class NodeOperationAccessTest in Drupal 10
Tests node operations.
@coversDefaultClass \Drupal\node\NodeAccessControlHandler @group node
Hierarchy
- class \Drupal\Tests\UnitTestCase extends \PHPUnit\Framework\TestCase uses \Drupal\Tests\PhpUnitCompatibilityTrait, \Symfony\Bridge\PhpUnit\ExpectDeprecationTrait, PhpUnitWarnings
- class \Drupal\Tests\node\Unit\NodeOperationAccessTest
Expanded class hierarchy of NodeOperationAccessTest
File
- core/
modules/ node/ tests/ src/ Unit/ NodeOperationAccessTest.php, line 26
Namespace
Drupal\Tests\node\UnitView source
class NodeOperationAccessTest extends UnitTestCase {
/**
* {@inheritdoc}
*/
protected function setUp() : void {
parent::setUp();
// Cache utility calls container directly.
$cacheContextsManager = $this
->getMockBuilder(CacheContextsManager::class)
->disableOriginalConstructor()
->getMock();
$cacheContextsManager
->method('assertValidTokens')
->willReturn(TRUE);
$container = new ContainerBuilder();
$container
->set('cache_contexts_manager', $cacheContextsManager);
\Drupal::setContainer($container);
}
/**
* Tests revision operations.
*
* @param string $operation
* A revision operation.
* @param array $hasPermissionMap
* A map of permissions, to whether they should be granted.
* @param bool|null $assertAccess
* Whether the access is allowed or denied.
* @param bool|null $isDefaultRevision
* Whether the node should be default revision, or NULL if not to expect it
* to be called.
*
* @dataProvider providerTestRevisionOperations
*/
public function testRevisionOperations($operation, array $hasPermissionMap, $assertAccess, $isDefaultRevision = NULL) {
$account = $this
->createMock(AccountInterface::class);
$account
->method('hasPermission')
->willReturnMap($hasPermissionMap);
$entityType = $this
->createMock(EntityTypeInterface::class);
$grants = $this
->createMock(NodeGrantDatabaseStorageInterface::class);
$grants
->expects($this
->any())
->method('access')
->willReturn(AccessResult::neutral());
$language = $this
->createMock(LanguageInterface::class);
$language
->expects($this
->any())
->method('getId')
->will($this
->returnValue('de'));
$nid = 333;
/** @var \Drupal\node\NodeInterface|\PHPUnit\Framework\MockObject\MockObject $node */
$node = $this
->createMock(NodeInterface::class);
$node
->expects($this
->any())
->method('language')
->willReturn($language);
$node
->expects($this
->any())
->method('id')
->willReturn($nid);
$node
->expects($this
->any())
->method('getCacheContexts')
->willReturn([]);
$node
->expects($this
->any())
->method('getCacheTags')
->willReturn([]);
$node
->expects($this
->any())
->method('getCacheMaxAge')
->willReturn(-1);
$node
->expects($this
->any())
->method('getEntityTypeId')
->willReturn('node');
if (isset($isDefaultRevision)) {
$node
->expects($this
->atLeastOnce())
->method('isDefaultRevision')
->willReturn($isDefaultRevision);
}
$nodeStorage = $this
->createMock(NodeStorageInterface::class);
$nodeStorage
->expects($this
->any())
->method('load')
->with($nid)
->willReturn($node);
$entityTypeManager = $this
->createMock(EntityTypeManagerInterface::class);
$entityTypeManager
->expects($this
->any())
->method('getStorage')
->with('node')
->willReturn($nodeStorage);
$moduleHandler = $this
->createMock(ModuleHandlerInterface::class);
$moduleHandler
->expects($this
->any())
->method('invokeAll')
->willReturn([]);
$accessControl = new NodeAccessControlHandler($entityType, $grants, $entityTypeManager);
$accessControl
->setModuleHandler($moduleHandler);
$nodeType = $this
->createMock(RevisionableEntityBundleInterface::class);
$typeProperty = new \stdClass();
$typeProperty->entity = $nodeType;
$node->type = $typeProperty;
$access = $accessControl
->access($node, $operation, $account, FALSE);
$this
->assertEquals($assertAccess, $access);
}
/**
* Data provider for revisionOperationsProvider.
*
* @return array
* Data for testing.
*/
public function providerTestRevisionOperations() {
$data = [];
// Tests 'bypass node access' never works on revision operations.
$data['bypass, view all revisions'] = [
'view all revisions',
[
[
'access content',
TRUE,
],
[
'bypass node access',
TRUE,
],
],
FALSE,
];
$data['bypass, view revision'] = [
'view revision',
[
[
'access content',
TRUE,
],
[
'bypass node access',
TRUE,
],
],
FALSE,
];
$data['bypass, revert'] = [
'revert revision',
[
[
'access content',
TRUE,
],
[
'bypass node access',
TRUE,
],
],
FALSE,
];
$data['bypass, delete revision'] = [
'delete revision',
[
[
'access content',
TRUE,
],
[
'bypass node access',
TRUE,
],
],
FALSE,
];
$data['view all revisions'] = [
'view all revisions',
[
[
'access content',
TRUE,
],
[
'view all revisions',
TRUE,
],
],
TRUE,
];
$data['view all revisions with view access'] = [
'view all revisions',
[
[
'access content',
TRUE,
],
[
'view all revisions',
TRUE,
],
// Bypass for 'view' operation.
[
'bypass node access',
TRUE,
],
],
TRUE,
];
$data['view revision, without view access'] = [
'view revision',
[
[
'access content',
TRUE,
],
[
'view all revisions',
TRUE,
],
],
FALSE,
];
$data['view revision, with view access'] = [
'view revision',
[
[
'access content',
TRUE,
],
[
'view all revisions',
TRUE,
],
// Bypass for 'view' operation.
[
'bypass node access',
TRUE,
],
],
TRUE,
];
// Cannot revert if no update access.
$data['revert, without update access, non default'] = [
'revert revision',
[
[
'access content',
TRUE,
],
[
'revert all revisions',
TRUE,
],
],
FALSE,
FALSE,
];
// Can revert if has update access.
$data['revert, with update access, non default'] = [
'revert revision',
[
[
'access content',
TRUE,
],
[
'revert all revisions',
TRUE,
],
// Bypass for 'update' operation.
[
'bypass node access',
TRUE,
],
],
TRUE,
FALSE,
];
// Can never revert default revision.
$data['revert, with update access, default revision'] = [
'revert revision',
[
[
'access content',
TRUE,
],
[
'revert all revisions',
TRUE,
],
// Bypass for 'update' operation.
[
'bypass node access',
TRUE,
],
],
FALSE,
TRUE,
];
// Cannot delete non default revision if no delete access.
$data['delete revision, without delete access, non default'] = [
'delete revision',
[
[
'access content',
TRUE,
],
[
'delete all revisions',
TRUE,
],
],
FALSE,
FALSE,
];
// Can delete non default revision if delete access.
$data['delete revision, with delete access, non default'] = [
'delete revision',
[
[
'access content',
TRUE,
],
[
'delete all revisions',
TRUE,
],
// Bypass for 'delete' operation.
[
'bypass node access',
TRUE,
],
],
TRUE,
FALSE,
];
return $data;
}
}