yufengjiayun
/
bike-admin


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320
							<?php

namespace Tests\Feature;

use App\Models\AdminPermission;
use App\Models\AdminRole;
use App\Models\AdminUser;
use Illuminate\Support\Facades\Hash;
use Tests\AdminTestCase;
use Illuminate\Foundation\Testing\WithFaker;
use Illuminate\Foundation\Testing\RefreshDatabase;
use Tests\Traits\RequestActions;

class AdminUserControllerTest extends AdminTestCase
{
    use RefreshDatabase;
    use RequestActions;
    protected $resourceName = 'admin-users';

    protected function setUp(): void
    {
        parent::setUp();
        $this->login();
    }

    /**
     * 给用户绑定一个角色，该角色有一个权限。并为用户绑定另一个单独的权限
     *
     * @param AdminUser|null $user
     *
     * @return array [roleId, permissionId1, permissionId2]
     */
    protected function attachAuthToUser(AdminUser $user = null)
    {
        $user = $user ?? $this->user;

        $permission1 = factory(AdminPermission::class)->create(['slug' => 'perm1'])->id;
        $permission2 = factory(AdminPermission::class)->create(['slug' => 'perm2'])->id;
        $role = factory(AdminRole::class)->create(['slug' => 'role']);
        $role->permissions()->attach($permission1);
        $user->roles()->attach($role->id);
        $user->permissions()->attach($permission2);

        return [$role->id, $permission1, $permission2];
    }

    public function testUser()
    {
        $this->attachAuthToUser();

        $res = $this->get(route('admin.user'));
        $res->assertStatus(200)
            ->assertJsonFragment(['id' => $this->user->id])
            ->assertJsonFragment(['roles' => ['role']])
            ->assertJsonFragment(['permissions' => ['perm1', 'perm2']]);
    }

    public function testEditUser()
    {
        $this->attachAuthToUser();

        $res = $this->get(route('admin.user.edit'));
        $res->assertStatus(200)
            ->assertJsonCount(1, 'roles')
            ->assertJsonCount(1, 'permissions');
    }

    public function testUpdateUser()
    {
        $this->attachAuthToUser();

        $res = $this->put(route('admin.user.update'), [
            'name' => 'new name',
            'password' => '123456',
            'password_confirmation' => '123456',
            'username' => 'can not update',
            'roles' => [],
            'permissions' => [],
        ]);

        $res->assertStatus(201)
            ->assertSeeText('new name')
            // 账号没变
            ->assertDontSee('can not update')
            // 权限没变
            ->assertJsonFragment(['permissions' => ['perm1', 'perm2']]);

        // 密码变了
        $this->assertTrue(Hash::check('123456', $this->user->password));
    }

    public function testIndex()
    {
        factory(AdminUser::class, 20)->create();
        $permissions = factory(AdminPermission::class, 20)->create();
        $roles = factory(AdminRole::class, 10)->create();

        $this->user->roles()->attach($roles->take(3)->pluck('id'));
        $this->user->permissions()->attach($permissions->take(3)->pluck('id'));
        $res = $this->getResources([
            'page' => 2,
        ]);
        $res->assertStatus(200)
            ->assertJsonCount(6, 'data') // 第二页有 6 个数据
            ->assertJsonCount(3, 'data.5.roles') // 第二页第 5 个数据，即 $this->user
            ->assertJsonCount(3, 'data.5.permissions');

        // 只测试权限和角色名搜索
        $res = $this->getResources([
            'role_name' => 'nothing',
        ]);
        $res->assertStatus(200)
            ->assertJsonCount(0, 'data');
        $res = $this->getResources([
            'permission_name' => 'nothing',
        ]);
        $res->assertStatus(200)
            ->assertJsonCount(0, 'data');
        $res = $this->getResources([
            'role_name' => AdminRole::first()->value('name'),
            'permission_name' => AdminPermission::first()->value('name'),
        ]);
        $res->assertStatus(200)
            ->assertJsonCount(1, 'data');
    }

    public function testStoreValidation()
    {
        // username, name, password required
        // roles.*, permissions.*, exists
        // avatar max:255
        $res = $this->storeResource([
            'roles' => [9999],
            'permissions' => [9999],
            'avatar' => str_repeat('a', 256),
        ]);
        $res->assertJsonValidationErrors([
            'username',
            'name',
            'password',
            'roles.0',
            'permissions.0',
            'avatar',
        ]);

        // username, name max:100
        // password max:20
        $res = $this->storeResource([
            'username' => str_repeat('e', 101),
            'name' => str_repeat('e', 101),
            'password' => str_repeat('e', 21),
        ]);
        $res->assertJsonValidationErrors(['username', 'name', 'password']);

        // username unique
        // password min:6
        $res = $this->storeResource([
            'username' => 'admin',
            'password' => str_repeat('e', 5),
        ]);
        $res->assertJsonValidationErrors(['username', 'password']);

        // password confirmed
        $res = $this->storeResource([
            'password' => 'password',
            'password_confirmation' => 'not match',
        ]);
        $res->assertJsonValidationErrors(['password']);
    }

    public function testStore()
    {
        $roles = factory(AdminRole::class, 5)->create();
        $permissions = factory(AdminPermission::class, 5)->create();
        $pw = '000000';

        $userInputs = factory(AdminUser::class)->make([
            'password' => $pw,
        ])->toArray();

        $res = $this->storeResource($userInputs + [
                'password_confirmation' => $pw,
                'roles' => $roles->take(3)->pluck('id')->toArray(),
                'permissions' => $permissions->take(-2)->pluck('id')->toArray(),
            ]);
        $res->assertStatus(201);

        $userId = $this->getLastInsertId('admin_users');
        $this->assertDatabaseHas('admin_users', [
            'id' => $userId,
            'username' => $userInputs['username'],
            'name' => $userInputs['name'],
        ]);
        $this->assertTrue(Hash::check($pw, AdminUser::find($userId)->password));

        $this->assertDatabaseHas('admin_user_role', [
            'user_id' => $userId,
            'role_id' => $roles->take(3)->pluck('id')->first(),
        ]);
        $this->assertDatabaseHas('admin_user_permission', [
            'user_id' => $userId,
            'permission_id' => $permissions->take(-2)->pluck('id')->first(),
        ]);
    }

    public function testShow()
    {
        $this->user->roles()->attach(factory(AdminRole::class, 3)->create()->pluck('id'));
        $this->user->permissions()->attach(factory(AdminPermission::class, 3)->create()->pluck('id'));

        $res = $this->getResource($this->user->id);
        $res->assertStatus(200)
            ->assertJsonCount(3, 'roles')
            ->assertJsonCount(3, 'permissions');
    }

    public function testUpdate()
    {
        // 测试更新时，判断 传入的 全路径 头像，是否会替换掉数据库的相对路径
        $this->storage
            ->getDriver()
            ->getConfig()
            ->set('url', 'http://domain.com');

        $this->user->avatar = '/path/to/avatar/jpg';
        $this->user->save();

        $this->user->roles()
            ->createMany(factory(AdminRole::class, 3)->make()->toArray());
        $oldRoleId = $this->getLastInsertId('admin_roles');
        $this->user->permissions()
            ->createMany(factory(AdminPermission::class, 3)->make()->toArray());
        $oldPermissionId = $this->getLastInsertId('admin_permissions');

        $newRoles = factory(AdminRole::class, 3)->create()->pluck('id')->toArray();
        $newPerms = factory(AdminPermission::class, 3)->create()->pluck('id')->toArray();

        $userId = $this->user->id;
        $pw = 'new password';
        $res = $this->updateResource($userId, [
            'username' => 'admin',
            'name' => 'new name',
            'roles' => $newRoles,
            'permissions' => $newPerms,
            'password' => $pw,
            'password_confirmation' => $pw,
            'avatar' => $this->storage->url($this->user->avatar),
        ]);
        $res->assertStatus(201);
        $this->assertTrue(Hash::check($pw, AdminUser::find($userId)->password));
        $this->assertDatabaseHas('admin_users', [
            'id' => $userId,
            'username' => 'admin',
            'name' => 'new name',
            'avatar' => $this->user->avatar,
        ]);
        // 新角色
        $this->assertDatabaseHas('admin_user_role', [
            'user_id' => $userId,
            'role_id' => $newRoles[0],
        ]);
        // 新权限
        $this->assertDatabaseMissing('admin_user_role', [
            'user_id' => $userId,
            'role_id' => $oldRoleId,
        ]);
        // 旧角色移除
        $this->assertDatabaseHas('admin_user_permission', [
            'user_id' => $userId,
            'permission_id' => $newPerms[0],
        ]);
        // 旧权限移除
        $this->assertDatabaseMissing('admin_user_permission', [
            'user_id' => $userId,
            'permission_id' => $oldPermissionId,
        ]);

        // 移除全部角色权限
        $res = $this->updateResource($userId, [
            'roles' => [],
            'permissions' => [],
        ]);
        $res->assertStatus(201);
        $this->assertDatabaseMissing('admin_user_role', [
            'user_id' => $userId,
        ]);

        // 不填密码, 或者为空
        $pw = AdminUser::find($userId)->password;
        $res = $this->updateResource($userId, [
            'password' => '',
        ]);
        $res->assertStatus(201);
        $this->assertTrue($pw == AdminUser::find($userId)->password);
    }

    public function testDestroy()
    {
        $this->user->roles()->createMany(factory(AdminRole::class, 1)->make()->toArray());
        $this->user->permissions()->createMany(factory(AdminPermission::class, 1)->make()->toArray());

        $userId = $this->user->id;
        $res = $this->destroyResource($userId);
        $res->assertStatus(204);

        $this->assertDatabaseMissing('admin_users', ['id' => $userId]);
        $this->assertDatabaseMissing('admin_user_role', ['user_id' => $userId]);
        $this->assertDatabaseMissing('admin_user_permission', ['user_id' => $userId]);
    }

    public function testEdit()
    {
        $this->user->roles()->attach($roleIds = factory(AdminRole::class, 3)->create()->pluck('id'));
        $this->user->permissions()->attach(factory(AdminPermission::class, 3)->create()->pluck('id'));

        $res = $this->editResource($this->user->id);
        $res->assertStatus(200)
            ->assertJsonFragment(['roles' => $roleIds]);
    }
}