Block passwords that are in the top 5000 most common passwords. Site setting block_common_passwords can disable this feature.
This commit is contained in:
Neil Lalonde
parent
b4f547b3e2
commit
ab12695d63
11 changed files with 10204 additions and 35 deletions
67
spec/components/common_passwords/common_passwords_spec.rb
Normal file
67
spec/components/common_passwords/common_passwords_spec.rb
Normal file
|
|
@ -0,0 +1,67 @@
|
|||
require "spec_helper"
|
||||
require_dependency "common_passwords/common_passwords"
|
||||
|
||||
describe CommonPasswords do
|
||||
|
||||
it "the passwords file should exist" do
|
||||
File.exists?(described_class::PASSWORD_FILE).should eq(true)
|
||||
end
|
||||
|
||||
describe "#common_password?" do
|
||||
before { described_class.stubs(:redis).returns(stub_everything) }
|
||||
|
||||
subject { described_class.common_password? @password }
|
||||
|
||||
it "returns false if password isn't in the common passwords list" do
|
||||
described_class.stubs(:password_list).returns(stub_everything(:include? => false))
|
||||
@password = 'uncommonPassword'
|
||||
subject.should eq(false)
|
||||
end
|
||||
|
||||
it "returns false if password is nil" do
|
||||
described_class.expects(:password_list).never
|
||||
@password = nil
|
||||
subject.should eq(false)
|
||||
end
|
||||
|
||||
it "returns false if password is blank" do
|
||||
described_class.expects(:password_list).never
|
||||
@password = ""
|
||||
subject.should eq(false)
|
||||
end
|
||||
|
||||
it "returns true if password is in the common passwords list" do
|
||||
described_class.stubs(:password_list).returns(stub_everything(:include? => true))
|
||||
@password = "password"
|
||||
subject.should eq(true)
|
||||
end
|
||||
end
|
||||
|
||||
describe '#password_list' do
|
||||
it "loads the passwords file if redis doesn't have it" do
|
||||
mock_redis = mock("redis")
|
||||
mock_redis.stubs(:exists).returns(false)
|
||||
described_class.stubs(:redis).returns(mock_redis)
|
||||
described_class.expects(:load_passwords).returns([])
|
||||
list = described_class.password_list
|
||||
list.should respond_to(:include?)
|
||||
end
|
||||
|
||||
it "doesn't load the passwords file if redis has it" do
|
||||
mock_redis = mock("redis")
|
||||
mock_redis.stubs(:exists).returns(true)
|
||||
described_class.stubs(:redis).returns(mock_redis)
|
||||
described_class.expects(:load_passwords).never
|
||||
list = described_class.password_list
|
||||
list.should respond_to(:include?)
|
||||
end
|
||||
end
|
||||
|
||||
context "missing password file" do
|
||||
it "tolerates it" do
|
||||
described_class.stubs(:redis).returns(stub_everything(sismember: false))
|
||||
File.stubs(:readlines).with(described_class::PASSWORD_FILE).raises(Errno::ENOENT)
|
||||
described_class.common_password?("password").should eq(false)
|
||||
end
|
||||
end
|
||||
end
|
||||
Reference in a new issue