mirror of
https://github.com/alchemy-fr/Phraseanet.git
synced 2025-10-19 07:53:14 +00:00
b6a5f90fd3
* csrf token form * add csrf token * add csrf * add csrf * add csrf * test * test * test * add form token in report * csrf token upload * lazaret csrf form * upload test * lazaret test * add csrf token * fix test * fix set cover publication --------- Co-authored-by: jygaulier <gaulier@alchemy.fr>
204 lines
6.1 KiB
PHP
204 lines
6.1 KiB
PHP
<?php
|
|
|
|
namespace Alchemy\Tests\Phrasea\Controller\Prod;
|
|
|
|
use Symfony\Component\HttpKernel\Client;
|
|
|
|
/**
|
|
* @group functional
|
|
* @group legacy
|
|
* @group authenticated
|
|
* @group web
|
|
*/
|
|
class StoryTest extends \PhraseanetAuthenticatedWebTestCase
|
|
{
|
|
public function testRootPost()
|
|
{
|
|
self::$DI['app']['phraseanet.SE'] = $this->createSearchEngineMock();
|
|
$randomValue = $this->setSessionFormToken('prodCreateStory');
|
|
|
|
$route = "/prod/story/";
|
|
|
|
$collections = self::$DI['app']->getAclForUser(self::$DI['app']->getAuthenticatedUser())
|
|
->get_granted_base([\ACL::CANADDRECORD]);
|
|
|
|
$collection = array_shift($collections);
|
|
|
|
self::$DI['client']->request(
|
|
'POST', $route, [
|
|
'base_id' => $collection->get_base_id(),
|
|
'name' => ['1-1' => 'test story'], //db-metastructId => storyname
|
|
'prodCreateStory_token' => $randomValue
|
|
]
|
|
);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(302, $response->getStatusCode());
|
|
|
|
$query = self::$DI['app']['orm.em']->createQuery(
|
|
'SELECT COUNT(w.id) FROM Phraseanet:StoryWZ w'
|
|
);
|
|
|
|
$count = $query->getSingleScalarResult();
|
|
|
|
$this->assertEquals(2, $count);
|
|
}
|
|
|
|
public function testRootPostJSON()
|
|
{
|
|
$randomValue = $this->setSessionFormToken('prodCreateStory');
|
|
$route = "/prod/story/";
|
|
|
|
$collections = self::$DI['app']->getAclForUser(self::$DI['app']->getAuthenticatedUser())
|
|
->get_granted_base([\ACL::CANADDRECORD]);
|
|
|
|
$collection = array_shift($collections);
|
|
|
|
$crawler = self::$DI['client']->request(
|
|
'POST',
|
|
$route,
|
|
[
|
|
'base_id' => $collection->get_base_id(),
|
|
'name' => 'test story',
|
|
'prodCreateStory_token' => $randomValue
|
|
],
|
|
[],
|
|
[
|
|
"HTTP_ACCEPT" => "application/json"
|
|
]
|
|
);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
}
|
|
|
|
public function testCreateGet()
|
|
{
|
|
$route = "/prod/story/create/";
|
|
|
|
$crawler = self::$DI['client']->request('GET', $route);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
|
|
$filter = "form[action='/prod/story/']";
|
|
$this->assertEquals(1, $crawler->filter($filter)->count());
|
|
|
|
$filter = "form[action='/prod/story/'] select[name='base_id']";
|
|
$this->assertEquals(1, $crawler->filter($filter)->count());
|
|
}
|
|
|
|
public function testByIds()
|
|
{
|
|
$story = self::$DI['record_story_1'];
|
|
|
|
$route = sprintf("/prod/story/%d/%d/", $story->get_sbas_id(), $story->get_record_id());
|
|
|
|
$crawler = self::$DI['client']->request('GET', $route);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
}
|
|
|
|
public function testAddElementsToStory()
|
|
{
|
|
$story = \record_adapter::createStory(self::$DI['app'], self::$DI['collection']);
|
|
|
|
$route = sprintf("/prod/story/%s/%s/addElements/", $story->getDataboxId(), $story->getRecordId());
|
|
|
|
$records = [
|
|
self::$DI['record_1']->get_serialize_key(),
|
|
self::$DI['record_2']->get_serialize_key()
|
|
];
|
|
|
|
$lst = implode(';', $records);
|
|
|
|
$crawler = self::$DI['client']->request('POST', $route, ['lst' => $lst]);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(302, $response->getStatusCode());
|
|
|
|
$this->assertEquals(2, $story->getChildren()->get_count());
|
|
$story->delete();
|
|
}
|
|
|
|
public function testAddElementsToStoryJSON()
|
|
{
|
|
$story = \record_adapter::createStory(self::$DI['app'], self::$DI['collection']);
|
|
|
|
$route = sprintf("/prod/story/%s/%s/addElements/", $story->getDataboxId(), $story->getRecordId());
|
|
|
|
$records = [
|
|
self::$DI['record_1']->get_serialize_key(),
|
|
self::$DI['record_2']->get_serialize_key()
|
|
];
|
|
|
|
$lst = implode(';', $records);
|
|
|
|
$crawler = self::$DI['client']->request('POST', $route, ['lst' => $lst]
|
|
, [], [
|
|
"HTTP_ACCEPT" => "application/json"]);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
|
|
$this->assertEquals(2, $story->getChildren()->get_count());
|
|
$story->delete();
|
|
}
|
|
|
|
public function testRemoveElementFromStory()
|
|
{
|
|
$story = \record_adapter::createStory(self::$DI['app'], self::$DI['collection']);
|
|
|
|
$records = [
|
|
self::$DI['record_1'],
|
|
self::$DI['record_2']
|
|
];
|
|
|
|
foreach ($records as $record) {
|
|
$story->appendChild($record);
|
|
}
|
|
|
|
$totalRecords = $story->getChildren()->get_count();
|
|
$n = 0;
|
|
foreach ($records as $record) {
|
|
/* @var $record \record_adapter */
|
|
$route = sprintf(
|
|
"/prod/story/%s/%s/delete/%s/%s/",
|
|
$story->getDataboxId(),
|
|
$story->getRecordId(),
|
|
$record->getDataboxId(),
|
|
$record->getRecordId()
|
|
);
|
|
|
|
if (($n % 2) === 0) {
|
|
$crawler = self::$DI['client']->request('POST', $route);
|
|
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(302, $response->getStatusCode());
|
|
} else {
|
|
$crawler = self::$DI['client']->request(
|
|
'POST', $route, [], [], [
|
|
"HTTP_ACCEPT" => "application/json"]
|
|
);
|
|
$response = self::$DI['client']->getResponse();
|
|
|
|
$this->assertEquals(200, $response->getStatusCode());
|
|
|
|
$data = json_decode($response->getContent(), true);
|
|
$this->assertTrue($data['success']);
|
|
}
|
|
$n ++;
|
|
$this->assertEquals($totalRecords - $n, $story->getChildren()->get_count());
|
|
}
|
|
$story->delete();
|
|
}
|
|
}
|