weilaibike
/
fengxi-admin


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171
							<?php

namespace Tests\Unit;

use App\Models\AdminPermission;
use App\Models\AdminRole;
use Illuminate\Support\Facades\Route;
use Tests\AdminTestCase;
use Illuminate\Foundation\Testing\WithFaker;
use Illuminate\Foundation\Testing\RefreshDatabase;
use Tests\Traits\RequestActions;

class ControllerPermissionTest extends AdminTestCase
{
    use RefreshDatabase;
    use RequestActions;
    protected $resourceName = 'test-resources';

    protected function setUp(): void
    {
        parent::setUp();

        $this->login();

        $this->checkPermission(true);

        $this->prepare();
    }

    protected function prepare()
    {
        Route::prefix('admin-api')
            ->middleware([
                'admin',
                'auth:admin',
                'admin.permission',
            ])
            ->as('admin.')
            ->group(function () {
                Route::middleware('admin.permission:check,with-args')
                    ->group(function () {
                        Route::get('test-resources/with-args', 'Tests\Controllers\DummyAdminController@withArgs');
                    });

                Route::get('test-resources/check', 'Tests\Controllers\DummyAdminController@check');
                Route::get('test-resources/pass-through', 'Tests\Controllers\DummyAdminController@passThrough');
                Route::resource('test-resources', 'Tests\Controllers\DummyAdminController');
            });
    }

    protected function bindRole($role = [], $permissions = [])
    {
        $permissions = array_map(function ($attributes) {
            return factory(AdminPermission::class)->create($attributes);
        }, $permissions);

        $role = factory(AdminRole::class)->create($role);
        $role->permissions()->attach(collect($permissions)->pluck('id'));

        $this->user->roles()->attach($role->id);
    }

    protected function bindPermission($attributes = [])
    {
        $this->user->permissions()->create(factory(AdminPermission::class)->create($attributes)->toArray());
    }

    public function testNoPermission()
    {
        $res = $this->getResources();
        $res->assertStatus(403);
    }

    public function testExactMethodAndPath()
    {
        $this->bindPermission([
            'http_method' => ['GET'],
            'http_path' => '/test-resources',
        ]);
        $this->user->permissions()->attach(1);
        $res = $this->getResources();
        $res->assertStatus(200);
    }

    public function testAnyMethod()
    {
        $this->bindPermission([
            'http_method' => [],
            'http_path' => '/test-resources',
        ]);
        $res = $this->getResources();
        $res->assertStatus(200);
        $res = $this->storeResource();
        $res->assertStatus(201);
    }

    public function testSpecifyMethodInPath()
    {
        $this->bindPermission([
            'http_method' => ['GET'],
            'http_path' => 'POST:/test-resources',
        ]);
        $res = $this->storeResource();
        $res->assertStatus(201);
    }

    public function testIsAdministrator()
    {
        $this->bindRole([
            'slug' => 'administrator',
        ], [
            [
                'slug' => '*',
                'http_method' => [],
                'http_path' => '*',
            ],
        ]);

        $res = $this->getResources();
        $res->assertStatus(200);
        $res = $this->storeResource();
        $res->assertStatus(201);
    }

    public function testPermissionsInRole()
    {
        $this->bindRole([], [
            [
                'http_method' => ['GET'],
                'http_path' => '/test-resources',
            ],
            [
                'http_method' => ['POST'],
                'http_path' => '/test-resources',
            ],
        ]);

        $res = $this->getResources();
        $res->assertStatus(200);
        $res = $this->storeResource();
        $res->assertStatus(201);
    }

    public function testPermissionCheckInMethod()
    {
        $this->bindPermission([
            'http_path' => '',
            'http_method' => '',
            'slug' => 'check',
        ]);

        $res = $this->get('/admin-api/test-resources/check');
        $res->assertStatus(200);
    }

    public function testPermissionCheckWithArgs()
    {
        $this->bindPermission([
            'slug' => 'with-args',
        ]);

        $res = $this->get('/admin-api/test-resources/with-args');
        $res->assertStatus(200);
    }

    public function testUseUrlWhitelist()
    {
        $res = $this->get('/admin-api/test-resources/pass-through');
        $res->assertStatus(200);
    }
}