Zabbix
Public
Source
<?php/*** Copyright (C) 2001-2025 Zabbix SIA**** This program is free software: you can redistribute it and/or modify it under the terms of** the GNU Affero General Public License as published by the Free Software Foundation, version 3.**** This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;** without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.** See the GNU Affero General Public License for more details.**** You should have received a copy of the GNU Affero General Public License along with this program.** If not, see <https://www.gnu.org/licenses/>.**/require_once dirname(__FILE__).'/../include/CAPITest.php';/** * @backup userdirectory, userdirectory_ldap, userdirectory_saml, userdirectory_idpgroup, userdirectory_usrgrp, userdirectory_media, settings, usrgrp */class testAuthentication extends CAPITest { public const TEST_DATA_TO_RESOLVE = [ 'disabled_usrgrpid' => 'Disabled user group for API tests', 'ldap_userdirectoryid' => 'Used in LDAP settings', 'mfaid' => 'Default MFA method' ]; public static $data = [ 'disabled_usrgrpid' => null, 'ldap_userdirectoryid' => null, 'mfaid' => null ]; public static function authentication_get_data() { return [ 'Test getting authentication general data' => [ 'authentication' => [ 'output' => ['authentication_type', 'http_auth_enabled', 'http_login_form', 'http_strip_domains', 'http_case_sensitive', 'ldap_auth_enabled', 'ldap_case_sensitive', 'saml_auth_enabled', 'saml_case_sensitive', 'passwd_min_length', 'passwd_check_rules', 'jit_provision_interval', 'saml_jit_status', 'ldap_jit_status', 'disabled_usrgrpid', 'mfa_status' ] ], 'get_result' => [ // General fields. 'authentication_type' => [ZBX_AUTH_INTERNAL, ZBX_AUTH_LDAP], 'passwd_min_length' => ['min' => 1, 'max' => 70], 'passwd_check_rules' => [ 'min' => 0x00, 'max' => (PASSWD_CHECK_CASE | PASSWD_CHECK_DIGITS | PASSWD_CHECK_SPECIAL | PASSWD_CHECK_SIMPLE) ], // HTTP auth fields. 'http_auth_enabled' => [ZBX_AUTH_HTTP_DISABLED, ZBX_AUTH_HTTP_ENABLED], 'http_login_form' => [ZBX_AUTH_FORM_ZABBIX, ZBX_AUTH_FORM_HTTP], 'http_strip_domains' => '', 'http_case_sensitive' => [ZBX_AUTH_CASE_INSENSITIVE, ZBX_AUTH_CASE_SENSITIVE], // LDAP fields. 'ldap_auth_enabled' => [ZBX_AUTH_LDAP_DISABLED, ZBX_AUTH_LDAP_ENABLED], 'ldap_case_sensitive' => [ZBX_AUTH_CASE_INSENSITIVE, ZBX_AUTH_CASE_SENSITIVE], 'ldap_jit_status' => [JIT_PROVISIONING_DISABLED, JIT_PROVISIONING_ENABLED], 'jit_provision_interval' => '1h', // SAML fields. 'saml_auth_enabled' => [ZBX_AUTH_SAML_DISABLED, ZBX_AUTH_SAML_ENABLED], 'saml_case_sensitive' => [ZBX_AUTH_CASE_INSENSITIVE, ZBX_AUTH_CASE_SENSITIVE], 'saml_jit_status' => [JIT_PROVISIONING_DISABLED, JIT_PROVISIONING_ENABLED], // MFA fields. 'mfa_status' => [MFA_DISABLED, MFA_ENABLED] ], 'expected_error' => null ] ]; } /** * @dataProvider authentication_get_data */ public function testAuthentication_Get($authentication, $get_result, $expected_error) { $result = $this->call('authentication.get', $authentication); if ($expected_error === null) { $result = $result['result']; // General fields. $this->assertContains($result['authentication_type'], $get_result['authentication_type']); $this->assertGreaterThanOrEqual($get_result['passwd_min_length']['min'], $result['passwd_min_length']);