mirror of
https://github.com/kevinpapst/kimai2.git
synced 2024-12-22 12:18:29 +00:00
172 lines
5.6 KiB
PHP
172 lines
5.6 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of the Kimai time-tracking app.
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace App\Tests\Voter;
|
|
|
|
use App\Entity\Activity;
|
|
use App\Entity\Customer;
|
|
use App\Entity\Project;
|
|
use App\Entity\Team;
|
|
use App\Entity\User;
|
|
use App\Voter\ActivityVoter;
|
|
use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
|
|
use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
|
|
|
|
/**
|
|
* @covers \App\Voter\ActivityVoter
|
|
*/
|
|
class ActivityVoterTest extends AbstractVoterTestCase
|
|
{
|
|
/**
|
|
* @dataProvider getTestData
|
|
*/
|
|
public function testVote(User $user, $subject, $attribute, $result): void
|
|
{
|
|
$this->assertVote($user, $subject, $attribute, $result);
|
|
}
|
|
|
|
public function assertVote(User $user, $subject, $attribute, $result): void
|
|
{
|
|
$token = new UsernamePasswordToken($user, 'bar', $user->getRoles());
|
|
$sut = $this->getVoter(ActivityVoter::class);
|
|
|
|
self::assertEquals($result, $sut->vote($token, $subject, [$attribute]));
|
|
}
|
|
|
|
public static function getTestData()
|
|
{
|
|
$user0 = self::getUser(0, null);
|
|
$user1 = self::getUser(1, User::ROLE_USER);
|
|
$user2 = self::getUser(2, User::ROLE_TEAMLEAD);
|
|
$user3 = self::getUser(3, User::ROLE_ADMIN);
|
|
$user4 = self::getUser(4, User::ROLE_SUPER_ADMIN);
|
|
|
|
$result = VoterInterface::ACCESS_GRANTED;
|
|
foreach ([$user3, $user4] as $user) {
|
|
yield [$user, new Activity(), 'view', $result];
|
|
yield [$user, new Activity(), 'edit', $result];
|
|
yield [$user, new Activity(), 'budget', $result];
|
|
yield [$user, new Activity(), 'delete', $result];
|
|
}
|
|
|
|
foreach ([$user2] as $user) {
|
|
yield [$user, new Activity(), 'view', $result];
|
|
}
|
|
|
|
$result = VoterInterface::ACCESS_DENIED;
|
|
foreach ([$user0, $user1] as $user) {
|
|
yield [$user, new Activity(), 'view', $result];
|
|
yield [$user, new Activity(), 'edit', $result];
|
|
yield [$user, new Activity(), 'budget', $result];
|
|
yield [$user, new Activity(), 'delete', $result];
|
|
}
|
|
|
|
foreach ([$user2] as $user) {
|
|
yield [$user, new Activity(), 'edit', $result];
|
|
yield [$user, new Activity(), 'budget', $result];
|
|
yield [$user, new Activity(), 'delete', $result];
|
|
}
|
|
|
|
$result = VoterInterface::ACCESS_ABSTAIN;
|
|
foreach ([$user0, $user1, $user2] as $user) {
|
|
yield [$user, new Activity(), 'view_activity', $result];
|
|
yield [$user, new Activity(), 'edit_activity', $result];
|
|
yield [$user, new Activity(), 'budget_activity', $result];
|
|
yield [$user, new Activity(), 'delete_activity', $result];
|
|
yield [$user, new \stdClass(), 'view', $result];
|
|
yield [$user, null, 'edit', $result];
|
|
yield [$user, $user, 'delete', $result];
|
|
}
|
|
}
|
|
|
|
public function testTeamlead(): void
|
|
{
|
|
$team = new Team('foo');
|
|
$user = new User();
|
|
$user->addRole(User::ROLE_TEAMLEAD);
|
|
$team->addTeamlead($user);
|
|
|
|
$activity = new Activity();
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
$customer->addTeam($team);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
|
|
$activity = new Activity();
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
$project->addTeam($team);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
|
|
$activity = new Activity();
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
$activity->addTeam($team);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
|
|
$activity = new Activity();
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_DENIED);
|
|
}
|
|
|
|
public function testTeamMember(): void
|
|
{
|
|
$team = new Team('foo');
|
|
$user = new User();
|
|
$user->addRole(User::ROLE_USER);
|
|
$team->addTeamlead($user);
|
|
|
|
$activity = new Activity();
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$customer->addTeam($team);
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
|
|
$activity = new Activity();
|
|
$team = new Team('foo');
|
|
$user = new User();
|
|
$user->addRole(User::ROLE_USER);
|
|
$team->addUser($user);
|
|
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$project->addTeam($team);
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
|
|
$activity = new Activity();
|
|
$team = new Team('foo');
|
|
$user = new User();
|
|
$user->addRole(User::ROLE_USER);
|
|
$team->addUser($user);
|
|
|
|
$project = new Project();
|
|
$customer = new Customer('foo');
|
|
$activity->addTeam($team);
|
|
$project->setCustomer($customer);
|
|
$activity->setProject($project);
|
|
|
|
$this->assertVote($user, $activity, 'edit', VoterInterface::ACCESS_GRANTED);
|
|
}
|
|
}
|