get(route('login')); $response->assertStatus(200); } public function test_users_can_authenticate_using_the_login_screen() { $user = User::factory()->create(); $response = $this->post(route('login.store'), [ 'email' => $user->email, 'password' => 'password', ]); $this->assertAuthenticated(); $response->assertRedirect(route('dashboard', absolute: false)); } public function test_users_can_not_authenticate_with_invalid_password() { $user = User::factory()->create(); $this->post(route('login.store'), [ 'email' => $user->email, 'password' => 'wrong-password', ]); $this->assertGuest(); } public function test_users_can_logout() { $user = User::factory()->create(); $response = $this->actingAs($user)->post(route('logout')); $this->assertGuest(); $response->assertRedirect(route('home')); } public function test_users_are_rate_limited() { $user = User::factory()->create(); for ($i = 0; $i < 5; $i++) { $this->post(route('login.store'), [ 'email' => $user->email, 'password' => 'wrong-password', ])->assertStatus(302)->assertSessionHasErrors([ 'email' => 'These credentials do not match our records.', ]); } $response = $this->post(route('login.store'), [ 'email' => $user->email, 'password' => 'wrong-password', ]); $response->assertSessionHasErrors('email'); $errors = session('errors'); $this->assertStringContainsString('Too many login attempts', $errors->first('email')); } }