function UserBlocksUnitTests::testUserLoginBlock

7.x user.test UserBlocksUnitTests::testUserLoginBlock()

Test the user login block.

File

drupal-7.x/modules/user/user.test, line 1607: Tests for user.module.

Class

UserBlocksUnitTests: Test user blocks.

Code

function testUserLoginBlock() {
  // Create a user with some permission that anonymous users lack.
  $user = $this->drupalCreateUser(array('administer permissions'));

  // Log in using the block.
  $edit = array();
  $edit['name'] = $user->name;
  $edit['pass'] = $user->pass_raw;
  $this->drupalPost('admin/people/permissions', $edit, t('Log in'));
  $this->assertNoText(t('User login'), 'Logged in.');

  // Check that we are still on the same page.
  $this->assertEqual(url('admin/people/permissions', array('absolute' => TRUE)), $this->getUrl(), 'Still on the same page after login for access denied page');

  // Now, log out and repeat with a non-403 page.
  $this->drupalLogout();
  $this->drupalPost('filter/tips', $edit, t('Log in'));
  $this->assertNoText(t('User login'), 'Logged in.');
  $this->assertPattern('!<title.*?' . t('Compose tips') . '.*?</title>!', 'Still on the same page after login for allowed page');

  // Check that the user login block is not vulnerable to information
  // disclosure to third party sites.
  $this->drupalLogout();
  $this->drupalPost('http://example.com/', $edit, t('Log in'), array('external' => FALSE));
  // Check that we remain on the site after login.
  $this->assertEqual(url('user/' . $user->uid, array('absolute' => TRUE)), $this->getUrl(), 'Redirected to user profile page after login from the frontpage');
}