Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[stable10] Add confirm password after new password #34492

Merged
merged 5 commits into from
Feb 15, 2019
Merged

[stable10] Add confirm password after new password #34492

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
f76b579
Add confirm password after new password
sharidas Apr 2, 2018
8081f56
Adjust confirm password test steps
phil-davis Feb 15, 2019
effdf6f
Adjust 'Passwords do not match' message
phil-davis Feb 15, 2019
814b7a1
Adjust confirm password steps for webUIManageUsersGroups/addUsers.fea…
phil-davis Feb 15, 2019
51db421
Implement retype password for new users from user_management issue 147
phil-davis Feb 15, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions core/css/lostpassword/resetpassword.css
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,3 +13,11 @@
#password {
width: 100% !important;
}

#retypepassword {
width: 100% !important;
}

#message {
width: 94% !important;
}
26 changes: 24 additions & 2 deletions core/js/lostpassword.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,8 +75,9 @@ OC.Lostpassword = {
},

resetPassword : function(event){
$('#password').parent().removeClass('shake');
event.preventDefault();
if ($('#password').val()){
if ($('#password').val() === $('#retypepassword').val()){
$.post(
$('#password').parents('form').attr('action'),
{
Expand All @@ -85,6 +86,15 @@ OC.Lostpassword = {
},
OC.Lostpassword.resetDone
);
} else {
//Password mismatch happened
$('#password').val('');
$('#retypepassword').val('');
$('#password').parent().addClass('shake');
$('#message').addClass('warning');
$('#message').text('Passwords do not match');
$('#message').show();
$('#password').focus();
}
if($('#encrypted-continue').is(':checked')) {
$('#reset-password #submit').hide();
Expand Down Expand Up @@ -140,4 +150,16 @@ OC.Lostpassword = {

};

$(document).ready(OC.Lostpassword.init);
$(document).ready(function () {
OC.Lostpassword.init();
$('#password').keypress(function () {
/*
The warning message should be shown only during password mismatch.
Else it should not.
*/
if (($('#password').val().length >= 0) && ($('#retypepassword').val().length === 0)) {
$('#message').removeClass('warning');
$('#message').text('');
}
});
});
6 changes: 5 additions & 1 deletion core/templates/lostpassword/resetpassword.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,9 +28,13 @@

<form action="<?php print_unescaped($_['link']) ?>" id="reset-password" method="post">
<fieldset>
<p>
<p class="groupbottom<?php if (!empty($_['invalidpassword'])) {
?> shake<?php
} ?>">
<label for="password" class="infield"><?php p($l->t('New password')); ?></label>
<input type="password" name="password" id="password" value="" placeholder="<?php p($l->t('New Password')); ?>" autocomplete="off" required autofocus />
<input type="password" name="retypepassword" id="retypepassword" value="" placeholder="<?php p($l->t('Confirm Password')); ?>"/>
<span id='message'></span>
</p>
<input type="submit" id="submit" value="<?php p($l->t('Reset password')); ?>" />
<p class="text-center">
Expand Down
38 changes: 34 additions & 4 deletions tests/acceptance/features/bootstrap/WebUILoginContext.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -545,16 +545,46 @@ public function theUserFollowsThePasswordResetLinkFromTheirEmailUsingInvalidToke
}

/**
* @When the user resets/sets the password to :newPassword using the webUI
* @Given the user has reset/set the password to :newPassword using the webUI
* @When the user resets/sets the password to :newPassword and confirms with the same password using the webUI
* @Given the user has reset/set the password to :newPassword and confirms with the same password using the webUI
*
* @param string $newPassword
*
* @return void
*/
public function theUserResetsThePasswordToUsingTheWebui($newPassword) {
public function theUserResetsThePasswordWithSameConfirmationToUsingTheWebui($newPassword) {
$newPassword = $this->featureContext->getActualPassword($newPassword);
$this->loginPage->resetThePassword($newPassword, $this->getSession());
$confirmNewPassword = $this->featureContext->getActualPassword($newPassword);
$this->loginPage->resetThePassword($newPassword, $confirmNewPassword, $this->getSession());
}

/**
* @When the user resets/sets the password to :newPassword and confirms with :confirmPassword using the webUI
* @Given the user has reset/set the password to :newPassword and confirms with :confirmPassword using the webUI
*
* @param string $newPassword
* @param string $confirmNewPassword
*
* @return void
*/
public function theUserResetsPasswordWIthDiffConfirmUsingTheWebUI($newPassword, $confirmNewPassword) {
$newPassword = $this->featureContext->getActualPassword($newPassword);
$this->loginPage->resetThePassword($newPassword, $confirmNewPassword, $this->getSession());
}

/**
* @Then the user should see a password mismatch message displayed on the webUI
*
* @param PyStringNode $string
*
* @return void
*/
public function theUserResetConfirmPasswordErrorMessage(PyStringNode $string) {
$expectedString = $string->getRaw();
$passwordMismatchMessage = $this->loginPage->getRestPasswordConfirmError();
PHPUnit_Framework_Assert::assertEquals(
$expectedString, $passwordMismatchMessage
);
}

/**
Expand Down
14 changes: 13 additions & 1 deletion tests/acceptance/features/lib/LoginPage.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,8 @@ class LoginPage extends OwncloudPage {
protected $path = '/index.php/login';
protected $userInputId = "user";
protected $passwordInputId = "password";
protected $confirmPasswordInputId = "retypepassword";
protected $passwordResetConfrimMessage = "message";
protected $submitLoginId = "submit";
protected $lostPasswordId = "lost-password";
protected $setPasswordErrorMessageId = "error-message";
Expand Down Expand Up @@ -196,16 +198,26 @@ public function getLostPasswordResetErrorMessage() {
/**
*
* @param string $newPassword
* @param string $confirmNewPassword
* @param Session $session
*
* @return void
*/
public function resetThePassword($newPassword, Session $session) {
public function resetThePassword($newPassword, $confirmNewPassword, Session $session) {
$this->fillField($this->passwordInputId, $newPassword);
$this->fillField($this->confirmPasswordInputId, $confirmNewPassword);
$this->findById($this->submitLoginId)->click();
$this->waitForAjaxCallsToStartAndFinish($session);
}

/**
* @return string
*/
public function getRestPasswordConfirmError() {
$messageVal = $this->findById($this->passwordResetConfrimMessage)->getText();
return $messageVal;
}

/**
*
* @param string $legalUrlType
Expand Down
15 changes: 13 additions & 2 deletions tests/acceptance/features/webUILogin/resetPassword.feature
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ Feature: reset the password
When the user requests the password reset link using the webUI
And the user follows the password reset link from email address "user1@example.org"
Then the user should be redirected to a webUI page with the title "%productname%"
When the user resets the password to "%alt3%" using the webUI
When the user resets the password to "%alt3%" and confirms with the same password using the webUI
Then the email address "user1@example.org" should have received an email with the body containing
"""
Password changed successfully
Expand All @@ -43,7 +43,7 @@ Feature: reset the password
When the user requests the password reset link using the webUI
And the user follows the password reset link from email address "user1@example.org"
Then the user should be redirected to a webUI page with the title "%productname%"
When the user resets the password to "%alt3%" using the webUI
When the user resets the password to "%alt3%" and confirms with the same password using the webUI
Then the email address "user1@example.org" should have received an email with the body containing
"""
Password changed successfully
Expand All @@ -69,3 +69,14 @@ Feature: reset the password
"""
Could not reset password because the token does not match
"""

@skipOnEncryption
Scenario: When new password and confirmation password are different does not reset user password
When the user requests the password reset link using the webUI
And the user follows the password reset link from email address "user1@example.org"
Then the user should be redirected to a webUI page with the title "%productname%"
When the user resets the password to "%alt3%" and confirms with "foo" using the webUI
Then the user should see a password mismatch message displayed on the webUI
"""
Passwords do not match
"""
14 changes: 7 additions & 7 deletions tests/acceptance/features/webUIManageUsersGroups/addUsers.feature
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -64,7 +64,7 @@ Feature: add users
When the administrator creates a user with the name "<username>" and the email "guiusr1@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "guiusr1@owncloud" using the webUI
And the user sets the password to "%regular%" using the webUI
And the user sets the password to "%regular%" and confirms with the same password using the webUI
Then the email address "guiusr1@owncloud" should have received an email with the body containing
"""
Password changed successfully
Expand Down Expand Up @@ -105,7 +105,7 @@ Feature: add users
When the administrator creates a user with the name "guiusr1" and the email "guiusr1@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "guiusr1@owncloud" using the webUI
And the user sets the password to "%regular%" using the webUI
And the user sets the password to "%regular%" and confirms with the same password using the webUI
And the user follows the password set link received by "guiusr1@owncloud" in Email number 2 using the webUI
Then the user should be redirected to the general error webUI page with the title "%productname%"
And an error should be displayed on the general error webUI page saying "The token provided is invalid."
Expand All @@ -116,7 +116,7 @@ Feature: add users
And the administrator creates a user with the name "guiusr1" and the email "correct@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "correct@owncloud" using the webUI
And the user sets the password to "%regular%" using the webUI
And the user sets the password to "%regular%" and confirms with the same password using the webUI
And the user logs in with username "guiusr1" and password "%regular%" using the webUI
Then the user should be redirected to a webUI page with the title "Files - %productname%"

Expand All @@ -136,15 +136,15 @@ Feature: add users
And the administrator logs out of the webUI
And the user follows the password set link received by "mistake@owncloud" using the webUI
And the user follows the password set link received by "correct@owncloud" using the webUI
And the user sets the password to "%regular%" using the webUI
And the user sets the password to "%regular%" and confirms with the same password using the webUI
And the user logs in with username "guiusr1" and password "%regular%" using the webUI
Then the user should be redirected to a webUI page with the title "Files - %productname%"

Scenario: check if the sender email address is valid
When the administrator creates a user with the name "user1" and the email "guiusr1@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "guiusr1@owncloud" using the webUI
And the user sets the password to "%regular%" using the webUI
And the user sets the password to "%regular%" and confirms with the same password using the webUI
Then the email address "guiusr1@owncloud" should have received an email with the body containing
"""
Password changed successfully
Expand All @@ -170,7 +170,7 @@ Feature: add users
When the administrator creates a user with the name "brand-new-user" and the email "bnu@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "bnu@owncloud" using the webUI
And the user sets the password to "<password>" using the webUI
And the user sets the password to "<password>" and confirms with the same password using the webUI
And the user logs in with username "brand-new-user" and password "<password>" using the webUI
Then user "brand-new-user" should exist
And the user should be redirected to a webUI page with the title "Files - %productname%"
Expand All @@ -186,5 +186,5 @@ Feature: add users
When the administrator creates a user with the name "brand-new-user" and the email "bnu@owncloud" without a password using the webUI
And the administrator logs out of the webUI
And the user follows the password set link received by "bnu@owncloud" using the webUI
And the user sets the password to " " using the webUI
And the user sets the password to " " and confirms with the same password using the webUI
Then the user should be redirected to a webUI page with the title "%productname%"