#!perl
use strict;
use warnings;
use DBI;
use File::Path;
use FindBin;
use Test::More;
use lib "$FindBin::Bin/lib";
BEGIN {
eval { require DBD::SQLite }
or plan skip_all =>
"DBD::SQLite is required for this test";
eval { require Rose::DB::Object }
or plan skip_all =>
"Rose::DB::Object is required for this test";
eval { require Catalyst::Plugin::Authorization::Roles }
or plan skip_all =>
"Catalyst::Plugin::Authorization::Roles is required for this test";
plan tests => 8;
$ENV{TESTAPP_DB_FILE} = "$FindBin::Bin/auth.db" unless exists($ENV{TESTAPP_DB_FILE});
$ENV{TESTAPP_CONFIG} = {
name => 'TestApp',
authentication => {
default_realm => "users",
realms => {
users => {
credential => {
'class' => "Password",
'password_field' => 'password',
'password_type' => 'clear'
},
store => {
'class' => 'RDBO',
'user_class' => 'TestApp::User',
'role_column' => 'role_text'
},
},
},
},
};
$ENV{TESTAPP_PLUGINS} = [
qw/Authentication
Authorization::Roles
/
];
}
use SetupDB;
use Catalyst::Test 'TestApp';
# test user's admin access
{
ok( my $res = request('http://localhost/user_login?username=joeuser&password=hackme&detach=is_admin'), 'request ok' );
is( $res->content, 'ok', 'user is an admin' );
}
# test unauthorized user's admin access
{
ok( my $res = request('http://localhost/user_login?username=jayk&password=letmein&detach=is_admin'), 'request ok' );
is( $res->content, 'failed', 'user is not an admin' );
}
# test multiple auth roles
{
ok( my $res = request('http://localhost/user_login?username=nuffin&password=much&detach=is_admin_user'), 'request ok' );
is( $res->content, 'ok', 'user is an admin and a user' );
}
# test multiple unauth roles
{
ok( my $res = request('http://localhost/user_login?username=joeuser&password=hackme&detach=is_admin_user'), 'request ok' );
is( $res->content, 'failed', 'user is not an admin and a user' );
}
# clean up
unlink $ENV{TESTAPP_DB_FILE};