BookStack Code Mirror - bookstack/blobdiff - tests/PublicActionTest.php

index 7e3f7be0032fae9b8ab5030adc6175b46be8aad5..76745aaac72c999ddfa78eb22284788253c5dd34 100644 (file)

--- a/tests/PublicActionTest.php

+++ b/tests/PublicActionTest.php

@@ -2,12 +2,11 @@

namespace Tests;

-use BookStack\Auth\Permissions\JointPermissionBuilder;

-use BookStack\Auth\Permissions\RolePermission;

-use BookStack\Auth\Role;

-use BookStack\Auth\User;

use BookStack\Entities\Models\Book;

use BookStack\Entities\Models\Chapter;

+use BookStack\Permissions\Models\RolePermission;

+use BookStack\Users\Models\Role;

+use BookStack\Users\Models\User;

use Illuminate\Support\Facades\Auth;

use Illuminate\Support\Facades\View;

@@ -89,7 +88,6 @@ class PublicActionTest extends TestCase

foreach (RolePermission::all() as $perm) {

$publicRole->attachPermission($perm);

}

- $this->app->make(JointPermissionBuilder::class)->rebuildForRole($publicRole);

user()->clearPermissionCache();

$chapter = $this->entities->chapter();

@@ -105,7 +103,7 @@ class PublicActionTest extends TestCase

$resp = $this->post($chapter->getUrl('/create-guest-page'), ['name' => 'My guest page']);

$resp->assertRedirect($chapter->book->getUrl('/page/my-guest-page/edit'));

- $user = User::getDefault();

+ $user = $this->users->guest();

$this->assertDatabaseHas('pages', [

'name' => 'My guest page',

'chapter_id' => $chapter->id,

@@ -130,31 +128,16 @@ class PublicActionTest extends TestCase

$resp->assertDontSee($page->name);

}

- public function test_robots_effected_by_public_status()

+ public function test_default_favicon_file_created_upon_access()

{

- $this->get('/robots.txt')->assertSee("User-agent: *\nDisallow: /");

- $this->setSettings(['app-public' => 'true']);

- $resp = $this->get('/robots.txt');

- $resp->assertSee("User-agent: *\nDisallow:");

- $resp->assertDontSee('Disallow: /');

- }

- public function test_robots_effected_by_setting()

- {

- $this->get('/robots.txt')->assertSee("User-agent: *\nDisallow: /");

- config()->set('app.allow_robots', true);

- $resp = $this->get('/robots.txt');

- $resp->assertSee("User-agent: *\nDisallow:");

- $resp->assertDontSee('Disallow: /');

+ $faviconPath = public_path('favicon.ico');

+ if (file_exists($faviconPath)) {

+ unlink($faviconPath);

+ }

- // Check config overrides app-public setting

- config()->set('app.allow_robots', false);

- $this->setSettings(['app-public' => 'true']);

- $this->get('/robots.txt')->assertSee("User-agent: *\nDisallow: /");

+ $this->assertFileDoesNotExist($faviconPath);

+ $this->get('/favicon.ico');

+ $this->assertFileExists($faviconPath);

}

public function test_public_view_then_login_redirects_to_previous_content()

@@ -173,7 +156,7 @@ class PublicActionTest extends TestCase

{

$this->setSettings(['app-public' => 'true']);

$book = $this->entities->book();

- $this->entities->setPermissions($book);

+ $this->permissions->setEntityPermissions($book);

$resp = $this->get($book->getUrl());

$resp->assertSee('Book not found');

@@ -183,4 +166,30 @@ class PublicActionTest extends TestCase

$resp->assertRedirect($book->getUrl());

$this->followRedirects($resp)->assertSee($book->name);

}

+ public function test_public_view_can_take_on_other_roles()

+ {

+ $this->setSettings(['app-public' => 'true']);

+ $newRole = $this->users->attachNewRole($this->users->guest(), []);

+ $page = $this->entities->page();

+ $this->permissions->disableEntityInheritedPermissions($page);

+ $this->permissions->addEntityPermission($page, ['view', 'update'], $newRole);

+ $resp = $this->get($page->getUrl());

+ $resp->assertOk();

+ $this->withHtml($resp)->assertLinkExists($page->getUrl('/edit'));

+ }

+ public function test_public_user_cannot_view_or_update_their_profile()

+ {

+ $this->setSettings(['app-public' => 'true']);

+ $guest = $this->users->guest();

+ $resp = $this->get($guest->getEditUrl());

+ $this->assertPermissionError($resp);

+ $resp = $this->put($guest->getEditUrl(), ['name' => 'My new guest name']);

+ $this->assertPermissionError($resp);

+ }

}