View source
<?php
namespace Drupal\Tests\domain_access\Functional;
use Drupal\Core\Session\AccountInterface;
use Drupal\node\NodeInterface;
use Drupal\user\RoleInterface;
use Drupal\Tests\domain\Functional\DomainTestBase;
use Drupal\domain_access\DomainAccessManagerInterface;
class DomainAccessPermissionsTest extends DomainTestBase {
protected $accessHandler;
protected $manager;
protected $domains;
protected $userStorage;
public static $modules = [
'domain',
'domain_access',
'field',
'node',
];
protected function setUp() {
parent::setUp();
$this
->config('user.role.' . RoleInterface::AUTHENTICATED_ID)
->set('permissions', [])
->save();
if ($this->profile != 'standard') {
$this
->drupalCreateContentType([
'type' => 'page',
'name' => 'Basic page',
'display_submitted' => FALSE,
]);
$this
->drupalCreateContentType([
'type' => 'article',
'name' => 'Article',
'display_submitted' => FALSE,
]);
}
$this->accessHandler = \Drupal::entityTypeManager()
->getAccessControlHandler('node');
$this->manager = \Drupal::service('domain_access.manager');
$this->userStorage = \Drupal::entityTypeManager()
->getStorage('user');
$this
->domainCreateTestDomains(5);
$this->domains = $domains = \Drupal::entityTypeManager()
->getStorage('domain')
->loadMultiple();
}
public function testDomainAccessPermissions() {
foreach ($this->domains as $domain) {
if (!isset($one)) {
$one = $domain
->id();
continue;
}
if (!isset($two)) {
$two = $domain
->id();
}
}
$domain_user1 = $this
->drupalCreateUser([
'access content',
'edit domain content',
'delete domain content',
]);
$this
->addDomainsToEntity('user', $domain_user1
->id(), $two, DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD);
$domain_user1 = $this->userStorage
->load($domain_user1
->id());
$assigned = $this->manager
->getAccessValues($domain_user1);
$this
->assertCount(1, $assigned, 'User assigned to one domain.');
$this
->assertArrayHasKey($two, $assigned, 'User assigned to proper test domain.');
$domain_node1 = $this
->drupalCreateNode([
'type' => 'page',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$one,
],
]);
$domain_node2 = $this
->drupalCreateNode([
'type' => 'page',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$two,
],
]);
$assigned = $this->manager
->getAccessValues($domain_node1);
$this
->assertArrayHasKey($one, $assigned, 'Node1 assigned to proper test domain.');
$assigned = $this->manager
->getAccessValues($domain_node2);
$this
->assertArrayHasKey($two, $assigned, 'Node2 assigned to proper test domain.');
$this
->assertNodeAccess([
'view' => TRUE,
'update' => FALSE,
'delete' => FALSE,
], $domain_node1, $domain_user1);
$this
->assertNodeAccess([
'view' => TRUE,
'update' => TRUE,
'delete' => TRUE,
], $domain_node2, $domain_user1);
$domain_user3 = $this
->drupalCreateUser([
'access content',
'update page content on assigned domains',
'delete page content on assigned domains',
]);
$this
->addDomainsToEntity('user', $domain_user3
->id(), $two, DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD);
$domain_user3 = $this->userStorage
->load($domain_user3
->id());
$assigned = $this->manager
->getAccessValues($domain_user3);
$this
->assertCount(1, $assigned, 'User assigned to one domain.');
$this
->assertArrayHasKey($two, $assigned, 'User assigned to proper test domain.');
$domain_node3 = $this
->drupalCreateNode([
'type' => 'article',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$two,
],
]);
$domain_node4 = $this
->drupalCreateNode([
'type' => 'page',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$two,
],
]);
$assigned = $this->manager
->getAccessValues($domain_node3);
$this
->assertArrayHasKey($two, $assigned, 'Node3 assigned to proper test domain.');
$assigned = $this->manager
->getAccessValues($domain_node4);
$this
->assertArrayHasKey($two, $assigned, 'Node4 assigned to proper test domain.');
$this
->assertNodeAccess([
'view' => TRUE,
'update' => FALSE,
'delete' => FALSE,
], $domain_node3, $domain_user3);
$this
->assertNodeAccess([
'view' => TRUE,
'update' => TRUE,
'delete' => TRUE,
], $domain_node4, $domain_user3);
$domain_user4 = $this
->drupalCreateUser([
'access content',
'update page content on assigned domains',
'delete page content on assigned domains',
]);
$this
->addDomainsToEntity('user', $domain_user4
->id(), $two, DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD);
$this
->addDomainsToEntity('user', $domain_user4
->id(), 1, DomainAccessManagerInterface::DOMAIN_ACCESS_ALL_FIELD);
$domain_user4 = $this->userStorage
->load($domain_user4
->id());
$assigned = $this->manager
->getAccessValues($domain_user4);
$this
->assertCount(1, $assigned, 'User assigned to one domain.');
$this
->assertArrayHasKey($two, $assigned, 'User assigned to proper test domain.');
$this
->assertNotEmpty($domain_user4
->get(DomainAccessManagerInterface::DOMAIN_ACCESS_ALL_FIELD)->value, 'User assign to all affiliates.');
$domain_node5 = $this
->drupalCreateNode([
'type' => 'article',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$one,
],
]);
$domain_node6 = $this
->drupalCreateNode([
'type' => 'page',
DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD => [
$one,
],
]);
$assigned = $this->manager
->getAccessValues($domain_node5);
$this
->assertArrayHasKey($one, $assigned, 'Node5 assigned to proper test domain.');
$assigned = $this->manager
->getAccessValues($domain_node6);
$this
->assertArrayHasKey($one, $assigned, 'Node6 assigned to proper test domain.');
$this
->assertNodeAccess([
'view' => TRUE,
'update' => FALSE,
'delete' => FALSE,
], $domain_node5, $domain_user4);
$this
->assertNodeAccess([
'view' => TRUE,
'update' => TRUE,
'delete' => TRUE,
], $domain_node6, $domain_user4);
}
public function testDomainAccessCreatePermissions() {
foreach ($this->domains as $domain) {
if (!isset($one)) {
$one = $domain
->id();
continue;
}
if (!isset($two)) {
$two = $domain
->id();
}
}
$domain_account5 = $this
->drupalCreateUser([
'access content',
'create domain content',
]);
$this
->addDomainsToEntity('user', $domain_account5
->id(), $two, DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD);
$domain_user5 = $this->userStorage
->load($domain_account5
->id());
$assigned = $this->manager
->getAccessValues($domain_user5);
$this
->assertCount(1, $assigned, 'User assigned to one domain.');
$this
->assertArrayHasKey($two, $assigned, 'User assigned to proper test domain.');
foreach ($this->domains as $domain) {
$this
->domainLogin($domain, $domain_account5);
$url = $domain
->getPath() . 'node/add/page';
$this
->drupalGet($url);
if ($domain
->id() == $two) {
$this
->assertResponse(200);
}
else {
$this
->assertResponse(403);
}
$url = $domain
->getPath() . 'node/add/article';
$this
->drupalGet($url);
if ($domain
->id() == $two) {
$this
->assertResponse(200);
}
else {
$this
->assertResponse(403);
}
}
}
public function testDomainAccessLimitedCreatePermissions() {
foreach ($this->domains as $domain) {
if (!isset($one)) {
$one = $domain
->id();
continue;
}
if (!isset($two)) {
$two = $domain
->id();
}
}
$domain_account6 = $this
->drupalCreateUser([
'access content',
'create page content on assigned domains',
]);
$this
->addDomainsToEntity('user', $domain_account6
->id(), $two, DomainAccessManagerInterface::DOMAIN_ACCESS_FIELD);
$domain_user6 = $this->userStorage
->load($domain_account6
->id());
$assigned = $this->manager
->getAccessValues($domain_user6);
$this
->assertCount(1, $assigned, 'User assigned to one domain.');
$this
->assertArrayHasKey($two, $assigned, 'User assigned to proper test domain.');
foreach ($this->domains as $domain) {
$this
->domainLogin($domain, $domain_account6);
$url = $domain
->getPath() . 'node/add/page';
$this
->drupalGet($url);
if ($domain
->id() == $two) {
$this
->assertResponse(200);
}
else {
$this
->assertResponse(403);
}
$url = $domain
->getPath() . 'node/add/article';
$this
->drupalGet($url);
$this
->assertResponse(403);
}
}
public function assertNodeAccess(array $ops, NodeInterface $node, AccountInterface $account) {
foreach ($ops as $op => $result) {
$this
->assertEqual($result, $this->accessHandler
->access($node, $op, $account), 'Expected result returned.');
}
}
}