UserAccountFormPasswordResetTest.php

Same filename in other branches
  1. 9 core/modules/user/tests/src/Kernel/UserAccountFormPasswordResetTest.php
  2. 11.x core/modules/user/tests/src/Kernel/UserAccountFormPasswordResetTest.php

Namespace

Drupal\Tests\user\Kernel

File

core/modules/user/tests/src/Kernel/UserAccountFormPasswordResetTest.php

View source
<?php

declare (strict_types=1);
namespace Drupal\Tests\user\Kernel;

use Drupal\KernelTests\KernelTestBase;
use Drupal\user\Entity\User;

/**
 * Verifies that the password reset behaves as expected with form elements.
 *
 * @group user
 */
class UserAccountFormPasswordResetTest extends KernelTestBase {
    
    /**
     * {@inheritdoc}
     */
    protected static $modules = [
        'system',
        'user',
    ];
    
    /**
     * User object.
     *
     * @var \Drupal\user\UserInterface
     */
    protected $user;
    
    /**
     * {@inheritdoc}
     */
    protected function setUp() : void {
        parent::setUp();
        // Install default configuration; required for AccountFormController.
        $this->installConfig([
            'user',
        ]);
        $this->installEntitySchema('user');
        // Create an user to login.
        $this->user = User::create([
            'name' => 'test',
        ]);
        $this->user
            ->save();
        // Set current user.
        $this->container
            ->get('current_user')
            ->setAccount($this->user);
        // Install the router table and then rebuild.
        \Drupal::service('router.builder')->rebuild();
    }
    
    /**
     * Tests the reset token used only from query string.
     */
    public function testPasswordResetToken() : void {
        
        /** @var \Symfony\Component\HttpFoundation\Request $request */
        $request = $this->container
            ->get('request_stack')
            ->getCurrentRequest();
        $token = 'VALID_TOKEN';
        $request->getSession()
            ->set('pass_reset_1', $token);
        // Set token in query string.
        $request->query
            ->set('pass-reset-token', $token);
        $form = $this->buildAccountForm('default');
        // User shouldn't see current password field.
        $this->assertFalse($form['account']['current_pass']['#access']);
        $request->query
            ->set('pass-reset-token', NULL);
        $request->attributes
            ->set('pass-reset-token', $token);
        $form = $this->buildAccountForm('default');
        $this->assertTrue($form['account']['current_pass']['#access']);
    }
    
    /**
     * Builds the user account form for a given operation.
     *
     * @param string $operation
     *   The entity operation; one of 'register' or 'default'.
     *
     * @return array
     *   The form array.
     */
    protected function buildAccountForm($operation) {
        // @see HtmlEntityFormController::getFormObject()
        $entity_type = 'user';
        if ($operation != 'register') {
            $entity = $this->user;
        }
        else {
            $entity = $this->container
                ->get('entity_type.manager')
                ->getStorage($entity_type)
                ->create();
        }
        // @see EntityFormBuilder::getForm()
        return $this->container
            ->get('entity.form_builder')
            ->getForm($entity, $operation);
    }

}

Classes

Title Deprecated Summary
UserAccountFormPasswordResetTest Verifies that the password reset behaves as expected with form elements.

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.