View source
<?php
namespace Drupal\Tests\recaptcha\Functional;
use Drupal\Core\Url;
use Drupal\Component\Utility\Html;
use Drupal\Tests\BrowserTestBase;
use Drupal\Core\StringTranslation\StringTranslationTrait;
class ReCaptchaBasicTest extends BrowserTestBase {
use StringTranslationTrait;
protected $normalUser;
protected $adminUser;
public static $modules = [
'recaptcha',
'captcha',
];
protected function setUp() {
parent::setUp();
module_load_include('inc', 'captcha');
$permissions = [
'access content',
];
$this->normalUser = $this
->drupalCreateUser($permissions);
$permissions += [
'administer CAPTCHA settings',
'skip CAPTCHA',
'administer permissions',
'administer content types',
'administer recaptcha',
];
$this->adminUser = $this
->drupalCreateUser($permissions);
}
public function testReCaptchaAdminAccess() {
$this
->drupalLogin($this->adminUser);
$this
->drupalGet('admin/config/people/captcha/recaptcha');
$this
->assertSession()
->pageTextNotContains($this
->t('Access denied'), 'Admin users should be able to access the reCAPTCHA admin page', 'reCAPTCHA');
$this
->drupalLogout();
}
public function testReCaptchaAdminSettingsForm() {
$this
->drupalLogin($this->adminUser);
$site_key = $this
->randomMachineName(40);
$secret_key = $this
->randomMachineName(40);
$edit['recaptcha_site_key'] = '';
$edit['recaptcha_secret_key'] = '';
$this
->drupalPostForm('admin/config/people/captcha/recaptcha', $edit, $this
->t('Save configuration'));
$this
->assertSession()
->responseContains($this
->t('Site key field is required.'), '[testReCaptchaConfiguration]: Empty site key detected.');
$this
->assertSession()
->responseContains($this
->t('Secret key field is required.'), '[testReCaptchaConfiguration]: Empty secret key detected.');
$edit['recaptcha_site_key'] = $site_key;
$edit['recaptcha_secret_key'] = $secret_key;
$edit['recaptcha_tabindex'] = 0;
$this
->drupalPostForm('admin/config/people/captcha/recaptcha', $edit, $this
->t('Save configuration'));
$this
->assertSession()
->responseContains($this
->t('The configuration options have been saved.'), '[testReCaptchaConfiguration]: The configuration options have been saved.');
$this
->assertSession()
->responseNotContains($this
->t('Site key field is required.'), '[testReCaptchaConfiguration]: Site key was not empty.');
$this
->assertSession()
->responseNotContains($this
->t('Secret key field is required.'), '[testReCaptchaConfiguration]: Secret key was not empty.');
$this
->assertSession()
->responseNotContains($this
->t('The tabindex must be an integer.'), '[testReCaptchaConfiguration]: Tab index had a valid input.');
$this
->drupalLogout();
}
public function testReCaptchaOnLoginForm() {
$site_key = $this
->randomMachineName(40);
$secret_key = $this
->randomMachineName(40);
$grecaptcha = '<div class="g-recaptcha" data-sitekey="' . $site_key . '" data-theme="light" data-type="image"></div>';
$this
->drupalLogin($this->normalUser);
$this
->drupalLogout();
$this
->drupalGet('user/login');
$this
->assertSession()
->responseNotContains($grecaptcha, '[testReCaptchaOnLoginForm]: reCAPTCHA is not shown on form.');
captcha_set_form_id_setting('user_login_form', 'captcha/Math');
$this
->drupalGet('user/login');
$this
->assertSession()
->responseNotContains($grecaptcha, '[testReCaptchaOnLoginForm]: reCAPTCHA is not shown on form.');
captcha_set_form_id_setting('user_login_form', 'recaptcha/reCAPTCHA');
$result = captcha_get_form_id_setting('user_login_form');
$this
->assertNotNull($result, 'A configuration has been found for CAPTCHA point: user_login_form', 'reCAPTCHA');
$this
->assertEquals($result
->getCaptchaType(), 'recaptcha/reCAPTCHA', 'reCAPTCHA type has been configured for CAPTCHA point: user_login_form');
$this
->drupalGet('user/login');
$this
->assertSession()
->responseContains($this
->t('Math question'), '[testReCaptchaOnLoginForm]: Math CAPTCHA is shown on form.');
$this
->config('recaptcha.settings')
->set('site_key', $site_key)
->save();
$this
->config('recaptcha.settings')
->set('secret_key', $secret_key)
->save();
$this
->drupalGet('user/login');
$this
->assertSession()
->responseContains($grecaptcha, '[testReCaptchaOnLoginForm]: reCAPTCHA is shown on form.');
$this
->assertSession()
->responseContains('<script src="' . Url::fromUri('https://www.google.com/recaptcha/api.js', [
'query' => [
'hl' => \Drupal::service('language_manager')
->getCurrentLanguage()
->getId(),
],
'absolute' => TRUE,
])
->toString() . '" async defer></script>', '[testReCaptchaOnLoginForm]: reCAPTCHA is shown on form.');
$this
->assertSession()
->responseNotContains($grecaptcha . '<noscript>', '[testReCaptchaOnLoginForm]: NoScript code is not enabled for the reCAPTCHA.');
$this
->config('recaptcha.settings')
->set('widget.noscript', 1)
->save();
$this
->drupalGet('user/login');
$this
->assertSession()
->responseContains($grecaptcha . "\n" . '<noscript>', '[testReCaptchaOnLoginForm]: NoScript for reCAPTCHA is shown on form.');
$options = [
'query' => [
'k' => $site_key,
'hl' => \Drupal::service('language_manager')
->getCurrentLanguage()
->getId(),
],
'absolute' => TRUE,
];
$this
->assertSession()
->responseContains(Html::escape(Url::fromUri('https://www.google.com/recaptcha/api/fallback', $options)
->toString()), '[testReCaptchaOnLoginForm]: Fallback URL with IFRAME has been found.');
$this
->config('recaptcha.settings')
->set('use_globally', TRUE)
->save();
$this
->drupalGet('user/login');
$this
->assertSession()
->responseContains('<script src="' . Url::fromUri('https://www.recaptcha.net/recaptcha/api.js', [
'query' => [
'hl' => \Drupal::service('language_manager')
->getCurrentLanguage()
->getId(),
],
'absolute' => TRUE,
])
->toString() . '" async defer></script>', '[testReCaptchaOnLoginForm]: Global reCAPTCHA is shown on form.');
$this
->assertSession()
->responseContains(Html::escape(Url::fromUri('https://www.recaptcha.net/recaptcha/api/fallback', $options)
->toString()), '[testReCaptchaOnLoginForm]: Global fallback URL with IFRAME has been found.');
$this
->config('recaptcha.settings')
->set('widget.size', '')
->save();
$this
->drupalGet('user/login');
$element = $this
->xpath('//div[@class=:class and @data-size=:size]', [
':class' => 'g-recaptcha',
':size' => 'small',
]);
$this
->assertFalse(!empty($element), 'Tag contains no data-size attribute.');
$this
->config('recaptcha.settings')
->set('widget.size', 'small')
->save();
$this
->drupalGet('user/login');
$element = $this
->xpath('//div[@class=:class and @data-size=:size]', [
':class' => 'g-recaptcha',
':size' => 'small',
]);
$this
->assertTrue(!empty($element), 'Tag contains data-size attribute and value.');
$this
->config('recaptcha.settings')
->set('widget.tabindex', 0)
->save();
$this
->drupalGet('user/login');
$element = $this
->xpath('//div[@class=:class and @data-tabindex=:index]', [
':class' => 'g-recaptcha',
':index' => 0,
]);
$this
->assertFalse(!empty($element), 'Tag contains no data-tabindex attribute.');
$this
->config('recaptcha.settings')
->set('widget.tabindex', 5)
->save();
$this
->drupalGet('user/login');
$element = $this
->xpath('//div[@class=:class and @data-tabindex=:index]', [
':class' => 'g-recaptcha',
':index' => 5,
]);
$this
->assertTrue(!empty($element), 'Tag contains data-tabindex attribute and value.');
$edit['name'] = $this->normalUser
->getAccountName();
$edit['pass'] = $this->normalUser
->getPassword();
$this
->assertSession()
->responseContains('captcha_response');
$this
->assertSession()
->hiddenFieldExists('captcha_response')
->setValue('?');
$this
->drupalPostForm('user/login', $edit, $this
->t('Log in'));
$this
->assertSession()
->pageTextContains($this
->t('The answer you entered for the CAPTCHA was not correct.'), 'CAPTCHA should block user login form', 'reCAPTCHA');
$this
->drupalGet('user/login');
$this
->assertSession()
->fieldExists('name');
$this
->assertSession()
->fieldExists('pass');
}
}