1<?php 2 3/** 4 * webtrees: online genealogy 5 * Copyright (C) 2023 webtrees development team 6 * This program is free software: you can redistribute it and/or modify 7 * it under the terms of the GNU General Public License as published by 8 * the Free Software Foundation, either version 3 of the License, or 9 * (at your option) any later version. 10 * This program is distributed in the hope that it will be useful, 11 * but WITHOUT ANY WARRANTY; without even the implied warranty of 12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13 * GNU General Public License for more details. 14 * You should have received a copy of the GNU General Public License 15 * along with this program. If not, see <https://www.gnu.org/licenses/>. 16 */ 17 18declare(strict_types=1); 19 20namespace Fisharebest\Webtrees\Http\Middleware; 21 22use Fig\Http\Message\StatusCodeInterface; 23use Fisharebest\Webtrees\Contracts\UserInterface; 24use Fisharebest\Webtrees\GuestUser; 25use Fisharebest\Webtrees\Http\Exceptions\HttpAccessDeniedException; 26use Fisharebest\Webtrees\TestCase; 27use Fisharebest\Webtrees\User; 28use PHPUnit\Framework\Attributes\CoversClass; 29use Psr\Http\Server\RequestHandlerInterface; 30 31use function response; 32 33 34#[CoversClass(AuthAdministrator::class)] 35class AuthAdministratorTest extends TestCase 36{ 37 public function testAllowed(): void 38 { 39 $handler = $this->createMock(RequestHandlerInterface::class); 40 $handler->method('handle')->willReturn(response('lorem ipsum')); 41 42 $user = $this->createMock(User::class); 43 $user->method('getPreference')->with(UserInterface::PREF_IS_ADMINISTRATOR)->willReturn('1'); 44 45 $request = self::createRequest()->withAttribute('user', $user); 46 $middleware = new AuthAdministrator(); 47 $response = $middleware->process($request, $handler); 48 49 self::assertSame(StatusCodeInterface::STATUS_OK, $response->getStatusCode()); 50 self::assertSame('lorem ipsum', (string) $response->getBody()); 51 } 52 53 public function testNotAllowed(): void 54 { 55 $this->expectException(HttpAccessDeniedException::class); 56 $this->expectExceptionMessage('You do not have permission to view this page.'); 57 58 $handler = $this->createMock(RequestHandlerInterface::class); 59 $handler->method('handle')->willReturn(response('lorem ipsum')); 60 61 $user = $this->createMock(User::class); 62 $user->method('getPreference')->with(UserInterface::PREF_IS_ADMINISTRATOR)->willReturn(''); 63 64 $request = self::createRequest()->withAttribute('user', $user); 65 $middleware = new AuthAdministrator(); 66 67 $middleware->process($request, $handler); 68 } 69 70 public function testNotLoggedIn(): void 71 { 72 $handler = $this->createMock(RequestHandlerInterface::class); 73 $handler->method('handle')->willReturn(response('lorem ipsum')); 74 75 $request = self::createRequest()->withAttribute('user', new GuestUser()); 76 $middleware = new AuthAdministrator(); 77 $response = $middleware->process($request, $handler); 78 79 self::assertSame(StatusCodeInterface::STATUS_FOUND, $response->getStatusCode()); 80 } 81} 82