tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'testePerms', 'description' => 'adasdasdsa', 'status' => 'publish' ), true ); $new_user = $this->factory()->user->create(array( 'role' => 'subscriber' )); wp_set_current_user($new_user); $user_id = get_current_user_id(); $this->assertEquals($new_user, $user_id); //var_dump($collection->cap); $this->assertTrue(user_can($user_id, $collection->cap->read, $collection->get_id()), 'A subscriber user cannot read Collections'); $this->assertTrue(user_can($user_id, 'subscriber')); $this->assertFalse(user_can($user_id, $collection->cap->edit_post, $collection->get_id()), 'A subscriber user can edit a Collections?'); $new_admin_user = $this->factory()->user->create(array( 'role' => 'administrator' )); wp_set_current_user($new_admin_user); $user_id = get_current_user_id(); $this->assertTrue(user_can($user_id, 'administrator')); $this->assertTrue(user_can($user_id, $collection->cap->edit_post, $collection->get_id()), 'A administrator user cannot edit a Collections?'); //TODO test all roles and check the capabilities $new_contributor_user = $this->factory()->user->create(array( 'role' => 'contributor' )); wp_set_current_user($new_contributor_user); $this->assertTrue($collection->can_read()); $this->assertFalse($collection->can_publish()); $this->assertTrue(user_can($new_admin_user, $collection->get_items_capabilities()->edit_posts, $collection->get_id()), 'admin should be able to edit items in the collection'); $privateCollection = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'testePermsCC', 'description' => 'adasdasdsa', 'status' => 'private' ), true ); $this->assertTrue(user_can($new_admin_user, $collection->cap->read_post, $privateCollection->get_id()), 'admin should be able read private collection'); // subsciber should not be able to $x = user_can($new_user, $collection->cap->read_post, $collection->get_id()); $this->assertFalse(user_can($new_user, $collection->cap->read_post, $privateCollection->get_id()), 'subscriber should not be able read private collection'); } /** * @group serialize_permission */ function test_entity_serialization() { $collection = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'testeSeria', 'description' => 'adasdasdsa', ), true ); $ser = base64_encode( maybe_serialize($collection)); $u2 = $this->factory()->user->create(array( 'role' => 'subscriber' )); wp_set_current_user($u2); $collection_unser = maybe_unserialize( base64_decode($ser)); $this->assertFalse(user_can($u2, $collection_unser->cap->edit_post, $collection_unser->get_id())); } /** * @group permission_others_collections */ function test_edit_others_collections() { $collection = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'teste1', 'description' => 'adasdasdsa', ), true ); $item = $this->tainacan_entity_factory->create_entity( 'item', array( 'title' => 'testeItem', 'collection' => $collection, ), true ); $new_author_user = $this->factory()->user->create(array( 'role' => 'author' )); wp_set_current_user($new_author_user); $collection2 = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'teste2', 'description' => 'adasdasdsa', ), true ); $item2 = $this->tainacan_entity_factory->create_entity( 'item', array( 'title' => 'testeItem', 'collection' => $collection2, ), true ); // Once we had a bug that items of all collections shared the same capability type. they should not. // This test avoid it to happen $this->assertNotEquals($item2->get_capabilities()->edit_posts, $item->get_capabilities()->edit_posts); $this->assertTrue(current_user_can( $item2->get_capabilities()->edit_post, $item2->get_id() ), 'author should be able to edit items in his collection'); $this->assertFalse(current_user_can( $item->get_capabilities()->edit_post, $item->get_id() ), 'author should not be able to edit items in admins collection'); $this->assertTrue($item2->can_edit(), 'author should be able to edit items in his collection'); $this->assertFalse($item->can_edit(), 'author should not be able to edit items in admins collection'); $this->assertNotEquals($item->get_capabilities()->edit_posts, $item2->get_capabilities()->edit_posts); } /** * @group permission_others_collections */ function test_edit_others_collections_tainacan_role() { $collection = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'teste1', 'description' => 'adasdasdsa', ), true ); $item = $this->tainacan_entity_factory->create_entity( 'item', array( 'title' => 'testeItem', 'collection' => $collection, ), true ); $new_author_user = $this->factory()->user->create(array( 'role' => 'tainacan-author' )); wp_set_current_user($new_author_user); $collection2 = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'teste2', 'description' => 'adasdasdsa', ), true ); $item2 = $this->tainacan_entity_factory->create_entity( 'item', array( 'title' => 'testeItem', 'collection' => $collection2, ), true ); // Once we had a bug that items of all collections shared the same capability type. they should not. // This test avoid it to happen $this->assertNotEquals($item2->get_capabilities()->edit_posts, $item->get_capabilities()->edit_posts); $this->assertTrue(current_user_can( $item2->get_capabilities()->edit_post, $item2->get_id() ), 'author should be able to edit items in his collection'); $this->assertFalse(current_user_can( $item->get_capabilities()->edit_post, $item->get_id() ), 'author should not be able to edit items in admins collection'); $this->assertTrue($item2->can_edit(), 'author should be able to edit items in his collection'); $this->assertFalse($item->can_edit(), 'author should not be able to edit items in admins collection'); $this->assertNotEquals($item->get_capabilities()->edit_posts, $item2->get_capabilities()->edit_posts); } function test_read_item() { $ItemRepo = \Tainacan\Repositories\Items::get_instance(); $ColRepo = \Tainacan\Repositories\Collections::get_instance(); $collection = $this->tainacan_entity_factory->create_entity( 'collection', array( 'name' => 'teste1', 'description' => 'adasdasdsa', 'status' => 'publish' ), true ); $item = $this->tainacan_entity_factory->create_entity( 'item', array( 'title' => 'testeItem', 'collection' => $collection, 'status' => 'publish' ), true ); $subscriber = $this->factory()->user->create(array( 'role' => 'subscriber' )); wp_set_current_user($subscriber); wp_logout(); $this->assertTrue($item->can_read()); $item->set_status('private'); $item->validate(); $item = $ItemRepo->insert($item); $this->assertFalse($item->can_read()); $item->set_status('publish'); $item->validate(); $item = $ItemRepo->insert($item); $this->assertTrue($item->can_read()); $collection->set_status('private'); $collection->validate(); $collection = $ColRepo->insert($collection); $this->assertFalse($item->can_read()); } }