summaryrefslogtreecommitdiffstats
path: root/xt/selenium/password_complexity.t
blob: 0e75e6b9dc08624d64ad62fa323a20ccf0b6133d (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# This Source Code Form is "Incompatible With Secondary Licenses", as
# defined by the Mozilla Public License, v. 2.0.

use 5.14.0;
use strict;
use warnings;

use FindBin qw($RealBin);
use lib "$RealBin/../lib";

use Test::More "no_plan";

use QA::Util;

my ($sel, $config) = get_selenium();
log_in($sel, $config, 'admin');

set_parameters($sel, {"Administrative Policies" => {"allowuserdeletion-on" => undef},
                      "User Authentication"     => {"createemailregexp" => {type => "text", value => '.*'},
                                                    "emailsuffix" => {type => "text", value => ''}} });

# Set the password complexity to MIXED LETTERS.
# Password must contain at least one UPPER and one lowercase letter.
my @invalid_mixed_letter = qw(lowercase UPPERCASE 1234567890 123lowercase
                              123UPPERCASE !@%&^lower !@&^UPPER);

check_passwords($sel, 'mixed_letters', \@invalid_mixed_letter, ['PaSSwOrd', '%9rT#j22S']);

# Set the password complexity to LETTERS AND NUMBERS.
# Passwords must contain at least one UPPER and one lower case letter and a number.
my @invalid_letter_number = (@invalid_mixed_letter, qw(lowerUPPER 123!@%^$));

check_passwords($sel, 'letters_numbers', \@invalid_letter_number, ['-UniCode6.3', 'UNO54sun']);

# Set the password complexity to LETTERS, NUMBERS AND SPECIAL CHARACTERS.
# Passwords must contain at least one letter, a number and a special character.
my @invalid_letter_number_splchar = (qw(!@%^&~* lowerUPPER123), @invalid_letter_number);

check_passwords($sel, 'letters_numbers_specialchars', \@invalid_letter_number_splchar, ['@gu731', 'HU%m70?']);

# Set the password complexity to No Constraints.
check_passwords($sel, 'no_constraints', ['12xY!', 'aaaaa'], ['aaaaaaaa', '>F12Xy?']);

logout($sel);


sub check_passwords {
    my ($sel, $param, $invalid_passwords, $valid_passwords) = @_;

    set_parameters($sel, { "User Authentication" => {"password_complexity" => {type => "select", value => $param}} });
    my $new_user = 'selenium-' . random_string(10) . '@bugzilla.org';

    go_to_admin($sel);
    $sel->click_ok("link=Users");
    $sel->wait_for_page_to_load_ok(WAIT_TIME);
    $sel->title_is('Search users');
    $sel->click_ok('link=add a new user');
    $sel->wait_for_page_to_load_ok(WAIT_TIME);
    $sel->title_is('Add user');
    $sel->type_ok('login', $new_user);

    foreach my $password (@$invalid_passwords) {
        $sel->type_ok('password', $password, 'Enter password');
        $sel->click_ok('add');
        $sel->wait_for_page_to_load_ok(WAIT_TIME);
        if ($param eq 'no_constraints') {
            $sel->title_is('Password Too Short');
        }
        else {
            $sel->title_is('Password Fails Requirements');
        }

        my $error_msg = trim($sel->get_text("error_msg"));
        if ($param eq 'mixed_letters') {
            ok($error_msg =~ /UPPERCASE letter.*lowercase letter/,
               "Mixed letter password fails requirement: $password");
        }
        elsif ($param eq 'letters_numbers') {
            ok($error_msg =~ /UPPERCASE letter.*lowercase letter.*digit/,
               "Letter & Number password fails requirement: $password");

        }
        elsif ($param eq 'letters_numbers_specialchars') {
            ok($error_msg =~ /letter.*special character.*digit/,
               "Letter, Number & Special Character password fails requirement: $password");
        }
        else {
            ok($error_msg =~ /The password must be at least \d+ characters long/,
               "Password Too Short: $password");
        }
        $sel->go_back_ok();
        $sel->wait_for_page_to_load_ok(WAIT_TIME);
    }

    my $created = 0;

    foreach my $password (@$valid_passwords) {
        $sel->type_ok('password', $password, 'Enter password');
        $sel->click_ok($created ? 'update' : 'add');
        $sel->wait_for_page_to_load_ok(WAIT_TIME);
        $sel->title_is($created ? "User $new_user updated" : "Edit user $new_user");
        my $msg = trim($sel->get_text('message'));
        if ($created++) {
            ok($msg =~ /A new password has been set/, 'Account updated');
        }
        else {
            ok($msg =~ /The user account $new_user has been created successfully/, 'Account created');
        }
    }

    return unless $created;

    $sel->click_ok('delete');
    $sel->wait_for_page_to_load_ok(WAIT_TIME);
    $sel->title_is("Confirm deletion of user $new_user");
    $sel->click_ok('delete');
    $sel->wait_for_page_to_load_ok(WAIT_TIME);
    $sel->title_is("User $new_user deleted");
}