View source
<?php
namespace Drupal\Tests\jsonapi\Kernel\Controller;
use Drupal\Core\Field\FieldStorageDefinitionInterface;
use Drupal\jsonapi\Controller\TemporaryJsonapiFileFieldUploader;
use Drupal\node\Entity\Node;
use Drupal\node\Entity\NodeType;
use Drupal\Tests\jsonapi\Kernel\JsonapiKernelTestBase;
use Drupal\user\Entity\Role;
use Drupal\user\Entity\User;
class TemporaryJsonapiFileFieldUploaderTest extends JsonapiKernelTestBase {
protected static $modules = [
'node',
'field',
'jsonapi',
'serialization',
'system',
'user',
];
protected function setUp() : void {
parent::setUp();
$this
->installEntitySchema('node');
$this
->installEntitySchema('user');
$this
->installSchema('system', [
'sequences',
]);
$this
->installSchema('node', [
'node_access',
]);
$this
->installSchema('user', [
'users_data',
]);
NodeType::create([
'type' => 'lorem',
])
->save();
$type = NodeType::create([
'type' => 'article',
]);
$type
->save();
$type = NodeType::create([
'type' => 'page',
]);
$type
->save();
$this
->createEntityReferenceField('node', 'article', 'field_relationships', 'Relationship', 'node', 'default', [
'target_bundles' => [
'article',
],
], FieldStorageDefinitionInterface::CARDINALITY_UNLIMITED);
Role::create([
'id' => 'article editor',
'label' => 'article editor',
'permissions' => [
'access content',
'create article content',
'edit any article content',
],
])
->save();
Role::create([
'id' => 'page editor',
'label' => 'page editor',
'permissions' => [
'access content',
'create page content',
'edit any page content',
],
])
->save();
Role::create([
'id' => 'editor',
'label' => 'editor',
'permissions' => [
'bypass node access',
],
])
->save();
}
public function testCheckFileUploadAccessWithBaseField() {
$article_editor = User::create([
'name' => 'article editor',
'mail' => 'article@localhost',
'status' => 1,
'uid' => 2,
'roles' => [
'article editor',
],
]);
$page_editor = User::create([
'name' => 'page editor',
'mail' => 'page@localhost',
'status' => 1,
'uid' => 3,
'roles' => [
'page editor',
],
]);
$editor = User::create([
'name' => 'editor',
'mail' => 'editor@localhost',
'status' => 1,
'uid' => 3,
'roles' => [
'editor',
],
]);
$no_access_user = User::create([
'name' => 'no access',
'mail' => 'user@localhost',
'status' => 1,
'uid' => 4,
]);
$node = Node::create([
'title' => 'dummy_title',
'type' => 'article',
'uid' => 1,
]);
$base_field_definition = $this->container
->get('entity_field.manager')
->getBaseFieldDefinitions('node')['title'];
$bundle_field_definition = $this->container
->get('entity_field.manager')
->getFieldDefinitions('node', 'article')['field_relationships'];
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($article_editor, $base_field_definition, $node);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($article_editor, $base_field_definition);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($article_editor, $bundle_field_definition, $node);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($article_editor, $bundle_field_definition);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($editor, $base_field_definition, $node);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($editor, $base_field_definition);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($editor, $bundle_field_definition, $node);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($editor, $bundle_field_definition);
$this
->assertTrue($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($page_editor, $base_field_definition, $node);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($page_editor, $base_field_definition);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($page_editor, $bundle_field_definition, $node);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($page_editor, $bundle_field_definition);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($no_access_user, $base_field_definition, $node);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($no_access_user, $base_field_definition);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($no_access_user, $bundle_field_definition, $node);
$this
->assertFalse($result
->isAllowed());
$result = TemporaryJsonapiFileFieldUploader::checkFileUploadAccess($no_access_user, $bundle_field_definition);
$this
->assertFalse($result
->isAllowed());
}
}