David A. Windham
david
/
wp
1
0
Fork 0
Files Issues 0 Pull Requests 0
Tree: fd233eac72
Branches Tags
wp
/
tests
/
phpunit
/
tests
/
rest-api
/
rest-blocks-controller.php

rest-blocks-controller.php 5.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * WP_REST_Blocks_Controller tests
    4. 

  4.  *
    5. 

  5.  * @package WordPress
    6. 

  6.  * @subpackage REST_API
    7. 

  7.  * @since 5.0.0
    8. 

  8.  */
    9. 

  9. 

  10. /**
    11. 

  11.  * Tests for WP_REST_Blocks_Controller.
    12. 

  12.  *
    13. 

  13.  * @since 5.0.0
    14. 

  14.  *
    15. 

  15.  * @see WP_Test_REST_Controller_Testcase
    16. 

  16.  *
    17. 

  17.  * @group restapi-blocks
    18. 

  18.  * @group restapi
    19. 

  19.  */
    20. 

  20. class REST_Blocks_Controller_Test extends WP_UnitTestCase {
    21. 

  21. 

  22. 	/**
    23. 

  23. 	 * Our fake block's post ID.
    24. 

  24. 	 *
    25. 

  25. 	 * @since 5.0.0
    26. 

  26. 	 *
    27. 

  27. 	 * @var int
    28. 

  28. 	 */
    29. 

  29. 	protected static $post_id;
    30. 

  30. 

  31. 	/**
    32. 

  32. 	 * Our fake user IDs, keyed by their role.
    33. 

  33. 	 *
    34. 

  34. 	 * @since 5.0.0
    35. 

  35. 	 *
    36. 

  36. 	 * @var array
    37. 

  37. 	 */
    38. 

  38. 	protected static $user_ids;
    39. 

  39. 

  40. 	/**
    41. 

  41. 	 * Create fake data before our tests run.
    42. 

  42. 	 *
    43. 

  43. 	 * @since 5.0.0
    44. 

  44. 	 *
    45. 

  45. 	 * @param WP_UnitTest_Factory $factory Helper that lets us create fake data.
    46. 

  46. 	 */
    47. 

  47. 	public static function wpSetUpBeforeClass( WP_UnitTest_Factory $factory ) {
    48. 

  48. 		self::$post_id = wp_insert_post(
    49. 

  49. 			array(
    50. 

  50. 				'post_type'    => 'wp_block',
    51. 

  51. 				'post_status'  => 'publish',
    52. 

  52. 				'post_title'   => 'My cool block',
    53. 

  53. 				'post_content' => '<!-- wp:paragraph --><p>Hello!</p><!-- /wp:paragraph -->',
    54. 

  54. 			)
    55. 

  55. 		);
    56. 

  56. 

  57. 		self::$user_ids = array(
    58. 

  58. 			'editor'      => $factory->user->create( array( 'role' => 'editor' ) ),
    59. 

  59. 			'author'      => $factory->user->create( array( 'role' => 'author' ) ),
    60. 

  60. 			'contributor' => $factory->user->create( array( 'role' => 'contributor' ) ),
    61. 

  61. 		);
    62. 

  62. 	}
    63. 

  63. 

  64. 	/**
    65. 

  65. 	 * Delete our fake data after our tests run.
    66. 

  66. 	 *
    67. 

  67. 	 * @since 5.0.0
    68. 

  68. 	 */
    69. 

  69. 	public static function wpTearDownAfterClass() {
    70. 

  70. 		wp_delete_post( self::$post_id );
    71. 

  71. 

  72. 		foreach ( self::$user_ids as $user_id ) {
    73. 

  73. 			self::delete_user( $user_id );
    74. 

  74. 		}
    75. 

  75. 	}
    76. 

  76. 

  77. 	/**
    78. 

  78. 	 * Test cases for test_capabilities().
    79. 

  79. 	 *
    80. 

  80. 	 * @since 5.0.0
    81. 

  81. 	 */
    82. 

  82. 	public function data_capabilities() {
    83. 

  83. 		return array(
    84. 

  84. 			array( 'create', 'editor', 201 ),
    85. 

  85. 			array( 'create', 'author', 201 ),
    86. 

  86. 			array( 'create', 'contributor', 403 ),
    87. 

  87. 			array( 'create', null, 401 ),
    88. 

  88. 

  89. 			array( 'read', 'editor', 200 ),
    90. 

  90. 			array( 'read', 'author', 200 ),
    91. 

  91. 			array( 'read', 'contributor', 200 ),
    92. 

  92. 			array( 'read', null, 401 ),
    93. 

  93. 

  94. 			array( 'update_delete_own', 'editor', 200 ),
    95. 

  95. 			array( 'update_delete_own', 'author', 200 ),
    96. 

  96. 			array( 'update_delete_own', 'contributor', 403 ),
    97. 

  97. 

  98. 			array( 'update_delete_others', 'editor', 200 ),
    99. 

  99. 			array( 'update_delete_others', 'author', 403 ),
    100. 

  100. 			array( 'update_delete_others', 'contributor', 403 ),
    101. 

  101. 			array( 'update_delete_others', null, 401 ),
    102. 

  102. 		);
    103. 

  103. 	}
    104. 

  104. 

  105. 	/**
    106. 

  106. 	 * Exhaustively check that each role either can or cannot create, edit,
    107. 

  107. 	 * update, and delete reusable blocks.
    108. 

  108. 	 *
    109. 

  109. 	 * @ticket 45098
    110. 

  110. 	 *
    111. 

  111. 	 * @dataProvider data_capabilities
    112. 

  112. 	 *
    113. 

  113. 	 * @param string $action          Action to perform in the test.
    114. 

  114. 	 * @param string $role            User role to test.
    115. 

  115. 	 * @param int    $expected_status Expected HTTP response status.
    116. 

  116. 	 */
    117. 

  117. 	public function test_capabilities( $action, $role, $expected_status ) {
    118. 

  118. 		if ( $role ) {
    119. 

  119. 			$user_id = self::$user_ids[ $role ];
    120. 

  120. 			wp_set_current_user( $user_id );
    121. 

  121. 		} else {
    122. 

  122. 			wp_set_current_user( 0 );
    123. 

  123. 		}
    124. 

  124. 

  125. 		switch ( $action ) {
    126. 

  126. 			case 'create':
    127. 

  127. 				$request = new WP_REST_Request( 'POST', '/wp/v2/blocks' );
    128. 

  128. 				$request->set_body_params(
    129. 

  129. 					array(
    130. 

  130. 						'title'   => 'Test',
    131. 

  131. 						'content' => '<!-- wp:paragraph --><p>Test</p><!-- /wp:paragraph -->',
    132. 

  132. 					)
    133. 

  133. 				);
    134. 

  134. 

  135. 				$response = rest_get_server()->dispatch( $request );
    136. 

  136. 				$this->assertSame( $expected_status, $response->get_status() );
    137. 

  137. 

  138. 				break;
    139. 

  139. 

  140. 			case 'read':
    141. 

  141. 				$request = new WP_REST_Request( 'GET', '/wp/v2/blocks/' . self::$post_id );
    142. 

  142. 

  143. 				$response = rest_get_server()->dispatch( $request );
    144. 

  144. 				$this->assertSame( $expected_status, $response->get_status() );
    145. 

  145. 

  146. 				break;
    147. 

  147. 

  148. 			case 'update_delete_own':
    149. 

  149. 				$post_id = wp_insert_post(
    150. 

  150. 					array(
    151. 

  151. 						'post_type'    => 'wp_block',
    152. 

  152. 						'post_status'  => 'publish',
    153. 

  153. 						'post_title'   => 'My cool block',
    154. 

  154. 						'post_content' => '<!-- wp:paragraph --><p>Hello!</p><!-- /wp:paragraph -->',
    155. 

  155. 						'post_author'  => $user_id,
    156. 

  156. 					)
    157. 

  157. 				);
    158. 

  158. 

  159. 				$request = new WP_REST_Request( 'PUT', '/wp/v2/blocks/' . $post_id );
    160. 

  160. 				$request->set_body_params(
    161. 

  161. 					array(
    162. 

  162. 						'title'   => 'Test',
    163. 

  163. 						'content' => '<!-- wp:paragraph --><p>Test</p><!-- /wp:paragraph -->',
    164. 

  164. 					)
    165. 

  165. 				);
    166. 

  166. 

  167. 				$response = rest_get_server()->dispatch( $request );
    168. 

  168. 				$this->assertSame( $expected_status, $response->get_status() );
    169. 

  169. 

  170. 				$request = new WP_REST_Request( 'DELETE', '/wp/v2/blocks/' . $post_id );
    171. 

  171. 

  172. 				$response = rest_get_server()->dispatch( $request );
    173. 

  173. 				$this->assertSame( $expected_status, $response->get_status() );
    174. 

  174. 

  175. 				wp_delete_post( $post_id );
    176. 

  176. 

  177. 				break;
    178. 

  178. 

  179. 			case 'update_delete_others':
    180. 

  180. 				$request = new WP_REST_Request( 'PUT', '/wp/v2/blocks/' . self::$post_id );
    181. 

  181. 				$request->set_body_params(
    182. 

  182. 					array(
    183. 

  183. 						'title'   => 'Test',
    184. 

  184. 						'content' => '<!-- wp:paragraph --><p>Test</p><!-- /wp:paragraph -->',
    185. 

  185. 					)
    186. 

  186. 				);
    187. 

  187. 

  188. 				$response = rest_get_server()->dispatch( $request );
    189. 

  189. 				$this->assertSame( $expected_status, $response->get_status() );
    190. 

  190. 

  191. 				$request = new WP_REST_Request( 'DELETE', '/wp/v2/blocks/' . self::$post_id );
    192. 

  192. 

  193. 				$response = rest_get_server()->dispatch( $request );
    194. 

  194. 				$this->assertSame( $expected_status, $response->get_status() );
    195. 

  195. 

  196. 				break;
    197. 

  197. 

  198. 			default:
    199. 

  199. 				$this->fail( "'$action' is not a valid action." );
    200. 

  200. 		}
    201. 

  201. 	}
    202. 

  202. 

  203. 	/**
    204. 

  204. 	 * Check that the raw title and content of a block can be accessed when there
    205. 

  205. 	 * is no set schema, and that the rendered content of a block is not included
    206. 

  206. 	 * in the response.
    207. 

  207. 	 */
    208. 

  208. 	public function test_content() {
    209. 

  209. 		wp_set_current_user( self::$user_ids['author'] );
    210. 

  210. 

  211. 		$request  = new WP_REST_Request( 'GET', '/wp/v2/blocks/' . self::$post_id );
    212. 

  212. 		$response = rest_get_server()->dispatch( $request );
    213. 

  213. 		$data     = $response->get_data();
    214. 

  214. 

  215. 		$this->assertSame(
    216. 

  216. 			array(
    217. 

  217. 				'raw' => 'My cool block',
    218. 

  218. 			),
    219. 

  219. 			$data['title']
    220. 

  220. 		);
    221. 

  221. 		$this->assertSame(
    222. 

  222. 			array(
    223. 

  223. 				'raw'       => '<!-- wp:paragraph --><p>Hello!</p><!-- /wp:paragraph -->',
    224. 

  224. 				'protected' => false,
    225. 

  225. 			),
    226. 

  226. 			$data['content']
    227. 

  227. 		);
    228. 

  228. 	}
    229. 

  229. }
    230.