summaryrefslogtreecommitdiff
path: root/tests/units/Core/Security/AccessMapTest.php
diff options
context:
space:
mode:
Diffstat (limited to 'tests/units/Core/Security/AccessMapTest.php')
-rw-r--r--tests/units/Core/Security/AccessMapTest.php53
1 files changed, 53 insertions, 0 deletions
diff --git a/tests/units/Core/Security/AccessMapTest.php b/tests/units/Core/Security/AccessMapTest.php
new file mode 100644
index 00000000..ae8044c9
--- /dev/null
+++ b/tests/units/Core/Security/AccessMapTest.php
@@ -0,0 +1,53 @@
+<?php
+
+require_once __DIR__.'/../../Base.php';
+
+use Kanboard\Core\Security\AccessMap;
+
+class AccessMapTest extends Base
+{
+ public function testRoleHierarchy()
+ {
+ $acl = new AccessMap;
+ $acl->setRoleHierarchy('admin', array('manager', 'user'));
+ $acl->setRoleHierarchy('manager', array('user'));
+
+ $this->assertEquals(array('admin'), $acl->getRoleHierarchy('admin'));
+ $this->assertEquals(array('manager', 'admin'), $acl->getRoleHierarchy('manager'));
+ $this->assertEquals(array('user', 'admin', 'manager'), $acl->getRoleHierarchy('user'));
+ }
+
+ public function testGetHighestRole()
+ {
+ $acl = new AccessMap;
+ $acl->setRoleHierarchy('manager', array('member', 'viewer'));
+ $acl->setRoleHierarchy('member', array('viewer'));
+
+ $this->assertEquals('manager', $acl->getHighestRole(array('viewer', 'manager', 'member')));
+ $this->assertEquals('manager', $acl->getHighestRole(array('viewer', 'manager')));
+ $this->assertEquals('manager', $acl->getHighestRole(array('manager', 'member')));
+ $this->assertEquals('member', $acl->getHighestRole(array('viewer', 'member')));
+ $this->assertEquals('member', $acl->getHighestRole(array('member')));
+ $this->assertEquals('viewer', $acl->getHighestRole(array('viewer')));
+ }
+
+ public function testAddRulesAndGetRoles()
+ {
+ $acl = new AccessMap;
+ $acl->setDefaultRole('role3');
+ $acl->setRoleHierarchy('role2', array('role1'));
+
+ $acl->add('MyController', 'myAction1', 'role2');
+ $acl->add('MyController', 'myAction2', 'role1');
+ $acl->add('MyAdminController', '*', 'role2');
+ $acl->add('SomethingElse', array('actionA', 'actionB'), 'role2');
+
+ $this->assertEquals(array('role2'), $acl->getRoles('mycontroller', 'MyAction1'));
+ $this->assertEquals(array('role1', 'role2'), $acl->getRoles('mycontroller', 'MyAction2'));
+ $this->assertEquals(array('role2'), $acl->getRoles('Myadmincontroller', 'MyAction'));
+ $this->assertEquals(array('role3'), $acl->getRoles('AnotherController', 'ActionNotFound'));
+ $this->assertEquals(array('role2'), $acl->getRoles('somethingelse', 'actiona'));
+ $this->assertEquals(array('role2'), $acl->getRoles('somethingelse', 'actionb'));
+ $this->assertEquals(array('role3'), $acl->getRoles('somethingelse', 'actionc'));
+ }
+}
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-21 16:26:01 +0000