1 files changed, 125 insertions, 0 deletions
diff --git a/tests/unit/Web/HttpSigTest.php b/tests/unit/Web/HttpSigTest.php
new file mode 100644
index 000000000..18f2ce92b
--- /dev/null
+++ b/tests/unit/Web/HttpSigTest.php
@@ -0,0 +1,125 @@
+<?php
+/*
+ * Copyright (c) 2018 Hubzilla
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to deal
+ * in the Software without restriction, including without limitation the rights
+ * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+ * copies of the Software, and to permit persons to whom the Software is
+ * furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ * SOFTWARE.
+ */
+
+namespace Zotlabs\Tests\Unit\Web;
+
+use phpmock\phpunit\PHPMock;
+use Zotlabs\Tests\Unit\UnitTestCase;
+
+use Zotlabs\Web\HTTPSig;
+
+/**
+ * @brief Unit Test case for HTTPSig class.
+ *
+ * @covers Zotlabs\Web\HTTPSig
+ */
+class PermissionDescriptionTest extends UnitTestCase {
+
+	use PHPMock;
+
+	/**
+	 * @dataProvider generate_digestProvider
+	 */
+	function testGenerate_digest($text, $digest) {
+		$this->assertSame(
+				$digest,
+				HTTPSig::generate_digest($text, false)
+		);
+	}
+	public function generate_digestProvider() {
+		return [
+				'empty body text' => [
+						'',
+						'47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='
+				],
+				'sample body text' => [
+						'body text',
+						'2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI='
+				],
+				'NULL body text' => [
+						null,
+						'47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='
+				],
+		];
+	}
+
+	function testGeneratedDigestsOfDifferentTextShouldNotBeEqual() {
+		$this->assertNotSame(
+				HTTPSig::generate_digest('text1', false),
+				HTTPSig::generate_digest('text2', false)
+		);
+	}
+
+	/**
+	 * Process separation needed for header() check.
+	 * @runInSeparateProcess
+	 */
+	function testGenerate_digestSendsHttpHeader() {
+		$ret = HTTPSig::generate_digest('body text', true);
+
+		$this->assertSame('2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI=', $ret);
+		$this->assertContains(
+				'Digest: SHA-256=2fu8kUkvuzuo5XyhWwORNOcJgDColXgxWkw1T5EXzPI=',
+				xdebug_get_headers(),
+				'HTTP header Digest does not match'
+		);
+	}
+
+	/**
+	 * @uses ::crypto_unencapsulate
+	 */
+	function testDecrypt_sigheader() {
+		$header = 'Header: iv="value_iv" key="value_key" alg="value_alg" data="value_data"';
+		$result = [
+				'iv' => 'value_iv',
+				'key' => 'value_key',
+				'alg' => 'value_alg',
+				'data' => 'value_data'
+		];
+
+		$this->assertSame($result, HTTPSig::decrypt_sigheader($header, 'site private key'));
+	}
+	/**
+	 * @uses ::crypto_unencapsulate
+	 */
+	function testDecrypt_sigheaderUseSitePrivateKey() {
+		// Create a stub for global function get_config() with expectation
+		$t = $this->getFunctionMock('Zotlabs\Web', 'get_config');
+		$t->expects($this->once())->willReturn('system.prvkey');
+
+		$header = 'Header: iv="value_iv" key="value_key" alg="value_alg" data="value_data"';
+		$result = [
+				'iv' => 'value_iv',
+				'key' => 'value_key',
+				'alg' => 'value_alg',
+				'data' => 'value_data'
+		];
+
+		$this->assertSame($result, HTTPSig::decrypt_sigheader($header));
+	}
+	function testDecrypt_sigheaderIncompleteHeaderShouldReturnEmptyString() {
+		$header = 'Header: iv="value_iv" key="value_key"';
+
+		$this->assertEmpty(HTTPSig::decrypt_sigheader($header, 'site private key'));
+	}
+}