/app/protected/modules/reports/tests/unit/ModelRelationsAndAttributesToReportAdapterSecurityTest.php
PHP | 116 lines | 86 code | 3 blank | 27 comment | 1 complexity | 35d21c49f4e6a6e240a914d71336225a MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.1, BSD-2-Clause, GPL-3.0, BSD-3-Clause, LGPL-3.0
- <?php
- /*********************************************************************************
- * Zurmo is a customer relationship management program developed by
- * Zurmo, Inc. Copyright (C) 2012 Zurmo Inc.
- *
- * Zurmo is free software; you can redistribute it and/or modify it under
- * the terms of the GNU General Public License version 3 as published by the
- * Free Software Foundation with the addition of the following permission added
- * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
- * IN WHICH THE COPYRIGHT IS OWNED BY ZURMO, ZURMO DISCLAIMS THE WARRANTY
- * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
- *
- * Zurmo is distributed in the hope that it will be useful, but WITHOUT
- * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
- * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
- * details.
- *
- * You should have received a copy of the GNU General Public License along with
- * this program; if not, see http://www.gnu.org/licenses or write to the Free
- * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
- * 02110-1301 USA.
- *
- * You can contact Zurmo, Inc. with a mailing address at 113 McHenry Road Suite 207,
- * Buffalo Grove, IL 60089, USA. or at email address contact@zurmo.com.
- ********************************************************************************/
- class ModelRelationsAndAttributesToReportAdapterSecurityTest extends ZurmoBaseTest
- {
- public static function setUpBeforeClass()
- {
- parent::setUpBeforeClass();
- SecurityTestHelper::createSuperAdmin();
- $sally = UserTestHelper::createBasicUser('sally');
- $sally->setRight('AccountsModule', AccountsModule::RIGHT_ACCESS_ACCOUNTS);
- $sally->setRight('OpportunitiesModule', OpportunitiesModule::RIGHT_ACCESS_OPPORTUNITIES);
- $sally->setRight('MeetingsModule', MeetingsModule::RIGHT_ACCESS_MEETINGS);
- if(!$sally->save())
- {
- throw new FailedToSaveModelException();
- }
- }
- public function testGetAllReportableRelationsAsASuperUser()
- {
- Yii::app()->user->userModel = User::getByUsername('super');
- $model = new Account();
- $rules = new AccountsReportRules();
- $report = new Report();
- $report->setType(Report::TYPE_ROWS_AND_COLUMNS);
- $report->setModuleClassName('AccountsModule');
- $adapter = new ModelRelationsAndAttributesToReportAdapter($model, $rules, $report->getType());
- $relations = $adapter->getSelectableRelationsData();
- $relations = $adapter->getSelectableRelationsDataResolvedForUserAccess(Yii::app()->user->userModel, $relations);
- $this->assertEquals(12, count($relations));
- $compareData = array('label' => 'Billing Address');
- $this->assertEquals($compareData, $relations['billingAddress']);
- $compareData = array('label' => 'Contacts');
- $this->assertEquals($compareData, $relations['contacts']);
- $compareData = array('label' => 'Created By User');
- $this->assertEquals($compareData, $relations['createdByUser']);
- $compareData = array('label' => 'Meetings');
- $this->assertEquals($compareData, $relations['meetings']);
- $compareData = array('label' => 'Modified By User');
- $this->assertEquals($compareData, $relations['modifiedByUser']);
- $compareData = array('label' => 'Notes');
- $this->assertEquals($compareData, $relations['notes']);
- $compareData = array('label' => 'Opportunities');
- $this->assertEquals($compareData, $relations['opportunities']);
- $compareData = array('label' => 'Owner');
- $this->assertEquals($compareData, $relations['owner']);
- $compareData = array('label' => 'Primary Email');
- $this->assertEquals($compareData, $relations['primaryEmail']);
- $compareData = array('label' => 'Shipping Address');
- $this->assertEquals($compareData, $relations['shippingAddress']);
- $compareData = array('label' => 'Secondary Email');
- $this->assertEquals($compareData, $relations['secondaryEmail']);
- $compareData = array('label' => 'Tasks');
- $this->assertEquals($compareData, $relations['tasks']);
- }
- /**
- * Sally cannot access notes, tasks, or contacts. User is always accessible regardless of right to access
- */
- public function testGetAllReportableRelationsAsANonElevatedUser()
- {
- Yii::app()->user->userModel = User::getByUsername('sally');
- $model = new Account();
- $rules = new AccountsReportRules();
- $report = new Report();
- $report->setType(Report::TYPE_ROWS_AND_COLUMNS);
- $report->setModuleClassName('AccountsModule');
- $adapter = new ModelRelationsAndAttributesToReportAdapter($model, $rules, $report->getType());
- $relations = $adapter->getSelectableRelationsData();
- $relations = $adapter->getSelectableRelationsDataResolvedForUserAccess(Yii::app()->user->userModel, $relations);
- $this->assertEquals(9, count($relations));
- $compareData = array('label' => 'Billing Address');
- $this->assertEquals($compareData, $relations['billingAddress']);
- $compareData = array('label' => 'Created By User');
- $this->assertEquals($compareData, $relations['createdByUser']);
- $compareData = array('label' => 'Meetings');
- $this->assertEquals($compareData, $relations['meetings']);
- $compareData = array('label' => 'Modified By User');
- $this->assertEquals($compareData, $relations['modifiedByUser']);
- $compareData = array('label' => 'Opportunities');
- $this->assertEquals($compareData, $relations['opportunities']);
- $compareData = array('label' => 'Owner');
- $this->assertEquals($compareData, $relations['owner']);
- $compareData = array('label' => 'Primary Email');
- $this->assertEquals($compareData, $relations['primaryEmail']);
- $compareData = array('label' => 'Shipping Address');
- $this->assertEquals($compareData, $relations['shippingAddress']);
- $compareData = array('label' => 'Secondary Email');
- $this->assertEquals($compareData, $relations['secondaryEmail']);
- }
- }
- ?>