[catagits/Catalyst-Authentication-Store-DBIx-Class.git] / t / 05-auth-roles-relationship.t

#!perl

use strict;
use warnings;
use DBI;
use File::Path;
use FindBin;
use Test::More;
use lib "$FindBin::Bin/lib";

BEGIN {
    eval { require DBD::SQLite }
        or plan skip_all =>
        "DBD::SQLite is required for this test";

    eval { require Catalyst::Plugin::Authorization::Roles }
        or plan skip_all =>
        "Catalyst::Plugin::Authorization::Roles is required for this test";

    plan tests => 10;

    use TestApp;
    TestApp->config( {
        name => 'TestApp',
        authentication => {
            default_realm => "users",
            realms => {
                users => {
                    credential => {
                        'class' => "Password",
                        'password_field' => 'password',
                        'password_type' => 'clear'
                    },
                    store => {
                        'class' => 'DBIx::Class',
                        'user_model' => 'TestApp::User',
                        'role_relation' => 'roles',
                        'role_field' => 'role'
                    },
                },
            },
        },
    } );

    TestApp->setup(
        qw/Authentication
           Authorization::Roles
           /
    );
}

use Catalyst::Test 'TestApp';

# test user's admin access
{
    ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin'), 'request ok' );
    is( $res->content, 'ok', 'user is an admin' );
}

# test unauthorized user's admin access
{
    ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin'), 'request ok' );
    is( $res->content, 'failed', 'user is not an admin' );
}

# test multiple auth roles
{
    ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin_user'), 'request ok' );
    is( $res->content, 'ok', 'user is an admin and a user' );
}

# test multiple unauth roles
{
    ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin_user'), 'request ok' );
    is( $res->content, 'failed', 'user is not an admin and a user' );
}

# test superuser role override fails (not enabled)
{
    ok( my $res = request('http://localhost/user_login?username=mark&password=secret&detach=is_admin'), 'request ok' );
    is( $res->content, 'failed', 'user is not an admin' );
}
Commit	Line	Data
ad93b3e9	1	#!perl
	2
	3	use strict;
	4	use warnings;
	5	use DBI;
	6	use File::Path;
	7	use FindBin;
	8	use Test::More;
	9	use lib "$FindBin::Bin/lib";
	10
	11	BEGIN {
	12	eval { require DBD::SQLite }
	13	or plan skip_all =>
	14	"DBD::SQLite is required for this test";
	15
ad93b3e9	16	eval { require Catalyst::Plugin::Authorization::Roles }
	17	or plan skip_all =>
	18	"Catalyst::Plugin::Authorization::Roles is required for this test";
	19
b3c995e9	20	plan tests => 10;
ad93b3e9	21
b4319877	22	use TestApp;
b4319877	23	TestApp->config( {
ad93b3e9	24	name => 'TestApp',
	25	authentication => {
	26	default_realm => "users",
	27	realms => {
	28	users => {
	29	credential => {
	30	'class' => "Password",
	31	'password_field' => 'password',
	32	'password_type' => 'clear'
	33	},
	34	store => {
	35	'class' => 'DBIx::Class',
f55cb81e	36	'user_model' => 'TestApp::User',
ad93b3e9	37	'role_relation' => 'roles',
	38	'role_field' => 'role'
	39	},
	40	},
	41	},
	42	},
b4319877	43	} );
ad93b3e9	44
b4319877	45	TestApp->setup(
ad93b3e9	46	qw/Authentication
	47	Authorization::Roles
	48	/
b4319877	49	);
ad93b3e9	50	}
ad93b3e9	51
ad93b3e9	52	use Catalyst::Test 'TestApp';
	53
	54	# test user's admin access
	55	{
	56	ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin'), 'request ok' );
	57	is( $res->content, 'ok', 'user is an admin' );
	58	}
	59
	60	# test unauthorized user's admin access
	61	{
	62	ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin'), 'request ok' );
	63	is( $res->content, 'failed', 'user is not an admin' );
	64	}
	65
	66	# test multiple auth roles
	67	{
	68	ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin_user'), 'request ok' );
	69	is( $res->content, 'ok', 'user is an admin and a user' );
	70	}
	71
	72	# test multiple unauth roles
	73	{
	74	ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin_user'), 'request ok' );
	75	is( $res->content, 'failed', 'user is not an admin and a user' );
	76	}
b3c995e9	77
	78	# test superuser role override fails (not enabled)
	79	{
	80	ok( my $res = request('http://localhost/user_login?username=mark&password=secret&detach=is_admin'), 'request ok' );
	81	is( $res->content, 'failed', 'user is not an admin' );
	82	}