More phpunit stuff

Verdict-as-a-Service Team · Verdict-as-a-Service Team · commit 7445edaff83d · 2025-11-24T10:22:19.000+01:00
diff --git a/tests/integration/BaseIntegrationTest.php b/tests/integration/BaseIntegrationTest.php
@@ -11,7 +11,8 @@
 use PHPUnit\Framework\TestCase;
 use RuntimeException;
 
-abstract class BaseIntegrationTest extends TestCase {
+abstract class BaseIntegrationTest extends TestCase
+{
 	protected string $hostname;
 	protected string $folderPrefix;
 	protected string $testUser;
@@ -24,7 +25,8 @@ abstract class BaseIntegrationTest extends TestCase {
 
 	protected static bool $setupCompleted = false;
 
-	protected function setUp(): void {
+	protected function setUp(): void
+	{
 		parent::setUp();
 
 		// Load environment variables
@@ -44,7 +46,8 @@ protected function setUp(): void {
 		}
 	}
 
-	protected function setupEnvironment(): void {
+	protected function setupEnvironment(): void
+	{
 		// Create temporary folder
 		if (!is_dir($this->folderPrefix)) {
 			mkdir($this->folderPrefix, 0755, true);
@@ -79,7 +82,8 @@ protected function setupEnvironment(): void {
 		$this->executeDockerCommand('php occ app:enable gdatavaas');
 	}
 
-	protected function executeDockerCommand(string $command, array $env = []): array {
+	protected function executeDockerCommand(string $command, array $env = []): array
+	{
 		$envString = '';
 		foreach ($env as $key => $value) {
 			$envString .= " --env {$key}=\"{$value}\"";
@@ -96,7 +100,8 @@ protected function executeDockerCommand(string $command, array $env = []): array
 		];
 	}
 
-	protected function makeHttpRequest(string $method, string $url, array $options = []): array {
+	protected function makeHttpRequest(string $method, string $url, array $options = []): array
+	{
 		$client = HttpClientBuilder::buildDefault();
 		$request = new Request($url, $method);
 
@@ -129,8 +134,6 @@ protected function makeHttpRequest(string $method, string $url, array $options =
 			$request->setBody($options['file_handle']);
 		}
 
-		var_dump($request);
-
 		try {
 			$response = $client->request($request);
 
@@ -148,7 +151,8 @@ protected function makeHttpRequest(string $method, string $url, array $options =
 		}
 	}
 
-	protected function uploadFileViaWebDAV(string $username, string $password, string $filename, string $content): array {
+	protected function uploadFileViaWebDAV(string $username, string $password, string $filename, string $content): array
+	{
 		$url = "http://{$this->hostname}/remote.php/dav/files/{$username}/{$filename}";
 
 		return $this->makeHttpRequest('PUT', $url, [
@@ -158,15 +162,17 @@ protected function uploadFileViaWebDAV(string $username, string $password, strin
 		]);
 	}
 
-	protected function deleteFileViaWebDAV(string $username, string $password, string $filename): array {
+	protected function deleteFileViaWebDAV(string $username, string $password, string $filename): array
+	{
 		$url = "http://{$this->hostname}/remote.php/dav/files/{$username}/{$filename}";
 
 		return $this->makeHttpRequest('DELETE', $url, [
 			'auth' => ['username' => $username, 'password' => $password]
 		]);
 	}
 
-	protected function uploadFileFromDisk(string $username, string $password, string $filename, string $localPath): array {
+	protected function uploadFileFromDisk(string $username, string $password, string $filename, string $localPath): array
+	{
 		if (!file_exists($localPath)) {
 			throw new RuntimeException("File not found: {$localPath}");
 		}
@@ -184,18 +190,19 @@ protected function uploadFileFromDisk(string $username, string $password, string
 		]);
 	}
 
-	protected function testGetEndpoint(string $endpoint, string $description, int $expectedHttpStatus = 200, string $username = 'admin', string $password = 'admin'): void {
+	protected function testGetEndpoint(string $endpoint, string $description, int $expectedHttpStatus = 200, string $username = 'admin', string $password = 'admin'): void
+	{
 		$url = "http://{$this->hostname}/apps/gdatavaas/{$endpoint}";
 
 		$result = $this->makeHttpRequest('GET', $url, [
 			'auth' => ['username' => $username, 'password' => $password]
 		]);
 
-		echo "{$description} result: {$result['http_code']}\n";
 		$this->assertEquals($expectedHttpStatus, $result['http_code'], "Failed: {$description}");
 	}
 
-	protected function testPostEndpoint(string $endpoint, array $data, string $description, int $expectedHttpStatus = 200, string $username = 'admin', string $password = 'admin'): void {
+	protected function testPostEndpoint(string $endpoint, array $data, string $description, int $expectedHttpStatus = 200, string $username = 'admin', string $password = 'admin'): void
+	{
 		$url = "http://{$this->hostname}/apps/gdatavaas/{$endpoint}";
 
 		$result = $this->makeHttpRequest('POST', $url, [
@@ -204,31 +211,35 @@ protected function testPostEndpoint(string $endpoint, array $data, string $descr
 			'headers' => ['Content-Type: application/json']
 		]);
 
-		echo "{$description} result: {$result['http_code']}\n";
 		$this->assertEquals($expectedHttpStatus, $result['http_code'], "Failed: {$description}");
 	}
 
-	protected function assertContainsVirusFound(array $response): void {
+	protected function assertContainsVirusFound(array $response): void
+	{
 		$this->assertStringContainsString('Virus found', $response['body'], 'Expected "Virus found" in response body');
 	}
 
-	protected function assertHttpCodeInRange(int $httpCode, int $min = 200, int $max = 299): void {
+	protected function assertHttpCodeInRange(int $httpCode, int $min = 200, int $max = 299): void
+	{
 		$this->assertGreaterThanOrEqual($min, $httpCode, "HTTP code {$httpCode} is below expected range {$min}-{$max}");
 		$this->assertLessThan($max + 1, $httpCode, "HTTP code {$httpCode} is above expected range {$min}-{$max}");
 	}
 
-	protected function getTagsForFile(string $filePath): array {
+	protected function getTagsForFile(string $filePath): array
+	{
 		$result = $this->executeDockerCommand("php occ gdatavaas:get-tags-for-file {$filePath}");
 		return $result['output'];
 	}
 
-	protected function assertHasTag(string $filePath, string $expectedTag): void {
+	protected function assertHasTag(string $filePath, string $expectedTag): void
+	{
 		$tags = $this->getTagsForFile($filePath);
 		$tagString = implode("\n", $tags);
 		$this->assertStringContainsString($expectedTag, $tagString, "Expected tag '{$expectedTag}' not found in file tags");
 	}
 
-	protected function assertTagCount(string $filePath, int $expectedCount): void {
+	protected function assertTagCount(string $filePath, int $expectedCount): void
+	{
 		$tags = $this->getTagsForFile($filePath);
 		// Filter out empty lines
 		$nonEmptyTags = array_filter($tags, function ($line) {
@@ -237,7 +248,8 @@ protected function assertTagCount(string $filePath, int $expectedCount): void {
 		$this->assertCount($expectedCount, $nonEmptyTags, "Expected {$expectedCount} tags, got " . count($nonEmptyTags));
 	}
 
-	public static function tearDownAfterClass(): void {
+	public static function tearDownAfterClass(): void
+	{
 		parent::tearDownAfterClass();
 
 		// Clean up temporary files
@@ -247,7 +259,8 @@ public static function tearDownAfterClass(): void {
 		}
 	}
 
-	private static function removeDirectory(string $dir): void {
+	private static function removeDirectory(string $dir): void
+	{
 		if (!is_dir($dir)) {
 			return;
 		}
diff --git a/tests/integration/SettingsControllerTest.php b/tests/integration/SettingsControllerTest.php
@@ -15,24 +15,55 @@ class SettingsControllerTest extends BaseIntegrationTest
     public static function adminGetRouteProvider(): array
     {
         return [
-            ['getCounters'],
             ['getAuthMethod'],
             ['getCache'],
             ['getHashlookup'],
+        ];
+    }
+
+    public static function adminPostRouteProvider(): array
+    {
+        return [
+            // TODO: use default settings
+            ['adminSettings', [
+                'username' => 'username',
+                'password' => 'password',
+                'clientId' => 'clientId',
+                'clientSecret' => 'clientSecret',
+                'authMethod' => 'authMethod',
+                'maxScanSize' => 209715200,
+                'timeout' => 900,
+                'cache' => true,
+                'hashlookup' => true
+            ]],
+            // ['setadvancedconfig'],
+        ];
+    }
+
+    public static function operatorGetRouteProvider(): array
+    {
+        return [
             ['getSendMailOnVirusUpload'],
             ['getAutoScan'],
             ['getPrefixMalicious'],
             ['getDisableUnscannedTag'],
-            // ['setAutoScan'],
-            // ['setPrefixMalicious'],
-            // ['setSendMailOnVirusUpload'],
-            // ['setDisableUnscannedTag'],
-            // ['setadvancedconfig'],
-            ['operatorSettings'],
-            ['adminSettings'],
-            // ['resetalltags'],
-            // ['testsettings'],
-            // ['scan']
+            ['getCounters'],
+        ];
+    }
+
+    public static function operatorPostRouteProvider(): array
+    {
+        return [
+            ['operatorSettings', [
+                'quarantineFolder' => '',
+                'scanOnlyThis' => '',
+                'doNotScanThis' => '',
+                'notifyMails' => '',
+            ]],
+            ['setAutoScan', ['autoScanFiles' => true]],
+            ['setPrefixMalicious', ['prefixMalicious' => '[VIRUS] ']],
+            ['setSendMailOnVirusUpload', ['sendMailOnVirusUpload' => 'false']],
+            ['setDisableUnscannedTag', ['disableUnscannedTag' => 'false']],
         ];
     }
 
@@ -42,20 +73,85 @@ public function testAdminCanAccessAdminGetRoutes(string $route): void
         $this->testGetEndpoint($route, "Admin access to {$route}", 200);
     }
 
-    // testAdminCanAccessAdminGetRoutes
-    // testAdminCanAccessAdminPostRoutes
-    // testAdminCanAccessOperatorGetRoutes
-    // testAdminCanAccessOperatorPostRoutes
 
-    // testOperatorCannotAccessAdminGetRoutes
-    // testOperatorCannotAccessAdminPostRoutes
-    // testOperatorCanAccessOperatorGetRoutes
-    // testOperatorCanAccessOperatorPostRoutes
+    #[DataProvider('adminPostRouteProvider')]
+    public function testAdminCanAccessAdminPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Admin access to {$route}", 200);
+    }
+
+    #[DataProvider('operatorGetRouteProvider')]
+    public function testAdminCanAccessOperatorGetRoutes(string $route): void
+    {
+        $this->testGetEndpoint($route, "Admin access to {$route}", 200);
+    }
+
+    #[DataProvider('operatorPostRouteProvider')]
+    public function testAdminCanAccessOperatorPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Admin access to {$route}", 200);
+    }
+
+
+    #[DataProvider('adminGetRouteProvider')]
+    public function testOperatorCannotAccessAdminGetRoutes(string $route): void
+    {
+        $this->testGetEndpoint($route, "Operator access to {$route}", 403, username: "vaas-operator", password: "gdatavaas-operator");
+    }
+
+
+    #[DataProvider('adminPostRouteProvider')]
+    public function testOperatorCannotAccessAdminPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Operator access to {$route}", 403, username: "vaas-operator", password: "gdatavaas-operator");
+    }
+
+    #[DataProvider('operatorGetRouteProvider')]
+    public function testOperatorCanAccessOperatorGetRoutes(string $route): void
+    {
+        $this->testGetEndpoint($route, "Operator access to {$route}", 200, username: "vaas-operator", password: "gdatavaas-operator");
+    }
+
+    #[DataProvider('operatorPostRouteProvider')]
+    public function testOperatorCanAccessOperatorPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Operator access to {$route}", 200, username: "vaas-operator", password: "gdatavaas-operator");
+    }
+
+
+    #[DataProvider('adminGetRouteProvider')]
+    public function testUserCannotAccessAdminGetRoutes(string $route): void
+    {
+        $this->testGetEndpoint($route, "User access to {$route}", 403, username: "user", password: "gdatavaas-user");
+    }
+
+
+    #[DataProvider('adminPostRouteProvider')]
+    public function testUserCannotAccessAdminPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Operator access to {$route}", 403, username: "user", password: "gdatavaas-user");
+    }
+
+    #[DataProvider('operatorGetRouteProvider')]
+    public function testUserCannotAccessOperatorGetRoutes(string $route): void
+    {
+        $this->testGetEndpoint($route, "Operator access to {$route}", 403, username: "user", password: "gdatavaas-user");
+    }
+
+    #[DataProvider('operatorPostRouteProvider')]
+    public function testUserCannotAccessOperatorPostRoutes(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, $data, "Operator access to {$route}", 403, username: "user", password: "gdatavaas-user");
+    }
+
+
+    #[DataProvider('adminPostRouteProvider')]
+    #[DataProvider('operatorPostRouteProvider')]
+    public function testPostRoutesReturn400ForEmptyBody(string $route, array $data): void
+    {
+        $this->testPostEndpoint($route, [], "Admin access to {$route}", 400);
+    }
 
-    // testUserCannotAccessAdminGetRoutes
-    // testUserCannotAccessAdminPostRoutes
-    // testUserCannotAccessOperatorGetRoutes
-    // testUserCannotAccessOperatorPostRoutes
 
     // /**
     //  * Test scan endpoint (POST /scan)
@@ -95,16 +191,6 @@ public function testAdminCanAccessAdminGetRoutes(string $route): void
     //     }
     // }
 
-    // /**
-    //  * Test all GET endpoints
-    //  * @dataProvider getEndpointsProvider
-    //  */
-    // public function testGetEndpoints(string $endpoint, string $description): void
-    // {
-    //     echo "Testing {$endpoint}...\n";
-    //     $this->testGetEndpoint($endpoint, $description, 200);
-    // }
-
     // /**
     //  * Data provider for GET endpoints
     //  */
@@ -122,16 +208,6 @@ public function testAdminCanAccessAdminGetRoutes(string $route): void
     //     ];
     // }
 
-    // /**
-    //  * Test all POST settings endpoints
-    //  * @dataProvider postEndpointsProvider
-    //  */
-    // public function testPostSettingsEndpoints(string $endpoint, array $data, string $description): void
-    // {
-    //     echo "Testing {$endpoint}...\n";
-    //     $this->testPostEndpoint($endpoint, $data, $description, 200);
-    // }
-
     // /**
     //  * Data provider for POST settings endpoints
     //  */
diff --git a/tests/integration/phpunit.xml b/tests/integration/phpunit.xml
@@ -7,11 +7,10 @@ SPDX-License-Identifier: AGPL-3.0-or-later
 -->
 
 <phpunit bootstrap="bootstrap.php"
-         verbose="true"
-         convertDeprecationsToExceptions="true"
          timeoutForSmallTests="900"
          timeoutForMediumTests="900"
          timeoutForLargeTests="900"
+         displayDetailsOnTestsThatTriggerDeprecations="true"
 >
     <testsuite name='G DATA Antivirus Integration Tests'>
         <directory suffix='Test.php'>.</directory>
