+<?php

+/**

+*

+* This file is part of the phpBB Forum Software package.

+*

+* @copyright (c) phpBB Limited <https://www.phpbb.com>

+* @license GNU General Public License, version 2 (GPL-2.0)

+*

+* For full copyright and license information, please see

+* the docs/CREDITS.txt file.

+*

+*/

+

+require_once __DIR__ . '/../../phpBB/includes/functions.php';

+

+/**

+* @group functional

+*/

+class functional_permission_roles_test extends phpbb_functional_test_case

+{

+ public function data_permission_roles()

+ {

+ return array(

+ array(

+ array(0, 14),

+ array(17, 17),

+ array(

+ 'role[5][1]' => 14,

+ )

+ ),

+ array(

+ array(14, 14),

+ array(17, 17),

+ array(

+ 'role[5][1]' => 0,

+ )

+ ),

+ array(

+ array(0, 14),

+ array(17, 17)

+ ),

+ );

+ }

+ /**

+ * @dataProvider data_permission_roles

+ */

+ public function test_permission_roles($admin_roles, $guest_roles, $set_values = array())

+ {

+ $this->login();

+ $this->admin_login();

+ $this->add_lang('acp/permissions');

+ $crawler = self::request('GET', 'adm/index.php?i=acp_permissions&mode=setting_forum_local&sid=' . $this->sid);

+

+ // Select forums

+ $form = $crawler->filter('form[id=select_victim]')->form();

+ $form['forum_id']->setValue(array(1,2));

+ $crawler = self::$client->submit($form);

+

+ // Select administrators and guests

+ $groups_form = $crawler->filter('form[id=groups]')->form();

+ $groups_form['group_id']->setValue(array(1,5));

+

+ $crawler = self::submit($groups_form);

+ $form = $crawler->filter('form')->form();

+ $values = $form->getValues();

+

+ // Check default settings

+ $this->assertEquals($admin_roles[0], $values['role[5][1]']);

+ $this->assertEquals($admin_roles[1], $values['role[5][2]']);

+ $this->assertEquals($guest_roles[0], $values['role[1][1]']);

+ $this->assertEquals($guest_roles[1], $values['role[1][2]']);

+

+ // Set admin to full access on category

+ foreach ($set_values as $key => $value)

+ {

+ $form[$key]->setValue($value);

+ }

+

+ $form_values = $form->getValues();

+ $form_values['action[apply_all_permissions]'] = true;

+ $crawler = self::request('POST', 'adm/index.php?i=acp_permissions&mode=setting_forum_local&sid=' . $this->sid, $form_values);

+ $this->assertContainsLang('AUTH_UPDATED', $crawler->text());

+

+ $this->logout();

+ }

+}

+ /**

+ * Session ID for current test's session (each test makes its own)

+ * @var string

+ */

+ protected $sid;

+

+ /**

+ * Language array used by phpBB

+ * @var array

+ */

+ protected $lang = array();

+

+

+ // Clear the language array so that things

+ // that were added in other tests are gone

+ $this->lang = array();

+ $this->add_lang('common');

+

+ protected function logout()

+ {

+ $this->add_lang('ucp');

+

+ if (empty($this->sid))

+ {

+ return;

+ }

+

+ $this->visit('ucp.php?sid=' . $this->sid . '&mode=logout');

+ $this->assertContains($this->lang('REGISTER'), self::$webDriver->getPageSource());

+ unset($this->sid);

+

+ }

+

+ /**

+ * Login to the ACP

+ * You must run login() before calling this.

+ */

+ protected function admin_login($username = 'admin')

+ {

+ $this->add_lang('acp/common');

+

+ // Requires login first!

+ if (empty($this->sid))

+ {

+ $this->fail('$this->sid is empty. Make sure you call login() before admin_login()');

+ return;

+ }

+

+ self::$webDriver->manage()->deleteAllCookies();

+

+ $this->visit('adm/index.php?sid=' . $this->sid);

+ $this->assertContains($this->lang('LOGIN_ADMIN_CONFIRM'), self::$webDriver->getPageSource());

+

+ self::find_element('cssSelector', 'input[name=username]')->clear()->sendKeys($username);

+ self::find_element('cssSelector', 'input[type=password]')->sendKeys($username . $username);

+ self::find_element('cssSelector', 'input[name=login]')->click();

+ $this->assertContains($this->lang('ADMIN_PANEL'), $this->find_element('cssSelector', 'h1')->getText());

+

+ $cookies = self::$webDriver->manage()->getCookies();

+

+ // The session id is stored in a cookie that ends with _sid - we assume there is only one such cookie

+ foreach ($cookies as $cookie)

+ {

+ if (substr($cookie['name'], -4) == '_sid')

+ {

+ $this->sid = $cookie['value'];

+

+ break;

+ }

+ }

+

+ $this->assertNotEmpty($this->sid);

+ }

+

+ protected function add_lang($lang_file)

+ {

+ if (is_array($lang_file))

+ {

+ foreach ($lang_file as $file)

+ {

+ $this->add_lang($file);

+ }

+ }

+

+ $lang_path = __DIR__ . "/../../phpBB/language/en/$lang_file.php";

+

+ $lang = array();

+

+ if (file_exists($lang_path))

+ {

+ include($lang_path);

+ }

+

+ $this->lang = array_merge($this->lang, $lang);

+ }

+

+ protected function add_lang_ext($ext_name, $lang_file)

+ {

+ if (is_array($lang_file))

+ {

+ foreach ($lang_file as $file)

+ {

+ $this->add_lang_ext($ext_name, $file);

+ }

+

+ return;

+ }

+

+ $lang_path = __DIR__ . "/../../phpBB/ext/{$ext_name}/language/en/$lang_file.php";

+

+ $lang = array();

+

+ if (file_exists($lang_path))

+ {

+ include($lang_path);

+ }

+

+ $this->lang = array_merge($this->lang, $lang);

+ }

+

+ protected function lang()

+ {

+ $args = func_get_args();

+ $key = $args[0];

+

+ if (empty($this->lang[$key]))

+ {

+ throw new RuntimeException('Language key "' . $key . '" could not be found.');

+ }

+

+ $args[0] = $this->lang[$key];

+

+ return call_user_func_array('sprintf', $args);

+ }

+

+ /**

+ * assertContains for language strings

+ *

+ * @param string $needle Search string

+ * @param string $haystack Search this

+ * @param string $message Optional failure message

+ */

+ public function assertContainsLang($needle, $haystack, $message = null)

+ {

+ $this->assertContains(html_entity_decode($this->lang($needle), ENT_QUOTES), $haystack, $message);

+ }

+

+ /**

+ * assertNotContains for language strings

+ *

+ * @param string $needle Search string

+ * @param string $haystack Search this

+ * @param string $message Optional failure message

+ */

+ public function assertNotContainsLang($needle, $haystack, $message = null)

+ {

+ $this->assertNotContains(html_entity_decode($this->lang($needle), ENT_QUOTES), $haystack, $message);

+ }

+

+ protected function login($username = 'admin')

+ {

+ $this->add_lang('ucp');

+

+ $this->visit('ucp.php');

+ $this->assertContains($this->lang('LOGIN_EXPLAIN_UCP'), self::$webDriver->getPageSource());

+

+ self::find_element('cssSelector', 'input[name=username]')->sendKeys($username);

+ self::find_element('cssSelector', 'input[name=password]')->sendKeys($username . $username);

+ self::find_element('cssSelector', 'input[name=login]')->click();

+ $this->assertNotContains($this->lang('LOGIN'), $this->find_element('className', 'navbar')->getText());

+

+ $cookies = self::$webDriver->manage()->getCookies();

+

+ // The session id is stored in a cookie that ends with _sid - we assume there is only one such cookie

+ foreach ($cookies as $cookie)

+ {

+ if (substr($cookie['name'], -4) == '_sid')

+ {

+ $this->sid = $cookie['value'];

+ }

+ }

+

+ $this->assertNotEmpty($this->sid);

+ }

+

+ /**

+ * Take screenshot. Can be used for debug purposes.

+ *

+ * @throws Exception When screenshot can't be created

+ */

+ public function take_screenshot()

+ {

+ // Change the Path to your own settings

+ $screenshot = time() . ".png";

+

+ self::$webDriver->takeScreenshot($screenshot);

+ }

+<?php

+/**

+*

+* This file is part of the phpBB Forum Software package.

+*

+* @copyright (c) phpBB Limited <https://www.phpbb.com>

+* @license GNU General Public License, version 2 (GPL-2.0)

+*

+* For full copyright and license information, please see

+* the docs/CREDITS.txt file.

+*

+*/

+

+/**

+* @group ui

+*/

+class ui_permission_roles_test extends phpbb_ui_test_case

+{

+

+ public function test_permission_roles()

+ {

+ $this->login();

+ $this->admin_login();

+ $this->add_lang('acp/permissions');

+ $this->visit('adm/index.php?i=acp_permissions&mode=setting_forum_local&sid=' . $this->sid);

+

+ // Select forums

+ $elements = self::find_element('cssSelector', 'select#forum')

+ ->findElements(\Facebook\WebDriver\WebDriverBy::tagName('option'));

+

+ foreach ($elements as $element)

+ {

+ $element->click();

+ }

+ self::find_element('cssSelector', 'form#select_victim')

+ ->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('input[type=submit]'))

+ ->click();

+

+ // Select administrators and guests

+ $groups_form = self::find_element('cssSelector', 'form#groups');

+ $elements = $groups_form

+ ->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('select'))

+ ->findElements(\Facebook\WebDriver\WebDriverBy::tagName('option'));

+

+ foreach ($elements as $element)

+ {

+ if ($element->getText() === 'Administrators' || $element->getText() === 'Guests')

+ {

+ $element->click();

+ }

+ }

+ $groups_form->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('input[name=submit_edit_options]'))->click();

+

+ $first_fieldset = self::find_element('cssSelector', '#perm11');

+ $this->assertEquals('none', $first_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('div.dropdown'))->getCSSValue('display'));

+ $first_fieldset

+ ->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('span.dropdown-toggle'))

+ ->click();

+ $this->assertEquals('block', $first_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('div.dropdown'))->getCSSValue('display'));

+ $lis = $first_fieldset

+ ->findElements(\Facebook\WebDriver\WebDriverBy::cssSelector('ul > li'));

+

+ foreach ($lis as $li)

+ {

+ if ($li->getAttribute('data-id') == 18)

+ {

+ $li->click();

+

+ break;

+ }

+ }

+ $this->assertEquals('none', $first_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('div.dropdown'))->getCSSValue('display'));

+ $this->assertEquals(18, $first_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('input[type=hidden]'))->getAttribute('value'));

+ $this->assertEquals($this->lang('ROLE_FORUM_LIMITED'), $first_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('span.dropdown-toggle'))->getText());

+

+ // Check that admin settings didn't get changed

+ $second_fieldset = self::find_element('cssSelector', '#perm10');

+ $this->assertEquals('none', $second_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('div.dropdown'))->getCSSValue('display'));

+ // Full access = 14

+ $this->assertEquals(14, $second_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('input[type=hidden]'))->getAttribute('value'));

+ $this->assertEquals($this->lang('ROLE_FORUM_FULL'), $second_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('span.dropdown-toggle'))->getText());

+

+ // Check that category settings were not modified

+ $category_fieldset = self::find_element('cssSelector', '#perm00');

+ $this->assertEquals('none', $category_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('div.dropdown'))->getCSSValue('display'));

+ // No settings

+ $this->assertEquals('', $category_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('input[type=hidden]'))->getAttribute('value'));

+ $this->assertEquals($this->lang('NO_ROLE_ASSIGNED'), $category_fieldset->findElement(\Facebook\WebDriver\WebDriverBy::cssSelector('span.dropdown-toggle'))->getText());

+ }

+}