You are here

Home » API reference » Panelizer 7.3 » panelizer.with_panels_ipe.test » PanelizerWithPanelsIPE

function PanelizerWithPanelsIPE::testIpeLayoutAccess in Panelizer 7.3

Test whether the IPE 'layout' permissions work correctly.

File

tests/panelizer.with_panels_ipe.test, line 148
Tests for Panels IPE.

Class

PanelizerWithPanelsIPE
@file Tests for Panels IPE.

Code

function testIpeLayoutAccess() {
  $perms = array(
    // Standard node permissions.
    'create page content',
    'administer content types',
    'administer nodes',
    'bypass node access',
    // Panelizer.
    'administer panelizer',
  );
  $web_user = $this
    ->drupalCreateUser($perms);
  $this
    ->drupalLogin($web_user);

  // Just 'cause.
  drupal_flush_all_caches();

  // Create a test node.
  $node = $this
    ->createNode();

  // Enable IPE for this node.
  $this
    ->drupalGet('node/' . $node->nid . '/panelizer/page_manager/settings');
  $this
    ->assertResponse(200);
  $this
    ->assertFieldByName('pipeline');
  $edit = array(
    'pipeline' => 'ipe',
  );
  $this
    ->drupalPost(NULL, $edit, t('Save'));
  $this
    ->assertText(t('The settings have been updated.'));

  // Log out the user so a new user can log in.
  $this
    ->drupalLogout();

  // Create a new user with the new permissions.
  $perms = array(
    // Standard node permissions.
    'create page content',
    'administer content types',
    'administer nodes',
    'bypass node access',
    // Panels IPE.
    'use panels in place editing',
    // Adds the "Change layout" functionality to IPE.
    'change layouts in place editing',
    // Permission to modify the layout.
    'administer panelizer node page layout',
  );
  $web_user = $this
    ->drupalCreateUser($perms);
  $this
    ->drupalLogin($web_user);

  // Load the node view page.
  $this
    ->drupalGet('node/' . $node->nid);
  $this
    ->assertResponse(200);

  // Confirm the IPE link is on the form.
  $this
    ->assertLink(t('Change layout'));
  $path = 'panels/ajax/ipe/change_layout/panelizer:node:' . $node->nid . ':page_manager:' . $node->vid;
  $query_string = array(
    'destination' => 'node/' . $node->nid,
  );
  $full_path = url($path, array(
    'query' => array(
      'destination' => $query_string['destination'],
    ),
  ));
  $this
    ->assertLinkByHref($full_path);

  // Confirm the link via xpath.
  $xpath = $this
    ->xpath("//a[@id='ajax-link']");
  $this
    ->assertEqual(count($xpath), 1, 'Found the "Change layout" link.');
  $this
    ->assertEqual($xpath[0]['href'], $full_path);

  //, 'The "Change layout" link is what was expected.');

  // Load the API path when logged in. This should give an AJAX response with
  // three commands - the first should be "settings", the second one should be
  // "modal_display" and the third "IPEsetLockState".
  $json = $this
    ->drupalGetAJAX($path, array(
    'query' => $query_string,
  ));
  $this
    ->assertResponse(200);
  $this
    ->verbose('<pre>' . print_r($json, TRUE) . '</pre>');

  // @todo What permission does this need to get a proper response?
  $this
    ->assertEqual(count($json), 3);
  $this
    ->assertTrue(isset($json[0]['command']));
  $this
    ->assertEqual($json[0]['command'], 'settings');
  $this
    ->assertTrue(isset($json[0]['settings']));
  $this
    ->assertTrue(isset($json[0]['merge']));
  $this
    ->assertEqual($json[0]['merge'], 'TRUE');
  $this
    ->assertTrue(isset($json[1]['command']));
  $this
    ->assertEqual($json[1]['command'], 'modal_display');
  $this
    ->assertTrue(isset($json[1]['title']));
  $this
    ->assertEqual($json[1]['title'], t('Change layout'));
  $this
    ->assertTrue(isset($json[2]['command']));
  $this
    ->assertEqual($json[2]['command'], 'IPEsetLockState');
  $this
    ->assertTrue(isset($json[2]['key']));
  $this
    ->assertEqual($json[2]['key'], 'panelizer-node-' . $node->nid . '-page-manager-' . $node->vid);
  $this
    ->assertTrue(isset($json[2]['lockPath']));

  // Log out.
  $this
    ->drupalLogout();

  // Load the API path when logged out. This should give a 404-by-AJAX
  // response.
  $json = $this
    ->drupalGetAJAX($path, array(
    'query' => $query_string,
  ));
  $this
    ->assertResponse(200);
  $this
    ->verbose('<pre>' . print_r($json, TRUE) . '</pre>');
  $this
    ->assertEqual(count($json), 2);
  $this
    ->assertTrue(isset($json[1]['command']));
  $this
    ->assertEqual($json[1]['command'], 'alert');
  $this
    ->assertTrue(isset($json[1]['text']));
  $this
    ->assertEqual($json[1]['text'], t('You are not authorized to access this page.'));
  $this
    ->assertFalse(isset($json[1]['key']));
  $this
    ->assertFalse(isset($json[1]['data']));
  $this
    ->assertFalse(isset($json[1]['lockPath']));
}