Matthieu
63 lines
1.7 KiB
PHP
63 lines
1.7 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Tests\Functional\Controller;
|
|
|
|
use App\Entity\User;
|
|
use Symfony\Bundle\FrameworkBundle\KernelBrowser;
|
|
use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;
|
|
|
|
/**
|
|
* @internal
|
|
*/
|
|
final class ShareBrowseTest extends WebTestCase
|
|
{
|
|
public function testBrowseRequiresAuthentication(): void
|
|
{
|
|
$client = self::createClient();
|
|
$client->request('GET', '/api/share/browse?path=/');
|
|
|
|
self::assertSame(401, $client->getResponse()->getStatusCode());
|
|
}
|
|
|
|
public function testBrowseRejectsPathTraversal(): void
|
|
{
|
|
$client = self::createClient();
|
|
$this->login($client);
|
|
|
|
$client->request('GET', '/api/share/browse?path='.urlencode('../etc'));
|
|
|
|
self::assertSame(400, $client->getResponse()->getStatusCode());
|
|
}
|
|
|
|
public function testBrowseReturns409WhenNotConfigured(): void
|
|
{
|
|
$client = self::createClient();
|
|
$this->login($client);
|
|
|
|
$client->request('GET', '/api/share/browse?path=');
|
|
|
|
self::assertSame(409, $client->getResponse()->getStatusCode());
|
|
}
|
|
|
|
public function testStatusReturnsDisabledByDefault(): void
|
|
{
|
|
$client = self::createClient();
|
|
$this->login($client);
|
|
|
|
$client->request('GET', '/api/share/status');
|
|
|
|
self::assertResponseIsSuccessful();
|
|
$data = json_decode($client->getResponse()->getContent(), true);
|
|
self::assertFalse($data['enabled']);
|
|
}
|
|
|
|
private function login(KernelBrowser $client): void
|
|
{
|
|
$em = self::getContainer()->get('doctrine.orm.entity_manager');
|
|
$user = $em->getRepository(User::class)->findOneBy(['username' => 'alice']);
|
|
$client->loginUser($user);
|
|
}
|
|
}
|