archtechx/tenancy
1
0
Fork 0
mirror of https://github.com/archtechx/tenancy.git synced 2026-02-05 18:34:04 +00:00
Code Activity

Update Postgres tests

Browse source
This commit is contained in:
lukinovec 2023-04-26 12:42:19 +02:00
parent 4ceb7c82e1
commit 331df8e239
1 changed files with 32 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

35
tests/PostgresTest.php
View file

@ -11,6 +11,10 @@ beforeEach(function () {
DB::setDefaultConnection('pgsql'); DB::setDefaultConnection('pgsql');
config(['tenancy.models.tenant' => Tenant::class]); config(['tenancy.models.tenant' => Tenant::class]);
foreach (DB::select('select * from pg_policies') as $policy) {
DB::statement("DROP POLICY IF EXISTS {$policy->policyname} ON {$policy->tablename};");
}
}); });
test('postgres user can get created using the job', function() { test('postgres user can get created using the job', function() {
@ -43,14 +47,39 @@ test('postgres user can get deleted using the job', function() {
test('correct rls policies get created using the command', function() { test('correct rls policies get created using the command', function() {
config([ config([
'tenancy.models.rls' => $rlsModels = [ 'tenancy.models.rls' => [
Post::class, // Primary model (directly belongs to tenant) Post::class, // Primary model (directly belongs to tenant)
Comment::class, // Secondary model (belongs to tenant through Post)
], ],
]); ]);
$getRlsPolicies = fn () => DB::select('select * from pg_policies'); $getRlsPolicies = fn () => DB::select('select * from pg_policies');
$getModelTables = fn () => collect(config('tenancy.models.rls'))->map(fn (string $model) => (new $model)->getTable());
$getRlsTables = fn() => $getModelTables()->map(fn ($table) => DB::select('select relname, relrowsecurity, relforcerowsecurity from pg_class WHERE oid = ' . "'$table'::regclass"))->collapse();
expect($getRlsPolicies())->toHaveCount(0); expect($getRlsPolicies())->toHaveCount(0);
pest()->artisan('tenants:create-rls-policies'); pest()->artisan('tenants:create-rls-policies');
expect($getRlsPolicies())->toHaveCount(count($rlsModels)); expect($getRlsPolicies())->toHaveCount(count(config('tenancy.models.rls'))); // 1
expect($getRlsTables())->toHaveCount(count(config('tenancy.models.rls'))); // 1
// Check if tables with policies are RLS protected
foreach ($getRlsTables() as $table) {
expect($getModelTables())->toContain($table->relname);
expect($table->relforcerowsecurity)->toBeTrue();
}
config([
'tenancy.models.rls' => array_merge([
ScopedComment::class, // Add secondary model to RLS protected models (belongs to tenant through Post)
], config('tenancy.models.rls')),
]);
pest()->artisan('tenants:create-rls-policies');
// Check if tables with policies are RLS protected (even the ones not directly related to the tenant)
// Models related to tenant through some model must use the BelongsToPrimaryModel trait to work properly
expect($getRlsPolicies())->toHaveCount(count(config('tenancy.models.rls'))); // 2
expect($getRlsTables())->toHaveCount(count(config('tenancy.models.rls'))); // 2
foreach ($getRlsTables() as $table) {
expect($getModelTables())->toContain($table->relname);
expect($table->relforcerowsecurity)->toBeTrue();
}
}); });