Raise coverage

tvdijen · tvdijen · commit 6f1e577ff136 · 2023-01-29T20:34:42.000+01:00
diff --git a/modules/core/src/Auth/Source/Selector/RequestedAuthnContextSelector.php b/modules/core/src/Auth/Source/Selector/RequestedAuthnContextSelector.php
@@ -4,11 +4,10 @@
 
 namespace SimpleSAML\Module\core\Auth\Source\Selector;
 
-use Exception;
 use SAML2\Constants as C;
 use SAML2\Exception\Protocol\NoAuthnContextException;
 use SimpleSAML\Assert\Assert;
-use SimpleSAML\Error;
+use SimpleSAML\Error\Exception;
 use SimpleSAML\Logger;
 use SimpleSAML\Module\core\Auth\Source\AbstractSourceSelector;
 
@@ -132,7 +131,7 @@ protected function selectAuthSource(array &$state): string
                 case 'maximum':
                 case 'better':
                     // Not implemented
-                    throw new Error\Exception('Not implemented.');
+                    throw new Exception('Not implemented.');
             }
         }
 
diff --git a/modules/core/src/Auth/Source/Selector/SourceIPSelector.php b/modules/core/src/Auth/Source/Selector/SourceIPSelector.php
@@ -4,8 +4,8 @@
 
 namespace SimpleSAML\Module\core\Auth\Source\Selector;
 
-use Exception;
 use SimpleSAML\Assert\Assert;
+use SimpleSAML\Error\Exception;
 use SimpleSAML\Logger;
 use SimpleSAML\Module\core\Auth\Source\AbstractSourceSelector;
 use SimpleSAML\Utils;
diff --git a/tests/modules/core/src/Auth/Source/Selector/RequestedAuthnContextSelectorTest.php b/tests/modules/core/src/Auth/Source/Selector/RequestedAuthnContextSelectorTest.php
@@ -9,6 +9,7 @@
 use SimpleSAML\Assert\AssertionFailedException;
 use SimpleSAML\Auth;
 use SimpleSAML\Configuration;
+use SimpleSAML\Error\Exception;
 use SimpleSAML\Module\core\Auth\Source\Selector\RequestedAuthnContextSelector;
 
 /**
@@ -93,6 +94,7 @@ public static function doAuthentication(Auth\Source $as, array $state): void
             {
                 // Dummy
             }
+
             /**
              * @param array &$state
              * @return void
@@ -109,6 +111,62 @@ public function authenticate(array &$state): void
     }
 
 
+    /**
+     */
+    public function testIncompleteConfigurationThrowsExceptionVariant1(): void
+    {
+        $sourceConfig = Configuration::loadFromArray([
+            'selector' => [
+                'core:RequestedAuthnContextSelector',
+
+                'contexts' => [
+                    10 => [
+                        'identifier' => 'urn:x-simplesamlphp:loa1',
+                    ],
+                ],
+            ],
+        ]);
+
+        Configuration::setPreLoadedConfig($this->sourceConfig, 'authsources.php');
+
+        $info = ['AuthId' => 'selector'];
+        $config = $sourceConfig->getArray('selector');
+
+        $this->expectException(Exception::class);
+        $this->expectExceptionMessage("Incomplete context '10' due to missing `source` key.");
+
+        new RequestedAuthnContextSelector($info, $config);
+    }
+
+
+    /**
+     */
+    public function testIncompleteConfigurationThrowsExceptionVariant2(): void
+    {
+        $sourceConfig = Configuration::loadFromArray([
+            'selector' => [
+                'core:RequestedAuthnContextSelector',
+
+                'contexts' => [
+                    10 => [
+                        'source' => 'loa1',
+                    ],
+                ],
+            ],
+        ]);
+
+        Configuration::setPreLoadedConfig($this->sourceConfig, 'authsources.php');
+
+        $info = ['AuthId' => 'selector'];
+        $config = $sourceConfig->getArray('selector');
+
+        $this->expectException(Exception::class);
+        $this->expectExceptionMessage("Incomplete context '10' due to missing `identifier` key.");
+
+        new RequestedAuthnContextSelector($info, $config);
+    }
+
+
     /**
      * @dataProvider provideRequestedAuthnContext
      * @param array $requestedAuthnContext  The RequestedAuthnContext
@@ -130,7 +188,7 @@ public function selectAuthSource(array &$state): string
 
         try {
             $source = $selector->selectAuthSource($state);
-        } catch (AssertionFailedException | NoAuthnContextException $e) {
+        } catch (AssertionFailedException | NoAuthnContextException | Exception $e) {
             $source = $e::class;
         }
 
@@ -204,6 +262,35 @@ public function provideRequestedAuthnContext(): array
                 ],
                 AssertionFailedException::class,
             ],
+
+            // Non-implemented comparison requested
+            [
+                [
+                    'AuthnContextClassRef' => [
+                        'urn:x-simplesamlphp:loa2',
+                    ],
+                    'Comparison' => 'minimum',
+                ],
+                Exception::class,
+            ],
+            [
+                [
+                    'AuthnContextClassRef' => [
+                        'urn:x-simplesamlphp:loa2',
+                    ],
+                    'Comparison' => 'maximum',
+                ],
+                Exception::class,
+            ],
+            [
+                [
+                    'AuthnContextClassRef' => [
+                        'urn:x-simplesamlphp:loa2',
+                    ],
+                    'Comparison' => 'better',
+                ],
+                Exception::class,
+            ],
         ];
     }
 }
diff --git a/tests/modules/core/src/Auth/Source/Selector/SourceIPSelectorTest.php b/tests/modules/core/src/Auth/Source/Selector/SourceIPSelectorTest.php
@@ -8,6 +8,7 @@
 use SimpleSAML\Assert\AssertionFailedException;
 use SimpleSAML\Auth;
 use SimpleSAML\Configuration;
+use SimpleSAML\Error\Exception;
 use SimpleSAML\Module\core\Auth\Source\Selector\SourceIPSelector;
 
 /**
@@ -159,6 +160,69 @@ public function selectAuthSource(array &$state): string
     }
 
 
+    /**
+     */
+    public function testIncompleteConfigurationThrowsExceptionVariant1(): void
+    {
+        $sourceConfig = Configuration::loadFromArray([
+            'selector' => [
+                'core:SourceIPSelector',
+
+                'zones' => [
+                    'internal' => [
+                        'subnet' => [
+                            '10.0.0.0/8',
+                            '2001:0DB8::/108',
+                        ],
+                    ],
+
+                    'default' => 'external',
+                ],
+            ],
+        ]);
+
+        Configuration::setPreLoadedConfig($this->sourceConfig, 'authsources.php');
+
+        $info = ['AuthId' => 'selector'];
+        $config = $sourceConfig->getArray('selector');
+
+        $this->expectException(Exception::class);
+        $this->expectExceptionMessage("Incomplete zone-configuration 'internal' due to missing `source` key.");
+
+        new SourceIPSelector($info, $config);
+    }
+
+
+    /**
+     */
+    public function testIncompleteConfigurationThrowsExceptionVariant2(): void
+    {
+        $sourceConfig = Configuration::loadFromArray([
+            'selector' => [
+                'core:SourceIPSelector',
+
+                'zones' => [
+                    'internal' => [
+                        'source' => 'internal',
+                    ],
+
+                    'default' => 'external',
+                ],
+            ],
+        ]);
+
+        Configuration::setPreLoadedConfig($this->sourceConfig, 'authsources.php');
+
+        $info = ['AuthId' => 'selector'];
+        $config = $sourceConfig->getArray('selector');
+
+        $this->expectException(Exception::class);
+        $this->expectExceptionMessage("Incomplete zone-configuration 'internal' due to missing `subnet` key.");
+
+        new SourceIPSelector($info, $config);
+    }
+
+
     /**
      * @return array
      */
