9 use lib "$FindBin::Bin/lib";
12 eval { require DBD::SQLite }
14 "DBD::SQLite is required for this test";
16 eval { require Catalyst::Plugin::Authorization::Roles }
18 "Catalyst::Plugin::Authorization::Roles is required for this test";
26 default_realm => "users",
30 'class' => "Password",
31 'password_field' => 'password',
32 'password_type' => 'clear'
35 'class' => 'DBIx::Class',
36 'user_model' => 'TestApp::User',
37 'role_column' => 'role_text',
38 'check_roles' => 't_check_roles',
39 'check_roles_any' => 't_check_roles_any'
53 use Catalyst::Test 'TestApp';
55 # test user's admin access
57 ok( my $res = request('http://localhost/user_login?username=joeuser&password=hackme&detach=is_admin'), 'request ok' );
58 is( $res->content, 'ok', 'user is an admin' );
61 # test unauthorized user's admin access
63 ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin'), 'request ok' );
64 is( $res->content, 'failed', 'user is not an admin' );
67 # test multiple auth roles
69 ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin_user'), 'request ok' );
70 is( $res->content, 'ok', 'user is an admin and a user' );
73 # test multiple unauth roles
75 ok( my $res = request('http://localhost/user_login?username=joeuser&password=hackme&detach=is_admin_user'), 'request ok' );
76 is( $res->content, 'failed', 'user is not an admin and a user' );
79 # test assert_any_user_role
81 ok( my ( $res, $c )= ctx_request('http://localhost/user_login?username=joeuser&password=hackme&detach=is_any_admin_user'), 'request ok' );
82 is( $res->content, 'ok', 'user is user' );
83 is ( my @roles = $c->user->roles, 1, 'only 1 role' );
84 is ( $roles[0], 'admin', 'role is admin' );
87 # test assert_any_user_role
89 ok( my ( $res, $c )= ctx_request('http://localhost/user_login?username=nuffin&password=much&detach=is_any_admin_user'), 'request ok' );
90 is( $res->content, 'ok', 'user is user and an admin' );
91 is ( my @roles = $c->user->roles, 2, '2 roles' );
92 is ( $roles[0], 'user', 'role is user' );
93 is ( $roles[1], 'admin', 'role is admin' );
96 # test superuser role override
98 ok( my ( $res, $c )= ctx_request('http://localhost/user_login?username=graeme&password=supersecret&detach=is_admin_user'), 'request ok' );
99 is( $res->content, 'ok', 'superuser role is all roles' );
100 is ( my @roles = $c->user->roles, 1, 'only 1 role' );
101 is ( $roles[0], 'superadmin', 'role is user' );
104 # test superuser role override none existant roles
106 ok( my ( $res, $c )= ctx_request('http://localhost/user_login?username=graeme&password=supersecret&detach=is_nonexistant_roles'), 'request ok' );
107 is( $res->content, 'ok', 'superuser role is all roles' );
108 is ( my @roles = $c->user->roles, 1, 'only 1 role' );
109 is ( $roles[0], 'superadmin', 'role is user' );
112 # test superuser role override any none existant roles
114 ok( my ( $res, $c )= ctx_request('http://localhost/user_login?username=graeme&password=supersecret&detach=is_any_nonexistant_role'), 'request ok' );
115 is( $res->content, 'ok', 'superuser role is all roles' );
116 is ( my @roles = $c->user->roles, 1, 'only 1 role' );
117 is ( $roles[0], 'superadmin', 'role is user' );