public function testUserHavePermission() { // create role creator $creator = new Role(); $creator->name = 'creator'; $creator->save(); // create permission $createPost = new Permission(); $createPost->name = 'create-post'; $createPost->save(); $creator->attachPermission($createPost); $user = factory(App\User::class)->create(); $user->attachRole($creator); Auth::login($user); $res = $this->call('POST', '/posts'); $this->assertEquals(200, $res->getStatusCode()); }
public function testRouteRequirePermissionUserHavePermission() { RoutePermission::setRoutePermissions('POST /blog/{id}', ['create-blog']); // create role creator $creator = new Role(); $creator->name = 'creator'; $creator->save(); // create permission $createPost = new Permission(); $createPost->name = 'create-blog'; $createPost->save(); $creator->attachPermission($createPost); $user = factory(App\User::class)->create(['password' => bcrypt('123456')]); $user->attachRole($creator); $credentials = ['email' => $user->email, 'password' => '123456']; $token = JWTAuth::attempt($credentials); $res = $this->call('POST', '/blog/1', [], [], [], ['HTTP_Authorization' => "Bearer {$token}"]); $this->assertEquals(200, $res->getStatusCode()); }