Issue #55: [UPD] make userkey respect suspended status of users

auth.php

@@ -172,6 +172,15 @@ public function user_login_userkey() {
         $this->userkeymanager->delete_keys($key->userid);
 
         $user = get_complete_user_data('id', $key->userid);
+        if (!empty($user->suspended)) {
+            $failurereason = AUTH_LOGIN_SUSPENDED;
+
+            // Trigger login failed event.
+            $event = \core\event\user_login_failed::create(array('userid' => $user->id,
+                'other' => array('username' => $user->username, 'reason' => $failurereason)));
+            $event->trigger();
+            throw new invalid_parameter_exception('User suspended');
+        }
         complete_user_login($user);
 
         // Identify this session as using user key auth method.

tests/auth_plugin_test.php

@@ -237,6 +237,25 @@ public function test_throwing_exception_if_user_is_not_exist() {
         $this->expectExceptionMessage('Invalid parameter value detected (User is not exist)');
         $actual = $this->auth->get_login_url($user);
     }
+    /**
+     * Test that auth plugin throws correct exception if we trying to request not existing user.
+     */
+    public function test_throwing_exception_if_user_is_suspended() {
+        global $USER, $SESSION;
+
+        $user = $this->getDataGenerator()->create_user();
+        $user->suspended = 1;
+        $this->setUser($user);
+        $this->assertEquals($USER->id, $user->id);
+
+        $this->create_user_private_key();
+        $_POST['key'] = 'TestKey';
+
+        $this->expectException(invalid_parameter_exception::class);
+        $this->expectExceptionMessage('Invalid parameter value detected (User is suspended)');
+
+        $this->auth->user_login_userkey();
+    }
 
     /**
      * Test that auth plugin throws correct exception if we trying to request user,