PageRenderTime 49ms CodeModel.GetById 19ms RepoModel.GetById 0ms app.codeStats 0ms

/tests/Symfony/Tests/Component/Security/Acl/Dbal/AclProviderTest.php

http://github.com/fabpot/symfony
PHP | 263 lines | 207 code | 39 blank | 17 comment | 1 complexity | e20364267110d6fd314a10fca3e47589 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Symfony package.
    5. 

  5.  *
    6. 

  6.  * (c) Fabien Potencier <fabien@symfony.com>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Symfony\Tests\Component\Security\Acl\Dbal;
    13. 

  13. 

  14. use Symfony\Component\Security\Acl\Dbal\AclProvider;
    15. 

  15. use Symfony\Component\Security\Acl\Domain\PermissionGrantingStrategy;
    16. 

  16. use Symfony\Component\Security\Acl\Domain\ObjectIdentity;
    17. 

  17. use Symfony\Component\Security\Acl\Dbal\Schema;
    18. 

  18. use Doctrine\DBAL\DriverManager;
    19. 

  19. 

  20. class AclProviderTest extends \PHPUnit_Framework_TestCase
    21. 

  21. {
    22. 

  22.     protected $con;
    23. 

  23.     protected $insertClassStmt;
    24. 

  24.     protected $insertEntryStmt;
    25. 

  25.     protected $insertOidStmt;
    26. 

  26.     protected $insertOidAncestorStmt;
    27. 

  27.     protected $insertSidStmt;
    28. 

  28. 

  29.     /**
    30. 

  30.      * @expectedException Symfony\Component\Security\Acl\Exception\AclNotFoundException
    31. 

  31.      * @expectedMessage There is no ACL for the given object identity.
    32. 

  32.      */
    33. 

  33.     public function testFindAclThrowsExceptionWhenNoAclExists()
    34. 

  34.     {
    35. 

  35.         $this->getProvider()->findAcl(new ObjectIdentity('foo', 'foo'));
    36. 

  36.     }
    37. 

  37. 

  38.     public function testFindAclsThrowsExceptionUnlessAnACLIsFoundForEveryOID()
    39. 

  39.     {
    40. 

  40.         $oids = array();
    41. 

  41.         $oids[] = new ObjectIdentity('1', 'foo');
    42. 

  42.         $oids[] = new ObjectIdentity('foo', 'foo');
    43. 

  43. 

  44.         try {
    45. 

  45.             $this->getProvider()->findAcls($oids);
    46. 

  46. 

  47.             $this->fail('Provider did not throw an expected exception.');
    48. 

  48.         } catch (\Exception $ex) {
    49. 

  49.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\AclNotFoundException', $ex);
    50. 

  50.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\NotAllAclsFoundException', $ex);
    51. 

  51. 

  52.             $partialResult = $ex->getPartialResult();
    53. 

  53.             $this->assertTrue($partialResult->contains($oids[0]));
    54. 

  54.             $this->assertFalse($partialResult->contains($oids[1]));
    55. 

  55.         }
    56. 

  56.     }
    57. 

  57. 

  58.     public function testFindAcls()
    59. 

  59.     {
    60. 

  60.         $oids = array();
    61. 

  61.         $oids[] = new ObjectIdentity('1', 'foo');
    62. 

  62.         $oids[] = new ObjectIdentity('2', 'foo');
    63. 

  63. 

  64.         $provider = $this->getProvider();
    65. 

  65. 

  66.         $acls = $provider->findAcls($oids);
    67. 

  67.         $this->assertInstanceOf('SplObjectStorage', $acls);
    68. 

  68.         $this->assertEquals(2, count($acls));
    69. 

  69.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl0 = $acls->offsetGet($oids[0]));
    70. 

  70.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl1 = $acls->offsetGet($oids[1]));
    71. 

  71.         $this->assertTrue($oids[0]->equals($acl0->getObjectIdentity()));
    72. 

  72.         $this->assertTrue($oids[1]->equals($acl1->getObjectIdentity()));
    73. 

  73.     }
    74. 

  74. 

  75.     public function testFindAclCachesAclInMemory()
    76. 

  76.     {
    77. 

  77.         $oid = new ObjectIdentity('1', 'foo');
    78. 

  78.         $provider = $this->getProvider();
    79. 

  79. 

  80.         $acl = $provider->findAcl($oid);
    81. 

  81.         $this->assertSame($acl, $cAcl = $provider->findAcl($oid));
    82. 

  82. 

  83.         $cAces = $cAcl->getObjectAces();
    84. 

  84.         foreach ($acl->getObjectAces() as $index => $ace) {
    85. 

  85.             $this->assertSame($ace, $cAces[$index]);
    86. 

  86.         }
    87. 

  87.     }
    88. 

  88. 

  89.     public function testFindAcl()
    90. 

  90.     {
    91. 

  91.         $oid = new ObjectIdentity('1', 'foo');
    92. 

  92.         $provider = $this->getProvider();
    93. 

  93. 

  94.         $acl = $provider->findAcl($oid);
    95. 

  95. 

  96.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl);
    97. 

  97.         $this->assertTrue($oid->equals($acl->getObjectIdentity()));
    98. 

  98.         $this->assertEquals(4, $acl->getId());
    99. 

  99.         $this->assertEquals(0, count($acl->getClassAces()));
    100. 

  100.         $this->assertEquals(0, count($this->getField($acl, 'classFieldAces')));
    101. 

  101.         $this->assertEquals(3, count($acl->getObjectAces()));
    102. 

  102.         $this->assertEquals(0, count($this->getField($acl, 'objectFieldAces')));
    103. 

  103. 

  104.         $aces = $acl->getObjectAces();
    105. 

  105.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Entry', $aces[0]);
    106. 

  106.         $this->assertTrue($aces[0]->isGranting());
    107. 

  107.         $this->assertTrue($aces[0]->isAuditSuccess());
    108. 

  108.         $this->assertTrue($aces[0]->isAuditFailure());
    109. 

  109.         $this->assertEquals('all', $aces[0]->getStrategy());
    110. 

  110.         $this->assertSame(2, $aces[0]->getMask());
    111. 

  111. 

  112.         // check ACE are in correct order
    113. 

  113.         $i = 0;
    114. 

  114.         foreach ($aces as $index => $ace) {
    115. 

  115.             $this->assertEquals($i, $index);
    116. 

  116.             $i++;
    117. 

  117.         }
    118. 

  118. 

  119.         $sid = $aces[0]->getSecurityIdentity();
    120. 

  120.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\UserSecurityIdentity', $sid);
    121. 

  121.         $this->assertEquals('john.doe', $sid->getUsername());
    122. 

  122.         $this->assertEquals('SomeClass', $sid->getClass());
    123. 

  123.     }
    124. 

  124. 

  125.     protected function setUp()
    126. 

  126.     {
    127. 

  127.         if (!class_exists('Doctrine\DBAL\DriverManager')) {
    128. 

  128.             $this->markTestSkipped('The Doctrine2 DBAL is required for this test');
    129. 

  129.         }
    130. 

  130.         $this->con = DriverManager::getConnection(array(
    131. 

  131.             'driver' => 'pdo_sqlite',
    132. 

  132.             'memory' => true,
    133. 

  133.         ));
    134. 

  134. 

  135.         // import the schema
    136. 

  136.         $schema = new Schema($options = $this->getOptions());
    137. 

  137.         foreach ($schema->toSql($this->con->getDatabasePlatform()) as $sql) {
    138. 

  138.             $this->con->exec($sql);
    139. 

  139.         }
    140. 

  140. 

  141.         // populate the schema with some test data
    142. 

  142.         $this->insertClassStmt = $this->con->prepare('INSERT INTO acl_classes (id, class_type) VALUES (?, ?)');
    143. 

  143.         foreach ($this->getClassData() as $data) {
    144. 

  144.             $this->insertClassStmt->execute($data);
    145. 

  145.         }
    146. 

  146. 

  147.         $this->insertSidStmt = $this->con->prepare('INSERT INTO acl_security_identities (id, identifier, username) VALUES (?, ?, ?)');
    148. 

  148.         foreach ($this->getSidData() as $data) {
    149. 

  149.             $this->insertSidStmt->execute($data);
    150. 

  150.         }
    151. 

  151. 

  152.         $this->insertOidStmt = $this->con->prepare('INSERT INTO acl_object_identities (id, class_id, object_identifier, parent_object_identity_id, entries_inheriting) VALUES (?, ?, ?, ?, ?)');
    153. 

  153.         foreach ($this->getOidData() as $data) {
    154. 

  154.             $this->insertOidStmt->execute($data);
    155. 

  155.         }
    156. 

  156. 

  157.         $this->insertEntryStmt = $this->con->prepare('INSERT INTO acl_entries (id, class_id, object_identity_id, field_name, ace_order, security_identity_id, mask, granting, granting_strategy, audit_success, audit_failure) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)');
    158. 

  158.         foreach ($this->getEntryData() as $data) {
    159. 

  159.             $this->insertEntryStmt->execute($data);
    160. 

  160.         }
    161. 

  161. 

  162.         $this->insertOidAncestorStmt = $this->con->prepare('INSERT INTO acl_object_identity_ancestors (object_identity_id, ancestor_id) VALUES (?, ?)');
    163. 

  163.         foreach ($this->getOidAncestorData() as $data) {
    164. 

  164.             $this->insertOidAncestorStmt->execute($data);
    165. 

  165.         }
    166. 

  166.     }
    167. 

  167. 

  168.     protected function tearDown()
    169. 

  169.     {
    170. 

  170.         $this->con = null;
    171. 

  171.     }
    172. 

  172. 

  173.     protected function getField($object, $field)
    174. 

  174.     {
    175. 

  175.         $reflection = new \ReflectionProperty($object, $field);
    176. 

  176.         $reflection->setAccessible(true);
    177. 

  177. 

  178.         return $reflection->getValue($object);
    179. 

  179.     }
    180. 

  180. 

  181.     protected function getEntryData()
    182. 

  182.     {
    183. 

  183.         // id, cid, oid, field, order, sid, mask, granting, strategy, a success, a failure
    184. 

  184.         return array(
    185. 

  185.             array(1, 1, 1, null, 0, 1, 1, 1, 'all', 1, 1),
    186. 

  186.             array(2, 1, 1, null, 1, 2, 1 << 2 | 1 << 1, 0, 'any', 0, 0),
    187. 

  187.             array(3, 3, 4, null, 0, 1, 2, 1, 'all', 1, 1),
    188. 

  188.             array(4, 3, 4, null, 2, 2, 1, 1, 'all', 1, 1),
    189. 

  189.             array(5, 3, 4, null, 1, 3, 1, 1, 'all', 1, 1),
    190. 

  190.         );
    191. 

  191.     }
    192. 

  192. 

  193.     protected function getOidData()
    194. 

  194.     {
    195. 

  195.         // id, cid, oid, parent_oid, entries_inheriting
    196. 

  196.         return array(
    197. 

  197.             array(1, 1, '123', null, 1),
    198. 

  198.             array(2, 2, '123', 1, 1),
    199. 

  199.             array(3, 2, 'i:3:123', 1, 1),
    200. 

  200.             array(4, 3, '1', 2, 1),
    201. 

  201.             array(5, 3, '2', 2, 1),
    202. 

  202.         );
    203. 

  203.     }
    204. 

  204. 

  205.     protected function getOidAncestorData()
    206. 

  206.     {
    207. 

  207.         return array(
    208. 

  208.             array(1, 1),
    209. 

  209.             array(2, 1),
    210. 

  210.             array(2, 2),
    211. 

  211.             array(3, 1),
    212. 

  212.             array(3, 3),
    213. 

  213.             array(4, 2),
    214. 

  214.             array(4, 1),
    215. 

  215.             array(4, 4),
    216. 

  216.             array(5, 2),
    217. 

  217.             array(5, 1),
    218. 

  218.             array(5, 5),
    219. 

  219.         );
    220. 

  220.     }
    221. 

  221. 

  222.     protected function getSidData()
    223. 

  223.     {
    224. 

  224.         return array(
    225. 

  225.             array(1, 'SomeClass-john.doe', 1),
    226. 

  226.             array(2, 'MyClass-john.doe@foo.com', 1),
    227. 

  227.             array(3, 'FooClass-123', 1),
    228. 

  228.             array(4, 'MooClass-ROLE_USER', 1),
    229. 

  229.             array(5, 'ROLE_USER', 0),
    230. 

  230.             array(6, 'IS_AUTHENTICATED_FULLY', 0),
    231. 

  231.         );
    232. 

  232.     }
    233. 

  233. 

  234.     protected function getClassData()
    235. 

  235.     {
    236. 

  236.         return array(
    237. 

  237.             array(1, 'Bundle\SomeVendor\MyBundle\Entity\SomeEntity'),
    238. 

  238.             array(2, 'Bundle\MyBundle\Entity\AnotherEntity'),
    239. 

  239.             array(3, 'foo'),
    240. 

  240.         );
    241. 

  241.     }
    242. 

  242. 

  243.     protected function getOptions()
    244. 

  244.     {
    245. 

  245.         return array(
    246. 

  246.             'oid_table_name' => 'acl_object_identities',
    247. 

  247.             'oid_ancestors_table_name' => 'acl_object_identity_ancestors',
    248. 

  248.             'class_table_name' => 'acl_classes',
    249. 

  249.             'sid_table_name' => 'acl_security_identities',
    250. 

  250.             'entry_table_name' => 'acl_entries',
    251. 

  251.         );
    252. 

  252.     }
    253. 

  253. 

  254.     protected function getStrategy()
    255. 

  255.     {
    256. 

  256.         return new PermissionGrantingStrategy();
    257. 

  257.     }
    258. 

  258. 

  259.     protected function getProvider()
    260. 

  260.     {
    261. 

  261.         return new AclProvider($this->con, $this->getStrategy(), $this->getOptions());
    262. 

  262.     }
    263. 

  263. }
    264.