tests/Unit/UserIdentityModelTest.php

<?php

declare(strict_types=1);

/**
 * This file is part of CodeIgniter Shield.
 *
 * (c) CodeIgniter Foundation <admin@codeigniter.com>
 *
 * For the full copyright and license information, please view
 * the LICENSE file that was distributed with this source code.
 */

namespace Tests\Unit;

use CodeIgniter\Shield\Authentication\Authenticators\Session;
use CodeIgniter\Shield\Entities\User;
use CodeIgniter\Shield\Models\DatabaseException;
use CodeIgniter\Shield\Models\UserIdentityModel;
use CodeIgniter\Shield\Models\UserModel;
use CodeIgniter\Test\DatabaseTestTrait;
use CodeIgniter\Test\Fabricator;
use Tests\Support\TestCase;

/**
 * @internal
 */
final class UserIdentityModelTest extends TestCase
{
    use DatabaseTestTrait;

    protected $namespace;
    protected $refresh = true;

    private function createUserIdentityModel(): UserIdentityModel
    {
        return new UserIdentityModel();
    }

    public function testCreateDuplicateRecordThrowsException(): void
    {
        $this->expectException(DatabaseException::class);

        $model = $this->createUserIdentityModel();

        // "type and secret" are unique.
        $model->create([
            'user_id' => 1,
            'type'    => Session::ID_TYPE_EMAIL_ACTIVATE,
            'secret'  => '123456',
            'name'    => 'register',
            'extra'   => lang('Auth.needVerification'),
        ]);
        $model->create([
            'user_id' => 1,
            'type'    => Session::ID_TYPE_EMAIL_ACTIVATE,
            'secret'  => '123456',
            'name'    => 'register',
            'extra'   => lang('Auth.needVerification'),
        ]);
    }

    public function testCreateCodeIdentityThrowsExceptionIfUniqueCodeIsNotGot(): void
    {
        $this->expectException(DatabaseException::class);

        /** @var User $user */
        $user = fake(UserModel::class, ['id' => '1']);
        fake(UserIdentityModel::class, ['user_id' => 2, 'type' => Session::ID_TYPE_EMAIL_ACTIVATE, 'secret' => '666666']);

        $model = $this->createUserIdentityModel();

        $generator = static fn (): string => '666666';

        $model->createCodeIdentity(
            $user,
            [
                'type'  => Session::ID_TYPE_EMAIL_ACTIVATE,
                'name'  => 'register',
                'extra' => lang('Auth.needVerification'),
            ],
            $generator
        );
    }

    public function testForceMultiplePasswordReset(): void
    {
        /** @var Fabricator $fabricator */
        $fabricator = new Fabricator(UserIdentityModel::class);
        $fabricator->create(10);

        /** @var UserIdentityModel $identities */
        $identities = model(UserIdentityModel::class);
        $result     = $identities->select('user_id')->findAll();
        $userIds    = [];

        foreach ($result as $row) {
            $userIds[] = $row->user_id;
        }

        $identities->forceMultiplePasswordReset($userIds);

        /** @var UserModel $users */
        $users      = model(UserModel::class);
        $first_user = $users->findById($userIds[0]);
        $last_user  = $users->findById($userIds[9]);

        $this->assertTrue($first_user->requiresPasswordReset());
        $this->assertTrue($last_user->requiresPasswordReset());
    }
}