tristan
9e2206a7d6
En pesée manuelle, le serveur incrémentait automatiquement le DSD et ignorait la saisie de l'opérateur. Désormais l'opérateur saisit le poids ET le DSD (le numéro du pont réellement utilisé), conservés tels quels — plus d'auto-incrément. Le champ « Numéro de pesée » séparé (manualNumber) est supprimé : pour le client c'est la même chose que le DSD. Pas de contrainte d'unicité sur le DSD (doublons autorisés). Colonnes empty_manual_number/full_manual_number droppées.
172 lines
6.3 KiB
PHP
172 lines
6.3 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Tests\Module\Logistique\Api;
|
|
|
|
use ApiPlatform\Symfony\Bundle\Test\Client;
|
|
use App\Module\Core\Domain\Entity\Role;
|
|
use App\Module\Core\Domain\Entity\User;
|
|
use App\Module\Sites\Domain\Entity\Site;
|
|
use App\Tests\Module\Core\Api\AbstractApiTestCase;
|
|
|
|
/**
|
|
* Endpoint `POST /api/weighbridge_readings` (§ 4.2) — tests fonctionnels.
|
|
*
|
|
* Couvre le wiring securite/routage (que les tests unitaires ne voient pas) :
|
|
* - happy path AUTO / MANUAL avec site courant et permission `manage` ;
|
|
* - 403 sans la permission `manage` (RBAC § 5.2) ;
|
|
* - 422 si le mode est absent / invalide (validation de la ressource).
|
|
*
|
|
* Nettoyage manuel (pas de DAMA) : users/roles `test*` + compteurs DSD.
|
|
*
|
|
* @internal
|
|
*/
|
|
final class WeighbridgeReadingApiTest extends AbstractApiTestCase
|
|
{
|
|
protected function tearDown(): void
|
|
{
|
|
$em = $this->getEm();
|
|
$em->getConnection()->executeStatement('DELETE FROM weighbridge_dsd_counter');
|
|
$em->createQuery('DELETE FROM '.User::class.' u WHERE u.username LIKE :p')
|
|
->setParameter('p', 'testuser_%')->execute()
|
|
;
|
|
$em->createQuery('DELETE FROM '.Role::class.' r WHERE r.code LIKE :p')
|
|
->setParameter('p', 'test_%')->execute()
|
|
;
|
|
|
|
parent::tearDown();
|
|
}
|
|
|
|
public function testAutoWeighingReturnsWeightInBoundsAndDsd(): void
|
|
{
|
|
$client = $this->manageClientWithCurrentSite();
|
|
|
|
$response = $client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
'json' => ['mode' => 'AUTO'],
|
|
]);
|
|
|
|
self::assertResponseStatusCodeSame(200);
|
|
$data = $response->toArray();
|
|
|
|
self::assertSame('AUTO', $data['mode']);
|
|
self::assertIsInt($data['weight']);
|
|
self::assertGreaterThanOrEqual(10000, $data['weight']);
|
|
self::assertLessThanOrEqual(50000, $data['weight']);
|
|
self::assertIsInt($data['dsd']);
|
|
self::assertGreaterThanOrEqual(1, $data['dsd']);
|
|
}
|
|
|
|
public function testManualWeighingKeepsWeightAndEnteredDsd(): void
|
|
{
|
|
$client = $this->manageClientWithCurrentSite();
|
|
|
|
$response = $client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
// Le DSD est SAISI par l'operateur et conserve tel quel (ERP-193).
|
|
'json' => ['mode' => 'MANUAL', 'weight' => 23187, 'dsd' => 16619],
|
|
]);
|
|
|
|
self::assertResponseStatusCodeSame(200);
|
|
$data = $response->toArray();
|
|
|
|
self::assertSame('MANUAL', $data['mode']);
|
|
self::assertSame(23187, $data['weight']);
|
|
self::assertSame(16619, $data['dsd'], 'Le DSD saisi est conserve, pas d\'auto-increment.');
|
|
}
|
|
|
|
public function testManagePermissionIsRequired(): void
|
|
{
|
|
// Un user portant uniquement `view` ne peut pas declencher de pesee.
|
|
$credentials = $this->createUserWithPermission('logistique.weighing_tickets.view');
|
|
$client = $this->authenticatedClient($credentials['username'], $credentials['password']);
|
|
|
|
$client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
'json' => ['mode' => 'AUTO'],
|
|
]);
|
|
|
|
self::assertResponseStatusCodeSame(403);
|
|
}
|
|
|
|
public function testInvalidModeIsRejected(): void
|
|
{
|
|
$client = $this->manageClientWithCurrentSite();
|
|
|
|
$response = $client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
'json' => ['mode' => 'INVALID'],
|
|
]);
|
|
|
|
// Garde-fou ERP-101 : la 422 doit cibler `mode` (Assert\Choice), pas juste
|
|
// un bon code HTTP — sinon une violation sur le mauvais champ passerait.
|
|
self::assertResponseStatusCodeSame(422);
|
|
self::assertViolationOnPath($response, 'mode');
|
|
}
|
|
|
|
public function testManualWeighingRequiresWeight(): void
|
|
{
|
|
$client = $this->manageClientWithCurrentSite();
|
|
|
|
$response = $client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
'json' => ['mode' => 'MANUAL'],
|
|
]);
|
|
|
|
// Garde-fou ERP-101 : la 422 doit cibler `weight` (Callback validateManualFields).
|
|
self::assertResponseStatusCodeSame(422);
|
|
self::assertViolationOnPath($response, 'weight');
|
|
}
|
|
|
|
public function testManualWeighingRequiresDsd(): void
|
|
{
|
|
$client = $this->manageClientWithCurrentSite();
|
|
|
|
$response = $client->request('POST', '/api/weighbridge_readings', [
|
|
'headers' => ['Content-Type' => 'application/ld+json'],
|
|
'json' => ['mode' => 'MANUAL', 'weight' => 23187],
|
|
]);
|
|
|
|
// En manuel, le DSD est saisi → obligatoire (Callback validateManualFields).
|
|
self::assertResponseStatusCodeSame(422);
|
|
self::assertViolationOnPath($response, 'dsd');
|
|
}
|
|
|
|
/**
|
|
* Garde-fou ERP-101 (miroir AbstractWeighingTicketApiTestCase) : une 422 doit
|
|
* porter une violation sur le `propertyPath` attendu, consommable inline par
|
|
* useFormErrors cote front, pas seulement le bon statut HTTP.
|
|
*/
|
|
private static function assertViolationOnPath(object $response, string $path): void
|
|
{
|
|
$paths = array_column($response->toArray(false)['violations'] ?? [], 'propertyPath');
|
|
|
|
self::assertContains(
|
|
$path,
|
|
$paths,
|
|
sprintf('Aucune violation sur "%s" (paths: %s).', $path, implode(', ', $paths)),
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Cree un user non-admin portant `logistique.weighing_tickets.manage`, lui
|
|
* positionne un site courant (l'endpoint est cloisonne par site, § 2.3) et
|
|
* renvoie un client authentifie.
|
|
*/
|
|
private function manageClientWithCurrentSite(): Client
|
|
{
|
|
$credentials = $this->createUserWithPermission('logistique.weighing_tickets.manage');
|
|
|
|
$em = $this->getEm();
|
|
$user = $em->getRepository(User::class)->findOneBy(['username' => $credentials['username']]);
|
|
self::assertInstanceOf(User::class, $user);
|
|
|
|
$site = $em->getRepository(Site::class)->findAll()[0];
|
|
$user->setCurrentSite($site);
|
|
$em->flush();
|
|
|
|
return $this->authenticatedClient($credentials['username'], $credentials['password']);
|
|
}
|
|
}
|