Почетна Преглед Помоћ
Регистрација Пријавите се
VendorSoftware
/
symfony
2
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: 0449dbdc5d
Гране Ознаке
symfony
/
tests
/
Symfony
/
Tests
/
Component
/
Security
/
Acl
/
Dbal
/
AclProviderTest.php

AclProviderTest.php 8.7 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251 
  1. <?php
    2. 

  2. 

  3. namespace Symfony\Tests\Component\Security\Acl\Dbal;
    4. 

  4. 

  5. use Symfony\Component\Security\Acl\Dbal\AclProvider;
    6. 

  6. use Symfony\Component\Security\Acl\Domain\PermissionGrantingStrategy;
    7. 

  7. use Symfony\Component\Security\Acl\Domain\ObjectIdentity;
    8. 

  8. use Symfony\Component\Security\Acl\Dbal\Schema;
    9. 

  9. use Doctrine\DBAL\DriverManager;
    10. 

  10. 

  11. class AclProviderTest extends \PHPUnit_Framework_TestCase
    12. 

  12. {
    13. 

  13.     protected $con;
    14. 

  14.     protected $insertClassStmt;
    15. 

  15.     protected $insertEntryStmt;
    16. 

  16.     protected $insertOidStmt;
    17. 

  17.     protected $insertOidAncestorStmt;
    18. 

  18.     protected $insertSidStmt;
    19. 

  19. 

  20.     /**
    21. 

  21.      * @expectedException Symfony\Component\Security\Acl\Exception\AclNotFoundException
    22. 

  22.      * @expectedMessage There is no ACL for the given object identity.
    23. 

  23.      */
    24. 

  24.     public function testFindAclThrowsExceptionWhenNoAclExists()
    25. 

  25.     {
    26. 

  26.         $this->getProvider()->findAcl(new ObjectIdentity('foo', 'foo'));
    27. 

  27.     }
    28. 

  28. 

  29.     public function testFindAclsThrowsExceptionUnlessAnACLIsFoundForEveryOID()
    30. 

  30.     {
    31. 

  31.         $oids = array();
    32. 

  32.         $oids[] = new ObjectIdentity('1', 'foo');
    33. 

  33.         $oids[] = new ObjectIdentity('foo', 'foo');
    34. 

  34. 

  35.         try {
    36. 

  36.             $this->getProvider()->findAcls($oids);
    37. 

  37. 

  38.             $this->fail('Provider did not throw an expected exception.');
    39. 

  39.         } catch (\Exception $ex) {
    40. 

  40.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\AclNotFoundException', $ex);
    41. 

  41.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\NotAllAclsFoundException', $ex);
    42. 

  42. 

  43.             $partialResult = $ex->getPartialResult();
    44. 

  44.             $this->assertTrue($partialResult->contains($oids[0]));
    45. 

  45.             $this->assertFalse($partialResult->contains($oids[1]));
    46. 

  46.         }
    47. 

  47.     }
    48. 

  48. 

  49.     public function testFindAcls()
    50. 

  50.     {
    51. 

  51.         $oids = array();
    52. 

  52.         $oids[] = new ObjectIdentity('1', 'foo');
    53. 

  53.         $oids[] = new ObjectIdentity('2', 'foo');
    54. 

  54. 

  55.         $provider = $this->getProvider();
    56. 

  56. 

  57.         $acls = $provider->findAcls($oids);
    58. 

  58.         $this->assertInstanceOf('SplObjectStorage', $acls);
    59. 

  59.         $this->assertEquals(2, count($acls));
    60. 

  60.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl0 = $acls->offsetGet($oids[0]));
    61. 

  61.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl1 = $acls->offsetGet($oids[1]));
    62. 

  62.         $this->assertTrue($oids[0]->equals($acl0->getObjectIdentity()));
    63. 

  63.         $this->assertTrue($oids[1]->equals($acl1->getObjectIdentity()));
    64. 

  64.     }
    65. 

  65. 

  66.     public function testFindAclCachesAclInMemory()
    67. 

  67.     {
    68. 

  68.         $oid = new ObjectIdentity('1', 'foo');
    69. 

  69.         $provider = $this->getProvider();
    70. 

  70. 

  71.         $acl = $provider->findAcl($oid);
    72. 

  72.         $this->assertSame($acl, $cAcl = $provider->findAcl($oid));
    73. 

  73. 

  74.         $cAces = $cAcl->getObjectAces();
    75. 

  75.         foreach ($acl->getObjectAces() as $index => $ace) {
    76. 

  76.             $this->assertSame($ace, $cAces[$index]);
    77. 

  77.         }
    78. 

  78.     }
    79. 

  79. 

  80.     public function testFindAcl()
    81. 

  81.     {
    82. 

  82.         $oid = new ObjectIdentity('1', 'foo');
    83. 

  83.         $provider = $this->getProvider();
    84. 

  84. 

  85.         $acl = $provider->findAcl($oid);
    86. 

  86. 

  87.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl);
    88. 

  88.         $this->assertTrue($oid->equals($acl->getObjectIdentity()));
    89. 

  89.         $this->assertEquals(4, $acl->getId());
    90. 

  90.         $this->assertEquals(0, count($acl->getClassAces()));
    91. 

  91.         $this->assertEquals(0, count($this->getField($acl, 'classFieldAces')));
    92. 

  92.         $this->assertEquals(3, count($acl->getObjectAces()));
    93. 

  93.         $this->assertEquals(0, count($this->getField($acl, 'objectFieldAces')));
    94. 

  94. 

  95.         $aces = $acl->getObjectAces();
    96. 

  96.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Entry', $aces[0]);
    97. 

  97.         $this->assertTrue($aces[0]->isGranting());
    98. 

  98.         $this->assertTrue($aces[0]->isAuditSuccess());
    99. 

  99.         $this->assertTrue($aces[0]->isAuditFailure());
    100. 

  100.         $this->assertEquals('all', $aces[0]->getStrategy());
    101. 

  101.         $this->assertSame(2, $aces[0]->getMask());
    102. 

  102. 

  103.         // check ACE are in correct order
    104. 

  104.         $i = 0;
    105. 

  105.         foreach ($aces as $index => $ace) {
    106. 

  106.             $this->assertEquals($i, $index);
    107. 

  107.             $i++;
    108. 

  108.         }
    109. 

  109. 

  110.         $sid = $aces[0]->getSecurityIdentity();
    111. 

  111.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\UserSecurityIdentity', $sid);
    112. 

  112.         $this->assertEquals('john.doe', $sid->getUsername());
    113. 

  113.         $this->assertEquals('SomeClass', $sid->getClass());
    114. 

  114.     }
    115. 

  115. 

  116.     protected function setUp()
    117. 

  117.     {
    118. 

  118.         $this->con = DriverManager::getConnection(array(
    119. 

  119.             'driver' => 'pdo_sqlite',
    120. 

  120.             'memory' => true,
    121. 

  121.         ));
    122. 

  122. 

  123.         // import the schema
    124. 

  124.         $schema = new Schema($options = $this->getOptions());
    125. 

  125.         foreach ($schema->toSql($this->con->getDatabasePlatform()) as $sql) {
    126. 

  126.             $this->con->exec($sql);
    127. 

  127.         }
    128. 

  128. 

  129.         // populate the schema with some test data
    130. 

  130.         $this->insertClassStmt = $this->con->prepare('INSERT INTO acl_classes (id, class_type) VALUES (?, ?)');
    131. 

  131.         foreach ($this->getClassData() as $data) {
    132. 

  132.             $this->insertClassStmt->execute($data);
    133. 

  133.         }
    134. 

  134. 

  135.         $this->insertSidStmt = $this->con->prepare('INSERT INTO acl_security_identities (id, identifier, username) VALUES (?, ?, ?)');
    136. 

  136.         foreach ($this->getSidData() as $data) {
    137. 

  137.             $this->insertSidStmt->execute($data);
    138. 

  138.         }
    139. 

  139. 

  140.         $this->insertOidStmt = $this->con->prepare('INSERT INTO acl_object_identities (id, class_id, object_identifier, parent_object_identity_id, entries_inheriting) VALUES (?, ?, ?, ?, ?)');
    141. 

  141.         foreach ($this->getOidData() as $data) {
    142. 

  142.             $this->insertOidStmt->execute($data);
    143. 

  143.         }
    144. 

  144. 

  145.         $this->insertEntryStmt = $this->con->prepare('INSERT INTO acl_entries (id, class_id, object_identity_id, field_name, ace_order, security_identity_id, mask, granting, granting_strategy, audit_success, audit_failure) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)');
    146. 

  146.         foreach ($this->getEntryData() as $data) {
    147. 

  147.             $this->insertEntryStmt->execute($data);
    148. 

  148.         }
    149. 

  149. 

  150.         $this->insertOidAncestorStmt = $this->con->prepare('INSERT INTO acl_object_identity_ancestors (object_identity_id, ancestor_id) VALUES (?, ?)');
    151. 

  151.         foreach ($this->getOidAncestorData() as $data) {
    152. 

  152.             $this->insertOidAncestorStmt->execute($data);
    153. 

  153.         }
    154. 

  154.     }
    155. 

  155. 

  156.     protected function tearDown()
    157. 

  157.     {
    158. 

  158.         $this->con = null;
    159. 

  159.     }
    160. 

  160. 

  161.     protected function getField($object, $field)
    162. 

  162.     {
    163. 

  163.         $reflection = new \ReflectionProperty($object, $field);
    164. 

  164.         $reflection->setAccessible(true);
    165. 

  165. 

  166.         return $reflection->getValue($object);
    167. 

  167.     }
    168. 

  168. 

  169.     protected function getEntryData()
    170. 

  170.     {
    171. 

  171.         // id, cid, oid, field, order, sid, mask, granting, strategy, a success, a failure
    172. 

  172.         return array(
    173. 

  173.             array(1, 1, 1, null, 0, 1, 1, 1, 'all', 1, 1),
    174. 

  174.             array(2, 1, 1, null, 1, 2, 1 << 2 | 1 << 1, 0, 'any', 0, 0),
    175. 

  175.             array(3, 3, 4, null, 0, 1, 2, 1, 'all', 1, 1),
    176. 

  176.             array(4, 3, 4, null, 2, 2, 1, 1, 'all', 1, 1),
    177. 

  177.             array(5, 3, 4, null, 1, 3, 1, 1, 'all', 1, 1),
    178. 

  178.         );
    179. 

  179.     }
    180. 

  180. 

  181.     protected function getOidData()
    182. 

  182.     {
    183. 

  183.         // id, cid, oid, parent_oid, entries_inheriting
    184. 

  184.         return array(
    185. 

  185.             array(1, 1, '123', null, 1),
    186. 

  186.             array(2, 2, '123', 1, 1),
    187. 

  187.             array(3, 2, 'i:3:123', 1, 1),
    188. 

  188.             array(4, 3, '1', 2, 1),
    189. 

  189.             array(5, 3, '2', 2, 1),
    190. 

  190.         );
    191. 

  191.     }
    192. 

  192. 

  193.     protected function getOidAncestorData()
    194. 

  194.     {
    195. 

  195.         return array(
    196. 

  196.             array(1, 1),
    197. 

  197.             array(2, 1),
    198. 

  198.             array(2, 2),
    199. 

  199.             array(3, 1),
    200. 

  200.             array(3, 3),
    201. 

  201.             array(4, 2),
    202. 

  202.             array(4, 1),
    203. 

  203.             array(4, 4),
    204. 

  204.             array(5, 2),
    205. 

  205.             array(5, 1),
    206. 

  206.             array(5, 5),
    207. 

  207.         );
    208. 

  208.     }
    209. 

  209. 

  210.     protected function getSidData()
    211. 

  211.     {
    212. 

  212.         return array(
    213. 

  213.             array(1, 'SomeClass-john.doe', 1),
    214. 

  214.             array(2, 'MyClass-john.doe@foo.com', 1),
    215. 

  215.             array(3, 'FooClass-123', 1),
    216. 

  216.             array(4, 'MooClass-ROLE_USER', 1),
    217. 

  217.             array(5, 'ROLE_USER', 0),
    218. 

  218.             array(6, 'IS_AUTHENTICATED_FULLY', 0),
    219. 

  219.         );
    220. 

  220.     }
    221. 

  221. 

  222.     protected function getClassData()
    223. 

  223.     {
    224. 

  224.         return array(
    225. 

  225.             array(1, 'Bundle\SomeVendor\MyBundle\Entity\SomeEntity'),
    226. 

  226.             array(2, 'Bundle\MyBundle\Entity\AnotherEntity'),
    227. 

  227.             array(3, 'foo'),
    228. 

  228.         );
    229. 

  229.     }
    230. 

  230. 

  231.     protected function getOptions()
    232. 

  232.     {
    233. 

  233.         return array(
    234. 

  234.             'oid_table_name' => 'acl_object_identities',
    235. 

  235.             'oid_ancestors_table_name' => 'acl_object_identity_ancestors',
    236. 

  236.             'class_table_name' => 'acl_classes',
    237. 

  237.             'sid_table_name' => 'acl_security_identities',
    238. 

  238.             'entry_table_name' => 'acl_entries',
    239. 

  239.         );
    240. 

  240.     }
    241. 

  241. 

  242.     protected function getStrategy()
    243. 

  243.     {
    244. 

  244.         return new PermissionGrantingStrategy();
    245. 

  245.     }
    246. 

  246. 

  247.     protected function getProvider()
    248. 

  248.     {
    249. 

  249.         return new AclProvider($this->con, $this->getStrategy(), $this->getOptions());
    250. 

  250.     }
    251. 

  251. }
    252.