class LdapAuthorizationOg2Tests in Lightweight Directory Access Protocol (LDAP) 7.2
Same name and namespace in other branches
- 8.2 ldap_authorization/tests/Og2Tests.test \LdapAuthorizationOg2Tests
- 7 ldap_authorization/tests/Og/Og2.test \LdapAuthorizationOg2Tests
Simpletest for Ldap Authorization OG Module, for og 7.x-2.x.
Manual testing to accompany simpletests:
- logon with og authorization disabled and make sure nothing happens
- logon with og authorization enabled and make sure admin and member group memberships granted
- change mappings so no roles granted
- logon and make sure memberships revoked.
Hierarchy
- class \DrupalTestCase
- class \DrupalWebTestCase
- class \LdapTestCase
- class \LdapAuthorizationOg2Tests
- class \LdapTestCase
- class \DrupalWebTestCase
Expanded class hierarchy of LdapAuthorizationOg2Tests
File
- ldap_authorization/
tests/ Og2Tests.test, line 21
View source
class LdapAuthorizationOg2Tests extends LdapTestCase {
public $groupEntityType = 'node';
public $groupBundle = 'group';
public $groupType = 'node';
public $group_content_type = NULL;
public $group_nodes = [];
public $user1;
public $consumerType = 'og_group';
public $module_name = 'ldap_authorization_og';
protected $ldap_test_data;
public $customOgRoles = [
'dungeon-master' => [
'entity_type' => 'node',
'bundle_type' => 'group',
],
'time-keeper' => [
'entity_type' => 'node',
'bundle_type' => 'group',
],
];
/**
*
*/
public static function getInfo() {
return [
'group' => 'LDAP Authorization',
'name' => 'OG 7.x-2.x Tests.',
'description' => 'Test ldap authorization og 2.',
];
}
/**
*
*/
public function __construct($test_id = NULL) {
parent::__construct($test_id);
}
/**
*
*/
public function setUp($addl_modules = []) {
parent::setUp([
'ldap_authentication',
'ldap_authorization',
'ldap_authorization_og',
]);
variable_set('ldap_simpletest', 2);
$this->user1 = $this
->drupalCreateUser();
$this->groups = [];
$this
->prepTestData(LDAP_TEST_LDAP_NAME, [
'activedirectory1',
]);
// Create group and group content node types.
$this->groupBundle = $this
->drupalCreateContentType([
'type' => 'group',
'name' => 'OG Group',
])->type;
og_create_field(OG_GROUP_FIELD, $this->groupEntityType, $this->groupBundle);
og_create_field(OG_AUDIENCE_FIELD, $this->groupEntityType, $this->groupBundle);
// Create og group for each group in group csv.
$this->testFunctions
->populateFakeLdapServerData(LDAP_TEST_LDAP_NAME, 'activedirectory1');
$this->testFunctions
->getCsvLdapData(LDAP_TEST_LDAP_NAME);
foreach ($this->testFunctions->csvTables['groups'] as $guid => $group) {
$label = $group['cn'];
$settings = [];
$settings['type'] = $this->groupBundle;
$settings[OG_GROUP_FIELD][LANGUAGE_NONE][0]['value'] = 1;
$settings['uid'] = $this->user1->uid;
$settings['title'] = $label;
$settings['type'] = 'group';
$this->group_nodes[$label] = $this
->drupalCreateNode($settings);
}
}
/**
*
*/
public function createCustomRoles() {
foreach ($this->customOgRoles as $og_role_name => $og_role) {
$role = new stdClass();
$role->gid = 0;
$role->group_type = $og_role['entity_type'];
$role->group_bundle = $og_role['bundle_type'];
$role->name = $og_role_name;
$status = og_role_save($role);
}
}
/**
* Get test data in convenient format, so tests are easier to read and write.
*/
public function getTestData($debug = FALSE) {
$group_nodes = [];
$group_nids = [];
$group_entity_ids = [];
$roles = [];
$roles_by_name = [];
$consumer_ids = [];
foreach ([
'gryffindor',
'students',
'faculty',
'users',
'hufflepuff',
'slytherin',
] as $i => $group_name) {
list($group_nodes[$group_name], $group_entity_ids[$group_name]) = ldap_authorization_og2_get_group_from_name($this->groupEntityType, $group_name);
$nid = $group_nodes[$group_name]->nid;
$group_nids[$group_name] = $nid;
$roles[$group_name] = og_roles($this->groupEntityType, $this->groupBundle, $nid, FALSE, TRUE);
$roles_by_name[$group_name] = array_flip($roles[$group_name]);
foreach ($roles[$group_name] as $rid => $role_name) {
$consumer_ids[$group_name][$role_name] = ldap_authorization_og_authorization_id($nid, $rid, 'node');
$consumer_ids[$group_name][$rid] = ldap_authorization_og_authorization_id($nid, $rid, 'node');
}
}
if ($debug) {
debug("group_nids");
debug($group_nids);
debug("group_entity_ids");
debug($group_entity_ids);
debug("roles");
debug($roles);
debug("roles_by_name");
debug($roles_by_name);
}
return [
$group_nodes,
$group_nids,
$group_entity_ids,
$roles_by_name,
$consumer_ids,
];
}
/**
* Just make sure install succeeds and.
*/
public function testBasicFunctionsAndApi() {
// TODO: Fix failing tests, excluding to make branch pass.
return;
$this
->createCustomRoles();
$all_roles = og_roles($this->groupEntityType, $this->groupBundle, 0, FALSE, TRUE);
$this->ldapTestId = $this->module_name . ': setup success';
// Just to give warning if setup doesn't succeed. may want to take these out at some point.
$setup_success = module_exists('ldap_authentication') && module_exists('ldap_servers') && module_exists('ldap_user') && module_exists('ldap_authorization') && module_exists('ldap_authorization_og') && variable_get('ldap_simpletest', 0) == 2;
$this
->assertTrue($setup_success, ' ldap_authorizations og setup successful', $this->ldapTestId);
$this->ldapTestId = $this->module_name . ': cron test';
$this
->assertTrue(drupal_cron_run(), t('Cron can run with ldap authorization og enabled.'), $this->ldapTestId);
/***
* I. some basic tests to make sure og module's apis are working before testing ldap_authorization_og
* if these aren't working as expected, no ldap authorization og functionality will work.
*/
$web_user = $this
->drupalCreateUser();
$this->ldapTestId = $this->module_name . ': og2 functions';
list($group_nodes, $group_nids, $group_entity_ids, $roles_by_name, $consumer_ids) = $this
->getTestData(TRUE);
/**
* II.0 basic granting tests to make sure og_role_grant, ldap_authorization_og_rid_from_role_name,
* and ldap_authorization_og2_get_group functions work
* og_is_member($group_type, $gid, $entity_type = 'user', $entity = NULL, $states = array(OG_STATE_ACTIVE))
*/
$values = [
'entity_type' => 'user',
'entity' => $web_user->uid,
'field_name' => FALSE,
'state' => OG_STATE_ACTIVE,
];
$og_gryffindor_membership = og_group($this->groupType, $group_nids['gryffindor'], $values);
$og_faculty_membership = og_group($this->groupType, $group_nids['faculty'], $values);
og_role_grant($this->groupType, $group_nids['gryffindor'], $web_user->uid, $roles_by_name['gryffindor'][OG_AUTHENTICATED_ROLE]);
og_role_grant($this->groupType, $group_nids['faculty'], $web_user->uid, $roles_by_name['faculty'][OG_ADMINISTRATOR_ROLE]);
og_role_grant($this->groupType, $group_nids['faculty'], $web_user->uid, $roles_by_name['faculty']['dungeon-master']);
og_role_grant($this->groupType, $group_nids['faculty'], $web_user->uid, $roles_by_name['faculty'][OG_AUTHENTICATED_ROLE]);
// Need to reload because of issue with og_group and og_role_grant.
$web_user = user_load($web_user->uid, TRUE);
$ids = [
$web_user->uid,
];
$user_entity = entity_load('user', $ids);
$this
->assertTrue(og_is_member($this->groupType, $group_nids['gryffindor'], 'user', $web_user), 'User is member of Group gryffindor without LDAP (based on og_is_member() function)', $this->ldapTestId);
$this
->assertTrue(og_is_member($this->groupType, $group_nids['faculty'], 'user', $web_user), 'User is member of Group faculty without LDAP (based on og_is_member() function)', $this->ldapTestId);
$this
->assertTrue(ldap_authorization_og2_has_role($this->groupType, $group_nids['gryffindor'], $web_user->uid, OG_AUTHENTICATED_ROLE), 'User is member of Group gryffindor without LDAP (based on dap_authorization_og_has_role() function)', $this->ldapTestId);
$this
->assertTrue(ldap_authorization_og2_has_role($this->groupType, $group_nids['faculty'], $web_user->uid, OG_AUTHENTICATED_ROLE), 'User is member of Group faculty without LDAP (based on ldap_authorization_og2_has_role() function)', $this->ldapTestId);
$this
->assertTrue(ldap_authorization_og2_has_role($this->groupType, $group_nids['faculty'], $web_user->uid, OG_ADMINISTRATOR_ROLE), 'User is administrator member of Group faculty without LDAP (based on dap_authorization_og_has_role() function)', $this->ldapTestId);
/***
* II.A. construct ldapauthorization og object and test methods.
* (unit tests for methods and class without any ldap user context).
*/
// .
$this->ldapTestId = $this->module_name . ': LdapAuthorizationConsumerOG class';
$og_auth = new LdapAuthorizationConsumerOG('og_group');
$this
->assertTrue(is_object($og_auth), 'Successfully instantiated LdapAuthorizationConsumerOG', $this->ldapTestId);
$this
->assertTrue($og_auth->consumerType == 'og_group', 'LdapAuthorizationConsumerOG ConsumerType set properly', $this->ldapTestId);
$this
->assertTrue($og_auth
->hasAuthorization($web_user, ldap_authorization_og_authorization_id($group_nids['faculty'], $roles_by_name['faculty'][OG_ADMINISTRATOR_ROLE], 'node')), 'hasAuthorization() method works for non LDAP provisioned og authorization, faculty admin role', $this->ldapTestId);
$should_haves = [
$consumer_ids['gryffindor'][OG_AUTHENTICATED_ROLE] => 'gryffindor member',
$consumer_ids['faculty'][OG_AUTHENTICATED_ROLE] => 'faculty member',
$consumer_ids['faculty'][OG_ADMINISTRATOR_ROLE] => 'faculty admin',
$consumer_ids['faculty']['dungeon-master'] => 'faculty dungeon master',
];
foreach ($should_haves as $consumer_id => $descriptor) {
$this
->assertTrue(ldap_authorization_og2_has_consumer_id($consumer_id, $web_user->uid), "LdapAuthorizationConsumerOG usersAuthorizations() for {$descriptor} - {$consumer_id}", $this->ldapTestId);
}
$ldap_entry = NULL;
$user_data = [];
$web_user = user_load($web_user->uid, TRUE);
$this
->assertTrue(ldap_authorization_og2_has_consumer_id($consumer_ids['faculty']['dungeon-master'], $web_user->uid), "LdapAuthorizationConsumerOG has faculty member role BEFORE authorizationRevoke() test revoke on member role " . $consumer_ids['faculty']['dungeon-master'], $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$consumers = [
$consumer_ids['faculty']['dungeon-master'] => $og_auth->emptyConsumer,
];
$og_auth
->authorizationRevoke($web_user, $user_data, $consumers, $ldap_entry, TRUE);
$result = ldap_authorization_og2_has_consumer_id($consumer_ids['faculty']['dungeon-master'], $web_user->uid);
$this
->assertFalse($result, "LdapAuthorizationConsumerOG authorizationRevoke() test revoke on member role " . $consumer_ids['faculty']['dungeon-master'], $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$consumers = [
$consumer_ids['faculty']['dungeon-master'] => $og_auth->emptyConsumer,
];
$og_auth
->authorizationRevoke($web_user, $user_data, $consumers, $ldap_entry, TRUE);
$this
->assertFalse(ldap_authorization_og2_has_consumer_id($consumer_ids['faculty']['dungeon-master'], $web_user->uid), "LdapAuthorizationConsumerOG authorizationRevoke() test revoke on custom member role role " . $consumer_ids['faculty']['dungeon-master'], $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$initial_user_authorizations = $og_auth
->usersAuthorizations($web_user, TRUE, TRUE);
debug("initial_user_authorizations authorizations:");
debug($initial_user_authorizations);
debug("initial_user data:");
debug($web_user->data);
$og_auth
->authorizationGrant($web_user, $user_data, [
$consumer_ids['students'][OG_AUTHENTICATED_ROLE] => $og_auth->emptyConsumer,
], $ldap_entry, TRUE);
$success = ldap_authorization_og2_has_consumer_id($consumer_ids['students'][OG_AUTHENTICATED_ROLE], $web_user->uid);
$this
->assertTrue($success, "LdapAuthorizationConsumerOG authorizationGrant() test grant on member role " . $consumer_ids['students'][OG_AUTHENTICATED_ROLE], $this->ldapTestId);
if (!$success) {
debug([
$user_data,
[
$consumer_ids['students'][OG_AUTHENTICATED_ROLE] => $og_auth->emptyConsumer,
],
]);
debug("user authorizations:");
debug($og_auth
->usersAuthorizations($web_user, TRUE));
}
$web_user = user_load($web_user->uid, TRUE);
$result = $og_auth
->authorizationRevoke($web_user, $user_data, [
'node:454:44334' => $og_auth->emptyConsumer,
], $ldap_entry, TRUE);
$this
->assertFalse($result, 'LdapAuthorizationConsumerOG authorizationRevoke() test revoke of bogus authorization', $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$result = $og_auth
->authorizationGrant($web_user, $user_data, [
'node:454:44334' => $og_auth->emptyConsumer,
], $ldap_entry, TRUE);
$this
->assertFalse($result, 'LdapAuthorizationConsumerOG authorizationGrant() test grant of bogus authorization', $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$result = $og_auth
->authorizationRevoke($web_user, $user_data, [
'bogusformat',
], $ldap_entry, TRUE);
$this
->assertFalse($result, 'LdapAuthorizationConsumerOG authorizationRevoke() test revoke malformed params', $this->ldapTestId);
$web_user = user_load($web_user->uid, TRUE);
$result = $og_auth
->authorizationGrant($web_user, $user_data, [
'bogusformat',
], $ldap_entry, TRUE);
$this
->assertFalse($result, 'LdapAuthorizationConsumerOG authorizationGrant() test grant malformed params', $this->ldapTestId);
/***
* II.B. Also test function in ldap_authorization_og.module
*/
list($students_group, $group_entity_id) = ldap_authorization_og2_get_group_from_name('node', 'students');
$this
->assertTrue($students_group->title == 'students', 'ldap_authorization_og2_get_group_from_name() function works', $this->ldapTestId);
$test = ldap_authorization_og2_has_role($this->groupType, $group_nids['gryffindor'], $web_user->uid, OG_ADMINISTRATOR_ROLE);
$this
->assertTrue($test, 'ldap_authorization_og2_has_role() function works', $this->ldapTestId);
$test = ldap_authorization_og2_has_role($this->groupType, $group_nids['students'], $web_user->uid, OG_ADMINISTRATOR_ROLE);
$this
->assertTrue($test === FALSE, 'ldap_authorization_og2_has_role() function fails with FALSE', $this->ldapTestId);
}
/**
* Authorization configuration flags tests clumped together.
*/
public function testFlags() {
// TODO: Fix failing tests, excluding to make branch pass.
return;
$sid = 'activedirectory1';
$this
->prepTestData(LDAP_TEST_LDAP_NAME, [
$sid,
], 'provisionToDrupal', 'default', 'og_group2');
$og_group_consumer = ldap_authorization_get_consumers('og_group', TRUE, TRUE);
/**
* LDAP_authorz.Flags.status=0: Disable ldap_authorization_drupal_role configuration and make sure no authorizations performed
*/
list($props_set_display, $props_set_correctly) = $this
->checkConsumerConfSetup('og_group2');
$this
->assertTrue($props_set_correctly, 'Authorization Configuration set correctly in test setup', 'LDAP_authorz.Flags.setup.0');
if (!$props_set_correctly) {
debug('LDAP_authorz.Flags.setup.0 properties not set correctly');
debug($props_set_display);
}
$this->consumerAdminConf['og_group']->useFirstAttrAsGroupId = 0;
$this->consumerAdminConf['og_group']->status = 0;
$this->consumerAdminConf['og_group']
->save();
$user = $this
->drupalCreateUser([]);
$hpotter = $this->testFunctions
->drupalLdapUpdateUser([
'name' => 'hpotter',
'mail' => 'hpotter@hogwarts.edu',
], TRUE, $user);
// Just see if the correct ones are derived.
list($new_authorizations, $notifications) = ldap_authorizations_user_authorizations($hpotter, 'query');
$groups1 = $new_authorizations['og_group'];
$this
->assertTrue(count($new_authorizations['og_group']) == 0, 'disabled consumer configuration disallows authorizations.', 'LDAP_authorz.Flags.status.0');
list($group_nodes, $group_nids, $group_entity_ids, $roles_by_name, $consumer_ids) = $this
->getTestData(TRUE);
$this->consumerAdminConf['og_group']->status = 1;
$this->consumerAdminConf['og_group']
->save();
// Just see if the correct ones are derived.
list($new_authorizations, $notifications) = ldap_authorizations_user_authorizations($hpotter, 'query', 'og_group');
$correct_groups = !empty($new_authorizations['og_group'][$consumer_ids['students'][OG_AUTHENTICATED_ROLE]]) && !empty($new_authorizations['og_group'][$consumer_ids['gryffindor'][OG_AUTHENTICATED_ROLE]]);
$this
->assertTrue($correct_groups, 'enabled consumer configuration allows authorizations.', 'LDAP_authorz.Flags.status.1');
if (!$correct_groups) {
debug('LDAP_authorz.Flags.enable.1 roles with enabled');
debug($new_authorizations);
}
/**
* LDAP_authorz.onlyLdapAuthenticated=1: create normal user and
* apply authorization query. should return no roles
*/
$this->consumerAdminConf['og_group']->onlyApplyToLdapAuthenticated = 1;
$this->consumerAdminConf['og_group']->status = 1;
$this->consumerAdminConf['og_group']
->save();
$user = $this
->drupalCreateUser([]);
$hgrainger = $this->testFunctions
->drupalLdapUpdateUser([
'name' => 'hgrainger',
'mail' => 'hgrainger@hogwarts.edu',
], TRUE, $user);
// Remove old authmap in case it exists so test will work.
db_delete('authmap')
->condition('uid', $user->uid)
->condition('module', 'ldap_user')
->execute();
// Just see if the correct ones are derived.
list($new_authorizations, $notifications) = ldap_authorizations_user_authorizations($hgrainger, 'query');
$success = isset($new_authorizations['og_group']) && count($new_authorizations['og_group']) == 0;
$this
->assertTrue($success, ' only apply to ldap authenticated grants no roles for non ldap user.', 'LDAP_authorz.onlyLdapAuthenticated.1');
if (!$success) {
debug('LDAP_authorz.onlyLdapAuthenticated.1');
debug($new_authorizations);
debug($this->testFunctions
->ldapUserIsAuthmapped('hgrainger'));
debug($notifications);
}
/**
* LDAP_authorz.Flags.synchOnLogon - execute logon and check that no roles are applied if disabled
*/
$this->consumerAdminConf['og_group']->synchOnLogon = 0;
$this->consumerAdminConf['og_group']
->save();
$edit = [
'name' => 'hgrainger',
'pass' => 'goodpwd',
];
$this
->drupalPost('user', $edit, t('Log in'));
$this
->assertText(t('Member for'), 'New Ldap user with good password authenticated.', 'LDAP_authorz.Flags.synchOnLogon.0');
$this
->assertTrue($this->testFunctions
->ldapUserIsAuthmapped('hgrainger'), 'Ldap user properly authmapped.', 'LDAP_authorz.Flags.synchOnLogon.0');
$hgrainger = user_load_by_name('hgrainger');
$this
->drupalGet('user/logout');
$this->consumerAdminConf['og_group']->synchOnLogon = 1;
$this->consumerAdminConf['og_group']
->save();
$edit = [
'name' => 'hgrainger',
'pass' => 'goodpwd',
];
$this
->drupalPost('user', $edit, t('Log in'));
$this
->assertText(t('Member for'), 'New Ldap user with good password authenticated.', 'LDAP_authorz.Flags.synchOnLogon=1');
$hgrainger = user_load_by_name('hgrainger');
$this
->drupalGet('user/logout');
// Create a couple roles for next 2 tests.
$troublemaker = new stdClass();
$troublemaker->name = 'troublemaker';
user_role_save($troublemaker);
$troublemaker = user_role_load_by_name('troublemaker');
$superadmin = new stdClass();
$superadmin->name = 'superadmin';
user_role_save($superadmin);
$superadmin = user_role_load_by_name('superadmin');
/**
* LDAP_authorz.Flags.revokeLdapProvisioned: test flag for
* removing manually granted roles
*
* $this->revokeLdapProvisioned == 1 : Revoke !consumer_namePlural previously granted by LDAP Authorization but no longer valid.
*
* grant roles via ldap and some not vai ldap manually,
* then alter ldap so they are no longer valid,
* then logon again and make sure the ldap provided roles are revoked and the drupal ones are not revoked
*
*/
$this->consumerAdminConf['og_group']->onlyApplyToLdapAuthenticated = 0;
$this->consumerAdminConf['og_group']->revokeLdapProvisioned = 1;
$this->consumerAdminConf['og_group']->createConsumers = 1;
$this->consumerAdminConf['og_group']
->save();
// Set correct roles manually.
$hpotter = user_load_by_name('hpotter');
user_delete($hpotter->uid);
$user = $this
->drupalCreateUser([]);
$hpotter = $this->testFunctions
->drupalLdapUpdateUser([
'name' => 'hpotter',
'mail' => 'hpotter@hogwarts.edu',
], TRUE, $user);
$edit = [
'name' => 'hpotter',
'pass' => 'goodpwd',
];
$this
->drupalPost('user', $edit, t('Log in'));
$this
->assertText(t('Member for'), 'New Ldap user with good password authenticated.', 'LDAP_authorz.Flags.revokeLdapProvisioned=1');
$hpotter = user_load_by_name('hpotter');
// Add an underserved, ldap granted drupal role superadmin
// and an undeserved, non ldap granted role troublemaker.
$hpotter = user_load($hpotter->uid, TRUE);
$roles = $hpotter->roles;
$roles[$troublemaker->rid] = $troublemaker->name;
$roles[$superadmin->rid] = $superadmin->name;
$data = [
'roles' => $roles,
'data' => [
'ldap_authorizations' => [
'og_group' => [
$superadmin->name => [
'date_granted' => 1304216778,
],
],
],
],
];
$hpotter = user_save($hpotter, $data);
// Apply correct authorizations. should remove the administrator role but not the manually created 'troublemaker' role.
list($new_authorizations, $notifications) = ldap_authorizations_user_authorizations($hpotter, 'set', 'og_group', 'logon');
$hpotter = user_load($hpotter->uid, TRUE);
$this
->assertTrue(!isset($new_authorizations['og_group'][$superadmin->rid]), ' revoke superadmin ldap granted roles when no longer deserved.', 'LDAP_authorz.Flags.revokeLdapProvisioned=1');
/**
* LDAP_authorz.Flags.regrantLdapProvisioned
* $this->regrantLdapProvisioned == 1 :
* Re grant !consumer_namePlural previously granted
* by LDAP Authorization but removed manually.
*
* - manually remove ldap granted role
* - logon
* - check if regranted
*/
$this
->drupalGet('user/logout');
$this->consumerAdminConf['og_group']->regrantLdapProvisioned = 1;
$this->consumerAdminConf['og_group']
->save();
$hpotter = user_load($hpotter->uid, TRUE);
$roles = $hpotter->roles;
unset($roles[$superadmin->rid]);
user_save($hpotter, [
'roles' => $roles,
]);
$hpotter = user_load($hpotter->uid, TRUE);
list($new_authorizations, $notifications) = ldap_authorizations_user_authorizations($hpotter, 'set', 'og_group', 'logon');
$hpotter = user_load($hpotter->uid, TRUE);
$success = !in_array('administrator', array_values($hpotter->roles));
$this
->assertTrue($success, 'regrant Ldap Provisioned roles that were manually revoked', 'LDAP_authorz.Flags.regrantLdapProvisioned=1');
if (!$success) {
debug('LDAP_authorz.Flags.regrantLdapProvisioned=1');
debug('hpotter roles');
debug($hpotter->roles);
debug('new_authorizations');
debug($new_authorizations);
}
/**
* LDAP_authorz.Flags.createConsumers=1
*/
if (!empty($og_group_consumer['allowConsumerObjectCreation']) && $og_group_consumer['allowConsumerObjectCreation']) {
// @todo. this needs to be finished when creation of og groups is added to ldap authorization og functionality
// Add new mapping to and enable create consumers.
$this
->prepTestData('hogwarts', [
$sid,
], 'provisionToDrupal', 'default', 'drupal_role_default');
$this
->drupalGet('user/logout');
$new_role = 'oompa-loompas';
$this->consumerAdminConf['og_group']->createConsumers = 1;
$this->consumerAdminConf['og_group']->mappings[] = [
'from' => 'cn=students,ou=groups,dc=hogwarts,dc=edu',
'user_entered' => $new_role,
'normalized' => 'node:' . $new_role . ':' . OG_AUTHENTICATED_ROLE,
'simplified' => $new_role,
'valid' => TRUE,
'error_message' => '',
];
$this->consumerAdminConf['og_group']
->save();
$edit = [
'name' => 'hpotter',
'pass' => 'goodpwd',
];
$this
->drupalPost('user', $edit, t('Log in'));
$new_role_created = in_array($new_role, array_values(user_roles()));
$roles_by_name = array_flip(user_roles());
$hpotter = user_load_by_name('hpotter');
$hpotter = user_load($hpotter->uid, TRUE);
$role_granted = isset($hpotter->roles[$roles_by_name[$new_role]]);
debug('roles');
debug(user_roles());
debug('roles by name');
debug($roles_by_name);
debug('hpotter->roles');
debug($hpotter->roles);
debug("{$new_role_created} AND {$role_granted}");
$this
->assertTrue($new_role_created && $role_granted, 'create consumers (e.g. roles)', 'LDAP_authorz.Flags.createConsumers=1');
}
}
}Members
Name |
Modifiers | Type | Description | Overrides |
|---|---|---|---|---|
|
DrupalTestCase:: |
protected | property | Assertions thrown in that test case. | |
|
DrupalTestCase:: |
protected | property | The database prefix of this test run. | |
|
DrupalTestCase:: |
protected | property | The original file directory, before it was changed for testing purposes. | |
|
DrupalTestCase:: |
public | property | Current results of this test case. | |
|
DrupalTestCase:: |
protected | property | Flag to indicate whether the test has been set up. | |
|
DrupalTestCase:: |
protected | property | ||
|
DrupalTestCase:: |
protected | property | ||
|
DrupalTestCase:: |
protected | property | This class is skipped when looking for the source of an assertion. | |
|
DrupalTestCase:: |
protected | property | The test run ID. | |
|
DrupalTestCase:: |
protected | property | Time limit for the test. | |
|
DrupalTestCase:: |
public | property | Whether to cache the installation part of the setUp() method. | |
|
DrupalTestCase:: |
public | property | Whether to cache the modules installation part of the setUp() method. | |
|
DrupalTestCase:: |
protected | property | URL to the verbose output file directory. | |
|
DrupalTestCase:: |
protected | function | Internal helper: stores the assert. | |
|
DrupalTestCase:: |
protected | function | Check to see if two values are equal. | |
|
DrupalTestCase:: |
protected | function | Check to see if a value is false (an empty string, 0, NULL, or FALSE). | |
|
DrupalTestCase:: |
protected | function | Check to see if two values are identical. | |
|
DrupalTestCase:: |
protected | function | Check to see if two values are not equal. | |
|
DrupalTestCase:: |
protected | function | Check to see if two values are not identical. | |
|
DrupalTestCase:: |
protected | function | Check to see if a value is not NULL. | |
|
DrupalTestCase:: |
protected | function | Check to see if a value is NULL. | |
|
DrupalTestCase:: |
protected | function | Check to see if a value is not false (not an empty string, 0, NULL, or FALSE). | |
|
DrupalTestCase:: |
public static | function | Delete an assertion record by message ID. | |
|
DrupalTestCase:: |
protected | function | Fire an error assertion. | 1 |
|
DrupalTestCase:: |
public | function | Handle errors during test runs. | 1 |
|
DrupalTestCase:: |
protected | function | Handle exceptions. | |
|
DrupalTestCase:: |
protected | function | Fire an assertion that is always negative. | |
|
DrupalTestCase:: |
public static | function | Converts a list of possible parameters into a stack of permutations. | |
|
DrupalTestCase:: |
protected | function | Cycles through backtrace until the first non-assertion method is found. | |
|
DrupalTestCase:: |
public static | function | Returns the database connection to the site running Simpletest. | |
|
DrupalTestCase:: |
public static | function | Store an assertion from outside the testing context. | |
|
DrupalTestCase:: |
protected | function | Fire an assertion that is always positive. | |
|
DrupalTestCase:: |
public static | function | Generates a random string containing letters and numbers. | |
|
DrupalTestCase:: |
public static | function | Generates a random string of ASCII characters of codes 32 to 126. | |
|
DrupalTestCase:: |
public | function | Run all tests in this class. | |
|
DrupalTestCase:: |
protected | function | Logs a verbose message in a text file. | |
|
DrupalWebTestCase:: |
protected | property | Additional cURL options. | |
|
DrupalWebTestCase:: |
protected | property | The content of the page currently loaded in the internal browser. | |
|
DrupalWebTestCase:: |
protected | property | The current cookie file used by cURL. | |
|
DrupalWebTestCase:: |
protected | property | The cookies of the page currently loaded in the internal browser. | |
|
DrupalWebTestCase:: |
protected | property | The handle of the current cURL connection. | |
|
DrupalWebTestCase:: |
protected | property | The value of the Drupal.settings JavaScript variable for the page currently loaded in the internal browser. | |
|
DrupalWebTestCase:: |
protected | property | The parsed version of the page. | |
|
DrupalWebTestCase:: |
protected | property | Whether the files were copied to the test files directory. | |
|
DrupalWebTestCase:: |
protected | property | The headers of the page currently loaded in the internal browser. | |
|
DrupalWebTestCase:: |
protected | property | HTTP authentication credentials (<username>:<password>). | |
|
DrupalWebTestCase:: |
protected | property | HTTP authentication method | |
|
DrupalWebTestCase:: |
protected | property | The current user logged in using the internal browser. | |
|
DrupalWebTestCase:: |
protected | property | The original shutdown handlers array, before it was cleaned for testing purposes. | |
|
DrupalWebTestCase:: |
protected | property | The original user, before it was changed to a clean uid = 1 for testing purposes. | |
|
DrupalWebTestCase:: |
protected | property | The content of the page currently loaded in the internal browser (plain text version). | |
|
DrupalWebTestCase:: |
protected | property | The profile to install as a basis for testing. | 20 |
|
DrupalWebTestCase:: |
protected | property | The number of redirects followed during the handling of a request. | |
|
DrupalWebTestCase:: |
protected | property | The current session ID, if available. | |
|
DrupalWebTestCase:: |
protected | property | The current session name, if available. | |
|
DrupalWebTestCase:: |
protected | property | The URL currently loaded in the internal browser. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field exists with the given name or ID. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field exists in the current page with the given ID and value. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field exists in the current page with the given name and value. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field exists in the current page by the given XPath. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a checkbox field in the current page is checked. | |
|
DrupalWebTestCase:: |
protected | function | Pass if a link with the specified label is found, and optional with the specified index. | |
|
DrupalWebTestCase:: |
protected | function | Pass if a link containing a given href (part) is found. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that the most recently sent e-mail message has the given value. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that the most recently sent e-mail message has the pattern in it. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that the most recently sent e-mail message has the string in it. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that each HTML ID is used for just a single element. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field does not exist with the given name or ID. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field does not exist with the given ID and value. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field does not exist with the given name and value. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a field doesn't exist or its value doesn't match, by XPath. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a checkbox field in the current page is not checked. | |
|
DrupalWebTestCase:: |
protected | function | Pass if a link with the specified label is not found. | |
|
DrupalWebTestCase:: |
protected | function | Pass if a link containing a given href (part) is not found. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a select option in the current page is not checked. | |
|
DrupalWebTestCase:: |
protected | function | Will trigger a pass if the perl regex pattern is not present in raw content. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the raw text is NOT found on the loaded page, fail otherwise. Raw text refers to the raw HTML that the page generated. | |
|
DrupalWebTestCase:: |
protected | function | Asserts the page did not return the specified response code. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the text is NOT found on the text version of the page. The text version is the equivalent of what a user would see when viewing through a web browser. In other words the HTML has been filtered out of the contents. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the page title is not the given string. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the text is found MORE THAN ONCE on the text version of the page. | |
|
DrupalWebTestCase:: |
protected | function | Asserts that a select option in the current page is checked. | |
|
DrupalWebTestCase:: |
protected | function | Will trigger a pass if the Perl regex pattern is found in the raw content. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the raw text IS found on the loaded page, fail otherwise. Raw text refers to the raw HTML that the page generated. | |
|
DrupalWebTestCase:: |
protected | function | Asserts the page responds with the specified response code. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the text IS found on the text version of the page. The text version is the equivalent of what a user would see when viewing through a web browser. In other words the HTML has been filtered out of the contents. | |
|
DrupalWebTestCase:: |
protected | function | Helper for assertText and assertNoText. | |
|
DrupalWebTestCase:: |
protected | function | Asserts themed output. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the page title is the given string. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the text is found ONLY ONCE on the text version of the page. | |
|
DrupalWebTestCase:: |
protected | function | Helper for assertUniqueText and assertNoUniqueText. | |
|
DrupalWebTestCase:: |
protected | function | Pass if the internal browser's URL matches the given path. | |
|
DrupalWebTestCase:: |
protected | function | Builds an XPath query. | |
|
DrupalWebTestCase:: |
protected | function | Changes the database connection to the prefixed one. | |
|
DrupalWebTestCase:: |
protected | function | Check for meta refresh tag and if found call drupalGet() recursively. This function looks for the http-equiv attribute to be set to "Refresh" and is case-sensitive. | |
|
DrupalWebTestCase:: |
protected | function | Check to make sure that the array of permissions are valid. | |
|
DrupalWebTestCase:: |
protected | function | Follows a link by name. | |
|
DrupalWebTestCase:: |
protected | function | Helper function: construct an XPath for the given set of attributes and value. | |
|
DrupalWebTestCase:: |
protected | function | Copy the setup cache from/to another table and files directory. | |
|
DrupalWebTestCase:: |
protected | function | Runs cron in the Drupal installed by Simpletest. | |
|
DrupalWebTestCase:: |
protected | function | Close the cURL handler and unset the handler. | |
|
DrupalWebTestCase:: |
protected | function | Initializes and executes a cURL request. | |
|
DrupalWebTestCase:: |
protected | function | Reads headers and registers errors received from the tested site. | |
|
DrupalWebTestCase:: |
protected | function | Initializes the cURL connection. | |
|
DrupalWebTestCase:: |
protected | function | Compare two files based on size and file name. | |
|
DrupalWebTestCase:: |
protected | function | Creates a custom content type based on default settings. | |
|
DrupalWebTestCase:: |
protected | function | Creates a node based on default settings. | |
|
DrupalWebTestCase:: |
protected | function | Creates a role with specified permissions. | |
|
DrupalWebTestCase:: |
protected | function | Create a user with a given set of permissions. | |
|
DrupalWebTestCase:: |
protected | function | Retrieves a Drupal path or an absolute path. | |
|
DrupalWebTestCase:: |
protected | function | Retrieve a Drupal path or an absolute path and JSON decode the result. | |
|
DrupalWebTestCase:: |
protected | function | Gets the current raw HTML of requested page. | |
|
DrupalWebTestCase:: |
protected | function | Gets the value of an HTTP response header. If multiple requests were required to retrieve the page, only the headers from the last request will be checked by default. However, if TRUE is passed as the second argument, all requests will be processed… | |
|
DrupalWebTestCase:: |
protected | function | Gets the HTTP response headers of the requested page. Normally we are only interested in the headers returned by the last request. However, if a page is redirected or HTTP authentication is in use, multiple requests will be required to retrieve the… | |
|
DrupalWebTestCase:: |
protected | function | Gets an array containing all e-mails sent during this test case. | |
|
DrupalWebTestCase:: |
function | Get a node from the database based on its title. | ||
|
DrupalWebTestCase:: |
protected | function | Gets the value of the Drupal.settings JavaScript variable for the currently loaded page. | |
|
DrupalWebTestCase:: |
protected | function | Get a list files that can be used in tests. | |
|
DrupalWebTestCase:: |
protected | function | Generate a token for the currently logged in user. | |
|
DrupalWebTestCase:: |
protected | function | Retrieves only the headers for a Drupal path or an absolute path. | |
|
DrupalWebTestCase:: |
protected | function | Log in a user with the internal browser. | |
|
DrupalWebTestCase:: |
protected | function | ||
|
DrupalWebTestCase:: |
protected | function | Execute a POST request on a Drupal page. It will be done as usual POST request with SimpleBrowser. | |
|
DrupalWebTestCase:: |
protected | function | Execute an Ajax submission. | |
|
DrupalWebTestCase:: |
protected | function | Sets the raw HTML content. This can be useful when a page has been fetched outside of the internal browser and assertions need to be made on the returned page. | |
|
DrupalWebTestCase:: |
protected | function | Sets the value of the Drupal.settings JavaScript variable for the currently loaded page. | |
|
DrupalWebTestCase:: |
protected | function | Takes a path and returns an absolute path. | |
|
DrupalWebTestCase:: |
protected | function | Get all option elements, including nested options, in a select. | |
|
DrupalWebTestCase:: |
protected | function | Get the selected value from a select field. | |
|
DrupalWebTestCase:: |
protected | function | Returns the cache key used for the setup caching. | |
|
DrupalWebTestCase:: |
protected | function | Get the current URL from the cURL handler. | |
|
DrupalWebTestCase:: |
protected | function | Handle form input related to drupalPost(). Ensure that the specified fields exist and attempt to create POST data in the correct manner for the particular field type. | |
|
DrupalWebTestCase:: |
protected | function | Copies the cached tables and files for a cached installation setup. | |
|
DrupalWebTestCase:: |
protected | function | Parse content returned from curlExec using DOM and SimpleXML. | |
|
DrupalWebTestCase:: |
protected | function | Preload the registry from the testing site. | |
|
DrupalWebTestCase:: |
protected | function | Generates a database prefix for running tests. | |
|
DrupalWebTestCase:: |
protected | function | Prepares the current environment for running the test. | |
|
DrupalWebTestCase:: |
protected | function | Recursively copy one directory to another. | |
|
DrupalWebTestCase:: |
protected | function | Refresh the in-memory set of variables. Useful after a page request is made that changes a variable in a different thread. | 1 |
|
DrupalWebTestCase:: |
protected | function | Reset all data structures after having enabled new modules. | |
|
DrupalWebTestCase:: |
protected | function | Store the installation setup to a cache. | |
|
DrupalWebTestCase:: |
protected | function | Outputs to verbose the most recent $count emails sent. | |
|
DrupalWebTestCase:: |
protected | function | Perform an xpath search on the contents of the internal browser. The search is relative to the root element (HTML tag normally) of the page. | |
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
protected | property | ||
|
LdapAuthorizationOg2Tests:: |
public | property |
Overrides LdapTestCase:: |
|
|
LdapAuthorizationOg2Tests:: |
public | property | ||
|
LdapAuthorizationOg2Tests:: |
public | function | ||
|
LdapAuthorizationOg2Tests:: |
public static | function | ||
|
LdapAuthorizationOg2Tests:: |
public | function | Get test data in convenient format, so tests are easier to read and write. | |
|
LdapAuthorizationOg2Tests:: |
public | function |
Sets up a Drupal site for running functional and integration tests. Overrides LdapTestCase:: |
|
|
LdapAuthorizationOg2Tests:: |
public | function | Just make sure install succeeds and. | |
|
LdapAuthorizationOg2Tests:: |
public | function | Authorization configuration flags tests clumped together. | |
|
LdapAuthorizationOg2Tests:: |
public | function |
Constructor for DrupalWebTestCase. Overrides LdapTestCase:: |
|
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | Current, or only, sid. | |
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | ||
|
LdapTestCase:: |
public | property | Storage for test data. | |
|
LdapTestCase:: |
public | function | ||
|
LdapTestCase:: |
public | function | ||
|
LdapTestCase:: |
public | function | 1 | |
|
LdapTestCase:: |
public | function | Keep user entity fields function for ldap_user in base class instead of user test class in case module integration testing is needed. | |
|
LdapTestCase:: |
public | function | ||
|
LdapTestCase:: |
public | function | Setup configuration and fake test data for all ldap modules. | |
|
LdapTestCase:: |
public | function | ||
|
LdapTestCase:: |
public | function |
Delete created files and temporary files directory, delete the tables created by setUp(),
and reset the database prefix. Overrides DrupalWebTestCase:: |
6 |
|
LdapTestCase:: |
public | function | Attempt to derive a testid from backtrace. |