首頁 探索 說明
註冊 登入
3erPartyFlowdat3
/
SonataAdminBundle
2
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 24cb39c357
分支列表 標籤列表
SonataAdminB...
/
Tests
/
Security
/
Handler
/
RoleSecurityHandlerTest.php

RoleSecurityHandlerTest.php 8.8 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Sonata project.
    5. 

  5.  *
    6. 

  6.  * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Sonata\AdminBundle\Tests\Security\Handler;
    13. 

  13. 

  14. use Symfony\Component\Security\Core\SecurityContextInterface;
    15. 

  15. use Sonata\AdminBundle\Admin\AdminInterface;
    16. 

  16. use Sonata\AdminBundle\Security\Handler\RoleSecurityHandler;
    17. 

  17. use Symfony\Component\Security\Core\Exception\AuthenticationCredentialsNotFoundException;
    18. 

  18. 

  19. /**
    20. 

  20.  * Test for RoleSecurityHandler
    21. 

  21.  *
    22. 

  22.  * @author Andrej Hudec <pulzarraider@gmail.com>
    23. 

  23.  */
    24. 

  24. class RoleSecurityHandlerTest extends \PHPUnit_Framework_TestCase
    25. 

  25. {
    26. 

  26.     /**
    27. 

  27.      * @var AdminInterface
    28. 

  28.      */
    29. 

  29.     private $admin;
    30. 

  30. 

  31.     /**
    32. 

  32.      * @var SecurityContextInterface
    33. 

  33.      */
    34. 

  34.     private $securityContext;
    35. 

  35. 

  36.     public function setUp()
    37. 

  37.     {
    38. 

  38.         $this->securityContext = $this->getMock('Symfony\Component\Security\Core\SecurityContextInterface');
    39. 

  39. 

  40.         $this->admin = $this->getMock('Sonata\AdminBundle\Admin\AdminInterface');
    41. 

  41.     }
    42. 

  42. 

  43.     /**
    44. 

  44.      * @dataProvider getBaseRoleTests
    45. 

  45.      */
    46. 

  46.     public function testGetBaseRole($expected, $code)
    47. 

  47.     {
    48. 

  48.         $handler = new RoleSecurityHandler($this->securityContext, array('ROLE_BATMAN', 'ROLE_IRONMAN'));
    49. 

  49. 

  50.         $this->admin->expects($this->once())
    51. 

  51.             ->method('getCode')
    52. 

  52.             ->will($this->returnValue($code));
    53. 

  53. 

  54.         $this->assertEquals($expected, $handler->getBaseRole($this->admin));
    55. 

  55.     }
    56. 

  56. 

  57.     public function getBaseRoleTests()
    58. 

  58.     {
    59. 

  59.         return array(
    60. 

  60.             array('ROLE_FOO_BAR_%s', 'foo.bar'),
    61. 

  61.             array('ROLE_FOO_BAR_%s', 'Foo.Bar'),
    62. 

  62.             array('ROLE_FOO_BAR_BAZ_%s', 'foo.bar_baz'),
    63. 

  63.             array('ROLE_FOO_BAR_%s', 'FOO.BAR'),
    64. 

  64.         );
    65. 

  65.     }
    66. 

  66. 

  67.     /**
    68. 

  68.      * @dataProvider getIsGrantedTests
    69. 

  69.      */
    70. 

  70.     public function testIsGranted($expected, array $superAdminRoles, $adminCode, $operation, $object = null)
    71. 

  71.     {
    72. 

  72.         $handler = $this->getRoleSecurityHandler($superAdminRoles);
    73. 

  73. 

  74.         $this->admin->expects($this->any())
    75. 

  75.             ->method('getCode')
    76. 

  76.             ->will($this->returnValue($adminCode));
    77. 

  77. 

  78.         $this->securityContext->expects($this->any())
    79. 

  79.             ->method('isGranted')
    80. 

  80.             ->will($this->returnCallback(function (array $attributes, $object) {
    81. 

  81. 

  82.                 if (in_array('ROLE_BATMAN', $attributes)) {
    83. 

  83.                     return true;
    84. 

  84.                 }
    85. 

  85. 

  86.                 if (in_array('ROLE_IRONMAN', $attributes)) {
    87. 

  87.                     return true;
    88. 

  88.                 }
    89. 

  89. 

  90.                 if (in_array('ROLE_AUTH_EXCEPTION', $attributes)) {
    91. 

  91.                     throw new AuthenticationCredentialsNotFoundException();
    92. 

  92.                 }
    93. 

  93. 

  94.                 if (in_array('ROLE_FOO_BAR_ABC', $attributes)) {
    95. 

  95.                     return true;
    96. 

  96.                 }
    97. 

  97. 

  98.                 if (in_array('ROLE_FOO_BAR_DEF', $attributes) && is_a($object, 'stdClass')) {
    99. 

  99.                     return true;
    100. 

  100.                 }
    101. 

  101. 

  102.                 return false;
    103. 

  103.             }));
    104. 

  104. 

  105.         $this->assertEquals($expected, $handler->isGranted($this->admin, $operation, $object));
    106. 

  106.     }
    107. 

  107. 

  108.     public function getIsGrantedTests()
    109. 

  109.     {
    110. 

  110.         return array(
    111. 

  111.             //empty
    112. 

  112.             array(false, array(''), 'foo.bar', ''),
    113. 

  113.             array(false, array(''), 'foo.bar', array('')),
    114. 

  114.             array(false, array(''), 'foo.bar.abc', array('')),
    115. 

  115.             array(false, array(''), 'foo.bar.def', array('')),
    116. 

  116.             array(false, array(''), 'foo.bar.baz.xyz', ''),
    117. 

  117.             array(false, array(''), 'foo.bar.baz.xyz', array('')),
    118. 

  118. 

  119.             //superadmins
    120. 

  120.             array(true, array('ROLE_BATMAN', 'ROLE_IRONMAN'), 'foo.bar', 'BAZ'),
    121. 

  121.             array(true, array('ROLE_BATMAN', 'ROLE_IRONMAN'), 'foo.bar', 'ANYTHING'),
    122. 

  122.             array(true, array('ROLE_BATMAN', 'ROLE_IRONMAN'), 'foo.bar', array('BAZ', 'ANYTHING')),
    123. 

  123.             array(true, array('ROLE_IRONMAN'), 'foo.bar', 'BAZ'),
    124. 

  124.             array(true, array('ROLE_IRONMAN'), 'foo.bar', 'ANYTHING'),
    125. 

  125.             array(true, array('ROLE_IRONMAN'), 'foo.bar.baz.xyz', 'ANYTHING'),
    126. 

  126.             array(true, array('ROLE_IRONMAN'), 'foo.bar', ''),
    127. 

  127.             array(true, array('ROLE_IRONMAN'), 'foo.bar', array('')),
    128. 

  128. 

  129.             //operations
    130. 

  130.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', 'ABC'),
    131. 

  131.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('ABC')),
    132. 

  132.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('ABC', 'DEF')),
    133. 

  133.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('BAZ', 'ABC')),
    134. 

  134.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar', 'DEF'),
    135. 

  135.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar', array('DEF')),
    136. 

  136.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar', 'BAZ'),
    137. 

  137.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar', array('BAZ')),
    138. 

  138.             array(true, array(), 'foo.bar', 'ABC'),
    139. 

  139.             array(true, array(), 'foo.bar', array('ABC')),
    140. 

  140.             array(false, array(), 'foo.bar', 'DEF'),
    141. 

  141.             array(false, array(), 'foo.bar', array('DEF')),
    142. 

  142.             array(false, array(), 'foo.bar', 'BAZ'),
    143. 

  143.             array(false, array(), 'foo.bar', array('BAZ')),
    144. 

  144.             array(false, array(), 'foo.bar.baz.xyz', 'ABC'),
    145. 

  145.             array(false, array(), 'foo.bar.baz.xyz', array('ABC')),
    146. 

  146.             array(false, array(), 'foo.bar.baz.xyz', array('ABC', 'DEF')),
    147. 

  147.             array(false, array(), 'foo.bar.baz.xyz', 'DEF'),
    148. 

  148.             array(false, array(), 'foo.bar.baz.xyz', array('DEF')),
    149. 

  149.             array(false, array(), 'foo.bar.baz.xyz', 'BAZ'),
    150. 

  150.             array(false, array(), 'foo.bar.baz.xyz', array('BAZ')),
    151. 

  151. 

  152.             //objects
    153. 

  153.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('DEF'), new \stdClass()),
    154. 

  154.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('ABC'), new \stdClass()),
    155. 

  155.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('ABC', 'DEF'), new \stdClass()),
    156. 

  156.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', array('BAZ', 'DEF'), new \stdClass()),
    157. 

  157.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', 'DEF', new \stdClass()),
    158. 

  158.             array(true, array('ROLE_SPIDERMAN'), 'foo.bar', 'ABC', new \stdClass()),
    159. 

  159.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar', 'BAZ', new \stdClass()),
    160. 

  160.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar.baz.xyz', 'DEF', new \stdClass()),
    161. 

  161.             array(false, array('ROLE_SPIDERMAN'), 'foo.bar.baz.xyz', 'ABC', new \stdClass()),
    162. 

  162.             array(true, array(), 'foo.bar', array('ABC'), new \stdClass()),
    163. 

  163.             array(true, array(), 'foo.bar', 'ABC', new \stdClass()),
    164. 

  164.             array(true, array(), 'foo.bar', array('DEF'), new \stdClass()),
    165. 

  165.             array(true, array(), 'foo.bar', 'DEF', new \stdClass()),
    166. 

  166.             array(false, array(), 'foo.bar', array('BAZ'), new \stdClass()),
    167. 

  167.             array(false, array(), 'foo.bar', 'BAZ', new \stdClass()),
    168. 

  168.             array(false, array(), 'foo.bar.baz.xyz', 'BAZ', new \stdClass()),
    169. 

  169.             array(false, array(), 'foo.bar.baz.xyz', array('BAZ'), new \stdClass()),
    170. 

  170.             array(false, array('ROLE_AUTH_EXCEPTION'), 'foo.bar.baz.xyz', array('BAZ'), new \stdClass()),
    171. 

  171.         );
    172. 

  172.     }
    173. 

  173. 

  174.     public function testIsGrantedWithException()
    175. 

  175.     {
    176. 

  176.         $this->setExpectedException('RuntimeException', 'Something is wrong');
    177. 

  177. 

  178.         $this->admin->expects($this->any())
    179. 

  179.             ->method('getCode')
    180. 

  180.             ->will($this->returnValue('foo.bar'));
    181. 

  181. 

  182.         $this->securityContext->expects($this->any())
    183. 

  183.             ->method('isGranted')
    184. 

  184.             ->will($this->returnCallback(function (array $attributes, $object) {
    185. 

  185.                 throw new \RuntimeException('Something is wrong');
    186. 

  186.             }));
    187. 

  187. 

  188.         $handler = $this->getRoleSecurityHandler(array('ROLE_BATMAN'));
    189. 

  189.         $handler->isGranted($this->admin, 'BAZ');
    190. 

  190.     }
    191. 

  191. 

  192.     public function testCreateObjectSecurity()
    193. 

  193.     {
    194. 

  194.         $handler = $this->getRoleSecurityHandler(array('ROLE_FOO'));
    195. 

  195.         $this->assertNull($handler->createObjectSecurity($this->getSonataAdminObject(), new \stdClass()));
    196. 

  196.     }
    197. 

  197. 

  198.     public function testDeleteObjectSecurity()
    199. 

  199.     {
    200. 

  200.         $handler = $this->getRoleSecurityHandler(array('ROLE_FOO'));
    201. 

  201.         $this->assertNull($handler->deleteObjectSecurity($this->getSonataAdminObject(), new \stdClass()));
    202. 

  202.     }
    203. 

  203. 

  204.     public function testBuildSecurityInformation()
    205. 

  205.     {
    206. 

  206.         $handler = $this->getRoleSecurityHandler(array('ROLE_FOO'));
    207. 

  207.         $this->assertEquals(array(), $handler->buildSecurityInformation($this->getSonataAdminObject()));
    208. 

  208.     }
    209. 

  209. 

  210.     /**
    211. 

  211.      * @return RoleSecurityHandler
    212. 

  212.      */
    213. 

  213.     private function getRoleSecurityHandler(array $superAdminRoles)
    214. 

  214.     {
    215. 

  215.         return new RoleSecurityHandler($this->securityContext, $superAdminRoles);
    216. 

  216.     }
    217. 

  217. 

  218.     /**
    219. 

  219.      * @return AdminInterface
    220. 

  220.      */
    221. 

  221.     private function getSonataAdminObject()
    222. 

  222.     {
    223. 

  223.         return $this->getMock('Sonata\AdminBundle\Admin\AdminInterface');
    224. 

  224.     }
    225. 

  225. }
    226.