3 namespace Drupal\Tests\system\Kernel;
5 use Drupal\Core\Access\AccessResult;
6 use Drupal\Core\Cache\Context\CacheContextsManager;
7 use Drupal\Core\DependencyInjection\ContainerBuilder;
8 use Drupal\KernelTests\KernelTestBase;
9 use Drupal\simpletest\UserCreationTrait;
10 use Drupal\system\Entity\Menu;
13 * @coversDefaultClass \Drupal\system\MenuAccessControlHandler
16 class MenuAccessControlHandlerTest extends KernelTestBase {
18 use UserCreationTrait {
19 createUser as drupalCreateUser;
27 public static $modules = [
33 * The menu access control handler.
35 * @var \Drupal\Core\Entity\EntityAccessControlHandlerInterface
37 protected $accessControlHandler;
42 protected function setUp() {
44 $this->installEntitySchema('menu');
45 $this->installEntitySchema('user');
46 $this->installSchema('system', 'sequences');
47 $this->accessControlHandler = $this->container->get('entity_type.manager')->getAccessControlHandler('menu');
51 * @covers ::checkAccess
52 * @covers ::checkCreateAccess
53 * @dataProvider testAccessProvider
55 public function testAccess($which_user, $which_entity, $view_label_access_result, $view_access_result, $update_access_result, $delete_access_result, $create_access_result) {
56 // We must always create user 1, so that a "normal" user has a ID >1.
57 $root_user = $this->drupalCreateUser();
59 if ($which_user === 'user1') {
63 $permissions = ($which_user === 'admin')
66 $user = $this->drupalCreateUser($permissions);
69 $entity_values = ($which_entity === 'unlocked')
72 $entity_values['id'] = 'llama';
73 $entity = Menu::create($entity_values);
76 static::assertEquals($view_label_access_result, $this->accessControlHandler->access($entity, 'view label', $user, TRUE));
77 static::assertEquals($view_access_result, $this->accessControlHandler->access($entity, 'view', $user, TRUE));
78 static::assertEquals($update_access_result, $this->accessControlHandler->access($entity, 'update', $user, TRUE));
79 static::assertEquals($delete_access_result, $this->accessControlHandler->access($entity, 'delete', $user, TRUE));
80 static::assertEquals($create_access_result, $this->accessControlHandler->createAccess(NULL, $user, [], TRUE));
83 public function testAccessProvider() {
84 $c = new ContainerBuilder();
85 $cache_contexts_manager = $this->prophesize(CacheContextsManager::class);
86 $cache_contexts_manager->assertValidTokens()->willReturn(TRUE);
87 $cache_contexts_manager->reveal();
88 $c->set('cache_contexts_manager', $cache_contexts_manager);
89 \Drupal::setContainer($c);
92 'permissionless + unlocked' => [
95 AccessResult::allowed(),
96 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
97 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
98 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required.")->addCacheTags(['config:system.menu.llama']),
99 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
101 'permissionless + locked' => [
104 AccessResult::allowed(),
105 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
106 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
107 AccessResult::forbidden()->addCacheTags(['config:system.menu.llama'])->setReason("The Menu config entity is locked."),
108 AccessResult::neutral()->addCacheContexts(['user.permissions'])->setReason("The 'administer menu' permission is required."),
110 'admin + unlocked' => [
113 AccessResult::allowed(),
114 AccessResult::allowed()->addCacheContexts(['user.permissions']),
115 AccessResult::allowed()->addCacheContexts(['user.permissions']),
116 AccessResult::allowed()->addCacheContexts(['user.permissions'])->addCacheTags(['config:system.menu.llama']),
117 AccessResult::allowed()->addCacheContexts(['user.permissions']),
119 'admin + locked' => [
122 AccessResult::allowed(),
123 AccessResult::allowed()->addCacheContexts(['user.permissions']),
124 AccessResult::allowed()->addCacheContexts(['user.permissions']),
125 AccessResult::forbidden()->addCacheTags(['config:system.menu.llama'])->setReason("The Menu config entity is locked."),
126 AccessResult::allowed()->addCacheContexts(['user.permissions']),
128 'user1 + unlocked' => [
131 AccessResult::allowed(),
132 AccessResult::allowed()->addCacheContexts(['user.permissions']),
133 AccessResult::allowed()->addCacheContexts(['user.permissions']),
134 AccessResult::allowed()->addCacheContexts(['user.permissions'])->addCacheTags(['config:system.menu.llama']),
135 AccessResult::allowed()->addCacheContexts(['user.permissions']),
137 'user1 + locked' => [
140 AccessResult::allowed(),
141 AccessResult::allowed()->addCacheContexts(['user.permissions']),
142 AccessResult::allowed()->addCacheContexts(['user.permissions']),
143 AccessResult::forbidden()->addCacheTags(['config:system.menu.llama'])->setReason("The Menu config entity is locked."),
144 AccessResult::allowed()->addCacheContexts(['user.permissions']),