public function testPermissionsOnNamedSecurableItems() { $accounts = Account::getByName('Supermart'); $this->assertEquals(1, count($accounts)); $account = $accounts[0]; $owner = $account->owner; $user = User::getByUsername('bobby'); $this->assertNotEquals($owner->id, $user->id); $everyone = Group::getByName(Group::EVERYONE_GROUP_NAME); $group = Group::getByName('Sales Staff'); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($group)); // Putting permissions on. $securableItem1 = new NamedSecurableItem(); $securableItem1->name = 'Account'; $securableItem1->addPermissions($everyone, Permission::READ); $securableItem1->addPermissions($user, Permission::DELETE); $securableItem1->addPermissions($group, Permission::WRITE); $this->assertTrue($securableItem1->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::READ_WRITE_DELETE, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::READ, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::READ_WRITE, $account->getEffectivePermissions($group)); $securableItem2 = new NamedSecurableItem(); $securableItem2->name = 'AccountsModule'; $securableItem2->addPermissions($everyone, Permission::CHANGE_OWNER); $securableItem2->addPermissions($group, Permission::DELETE); $this->assertTrue($securableItem2->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::READ_WRITE_DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::READ | Permission::CHANGE_OWNER, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::READ_WRITE_DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($group)); $account->addPermissions($user, Permission::CHANGE_OWNER); $account->addPermissions($group, Permission::READ, Permission::DENY); $this->assertTrue($account->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::WRITE | Permission::DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::READ | Permission::CHANGE_OWNER, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::WRITE | Permission::DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($group)); // Taking permissions off. $account->removeAllPermissions(); $this->assertTrue($account->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::READ_WRITE_DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::READ | Permission::CHANGE_OWNER, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::READ_WRITE_DELETE | Permission::CHANGE_OWNER, $account->getEffectivePermissions($group)); $securableItem2->removeAllPermissions(); $this->assertTrue($securableItem2->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::READ_WRITE_DELETE, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::READ, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::READ_WRITE, $account->getEffectivePermissions($group)); $securableItem1->removeAllPermissions(); $this->assertTrue($securableItem1->save()); $this->assertEquals(Permission::ALL, $account->getEffectivePermissions($owner)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($user)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($everyone)); $this->assertEquals(Permission::NONE, $account->getEffectivePermissions($group)); $securableItem2->delete(); unset($securableItem2); $securableItem1->delete(); unset($securableItem1); }