public function it_prevents_guests_from_seeing_profiles(AcceptanceTester $I)
{
$user = $this->userActor->create();
$I->amOnRoute('profile.show', $user->username);
$I->seeInCurrentUrl('auth/login');
$I->seeCurrentRouteIs('auth.login');
$I->dontSee('Profile of user');
}
public function it_clears_attempts_on_successful_login(FunctionalTester $I)
{
$user = $this->userActor->create();
$username = $user->username;
$keyAttempts = 'login:attempts:' . md5($username . '127.0.0.1');
$keyLockout = 'login:expiration:' . md5($username . '127.0.0.1');
$I->assertFalse(Cache::has($keyAttempts));
//check for records
$I->assertFalse(Cache::has($keyLockout));
$this->userActor->makeLoginAttempt($I, $username, 'a');
//fail to login
$I->assertTrue(Cache::has($keyAttempts));
//record should exist
$this->userActor->makeLoginAttempt($I, $username, \Actors\UserActor::$_defaultPassword);
//success login
$I->see('Logout');
$I->assertFalse(Cache::has($keyAttempts));
//records should be deleted
$I->assertFalse(Cache::has($keyLockout));
}
public function it_does_nothing_when_detaching_not_assigned_permission(FunctionalTester $I)
{
$user = $this->userActor->create();
$user->detachPermission('accessDashboard');
}
