blessing-skin-server/tests/MiddlewareTest.php

209 lines
6.1 KiB
PHP
Raw Normal View History

<?php
2018-08-17 15:25:08 +08:00
namespace Tests;
use DB;
2017-11-30 10:02:29 +08:00
use App\Models\User;
use App\Services\Facades\Option;
2018-08-17 15:25:08 +08:00
use Illuminate\Support\Facades\Schema;
use Illuminate\Foundation\Testing\WithoutMiddleware;
use Illuminate\Foundation\Testing\DatabaseMigrations;
use Illuminate\Foundation\Testing\DatabaseTransactions;
class MiddlewareTest extends TestCase
{
use DatabaseTransactions;
public function testCheckAuthenticated()
{
// Not logged in
2018-07-13 16:05:20 +08:00
$this->get('/user')->assertRedirect('auth/login');
$this->assertGuest();
// Normal user
$this->actAs('normal')
->assertAuthenticated();
// Banned User
$this->actAs('banned')
2018-07-13 16:05:20 +08:00
->get('/user')
->assertSee('banned')
->assertStatus(403);
// Binding email
2018-08-17 15:25:08 +08:00
$noEmailUser = factory(\App\Models\User::class)->create(['email' => '']);
$this->actingAs($noEmailUser)
->get('/user')
->assertSee('Bind')
->assertDontSee('User Center');
$this->actingAs($noEmailUser)
2017-11-30 10:02:29 +08:00
->get('/user?email=email')
2018-07-13 16:05:20 +08:00
->assertSee('Bind');
2017-11-30 10:02:29 +08:00
$other = factory(User::class)->create();
$this->actingAs($noEmailUser)
2017-11-30 10:02:29 +08:00
->get('/user?email='.$other->email)
2018-07-13 16:05:20 +08:00
->assertSee(trans('auth.bind.registered'));
2017-11-30 10:02:29 +08:00
$this->actingAs($noEmailUser)
2017-11-30 10:02:29 +08:00
->get('/user?email=a@b.c')
2018-07-13 16:05:20 +08:00
->assertSee('User Center');
2017-11-30 10:02:29 +08:00
$this->assertEquals('a@b.c', User::find($noEmailUser->uid)->email);
}
2018-08-17 12:32:44 +08:00
public function testCheckUserVerified()
{
$unverified = factory(User::class)->create(['verified' => false]);
option(['require_verification' => false]);
$this->actingAs($unverified)
->get('/skinlib/upload')
->assertSuccessful();
option(['require_verification' => true]);
$this->actingAs($unverified)
->get('/skinlib/upload')
->assertStatus(403)
->assertSee(trans('auth.check.verified'));
$this->actAs('normal')
->get('/skinlib/upload')
->assertSuccessful();
}
public function testCheckAdministrator()
{
// Without logged in
2018-07-13 16:05:20 +08:00
$this->get('/admin')->assertRedirect('/auth/login');
// Normal user
$this->actAs('normal')
->get('/admin')
2018-07-13 16:05:20 +08:00
->assertStatus(403);
// Admin
$this->actAs('admin')
2018-07-13 16:05:20 +08:00
->get('/admin')
->assertSuccessful();
// Super admin
$this->actAs('superAdmin')
2018-07-13 16:05:20 +08:00
->get('/admin')
->assertSuccessful();
}
public function testCheckSuperAdmin()
{
// Admin
$this->actAs('admin')
->get('/admin/plugins/manage')
->assertForbidden();
// Super admin
$this->actAs('superAdmin')
->get('/admin/plugins/manage')
->assertSuccessful();
}
public function testCheckInstallation()
{
2018-07-13 16:05:20 +08:00
$this->get('/setup')->assertSee('Already installed');
$tables = [
'closets', 'migrations', 'options', 'players', 'textures', 'users'
];
array_walk($tables, function ($table) {
Schema::dropIfExists($table);
});
2018-07-13 16:05:20 +08:00
$this->get('/setup')->assertSee(trans(
'setup.wizard.welcome.text',
['version' => config('app.version')]
));
DB::shouldReceive('connection')->once()->andThrow(new \Exception('fake exception'));
DB::shouldReceive('disconnect')->andReturnSelf();
$this->get('/setup')->assertSee(trans(
'setup.wizard.welcome.text',
['version' => config('app.version')]
));
}
public function testCheckPlayerExist()
{
2018-07-13 16:05:20 +08:00
$this->getJson('/nope.json')
->assertStatus(404)
2018-08-14 01:00:02 +08:00
->assertSee(trans('general.unexistent-player'));
$this->get('/skin/nope.png')
2018-07-13 16:05:20 +08:00
->assertStatus(404)
2018-08-14 01:00:02 +08:00
->assertSee(trans('general.unexistent-player'));
Option::set('return_204_when_notfound', true);
$this->getJson('/nope.json')->assertStatus(204);
2018-08-17 15:25:08 +08:00
$player = factory(\App\Models\Player::class)->create();
2018-07-13 16:05:20 +08:00
$this->getJson("/{$player->player_name}.json")
->assertJson(['username' => $player->player_name]); // Default is CSL API
$this->expectsEvents(\App\Events\CheckPlayerExists::class);
2018-07-13 16:05:20 +08:00
$this->getJson("/{$player->player_name}.json");
$player = factory(\App\Models\Player::class)->create();
2018-07-16 10:22:19 +08:00
$user = $player->user;
$this->actAs($user)
2018-07-13 16:05:20 +08:00
->postJson('/user/player/rename', [
'pid' => -1,
'new_player_name' => 'name'
2018-07-13 16:05:20 +08:00
])->assertJson([
'errno' => 1,
'msg' => trans('general.unexistent-player')
]);
$this->actAs($user)
2018-07-13 16:05:20 +08:00
->postJson('/user/player/rename', [
'pid' => $player->pid,
'new_player_name' => 'name'
2018-07-13 16:05:20 +08:00
])->assertJson([
'errno' => 0
]);
}
public function testCheckPlayerOwner()
{
$other_user = factory(\App\Models\User::class)->create();
$player = factory(\App\Models\Player::class)->create();
2018-07-16 10:22:19 +08:00
$owner = $player->user;
$this->actAs($other_user)
2018-07-13 16:05:20 +08:00
->get('/user/player')
->assertSuccessful();
$this->actAs($other_user)
2018-07-13 16:05:20 +08:00
->postJson('/user/player/rename', [
'pid' => $player->pid
2018-07-13 16:05:20 +08:00
])->assertJson([
'errno' => 1,
'msg' => trans('admin.players.no-permission')
]);
$this->actAs($owner)
2018-07-13 16:05:20 +08:00
->postJson('/user/player/rename', [
'pid' => $player->pid,
'new_player_name' => 'name'
2018-07-13 16:05:20 +08:00
])->assertJson([
'errno' => 0
]);
}
public function testRedirectIfAuthenticated()
{
2018-07-13 16:05:20 +08:00
$this->get('/auth/login')
->assertViewIs('auth.login')
2018-08-14 01:00:02 +08:00
->assertDontSee(trans('general.user-center'));
$this->actingAs(factory(User::class)->create())
2018-07-13 16:05:20 +08:00
->get('/auth/login')
->assertRedirect('/user');
}
}