-
Notifications
You must be signed in to change notification settings - Fork 299
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
6c30219
commit 6761f04
Showing
2 changed files
with
57 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -2,9 +2,11 @@ | |
|
|
||
| namespace Laravel\Fortify\Tests; | ||
|
|
||
| use Illuminate\Foundation\Application; | ||
| use Illuminate\Foundation\Testing\RefreshDatabase; | ||
| use Illuminate\Support\Facades\Auth; | ||
| use Illuminate\Support\Facades\Event; | ||
| use Illuminate\Support\Facades\Hash; | ||
| use Laravel\Fortify\Events\TwoFactorAuthenticationChallenged; | ||
| use Laravel\Fortify\Features; | ||
| use Laravel\Fortify\Tests\Models\UserWithTwoFactor; | ||
|
|
@@ -100,6 +102,57 @@ public function test_user_can_authenticate_when_two_factor_challenge_is_disabled | |
| $response->assertRedirect('/home'); | ||
| } | ||
|
|
||
| public function test_rehash_user_password_when_redirecting_to_two_factor_challenge_if_rehashing_on_login_is_enabled() | ||
| { | ||
| if (version_compare(Application::VERSION, '11.0.0', '<')) { | ||
| $this->markTestSkipped('Only on Laravel 11 and later'); | ||
| } | ||
|
|
||
| $this->app['config']->set('hashing.rehash_on_login', true); | ||
|
|
||
| $user = UserWithTwoFactor::forceCreate([ | ||
| 'name' => 'Taylor Otwell', | ||
| 'email' => '[email protected]', | ||
| 'password' => Hash::make('secret', ['rounds' => 6]), | ||
| 'two_factor_secret' => 'test-secret', | ||
| ]); | ||
|
|
||
| $response = $this->withoutExceptionHandling()->post('/login', [ | ||
| 'email' => '[email protected]', | ||
| 'password' => 'secret', | ||
| ]); | ||
|
|
||
| $response->assertRedirect('/two-factor-challenge'); | ||
|
|
||
| $this->assertNotSame($user->password, $user->fresh()->password); | ||
| $this->assertTrue(Hash::check('secret', $user->fresh()->password)); | ||
| } | ||
|
|
||
| public function test_does_not_rehash_user_password_when_redirecting_to_two_factor_challenge_if_rehashing_on_login_is_disabled() | ||
| { | ||
| if (version_compare(Application::VERSION, '11.0.0', '<')) { | ||
| $this->markTestSkipped('Only on Laravel 11 and later'); | ||
| } | ||
|
|
||
| $this->app['config']->set('hashing.rehash_on_login', false); | ||
|
|
||
| $user = UserWithTwoFactor::forceCreate([ | ||
| 'name' => 'Taylor Otwell', | ||
| 'email' => '[email protected]', | ||
| 'password' => Hash::make('secret', ['rounds' => 6]), | ||
| 'two_factor_secret' => 'test-secret', | ||
| ]); | ||
|
|
||
| $response = $this->withoutExceptionHandling()->post('/login', [ | ||
| 'email' => '[email protected]', | ||
| 'password' => 'secret', | ||
| ]); | ||
|
|
||
| $response->assertRedirect('/two-factor-challenge'); | ||
|
|
||
| $this->assertSame($user->password, $user->fresh()->password); | ||
| } | ||
|
|
||
| public function test_two_factor_challenge_can_be_passed_via_code() | ||
| { | ||
| $tfaEngine = app(Google2FA::class); | ||
|
|
||