AclTest::testIsCurrentUserAllowed() - Code Metrics - Inspection of "Bookable can have a waiting list #9639" - Ecodev/my-ichtus - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Push — master ( 4369d4...a5c076 )

by Adrien

created 2023-05-10 11:48 UTC

AclTest::testIsCurrentUserAllowed() A

↳ Parent: AclTest

Complexity

Conditions	1
Paths	1

Size

Total Lines	34
Code Lines	25

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	1
eloc	25
nc	1
nop	0
dl	0
loc	34
rs	9.52
c	0
b	0
f	0

<?php

declare(strict_types=1);

namespace ApplicationTest\Acl;

use Application\Acl\Acl;
use Application\Model\User;
use PHPUnit\Framework\TestCase;

class AclTest extends TestCase
{
    protected function tearDown(): void
    {
        User::setCurrent(null);
    }

    public function testIsCurrentUserAllowed(): void
    {
        $acl = new Acl();
        $user = new User();

        $owner = new User();
        $owner->setLogin('sarah');
        User::setCurrent($owner);
        $user->timestampCreation();

        User::setCurrent(null);
        self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'anonymous cannot update');
        self::assertSame('Non-logged user with role anonymous is not allowed on resource "User#null" with privilege "update"', $acl->getLastDenialMessage());

        User::setCurrent($owner);
        self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'student cannot update even if owner');
        self::assertSame('User "sarah" with role individual is not allowed on resource "User#null" with privilege "update" because it is not himself', $acl->getLastDenialMessage());

        $other = new User();
        $other->setLogin('john');
        User::setCurrent($other);
        self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'other user cannot update');
        self::assertSame('User "john" with role individual is not allowed on resource "User#null" with privilege "update" because it is not himself', $acl->getLastDenialMessage());

        // Test again the first case to assert that reject reason does not leak from one assertion to the next
        User::setCurrent(null);
        self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'anonymous cannot update');
        self::assertSame('Non-logged user with role anonymous is not allowed on resource "User#null" with privilege "update"', $acl->getLastDenialMessage());

        $administrator = new User(User::ROLE_ADMINISTRATOR);
        $administrator->setLogin('jane');
        User::setCurrent($administrator);
        self::assertTrue($acl->isCurrentUserAllowed($user, 'update'), 'admin can do anything');
        self::assertNull($acl->getLastDenialMessage());
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			namespace ApplicationTest\Acl;
6
7			use Application\Acl\Acl;
8			use Application\Model\User;
9			use PHPUnit\Framework\TestCase;
10
11			class AclTest extends TestCase
12			{
13			protected function tearDown(): void
14			{
15			User::setCurrent(null);
16			}
17
18			public function testIsCurrentUserAllowed(): void
19			{
20			$acl = new Acl();
21			$user = new User();
22
23			$owner = new User();
24			$owner->setLogin('sarah');
25			User::setCurrent($owner);
26			$user->timestampCreation();
27
28			User::setCurrent(null);
29			self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'anonymous cannot update');
30			self::assertSame('Non-logged user with role anonymous is not allowed on resource "User#null" with privilege "update"', $acl->getLastDenialMessage());
31
32			User::setCurrent($owner);
33			self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'student cannot update even if owner');
34			self::assertSame('User "sarah" with role individual is not allowed on resource "User#null" with privilege "update" because it is not himself', $acl->getLastDenialMessage());
35
36			$other = new User();
37			$other->setLogin('john');
38			User::setCurrent($other);
39			self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'other user cannot update');
40			self::assertSame('User "john" with role individual is not allowed on resource "User#null" with privilege "update" because it is not himself', $acl->getLastDenialMessage());
41
42			// Test again the first case to assert that reject reason does not leak from one assertion to the next
43			User::setCurrent(null);
44			self::assertFalse($acl->isCurrentUserAllowed($user, 'update'), 'anonymous cannot update');
45			self::assertSame('Non-logged user with role anonymous is not allowed on resource "User#null" with privilege "update"', $acl->getLastDenialMessage());
46
47			$administrator = new User(User::ROLE_ADMINISTRATOR);
48			$administrator->setLogin('jane');
49			User::setCurrent($administrator);
50			self::assertTrue($acl->isCurrentUserAllowed($user, 'update'), 'admin can do anything');
51			self::assertNull($acl->getLastDenialMessage());
52			}
53			}
54

Ecodev / my-ichtus

Push — master ( 4369d4...a5c076 )

AclTest::testIsCurrentUserAllowed() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like