You are here

Home » API reference » Workspace 8

WorkspaceIndividualPermissionsTest.php in Workspace 8

Namespace

Drupal\Tests\workspace\Functional

File

tests/src/Functional/WorkspaceIndividualPermissionsTest.php
View source 
<?php

namespace Drupal\Tests\workspace\Functional;

use Drupal\Tests\BrowserTestBase;

/**
 * Tests permission controls on workspaces.
 *
 * @group workspace
 * @runTestsInSeparateProcesses
 * @preserveGlobalState disabled
 */
class WorkspaceIndividualPermissionsTest extends BrowserTestBase {
  use WorkspaceTestUtilities;

  /**
   * {@inheritdoc}
   */
  public static $modules = [
    'workspace',
    'multiversion',
  ];

  /**
   * Verifies that a user can create and edit only their own workspace.
   */
  public function testEditIndividualWorkspace() {
    $permissions = [
      'access administration pages',
      'administer site configuration',
      'create_workspace',
      'edit_own_workspace',
      'view_own_workspace',
    ];
    $editor1 = $this
      ->drupalCreateUser($permissions);

    // Login as a limited-access user and create a workspace.
    $this
      ->drupalLogin($editor1);
    $this
      ->createWorkspaceThroughUI('Bears', 'bears');
    $bears = $this
      ->getOneWorkspaceByLabel('Bears');

    // Now login as a different user with permission to edit that workspace,
    // specifically.
    $editor2 = $this
      ->drupalCreateUser(array_merge($permissions, [
      'update_workspace_' . $bears
        ->id(),
    ]));
    $this
      ->drupalLogin($editor2);
    $session = $this
      ->getSession();
    $this
      ->drupalGet("/admin/structure/workspace/{$bears->id()}/edit");
    $this
      ->assertEquals(200, $session
      ->getStatusCode());
  }

  /**
   * Verifies that a user can view a specific workspace.
   */
  public function testViewIndividualWorkspace() {
    $permissions = [
      'access administration pages',
      'administer site configuration',
      'create_workspace',
      'edit_own_workspace',
    ];
    $editor1 = $this
      ->drupalCreateUser($permissions);

    // Login as a limited-access user and create a workspace.
    $this
      ->drupalLogin($editor1);
    $this
      ->createWorkspaceThroughUI('Bears', 'bears');
    $bears = $this
      ->getOneWorkspaceByLabel('Bears');

    // Now login as a different user and create a workspace.
    $editor2 = $this
      ->drupalCreateUser(array_merge($permissions, [
      'view_workspace_' . $bears
        ->id(),
    ]));
    $this
      ->drupalLogin($editor2);
    $session = $this
      ->getSession();
    $this
      ->createWorkspaceThroughUI('Packers', 'packers');
    $packers = $this
      ->getOneWorkspaceByLabel('Packers');

    // Load the activate form for the Bears workspace. It should work, because
    // the user has the permission specific to that workspace.
    $this
      ->drupalGet("admin/structure/workspace/{$bears->id()}/activate");
    $this
      ->assertEquals(200, $session
      ->getStatusCode());

    // But editor 1 cannot view the Packers workspace.
    $this
      ->drupalLogin($editor1);
    $this
      ->drupalGet("admin/structure/workspace/{$packers->id()}/activate");
    $this
      ->assertEquals(403, $session
      ->getStatusCode());
  }

}

Classes

Namesort descending Description
WorkspaceIndividualPermissionsTest Tests permission controls on workspaces.