dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
CommentStore: Hard-deprecate newKey()
[lhc/web/wiklou.git] / tests / phpunit / includes / TitlePermissionTest.php
1 <?php
2
3 use MediaWiki\MediaWikiServices;
4
5 /**
6 * @group Database
7 *
8 * @covers Title::getUserPermissionsErrors
9 * @covers Title::getUserPermissionsErrorsInternal
10 */
11 class TitlePermissionTest extends MediaWikiLangTestCase {
12
13 /**
14 * @var string
15 */
16 protected $userName, $altUserName;
17
18 /**
19 * @var Title
20 */
21 protected $title;
22
23 /**
24 * @var User
25 */
26 protected $user, $anonUser, $userUser, $altUser;
27
28 protected function setUp() {
29 parent::setUp();
30
31 $localZone = 'UTC';
32 $localOffset = date( 'Z' ) / 60;
33
34 $this->setMwGlobals( [
35 'wgLocaltimezone' => $localZone,
36 'wgLocalTZoffset' => $localOffset,
37 'wgNamespaceProtection' => [
38 NS_MEDIAWIKI => 'editinterface',
39 ],
40 ] );
41 // Without this testUserBlock will use a non-English context on non-English MediaWiki
42 // installations (because of how Title::checkUserBlock is implemented) and fail.
43 RequestContext::resetMain();
44
45 $this->userName = 'Useruser';
46 $this->altUserName = 'Altuseruser';
47 date_default_timezone_set( $localZone );
48
49 $this->title = Title::makeTitle( NS_MAIN, "Main Page" );
50 if ( !isset( $this->userUser ) || !( $this->userUser instanceof User ) ) {
51 $this->userUser = User::newFromName( $this->userName );
52
53 if ( !$this->userUser->getId() ) {
54 $this->userUser = User::createNew( $this->userName, [
55 "email" => "test@example.com",
56 "real_name" => "Test User" ] );
57 $this->userUser->load();
58 }
59
60 $this->altUser = User::newFromName( $this->altUserName );
61 if ( !$this->altUser->getId() ) {
62 $this->altUser = User::createNew( $this->altUserName, [
63 "email" => "alttest@example.com",
64 "real_name" => "Test User Alt" ] );
65 $this->altUser->load();
66 }
67
68 $this->anonUser = User::newFromId( 0 );
69
70 $this->user = $this->userUser;
71 }
72 $this->overrideMwServices();
73 }
74
75 protected function setUserPerm( $perm ) {
76 // Setting member variables is evil!!!
77
78 if ( is_array( $perm ) ) {
79 $this->user->mRights = $perm;
80 } else {
81 $this->user->mRights = [ $perm ];
82 }
83 }
84
85 protected function setTitle( $ns, $title = "Main_Page" ) {
86 $this->title = Title::makeTitle( $ns, $title );
87 }
88
89 protected function setUser( $userName = null ) {
90 if ( $userName === 'anon' ) {
91 $this->user = $this->anonUser;
92 } elseif ( $userName === null || $userName === $this->userName ) {
93 $this->user = $this->userUser;
94 } else {
95 $this->user = $this->altUser;
96 }
97 }
98
99 /**
100 * @todo This test method should be split up into separate test methods and
101 * data providers
102 *
103 * This test is failing per T201776.
104 *
105 * @group Broken
106 * @covers Title::checkQuickPermissions
107 */
108 public function testQuickPermissions() {
109 $prefix = MediaWikiServices::getInstance()->getContentLanguage()->
110 getFormattedNsText( NS_PROJECT );
111
112 $this->setUser( 'anon' );
113 $this->setTitle( NS_TALK );
114 $this->setUserPerm( "createtalk" );
115 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
116 $this->assertEquals( [], $res );
117
118 $this->setTitle( NS_TALK );
119 $this->setUserPerm( "createpage" );
120 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
121 $this->assertEquals( [ [ "nocreatetext" ] ], $res );
122
123 $this->setTitle( NS_TALK );
124 $this->setUserPerm( "" );
125 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
126 $this->assertEquals( [ [ 'nocreatetext' ] ], $res );
127
128 $this->setTitle( NS_MAIN );
129 $this->setUserPerm( "createpage" );
130 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
131 $this->assertEquals( [], $res );
132
133 $this->setTitle( NS_MAIN );
134 $this->setUserPerm( "createtalk" );
135 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
136 $this->assertEquals( [ [ 'nocreatetext' ] ], $res );
137
138 $this->setUser( $this->userName );
139 $this->setTitle( NS_TALK );
140 $this->setUserPerm( "createtalk" );
141 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
142 $this->assertEquals( [], $res );
143
144 $this->setTitle( NS_TALK );
145 $this->setUserPerm( "createpage" );
146 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
147 $this->assertEquals( [ [ 'nocreate-loggedin' ] ], $res );
148
149 $this->setTitle( NS_TALK );
150 $this->setUserPerm( "" );
151 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
152 $this->assertEquals( [ [ 'nocreate-loggedin' ] ], $res );
153
154 $this->setTitle( NS_MAIN );
155 $this->setUserPerm( "createpage" );
156 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
157 $this->assertEquals( [], $res );
158
159 $this->setTitle( NS_MAIN );
160 $this->setUserPerm( "createtalk" );
161 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
162 $this->assertEquals( [ [ 'nocreate-loggedin' ] ], $res );
163
164 $this->setTitle( NS_MAIN );
165 $this->setUserPerm( "" );
166 $res = $this->title->getUserPermissionsErrors( 'create', $this->user );
167 $this->assertEquals( [ [ 'nocreate-loggedin' ] ], $res );
168
169 $this->setUser( 'anon' );
170 $this->setTitle( NS_USER, $this->userName . '' );
171 $this->setUserPerm( "" );
172 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
173 $this->assertEquals( [ [ 'cant-move-user-page' ], [ 'movenologintext' ] ], $res );
174
175 $this->setTitle( NS_USER, $this->userName . '/subpage' );
176 $this->setUserPerm( "" );
177 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
178 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
179
180 $this->setTitle( NS_USER, $this->userName . '' );
181 $this->setUserPerm( "move-rootuserpages" );
182 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
183 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
184
185 $this->setTitle( NS_USER, $this->userName . '/subpage' );
186 $this->setUserPerm( "move-rootuserpages" );
187 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
188 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
189
190 $this->setTitle( NS_USER, $this->userName . '' );
191 $this->setUserPerm( "" );
192 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
193 $this->assertEquals( [ [ 'cant-move-user-page' ], [ 'movenologintext' ] ], $res );
194
195 $this->setTitle( NS_USER, $this->userName . '/subpage' );
196 $this->setUserPerm( "" );
197 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
198 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
199
200 $this->setTitle( NS_USER, $this->userName . '' );
201 $this->setUserPerm( "move-rootuserpages" );
202 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
203 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
204
205 $this->setTitle( NS_USER, $this->userName . '/subpage' );
206 $this->setUserPerm( "move-rootuserpages" );
207 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
208 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
209
210 $this->setUser( $this->userName );
211 $this->setTitle( NS_FILE, "img.png" );
212 $this->setUserPerm( "" );
213 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
214 $this->assertEquals( [ [ 'movenotallowedfile' ], [ 'movenotallowed' ] ], $res );
215
216 $this->setTitle( NS_FILE, "img.png" );
217 $this->setUserPerm( "movefile" );
218 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
219 $this->assertEquals( [ [ 'movenotallowed' ] ], $res );
220
221 $this->setUser( 'anon' );
222 $this->setTitle( NS_FILE, "img.png" );
223 $this->setUserPerm( "" );
224 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
225 $this->assertEquals( [ [ 'movenotallowedfile' ], [ 'movenologintext' ] ], $res );
226
227 $this->setTitle( NS_FILE, "img.png" );
228 $this->setUserPerm( "movefile" );
229 $res = $this->title->getUserPermissionsErrors( 'move', $this->user );
230 $this->assertEquals( [ [ 'movenologintext' ] ], $res );
231
232 $this->setUser( $this->userName );
233 $this->setUserPerm( "move" );
234 $this->runGroupPermissions( 'move', [ [ 'movenotallowedfile' ] ] );
235
236 $this->setUserPerm( "" );
237 $this->runGroupPermissions(
238 'move',
239 [ [ 'movenotallowedfile' ], [ 'movenotallowed' ] ]
240 );
241
242 $this->setUser( 'anon' );
243 $this->setUserPerm( "move" );
244 $this->runGroupPermissions( 'move', [ [ 'movenotallowedfile' ] ] );
245
246 $this->setUserPerm( "" );
247 $this->runGroupPermissions(
248 'move',
249 [ [ 'movenotallowedfile' ], [ 'movenotallowed' ] ],
250 [ [ 'movenotallowedfile' ], [ 'movenologintext' ] ]
251 );
252
253 if ( $this->isWikitextNS( NS_MAIN ) ) {
254 // NOTE: some content models don't allow moving
255 // @todo find a Wikitext namespace for testing
256
257 $this->setTitle( NS_MAIN );
258 $this->setUser( 'anon' );
259 $this->setUserPerm( "move" );
260 $this->runGroupPermissions( 'move', [] );
261
262 $this->setUserPerm( "" );
263 $this->runGroupPermissions( 'move', [ [ 'movenotallowed' ] ],
264 [ [ 'movenologintext' ] ] );
265
266 $this->setUser( $this->userName );
267 $this->setUserPerm( "" );
268 $this->runGroupPermissions( 'move', [ [ 'movenotallowed' ] ] );
269
270 $this->setUserPerm( "move" );
271 $this->runGroupPermissions( 'move', [] );
272
273 $this->setUser( 'anon' );
274 $this->setUserPerm( 'move' );
275 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
276 $this->assertEquals( [], $res );
277
278 $this->setUserPerm( '' );
279 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
280 $this->assertEquals( [ [ 'movenotallowed' ] ], $res );
281 }
282
283 $this->setTitle( NS_USER );
284 $this->setUser( $this->userName );
285 $this->setUserPerm( [ "move", "move-rootuserpages" ] );
286 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
287 $this->assertEquals( [], $res );
288
289 $this->setUserPerm( "move" );
290 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
291 $this->assertEquals( [ [ 'cant-move-to-user-page' ] ], $res );
292
293 $this->setUser( 'anon' );
294 $this->setUserPerm( [ "move", "move-rootuserpages" ] );
295 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
296 $this->assertEquals( [], $res );
297
298 $this->setTitle( NS_USER, "User/subpage" );
299 $this->setUserPerm( [ "move", "move-rootuserpages" ] );
300 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
301 $this->assertEquals( [], $res );
302
303 $this->setUserPerm( "move" );
304 $res = $this->title->getUserPermissionsErrors( 'move-target', $this->user );
305 $this->assertEquals( [], $res );
306
307 $this->setUser( 'anon' );
308 $check = [
309 'edit' => [
310 [ [ 'badaccess-groups', "*, [[$prefix:Users|Users]]", 2 ] ],
311 [ [ 'badaccess-group0' ] ],
312 [],
313 true
314 ],
315 'protect' => [
316 [ [
317 'badaccess-groups',
318 "[[$prefix:Administrators|Administrators]]", 1 ],
319 [ 'protect-cantedit'
320 ] ],
321 [ [ 'badaccess-group0' ], [ 'protect-cantedit' ] ],
322 [ [ 'protect-cantedit' ] ],
323 false
324 ],
325 '' => [ [], [], [], true ]
326 ];
327
328 foreach ( [ "edit", "protect", "" ] as $action ) {
329 $this->setUserPerm( null );
330 $this->assertEquals( $check[$action][0],
331 $this->title->getUserPermissionsErrors( $action, $this->user, true ) );
332 $this->assertEquals( $check[$action][0],
333 $this->title->getUserPermissionsErrors( $action, $this->user, 'full' ) );
334 $this->assertEquals( $check[$action][0],
335 $this->title->getUserPermissionsErrors( $action, $this->user, 'secure' ) );
336
337 global $wgGroupPermissions;
338 $old = $wgGroupPermissions;
339 $wgGroupPermissions = [];
340
341 $this->assertEquals( $check[$action][1],
342 $this->title->getUserPermissionsErrors( $action, $this->user, true ) );
343 $this->assertEquals( $check[$action][1],
344 $this->title->getUserPermissionsErrors( $action, $this->user, 'full' ) );
345 $this->assertEquals( $check[$action][1],
346 $this->title->getUserPermissionsErrors( $action, $this->user, 'secure' ) );
347 $wgGroupPermissions = $old;
348
349 $this->setUserPerm( $action );
350 $this->assertEquals( $check[$action][2],
351 $this->title->getUserPermissionsErrors( $action, $this->user, true ) );
352 $this->assertEquals( $check[$action][2],
353 $this->title->getUserPermissionsErrors( $action, $this->user, 'full' ) );
354 $this->assertEquals( $check[$action][2],
355 $this->title->getUserPermissionsErrors( $action, $this->user, 'secure' ) );
356
357 $this->setUserPerm( $action );
358 $this->assertEquals( $check[$action][3],
359 $this->title->userCan( $action, $this->user, true ) );
360 $this->assertEquals( $check[$action][3],
361 $this->title->quickUserCan( $action, $this->user ) );
362 # count( User::getGroupsWithPermissions( $action ) ) < 1
363 }
364 }
365
366 protected function runGroupPermissions( $action, $result, $result2 = null ) {
367 global $wgGroupPermissions;
368
369 if ( $result2 === null ) {
370 $result2 = $result;
371 }
372
373 $wgGroupPermissions['autoconfirmed']['move'] = false;
374 $wgGroupPermissions['user']['move'] = false;
375 $res = $this->title->getUserPermissionsErrors( $action, $this->user );
376 $this->assertEquals( $result, $res );
377
378 $wgGroupPermissions['autoconfirmed']['move'] = true;
379 $wgGroupPermissions['user']['move'] = false;
380 $res = $this->title->getUserPermissionsErrors( $action, $this->user );
381 $this->assertEquals( $result2, $res );
382
383 $wgGroupPermissions['autoconfirmed']['move'] = true;
384 $wgGroupPermissions['user']['move'] = true;
385 $res = $this->title->getUserPermissionsErrors( $action, $this->user );
386 $this->assertEquals( $result2, $res );
387
388 $wgGroupPermissions['autoconfirmed']['move'] = false;
389 $wgGroupPermissions['user']['move'] = true;
390 $res = $this->title->getUserPermissionsErrors( $action, $this->user );
391 $this->assertEquals( $result2, $res );
392 }
393
394 /**
395 * @todo This test method should be split up into separate test methods and
396 * data providers
397 * @covers Title::checkSpecialsAndNSPermissions
398 */
399 public function testSpecialsAndNSPermissions() {
400 global $wgNamespaceProtection;
401 $this->setUser( $this->userName );
402
403 $this->setTitle( NS_SPECIAL );
404
405 $this->assertEquals( [ [ 'badaccess-group0' ], [ 'ns-specialprotected' ] ],
406 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
407
408 $this->setTitle( NS_MAIN );
409 $this->setUserPerm( 'bogus' );
410 $this->assertEquals( [],
411 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
412
413 $this->setTitle( NS_MAIN );
414 $this->setUserPerm( '' );
415 $this->assertEquals( [ [ 'badaccess-group0' ] ],
416 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
417
418 $wgNamespaceProtection[NS_USER] = [ 'bogus' ];
419
420 $this->setTitle( NS_USER );
421 $this->setUserPerm( '' );
422 $this->assertEquals( [ [ 'badaccess-group0' ],
423 [ 'namespaceprotected', 'User', 'bogus' ] ],
424 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
425
426 $this->setTitle( NS_MEDIAWIKI );
427 $this->setUserPerm( 'bogus' );
428 $this->assertEquals( [ [ 'protectedinterface', 'bogus' ] ],
429 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
430
431 $this->setTitle( NS_MEDIAWIKI );
432 $this->setUserPerm( 'bogus' );
433 $this->assertEquals( [ [ 'protectedinterface', 'bogus' ] ],
434 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
435
436 $wgNamespaceProtection = null;
437
438 $this->setUserPerm( 'bogus' );
439 $this->assertEquals( [],
440 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
441 $this->assertEquals( true,
442 $this->title->userCan( 'bogus', $this->user ) );
443
444 $this->setUserPerm( '' );
445 $this->assertEquals( [ [ 'badaccess-group0' ] ],
446 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
447 $this->assertEquals( false,
448 $this->title->userCan( 'bogus', $this->user ) );
449 }
450
451 /**
452 * @todo This test method should be split up into separate test methods and
453 * data providers
454 * @covers Title::checkUserConfigPermissions
455 */
456 public function testJsConfigEditPermissions() {
457 $this->setUser( $this->userName );
458
459 $this->setTitle( NS_USER, $this->userName . '/test.js' );
460 $this->runConfigEditPermissions(
461 [ [ 'badaccess-group0' ], [ 'mycustomjsprotected', 'bogus' ] ],
462
463 [ [ 'badaccess-group0' ], [ 'mycustomjsprotected', 'bogus' ] ],
464 [ [ 'badaccess-group0' ], [ 'mycustomjsprotected', 'bogus' ] ],
465 [ [ 'badaccess-group0' ] ],
466
467 [ [ 'badaccess-group0' ], [ 'mycustomjsprotected', 'bogus' ] ],
468 [ [ 'badaccess-group0' ], [ 'mycustomjsprotected', 'bogus' ] ],
469 [ [ 'badaccess-group0' ] ]
470 );
471 }
472
473 /**
474 * @todo This test method should be split up into separate test methods and
475 * data providers
476 * @covers Title::checkUserConfigPermissions
477 */
478 public function testJsonConfigEditPermissions() {
479 $this->setUser( $this->userName );
480
481 $this->setTitle( NS_USER, $this->userName . '/test.json' );
482 $this->runConfigEditPermissions(
483 [ [ 'badaccess-group0' ], [ 'mycustomjsonprotected', 'bogus' ] ],
484
485 [ [ 'badaccess-group0' ], [ 'mycustomjsonprotected', 'bogus' ] ],
486 [ [ 'badaccess-group0' ] ],
487 [ [ 'badaccess-group0' ], [ 'mycustomjsonprotected', 'bogus' ] ],
488
489 [ [ 'badaccess-group0' ], [ 'mycustomjsonprotected', 'bogus' ] ],
490 [ [ 'badaccess-group0' ] ],
491 [ [ 'badaccess-group0' ], [ 'mycustomjsonprotected', 'bogus' ] ]
492 );
493 }
494
495 /**
496 * @todo This test method should be split up into separate test methods and
497 * data providers
498 * @covers Title::checkUserConfigPermissions
499 */
500 public function testCssConfigEditPermissions() {
501 $this->setUser( $this->userName );
502
503 $this->setTitle( NS_USER, $this->userName . '/test.css' );
504 $this->runConfigEditPermissions(
505 [ [ 'badaccess-group0' ], [ 'mycustomcssprotected', 'bogus' ] ],
506
507 [ [ 'badaccess-group0' ] ],
508 [ [ 'badaccess-group0' ], [ 'mycustomcssprotected', 'bogus' ] ],
509 [ [ 'badaccess-group0' ], [ 'mycustomcssprotected', 'bogus' ] ],
510
511 [ [ 'badaccess-group0' ] ],
512 [ [ 'badaccess-group0' ], [ 'mycustomcssprotected', 'bogus' ] ],
513 [ [ 'badaccess-group0' ], [ 'mycustomcssprotected', 'bogus' ] ]
514 );
515 }
516
517 /**
518 * @todo This test method should be split up into separate test methods and
519 * data providers
520 * @covers Title::checkUserConfigPermissions
521 */
522 public function testOtherJsConfigEditPermissions() {
523 $this->setUser( $this->userName );
524
525 $this->setTitle( NS_USER, $this->altUserName . '/test.js' );
526 $this->runConfigEditPermissions(
527 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
528
529 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
530 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
531 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
532
533 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
534 [ [ 'badaccess-group0' ], [ 'customjsprotected', 'bogus' ] ],
535 [ [ 'badaccess-group0' ] ]
536 );
537 }
538
539 /**
540 * @todo This test method should be split up into separate test methods and
541 * data providers
542 * @covers Title::checkUserConfigPermissions
543 */
544 public function testOtherJsonConfigEditPermissions() {
545 $this->setUser( $this->userName );
546
547 $this->setTitle( NS_USER, $this->altUserName . '/test.json' );
548 $this->runConfigEditPermissions(
549 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ],
550
551 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ],
552 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ],
553 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ],
554
555 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ],
556 [ [ 'badaccess-group0' ] ],
557 [ [ 'badaccess-group0' ], [ 'customjsonprotected', 'bogus' ] ]
558 );
559 }
560
561 /**
562 * @todo This test method should be split up into separate test methods and
563 * data providers
564 * @covers Title::checkUserConfigPermissions
565 */
566 public function testOtherCssConfigEditPermissions() {
567 $this->setUser( $this->userName );
568
569 $this->setTitle( NS_USER, $this->altUserName . '/test.css' );
570 $this->runConfigEditPermissions(
571 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ],
572
573 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ],
574 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ],
575 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ],
576
577 [ [ 'badaccess-group0' ] ],
578 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ],
579 [ [ 'badaccess-group0' ], [ 'customcssprotected', 'bogus' ] ]
580 );
581 }
582
583 /**
584 * @todo This test method should be split up into separate test methods and
585 * data providers
586 * @covers Title::checkUserConfigPermissions
587 */
588 public function testOtherNonConfigEditPermissions() {
589 $this->setUser( $this->userName );
590
591 $this->setTitle( NS_USER, $this->altUserName . '/tempo' );
592 $this->runConfigEditPermissions(
593 [ [ 'badaccess-group0' ] ],
594
595 [ [ 'badaccess-group0' ] ],
596 [ [ 'badaccess-group0' ] ],
597 [ [ 'badaccess-group0' ] ],
598
599 [ [ 'badaccess-group0' ] ],
600 [ [ 'badaccess-group0' ] ],
601 [ [ 'badaccess-group0' ] ]
602 );
603 }
604
605 protected function runConfigEditPermissions(
606 $resultNone,
607 $resultMyCss,
608 $resultMyJson,
609 $resultMyJs,
610 $resultUserCss,
611 $resultUserJson,
612 $resultUserJs
613 ) {
614 $this->setUserPerm( '' );
615 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
616 $this->assertEquals( $resultNone, $result );
617
618 $this->setUserPerm( 'editmyusercss' );
619 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
620 $this->assertEquals( $resultMyCss, $result );
621
622 $this->setUserPerm( 'editmyuserjson' );
623 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
624 $this->assertEquals( $resultMyJson, $result );
625
626 $this->setUserPerm( 'editmyuserjs' );
627 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
628 $this->assertEquals( $resultMyJs, $result );
629
630 $this->setUserPerm( 'editusercss' );
631 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
632 $this->assertEquals( $resultUserCss, $result );
633
634 $this->setUserPerm( 'edituserjson' );
635 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
636 $this->assertEquals( $resultUserJson, $result );
637
638 $this->setUserPerm( 'edituserjs' );
639 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
640 $this->assertEquals( $resultUserJs, $result );
641
642 $this->setUserPerm( [ 'edituserjs', 'edituserjson', 'editusercss' ] );
643 $result = $this->title->getUserPermissionsErrors( 'bogus', $this->user );
644 $this->assertEquals( [ [ 'badaccess-group0' ] ], $result );
645 }
646
647 /**
648 * @todo This test method should be split up into separate test methods and
649 * data providers
650 *
651 * This test is failing per T201776.
652 *
653 * @group Broken
654 * @covers Title::checkPageRestrictions
655 */
656 public function testPageRestrictions() {
657 $prefix = MediaWikiServices::getInstance()->getContentLanguage()->
658 getFormattedNsText( NS_PROJECT );
659
660 $this->setTitle( NS_MAIN );
661 $this->title->mRestrictionsLoaded = true;
662 $this->setUserPerm( "edit" );
663 $this->title->mRestrictions = [ "bogus" => [ 'bogus', "sysop", "protect", "" ] ];
664
665 $this->assertEquals( [],
666 $this->title->getUserPermissionsErrors( 'edit',
667 $this->user ) );
668
669 $this->assertEquals( true,
670 $this->title->quickUserCan( 'edit', $this->user ) );
671 $this->title->mRestrictions = [ "edit" => [ 'bogus', "sysop", "protect", "" ],
672 "bogus" => [ 'bogus', "sysop", "protect", "" ] ];
673
674 $this->assertEquals( [ [ 'badaccess-group0' ],
675 [ 'protectedpagetext', 'bogus', 'bogus' ],
676 [ 'protectedpagetext', 'editprotected', 'bogus' ],
677 [ 'protectedpagetext', 'protect', 'bogus' ] ],
678 $this->title->getUserPermissionsErrors( 'bogus',
679 $this->user ) );
680 $this->assertEquals( [ [ 'protectedpagetext', 'bogus', 'edit' ],
681 [ 'protectedpagetext', 'editprotected', 'edit' ],
682 [ 'protectedpagetext', 'protect', 'edit' ] ],
683 $this->title->getUserPermissionsErrors( 'edit',
684 $this->user ) );
685 $this->setUserPerm( "" );
686 $this->assertEquals( [ [ 'badaccess-group0' ],
687 [ 'protectedpagetext', 'bogus', 'bogus' ],
688 [ 'protectedpagetext', 'editprotected', 'bogus' ],
689 [ 'protectedpagetext', 'protect', 'bogus' ] ],
690 $this->title->getUserPermissionsErrors( 'bogus',
691 $this->user ) );
692 $this->assertEquals( [ [ 'badaccess-groups', "*, [[$prefix:Users|Users]]", 2 ],
693 [ 'protectedpagetext', 'bogus', 'edit' ],
694 [ 'protectedpagetext', 'editprotected', 'edit' ],
695 [ 'protectedpagetext', 'protect', 'edit' ] ],
696 $this->title->getUserPermissionsErrors( 'edit',
697 $this->user ) );
698 $this->setUserPerm( [ "edit", "editprotected" ] );
699 $this->assertEquals( [ [ 'badaccess-group0' ],
700 [ 'protectedpagetext', 'bogus', 'bogus' ],
701 [ 'protectedpagetext', 'protect', 'bogus' ] ],
702 $this->title->getUserPermissionsErrors( 'bogus',
703 $this->user ) );
704 $this->assertEquals( [
705 [ 'protectedpagetext', 'bogus', 'edit' ],
706 [ 'protectedpagetext', 'protect', 'edit' ] ],
707 $this->title->getUserPermissionsErrors( 'edit',
708 $this->user ) );
709
710 $this->title->mCascadeRestriction = true;
711 $this->setUserPerm( "edit" );
712 $this->assertEquals( false,
713 $this->title->quickUserCan( 'bogus', $this->user ) );
714 $this->assertEquals( false,
715 $this->title->quickUserCan( 'edit', $this->user ) );
716 $this->assertEquals( [ [ 'badaccess-group0' ],
717 [ 'protectedpagetext', 'bogus', 'bogus' ],
718 [ 'protectedpagetext', 'editprotected', 'bogus' ],
719 [ 'protectedpagetext', 'protect', 'bogus' ] ],
720 $this->title->getUserPermissionsErrors( 'bogus',
721 $this->user ) );
722 $this->assertEquals( [ [ 'protectedpagetext', 'bogus', 'edit' ],
723 [ 'protectedpagetext', 'editprotected', 'edit' ],
724 [ 'protectedpagetext', 'protect', 'edit' ] ],
725 $this->title->getUserPermissionsErrors( 'edit',
726 $this->user ) );
727
728 $this->setUserPerm( [ "edit", "editprotected" ] );
729 $this->assertEquals( false,
730 $this->title->quickUserCan( 'bogus', $this->user ) );
731 $this->assertEquals( false,
732 $this->title->quickUserCan( 'edit', $this->user ) );
733 $this->assertEquals( [ [ 'badaccess-group0' ],
734 [ 'protectedpagetext', 'bogus', 'bogus' ],
735 [ 'protectedpagetext', 'protect', 'bogus' ],
736 [ 'protectedpagetext', 'protect', 'bogus' ] ],
737 $this->title->getUserPermissionsErrors( 'bogus',
738 $this->user ) );
739 $this->assertEquals( [ [ 'protectedpagetext', 'bogus', 'edit' ],
740 [ 'protectedpagetext', 'protect', 'edit' ],
741 [ 'protectedpagetext', 'protect', 'edit' ] ],
742 $this->title->getUserPermissionsErrors( 'edit',
743 $this->user ) );
744 }
745
746 /**
747 * @covers Title::checkCascadingSourcesRestrictions
748 */
749 public function testCascadingSourcesRestrictions() {
750 $this->setTitle( NS_MAIN, "test page" );
751 $this->setUserPerm( [ "edit", "bogus" ] );
752
753 $this->title->mCascadeSources = [
754 Title::makeTitle( NS_MAIN, "Bogus" ),
755 Title::makeTitle( NS_MAIN, "UnBogus" )
756 ];
757 $this->title->mCascadingRestrictions = [
758 "bogus" => [ 'bogus', "sysop", "protect", "" ]
759 ];
760
761 $this->assertEquals( false,
762 $this->title->userCan( 'bogus', $this->user ) );
763 $this->assertEquals( [
764 [ "cascadeprotected", 2, "* [[:Bogus]]\n* [[:UnBogus]]\n", 'bogus' ],
765 [ "cascadeprotected", 2, "* [[:Bogus]]\n* [[:UnBogus]]\n", 'bogus' ],
766 [ "cascadeprotected", 2, "* [[:Bogus]]\n* [[:UnBogus]]\n", 'bogus' ] ],
767 $this->title->getUserPermissionsErrors( 'bogus', $this->user ) );
768
769 $this->assertEquals( true,
770 $this->title->userCan( 'edit', $this->user ) );
771 $this->assertEquals( [],
772 $this->title->getUserPermissionsErrors( 'edit', $this->user ) );
773 }
774
775 /**
776 * @todo This test method should be split up into separate test methods and
777 * data providers
778 * @covers Title::checkActionPermissions
779 */
780 public function testActionPermissions() {
781 $this->setUserPerm( [ "createpage" ] );
782 $this->setTitle( NS_MAIN, "test page" );
783 $this->title->mTitleProtection['permission'] = '';
784 $this->title->mTitleProtection['user'] = $this->user->getId();
785 $this->title->mTitleProtection['expiry'] = 'infinity';
786 $this->title->mTitleProtection['reason'] = 'test';
787 $this->title->mCascadeRestriction = false;
788
789 $this->assertEquals( [ [ 'titleprotected', 'Useruser', 'test' ] ],
790 $this->title->getUserPermissionsErrors( 'create', $this->user ) );
791 $this->assertEquals( false,
792 $this->title->userCan( 'create', $this->user ) );
793
794 $this->title->mTitleProtection['permission'] = 'editprotected';
795 $this->setUserPerm( [ 'createpage', 'protect' ] );
796 $this->assertEquals( [ [ 'titleprotected', 'Useruser', 'test' ] ],
797 $this->title->getUserPermissionsErrors( 'create', $this->user ) );
798 $this->assertEquals( false,
799 $this->title->userCan( 'create', $this->user ) );
800
801 $this->setUserPerm( [ 'createpage', 'editprotected' ] );
802 $this->assertEquals( [],
803 $this->title->getUserPermissionsErrors( 'create', $this->user ) );
804 $this->assertEquals( true,
805 $this->title->userCan( 'create', $this->user ) );
806
807 $this->setUserPerm( [ 'createpage' ] );
808 $this->assertEquals( [ [ 'titleprotected', 'Useruser', 'test' ] ],
809 $this->title->getUserPermissionsErrors( 'create', $this->user ) );
810 $this->assertEquals( false,
811 $this->title->userCan( 'create', $this->user ) );
812
813 $this->setTitle( NS_MEDIA, "test page" );
814 $this->setUserPerm( [ "move" ] );
815 $this->assertEquals( false,
816 $this->title->userCan( 'move', $this->user ) );
817 $this->assertEquals( [ [ 'immobile-source-namespace', 'Media' ] ],
818 $this->title->getUserPermissionsErrors( 'move', $this->user ) );
819
820 $this->setTitle( NS_HELP, "test page" );
821 $this->assertEquals( [],
822 $this->title->getUserPermissionsErrors( 'move', $this->user ) );
823 $this->assertEquals( true,
824 $this->title->userCan( 'move', $this->user ) );
825
826 $this->title->mInterwiki = "no";
827 $this->assertEquals( [ [ 'immobile-source-page' ] ],
828 $this->title->getUserPermissionsErrors( 'move', $this->user ) );
829 $this->assertEquals( false,
830 $this->title->userCan( 'move', $this->user ) );
831
832 $this->setTitle( NS_MEDIA, "test page" );
833 $this->assertEquals( false,
834 $this->title->userCan( 'move-target', $this->user ) );
835 $this->assertEquals( [ [ 'immobile-target-namespace', 'Media' ] ],
836 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
837
838 $this->setTitle( NS_HELP, "test page" );
839 $this->assertEquals( [],
840 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
841 $this->assertEquals( true,
842 $this->title->userCan( 'move-target', $this->user ) );
843
844 $this->title->mInterwiki = "no";
845 $this->assertEquals( [ [ 'immobile-target-page' ] ],
846 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
847 $this->assertEquals( false,
848 $this->title->userCan( 'move-target', $this->user ) );
849 }
850
851 /**
852 * @covers Title::checkUserBlock
853 */
854 public function testUserBlock() {
855 $this->setMwGlobals( [
856 'wgEmailConfirmToEdit' => true,
857 'wgEmailAuthentication' => true,
858 ] );
859
860 $this->setUserPerm( [ "createpage", "move" ] );
861 $this->setTitle( NS_HELP, "test page" );
862
863 # $wgEmailConfirmToEdit only applies to 'edit' action
864 $this->assertEquals( [],
865 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
866 $this->assertContains( [ 'confirmedittext' ],
867 $this->title->getUserPermissionsErrors( 'edit', $this->user ) );
868
869 $this->setMwGlobals( 'wgEmailConfirmToEdit', false );
870 $this->assertNotContains( [ 'confirmedittext' ],
871 $this->title->getUserPermissionsErrors( 'edit', $this->user ) );
872
873 # $wgEmailConfirmToEdit && !$user->isEmailConfirmed() && $action != 'createaccount'
874 $this->assertEquals( [],
875 $this->title->getUserPermissionsErrors( 'move-target',
876 $this->user ) );
877
878 global $wgLang;
879 $prev = time();
880 $now = time() + 120;
881 $this->user->mBlockedby = $this->user->getId();
882 $this->user->mBlock = new Block( [
883 'address' => '127.0.8.1',
884 'by' => $this->user->getId(),
885 'reason' => 'no reason given',
886 'timestamp' => $prev + 3600,
887 'auto' => true,
888 'expiry' => 0
889 ] );
890 $this->user->mBlock->mTimestamp = 0;
891 $this->assertEquals( [ [ 'autoblockedtext',
892 '[[User:Useruser|Useruser]]', 'no reason given', '127.0.0.1',
893 'Useruser', null, 'infinite', '127.0.8.1',
894 $wgLang->timeanddate( wfTimestamp( TS_MW, $prev ), true ) ] ],
895 $this->title->getUserPermissionsErrors( 'move-target',
896 $this->user ) );
897
898 $this->assertEquals( false, $this->title->userCan( 'move-target', $this->user ) );
899 // quickUserCan should ignore user blocks
900 $this->assertEquals( true, $this->title->quickUserCan( 'move-target', $this->user ) );
901
902 global $wgLocalTZoffset;
903 $wgLocalTZoffset = -60;
904 $this->user->mBlockedby = $this->user->getName();
905 $this->user->mBlock = new Block( [
906 'address' => '127.0.8.1',
907 'by' => $this->user->getId(),
908 'reason' => 'no reason given',
909 'timestamp' => $now,
910 'auto' => false,
911 'expiry' => 10,
912 ] );
913 $this->assertEquals( [ [ 'blockedtext',
914 '[[User:Useruser|Useruser]]', 'no reason given', '127.0.0.1',
915 'Useruser', null, '23:00, 31 December 1969', '127.0.8.1',
916 $wgLang->timeanddate( wfTimestamp( TS_MW, $now ), true ) ] ],
917 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
918 # $action != 'read' && $action != 'createaccount' && $user->isBlockedFrom( $this )
919 # $user->blockedFor() == ''
920 # $user->mBlock->mExpiry == 'infinity'
921
922 $this->user->mBlockedby = $this->user->getName();
923 $this->user->mBlock = new Block( [
924 'address' => '127.0.8.1',
925 'by' => $this->user->getId(),
926 'reason' => 'no reason given',
927 'timestamp' => $now,
928 'auto' => false,
929 'expiry' => 10,
930 'systemBlock' => 'test',
931 ] );
932 $this->assertEquals( [ [ 'systemblockedtext',
933 '[[User:Useruser|Useruser]]', 'no reason given', '127.0.0.1',
934 'Useruser', 'test', '23:00, 31 December 1969', '127.0.8.1',
935 $wgLang->timeanddate( wfTimestamp( TS_MW, $now ), true ) ] ],
936 $this->title->getUserPermissionsErrors( 'move-target', $this->user ) );
937 }
938 }
Wiklou, le Wiki du Wiklou