function NodeResourceTestBase::setUpAuthorization

Same name and namespace in other branches
  1. 8.9.x core/modules/node/tests/src/Functional/Rest/NodeResourceTestBase.php \Drupal\Tests\node\Functional\Rest\NodeResourceTestBase::setUpAuthorization()
  2. 10 core/modules/node/tests/src/Functional/Rest/NodeResourceTestBase.php \Drupal\Tests\node\Functional\Rest\NodeResourceTestBase::setUpAuthorization()
  3. 11.x core/modules/node/tests/src/Functional/Rest/NodeResourceTestBase.php \Drupal\Tests\node\Functional\Rest\NodeResourceTestBase::setUpAuthorization()

Sets up the necessary authorization.

In case of a test verifying publicly accessible REST resources: grant permissions to the anonymous user role.

In case of a test verifying behavior when using a particular authentication provider: create a user with a particular set of permissions.

Because of the $method parameter, it's possible to first set up authentication for only GET, then add POST, et cetera. This then also allows for verifying a 403 in case of missing authorization.

Parameters

string $method: The HTTP method for which to set up authentication.

Overrides ResourceTestBase::setUpAuthorization

2 calls to NodeResourceTestBase::setUpAuthorization()
ModeratedNodeResourceTestBase::setUpAuthorization in core/modules/rest/tests/src/Functional/EntityResource/ModeratedNode/ModeratedNodeResourceTestBase.php
Sets up the necessary authorization.
NodeResourceTestBase::testPatchPath in core/modules/node/tests/src/Functional/Rest/NodeResourceTestBase.php
Tests PATCHing a node's path with and without 'create url aliases'.
1 method overrides NodeResourceTestBase::setUpAuthorization()
ModeratedNodeResourceTestBase::setUpAuthorization in core/modules/rest/tests/src/Functional/EntityResource/ModeratedNode/ModeratedNodeResourceTestBase.php
Sets up the necessary authorization.

File

core/modules/node/tests/src/Functional/Rest/NodeResourceTestBase.php, line 44

Class

NodeResourceTestBase

Namespace

Drupal\Tests\node\Functional\Rest

Code

protected function setUpAuthorization($method) {
    switch ($method) {
        case 'GET':
            $this->grantPermissionsToTestedRole([
                'access content',
            ]);
            break;
        case 'POST':
            $this->grantPermissionsToTestedRole([
                'access content',
                'create camelids content',
            ]);
            break;
        case 'PATCH':
            // Do not grant the 'create url aliases' permission to test the case
            // when the path field is protected/not accessible, see
            // \Drupal\Tests\rest\Functional\EntityResource\Term\TermResourceTestBase
            // for a positive test.
            $this->grantPermissionsToTestedRole([
                'access content',
                'edit any camelids content',
            ]);
            break;
        case 'DELETE':
            $this->grantPermissionsToTestedRole([
                'access content',
                'delete any camelids content',
            ]);
            break;
    }
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.