test(integration): add test for importing a group with a name >= 64

characters

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>

Author: blizzz

.github/workflows/integration.yml

@@ -82,7 +82,7 @@ jobs:
           MYSQL_ROOT_PASSWORD: rootpassword
         options: --health-cmd="mysqladmin ping" --health-interval 5s --health-timeout 2s --health-retries 5
       directory:
-        image: ghcr.io/nextcloud/continuous-integration-user_saml-dirsrv:latest # zizmor: ignore[unpinned-images]
+        image: ghcr.io/nextcloud/continuous-integration-user_saml-dirsrv:2
         ports:
           - 389:3389/tcp
         options:

tests/integration/features/Shibboleth.feature

@@ -87,6 +87,22 @@ Feature: Shibboleth
     And the group "SAML_Students" should exists
     And The last login timestamp of "student1" should not be empty
 
+  Scenario: Authenticating using Shibboleth with SAML in provisioning mode and an overlong group name
+    Given The setting "saml-attribute-mapping-displayName_mapping" is set to "urn:oid:2.5.4.42 urn:oid:2.5.4.4"
+    And The setting "saml-attribute-mapping-group_mapping" is set to "groups"
+    When I send a GET request to "http://localhost:8080/index.php/login"
+    Then I should be redirected to "https://localhost:4443/idp/profile/SAML2/Redirect/SSO"
+    And I send a POST request to "https://localhost:4443/idp/profile/SAML2/Redirect/SSO?execution=e1s1" with the following data
+        |j_username|j_password|_eventId_proceed|
+        |student3  |password  |                |
+    And The response should be a SAML redirect page that gets submitted
+    And I should be redirected to "http://localhost:8080/index.php/apps/dashboard/"
+    And The user value "id" should be "student3"
+    And The user value "display-name" should be "Alice Alisson"
+    And The user value "groups" should be "SAML_a8c9502da8297f759c8d3ad26860efa9527d83e17130901d,SAML_Students"
+    And the group "SAML_a8c9502da8297f759c8d3ad26860efa9527d83e17130901d" should exists
+	And the group "SAML_a8c9502da8297f759c8d3ad26860efa9527d83e17130901d" has the display name "AGroupNameContainingMoreThan64CharactersRepeatAGroupNameContainingMoreThan64Characters"
+
   Scenario: Authenticating using Shibboleth with SAML with custom redirect URL
     Given The setting "saml-attribute-mapping-email_mapping" is set to "urn:oid:0.9.2342.19200300.100.1.3"
     And The setting "saml-attribute-mapping-displayName_mapping" is set to "urn:oid:2.5.4.42 urn:oid:2.5.4.4"

tests/integration/features/bootstrap/FeatureContext.php

@@ -597,19 +597,32 @@ public function theEnvironmentVariableIsSetTo($key, $value) {
 	 * @Given /^the group "([^"]*)" should exists$/
 	 */
 	public function theGroupShouldExists(string $gid): void {
-		$response = shell_exec(
+		$groupInfo = $this->fetchGroupInfo($gid);
+		if (!isset($groupInfo['groupID']) || $groupInfo['groupID'] !== $gid) {
+			throw new UnexpectedValueException('Group does not exist');
+		}
+	}
+
+	/**
+	 * @Then the group :gid has the display name :expectedDisplayName
+	 */
+	public function theGroupHasTheDisplayName(string $gid, string $expectedDisplayName): void {
+		$groupInfo = $this->fetchGroupInfo($gid);
+		if (!isset($groupInfo['displayName']) || $groupInfo['displayName'] !== $expectedDisplayName) {
+			throw new UnexpectedValueException('The group`s display name does not match');
+		}
+	}
+
+	protected function fetchGroupInfo(string $gid): ?array {
+		$groupInfoOutput = shell_exec(
 			sprintf(
 				'%s %s group:info --output=json "%s"',
 				PHP_BINARY,
 				__DIR__ . '/../../../../../../occ',
 				$gid
 			)
 		);
-
-		$responseArray = json_decode($response, true);
-		if (!isset($responseArray['groupID']) || $responseArray['groupID'] !== $gid) {
-			throw new UnexpectedValueException('Group does not exist');
-		}
+		return json_decode($groupInfoOutput, true);
 	}
 
 	/**