2011-03-18 16:17:04 +13:00
|
|
|
<?php
|
2016-06-16 16:57:19 +12:00
|
|
|
|
2017-08-09 14:53:38 +12:00
|
|
|
namespace SilverStripe\CMS\Tests\Controllers;
|
2017-08-09 13:25:12 +12:00
|
|
|
|
2017-03-21 17:26:46 +13:00
|
|
|
use SilverStripe\Versioned\Versioned;
|
2016-09-09 11:26:24 +12:00
|
|
|
use SilverStripe\Control\HTTPResponse_Exception;
|
2016-08-23 14:36:06 +12:00
|
|
|
use SilverStripe\Core\Config\Config;
|
|
|
|
use SilverStripe\Dev\FunctionalTest;
|
2017-08-09 13:25:12 +12:00
|
|
|
use Page;
|
|
|
|
|
2017-01-26 09:59:25 +13:00
|
|
|
class ContentControllerPermissionsTest extends FunctionalTest
|
|
|
|
{
|
|
|
|
protected $usesDatabase = true;
|
|
|
|
|
|
|
|
protected $autoFollowRedirection = false;
|
|
|
|
|
|
|
|
public function testCanViewStage()
|
|
|
|
{
|
|
|
|
// Create a new page
|
|
|
|
$page = new Page();
|
|
|
|
$page->URLSegment = 'testpage';
|
|
|
|
$page->write();
|
|
|
|
$page->copyVersionToStage(Versioned::DRAFT, Versioned::LIVE);
|
|
|
|
|
|
|
|
// Add a stage-only version
|
|
|
|
$page->Content = "Version2";
|
|
|
|
$page->write();
|
|
|
|
|
|
|
|
$response = $this->get('/testpage');
|
|
|
|
$this->assertEquals($response->getStatusCode(), 200, "Doesn't require login for implicit live stage");
|
|
|
|
|
|
|
|
$response = $this->get('/testpage/?stage=Live');
|
|
|
|
$this->assertEquals($response->getStatusCode(), 200, "Doesn't require login for explicit live stage");
|
|
|
|
|
|
|
|
try {
|
|
|
|
$response = $this->get('/testpage/?stage=Stage');
|
|
|
|
} catch (HTTPResponse_Exception $responseException) {
|
|
|
|
$response = $responseException->getResponse();
|
|
|
|
}
|
|
|
|
// should redirect to login
|
|
|
|
$this->assertEquals($response->getStatusCode(), 302, 'Redirects to login page when not logged in for draft stage');
|
2021-10-28 10:40:52 +13:00
|
|
|
$this->assertStringContainsString(
|
2017-01-26 09:59:25 +13:00
|
|
|
Config::inst()->get('SilverStripe\\Security\\Security', 'login_url'),
|
|
|
|
$response->getHeader('Location')
|
|
|
|
);
|
|
|
|
|
|
|
|
$this->logInWithPermission('CMS_ACCESS_CMSMain');
|
|
|
|
|
|
|
|
$response = $this->get('/testpage/?stage=Stage');
|
|
|
|
$this->assertEquals($response->getStatusCode(), 200, 'Doesnt redirect to login, but shows page for authenticated user');
|
|
|
|
}
|
2012-04-12 19:23:20 +12:00
|
|
|
}
|