SecurityTest::loadSecurityConfiguration() - Code Metrics - Inspection of "Merge pull request #53 from RonRademaker/security-..." - thephpleague/tactician-bundle - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 3cf359...170aa5 )

by Ross

created 2017-06-21 15:27 UTC

SecurityTest::loadSecurityConfiguration() A

↳ Parent: SecurityTest

Complexity

Conditions	1
Paths	1

Size

Total Lines	20
Code Lines	4

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	20
rs	9.4285
c	0
b	0
f	0
cc	1
eloc	4
nc	1
nop	0

<?php

namespace League\Tactician\Bundle\Tests\Integration;

use League\Tactician\Bundle\DependencyInjection\Compiler\UnknownMiddlewareException;
use League\Tactician\Bundle\Tests\Fake\FakeCommand;
use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
use Symfony\Component\Security\Core\Exception\AccessDeniedException;
use Symfony\Component\Security\Core\Role\Role;

/**
 * Integration test for security middleware.
 *
 * @author Ron Rademaker
 */
class SecurityTest extends IntegrationTest
{
    /**
     * Tests if the kernel is bootable with security middleware.
     *
     * @return void
     */
    public function testCanBootKernelWithSecurityMiddleware()
    {
        $this->loadSecurityConfiguration();

        $this->givenConfig('tactician', <<<'EOF'
commandbus:
    default:
        middleware:
            - tactician.middleware.security
EOF
        );
        static::$kernel->boot();
        $this->assertTrue(true);
    }

    /**
     * Tests if the kernel is not bootable without security settings (but with security middleware).
     *
     * @return void
     */
    public function testCanNotBootKernelWithoutSecurity()
    {
        $this->expectException(UnknownMiddlewareException::class);
        $this->givenConfig('tactician', <<<'EOF'
commandbus:
    default:
        middleware:
            - tactician.middleware.security
EOF
        );
        static::$kernel->boot();
    }

    /**
     * Tests if the kernel is bootable without security middleware and without security settings.
     */
    public function testCanBootKernelWithoutSecurity()
    {
        static::$kernel->boot();
        $this->assertTrue(true);
    }

    /**
     * Tests security middleware.
     *
     * @dataProvider provideTestData
     *
     * @param string $role
     * @param bool $allowed
     */
    public function testSecurityMiddleware(string $role, bool $allowed)
    {
        if (false === $allowed) {
            $this->expectException(AccessDeniedException::class);
        }

        $this->loadSecurityConfiguration();
        $this->givenConfig('tactician', <<<'EOF'
commandbus:
    default:
        middleware:
            - tactician.middleware.security
security:
    League\Tactician\Bundle\Tests\Fake\FakeCommand:
        - 'ROLE_ADMIN'
EOF
        );

        static::$kernel->boot();
        static::$kernel->getContainer()->get('security.token_storage')->setToken(new AnonymousToken('test', 'anon', [new Role($role)]));
        static::$kernel->getContainer()->get('tactician.commandbus.default')->handle(new FakeCommand());

        $this->assertTrue($allowed);
    }

    /**
     * Gets test data for security middleware integration test.
     *
     * @return array
     */
    public function provideTestData(): array
    {
        return [
            'Role may handle the command' => ['ROLE_ADMIN', true],
            'Test role hierarchy' => ['ROLE_SUPER_ADMIN', true],
            'Role may not handle the command' => ['ROLE_USER', false],
        ];
    }

    /**
     * Security configuration.
     */
    private function loadSecurityConfiguration()
    {
        $this->givenConfig('security', <<< 'EOF'
access_denied_url: /

role_hierarchy:
    ROLE_ADMIN:       ROLE_USER
    ROLE_SUPER_ADMIN: ROLE_ADMIN

providers:
    my_in_memory_provider:
        memory:

firewalls:
    main:
        anonymous: ~
        http_basic: ~
EOF
        );
    }
}


1			<?php
2
3			namespace League\Tactician\Bundle\Tests\Integration;
4
5			use League\Tactician\Bundle\DependencyInjection\Compiler\UnknownMiddlewareException;
6			use League\Tactician\Bundle\Tests\Fake\FakeCommand;
7			use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
8			use Symfony\Component\Security\Core\Exception\AccessDeniedException;
9			use Symfony\Component\Security\Core\Role\Role;
10
11			/**
12			* Integration test for security middleware.
13			*
14			* @author Ron Rademaker
15			*/
16			class SecurityTest extends IntegrationTest
17			{
18			/**
19			* Tests if the kernel is bootable with security middleware.
20			*
21			* @return void
22			*/
23			public function testCanBootKernelWithSecurityMiddleware()
24			{
25			$this->loadSecurityConfiguration();
26
27			$this->givenConfig('tactician', <<<'EOF'
28			commandbus:
29			default:
30			middleware:
31			- tactician.middleware.security
32			EOF
33			);
34			static::$kernel->boot();
35			$this->assertTrue(true);
36			}
37
38			/**
39			* Tests if the kernel is not bootable without security settings (but with security middleware).
40			*
41			* @return void
42			*/
43			public function testCanNotBootKernelWithoutSecurity()
44			{
45			$this->expectException(UnknownMiddlewareException::class);
46			$this->givenConfig('tactician', <<<'EOF'
47			commandbus:
48			default:
49			middleware:
50			- tactician.middleware.security
51			EOF
52			);
53			static::$kernel->boot();
54			}
55
56			/**
57			* Tests if the kernel is bootable without security middleware and without security settings.
58			*/
59			public function testCanBootKernelWithoutSecurity()
60			{
61			static::$kernel->boot();
62			$this->assertTrue(true);
63			}
64
65			/**
66			* Tests security middleware.
67			*
68			* @dataProvider provideTestData
69			*
70			* @param string $role
71			* @param bool $allowed
72			*/
73			public function testSecurityMiddleware(string $role, bool $allowed)
74			{
75			if (false === $allowed) {
76			$this->expectException(AccessDeniedException::class);
77			}
78
79			$this->loadSecurityConfiguration();
80			$this->givenConfig('tactician', <<<'EOF'
81			commandbus:
82			default:
83			middleware:
84			- tactician.middleware.security
85			security:
86			League\Tactician\Bundle\Tests\Fake\FakeCommand:
87			- 'ROLE_ADMIN'
88			EOF
89			);
90
91			static::$kernel->boot();
92			static::$kernel->getContainer()->get('security.token_storage')->setToken(new AnonymousToken('test', 'anon', [new Role($role)]));
93			static::$kernel->getContainer()->get('tactician.commandbus.default')->handle(new FakeCommand());
94
95			$this->assertTrue($allowed);
96			}
97
98			/**
99			* Gets test data for security middleware integration test.
100			*
101			* @return array
102			*/
103			public function provideTestData(): array
104			{
105			return [
106			'Role may handle the command' => ['ROLE_ADMIN', true],
107			'Test role hierarchy' => ['ROLE_SUPER_ADMIN', true],
108			'Role may not handle the command' => ['ROLE_USER', false],
109			];
110			}
111
112			/**
113			* Security configuration.
114			*/
115			private function loadSecurityConfiguration()
116			{
117			$this->givenConfig('security', <<< 'EOF'
118			access_denied_url: /
119
120			role_hierarchy:
121			ROLE_ADMIN: ROLE_USER
122			ROLE_SUPER_ADMIN: ROLE_ADMIN
123
124			providers:
125			my_in_memory_provider:
126			memory:
127
128			firewalls:
129			main:
130			anonymous: ~
131			http_basic: ~
132			EOF
133			);
134			}
135			}
136

thephpleague / tactician-bundle

Push — master ( 3cf359...170aa5 )

SecurityTest::loadSecurityConfiguration() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like