|
@@ 22-44 (lines=23) @@
|
| 19 |
|
} |
| 20 |
|
} |
| 21 |
|
|
| 22 |
|
public function testClient() |
| 23 |
|
{ |
| 24 |
|
$this->assertTrue($this->auth->checkAccess('role:client', 'restore-password')); |
| 25 |
|
$this->assertTrue($this->auth->checkAccess('role:client', 'deposit')); |
| 26 |
|
$this->assertTrue($this->auth->checkAccess('role:client', 'domain.pay')); |
| 27 |
|
$this->assertTrue($this->auth->checkAccess('role:client', 'domain.push')); |
| 28 |
|
$this->assertTrue($this->auth->checkAccess('role:client', 'server.pay')); |
| 29 |
|
|
| 30 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'support')); |
| 31 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'manage')); |
| 32 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'employee.read')); |
| 33 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'domain.freeze')); |
| 34 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'domain.unfreeze')); |
| 35 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'domain.force-push')); |
| 36 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'domain.delete')); |
| 37 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'admin')); |
| 38 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'resell')); |
| 39 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'own')); |
| 40 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'document.manage')); |
| 41 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'contact.force-verify')); |
| 42 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'mailing.prepare')); |
| 43 |
|
$this->assertFalse($this->auth->checkAccess('role:client', 'mailing.send')); |
| 44 |
|
} |
| 45 |
|
|
| 46 |
|
public function testSupport() |
| 47 |
|
{ |
|
@@ 147-172 (lines=26) @@
|
| 144 |
|
$this->assertFalse($this->auth->checkAccess('user:mighty', 'domain.unfreeze')); |
| 145 |
|
} |
| 146 |
|
|
| 147 |
|
public function testDeny() |
| 148 |
|
{ |
| 149 |
|
$this->auth->setAssignments('role:client,deny:deposit,deny:domain.push,deny:server.pay', 'user:limited'); |
| 150 |
|
|
| 151 |
|
$this->assertTrue($this->auth->checkAccess('user:limited', 'restore-password')); |
| 152 |
|
$this->assertTrue($this->auth->checkAccess('user:limited', 'domain.pay')); |
| 153 |
|
|
| 154 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'deposit')); |
| 155 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'domain.push')); |
| 156 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'server.pay')); |
| 157 |
|
|
| 158 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'support')); |
| 159 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'manage')); |
| 160 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'employee.read')); |
| 161 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'domain.freeze')); |
| 162 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'domain.unfreeze')); |
| 163 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'domain.force-push')); |
| 164 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'domain.delete')); |
| 165 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'admin')); |
| 166 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'resell')); |
| 167 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'own')); |
| 168 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'document.manage')); |
| 169 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'contact.force-verify')); |
| 170 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'mailing.prepare')); |
| 171 |
|
$this->assertFalse($this->auth->checkAccess('user:limited', 'mailing.send')); |
| 172 |
|
} |
| 173 |
|
} |
| 174 |
|
|
hiqdev /
hipanel-rbac
