首页 发现 帮助
注册 登录
aj
/
chamilo-lms2
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 76a0eae5ea
分支列表 标签列表
chamilo-lms2
/
vendor
/
symfony
/
security-acl
/
Tests
/
Dbal
/
AclProviderTest.php

AclProviderTest.php 9.8 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Symfony package.
    5. 

  5.  *
    6. 

  6.  * (c) Fabien Potencier <fabien@symfony.com>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Symfony\Component\Security\Acl\Tests\Dbal;
    13. 

  13. 

  14. use Symfony\Component\Security\Acl\Dbal\AclProvider;
    15. 

  15. use Symfony\Component\Security\Acl\Domain\PermissionGrantingStrategy;
    16. 

  16. use Symfony\Component\Security\Acl\Domain\ObjectIdentity;
    17. 

  17. use Symfony\Component\Security\Acl\Dbal\Schema;
    18. 

  18. use Doctrine\DBAL\DriverManager;
    19. 

  19. 

  20. /**
    21. 

  21.  * @requires extension pdo_sqlite
    22. 

  22.  */
    23. 

  23. class AclProviderTest extends \PHPUnit_Framework_TestCase
    24. 

  24. {
    25. 

  25.     protected $con;
    26. 

  26.     protected $insertClassStmt;
    27. 

  27.     protected $insertEntryStmt;
    28. 

  28.     protected $insertOidStmt;
    29. 

  29.     protected $insertOidAncestorStmt;
    30. 

  30.     protected $insertSidStmt;
    31. 

  31. 

  32.     /**
    33. 

  33.      * @expectedException \Symfony\Component\Security\Acl\Exception\AclNotFoundException
    34. 

  34.      * @expectedMessage There is no ACL for the given object identity.
    35. 

  35.      */
    36. 

  36.     public function testFindAclThrowsExceptionWhenNoAclExists()
    37. 

  37.     {
    38. 

  38.         $this->getProvider()->findAcl(new ObjectIdentity('foo', 'foo'));
    39. 

  39.     }
    40. 

  40. 

  41.     public function testFindAclsThrowsExceptionUnlessAnACLIsFoundForEveryOID()
    42. 

  42.     {
    43. 

  43.         $oids = array();
    44. 

  44.         $oids[] = new ObjectIdentity('1', 'foo');
    45. 

  45.         $oids[] = new ObjectIdentity('foo', 'foo');
    46. 

  46. 

  47.         try {
    48. 

  48.             $this->getProvider()->findAcls($oids);
    49. 

  49. 

  50.             $this->fail('Provider did not throw an expected exception.');
    51. 

  51.         } catch (\Exception $e) {
    52. 

  52.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\AclNotFoundException', $e);
    53. 

  53.             $this->assertInstanceOf('Symfony\Component\Security\Acl\Exception\NotAllAclsFoundException', $e);
    54. 

  54. 

  55.             $partialResult = $e->getPartialResult();
    56. 

  56.             $this->assertTrue($partialResult->contains($oids[0]));
    57. 

  57.             $this->assertFalse($partialResult->contains($oids[1]));
    58. 

  58.         }
    59. 

  59.     }
    60. 

  60. 

  61.     public function testFindAcls()
    62. 

  62.     {
    63. 

  63.         $oids = array();
    64. 

  64.         $oids[] = new ObjectIdentity('1', 'foo');
    65. 

  65.         $oids[] = new ObjectIdentity('2', 'foo');
    66. 

  66. 

  67.         $provider = $this->getProvider();
    68. 

  68. 

  69.         $acls = $provider->findAcls($oids);
    70. 

  70.         $this->assertInstanceOf('SplObjectStorage', $acls);
    71. 

  71.         $this->assertCount(2, $acls);
    72. 

  72.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl0 = $acls->offsetGet($oids[0]));
    73. 

  73.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl1 = $acls->offsetGet($oids[1]));
    74. 

  74.         $this->assertTrue($oids[0]->equals($acl0->getObjectIdentity()));
    75. 

  75.         $this->assertTrue($oids[1]->equals($acl1->getObjectIdentity()));
    76. 

  76.     }
    77. 

  77. 

  78.     public function testFindAclsWithDifferentTypes()
    79. 

  79.     {
    80. 

  80.         $oids = array();
    81. 

  81.         $oids[] = new ObjectIdentity('123', 'Bundle\SomeVendor\MyBundle\Entity\SomeEntity');
    82. 

  82.         $oids[] = new ObjectIdentity('123', 'Bundle\MyBundle\Entity\AnotherEntity');
    83. 

  83. 

  84.         $provider = $this->getProvider();
    85. 

  85. 

  86.         $acls = $provider->findAcls($oids);
    87. 

  87.         $this->assertInstanceOf('SplObjectStorage', $acls);
    88. 

  88.         $this->assertCount(2, $acls);
    89. 

  89.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl0 = $acls->offsetGet($oids[0]));
    90. 

  90.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl1 = $acls->offsetGet($oids[1]));
    91. 

  91.         $this->assertTrue($oids[0]->equals($acl0->getObjectIdentity()));
    92. 

  92.         $this->assertTrue($oids[1]->equals($acl1->getObjectIdentity()));
    93. 

  93.     }
    94. 

  94. 

  95.     public function testFindAclCachesAclInMemory()
    96. 

  96.     {
    97. 

  97.         $oid = new ObjectIdentity('1', 'foo');
    98. 

  98.         $provider = $this->getProvider();
    99. 

  99. 

  100.         $acl = $provider->findAcl($oid);
    101. 

  101.         $this->assertSame($acl, $cAcl = $provider->findAcl($oid));
    102. 

  102. 

  103.         $cAces = $cAcl->getObjectAces();
    104. 

  104.         foreach ($acl->getObjectAces() as $index => $ace) {
    105. 

  105.             $this->assertSame($ace, $cAces[$index]);
    106. 

  106.         }
    107. 

  107.     }
    108. 

  108. 

  109.     public function testFindAcl()
    110. 

  110.     {
    111. 

  111.         $oid = new ObjectIdentity('1', 'foo');
    112. 

  112.         $provider = $this->getProvider();
    113. 

  113. 

  114.         $acl = $provider->findAcl($oid);
    115. 

  115. 

  116.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Acl', $acl);
    117. 

  117.         $this->assertTrue($oid->equals($acl->getObjectIdentity()));
    118. 

  118.         $this->assertEquals(4, $acl->getId());
    119. 

  119.         $this->assertCount(0, $acl->getClassAces());
    120. 

  120.         $this->assertCount(0, $this->getField($acl, 'classFieldAces'));
    121. 

  121.         $this->assertCount(3, $acl->getObjectAces());
    122. 

  122.         $this->assertCount(0, $this->getField($acl, 'objectFieldAces'));
    123. 

  123. 

  124.         $aces = $acl->getObjectAces();
    125. 

  125.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\Entry', $aces[0]);
    126. 

  126.         $this->assertTrue($aces[0]->isGranting());
    127. 

  127.         $this->assertTrue($aces[0]->isAuditSuccess());
    128. 

  128.         $this->assertTrue($aces[0]->isAuditFailure());
    129. 

  129.         $this->assertEquals('all', $aces[0]->getStrategy());
    130. 

  130.         $this->assertSame(2, $aces[0]->getMask());
    131. 

  131. 

  132.         // check ACE are in correct order
    133. 

  133.         $i = 0;
    134. 

  134.         foreach ($aces as $index => $ace) {
    135. 

  135.             $this->assertEquals($i, $index);
    136. 

  136.             ++$i;
    137. 

  137.         }
    138. 

  138. 

  139.         $sid = $aces[0]->getSecurityIdentity();
    140. 

  140.         $this->assertInstanceOf('Symfony\Component\Security\Acl\Domain\UserSecurityIdentity', $sid);
    141. 

  141.         $this->assertEquals('john.doe', $sid->getUsername());
    142. 

  142.         $this->assertEquals('SomeClass', $sid->getClass());
    143. 

  143.     }
    144. 

  144. 

  145.     protected function setUp()
    146. 

  146.     {
    147. 

  147.         $this->con = DriverManager::getConnection(array(
    148. 

  148.             'driver' => 'pdo_sqlite',
    149. 

  149.             'memory' => true,
    150. 

  150.         ));
    151. 

  151. 

  152.         // import the schema
    153. 

  153.         $schema = new Schema($options = $this->getOptions());
    154. 

  154.         foreach ($schema->toSql($this->con->getDatabasePlatform()) as $sql) {
    155. 

  155.             $this->con->exec($sql);
    156. 

  156.         }
    157. 

  157. 

  158.         // populate the schema with some test data
    159. 

  159.         $this->insertClassStmt = $this->con->prepare('INSERT INTO acl_classes (id, class_type) VALUES (?, ?)');
    160. 

  160.         foreach ($this->getClassData() as $data) {
    161. 

  161.             $this->insertClassStmt->execute($data);
    162. 

  162.         }
    163. 

  163. 

  164.         $this->insertSidStmt = $this->con->prepare('INSERT INTO acl_security_identities (id, identifier, username) VALUES (?, ?, ?)');
    165. 

  165.         foreach ($this->getSidData() as $data) {
    166. 

  166.             $this->insertSidStmt->execute($data);
    167. 

  167.         }
    168. 

  168. 

  169.         $this->insertOidStmt = $this->con->prepare('INSERT INTO acl_object_identities (id, class_id, object_identifier, parent_object_identity_id, entries_inheriting) VALUES (?, ?, ?, ?, ?)');
    170. 

  170.         foreach ($this->getOidData() as $data) {
    171. 

  171.             $this->insertOidStmt->execute($data);
    172. 

  172.         }
    173. 

  173. 

  174.         $this->insertEntryStmt = $this->con->prepare('INSERT INTO acl_entries (id, class_id, object_identity_id, field_name, ace_order, security_identity_id, mask, granting, granting_strategy, audit_success, audit_failure) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)');
    175. 

  175.         foreach ($this->getEntryData() as $data) {
    176. 

  176.             $this->insertEntryStmt->execute($data);
    177. 

  177.         }
    178. 

  178. 

  179.         $this->insertOidAncestorStmt = $this->con->prepare('INSERT INTO acl_object_identity_ancestors (object_identity_id, ancestor_id) VALUES (?, ?)');
    180. 

  180.         foreach ($this->getOidAncestorData() as $data) {
    181. 

  181.             $this->insertOidAncestorStmt->execute($data);
    182. 

  182.         }
    183. 

  183.     }
    184. 

  184. 

  185.     protected function tearDown()
    186. 

  186.     {
    187. 

  187.         $this->con = null;
    188. 

  188.     }
    189. 

  189. 

  190.     protected function getField($object, $field)
    191. 

  191.     {
    192. 

  192.         $reflection = new \ReflectionProperty($object, $field);
    193. 

  193.         $reflection->setAccessible(true);
    194. 

  194. 

  195.         return $reflection->getValue($object);
    196. 

  196.     }
    197. 

  197. 

  198.     protected function getEntryData()
    199. 

  199.     {
    200. 

  200.         // id, cid, oid, field, order, sid, mask, granting, strategy, a success, a failure
    201. 

  201.         return array(
    202. 

  202.             array(1, 1, 1, null, 0, 1, 1, 1, 'all', 1, 1),
    203. 

  203.             array(2, 1, 1, null, 1, 2, 1 << 2 | 1 << 1, 0, 'any', 0, 0),
    204. 

  204.             array(3, 3, 4, null, 0, 1, 2, 1, 'all', 1, 1),
    205. 

  205.             array(4, 3, 4, null, 2, 2, 1, 1, 'all', 1, 1),
    206. 

  206.             array(5, 3, 4, null, 1, 3, 1, 1, 'all', 1, 1),
    207. 

  207.         );
    208. 

  208.     }
    209. 

  209. 

  210.     protected function getOidData()
    211. 

  211.     {
    212. 

  212.         // id, cid, oid, parent_oid, entries_inheriting
    213. 

  213.         return array(
    214. 

  214.             array(1, 1, '123', null, 1),
    215. 

  215.             array(2, 2, '123', 1, 1),
    216. 

  216.             array(3, 2, 'i:3:123', 1, 1),
    217. 

  217.             array(4, 3, '1', 2, 1),
    218. 

  218.             array(5, 3, '2', 2, 1),
    219. 

  219.         );
    220. 

  220.     }
    221. 

  221. 

  222.     protected function getOidAncestorData()
    223. 

  223.     {
    224. 

  224.         return array(
    225. 

  225.             array(1, 1),
    226. 

  226.             array(2, 1),
    227. 

  227.             array(2, 2),
    228. 

  228.             array(3, 1),
    229. 

  229.             array(3, 3),
    230. 

  230.             array(4, 2),
    231. 

  231.             array(4, 1),
    232. 

  232.             array(4, 4),
    233. 

  233.             array(5, 2),
    234. 

  234.             array(5, 1),
    235. 

  235.             array(5, 5),
    236. 

  236.         );
    237. 

  237.     }
    238. 

  238. 

  239.     protected function getSidData()
    240. 

  240.     {
    241. 

  241.         return array(
    242. 

  242.             array(1, 'SomeClass-john.doe', 1),
    243. 

  243.             array(2, 'MyClass-john.doe@foo.com', 1),
    244. 

  244.             array(3, 'FooClass-123', 1),
    245. 

  245.             array(4, 'MooClass-ROLE_USER', 1),
    246. 

  246.             array(5, 'ROLE_USER', 0),
    247. 

  247.             array(6, 'IS_AUTHENTICATED_FULLY', 0),
    248. 

  248.         );
    249. 

  249.     }
    250. 

  250. 

  251.     protected function getClassData()
    252. 

  252.     {
    253. 

  253.         return array(
    254. 

  254.             array(1, 'Bundle\SomeVendor\MyBundle\Entity\SomeEntity'),
    255. 

  255.             array(2, 'Bundle\MyBundle\Entity\AnotherEntity'),
    256. 

  256.             array(3, 'foo'),
    257. 

  257.         );
    258. 

  258.     }
    259. 

  259. 

  260.     protected function getOptions()
    261. 

  261.     {
    262. 

  262.         return array(
    263. 

  263.             'oid_table_name' => 'acl_object_identities',
    264. 

  264.             'oid_ancestors_table_name' => 'acl_object_identity_ancestors',
    265. 

  265.             'class_table_name' => 'acl_classes',
    266. 

  266.             'sid_table_name' => 'acl_security_identities',
    267. 

  267.             'entry_table_name' => 'acl_entries',
    268. 

  268.         );
    269. 

  269.     }
    270. 

  270. 

  271.     protected function getStrategy()
    272. 

  272.     {
    273. 

  273.         return new PermissionGrantingStrategy();
    274. 

  274.     }
    275. 

  275. 

  276.     protected function getProvider()
    277. 

  277.     {
    278. 

  278.         return new AclProvider($this->con, $this->getStrategy(), $this->getOptions());
    279. 

  279.     }
    280. 

  280. }
    281.