1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
|
<?php
/**
* webtrees: online genealogy
* Copyright (C) 2025 webtrees development team
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <https://www.gnu.org/licenses/>.
*/
declare(strict_types=1);
namespace Fisharebest\Webtrees;
use Fisharebest\Webtrees\Contracts\UserInterface;
use Fisharebest\Webtrees\Services\UserService;
use function strip_tags;
class Privacy extends TestCase
{
protected static bool $uses_database = true;
public function testRecordAccess(): void
{
$tree = $this->importTree('demo.ged');
// Identify some individuals in the tree
$queen_elizabeth = Registry::individualFactory()->make('X1030', $tree);
self::assertInstanceOf(Individual::class, $queen_elizabeth);
self::assertSame('Queen Elizabeth II', strip_tags($queen_elizabeth->fullName()));
$prince_charles = Registry::individualFactory()->make('X1052', $tree);
self::assertInstanceOf(Individual::class, $prince_charles);
self::assertSame('Charles, Prince of Wales', strip_tags($prince_charles->fullName()));
$savannah = Registry::individualFactory()->make('X1044', $tree);
self::assertInstanceOf(Individual::class, $savannah);
self::assertSame('Savannah Anne Kathleen Phillips', strip_tags($savannah->fullName()));
$beatrice = Registry::individualFactory()->make('X1047', $tree);
self::assertInstanceOf(Individual::class, $beatrice);
self::assertSame('Princess Beatrice of York', strip_tags($beatrice->fullName()));
$user_service = new UserService();
$admin = $user_service->create('admin', 'admin', 'admin', '*');
$admin->setPreference(UserInterface::PREF_IS_ADMINISTRATOR, '1');
$manager = $user_service->create('manager', 'manager', 'manager', '*');
$tree->setUserPreference($manager, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MANAGER);
$moderator = $user_service->create('moderator', 'moderator', 'moderator', '*');
$tree->setUserPreference($moderator, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MODERATOR);
$editor = $user_service->create('editor', 'editor', 'editor', '*');
$tree->setUserPreference($editor, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_EDITOR);
$member = $user_service->create('member', 'member', 'member', '*');
$tree->setUserPreference($member, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_MEMBER);
$visitor = $user_service->create('visitor', 'visitor', 'visitor', '*');
$tree->setUserPreference($visitor, UserInterface::PREF_TREE_ROLE, UserInterface::ROLE_VISITOR);
// Enable privacy functions
$tree->setPreference('HIDE_LIVE_PEOPLE', '1');
Auth::login($admin);
self::assertTrue(Auth::isAdmin(), 'admin isAdmin()');
self::assertTrue(Auth::isManager($tree), 'admin isManager()');
self::assertTrue(Auth::isModerator($tree), 'admin isModerator()');
self::assertTrue(Auth::isEditor($tree), 'admin isEditor()');
self::assertTrue(Auth::isMember($tree), 'admin isMember()');
Auth::login($manager);
self::assertFalse(Auth::isAdmin(), 'manager NOT isAdmin()');
self::assertTrue(Auth::isManager($tree, $manager), 'manager isManager()');
self::assertTrue(Auth::isModerator($tree, $manager), 'manager isModerator()');
self::assertTrue(Auth::isEditor($tree, $manager), 'manager isEditor()');
self::assertTrue(Auth::isMember($tree, $manager), 'manager isMember()');
Auth::login($moderator);
self::assertFalse(Auth::isAdmin(), 'moderator NOT isAdmin()');
self::assertFalse(Auth::isManager($tree, $moderator), 'moderator NOT isManager()');
self::assertTrue(Auth::isModerator($tree, $moderator), 'moderator isModerator()');
self::assertTrue(Auth::isEditor($tree, $moderator), 'moderator isEditor()');
self::assertTrue(Auth::isMember($tree, $moderator), 'moderator isMember()');
Auth::login($editor);
self::assertFalse(Auth::isAdmin(), 'editor NOT isAdmin()');
self::assertFalse(Auth::isManager($tree, $editor), 'editor NOT isManager()');
self::assertFalse(Auth::isModerator($tree, $editor), 'editor isModerator()');
self::assertTrue(Auth::isEditor($tree, $editor), 'editor isEditor()');
self::assertTrue(Auth::isMember($tree, $editor), 'editor isMember()');
Auth::login($member);
self::assertFalse(Auth::isAdmin(), 'member NOT isAdmin()');
self::assertFalse(Auth::isManager($tree, $member), 'member NOT isManager()');
self::assertFalse(Auth::isModerator($tree, $member), 'member isModerator()');
self::assertFalse(Auth::isEditor($tree, $member), 'member isEditor()');
self::assertTrue(Auth::isMember($tree, $member), 'member isMember()');
Auth::login($visitor);
self::assertFalse(Auth::isAdmin(), 'visitor NOT isAdmin()');
self::assertFalse(Auth::isManager($tree, $visitor), 'visitor NOT isManager()');
self::assertFalse(Auth::isModerator($tree, $visitor), 'visitor isModerator()');
self::assertFalse(Auth::isEditor($tree, $visitor), 'visitor isEditor()');
self::assertFalse(Auth::isMember($tree, $visitor), 'visitor isMember()');
Auth::logout();
Auth::login($admin);
self::assertTrue($queen_elizabeth->canShow(), 'admin can see living individual with RESN=none');
self::assertTrue($prince_charles->canShow(), 'admin can see living individual');
Auth::login($manager);
self::assertTrue($queen_elizabeth->canShow(), 'manager can see living individual with RESN=none');
self::assertTrue($prince_charles->canShow(), 'manager can see living individual');
Auth::login($moderator);
self::assertTrue($queen_elizabeth->canShow(), 'moderator can see living individual with RESN=none');
self::assertTrue($prince_charles->canShow(), 'moderator can see living individual');
Auth::login($editor);
self::assertTrue($queen_elizabeth->canShow(), 'editor can see living individual with RESN=none');
self::assertTrue($prince_charles->canShow(), 'editor can see living individual');
Auth::login($member);
self::assertTrue($queen_elizabeth->canShow(), 'member can see living individual with RESN=none');
self::assertTrue($prince_charles->canShow(), 'member can see living individual');
Auth::login($visitor);
self::assertTrue($queen_elizabeth->canShow(), 'visitor can see living individual with RESN=none');
self::assertFalse($prince_charles->canShow(), 'visitor can not see living individual');
Auth::logout();
self::assertTrue($queen_elizabeth->canShow(), 'guest can see living individual with RESN=none');
self::assertFalse($prince_charles->canShow(), 'guest can not see living individual');
// Relationship privacy
Auth::login($member);
self::assertTrue($beatrice->canShow());
$tree->setUserPreference($member, UserInterface::PREF_TREE_ACCOUNT_XREF, $savannah->xref());
$tree->setUserPreference($member, UserInterface::PREF_TREE_PATH_LENGTH, '3');
self::assertFalse($beatrice->canShow());
$tree->setUserPreference($member, UserInterface::PREF_TREE_PATH_LENGTH, '4');
self::assertTrue($beatrice->canShow());
}
}
|
