function UserLoginTest::testGlobalLoginFloodControl in Zircon Profile 8

Same name and namespace in other branches

8.0 core/modules/user/src/Tests/UserLoginTest.php \Drupal\user\Tests\UserLoginTest::testGlobalLoginFloodControl()

Test the global login flood control.

File

core/modules/user/src/Tests/UserLoginTest.php, line 39: Contains \Drupal\user\Tests\UserLoginTest.

Class

UserLoginTest: Ensure that login works as expected.

Namespace

Drupal\user\Tests

Code

function testGlobalLoginFloodControl() {
  $this
    ->config('user.flood')
    ->set('ip_limit', 10)
    ->set('user_limit', 4000)
    ->save();
  $user1 = $this
    ->drupalCreateUser(array());
  $incorrect_user1 = clone $user1;
  $incorrect_user1->pass_raw .= 'incorrect';

  // Try 2 failed logins.
  for ($i = 0; $i < 2; $i++) {
    $this
      ->assertFailedLogin($incorrect_user1);
  }

  // A successful login will not reset the IP-based flood control count.
  $this
    ->drupalLogin($user1);
  $this
    ->drupalLogout();

  // Try 8 more failed logins, they should not trigger the flood control
  // mechanism.
  for ($i = 0; $i < 8; $i++) {
    $this
      ->assertFailedLogin($incorrect_user1);
  }

  // The next login trial should result in an IP-based flood error message.
  $this
    ->assertFailedLogin($incorrect_user1, 'ip');

  // A login with the correct password should also result in a flood error
  // message.
  $this
    ->assertFailedLogin($user1, 'ip');
}

You are here

function UserLoginTest::testGlobalLoginFloodControl in Zircon Profile 8

File

Class

Namespace

Code

API Navigation