8f14f5aa21
* database response model * database collection config * new database scopes * database service update * database execption codes * remove read write permission from database model * updating tests and fixing some bugs * server side tests are now passing * databases api * tests for database endpoint * composer update * fix error * formatting * formatting fixes * get database test * more updates to events and usage * more usage updates * fix delete type * fix test * delete database * more fixes * databaseId in attributes and indexes * more fixes * fix issues * fix index subquery * fix console scope and index query * updating tests as required * fix phpcs errors and warnings * updates to review suggestions * UI progress * ui updates and cleaning up * fix type * rework database events * update tests * update types * event generation fixed * events config updated * updating context to support multiple * realtime updates * fix ids * update context * validator updates * fix naming conflict * fix tests * fix lint errors * fix wprler and realtime tests * fix webhooks test * fix event validator and other tests * formatting fixes * removing leftover var_dumps * remove leftover comment * update usage params * usage metrics updates * update database usage * fix usage * specs update * updates to usage * fix UI and usage * fix lints * internal id fixes * fixes for internal Id * renaming services and related files * rename tests * rename doc link * rename readme * fix test name * tests: fixes for 0.15.x sync Co-authored-by: Torsten Dittmann <torsten.dittmann@googlemail.com>
175 lines
6.3 KiB
PHP
175 lines
6.3 KiB
PHP
<?php
|
|
|
|
namespace Tests\E2E\Services\Databases;
|
|
|
|
use Tests\E2E\Client;
|
|
use Tests\E2E\Scopes\Scope;
|
|
use Tests\E2E\Scopes\ProjectCustom;
|
|
use Tests\E2E\Scopes\SideClient;
|
|
|
|
class DatabasesPermissionsMemberTest extends Scope
|
|
{
|
|
use ProjectCustom;
|
|
use SideClient;
|
|
use DatabasesPermissionsScope;
|
|
|
|
public array $collections = [];
|
|
|
|
public function createUsers(): array
|
|
{
|
|
return [
|
|
'user1' => $this->createUser('user1', 'lorem@ipsum.com'),
|
|
'user2' => $this->createUser('user2', 'dolor@ipsum.com'),
|
|
];
|
|
}
|
|
|
|
/**
|
|
* [string[] $read, string[] $write]
|
|
*/
|
|
public function readDocumentsProvider()
|
|
{
|
|
return [
|
|
[['role:all'], []],
|
|
[['role:member'], []],
|
|
[['user:random'], []],
|
|
[['user:lorem'] ,['user:lorem']],
|
|
[['user:dolor'] ,['user:dolor']],
|
|
[['user:dolor', 'user:lorem'] ,['user:dolor']],
|
|
[[], ['role:all']],
|
|
[['role:all'], ['role:all']],
|
|
[['role:member'], ['role:member']],
|
|
[['role:all'], ['role:member']],
|
|
];
|
|
}
|
|
|
|
/**
|
|
* Setup database
|
|
*
|
|
* Data providers lose object state
|
|
* so explicitly pass [$users, $collections] to each iteration
|
|
* @return array
|
|
*/
|
|
public function testSetupDatabase(): array
|
|
{
|
|
$this->createUsers();
|
|
|
|
$db = $this->client->call(Client::METHOD_POST, '/databases', $this->getServerHeader(), [
|
|
'databaseId' => 'unique()',
|
|
'name' => 'Test Database',
|
|
]);
|
|
$this->assertEquals(201, $db['headers']['status-code']);
|
|
|
|
$databaseId = $db['body']['$id'];
|
|
|
|
$public = $this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections', $this->getServerHeader(), [
|
|
'collectionId' => 'unique()',
|
|
'name' => 'Movies',
|
|
'read' => ['role:all'],
|
|
'write' => ['role:all'],
|
|
'permission' => 'document',
|
|
]);
|
|
$this->assertEquals(201, $public['headers']['status-code']);
|
|
|
|
$this->collections = ['public' => $public['body']['$id']];
|
|
|
|
$response = $this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections/' . $this->collections['public'] . '/attributes/string', $this->getServerHeader(), [
|
|
'key' => 'title',
|
|
'size' => 256,
|
|
'required' => true,
|
|
]);
|
|
$this->assertEquals(201, $response['headers']['status-code']);
|
|
|
|
$private = $this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections', $this->getServerHeader(), [
|
|
'collectionId' => 'unique()',
|
|
'name' => 'Private Movies',
|
|
'read' => ['role:member'],
|
|
'write' => ['role:member'],
|
|
'permission' => 'document',
|
|
]);
|
|
$this->assertEquals(201, $private['headers']['status-code']);
|
|
|
|
$this->collections['private'] = $private['body']['$id'];
|
|
|
|
$this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections/' . $this->collections['private'] . '/attributes/string', $this->getServerHeader(), [
|
|
'key' => 'title',
|
|
'size' => 256,
|
|
'required' => true,
|
|
]);
|
|
$this->assertEquals(201, $response['headers']['status-code']);
|
|
|
|
sleep(2);
|
|
|
|
return [
|
|
'users' => $this->users,
|
|
'collections' => $this->collections,
|
|
'databaseId' => $databaseId
|
|
];
|
|
}
|
|
|
|
/**
|
|
* Data provider params are passed before test dependencies
|
|
* @dataProvider readDocumentsProvider
|
|
* @depends testSetupDatabase
|
|
*/
|
|
public function testReadDocuments($read, $write, $data)
|
|
{
|
|
$users = $data['users'];
|
|
$collections = $data['collections'];
|
|
$databaseId = $data['databaseId'];
|
|
|
|
$response = $this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections/' . $collections['public'] . '/documents', $this->getServerHeader(), [
|
|
'documentId' => 'unique()',
|
|
'data' => [
|
|
'title' => 'Lorem',
|
|
],
|
|
'read' => $read,
|
|
'write' => $write,
|
|
]);
|
|
$this->assertEquals(201, $response['headers']['status-code']);
|
|
|
|
$response = $this->client->call(Client::METHOD_POST, '/databases/' . $databaseId . '/collections/' . $collections['private'] . '/documents', $this->getServerHeader(), [
|
|
'documentId' => 'unique()',
|
|
'data' => [
|
|
'title' => 'Lorem',
|
|
],
|
|
'read' => $read,
|
|
'write' => $write,
|
|
]);
|
|
$this->assertEquals(201, $response['headers']['status-code']);
|
|
|
|
/**
|
|
* Check role:all collection
|
|
*/
|
|
$documents = $this->client->call(Client::METHOD_GET, '/databases/' . $databaseId . '/collections/' . $collections['public'] . '/documents', [
|
|
'origin' => 'http://localhost',
|
|
'content-type' => 'application/json',
|
|
'x-appwrite-project' => $this->getProject()['$id'],
|
|
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $users['user1']['session'],
|
|
]);
|
|
|
|
foreach ($documents['body']['documents'] as $document) {
|
|
$hasPermissions = \array_reduce(['role:all', 'role:member', 'user:' . $users['user1']['$id']], function ($carry, $item) use ($document) {
|
|
return $carry ? true : \in_array($item, $document['$read']);
|
|
}, false);
|
|
$this->assertTrue($hasPermissions);
|
|
}
|
|
|
|
/**
|
|
* Check role:member collection
|
|
*/
|
|
$documents = $this->client->call(Client::METHOD_GET, '/databases/' . $databaseId . '/collections/' . $collections['private'] . '/documents', [
|
|
'origin' => 'http://localhost',
|
|
'content-type' => 'application/json',
|
|
'x-appwrite-project' => $this->getProject()['$id'],
|
|
'cookie' => 'a_session_' . $this->getProject()['$id'] . '=' . $users['user1']['session'],
|
|
]);
|
|
|
|
foreach ($documents['body']['documents'] as $document) {
|
|
$hasPermissions = \array_reduce(['role:all', 'role:member', 'user:' . $users['user1']['$id']], function ($carry, $item) use ($document) {
|
|
return $carry ? true : \in_array($item, $document['$read']);
|
|
}, false);
|
|
$this->assertTrue($hasPermissions);
|
|
}
|
|
}
|
|
}
|