BookStack Code Mirror - bookstack/blobdiff

<?php

+namespace Tests;

+

+use BookStack\Auth\Permissions\JointPermissionBuilder;

+use BookStack\Auth\Permissions\PermissionsRepo;

+use BookStack\Auth\Permissions\RolePermission;

+use BookStack\Auth\Role;

+use BookStack\Auth\User;

+use BookStack\Entities\Models\Entity;

+use BookStack\Settings\SettingService;

+use BookStack\Uploads\HttpFetcher;

+use GuzzleHttp\Client;

+use GuzzleHttp\Handler\MockHandler;

+use GuzzleHttp\HandlerStack;

+use GuzzleHttp\Middleware;

+use Illuminate\Contracts\Console\Kernel;

use Illuminate\Foundation\Testing\DatabaseTransactions;

-use Symfony\Component\DomCrawler\Crawler;

+use Illuminate\Foundation\Testing\TestCase as BaseTestCase;

+use Illuminate\Http\JsonResponse;

+use Illuminate\Support\Env;

+use Illuminate\Support\Facades\DB;

+use Illuminate\Support\Facades\Log;

+use Illuminate\Testing\Assert as PHPUnit;

+use Monolog\Handler\TestHandler;

+use Monolog\Logger;

+use Psr\Http\Client\ClientInterface;

+use Ssddanbrown\AssertHtml\TestsHtml;

+use Tests\Helpers\EntityProvider;

+use Tests\Helpers\TestServiceProvider;

-class TestCase extends Illuminate\Foundation\Testing\TestCase

+abstract class TestCase extends BaseTestCase

{

-

+ use CreatesApplication;

use DatabaseTransactions;

+ use TestsHtml;

+

+ protected ?User $admin = null;

+ protected ?User $editor = null;

+ protected EntityProvider $entities;

+

+ protected function setUp(): void

+ {

+ $this->entities = new EntityProvider();

+ parent::setUp();

+ }

/**

* The base URL to use while testing the application.

/**

* The base URL to use while testing the application.

- *

- * @var string

*/

- protected $baseUrl = 'http://localhost';

- private $admin;

+ protected string $baseUrl = 'http://localhost';

/**

* Creates the application.

/**

* Creates the application.

*/

public function createApplication()

{

*/

public function createApplication()

{

- $app = require __DIR__.'/../bootstrap/app.php';

-

- $app->make(Illuminate\Contracts\Console\Kernel::class)->bootstrap();

+ /** @var \Illuminate\Foundation\Application $app */

+ $app = require __DIR__ . '/../bootstrap/app.php';

+ $app->register(TestServiceProvider::class);

+ $app->make(Kernel::class)->bootstrap();

return $app;

}

return $app;

}

+ /**

+ * Set the current user context to be an admin.

+ */

public function asAdmin()

{

public function asAdmin()

{

- if($this->admin === null) {

- $adminRole = \BookStack\Role::getRole('admin');

+ return $this->actingAs($this->getAdmin());

+ }

+

+ /**

+ * Get the current admin user.

+ */

+ public function getAdmin(): User

+ {

+ if (is_null($this->admin)) {

+ $adminRole = Role::getSystemRole('admin');

$this->admin = $adminRole->users->first();

}

$this->admin = $adminRole->users->first();

}

- return $this->actingAs($this->admin);

+

+ return $this->admin;

+ }

+

+ /**

+ * Set the current user context to be an editor.

+ */

+ public function asEditor()

+ {

+ return $this->actingAs($this->getEditor());

+ }

+

+ /**

+ * Get a editor user.

+ */

+ protected function getEditor(): User

+ {

+ if ($this->editor === null) {

+ $editorRole = Role::getRole('editor');

+ $this->editor = $editorRole->users->first();

+ }

+

+ return $this->editor;

+ }

+

+ /**

+ * Set the current user context to be a viewer.

+ */

+ public function asViewer()

+ {

+ return $this->actingAs($this->getViewer());

+ }

+

+ /**

+ * Get an instance of a user with 'viewer' permissions.

+ */

+ protected function getViewer(array $attributes = []): User

+ {

+ $user = Role::getRole('viewer')->users()->first();

+ if (!empty($attributes)) {

+ $user->forceFill($attributes)->save();

+ }

+

+ return $user;

+ }

+

+ /**

+ * Get a user that's not a system user such as the guest user.

+ */

+ public function getNormalUser(): User

+ {

+ return User::query()->where('system_name', '=', null)->get()->last();

}

/**

* Quickly sets an array of settings.

}

/**

* Quickly sets an array of settings.

- * @param $settingsArray

*/

- protected function setSettings($settingsArray)

+ protected function setSettings(array $settingsArray): void

{

- $settings = app('BookStack\Services\SettingService');

+ $settings = app(SettingService::class);

foreach ($settingsArray as $key => $value) {

$settings->put($key, $value);

}

/**

foreach ($settingsArray as $key => $value) {

$settings->put($key, $value);

}

/**

- * Create a group of entities that belong to a specific user.

- * @param $creatorUser

- * @param $updaterUser

- * @return array

+ * Give the given user some permissions.

*/

- protected function createEntityChainBelongingToUser($creatorUser, $updaterUser = false)

+ protected function giveUserPermissions(User $user, array $permissions = []): void

{

- if ($updaterUser === false) $updaterUser = $creatorUser;

- $book = factory(BookStack\Book::class)->create(['created_by' => $creatorUser->id, 'updated_by' => $updaterUser->id]);

- $chapter = factory(BookStack\Chapter::class)->create(['created_by' => $creatorUser->id, 'updated_by' => $updaterUser->id]);

- $page = factory(BookStack\Page::class)->create(['created_by' => $creatorUser->id, 'updated_by' => $updaterUser->id, 'book_id' => $book->id]);

- $book->chapters()->saveMany([$chapter]);

- $chapter->pages()->saveMany([$page]);

- return [

- 'book' => $book,

- 'chapter' => $chapter,

- 'page' => $page

- ];

+ $newRole = $this->createNewRole($permissions);

+ $user->attachRole($newRole);

+ $user->load('roles');

+ $user->clearPermissionCache();

}

/**

}

/**

- * Quick way to create a new user

- * @param array $attributes

- * @return mixed

+ * Completely remove the given permission name from the given user.

*/

- protected function getNewUser($attributes = [])

+ protected function removePermissionFromUser(User $user, string $permissionName)

{

- $user = factory(\BookStack\User::class)->create($attributes);

- $role = \BookStack\Role::getRole('editor');

- $user->attachRole($role);;

- return $user;

+ $permissionBuilder = app()->make(JointPermissionBuilder::class);

+

+ /** @var RolePermission $permission */

+ $permission = RolePermission::query()->where('name', '=', $permissionName)->firstOrFail();

+

+ $roles = $user->roles()->whereHas('permissions', function ($query) use ($permission) {

+ $query->where('id', '=', $permission->id);

+ })->get();

+

+ /** @var Role $role */

+ foreach ($roles as $role) {

+ $role->detachPermission($permission);

+ $permissionBuilder->rebuildForRole($role);

+ }

+

+ $user->clearPermissionCache();

}

/**

}

/**

- * Quick way to create a new user without any permissions

- * @param array $attributes

- * @return mixed

+ * Create a new basic role for testing purposes.

*/

- protected function getNewBlankUser($attributes = [])

+ protected function createNewRole(array $permissions = []): Role

{

- $user = factory(\BookStack\User::class)->create($attributes);

- return $user;

+ $permissionRepo = app(PermissionsRepo::class);

+ $roleData = Role::factory()->make()->toArray();

+ $roleData['permissions'] = array_flip($permissions);

+

+ return $permissionRepo->saveNewRole($roleData);

+ }

+

+ /**

+ * Mock the HttpFetcher service and return the given data on fetch.

+ */

+ protected function mockHttpFetch($returnData, int $times = 1)

+ {

+ $mockHttp = Mockery::mock(HttpFetcher::class);

+ $this->app[HttpFetcher::class] = $mockHttp;

+ $mockHttp->shouldReceive('fetch')

+ ->times($times)

+ ->andReturn($returnData);

}

/**

}

/**

- * Assert that a given string is seen inside an element.

+ * Mock the http client used in BookStack.

+ * Returns a reference to the container which holds all history of http transactions.

*

- * @param bool|string|null $element

- * @param integer $position

- * @param string $text

- * @param bool $negate

- * @return $this

+ * @link https://docs.guzzlephp.org/en/stable/testing.html#history-middleware

*/

- protected function seeInNthElement($element, $position, $text, $negate = false)

+ protected function &mockHttpClient(array $responses = []): array

{

- $method = $negate ? 'assertNotRegExp' : 'assertRegExp';

+ $container = [];

+ $history = Middleware::history($container);

+ $mock = new MockHandler($responses);

+ $handlerStack = new HandlerStack($mock);

+ $handlerStack->push($history);

+ $this->app[ClientInterface::class] = new Client(['handler' => $handlerStack]);

- $rawPattern = preg_quote($text, '/');

+ return $container;

+ }

- $escapedPattern = preg_quote(e($text), '/');

+ /**

+ * Run a set test with the given env variable.

+ * Remembers the original and resets the value after test.

+ * Database config is juggled so the value can be restored when

+ * parallel testing are used, where multiple databases exist.

+ */

+ protected function runWithEnv(string $name, $value, callable $callback)

+ {

+ Env::disablePutenv();

+ $originalVal = $_SERVER[$name] ?? null;

- $content = $this->crawler->filter($element)->eq($position)->html();

+ if (is_null($value)) {

+ unset($_SERVER[$name]);

+ } else {

+ $_SERVER[$name] = $value;

+ }

- $pattern = $rawPattern == $escapedPattern

- ? $rawPattern : "({$rawPattern}|{$escapedPattern})";

+ $database = config('database.connections.mysql_testing.database');

+ $this->refreshApplication();

- $this->$method("/$pattern/i", $content);

+ DB::purge();

+ config()->set('database.connections.mysql_testing.database', $database);

- return $this;

+ $callback();

+

+ if (is_null($originalVal)) {

+ unset($_SERVER[$name]);

+ } else {

+ $_SERVER[$name] = $originalVal;

+ }

}

/**

}

/**

- * Assert that the current page matches a given URI.

- *

- * @param string $uri

- * @return $this

+ * Check the keys and properties in the given map to include

+ * exist, albeit not exclusively, within the map to check.

*/

- protected function seePageUrlIs($uri)

+ protected function assertArrayMapIncludes(array $mapToInclude, array $mapToCheck, string $message = ''): void

{

- $this->assertEquals(

- $uri, $this->currentUri, "Did not land on expected page [{$uri}].\n"

- );

+ $passed = true;

- return $this;

+ foreach ($mapToInclude as $key => $value) {

+ if (!isset($mapToCheck[$key]) || $mapToCheck[$key] !== $mapToInclude[$key]) {

+ $passed = false;

+ }

+

+ $toIncludeStr = print_r($mapToInclude, true);

+ $toCheckStr = print_r($mapToCheck, true);

+ self::assertThat($passed, self::isTrue(), "Failed asserting that given map:\n\n{$toCheckStr}\n\nincludes:\n\n{$toIncludeStr}");

}

/**

}

/**

- * Do a forced visit that does not error out on exception.

- * @param string $uri

- * @param array $parameters

- * @param array $cookies

- * @param array $files

- * @return $this

+ * Assert a permission error has occurred.

*/

- protected function forceVisit($uri, $parameters = [], $cookies = [], $files = [])

+ protected function assertPermissionError($response)

{

- $method = 'GET';

- $uri = $this->prepareUrlForRequest($uri);

- $this->call($method, $uri, $parameters, $cookies, $files);

- $this->clearInputs()->followRedirects();

- $this->currentUri = $this->app->make('request')->fullUrl();

- $this->crawler = new Crawler($this->response->getContent(), $uri);

- return $this;

+ PHPUnit::assertTrue($this->isPermissionError($response->baseResponse ?? $response->response), 'Failed asserting the response contains a permission error.');

+ }

+

+ /**

+ * Assert a permission error has occurred.

+ */

+ protected function assertNotPermissionError($response)

+ {

+ PHPUnit::assertFalse($this->isPermissionError($response->baseResponse ?? $response->response), 'Failed asserting the response does not contain a permission error.');

+ }

+

+ /**

+ * Check if the given response is a permission error.

+ */

+ private function isPermissionError($response): bool

+ {

+ return $response->status() === 302

+ && (

+ (

+ $response->headers->get('Location') === url('/')

+ && strpos(session()->pull('error', ''), 'You do not have permission to access') === 0

+ )

+ ||

+ (

+ $response instanceof JsonResponse &&

+ $response->json(['error' => 'You do not have permission to perform the requested action.'])

+ )

+ );

}

/**

}

/**

- * Click the text within the selected element.

- * @param $parentElement

- * @param $linkText

- * @return $this

+ * Assert that the session has a particular error notification message set.

*/

- protected function clickInElement($parentElement, $linkText)

+ protected function assertSessionError(string $message)

{

- $elem = $this->crawler->filter($parentElement);

- $link = $elem->selectLink($linkText);

- $this->visit($link->link()->getUri());

+ $error = session()->get('error');

+ PHPUnit::assertTrue($error === $message, "Failed asserting the session contains an error. \nFound: {$error}\nExpecting: {$message}");

+ }

+

+ /**

+ * Assert the session contains a specific entry.

+ */

+ protected function assertSessionHas(string $key): self

+ {

+ $this->assertTrue(session()->has($key), "Session does not contain a [{$key}] entry");

+

return $this;

}

return $this;

}

- protected function actingAsUsers($usersArray, $callback)

+ protected function assertNotificationContains(\Illuminate\Testing\TestResponse $resp, string $text)

+ {

+ return $this->withHtml($resp)->assertElementContains('.notification[role="alert"]', $text);

+ }

+

+ /**

+ * Set a test handler as the logging interface for the application.

+ * Allows capture of logs for checking against during tests.

+ */

+ protected function withTestLogger(): TestHandler

{

- foreach ($usersArray as $user) {

- $this->actingAs($user);

- $callback($user);

+ $monolog = new Logger('testing');

+ $testHandler = new TestHandler();

+ $monolog->pushHandler($testHandler);

+

+ Log::extend('testing', function () use ($monolog) {

+ return $monolog;

+ });

+ Log::setDefaultDriver('testing');

+

+ return $testHandler;

+ }

+

+ /**

+ * Assert that an activity entry exists of the given key.

+ * Checks the activity belongs to the given entity if provided.

+ */

+ protected function assertActivityExists(string $type, ?Entity $entity = null, string $detail = '')

+ {

+ $detailsToCheck = ['type' => $type];

+

+ if ($entity) {

+ $detailsToCheck['entity_type'] = $entity->getMorphClass();

+ $detailsToCheck['entity_id'] = $entity->id;

}

+

+ if ($detail) {

+ $detailsToCheck['detail'] = $detail;

+ }

+

+ $this->assertDatabaseHas('activities', $detailsToCheck);

}