refactor tests 4 (#485)

simonLeary42 · web-flow · commit a0b4d7a98954 · 2026-01-02T14:23:29.000-05:00
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -62,9 +62,10 @@ The password is always `password`. `tools/docker-dev/web/htpasswd` contains all
 Notable users:
 
 - `user1@org1.test` - admin, PI
-- `user2@org1.test` - not admin, not PI
-- `user2000@org2.test` - does not yet have an account
-- `user2005@org1.test` - regsitered but not qualified (not a PI or in a PI group)
+- `user2@org1.test` - blank user
+- `user4@org1.test` - normal user in PI group
+- `user5@org2.test` - PI with no group members
+- `user2000@org2.test` - user never before seen
 
 ### Changes to Dev Environment
 
diff --git a/phpstan.neon b/phpstan.neon
@@ -19,6 +19,18 @@ parameters:
         - '#Method SSHKeyAddTest::addSshKeysGithub\(\) is unused.#'
       paths:
         - test/functional/SSHKeyAddTest.php
+    # these functions are called with call_user_func
+    - messages:
+        - '#Method PIMemberApproveTest::approveUserByPI\(\) is unused.#'
+        - '#Method PIMemberApproveTest::approveUserByAdmin\(\) is unused.#'
+      paths:
+        - test/functional/PiMemberApproveTest.php
+    # these functions are called with call_user_func
+    - messages:
+        - '#Method PIMemberDenyTest::denyRequestByPI\(\) is unused.#'
+        - '#Method PIMemberDenyTest::denyRequestByAdmin\(\) is unused.#'
+      paths:
+        - test/functional/PiMemberDenyTest.php
     # assertTrue(true) makes phpunit shut up about tests doing no assertions
     - messages:
         - '#Call to method PHPUnit\\Framework\\Assert::assertTrue\(\) with true will always evaluate to true.#'
diff --git a/test/functional/PiMemberApproveTest.php b/test/functional/PiMemberApproveTest.php
@@ -8,32 +8,39 @@
 
 class PIMemberApproveTest extends UnityWebPortalTestCase
 {
-    // two different ways to accept a user into a PI group
-    public static function approveUserProvider(): TRegxDataProvider
+    private function approveUserByPI(string $uid, string $gid)
     {
-        return TRegxDataProvider::list(
-            function ($uid, $gid) {
-                global $USER;
-                assert($USER->getPIGroup()->gid === $gid, "signed in user must be the group owner");
-                http_post(__DIR__ . "/../../webroot/panel/pi.php", [
-                    "form_type" => "userReq",
-                    "action" => "Approve",
-                    "uid" => $uid,
-                ]);
-            },
-            function ($uid, $gid) {
-                http_post(__DIR__ . "/../../webroot/admin/pi-mgmt.php", [
-                    "form_type" => "reqChild",
-                    "action" => "Approve",
-                    "pi" => $gid,
-                    "uid" => $uid,
-                ]);
-            },
-        );
+        global $USER;
+        assert($USER->getPIGroup()->gid === $gid, "signed in user must be the group owner");
+        http_post(__DIR__ . "/../../webroot/panel/pi.php", [
+            "form_type" => "userReq",
+            "action" => "Approve",
+            "uid" => $uid,
+        ]);
+    }
+
+    private function approveUserByAdmin(string $uid, string $gid)
+    {
+        $this->switchUser("Admin");
+        try {
+            http_post(__DIR__ . "/../../webroot/admin/pi-mgmt.php", [
+                "form_type" => "reqChild",
+                "action" => "Approve",
+                "pi" => $gid,
+                "uid" => $uid,
+            ]);
+        } finally {
+            $this->switchBackUser();
+        }
+    }
+
+    public static function provider(): TRegxDataProvider
+    {
+        return TRegxDataProvider::list("approveUserByPI", "approveUserByAdmin");
     }
 
-    #[DataProvider("approveUserProvider")]
-    public function testApproveNonexistentRequest($approveUserFunc)
+    #[DataProvider("provider")]
+    public function testApproveNonexistentRequest($methodName)
     {
         global $USER;
         $this->switchUser("Blank");
@@ -42,15 +49,15 @@ public function testApproveNonexistentRequest($approveUserFunc)
         $piGroup = $USER->getPIGroup();
         try {
             $this->expectException(Exception::class); // FIXME more specific exception type
-            $approveUserFunc($uid, $piGroup->gid);
+            call_user_func([self::class, $methodName], $uid, $piGroup->gid);
         } finally {
             $this->switchUser("Blank", validate: false);
             ensureUserNotInPIGroup($piGroup);
         }
     }
 
-    #[DataProvider("approveUserProvider")]
-    public function testApproveMember($func)
+    #[DataProvider("provider")]
+    public function testApproveMember($methodName)
     {
         global $USER, $SSO, $LDAP, $SQL, $MAILER, $WEBHOOK;
         $this->switchUser("EmptyPIGroupOwner");
@@ -65,7 +72,7 @@ public function testApproveMember($func)
 
             $approve_uid = $SSO["user"];
             $this->switchUser("EmptyPIGroupOwner", validate: false);
-            $func($approve_uid, $gid);
+            call_user_func([self::class, $methodName], $approve_uid, $gid);
             $this->switchUser("Blank", validate: false);
 
             $this->assertFalse($pi_group->requestExists($USER));
diff --git a/test/functional/PiMemberDenyTest.php b/test/functional/PiMemberDenyTest.php
@@ -1,47 +1,59 @@
 <?php
-
 use PHPUnit\Framework\Attributes\DataProvider;
-use UnityWebPortal\lib\UnityUser;
-use function PHPUnit\Framework\assertEquals;
+use TRegx\PhpUnit\DataProviders\DataProvider as TRegxDataProvider;
 
 class PIMemberDenyTest extends UnityWebPortalTestCase
 {
-    static $requestUid;
+    private function denyRequestByPI(string $uid)
+    {
+        http_post(__DIR__ . "/../../webroot/panel/pi.php", [
+            "form_type" => "userReq",
+            "action" => "Deny",
+            "uid" => $uid,
+        ]);
+    }
 
-    public function setUp(): void
+    private function denyRequestByAdmin(string $uid)
     {
-        parent::setUp();
         global $USER;
-        $this->switchUser("Blank");
-        self::$requestUid = $USER->uid;
+        $gid = $USER->getPIGroup()->gid;
+        $this->switchUser("Admin");
+        try {
+            http_post(__DIR__ . "/../../webroot/admin/pi-mgmt.php", [
+                "form_type" => "reqChild",
+                "action" => "Deny",
+                "pi" => $gid,
+                "uid" => $uid,
+            ]);
+        } finally {
+            $this->switchBackUser();
+        }
     }
 
-    private function denyUser(string $uid)
+    public static function provider()
     {
-        http_post(__DIR__ . "/../../webroot/panel/pi.php", [
-            "form_type" => "userReq",
-            "action" => "approve",
-            "uid" => $uid,
-        ]);
+        return TRegxDataProvider::list("denyRequestByPI", "denyRequestByAdmin");
     }
 
-    public function testDenyRequest()
+    #[DataProvider("provider")]
+    public function testDenyRequest(string $methodName)
     {
         global $USER, $LDAP, $SQL, $MAILER, $WEBHOOK;
+        $this->switchUser("Blank");
+        $requestedUser = $USER;
         $this->switchUser("EmptyPIGroupOwner");
         $pi = $USER;
         $piGroup = $USER->getPIGroup();
-        $requestedUser = new UnityUser(self::$requestUid, $LDAP, $SQL, $MAILER, $WEBHOOK);
+        $this->assertEmpty($piGroup->getRequests());
+        $this->assertEqualsCanonicalizing([$pi->uid], $piGroup->getMemberUIDs());
         try {
             $piGroup->newUserRequest($requestedUser);
-            $this->assertFalse($piGroup->memberUIDExists($requestedUser->uid));
-
-            $piGroup->denyUser($requestedUser);
+            $this->assertNotEmpty($piGroup->getRequests());
+            call_user_func([self::class, $methodName], $requestedUser->uid);
             $this->assertEmpty($piGroup->getRequests());
             $this->assertEqualsCanonicalizing([$pi->uid], $piGroup->getMemberUIDs());
-            $this->assertFalse($piGroup->memberUIDExists($requestedUser->uid));
         } finally {
-            $SQL->removeRequest(self::$requestUid, $piGroup->gid);
+            $SQL->removeRequest($requestedUser->uid, $piGroup->gid);
         }
     }
 }
diff --git a/test/functional/SSHKeyAddTest.php b/test/functional/SSHKeyAddTest.php
@@ -104,7 +104,7 @@ public function testAddSshKeys(string $methodName, int $expectedKeysAdded, array
         $numKeysBefore = $this->getKeyCount();
         $this->assertEquals(0, $numKeysBefore);
         try {
-            call_user_func([SSHKeyAddTest::class, $methodName], $keys);
+            call_user_func([self::class, $methodName], $keys);
             // $method($keys);
             $numKeysAfter = $this->getKeyCount();
             $this->assertEquals($expectedKeysAdded, $numKeysAfter - $numKeysBefore);
diff --git a/test/phpunit-bootstrap.php b/test/phpunit-bootstrap.php
@@ -203,6 +203,8 @@ function ensurePIGroupDoesNotExist()
 
 class UnityWebPortalTestCase extends TestCase
 {
+    private ?string $last_user_nickname = null;
+    private ?string $current_user_nickname = null;
     private array $uid_to_latest_session_id = [];
     // FIXME these names are wrong
     private static array $UID2ATTRIBUTES = [
@@ -445,6 +447,8 @@ function switchUser(
         } else {
             session_id($this->uid_to_latest_session_id[$uid]);
         }
+        $this->last_user_nickname = $this->current_user_nickname;
+        $this->current_user_nickname = $nickname;
         // session_start will be called on the first post()
         $_SERVER["REMOTE_USER"] = $eppn;
         $_SERVER["REMOTE_ADDR"] = "127.0.0.1";
@@ -458,4 +462,9 @@ function switchUser(
             $this->validateUser($nickname);
         }
     }
+
+    function switchBackUser(bool $validate = false)
+    {
+        $this->switchUser($this->last_user_nickname, validate: $validate);
+    }
 }
diff --git a/tools/docker-dev/identity/bootstrap.ldif b/tools/docker-dev/identity/bootstrap.ldif
@@ -37,18 +37,6 @@ dn: cn=web_admins,dc=unityhpc,dc=test
 cn: web_admins
 gidnumber: 500
 memberuid: user1_org1_test
-memberuid: user3_org1_test
-memberuid: user4_org1_test
-memberuid: user5_org2_test
-memberuid: user6_org1_test
-memberuid: user7_org1_test
-memberuid: user8_org1_test
-memberuid: user9_org3_test
-memberuid: user10_org1_test
-memberuid: user11_org1_test
-memberuid: user12_org1_test
-memberuid: user13_org1_test
-memberuid: user14_org3_test
 objectclass: posixGroup
 objectclass: top
 
diff --git a/tools/docker-dev/web/unity-apache.conf b/tools/docker-dev/web/unity-apache.conf
@@ -1,27 +1,12 @@
 <VirtualHost _default_:80>
-
     DocumentRoot /var/www/unity-web-portal/webroot
-
-    <Location /panel>
+    <LocationMatch '^/(panel|admin)'>
         AuthType Basic
         AuthName "Unity User Panel"
         AuthUserFile /etc/apache2/.htpasswd
         Require valid-user
-
         SetEnv givenName "DevFirstname"
         SetEnv sn "DevLastname"
         SetEnv mail "DevName@DevDomain.com"
-    </Location>
-
-    <Location /admin>
-        AuthType Basic
-        AuthName "Unity Admin Panel"
-        AuthUserFile /etc/apache2/.htpasswd
-        Require user user1@org1.test user2@org1.test user3@org1.test user4@org1.test user5@org2.test user6@org1.test user7@org1.test user8@org1.test user9@org3.test user10@org1.test user11@org1.test user12@org1.test user13@org1.test user14@org3.test
-
-        SetEnv givenName "DevFirstname"
-        SetEnv sn "DevLastname"
-        SetEnv mail "DevName@DevDomain.com"
-    </Location>
-
+    </LocationMatch>
 </VirtualHost>

-Original file line number
+Diff line change
 Notable users:
 - `[email protected]` - admin, PI
 -- `[email protected]` - not admin, not PI
 -- `[email protected]` - does not yet have an account
 -- `[email protected]` - regsitered but not qualified (not a PI or in a PI group)
 +- `[email protected]` - blank user
 +- `[email protected]` - normal user in PI group
 +- `[email protected]` - PI with no group members
 +- `[email protected]` - user never before seen
 ### Changes to Dev Environment
Original file line number	Diff line number	Diff line change
`@@ -203,6 +203,8 @@ function ensurePIGroupDoesNotExist()`
`203`	`203`
`204`	`204`	`class UnityWebPortalTestCase extends TestCase`
`205`	`205`	`{`
	`206`	`+ private ?string $last_user_nickname = null;`
	`207`	`+ private ?string $current_user_nickname = null;`
`206`	`208`	`private array $uid_to_latest_session_id = [];`
`207`	`209`	`// FIXME these names are wrong`
`208`	`210`	`private static array $UID2ATTRIBUTES = [`
`@@ -445,6 +447,8 @@ function switchUser(`
`445`	`447`	`} else {`
`446`	`448`	`session_id($this->uid_to_latest_session_id[$uid]);`
`447`	`449`	`}`
	`450`	`+ $this->last_user_nickname = $this->current_user_nickname;`
	`451`	`+ $this->current_user_nickname = $nickname;`
`448`	`452`	`// session_start will be called on the first post()`
`449`	`453`	`$_SERVER["REMOTE_USER"] = $eppn;`
`450`	`454`	`$_SERVER["REMOTE_ADDR"] = "127.0.0.1";`
`@@ -458,4 +462,9 @@ function switchUser(`
`458`	`462`	`$this->validateUser($nickname);`
`459`	`463`	`}`
`460`	`464`	`}`
	`465`	`+`
	`466`	`+ function switchBackUser(bool $validate = false)`
	`467`	`+ {`
	`468`	`+ $this->switchUser($this->last_user_nickname, validate: $validate);`
	`469`	`+ }`
`461`	`470`	`}`