1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-18 00:53:10 +01:00
invoiceninja/tests/Feature/UserTest.php

248 lines
8.1 KiB
PHP
Raw Normal View History

2019-06-17 01:58:33 +02:00
<?php
2020-09-14 13:11:46 +02:00
/**
* Invoice Ninja (https://invoiceninja.com).
*
* @link https://github.com/invoiceninja/invoiceninja source repository
*
* @copyright Copyright (c) 2021. Invoice Ninja LLC (https://invoiceninja.com)
2020-09-14 13:11:46 +02:00
*
* @license https://opensource.org/licenses/AAL
*/
2020-10-28 11:10:49 +01:00
namespace Tests\Feature;
2019-06-17 01:58:33 +02:00
use App\Factory\CompanyUserFactory;
use App\Factory\UserFactory;
2020-06-27 06:09:16 +02:00
use App\Http\Middleware\PasswordProtection;
2019-06-17 01:58:33 +02:00
use App\Models\Company;
use App\Models\CompanyToken;
use App\Models\CompanyUser;
2019-06-17 01:58:33 +02:00
use App\Models\User;
use Illuminate\Database\Eloquent\Model;
use Illuminate\Foundation\Testing\DatabaseTransactions;
use Illuminate\Routing\Middleware\ThrottleRequests;
2019-06-17 01:58:33 +02:00
use Illuminate\Support\Facades\Session;
use Illuminate\Validation\ValidationException;
2019-06-17 01:58:33 +02:00
use Tests\MockAccountData;
use Tests\TestCase;
/**
* @test
2019-06-17 01:58:33 +02:00
* @covers App\Http\Controllers\UserController
*/
2019-06-17 01:58:33 +02:00
class UserTest extends TestCase
{
use MockAccountData;
use DatabaseTransactions;
private $default_email = 'attach@gmail.com';
2019-06-17 01:58:33 +02:00
public function setUp() :void
{
parent::setUp();
Session::start();
$this->faker = \Faker\Factory::create();
2020-06-27 06:09:16 +02:00
$this->makeTestData();
2019-06-17 01:58:33 +02:00
Model::reguard();
$this->withoutExceptionHandling();
2020-06-27 06:09:16 +02:00
$this->withoutMiddleware(
ThrottleRequests::class,
PasswordProtection::class
);
2019-06-17 01:58:33 +02:00
}
public function testUserList()
{
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $this->token,
'X-API-PASSWORD' => 'ALongAndBriliantPassword',
])->get('/api/v1/users');
2019-06-17 01:58:33 +02:00
$response->assertStatus(200);
}
2019-06-17 01:58:33 +02:00
public function testUserStore()
{
2020-06-27 06:09:16 +02:00
$this->withoutMiddleware(PasswordProtection::class);
$data = [
'first_name' => 'hey',
'last_name' => 'you',
2020-06-27 02:20:27 +02:00
'email' => 'bob1@good.ole.boys.com',
'company_user' => [
'is_admin' => false,
'is_owner' => false,
'permissions' => 'create_client,create_invoice',
],
];
2019-06-17 01:58:33 +02:00
$response = $this->withHeaders([
2019-06-17 01:58:33 +02:00
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $this->token,
2020-06-27 02:05:31 +02:00
'X-API-PASSWORD' => 'ALongAndBriliantPassword',
])->post('/api/v1/users?include=company_user', $data);
2019-06-17 01:58:33 +02:00
$response->assertStatus(200);
$arr = $response->json();
2019-06-17 01:58:33 +02:00
$this->assertNotNull($arr['data']['company_user']);
}
2019-06-17 01:58:33 +02:00
public function testUserAttachAndDetach()
{
2020-06-27 06:09:16 +02:00
$this->withoutMiddleware(PasswordProtection::class);
$user = UserFactory::create($this->account->id);
$user->first_name = 'Test';
$user->last_name = 'Palloni';
$user->email = $this->default_email;
$user->save();
$data = $user->toArray();
try {
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $this->token,
2020-06-27 04:35:11 +02:00
'X-API-PASSWORD' => 'ALongAndBriliantPassword',
])->post('/api/v1/users?include=company_user', $data);
} catch (ValidationException $e) {
$message = json_decode($e->validator->getMessageBag(), 1);
nlog($message);
$this->assertNotNull($message);
}
$response->assertStatus(200);
// $this->assertNotNull($user->company_user);
// $this->assertEquals($user->company_user->company_id, $this->company->id);
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $this->token,
'X-API-PASSWORD' => 'ALongAndBriliantPassword',
2021-03-03 11:04:10 +01:00
])->delete('/api/v1/users/'.$this->encodePrimaryKey($user->id).'/detach_from_company?include=company_user');
$response->assertStatus(200);
$cu = CompanyUser::whereUserId($user->id)->whereCompanyId($this->company->id)->first();
$ct = CompanyToken::whereUserId($user->id)->whereCompanyId($this->company->id)->first();
$this->assertNull($cu);
$this->assertNull($ct);
$this->assertNotNull($user);
}
public function testAttachUserToMultipleCompanies()
{
2020-06-27 06:09:16 +02:00
$this->withoutMiddleware(PasswordProtection::class);
/* Create New Company */
2020-10-01 12:49:47 +02:00
$company2 = Company::factory()->create([
'account_id' => $this->account->id,
]);
$company_token = new CompanyToken;
$company_token->user_id = $this->user->id;
$company_token->company_id = $company2->id;
$company_token->account_id = $this->account->id;
$company_token->name = 'test token';
$company_token->token = \Illuminate\Support\Str::random(64);
$company_token->save();
/*Manually link this user to the company*/
$cu = CompanyUserFactory::create($this->user->id, $company2->id, $this->account->id);
$cu->is_owner = true;
$cu->is_admin = true;
$cu->save();
/*Create New Blank User and Attach to Company 2*/
$new_user = UserFactory::create($this->account->id);
$new_user->first_name = 'Test';
$new_user->last_name = 'Palloni';
$new_user->email = $this->default_email;
$new_user->save();
$data = $new_user->toArray();
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $company_token->token,
])->post('/api/v1/users?include=company_user', $data);
$response->assertStatus(200);
// $this->assertNotNull($new_user->company_user);
// $this->assertEquals($new_user->company_user->company_id, $company2->id);
/*Create brand new user manually with company_user object and attach to a different company*/
$data = [
'first_name' => 'hey',
'last_name' => 'you',
'email' => 'bob@good.ole.boys.co2.com',
'company_user' => [
'is_admin' => false,
'is_owner' => false,
'permissions' => 'create_client,create_invoice',
],
];
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $company_token->token,
])->post('/api/v1/users?include=company_user', $data);
$response->assertStatus(200);
$arr = $response->json();
$this->assertNotNull($arr['data']['company_user']);
$this->assertFalse($arr['data']['company_user']['is_admin']);
$this->assertFalse($arr['data']['company_user']['is_owner']);
$this->assertEquals($arr['data']['company_user']['permissions'], 'create_client,create_invoice');
$user = User::whereEmail('bob@good.ole.boys.co2.com')->first();
$this->assertNotNull($user);
$cu = CompanyUser::whereUserId($user->id)->whereCompanyId($company2->id)->first();
$this->assertNotNull($cu);
/*Update the user permissions of this user*/
$data = [
'first_name' => 'Captain',
'last_name' => 'Morgain',
'email' => 'bob@good.ole.boys.co2.com',
'company_user' => [
'is_admin' => true,
'is_owner' => false,
'permissions' => 'create_invoice,create_invoice',
],
];
$response = $this->withHeaders([
'X-API-SECRET' => config('ninja.api_secret'),
'X-API-TOKEN' => $company_token->token,
'X-API-PASSWORD' => 'ALongAndBriliantPassword',
])->put('/api/v1/users/'.$this->encodePrimaryKey($user->id).'?include=company_user', $data);
$response->assertStatus(200);
$arr = $response->json();
$this->assertNotNull($arr['data']['company_user']);
$this->assertTrue($arr['data']['company_user']['is_admin']);
$this->assertFalse($arr['data']['company_user']['is_owner']);
$this->assertEquals($arr['data']['company_user']['permissions'], 'create_invoice,create_invoice');
}
}