xref: /webtrees/tests/app/Http/Middleware/AuthManagerTest.php (revision 3cfcc809af53e831fa6cafac7b274a2cb407db6e)
1<?php
2
3/**
4 * webtrees: online genealogy
5 * Copyright (C) 2019 webtrees development team
6 * This program is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation, either version 3 of the License, or
9 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program. If not, see <http://www.gnu.org/licenses/>.
16 */
17declare(strict_types=1);
18
19namespace Fisharebest\Webtrees\Http\Middleware;
20
21use Fig\Http\Message\StatusCodeInterface;
22use Fisharebest\Webtrees\GuestUser;
23use Fisharebest\Webtrees\TestCase;
24use Fisharebest\Webtrees\Tree;
25use Fisharebest\Webtrees\User;
26use Psr\Http\Server\RequestHandlerInterface;
27use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
28
29use function response;
30
31/**
32 * Test the AuthManager middleware.
33 *
34 * @covers \Fisharebest\Webtrees\Http\Middleware\AuthManager
35 */
36class AuthManagerTest extends TestCase
37{
38    /**
39     * @return void
40     */
41    public function testAllowed(): void
42    {
43        $handler = $this->createMock(RequestHandlerInterface::class);
44        $handler->method('handle')->willReturn(response('lorem ipsum'));
45
46        $user = $this->createMock(User::class);
47        $user->method('getPreference')->with('canadmin')->willReturn('0');
48
49        $tree = $this->createMock(Tree::class);
50        $tree->method('getUserPreference')->with($user, 'canedit')->willReturn('admin');
51
52        $request    = self::createRequest()->withAttribute('tree', $tree)->withAttribute('user', $user);
53        $middleware = new AuthManager();
54        $response   = $middleware->process($request, $handler);
55
56        $this->assertSame(StatusCodeInterface::STATUS_OK, $response->getStatusCode());
57        $this->assertSame('lorem ipsum', (string) $response->getBody());
58    }
59
60    /**
61     * @return void
62     */
63    public function testNotAllowed(): void
64    {
65        $this->expectException(AccessDeniedHttpException::class);
66
67        $handler = $this->createMock(RequestHandlerInterface::class);
68        $handler->method('handle')->willReturn(response('lorem ipsum'));
69
70        $user = $this->createMock(User::class);
71        $user->method('getPreference')->with('canadmin')->willReturn('0');
72
73        $tree = $this->createMock(Tree::class);
74        $tree->method('getUserPreference')->with($user, 'canedit')->willReturn('accept');
75
76        $request    = self::createRequest()->withAttribute('tree', $tree)->withAttribute('user', $user);
77        $middleware = new AuthManager();
78        $middleware->process($request, $handler);
79    }
80
81    /**
82     * @return void
83     */
84    public function testNotLoggedIn(): void
85    {
86        $handler = $this->createMock(RequestHandlerInterface::class);
87        $handler->method('handle')->willReturn(response('lorem ipsum'));
88
89        $tree = $this->createMock(Tree::class);
90
91        $request    = self::createRequest()->withAttribute('tree', $tree)->withAttribute('user', new GuestUser());
92        $middleware = new AuthManager();
93        $response   = $middleware->process($request, $handler);
94
95        $this->assertSame(StatusCodeInterface::STATUS_FOUND, $response->getStatusCode());
96    }
97}
98