2019-01-01 20:38:13 +01:00
|
|
|
<?php
|
|
|
|
|
2019-05-30 16:57:55 +02:00
|
|
|
namespace Tests\Unit\Domain\Secure;
|
2019-01-01 20:38:13 +01:00
|
|
|
|
2019-02-17 14:33:19 +01:00
|
|
|
use Infinito\Attribut\SourceAttribut;
|
|
|
|
use Infinito\Attribut\SourceAttributInterface;
|
2020-04-02 21:13:35 +02:00
|
|
|
use Infinito\DBAL\Types\Meta\Right\CRUDType;
|
|
|
|
use Infinito\DBAL\Types\Meta\Right\LayerType;
|
|
|
|
use Infinito\Domain\Secure\SecureSourceChecker;
|
|
|
|
use Infinito\Domain\Secure\SecureSourceCheckerInterface;
|
|
|
|
use Infinito\Entity\Meta\Right;
|
|
|
|
use Infinito\Entity\Source\AbstractSource;
|
|
|
|
use Infinito\Entity\Source\SourceInterface;
|
2019-04-15 01:37:17 +02:00
|
|
|
use Infinito\Exception\Permission\NoSourcePermissionException;
|
2020-04-02 21:13:35 +02:00
|
|
|
use PHPUnit\Framework\TestCase;
|
2019-01-01 20:38:13 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @author kevinfrantz
|
|
|
|
*/
|
|
|
|
class SecureSourceCheckerTest extends TestCase
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* @var SourceInterface|SourceAttributInterface
|
|
|
|
*/
|
|
|
|
private $source;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var SourceInterface
|
|
|
|
*/
|
|
|
|
private $recieverSource;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var SecureSourceCheckerInterface
|
|
|
|
*/
|
|
|
|
private $securerSourceChecker;
|
|
|
|
|
|
|
|
private function createSourceMock(): SourceInterface
|
|
|
|
{
|
|
|
|
return new class() extends AbstractSource implements SourceAttributInterface {
|
|
|
|
use SourceAttribut;
|
|
|
|
};
|
|
|
|
}
|
|
|
|
|
|
|
|
public function setUp(): void
|
|
|
|
{
|
|
|
|
$this->source = $this->createSourceMock();
|
|
|
|
$this->recieverSource = $this->createSourceMock();
|
|
|
|
$this->securerSourceChecker = new SecureSourceChecker($this->source);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testFirstLevel(): void
|
|
|
|
{
|
|
|
|
$right = new Right();
|
|
|
|
$right->setLayer(LayerType::SOURCE);
|
2019-02-21 18:46:57 +01:00
|
|
|
$right->setActionType(CRUDType::UPDATE);
|
2019-01-01 20:38:13 +01:00
|
|
|
$right->setReciever($this->recieverSource);
|
|
|
|
$right->setSource($this->source);
|
|
|
|
$this->source->getLaw()->getRights()->add($right);
|
|
|
|
$requestedRight = clone $right;
|
|
|
|
$this->assertTrue($this->securerSourceChecker->hasPermission($requestedRight));
|
2019-02-21 18:46:57 +01:00
|
|
|
$requestedRight->setActionType(CRUDType::READ);
|
2019-01-01 20:38:13 +01:00
|
|
|
$this->assertFalse($this->securerSourceChecker->hasPermission($requestedRight));
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testSecondLevel(): void
|
|
|
|
{
|
|
|
|
$right = new Right();
|
|
|
|
$right->setLayer(LayerType::SOURCE);
|
2019-02-21 18:46:57 +01:00
|
|
|
$right->setActionType(CRUDType::UPDATE);
|
2019-01-01 20:38:13 +01:00
|
|
|
$right->setReciever($this->recieverSource);
|
|
|
|
$right->setSource($this->source);
|
|
|
|
$this->source->getLaw()->getRights()->add($right);
|
|
|
|
$attributSource = $this->createSourceMock();
|
|
|
|
$childRight = clone $right;
|
|
|
|
$attributSource->getLaw()->getRights()->add($childRight);
|
|
|
|
$this->source->setSource($attributSource);
|
|
|
|
$requestedRight = clone $right;
|
|
|
|
$this->assertTrue($this->securerSourceChecker->hasPermission($requestedRight));
|
2019-02-21 18:46:57 +01:00
|
|
|
$childRight->setActionType(CRUDType::READ);
|
2019-04-15 01:37:17 +02:00
|
|
|
$this->expectException(NoSourcePermissionException::class);
|
2019-01-01 20:38:13 +01:00
|
|
|
$this->securerSourceChecker->hasPermission($requestedRight);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testThirdLevel(): void
|
|
|
|
{
|
|
|
|
$right = new Right();
|
|
|
|
$right->setLayer(LayerType::SOURCE);
|
2019-02-21 18:46:57 +01:00
|
|
|
$right->setActionType(CRUDType::UPDATE);
|
2019-01-01 20:38:13 +01:00
|
|
|
$right->setReciever($this->recieverSource);
|
|
|
|
$right->setSource($this->source);
|
|
|
|
$this->source->getLaw()->getRights()->add($right);
|
|
|
|
$attribut1Source = $this->createSourceMock();
|
|
|
|
$attribut1Source->getLaw()->getRights()->add($right);
|
|
|
|
$this->source->setSource($attribut1Source);
|
|
|
|
$childRight = clone $right;
|
|
|
|
$attribut2Source = $this->createSourceMock();
|
|
|
|
$attribut2Source->getLaw()->getRights()->add($childRight);
|
|
|
|
$attribut1Source->setSource($attribut2Source);
|
|
|
|
$requestedRight = clone $right;
|
|
|
|
$this->assertTrue($this->securerSourceChecker->hasPermission($requestedRight));
|
2019-02-21 18:46:57 +01:00
|
|
|
$childRight->setActionType(CRUDType::READ);
|
2019-04-15 01:37:17 +02:00
|
|
|
$this->expectException(NoSourcePermissionException::class);
|
2019-01-01 20:38:13 +01:00
|
|
|
$this->securerSourceChecker->hasPermission($requestedRight);
|
|
|
|
}
|
2019-02-16 16:26:14 +01:00
|
|
|
|
|
|
|
public function testRightAppliesToAll(): void
|
|
|
|
{
|
|
|
|
$right = new Right();
|
|
|
|
$right->setLayer(LayerType::SOURCE);
|
2019-02-21 18:46:57 +01:00
|
|
|
$right->setActionType(CRUDType::READ);
|
2019-02-16 16:26:14 +01:00
|
|
|
$right->setReciever($this->recieverSource);
|
|
|
|
$right->setSource($this->source);
|
|
|
|
$this->assertFalse($this->securerSourceChecker->hasPermission($right));
|
|
|
|
$requestedRight = new Right();
|
|
|
|
$requestedRight->setLayer(LayerType::SOURCE);
|
2019-02-21 18:46:57 +01:00
|
|
|
$requestedRight->setActionType(CRUDType::READ);
|
2019-02-16 16:26:14 +01:00
|
|
|
$requestedRight->setSource($this->source);
|
|
|
|
$this->source->getLaw()->getRights()->add($requestedRight);
|
|
|
|
$this->assertTrue($this->securerSourceChecker->hasPermission($right));
|
|
|
|
$requestedRight->setReciever($this->createSourceMock());
|
|
|
|
$this->assertFalse($this->securerSourceChecker->hasPermission($right));
|
|
|
|
}
|
2019-01-01 20:38:13 +01:00
|
|
|
}
|