xref: /webtrees/tests/feature/Privacy.php (revision 1fe542e96f8f7eedeebc278fae1e0ab0d9e74d95)
1bb88f16bSGreg Roach<?php
2bb88f16bSGreg Roach
3bb88f16bSGreg Roach/**
4bb88f16bSGreg Roach * webtrees: online genealogy
5a091ac74SGreg Roach * Copyright (C) 2020 webtrees development team
6bb88f16bSGreg Roach * This program is free software: you can redistribute it and/or modify
7bb88f16bSGreg Roach * it under the terms of the GNU General Public License as published by
8bb88f16bSGreg Roach * the Free Software Foundation, either version 3 of the License, or
9bb88f16bSGreg Roach * (at your option) any later version.
10bb88f16bSGreg Roach * This program is distributed in the hope that it will be useful,
11bb88f16bSGreg Roach * but WITHOUT ANY WARRANTY; without even the implied warranty of
12bb88f16bSGreg Roach * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13bb88f16bSGreg Roach * GNU General Public License for more details.
14bb88f16bSGreg Roach * You should have received a copy of the GNU General Public License
15bb88f16bSGreg Roach * along with this program. If not, see <http://www.gnu.org/licenses/>.
16bb88f16bSGreg Roach */
17bb88f16bSGreg Roach
18bb88f16bSGreg Roachdeclare(strict_types=1);
19bb88f16bSGreg Roach
20bb88f16bSGreg Roachnamespace Fisharebest\Webtrees;
21bb88f16bSGreg Roach
22*1fe542e9SGreg Roachuse Fisharebest\Webtrees\Contracts\UserInterface;
23bb88f16bSGreg Roachuse Fisharebest\Webtrees\Services\UserService;
24bb88f16bSGreg Roach
25bb88f16bSGreg Roachuse function strip_tags;
26bb88f16bSGreg Roach
27bb88f16bSGreg Roach/**
28bb88f16bSGreg Roach * Test the privacy logic
29bb88f16bSGreg Roach */
30bb88f16bSGreg Roachclass Privacy extends TestCase
31bb88f16bSGreg Roach{
32bb88f16bSGreg Roach    protected static $uses_database = true;
33bb88f16bSGreg Roach
34bb88f16bSGreg Roach    /**
35bb88f16bSGreg Roach     * @return void
36bb88f16bSGreg Roach     */
37bb88f16bSGreg Roach    public function testRecordAccess(): void
38bb88f16bSGreg Roach    {
39bb88f16bSGreg Roach        $tree = $this->importTree('demo.ged');
40bb88f16bSGreg Roach
41bb88f16bSGreg Roach        // Identify some individuals in the tree
426b9cb339SGreg Roach        $queen_elizabeth = Registry::individualFactory()->make('X1030', $tree);
435e933c21SGreg Roach        self::assertInstanceOf(Individual::class, $queen_elizabeth);
445e933c21SGreg Roach        self::assertSame('Queen Elizabeth II', strip_tags($queen_elizabeth->fullName()));
45bb88f16bSGreg Roach
466b9cb339SGreg Roach        $prince_charles = Registry::individualFactory()->make('X1052', $tree);
475e933c21SGreg Roach        self::assertInstanceOf(Individual::class, $prince_charles);
485e933c21SGreg Roach        self::assertSame('Charles, Prince of Wales', strip_tags($prince_charles->fullName()));
49bb88f16bSGreg Roach
506b9cb339SGreg Roach        $savannah = Registry::individualFactory()->make('X1044', $tree);
515e933c21SGreg Roach        self::assertInstanceOf(Individual::class, $savannah);
525e933c21SGreg Roach        self::assertSame('Savannah Anne Kathleen Phillips', strip_tags($savannah->fullName()));
53bb88f16bSGreg Roach
546b9cb339SGreg Roach        $beatrice = Registry::individualFactory()->make('X1047', $tree);
555e933c21SGreg Roach        self::assertInstanceOf(Individual::class, $beatrice);
565e933c21SGreg Roach        self::assertSame('Princess Beatrice of York', strip_tags($beatrice->fullName()));
57bb88f16bSGreg Roach
58bb88f16bSGreg Roach        $user_service = new UserService();
59bb88f16bSGreg Roach
60bb88f16bSGreg Roach        $admin = $user_service->create('admin', 'admin', 'admin', '*');
61*1fe542e9SGreg Roach        $admin->setPreference(UserInterface::PREF_IS_ADMINISTRATOR, '1');
62bb88f16bSGreg Roach
63bb88f16bSGreg Roach        $manager = $user_service->create('manager', 'manager', 'manager', '*');
64*1fe542e9SGreg Roach        $tree->setUserPreference($manager, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MANAGER);
65bb88f16bSGreg Roach
66bb88f16bSGreg Roach        $moderator = $user_service->create('moderator', 'moderator', 'moderator', '*');
67*1fe542e9SGreg Roach        $tree->setUserPreference($moderator, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MODERATOR);
68bb88f16bSGreg Roach
69bb88f16bSGreg Roach        $editor = $user_service->create('editor', 'editor', 'editor', '*');
70*1fe542e9SGreg Roach        $tree->setUserPreference($editor, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_EDITOR);
71bb88f16bSGreg Roach
72bb88f16bSGreg Roach        $member = $user_service->create('member', 'member', 'member', '*');
73*1fe542e9SGreg Roach        $tree->setUserPreference($member, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MEMBER);
74bb88f16bSGreg Roach
75bb88f16bSGreg Roach        $visitor = $user_service->create('visitor', 'visitor', 'visitor', '*');
76*1fe542e9SGreg Roach        $tree->setUserPreference($visitor, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_VISITOR);
77bb88f16bSGreg Roach
78bb88f16bSGreg Roach        // Enable privacy functions
79bb88f16bSGreg Roach        $tree->setPreference('HIDE_LIVE_PEOPLE', '1');
80bb88f16bSGreg Roach
81bb88f16bSGreg Roach        Auth::login($admin);
825e933c21SGreg Roach        self::assertTrue(Auth::isAdmin(), 'admin isAdmin()');
835e933c21SGreg Roach        self::assertTrue(Auth::isManager($tree), 'admin isManager()');
845e933c21SGreg Roach        self::assertTrue(Auth::isModerator($tree), 'admin isModerator()');
855e933c21SGreg Roach        self::assertTrue(Auth::isEditor($tree), 'admin isEditor()');
865e933c21SGreg Roach        self::assertTrue(Auth::isMember($tree), 'admin isMember()');
87bb88f16bSGreg Roach
88bb88f16bSGreg Roach        Auth::login($manager);
895e933c21SGreg Roach        self::assertFalse(Auth::isAdmin(), 'manager NOT isAdmin()');
905e933c21SGreg Roach        self::assertTrue(Auth::isManager($tree, $manager), 'manager isManager()');
915e933c21SGreg Roach        self::assertTrue(Auth::isModerator($tree, $manager), 'manager isModerator()');
925e933c21SGreg Roach        self::assertTrue(Auth::isEditor($tree, $manager), 'manager isEditor()');
935e933c21SGreg Roach        self::assertTrue(Auth::isMember($tree, $manager), 'manager isMember()');
94bb88f16bSGreg Roach
95bb88f16bSGreg Roach        Auth::login($moderator);
965e933c21SGreg Roach        self::assertFalse(Auth::isAdmin(), 'moderator NOT isAdmin()');
975e933c21SGreg Roach        self::assertFalse(Auth::isManager($tree, $moderator), 'moderator NOT isManager()');
985e933c21SGreg Roach        self::assertTrue(Auth::isModerator($tree, $moderator), 'moderator isModerator()');
995e933c21SGreg Roach        self::assertTrue(Auth::isEditor($tree, $moderator), 'moderator isEditor()');
1005e933c21SGreg Roach        self::assertTrue(Auth::isMember($tree, $moderator), 'moderator isMember()');
101bb88f16bSGreg Roach
102bb88f16bSGreg Roach        Auth::login($editor);
1035e933c21SGreg Roach        self::assertFalse(Auth::isAdmin(), 'editor NOT isAdmin()');
1045e933c21SGreg Roach        self::assertFalse(Auth::isManager($tree, $editor), 'editor NOT isManager()');
1055e933c21SGreg Roach        self::assertFalse(Auth::isModerator($tree, $editor), 'editor isModerator()');
1065e933c21SGreg Roach        self::assertTrue(Auth::isEditor($tree, $editor), 'editor isEditor()');
1075e933c21SGreg Roach        self::assertTrue(Auth::isMember($tree, $editor), 'editor isMember()');
108bb88f16bSGreg Roach
109bb88f16bSGreg Roach        Auth::login($member);
1105e933c21SGreg Roach        self::assertFalse(Auth::isAdmin(), 'member NOT isAdmin()');
1115e933c21SGreg Roach        self::assertFalse(Auth::isManager($tree, $member), 'member NOT isManager()');
1125e933c21SGreg Roach        self::assertFalse(Auth::isModerator($tree, $member), 'member isModerator()');
1135e933c21SGreg Roach        self::assertFalse(Auth::isEditor($tree, $member), 'member isEditor()');
1145e933c21SGreg Roach        self::assertTrue(Auth::isMember($tree, $member), 'member isMember()');
115bb88f16bSGreg Roach
116bb88f16bSGreg Roach        Auth::login($visitor);
1175e933c21SGreg Roach        self::assertFalse(Auth::isAdmin(), 'visitor NOT isAdmin()');
1185e933c21SGreg Roach        self::assertFalse(Auth::isManager($tree, $visitor), 'visitor NOT isManager()');
1195e933c21SGreg Roach        self::assertFalse(Auth::isModerator($tree, $visitor), 'visitor isModerator()');
1205e933c21SGreg Roach        self::assertFalse(Auth::isEditor($tree, $visitor), 'visitor isEditor()');
1215e933c21SGreg Roach        self::assertFalse(Auth::isMember($tree, $visitor), 'visitor isMember()');
122bb88f16bSGreg Roach
123bb88f16bSGreg Roach        Auth::logout();
124bb88f16bSGreg Roach
125bb88f16bSGreg Roach
126bb88f16bSGreg Roach
127bb88f16bSGreg Roach        Auth::login($admin);
1285e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'admin can see living individual with RESN=none');
1295e933c21SGreg Roach        self::assertTrue($prince_charles->canShow(), 'admin can see living individual');
130bb88f16bSGreg Roach
131bb88f16bSGreg Roach        Auth::login($manager);
1325e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'manager can see living individual with RESN=none');
1335e933c21SGreg Roach        self::assertTrue($prince_charles->canShow(), 'manager can see living individual');
134bb88f16bSGreg Roach
135bb88f16bSGreg Roach        Auth::login($moderator);
1365e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'moderator can see living individual with RESN=none');
1375e933c21SGreg Roach        self::assertTrue($prince_charles->canShow(), 'moderator can see living individual');
138bb88f16bSGreg Roach
139bb88f16bSGreg Roach        Auth::login($editor);
1405e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'editor can see living individual with RESN=none');
1415e933c21SGreg Roach        self::assertTrue($prince_charles->canShow(), 'editor can see living individual');
142bb88f16bSGreg Roach
143bb88f16bSGreg Roach        Auth::login($member);
1445e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'member can see living individual with RESN=none');
1455e933c21SGreg Roach        self::assertTrue($prince_charles->canShow(), 'member can see living individual');
146bb88f16bSGreg Roach
147bb88f16bSGreg Roach        Auth::login($visitor);
1485e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'visitor can see living individual with RESN=none');
1495e933c21SGreg Roach        self::assertFalse($prince_charles->canShow(), 'visitor can not see living individual');
150bb88f16bSGreg Roach
151bb88f16bSGreg Roach        Auth::logout();
1525e933c21SGreg Roach        self::assertTrue($queen_elizabeth->canShow(), 'guest can see living individual with RESN=none');
1535e933c21SGreg Roach        self::assertFalse($prince_charles->canShow(), 'guest can not see living individual');
154bb88f16bSGreg Roach
155bb88f16bSGreg Roach        // Relationship privacy
156bb88f16bSGreg Roach        Auth::login($member);
1575e933c21SGreg Roach        self::assertTrue($beatrice->canShow());
158*1fe542e9SGreg Roach        $tree->setUserPreference($member, UserInterface::PREF_TREE_ACCOUNT_XREF, $savannah->xref());
159*1fe542e9SGreg Roach        $tree->setUserPreference($member, UserInterface::PREF_TREE_PATH_LENGTH, '3');
1605e933c21SGreg Roach        self::assertFalse($beatrice->canShow());
161*1fe542e9SGreg Roach        $tree->setUserPreference($member, UserInterface::PREF_TREE_PATH_LENGTH, '4');
1625e933c21SGreg Roach        self::assertTrue($beatrice->canShow());
163bb88f16bSGreg Roach    }
164bb88f16bSGreg Roach}
165