overblog
diff --git a/‎ExpressionLanguage/AuthorizationExpressionProvider.php‎
Lines changed: 8 additions & 36 deletions b/‎ExpressionLanguage/AuthorizationExpressionProvider.php‎
Lines changed: 8 additions & 36 deletions
diff --git a/‎ExpressionLanguage/ConfigExpressionProvider.php‎
Lines changed: 8 additions & 29 deletions b/‎ExpressionLanguage/ConfigExpressionProvider.php‎
Lines changed: 8 additions & 29 deletions
diff --git a/‎Tests/DIContainerMockTrait.php‎
Lines changed: 40 additions & 0 deletions b/‎Tests/DIContainerMockTrait.php‎
Lines changed: 40 additions & 0 deletions
diff --git a/‎Tests/ExpressionLanguage/AuthorizationExpressionProviderTest.php‎
Lines changed: 159 additions & 0 deletions b/‎Tests/ExpressionLanguage/AuthorizationExpressionProviderTest.php‎
Lines changed: 159 additions & 0 deletions
@@ -19,21 +19,11 @@ class AuthorizationExpressionProvider implements ExpressionFunctionProviderInter
     public function getFunctions()
     {
         return [
-            new ExpressionFunction('hasRole', function ($role) {
-                return sprintf('$authChecker->isGranted(%s)', $role);
-            }, function (array $variables, $role) {
+            new ExpressionFunction('hasRole', function () {}, function (array $variables, $role) {
                 return $variables['container']->get('security.authorization_checker')->isGranted($role);
             }),
 
-            new ExpressionFunction('hasAnyRole', function (array $roles) {
-                $compiler = 'false';
-                foreach ($roles as $role) {
-                    $compiler .= ' || ';
-                    $compiler .= sprintf('$authChecker->isGranted(%s)', $role);
-                }
-
-                return $compiler;
-            }, function (array $variables, array $roles) {
+            new ExpressionFunction('hasAnyRole', function () {}, function (array $variables, array $roles) {
                 foreach ($roles as $role) {
                     if ($variables['container']->get('security.authorization_checker')->isGranted($role)) {
                         return true;
@@ -43,47 +33,29 @@ public function getFunctions()
                 return false;
             }),
 
-            new ExpressionFunction('isAnonymous', function () {
-                return '$authChecker->isGranted("IS_AUTHENTICATED_ANONYMOUSLY")';
-            }, function (array $variables) {
+            new ExpressionFunction('isAnonymous', function () {}, function (array $variables) {
                 return $variables['container']->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_ANONYMOUSLY');
             }),
 
-            new ExpressionFunction('isRememberMe', function () {
-                return '$authChecker->isGranted("IS_AUTHENTICATED_REMEMBERED")';
-            }, function (array $variables) {
+            new ExpressionFunction('isRememberMe', function () {}, function (array $variables) {
                 return $variables['container']->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_REMEMBERED');
             }),
 
-            new ExpressionFunction('isFullyAuthenticated', function () {
-                return sprintf('$authChecker->isGranted("IS_AUTHENTICATED_FULLY")');
-            }, function (array $variables) {
+            new ExpressionFunction('isFullyAuthenticated', function () {}, function (array $variables) {
                 return $variables['container']->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY');
             }),
 
-            new ExpressionFunction('isAuthenticated', function () {
-                return '$authChecker->isGranted("IS_AUTHENTICATED_REMEMBERED") ||  $authChecker->isGranted("IS_AUTHENTICATED_FULLY")';
-            }, function (array $variables) {
+            new ExpressionFunction('isAuthenticated', function () {}, function (array $variables) {
                 return
                     $variables['container']->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_REMEMBERED')
                     || $variables['container']->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY');
             }),
 
-            new ExpressionFunction('hasPermission', function ($object, $permission) {
-                return sprintf('$authChecker->isGranted(%s, $object)', $permission);
-            }, function (array $variables, $object, $permission) {
+            new ExpressionFunction('hasPermission', function () {}, function (array $variables, $object, $permission) {
                 return $variables['container']->get('security.authorization_checker')->isGranted($permission, $object);
             }),
 
-            new ExpressionFunction('hasAnyPermission', function ($object, array $permissions) {
-                $compiler = 'false';
-                foreach ($permissions as $permission) {
-                    $compiler .= ' || ';
-                    $compiler .= sprintf('$authChecker->isGranted("%s", $object)', $permission);
-                }
-
-                return $compiler;
-            }, function (array $variables, $object, array $permissions) {
+            new ExpressionFunction('hasAnyPermission', function () {}, function (array $variables, $object, array $permissions) {
                 foreach ($permissions as $permission) {
                     if ($variables['container']->get('security.authorization_checker')->isGranted($permission, $object)) {
                         return true;
 
@@ -20,58 +20,37 @@ class ConfigExpressionProvider implements ExpressionFunctionProviderInterface
     public function getFunctions()
     {
         return [
-            new ExpressionFunction('service', function ($arg) {
-                return sprintf('$container->get(%s)', $arg);
-            }, function (array $variables, $value) {
+            new ExpressionFunction('service', function () {}, function (array $variables, $value) {
                 return $variables['container']->get($value);
             }),
 
-            new ExpressionFunction('parameter', function ($arg) {
-                return sprintf('$container->getParameter(%s)', $arg);
-            }, function (array $variables, $value) {
+            new ExpressionFunction('parameter', function () {}, function (array $variables, $value) {
                 return $variables['container']->getParameter($value);
             }),
 
-            new ExpressionFunction('isTypeOf', function ($className) {
-                return sprintf('$value instanceof %s', $className);
-            }, function (array $variables, $className) {
+            new ExpressionFunction('isTypeOf', function () {}, function (array $variables, $className) {
                 return $variables['value'] instanceof $className;
             }),
 
-            new ExpressionFunction('resolver', function ($alias, array $args = []) {
-                return sprintf('$container->get("overblog_graphql.resolver_resolver")->resolve([%s, $args])', $alias);
-            }, function (array $variables, $alias, array $args = []) {
+            new ExpressionFunction('resolver', function () {}, function (array $variables, $alias, array $args = []) {
                 return $variables['container']->get('overblog_graphql.resolver_resolver')->resolve([$alias, $args]);
             }),
 
-            new ExpressionFunction('mutation', function ($alias, array $args = []) {
-                return sprintf('$container->get("overblog_graphql.mutation_resolver")->resolve([%s, $args])', $alias);
-            }, function (array $variables, $alias, array $args = []) {
+            new ExpressionFunction('mutation', function () {}, function (array $variables, $alias, array $args = []) {
                 return $variables['container']->get('overblog_graphql.mutation_resolver')->resolve([$alias, $args]);
             }),
 
-            new ExpressionFunction('globalId', function ($id, $typeName = null) {
-                return sprintf(
-                    '\\Overblog\\GraphQLBundle\\Relay\\Node\\GlobalId::toGlobalId(!empty(%s) ? %s : $info->parentType->name, %s)',
-                    $typeName,
-                    $typeName,
-                    $id
-                );
-            }, function (array $variables, $id, $typeName = null) {
+            new ExpressionFunction('globalId', function () {}, function (array $variables, $id, $typeName = null) {
                 $type = !empty($typeName) ? $typeName : $variables['info']->parentType->name;
 
                 return GlobalId::toGlobalId($type, $id);
             }),
 
-            new ExpressionFunction('fromGlobalId', function ($globalId) {
-                return sprintf('\\Overblog\\GraphQLBundle\\Relay\\Node\\GlobalId::fromGlobalId(%s)', $globalId);
-            }, function (array $variables, $globalId) {
+            new ExpressionFunction('fromGlobalId', function () {}, function (array $variables, $globalId) {
                 return GlobalId::fromGlobalId($globalId);
             }),
 
-            new ExpressionFunction('newObject', function ($className, array $args = []) {
-                return sprintf('(new \ReflectionClass("%s"))->newInstanceArgs($args)', $className);
-            }, function (array $variables, $className, array $args = []) {
+            new ExpressionFunction('newObject', function () {}, function (array $variables, $className, array $args = []) {
                 return (new \ReflectionClass($className))->newInstanceArgs($args);
             }),
         ];
 
@@ -0,0 +1,40 @@
+<?php
+
+/*
+ * This file is part of the OverblogGraphQLBundle package.
+ *
+ * (c) Overblog <http://github.com/overblog/>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Overblog\GraphQLBundle\Tests;
+
+trait DIContainerMockTrait
+{
+    private function getDIContainerMock(array $services = [], array $parameters = [])
+    {
+        $container = $this->getMock('Symfony\\Component\\DependencyInjection\\Container', ['get', 'getParameter', 'has']);
+
+        $getMethod = $container->expects($this->any())->method('get');
+
+        foreach ($services as $id => $service) {
+            $getMethod
+                ->with($id)
+                ->willReturn($service)
+            ;
+        }
+
+        $getParameterMethod = $container->expects($this->any())->method('getParameter');
+
+        foreach ($parameters as $id => $parameter) {
+            $getParameterMethod
+                ->with($id)
+                ->willReturn($parameter)
+            ;
+        }
+
+        return $container;
+    }
+}
@@ -0,0 +1,159 @@
+<?php
+
+/*
+ * This file is part of the OverblogGraphQLBundle package.
+ *
+ * (c) Overblog <http://github.com/overblog/>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Overblog\GraphQLBundle\Tests\Error;
+
+use Overblog\GraphQLBundle\ExpressionLanguage\ExpressionLanguage;
+use Overblog\GraphQLBundle\Tests\DIContainerMockTrait;
+
+class AuthorizationExpressionProviderTest extends \PHPUnit_Framework_TestCase
+{
+    use DIContainerMockTrait;
+
+    /**
+     * @var ExpressionLanguage
+     */
+    private $expressionLanguage;
+
+    public function setUp()
+    {
+        $this->expressionLanguage = new ExpressionLanguage();
+    }
+
+    public function testHasRole()
+    {
+        $this->assertExpressionEvaluate('hasRole("ROLE_USER")', 'ROLE_USER');
+    }
+
+    public function testHasAnyRole()
+    {
+        $this->assertExpressionEvaluate('hasAnyRole(["ROLE_ADMIN", "ROLE_USER"])', 'ROLE_ADMIN');
+
+        $this->assertExpressionEvaluate(
+            'hasAnyRole(["ROLE_ADMIN", "ROLE_USER"])',
+            $this->matchesRegularExpression('/^ROLE_(USER|ADMIN)$/'),
+            [],
+            $this->exactly(2),
+            false,
+            'assertFalse'
+        );
+    }
+
+    public function testIsAnonymous()
+    {
+        $this->assertExpressionEvaluate('isAnonymous()', 'IS_AUTHENTICATED_ANONYMOUSLY');
+    }
+
+    public function testIsRememberMe()
+    {
+        $this->assertExpressionEvaluate('isRememberMe()', 'IS_AUTHENTICATED_REMEMBERED');
+    }
+
+    public function testIsFullyAuthenticated()
+    {
+        $this->assertExpressionEvaluate('isFullyAuthenticated()', 'IS_AUTHENTICATED_FULLY');
+    }
+
+    public function testIsAuthenticated()
+    {
+        $this->assertExpressionEvaluate('isAuthenticated()', $this->matchesRegularExpression('/^IS_AUTHENTICATED_(REMEMBERED|FULLY)$/'));
+    }
+
+    public function testHasPermission()
+    {
+        $object = new \stdClass();
+
+        $this->assertExpressionEvaluate(
+            'hasPermission(object,"OWNER")',
+            [
+                'OWNER',
+                $this->identicalTo($object),
+            ],
+            [
+                'object' => $object,
+            ]
+        );
+    }
+
+    public function testHasAnyPermission()
+    {
+        $object = new \stdClass();
+
+        $this->assertExpressionEvaluate(
+            'hasAnyPermission(object,["OWNER", "WRITER"])',
+            [
+                $this->matchesRegularExpression('/^(OWNER|WRITER)$/'),
+                $this->identicalTo($object),
+            ],
+            [
+                'object' => $object,
+            ]
+        );
+
+        $this->assertExpressionEvaluate(
+            'hasAnyPermission(object,["OWNER", "WRITER"])',
+            [
+                $this->matchesRegularExpression('/^(OWNER|WRITER)$/'),
+                $this->identicalTo($object),
+            ],
+            [
+                'object' => $object,
+            ],
+            $this->exactly(2),
+            false,
+            'assertFalse'
+        );
+    }
+
+    private function assertExpressionEvaluate($expression, $with, array $expressionValues = [], $expects = null, $return = true, $assertMethod = 'assertTrue')
+    {
+        $authChecker = $this->getAuthorizationCheckerIsGrantedWithExpectation($with, $expects, $return);
+
+        $container = $this->getDIContainerMock(['security.authorization_checker' => $authChecker]);
+        $this->expressionLanguage->setContainer($container);
+        $this->$assertMethod($this->expressionLanguage->evaluate($expression, $expressionValues));
+    }
+
+    private function getAuthorizationCheckerIsGrantedWithExpectation($with, $expects = null, $return = true)
+    {
+        if (null === $expects) {
+            $expects = $this->once();
+        }
+        $authChecker = $this->getAuthorizationCheckerMock();
+
+        if ($return instanceof \PHPUnit_Framework_MockObject_Stub_Return) {
+            $returnValue = $return;
+        } else {
+            $returnValue = $this->returnValue($return);
+        }
+
+        $methodExpectation = $authChecker
+            ->expects($expects)
+            ->method('isGranted');
+
+        call_user_func_array([$methodExpectation, 'with'], is_array($with) ? $with : [$with]);
+
+        $methodExpectation->will($returnValue);
+
+        return $authChecker;
+    }
+
+    private function getAuthorizationCheckerMock()
+    {
+        $AuthorizationChecker = $this->getMockBuilder('Symfony\\Component\Security\\Core\Authorization\\AuthorizationCheckerInterface')
+            ->disableOriginalConstructor()
+            ->setMethods(['isGranted'])
+            ->getMock()
+        ;
+
+        return $AuthorizationChecker;
+    }
+}