.   }
    129. 

  129. 

  130.   public function testProtectCommentFormHoneypotBypass() {
    131. 

  131.     // Log in the admin user.
    132. 

  132.     $this->drupalLogin($this->admin_user);
    133. 

  133. 

  134.     // Get the comment reply form and ensure there's no 'url' field.
    135. 

  135.     $this->drupalGet('comment/reply/' . $this->node->nid);
    136. 

  136.     $this->assertNoText('id="edit-url" name="url"', 'Honeypot home page field not shown.');
    137. 

  137.   }
    138. 

  138. }
    139.