class EntityAccessControlHandlerTest in Entity API 8
@coversDefaultClass \Drupal\entity\EntityAccessControlHandler @group entity
Hierarchy
- class \Drupal\Tests\UnitTestCase extends \PHPUnit\Framework\TestCase uses PhpunitCompatibilityTrait
- class \Drupal\Tests\entity\Unit\EntityAccessControlHandlerTest
Expanded class hierarchy of EntityAccessControlHandlerTest
File
- tests/
src/ Unit/ EntityAccessControlHandlerTest.php, line 27
Namespace
Drupal\Tests\entity\UnitView source
class EntityAccessControlHandlerTest extends UnitTestCase {
/**
* {@inheritdoc}
*/
protected function setUp() {
parent::setUp();
$module_handler = $this
->prophesize(ModuleHandlerInterface::class);
$module_handler
->invokeAll(Argument::any(), Argument::any())
->willReturn([]);
$cache_contexts_manager = $this
->prophesize(CacheContextsManager::class);
$cache_contexts_manager
->assertValidTokens(Argument::any())
->willReturn(TRUE);
$container = new ContainerBuilder();
$container
->set('module_handler', $module_handler
->reveal());
$container
->set('cache_contexts_manager', $cache_contexts_manager
->reveal());
\Drupal::setContainer($container);
}
/**
* @covers ::checkAccess
* @covers ::checkEntityPermissions
* @covers ::checkEntityOwnerPermissions
* @covers ::checkCreateAccess
*
* @dataProvider accessProvider
*/
public function testAccess(EntityInterface $entity, $operation, $account, $allowed, $cache_contexts) {
$handler = new EntityAccessControlHandler($entity
->getEntityType());
$handler
->setStringTranslation($this
->getStringTranslationStub());
$result = $handler
->access($entity, $operation, $account, TRUE);
$this
->assertEquals($allowed, $result
->isAllowed());
$this
->assertEquals($cache_contexts, $result
->getCacheContexts());
}
/**
* @covers ::checkCreateAccess
*
* @dataProvider createAccessProvider
*/
public function testCreateAccess(EntityTypeInterface $entity_type, $bundle, $account, $allowed, $cache_contexts) {
$handler = new EntityAccessControlHandler($entity_type);
$handler
->setStringTranslation($this
->getStringTranslationStub());
$result = $handler
->createAccess($bundle, $account, [], TRUE);
$this
->assertEquals($allowed, $result
->isAllowed());
$this
->assertEquals($cache_contexts, $result
->getCacheContexts());
}
/**
* Data provider for testAccess().
*
* @return array
* A list of testAccess method arguments.
*/
public function accessProvider() {
$entity_type = $this
->prophesize(ContentEntityTypeInterface::class);
$entity_type
->id()
->willReturn('green_entity');
$entity_type
->getAdminPermission()
->willReturn('administer green_entity');
$entity_type
->hasHandlerClass('permission_provider')
->willReturn(TRUE);
$entity_type
->getHandlerClass('permission_provider')
->willReturn(EntityPermissionProvider::class);
$entity = $this
->buildMockEntity($entity_type
->reveal(), 6);
$data = [];
// Admin permission.
$admin_user = $this
->buildMockUser(5, 'administer green_entity');
$data['admin user, view'] = [
$entity
->reveal(),
'view',
$admin_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['admin user, update'] = [
$entity
->reveal(),
'update',
$admin_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['admin user, duplicate'] = [
$entity
->reveal(),
'duplicate',
$admin_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['admin user, delete'] = [
$entity
->reveal(),
'delete',
$admin_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
// View, update, duplicate, delete permissions, entity without an owner.
$second_entity = $this
->buildMockEntity($entity_type
->reveal());
foreach ([
'view',
'update',
'duplicate',
'delete',
] as $operation) {
$first_user = $this
->buildMockUser(6, $operation . ' green_entity');
$second_user = $this
->buildMockUser(7, 'access content');
$data["first user, {$operation}, entity without owner"] = [
$second_entity
->reveal(),
$operation,
$first_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data["second user, {$operation}, entity without owner"] = [
$second_entity
->reveal(),
$operation,
$second_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
}
// Update, duplicate, and delete permissions.
foreach ([
'update',
'duplicate',
'delete',
] as $operation) {
// Owner, non-owner, user with "any" permission.
$first_user = $this
->buildMockUser(6, $operation . ' own green_entity');
$second_user = $this
->buildMockUser(7, $operation . ' own green_entity');
$third_user = $this
->buildMockUser(8, $operation . ' any green_entity');
$data["first user, {$operation}, entity with owner"] = [
$entity
->reveal(),
$operation,
$first_user
->reveal(),
TRUE,
[
'user',
'user.permissions',
],
];
$data["second user, {$operation}, entity with owner"] = [
$entity
->reveal(),
$operation,
$second_user
->reveal(),
FALSE,
[
'user',
'user.permissions',
],
];
$data["third user, {$operation}, entity with owner"] = [
$entity
->reveal(),
$operation,
$third_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
}
// View permissions.
$first_user = $this
->buildMockUser(9, 'view green_entity');
$second_user = $this
->buildMockUser(10, 'view first green_entity');
$third_user = $this
->buildMockUser(14, 'view own unpublished green_entity');
$fourth_user = $this
->buildMockUser(14, 'access content');
$first_entity = $this
->buildMockEntity($entity_type
->reveal(), 1, 'first');
$second_entity = $this
->buildMockEntity($entity_type
->reveal(), 1, 'second');
$third_entity = $this
->buildMockEntity($entity_type
->reveal(), 14, 'first', FALSE);
// The first user can view the two published entities.
$data['first user, view, first entity'] = [
$first_entity
->reveal(),
'view',
$first_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['first user, view, second entity'] = [
$second_entity
->reveal(),
'view',
$first_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['first user, view, third entity'] = [
$third_entity
->reveal(),
'view',
$first_user
->reveal(),
FALSE,
[
'user',
],
];
// The second user can only view published entities of bundle "first".
$data['second user, view, first entity'] = [
$first_entity
->reveal(),
'view',
$second_user
->reveal(),
TRUE,
[
'user.permissions',
],
];
$data['second user, view, second entity'] = [
$second_entity
->reveal(),
'view',
$second_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
$data['second user, view, third entity'] = [
$third_entity
->reveal(),
'view',
$second_user
->reveal(),
FALSE,
[
'user',
],
];
// The third user can view their own unpublished entity.
$data['third user, view, first entity'] = [
$first_entity
->reveal(),
'view',
$third_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
$data['third user, view, second entity'] = [
$second_entity
->reveal(),
'view',
$third_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
$data['third user, view, third entity'] = [
$third_entity
->reveal(),
'view',
$third_user
->reveal(),
TRUE,
[
'user',
'user.permissions',
],
];
// The fourth user can't view anything.
$data['fourth user, view, first entity'] = [
$first_entity
->reveal(),
'view',
$fourth_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
$data['fourth user, view, second entity'] = [
$second_entity
->reveal(),
'view',
$fourth_user
->reveal(),
FALSE,
[
'user.permissions',
],
];
$data['fourth user, view, third entity'] = [
$third_entity
->reveal(),
'view',
$fourth_user
->reveal(),
FALSE,
[
'user',
'user.permissions',
],
];
return $data;
}
/**
* Data provider for testCreateAccess().
*
* @return array
* A list of testCreateAccess method arguments.
*/
public function createAccessProvider() {
$data = [];
$entity_type = $this
->prophesize(ContentEntityTypeInterface::class);
$entity_type
->id()
->willReturn('green_entity');
$entity_type
->getAdminPermission()
->willReturn('administer green_entity');
$entity_type
->hasHandlerClass('permission_provider')
->willReturn(TRUE);
$entity_type
->getHandlerClass('permission_provider')
->willReturn(EntityPermissionProvider::class);
// User with the admin permission.
$account = $this
->buildMockUser('6', 'administer green_entity');
$data['admin user'] = [
$entity_type
->reveal(),
NULL,
$account
->reveal(),
TRUE,
[
'user.permissions',
],
];
// Ordinary user.
$account = $this
->buildMockUser('6', 'create green_entity');
$data['regular user'] = [
$entity_type
->reveal(),
NULL,
$account
->reveal(),
TRUE,
[
'user.permissions',
],
];
// Ordinary user, entity with a bundle.
$account = $this
->buildMockUser('6', 'create first_bundle green_entity');
$data['regular user, entity with bundle'] = [
$entity_type
->reveal(),
'first_bundle',
$account
->reveal(),
TRUE,
[
'user.permissions',
],
];
// User with no permissions.
$account = $this
->buildMockUser('6', 'access content');
$data['user without permission'] = [
$entity_type
->reveal(),
NULL,
$account
->reveal(),
FALSE,
[
'user.permissions',
],
];
return $data;
}
/**
* Builds a mock entity.
*
* @param \Drupal\Core\Entity\EntityTypeInterface $entity_type
* The entity type.
* @param string $owner_id
* The owner ID.
* @param string $bundle
* The bundle.
* @param bool $published
* Whether the entity is published.
*
* @return \Prophecy\Prophecy\ObjectProphecy
* The entity mock.
*/
protected function buildMockEntity(EntityTypeInterface $entity_type, $owner_id = NULL, $bundle = NULL, $published = NULL) {
$langcode = LanguageInterface::LANGCODE_NOT_SPECIFIED;
$entity = $this
->prophesize(ContentEntityInterface::class);
if (isset($published)) {
$entity
->willImplement(EntityPublishedInterface::class);
}
if ($owner_id) {
$entity
->willImplement(EntityOwnerInterface::class);
}
if (isset($published)) {
$entity
->isPublished()
->willReturn($published);
}
if ($owner_id) {
$entity
->getOwnerId()
->willReturn($owner_id);
}
$entity
->bundle()
->willReturn($bundle ?: $entity_type
->id());
$entity
->isNew()
->willReturn(FALSE);
$entity
->uuid()
->willReturn('fake uuid');
$entity
->id()
->willReturn('fake id');
$entity
->getRevisionId()
->willReturn(NULL);
$entity
->language()
->willReturn(new Language([
'id' => $langcode,
]));
$entity
->getEntityTypeId()
->willReturn($entity_type
->id());
$entity
->getEntityType()
->willReturn($entity_type);
$entity
->getCacheContexts()
->willReturn([]);
$entity
->getCacheTags()
->willReturn([]);
$entity
->getCacheMaxAge()
->willReturn(Cache::PERMANENT);
return $entity;
}
/**
* Builds a mock user.
*
* @param int $uid
* The user ID.
* @param string $permission
* The permission to grant.
*
* @return \Prophecy\Prophecy\ObjectProphecy
* The user mock.
*/
protected function buildMockUser($uid, $permission) {
$account = $this
->prophesize(AccountInterface::class);
$account
->id()
->willReturn($uid);
$account
->hasPermission($permission)
->willReturn(TRUE);
$account
->hasPermission(Argument::any())
->willReturn(FALSE);
return $account;
}
}Members
Name |
Modifiers | Type | Description | Overrides |
|---|---|---|---|---|
|
EntityAccessControlHandlerTest:: |
public | function | Data provider for testAccess(). | |
|
EntityAccessControlHandlerTest:: |
protected | function | Builds a mock entity. | |
|
EntityAccessControlHandlerTest:: |
protected | function | Builds a mock user. | |
|
EntityAccessControlHandlerTest:: |
public | function | Data provider for testCreateAccess(). | |
|
EntityAccessControlHandlerTest:: |
protected | function |
Overrides UnitTestCase:: |
|
|
EntityAccessControlHandlerTest:: |
public | function | @covers ::checkAccess @covers ::checkEntityPermissions @covers ::checkEntityOwnerPermissions @covers ::checkCreateAccess | |
|
EntityAccessControlHandlerTest:: |
public | function | @covers ::checkCreateAccess | |
|
PhpunitCompatibilityTrait:: |
public | function | Returns a mock object for the specified class using the available method. | |
|
PhpunitCompatibilityTrait:: |
public | function | Compatibility layer for PHPUnit 6 to support PHPUnit 4 code. | |
|
UnitTestCase:: |
protected | property | The random generator. | |
|
UnitTestCase:: |
protected | property | The app root. | 1 |
|
UnitTestCase:: |
protected | function | Asserts if two arrays are equal by sorting them first. | |
|
UnitTestCase:: |
protected | function | Mocks a block with a block plugin. | 1 |
|
UnitTestCase:: |
protected | function | Returns a stub class resolver. | |
|
UnitTestCase:: |
public | function | Returns a stub config factory that behaves according to the passed array. | |
|
UnitTestCase:: |
public | function | Returns a stub config storage that returns the supplied configuration. | |
|
UnitTestCase:: |
protected | function | Sets up a container with a cache tags invalidator. | |
|
UnitTestCase:: |
protected | function | Gets the random generator for the utility methods. | |
|
UnitTestCase:: |
public | function | Returns a stub translation manager that just returns the passed string. | |
|
UnitTestCase:: |
public | function | Generates a unique random string containing letters and numbers. |