Add test for query with access as property

mglaman · mglaman · commit 8f3abe6d9085 · 2022-07-14T10:28:59.000-05:00
issue #437
diff --git a/src/Type/DrupalStaticEntityQueryDynamicReturnTypeExtension.php b/src/Type/DrupalStaticEntityQueryDynamicReturnTypeExtension.php
@@ -5,6 +5,7 @@
 use mglaman\PHPStanDrupal\Drupal\EntityDataRepository;
 use mglaman\PHPStanDrupal\Type\EntityQuery\ConfigEntityQueryType;
 use mglaman\PHPStanDrupal\Type\EntityQuery\ContentEntityQueryType;
+use mglaman\PHPStanDrupal\Type\EntityQuery\EntityQueryType;
 use mglaman\PHPStanDrupal\Type\EntityStorage\ConfigEntityStorageType;
 use mglaman\PHPStanDrupal\Type\EntityStorage\ContentEntityStorageType;
 use PhpParser\Node\Expr\StaticCall;
@@ -80,6 +81,10 @@ public function getTypeFromStaticMethodCall(
             );
         }
 
-        return $returnType;
+        return new EntityQueryType(
+            $returnType->getClassName(),
+            $returnType->getSubtractedType(),
+            $returnType->getClassReflection()
+        );
     }
 }
diff --git a/tests/src/Rules/EntityQueryHasAccessCheckRuleTest.php b/tests/src/Rules/EntityQueryHasAccessCheckRuleTest.php
@@ -49,8 +49,8 @@ public function cases(): \Generator
             [__DIR__ . '/data/bug-438.php'],
             []
         ];
-        yield 'bug-396a.php' => [
-            [__DIR__.'/data/bug-396a.php'],
+        yield 'bug-396a1.php' => [
+            [__DIR__.'/data/bug-396a1.php'],
             [
                 [
                     'Missing explicit access check on entity query.',
@@ -59,6 +59,14 @@ public function cases(): \Generator
                 ]
             ]
         ];
+        yield 'bug-396a2.php' => [
+            [__DIR__ . '/data/bug-396a2.php'],
+            []
+        ];
+        yield 'bug-396a3.php' => [
+            [__DIR__ . '/data/bug-396a3.php'],
+            []
+        ];
         yield 'bug-396b.php' => [
             [__DIR__ . '/data/bug-396b.php'],
             []
@@ -67,5 +75,9 @@ public function cases(): \Generator
             [__DIR__ . '/data/bug-396c.php'],
             []
         ];
+        yield 'bug-437.php' => [
+            [__DIR__ . '/data/bug-437.php'],
+            []
+        ];
     }
 }
diff --git a/tests/src/Rules/data/bug-396a.php b/tests/src/Rules/data/bug-396a.php
diff --git a/tests/src/Rules/data/bug-396a1.php b/tests/src/Rules/data/bug-396a1.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace Bug396a;
+
+function foo() {
+    $query = \Drupal::entityQuery('user')
+        ->condition('status', 1)
+        ->condition('uid', 1, '<>')
+        ->condition('field_profile_visibility', 1)
+        ->condition('field_account_type', '', '<>')
+        ->condition('field_last_name.value', '', '<>');
+    if( isset($qparam['expertise']) && !empty($qparam['expertise']) ) {
+        $query->condition('field_field_expertise.entity.tid', $qparam['expertise']);
+    }
+    if( isset($qparam['origin']) && !empty($qparam['origin']) ) {
+        $query->condition('field_place_origin.entity:taxonomy_term.field_country_tags', $qparam['origin']);
+    }
+    if( isset($qparam['place_residence']) && !empty($qparam['place_residence']) ) {
+        $query->condition('field_place_residence.entity:taxonomy_term.field_country_tags', $qparam['place_residence']);
+    }
+    if( isset($qparam['city']) && !empty($qparam['city']) ) {
+        $query->condition('field_city', $qparam['city'], 'CONTAINS');
+    }
+    if( isset($qparam['user_type']) && !empty($qparam['user_type']) ) {
+        $query->condition('field_account_type.entity.tid', $qparam['user_type']);
+    }
+    $users = $query->execute();
+};
diff --git a/tests/src/Rules/data/bug-396a2.php b/tests/src/Rules/data/bug-396a2.php
@@ -0,0 +1,29 @@
+<?php
+
+namespace Bug396a;
+
+function bar() {
+    $query = \Drupal::entityQuery('user')
+        ->accessCheck(FALSE)
+        ->condition('status', 1)
+        ->condition('uid', 1, '<>')
+        ->condition('field_profile_visibility', 1)
+        ->condition('field_account_type', '', '<>')
+        ->condition('field_last_name.value', '', '<>');
+    if( isset($qparam['expertise']) && !empty($qparam['expertise']) ) {
+        $query->condition('field_field_expertise.entity.tid', $qparam['expertise']);
+    }
+    if( isset($qparam['origin']) && !empty($qparam['origin']) ) {
+        $query->condition('field_place_origin.entity:taxonomy_term.field_country_tags', $qparam['origin']);
+    }
+    if( isset($qparam['place_residence']) && !empty($qparam['place_residence']) ) {
+        $query->condition('field_place_residence.entity:taxonomy_term.field_country_tags', $qparam['place_residence']);
+    }
+    if( isset($qparam['city']) && !empty($qparam['city']) ) {
+        $query->condition('field_city', $qparam['city'], 'CONTAINS');
+    }
+    if( isset($qparam['user_type']) && !empty($qparam['user_type']) ) {
+        $query->condition('field_account_type.entity.tid', $qparam['user_type']);
+    }
+    $users = $query->execute();
+};
diff --git a/tests/src/Rules/data/bug-396a3.php b/tests/src/Rules/data/bug-396a3.php
@@ -0,0 +1,29 @@
+<?php
+
+namespace Bug396a;
+
+function baz() {
+    $query = \Drupal::entityQuery('user')
+        ->condition('status', 1)
+        ->condition('uid', 1, '<>')
+        ->condition('field_profile_visibility', 1)
+        ->condition('field_account_type', '', '<>')
+        ->condition('field_last_name.value', '', '<>');
+    if( isset($qparam['expertise']) && !empty($qparam['expertise']) ) {
+        $query->condition('field_field_expertise.entity.tid', $qparam['expertise']);
+    }
+    if( isset($qparam['origin']) && !empty($qparam['origin']) ) {
+        $query->condition('field_place_origin.entity:taxonomy_term.field_country_tags', $qparam['origin']);
+    }
+    if( isset($qparam['place_residence']) && !empty($qparam['place_residence']) ) {
+        $query->condition('field_place_residence.entity:taxonomy_term.field_country_tags', $qparam['place_residence']);
+    }
+    if( isset($qparam['city']) && !empty($qparam['city']) ) {
+        $query->condition('field_city', $qparam['city'], 'CONTAINS');
+    }
+    if( isset($qparam['user_type']) && !empty($qparam['user_type']) ) {
+        $query->condition('field_account_type.entity.tid', $qparam['user_type']);
+    }
+    $query->accessCheck(FALSE);
+    $users = $query->execute();
+};
diff --git a/tests/src/Rules/data/bug-437.php b/tests/src/Rules/data/bug-437.php
@@ -0,0 +1,20 @@
+<?php
+
+namespace Bug437;
+
+use Drupal\Core\Entity\EntityTypeManagerInterface;
+use Drupal\Core\Entity\Query\QueryInterface;
+
+final class Foo {
+    private QueryInterface $vocabularyQuery;
+    public function __construct(EntityTypeManagerInterface $entityTypeManager)
+    {
+        $this->vocabularyQuery = $entityTypeManager
+            ->getStorage('taxonomy_term')
+            ->getQuery()
+            ->accessCheck(TRUE);
+    }
+    public function a(): int {
+        return $this->vocabularyQuery->count()->execute();
+    }
+}

Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@`
`5`	`5`	`use mglaman\PHPStanDrupal\Drupal\EntityDataRepository;`
`6`	`6`	`use mglaman\PHPStanDrupal\Type\EntityQuery\ConfigEntityQueryType;`
`7`	`7`	`use mglaman\PHPStanDrupal\Type\EntityQuery\ContentEntityQueryType;`
	`8`	`+use mglaman\PHPStanDrupal\Type\EntityQuery\EntityQueryType;`
`8`	`9`	`use mglaman\PHPStanDrupal\Type\EntityStorage\ConfigEntityStorageType;`
`9`	`10`	`use mglaman\PHPStanDrupal\Type\EntityStorage\ContentEntityStorageType;`
`10`	`11`	`use PhpParser\Node\Expr\StaticCall;`
`@@ -80,6 +81,10 @@ public function getTypeFromStaticMethodCall(`
`80`	`81`	`);`
`81`	`82`	`}`
`82`	`83`
`83`		`- return $returnType;`
	`84`	`+ return new EntityQueryType(`
	`85`	`+ $returnType->getClassName(),`
	`86`	`+ $returnType->getSubtractedType(),`
	`87`	`+ $returnType->getClassReflection()`
	`88`	`+ );`
`84`	`89`	`}`
`85`	`90`	`}`
Original file line number	Diff line number	Diff line change
`@@ -49,8 +49,8 @@ public function cases(): \Generator`
`49`	`49`	`[__DIR__ . '/data/bug-438.php'],`
`50`	`50`	`[]`
`51`	`51`	`];`
`52`		`- yield 'bug-396a.php' => [`
`53`		`- [__DIR__.'/data/bug-396a.php'],`
	`52`	`+ yield 'bug-396a1.php' => [`
	`53`	`+ [__DIR__.'/data/bug-396a1.php'],`
`54`	`54`	`[`
`55`	`55`	`[`
`56`	`56`	`'Missing explicit access check on entity query.',`
`@@ -59,6 +59,14 @@ public function cases(): \Generator`
`59`	`59`	`]`
`60`	`60`	`]`
`61`	`61`	`];`
	`62`	`+ yield 'bug-396a2.php' => [`
	`63`	`+ [__DIR__ . '/data/bug-396a2.php'],`
	`64`	`+ []`
	`65`	`+ ];`
	`66`	`+ yield 'bug-396a3.php' => [`
	`67`	`+ [__DIR__ . '/data/bug-396a3.php'],`
	`68`	`+ []`
	`69`	`+ ];`
`62`	`70`	`yield 'bug-396b.php' => [`
`63`	`71`	`[__DIR__ . '/data/bug-396b.php'],`
`64`	`72`	`[]`
`@@ -67,5 +75,9 @@ public function cases(): \Generator`
`67`	`75`	`[__DIR__ . '/data/bug-396c.php'],`
`68`	`76`	`[]`
`69`	`77`	`];`
	`78`	`+ yield 'bug-437.php' => [`
	`79`	`+ [__DIR__ . '/data/bug-437.php'],`
	`80`	`+ []`
	`81`	`+ ];`
`70`	`82`	`}`
`71`	`83`	`}`