summaryrefslogtreecommitdiff
path: root/tests/phpunit/includes/api/ApiBlockTest.php
blob: 5dfceee8cd870112bbba4678a8c554201b8dbf98 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
<?php

/**
 * @group API
 * @group Database
 */
class ApiBlockTest extends ApiTestCase {

	function setUp() {
		parent::setUp();
		$this->doLogin();
	}

	function getTokens() {
		return $this->getTokenList( self::$users['sysop'] );
	}

	function addDBData() {
		$user = User::newFromName( 'UTApiBlockee' );

		if ( $user->getId() == 0 ) {
			$user->addToDatabase();
			$user->setPassword( 'UTApiBlockeePassword' );

			$user->saveSettings();
		}
	}

	/**
	 * This test has probably always been broken and use an invalid token
	 * Bug tracking brokenness is https://bugzilla.wikimedia.org/35646
	 *
	 * Root cause is https://gerrit.wikimedia.org/r/3434
	 * Which made the Block/Unblock API to actually verify the token
	 * previously always considered valid (bug 34212).
	 */
	function testMakeNormalBlock() {

		$data = $this->getTokens();

		$user = User::newFromName( 'UTApiBlockee' );

		if ( !$user->getId() ) {
			$this->markTestIncomplete( "The user UTApiBlockee does not exist" );
		}

		if( !isset( $data[0]['query']['pages'] ) ) {
			$this->markTestIncomplete( "No block token found" );
		}

		$keys = array_keys( $data[0]['query']['pages'] );
		$key = array_pop( $keys );
		$pageinfo = $data[0]['query']['pages'][$key];

		$data = $this->doApiRequest( array(
			'action' => 'block',
			'user' => 'UTApiBlockee',
			'reason' => 'Some reason',
			'token' => $pageinfo['blocktoken'] ), null, false, self::$users['sysop']->user );

		$block = Block::newFromTarget('UTApiBlockee');

		$this->assertTrue( !is_null( $block ), 'Block is valid' );

		$this->assertEquals( 'UTApiBlockee', (string)$block->getTarget() );
		$this->assertEquals( 'Some reason', $block->mReason );
		$this->assertEquals( 'infinity', $block->mExpiry );

	}

	/**
	 * @dataProvider provideBlockUnblockAction
	 */
	function testGetTokenUsingABlockingAction( $action ) {
		$data = $this->doApiRequest(
			array(
				'action' => $action,
				'user' => 'UTApiBlockee',
				'gettoken' => '' ),
			null,
			false,
			self::$users['sysop']->user
		);
		$this->assertEquals( 34, strlen( $data[0][$action]["{$action}token"] ) );
	}

	/**
	 * Attempting to block without a token should give a UsageException with
	 * error message:
	 *   "The token parameter must be set"
	 *
	 * @dataProvider provideBlockUnblockAction
	 * @expectedException UsageException
	 */
	function testBlockingActionWithNoToken( $action ) {
		$this->doApiRequest(
			array(
				'action' => $action,
				'user' => 'UTApiBlockee',
				'reason' => 'Some reason',
				),
			null,
			false,
			self::$users['sysop']->user
		);
	}

	/**
	 * Just provide the 'block' and 'unblock' action to test both API calls
	 */
	function provideBlockUnblockAction() {
		return array(
			array( 'block'   ),
			array( 'unblock' ),
		);
	}
}