Move all admin controller into a dedicated group

Also handle authentication check in a new middleware for the admin group.
author: ArthurHoaro <arthur@hoa.ro> 2020-08-13 11:08:13 +0200
committer: ArthurHoaro <arthur@hoa.ro> 2020-08-13 11:08:13 +0200
commit: bedbb845eec20363b928b424143787dbe988eefe (patch)
tree: 6b835ca247e39157b333323a539dde3c410c08f5 /tests/front/ShaarliAdminMiddlewareTest.php
parent: 1a68ae5a29bc33ab80c9cfbe043cb1213551533c (diff)
download: Shaarli-bedbb845eec20363b928b424143787dbe988eefe.tar.gz
Shaarli-bedbb845eec20363b928b424143787dbe988eefe.tar.zst
Shaarli-bedbb845eec20363b928b424143787dbe988eefe.zip
1 files changed, 100 insertions, 0 deletions
diff --git a/tests/front/ShaarliAdminMiddlewareTest.php b/tests/front/ShaarliAdminMiddlewareTest.php
new file mode 100644
index 00000000..7451330b
--- /dev/null
+++ b/tests/front/ShaarliAdminMiddlewareTest.php
@@ -0,0 +1,100 @@
+<?php
+declare(strict_types=1);
+namespace Shaarli\Front;
+use PHPUnit\Framework\TestCase;
+use Shaarli\Config\ConfigManager;
+use Shaarli\Container\ShaarliContainer;
+use Shaarli\Security\LoginManager;
+use Shaarli\Updater\Updater;
+use Slim\Http\Request;
+use Slim\Http\Response;
+use Slim\Http\Uri;
+class ShaarliAdminMiddlewareTest extends TestCase
+{
+    protected const TMP_MOCK_FILE = '.tmp';
+    /** @var ShaarliContainer */
+    protected $container;
+    /** @var ShaarliMiddleware  */
+    protected $middleware;
+    public function setUp(): void
+    {
+        $this->container = $this->createMock(ShaarliContainer::class);
+        touch(static::TMP_MOCK_FILE);
+        $this->container->conf = $this->createMock(ConfigManager::class);
+        $this->container->conf->method('getConfigFileExt')->willReturn(static::TMP_MOCK_FILE);
+        $this->container->loginManager = $this->createMock(LoginManager::class);
+        $this->container->updater = $this->createMock(Updater::class);
+        $this->container->environment = ['REQUEST_URI' => 'http://shaarli/subfolder/path'];
+        $this->middleware = new ShaarliAdminMiddleware($this->container);
+    }
+    public function tearDown(): void
+    {
+        unlink(static::TMP_MOCK_FILE);
+    }
+    /**
+     * Try to access an admin controller while logged out -> redirected to login page.
+     */
+    public function testMiddlewareWhileLoggedOut(): void
+    {
+        $this->container->loginManager->expects(static::once())->method('isLoggedIn')->willReturn(false);
+        $request = $this->createMock(Request::class);
+        $request->method('getUri')->willReturnCallback(function (): Uri {
+            $uri = $this->createMock(Uri::class);
+            $uri->method('getBasePath')->willReturn('/subfolder');
+            return $uri;
+        });
+        $response = new Response();
+        /** @var Response $result */
+        $result = $this->middleware->__invoke($request, $response, function () {});
+        static::assertSame(302, $result->getStatusCode());
+        static::assertSame(
+            '/subfolder/login?returnurl=' . urlencode('http://shaarli/subfolder/path'),
+            $result->getHeader('location')[0]
+        );
+    }
+    /**
+     * Process controller while logged in.
+     */
+    public function testMiddlewareWhileLoggedIn(): void
+    {
+        $this->container->loginManager->method('isLoggedIn')->willReturn(true);
+        $request = $this->createMock(Request::class);
+        $request->method('getUri')->willReturnCallback(function (): Uri {
+            $uri = $this->createMock(Uri::class);
+            $uri->method('getBasePath')->willReturn('/subfolder');
+            return $uri;
+        });
+        $response = new Response();
+        $controller = function (Request $request, Response $response): Response {
+            return $response->withStatus(418); // I'm a tea pot
+        };
+        /** @var Response $result */
+        $result = $this->middleware->__invoke($request, $response, $controller);
+        static::assertSame(418, $result->getStatusCode());
+    }
+}
author	ArthurHoaro <arthur@hoa.ro>	2020-08-13 11:08:13 +0200
committer	ArthurHoaro <arthur@hoa.ro>	2020-08-13 11:08:13 +0200
commit	bedbb845eec20363b928b424143787dbe988eefe (patch)
tree	6b835ca247e39157b333323a539dde3c410c08f5 /tests/front/ShaarliAdminMiddlewareTest.php
parent	1a68ae5a29bc33ab80c9cfbe043cb1213551533c (diff)
download	Shaarli-bedbb845eec20363b928b424143787dbe988eefe.tar.gz Shaarli-bedbb845eec20363b928b424143787dbe988eefe.tar.zst Shaarli-bedbb845eec20363b928b424143787dbe988eefe.zip

diff --git a/tests/front/ShaarliAdminMiddlewareTest.php b/tests/front/ShaarliAdminMiddlewareTest.php new file mode 100644 index 00000000..7451330b --- /dev/null +++ b/tests/front/ShaarliAdminMiddlewareTest.php
@@ -0,0 +1,100 @@
	1	<?php
	2
	3	declare(strict_types=1);
	4
	5	namespace Shaarli\Front;
	6
	7	use PHPUnit\Framework\TestCase;
	8	use Shaarli\Config\ConfigManager;
	9	use Shaarli\Container\ShaarliContainer;
	10	use Shaarli\Security\LoginManager;
	11	use Shaarli\Updater\Updater;
	12	use Slim\Http\Request;
	13	use Slim\Http\Response;
	14	use Slim\Http\Uri;
	15
	16	class ShaarliAdminMiddlewareTest extends TestCase
	17	{
	18	protected const TMP_MOCK_FILE = '.tmp';
	19
	20	/** @var ShaarliContainer */
	21	protected $container;
	22
	23	/** @var ShaarliMiddleware */
	24	protected $middleware;
	25
	26	public function setUp(): void
	27	{
	28	$this->container = $this->createMock(ShaarliContainer::class);
	29
	30	touch(static::TMP_MOCK_FILE);
	31
	32	$this->container->conf = $this->createMock(ConfigManager::class);
	33	$this->container->conf->method('getConfigFileExt')->willReturn(static::TMP_MOCK_FILE);
	34
	35	$this->container->loginManager = $this->createMock(LoginManager::class);
	36	$this->container->updater = $this->createMock(Updater::class);
	37
	38	$this->container->environment = ['REQUEST_URI' => 'http://shaarli/subfolder/path'];
	39
	40	$this->middleware = new ShaarliAdminMiddleware($this->container);
	41	}
	42
	43	public function tearDown(): void
	44	{
	45	unlink(static::TMP_MOCK_FILE);
	46	}
	47
	48	/**
	49	* Try to access an admin controller while logged out -> redirected to login page.
	50	*/
	51	public function testMiddlewareWhileLoggedOut(): void
	52	{
	53	$this->container->loginManager->expects(static::once())->method('isLoggedIn')->willReturn(false);
	54
	55	$request = $this->createMock(Request::class);
	56	$request->method('getUri')->willReturnCallback(function (): Uri {
	57	$uri = $this->createMock(Uri::class);
	58	$uri->method('getBasePath')->willReturn('/subfolder');
	59
	60	return $uri;
	61	});
	62
	63	$response = new Response();
	64
	65	/** @var Response $result */
	66	$result = $this->middleware->__invoke($request, $response, function () {});
	67
	68	static::assertSame(302, $result->getStatusCode());
	69	static::assertSame(
	70	'/subfolder/login?returnurl=' . urlencode('http://shaarli/subfolder/path'),
	71	$result->getHeader('location')[0]
	72	);
	73	}
	74
	75	/**
	76	* Process controller while logged in.
	77	*/
	78	public function testMiddlewareWhileLoggedIn(): void
	79	{
	80	$this->container->loginManager->method('isLoggedIn')->willReturn(true);
	81
	82	$request = $this->createMock(Request::class);
	83	$request->method('getUri')->willReturnCallback(function (): Uri {
	84	$uri = $this->createMock(Uri::class);
	85	$uri->method('getBasePath')->willReturn('/subfolder');
	86
	87	return $uri;
	88	});
	89
	90	$response = new Response();
	91	$controller = function (Request $request, Response $response): Response {
	92	return $response->withStatus(418); // I'm a tea pot
	93	};
	94
	95	/** @var Response $result */
	96	$result = $this->middleware->__invoke($request, $response, $controller);
	97
	98	static::assertSame(418, $result->getStatusCode());
	99	}
	100	}