diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 724aed35..dc61273d 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -107,6 +107,11 @@ jobs: name: Static analysis (PHPStan) runs-on: ubuntu-latest steps: + - name: Setup PHP + uses: shivammathur/setup-php@v2 + with: + php-version: '8.2' + extensions: imagick, swoole - uses: actions/checkout@v2 - name: Install composer dependencies run: composer install diff --git a/Dockerfile b/Dockerfile index 73a052d5..5dfe442c 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,8 +1,7 @@ # add amd64 platform to support Mac M1 FROM --platform=linux/amd64 shivammathur/node:latest-amd64 -# todo update this to 8.2 once shivammathur/node supports that -ARG PHP_VERSION=8.1 +ARG PHP_VERSION=8.2 WORKDIR /var/www/html diff --git a/assets/TenancyServiceProvider.stub.php b/assets/TenancyServiceProvider.stub.php index a38aee42..6735b37f 100644 --- a/assets/TenancyServiceProvider.stub.php +++ b/assets/TenancyServiceProvider.stub.php @@ -28,14 +28,16 @@ class TenancyServiceProvider extends ServiceProvider Jobs\CreateDatabase::class, Jobs\MigrateDatabase::class, // Jobs\SeedDatabase::class, - Jobs\CreateStorageSymlinks::class, + + // Jobs\CreateStorageSymlinks::class, // Your own jobs to prepare the tenant. // Provision API keys, create S3 buckets, anything you want! - ])->send(function (Events\TenantCreated $event) { return $event->tenant; })->shouldBeQueued(false), // `false` by default, but you probably want to make this `true` for production. + + // Listeners\CreateTenantStorage::class, ], Events\SavingTenant::class => [], Events\TenantSaved::class => [], @@ -53,7 +55,7 @@ class TenancyServiceProvider extends ServiceProvider Events\TenantDeleted::class => [ JobPipeline::make([ Jobs\DeleteDatabase::class, - Jobs\RemoveStorageSymlinks::class, + // Jobs\RemoveStorageSymlinks::class, ])->send(function (Events\TenantDeleted $event) { return $event->tenant; })->shouldBeQueued(false), // `false` by default, but you probably want to make this `true` for production. @@ -153,7 +155,7 @@ class TenancyServiceProvider extends ServiceProvider protected function makeTenancyMiddlewareHighestPriority() { // PreventAccessFromCentralDomains has even higher priority than the identification middleware - $tenancyMiddleware = array_merge([Middleware\PreventAccessFromCentralDomains::class], config('tenancy.identification.middleware')); + $tenancyMiddleware = array_merge([Middleware\PreventAccessFromUnwantedDomains::class], config('tenancy.identification.middleware')); foreach (array_reverse($tenancyMiddleware) as $middleware) { $this->app[\Illuminate\Contracts\Http\Kernel::class]->prependToMiddlewarePriority($middleware); diff --git a/assets/config.php b/assets/config.php index 2c016c25..94445e64 100644 --- a/assets/config.php +++ b/assets/config.php @@ -103,6 +103,7 @@ return [ Stancl\Tenancy\Bootstrappers\QueueTenancyBootstrapper::class, Stancl\Tenancy\Bootstrappers\BatchTenancyBootstrapper::class, // Stancl\Tenancy\Bootstrappers\PrefixCacheTenancyBootstrapper::class, + // Stancl\Tenancy\Bootstrappers\SessionTenancyBootstrapper::class, // Stancl\Tenancy\Bootstrappers\MailTenancyBootstrapper::class, // Queueing mail requires using QueueTenancyBootstrapper with $forceRefresh set to true // Stancl\Tenancy\Bootstrappers\RedisTenancyBootstrapper::class, // Note: phpredis is needed ], @@ -284,7 +285,6 @@ return [ 'features' => [ // Stancl\Tenancy\Features\UserImpersonation::class, // Stancl\Tenancy\Features\TelescopeTags::class, - // Stancl\Tenancy\Features\UniversalRoutes::class, // Stancl\Tenancy\Features\TenantConfig::class, // https://tenancyforlaravel.com/docs/v3/features/tenant-config // Stancl\Tenancy\Features\CrossDomainRedirect::class, // https://tenancyforlaravel.com/docs/v3/features/cross-domain-redirect ], diff --git a/assets/tenant_routes.stub.php b/assets/tenant_routes.stub.php index 59d61ac8..399b6735 100644 --- a/assets/tenant_routes.stub.php +++ b/assets/tenant_routes.stub.php @@ -4,7 +4,7 @@ declare(strict_types=1); use Illuminate\Support\Facades\Route; use Stancl\Tenancy\Middleware\InitializeTenancyByDomain; -use Stancl\Tenancy\Middleware\PreventAccessFromCentralDomains; +use Stancl\Tenancy\Middleware\PreventAccessFromUnwantedDomains; /* |-------------------------------------------------------------------------- @@ -21,7 +21,7 @@ use Stancl\Tenancy\Middleware\PreventAccessFromCentralDomains; Route::middleware([ 'web', InitializeTenancyByDomain::class, - PreventAccessFromCentralDomains::class, + PreventAccessFromUnwantedDomains::class, ])->group(function () { Route::get('/', function () { return 'This is your multi-tenant application. The id of the current tenant is ' . tenant('id'); diff --git a/composer.json b/composer.json index d453f506..c09216ec 100644 --- a/composer.json +++ b/composer.json @@ -15,22 +15,22 @@ } ], "require": { - "php": "^8.1", + "php": "^8.2", "ext-json": "*", - "illuminate/support": "^9.0", + "illuminate/support": "^9.38", "spatie/ignition": "^1.4", "ramsey/uuid": "^4.0", "stancl/jobpipeline": "^1.0", "stancl/virtualcolumn": "^1.3" }, "require-dev": { - "laravel/framework": "dev-cache-methods as 9.21", + "laravel/framework": "dev-cache-methods as 9.38", "orchestra/testbench": "^7.0", "league/flysystem-aws-s3-v3": "^3.0", "doctrine/dbal": "^2.10", "spatie/valuestore": "^1.2.5", "pestphp/pest": "^1.21", - "nunomaduro/larastan": "^1.0", + "nunomaduro/larastan": "^2.4", "spatie/invade": "^1.1" }, "repositories": [ diff --git a/phpstan.neon b/phpstan.neon index 6a864833..7ae06b44 100644 --- a/phpstan.neon +++ b/phpstan.neon @@ -48,10 +48,8 @@ parameters: paths: - src/Database/DatabaseConfig.php - '#Method Stancl\\Tenancy\\Tenancy::cachedResolvers\(\) should return array#' - - # php 8.2 - # - '#Access to an undefined property Stancl\\Tenancy\\Middleware\\IdentificationMiddleware\:\:\$tenancy#' - # - '#Access to an undefined property Stancl\\Tenancy\\Middleware\\IdentificationMiddleware\:\:\$resolver#' + - '#Access to an undefined property Stancl\\Tenancy\\Middleware\\IdentificationMiddleware\:\:\$tenancy#' + - '#Access to an undefined property Stancl\\Tenancy\\Middleware\\IdentificationMiddleware\:\:\$resolver#' checkMissingIterableValueType: false treatPhpDocTypesAsCertain: false diff --git a/phpunit.xml b/phpunit.xml index 9d2b9339..0e0a8481 100644 --- a/phpunit.xml +++ b/phpunit.xml @@ -23,6 +23,7 @@ + diff --git a/src/Bootstrappers/QueueTenancyBootstrapper.php b/src/Bootstrappers/QueueTenancyBootstrapper.php index 5b6ef4d8..92c95ef6 100644 --- a/src/Bootstrappers/QueueTenancyBootstrapper.php +++ b/src/Bootstrappers/QueueTenancyBootstrapper.php @@ -79,9 +79,9 @@ class QueueTenancyBootstrapper implements TenancyBootstrapper $dispatcher->listen(JobFailed::class, $revertToPreviousState); // artisan('queue:work') which fails } - protected static function initializeTenancyForQueue(string|int $tenantId): void + protected static function initializeTenancyForQueue(string|int|null $tenantId): void { - if (! $tenantId) { + if ($tenantId === null) { // The job is not tenant-aware if (tenancy()->initialized) { // Tenancy was initialized, so we revert back to the central context diff --git a/src/Bootstrappers/SessionTenancyBootstrapper.php b/src/Bootstrappers/SessionTenancyBootstrapper.php new file mode 100644 index 00000000..13dd5bcd --- /dev/null +++ b/src/Bootstrappers/SessionTenancyBootstrapper.php @@ -0,0 +1,66 @@ +resetDatabaseHandler(); + } + + public function revert(): void + { + // When ending tenancy, this runs *before* the DatabaseTenancyBootstrapper, so DB tenancy + // is still bootstrapped. For that reason, we have to explicitly use the central connection + $this->resetDatabaseHandler(config('tenancy.database.central_connection')); + } + + protected function resetDatabaseHandler(string $defaultConnection = null): void + { + $sessionDrivers = $this->session->getDrivers(); + + if (isset($sessionDrivers['database'])) { + /** @var \Illuminate\Session\Store $databaseDriver */ + $databaseDriver = $sessionDrivers['database']; + + $databaseDriver->setHandler($this->createDatabaseHandler($defaultConnection)); + } + } + + protected function createDatabaseHandler(string $defaultConnection = null): DatabaseSessionHandler + { + // Typically returns null, so this falls back to the default DB connection + $connection = $this->config->get('session.connection') ?? $defaultConnection; + + // Based on SessionManager::createDatabaseDriver + return new DatabaseSessionHandler( + $this->container->make('db')->connection($connection), + $this->config->get('session.table'), + $this->config->get('session.lifetime'), + $this->container, + ); + } +} diff --git a/src/Concerns/Debuggable.php b/src/Concerns/Debuggable.php deleted file mode 100644 index ff781f89..00000000 --- a/src/Concerns/Debuggable.php +++ /dev/null @@ -1,72 +0,0 @@ -eventLog = []; - $this->logMode = $mode; - - return $this; - } - - public function logMode(): LogMode - { - return $this->logMode; - } - - public function getLog(): array - { - return $this->eventLog; - } - - public function logEvent(TenancyEvent $event): static - { - $this->eventLog[] = ['time' => now(), 'event' => $event::class, 'tenant' => $this->tenant]; - - return $this; - } - - public function dump(Closure $dump = null): static - { - $dump ??= dd(...); - - // Dump the log if we were already logging in silent mode - // Otherwise start logging in instant mode - match ($this->logMode) { - LogMode::NONE => $this->log(LogMode::INSTANT), - LogMode::SILENT => $dump($this->eventLog), - LogMode::INSTANT => null, - }; - - return $this; - } - - public function dd(Closure $dump = null): void - { - $dump ??= dd(...); - - if ($this->logMode === LogMode::SILENT) { - $dump($this->eventLog); - } else { - $dump($this); - } - } -} diff --git a/src/Database/Concerns/BelongsToTenant.php b/src/Database/Concerns/BelongsToTenant.php index ccf87c81..3ca9703c 100644 --- a/src/Database/Concerns/BelongsToTenant.php +++ b/src/Database/Concerns/BelongsToTenant.php @@ -4,6 +4,7 @@ declare(strict_types=1); namespace Stancl\Tenancy\Database\Concerns; +use Illuminate\Database\Eloquent\Relations\BelongsTo; use Stancl\Tenancy\Contracts\Tenant; use Stancl\Tenancy\Database\TenantScope; use Stancl\Tenancy\Tenancy; @@ -13,7 +14,7 @@ use Stancl\Tenancy\Tenancy; */ trait BelongsToTenant { - public function tenant() + public function tenant(): BelongsTo { return $this->belongsTo(config('tenancy.models.tenant'), Tenancy::tenantKeyColumn()); } diff --git a/src/Database/Models/Domain.php b/src/Database/Models/Domain.php index e5c49bcf..4d552b12 100644 --- a/src/Database/Models/Domain.php +++ b/src/Database/Models/Domain.php @@ -10,6 +10,7 @@ use Stancl\Tenancy\Contracts; use Stancl\Tenancy\Contracts\Tenant; use Stancl\Tenancy\Database\Concerns; use Stancl\Tenancy\Events; +use Stancl\Tenancy\Tenancy; /** * @property string $domain @@ -28,7 +29,7 @@ class Domain extends Model implements Contracts\Domain public function tenant(): BelongsTo { - return $this->belongsTo(config('tenancy.models.tenant')); + return $this->belongsTo(config('tenancy.models.tenant'), Tenancy::tenantKeyColumn()); } protected $dispatchesEvents = [ diff --git a/src/Enums/LogMode.php b/src/Enums/LogMode.php deleted file mode 100644 index 77d6f073..00000000 --- a/src/Enums/LogMode.php +++ /dev/null @@ -1,12 +0,0 @@ -> */ - public static array $identificationMiddlewares = [ - Middleware\InitializeTenancyByDomain::class, - Middleware\InitializeTenancyBySubdomain::class, - ]; - - public function bootstrap(Tenancy $tenancy): void - { - foreach (static::$identificationMiddlewares as $middleware) { - $originalOnFail = $middleware::$onFail; - - $middleware::$onFail = function ($exception, $request, $next) use ($originalOnFail) { - if (static::routeHasMiddleware($request->route(), static::$middlewareGroup)) { - return $next($request); - } - - if ($originalOnFail) { - return $originalOnFail($exception, $request, $next); - } - - throw $exception; - }; - } - } - - public static function routeHasMiddleware(Route $route, string $middleware): bool - { - /** @var array $routeMiddleware */ - $routeMiddleware = $route->middleware(); - - if (in_array($middleware, $routeMiddleware, true)) { - return true; - } - - // Loop one level deep and check if the route's middleware - // groups have the searched middleware group inside them - $middlewareGroups = Router::getMiddlewareGroups(); - foreach ($route->gatherMiddleware() as $inner) { - if (! $inner instanceof Closure && isset($middlewareGroups[$inner]) && in_array($middleware, $middlewareGroups[$inner], true)) { - return true; - } - } - - return false; - } -} diff --git a/src/Listeners/CreateTenantStorage.php b/src/Listeners/CreateTenantStorage.php new file mode 100644 index 00000000..51fa9d23 --- /dev/null +++ b/src/Listeners/CreateTenantStorage.php @@ -0,0 +1,18 @@ +tenant->run(fn () => storage_path()); + + mkdir("$storage_path", 0777, true); // Create the tenant's folder inside storage/ + mkdir("$storage_path/framework/cache", 0777, true); // Create /framework/cache inside the tenant's storage (used for e.g. real-time facades) + } +} diff --git a/src/Listeners/DeleteTenantStorage.php b/src/Listeners/DeleteTenantStorage.php index ce1a4203..9cc1daae 100644 --- a/src/Listeners/DeleteTenantStorage.php +++ b/src/Listeners/DeleteTenantStorage.php @@ -11,6 +11,9 @@ class DeleteTenantStorage { public function handle(DeletingTenant $event): void { + // todo@lukas since this is using the 'File' facade instead of low-level PHP functions, Tenancy might affect this? + // Therefore, when Tenancy is initialized, this might look INSIDE the tenant's storage, instead of the main storage dir? + // The DeletingTenant event will be fired in the central context in 99% of cases, but sometimes it might run in the tenant context (from another tenant) so we want to make sure this works well in all contexts. File::deleteDirectory($event->tenant->run(fn () => storage_path())); } } diff --git a/src/Middleware/InitializeTenancyByDomain.php b/src/Middleware/InitializeTenancyByDomain.php index add5597d..be9b2f66 100644 --- a/src/Middleware/InitializeTenancyByDomain.php +++ b/src/Middleware/InitializeTenancyByDomain.php @@ -22,6 +22,11 @@ class InitializeTenancyByDomain extends IdentificationMiddleware /** @return \Illuminate\Http\Response|mixed */ public function handle(Request $request, Closure $next): mixed { + if (in_array($request->getHost(), config('tenancy.central_domains', []), true)) { + // Always bypass tenancy initialization when host is in central domains + return $next($request); + } + return $this->initializeTenancy( $request, $next, diff --git a/src/Middleware/InitializeTenancyByPath.php b/src/Middleware/InitializeTenancyByPath.php index e73605e3..fc27cae0 100644 --- a/src/Middleware/InitializeTenancyByPath.php +++ b/src/Middleware/InitializeTenancyByPath.php @@ -28,14 +28,13 @@ class InitializeTenancyByPath extends IdentificationMiddleware /** @return \Illuminate\Http\Response|mixed */ public function handle(Request $request, Closure $next): mixed { - /** @var Route $route */ - $route = $request->route(); + $route = $this->route($request); // Only initialize tenancy if tenant is the first parameter // We don't want to initialize tenancy if the tenant is // simply injected into some route controller action. if ($route->parameterNames()[0] === PathTenantResolver::tenantParameterName()) { - $this->setDefaultTenantForRouteParametersWhenTenancyIsInitialized(); + $this->setDefaultTenantForRouteParametersWhenInitializingTenancy(); return $this->initializeTenancy( $request, @@ -47,7 +46,26 @@ class InitializeTenancyByPath extends IdentificationMiddleware } } - protected function setDefaultTenantForRouteParametersWhenTenancyIsInitialized(): void + protected function route(Request $request): Route + { + /** @var ?Route $route */ + $route = $request->route(); + + if (! $route) { + // Create a fake $route instance that has enough information for this middleware's needs + $route = new Route($request->method(), $request->getUri(), []); + /** + * getPathInfo() returns the path except the root domain. + * We fetch the first parameter because tenant parameter is *always* first. + */ + $route->parameters[PathTenantResolver::tenantParameterName()] = explode('/', ltrim($request->getPathInfo(), '/'))[0]; + $route->parameterNames[] = PathTenantResolver::tenantParameterName(); + } + + return $route; + } + + protected function setDefaultTenantForRouteParametersWhenInitializingTenancy(): void { Event::listen(InitializingTenancy::class, function (InitializingTenancy $event) { /** @var Tenant $tenant */ diff --git a/src/Middleware/InitializeTenancyBySubdomain.php b/src/Middleware/InitializeTenancyBySubdomain.php index 1bf083f3..3cf3e0d3 100644 --- a/src/Middleware/InitializeTenancyBySubdomain.php +++ b/src/Middleware/InitializeTenancyBySubdomain.php @@ -27,6 +27,11 @@ class InitializeTenancyBySubdomain extends InitializeTenancyByDomain /** @return Response|mixed */ public function handle(Request $request, Closure $next): mixed { + if (in_array($request->getHost(), config('tenancy.central_domains', []), true)) { + // Always bypass tenancy initialization when host is in central domains + return $next($request); + } + $subdomain = $this->makeSubdomain($request->getHost()); if (is_object($subdomain) && $subdomain instanceof Exception) { diff --git a/src/Middleware/PreventAccessFromCentralDomains.php b/src/Middleware/PreventAccessFromCentralDomains.php deleted file mode 100644 index 40718730..00000000 --- a/src/Middleware/PreventAccessFromCentralDomains.php +++ /dev/null @@ -1,30 +0,0 @@ -getHost(), config('tenancy.central_domains'))) { - $abortRequest = static::$abortRequest ?? function () { - abort(404); - }; - - return $abortRequest($request, $next); - } - - return $next($request); - } -} diff --git a/src/Middleware/PreventAccessFromUnwantedDomains.php b/src/Middleware/PreventAccessFromUnwantedDomains.php new file mode 100644 index 00000000..977d2021 --- /dev/null +++ b/src/Middleware/PreventAccessFromUnwantedDomains.php @@ -0,0 +1,61 @@ +route(); + + if ($this->routeHasMiddleware($route, 'universal')) { + return $next($request); + } + + if (in_array($request->getHost(), config('tenancy.central_domains'), true)) { + $abortRequest = static::$abortRequest ?? function () { + abort(404); + }; + + return $abortRequest($request, $next); + } + + return $next($request); + } + + protected function routeHasMiddleware(Route $route, string $middleware): bool + { + /** @var array $routeMiddleware */ + $routeMiddleware = $route->middleware(); + + if (in_array($middleware, $routeMiddleware, true)) { + return true; + } + + // Loop one level deep and check if the route's middleware + // groups have the searched middleware group inside them + $middlewareGroups = Router::getMiddlewareGroups(); + foreach ($route->gatherMiddleware() as $inner) { + if (! $inner instanceof Closure && isset($middlewareGroups[$inner]) && in_array($middleware, $middlewareGroups[$inner], true)) { + return true; + } + } + + return false; + } +} diff --git a/src/Resolvers/Contracts/CachedTenantResolver.php b/src/Resolvers/Contracts/CachedTenantResolver.php index b6a4b15c..13a1f6b1 100644 --- a/src/Resolvers/Contracts/CachedTenantResolver.php +++ b/src/Resolvers/Contracts/CachedTenantResolver.php @@ -27,9 +27,7 @@ abstract class CachedTenantResolver implements TenantResolver $key = $this->getCacheKey(...$args); - if ($this->cache->has($key)) { - $tenant = $this->cache->get($key); - + if ($tenant = $this->cache->get($key)) { $this->resolved($tenant, ...$args); return $tenant; diff --git a/src/Tenancy.php b/src/Tenancy.php index 991f9234..1acd02ad 100644 --- a/src/Tenancy.php +++ b/src/Tenancy.php @@ -8,21 +8,18 @@ use Closure; use Illuminate\Database\Eloquent\Builder; use Illuminate\Database\Eloquent\Model; use Illuminate\Support\Traits\Macroable; -use Stancl\Tenancy\Concerns\Debuggable; use Stancl\Tenancy\Contracts\TenancyBootstrapper; use Stancl\Tenancy\Contracts\Tenant; use Stancl\Tenancy\Exceptions\TenantCouldNotBeIdentifiedByIdException; class Tenancy { - use Macroable, Debuggable; + use Macroable; /** * The current tenant. - * - * @var (Tenant&Model)|null */ - public ?Tenant $tenant = null; + public (Tenant&Model)|null $tenant = null; // todo docblock public ?Closure $getBootstrappersUsing = null; @@ -97,9 +94,9 @@ class Tenancy public static function model(): Tenant&Model { + /** @var class-string $class */ $class = config('tenancy.models.tenant'); - /** @var Tenant&Model $model */ $model = new $class; return $model; @@ -113,13 +110,9 @@ class Tenancy /** * Try to find a tenant using an ID. - * - * @return (Tenant&Model)|null */ - public static function find(int|string $id): Tenant|null + public static function find(int|string $id): (Tenant&Model)|null { - // todo update all syntax like this once we're fully on PHP 8.2 - /** @var (Tenant&Model)|null */ $tenant = static::model()->where(static::model()->getTenantKeyName(), $id)->first(); return $tenant; diff --git a/src/TenancyServiceProvider.php b/src/TenancyServiceProvider.php index 37ad701b..ad53c01c 100644 --- a/src/TenancyServiceProvider.php +++ b/src/TenancyServiceProvider.php @@ -6,14 +6,11 @@ namespace Stancl\Tenancy; use Illuminate\Cache\CacheManager; use Illuminate\Database\Console\Migrations\FreshCommand; -use Illuminate\Support\Facades\Event; use Illuminate\Support\ServiceProvider; use Stancl\Tenancy\Bootstrappers\FilesystemTenancyBootstrapper; use Stancl\Tenancy\CacheManager as TenantCacheManager; use Stancl\Tenancy\Contracts\Domain; use Stancl\Tenancy\Contracts\Tenant; -use Stancl\Tenancy\Enums\LogMode; -use Stancl\Tenancy\Events\Contracts\TenancyEvent; use Stancl\Tenancy\Resolvers\DomainTenantResolver; class TenancyServiceProvider extends ServiceProvider @@ -126,18 +123,6 @@ class TenancyServiceProvider extends ServiceProvider $this->loadRoutesFrom(__DIR__ . '/../assets/routes.php'); } - Event::listen('Stancl\\Tenancy\\Events\\*', function (string $name, array $data) { - $event = $data[0]; - - if ($event instanceof TenancyEvent) { - match (tenancy()->logMode()) { - LogMode::SILENT => tenancy()->logEvent($event), - LogMode::INSTANT => dump($event), // todo1 perhaps still log - default => null, - }; - } - }); - $this->app->singleton('globalUrl', function ($app) { if ($app->bound(FilesystemTenancyBootstrapper::class)) { $instance = clone $app['url']; diff --git a/tests/CommandsTest.php b/tests/CommandsTest.php index 7d6f0884..444830d1 100644 --- a/tests/CommandsTest.php +++ b/tests/CommandsTest.php @@ -180,17 +180,17 @@ test('rollback command works', function () { expect(Schema::hasTable('users'))->toBeFalse(); }); -test('seed command works', function (){ +test('seed command works', function () { $tenant = Tenant::create(); Artisan::call('tenants:migrate'); - $tenant->run(function (){ + $tenant->run(function () { expect(DB::table('users')->count())->toBe(0); }); Artisan::call('tenants:seed', ['--class' => TestSeeder::class]); - $tenant->run(function (){ + $tenant->run(function () { $user = DB::table('users'); expect($user->count())->toBe(1) ->and($user->first()->email)->toBe('seeded@user'); diff --git a/tests/DebuggableTest.php b/tests/DebuggableTest.php deleted file mode 100644 index 49e180d7..00000000 --- a/tests/DebuggableTest.php +++ /dev/null @@ -1,68 +0,0 @@ -log(LogMode::SILENT); - - $tenant = Tenant::create(); - - tenancy()->initialize($tenant); - - tenancy()->end(); - - assertTenancyInitializedAndEnded(tenancy()->getLog(), $tenant); -}); - -test('tenancy logs event silently by default', function () { - tenancy()->log(); - - expect(tenancy()->logMode())->toBe(LogMode::SILENT); -}); - -test('the log can be dumped', function (string $method) { - tenancy()->log(); - - $tenant = Tenant::create(); - - tenancy()->initialize($tenant); - - tenancy()->end(); - - $output = []; - tenancy()->$method(function ($data) use (&$output) { - $output = $data; - }); - - assertTenancyInitializedAndEnded($output, $tenant); -})->with([ - 'dump', - 'dd', -]); - -test('tenancy can log events immediately', function () { - // todo implement - pest()->markTestIncomplete(); -}); - -// todo test the different behavior of the methods in different contexts, or get rid of the logic and simplify it - -function assertTenancyInitializedAndEnded(array $log, Tenant $tenant): void -{ - expect($log)->toHaveCount(4); - - expect($log[0]['event'])->toBe(InitializingTenancy::class); - expect($log[0]['tenant'])->toBe($tenant); - expect($log[1]['event'])->toBe(TenancyInitialized::class); - expect($log[1]['tenant'])->toBe($tenant); - - expect($log[2]['event'])->toBe(EndingTenancy::class); - expect($log[2]['tenant'])->toBe($tenant); - expect($log[3]['event'])->toBe(TenancyEnded::class); - expect($log[3]['tenant'])->toBe($tenant); -} diff --git a/tests/DeleteDomainsJobTest.php b/tests/DeleteDomainsJobTest.php index bd825b71..e109384e 100644 --- a/tests/DeleteDomainsJobTest.php +++ b/tests/DeleteDomainsJobTest.php @@ -9,7 +9,7 @@ beforeEach(function () { config(['tenancy.models.tenant' => DatabaseAndDomainTenant::class]); }); -test('job delete domains successfully', function (){ +test('job delete domains successfully', function () { $tenant = DatabaseAndDomainTenant::create(); $tenant->domains()->create([ diff --git a/tests/DomainTest.php b/tests/DomainTest.php index 2fc04b76..02459914 100644 --- a/tests/DomainTest.php +++ b/tests/DomainTest.php @@ -8,7 +8,6 @@ use Stancl\Tenancy\Database\Models; use Stancl\Tenancy\Database\Models\Domain; use Stancl\Tenancy\Exceptions\DomainOccupiedByOtherTenantException; use Stancl\Tenancy\Exceptions\TenantCouldNotBeIdentifiedOnDomainException; -use Stancl\Tenancy\Features\UniversalRoutes; use Stancl\Tenancy\Middleware\InitializeTenancyByDomain; use Stancl\Tenancy\Resolvers\DomainTenantResolver; @@ -95,7 +94,6 @@ test('throw correct exception when onFail is null and universal routes are enabl // Enable UniversalRoute feature Route::middlewareGroup('universal', []); - config(['tenancy.features' => [UniversalRoutes::class]]); $this->withoutExceptionHandling()->get('http://foo.localhost/foo/abc/xyz'); })->throws(TenantCouldNotBeIdentifiedOnDomainException::class);; diff --git a/tests/EarlyIdentificationTest.php b/tests/EarlyIdentificationTest.php new file mode 100644 index 00000000..ddec56fe --- /dev/null +++ b/tests/EarlyIdentificationTest.php @@ -0,0 +1,104 @@ +set([ + 'tenancy.token' => 'central-abc123', + ]); + + Event::listen(TenancyInitialized::class, function (TenancyInitialized $event) { + config()->set([ + 'tenancy.token' => $event->tenancy->tenant->getTenantKey() . '-abc123', + ]); + }); +}); + +test('early identification works with path identification', function () { + app(Kernel::class)->pushMiddleware(InitializeTenancyByPath::class); + + Route::group([ + 'prefix' => '/{tenant}', + ], function () { + Route::get('/foo', [Controller::class, 'index'])->name('foo'); + }); + + Tenant::create([ + 'id' => 'acme', + ]); + + $response = pest()->get('/acme/foo')->assertOk(); + + assertTenancyInitializedInEarlyIdentificationRequest($response->getContent()); + + // check if default parameter feature is working fine by asserting that the route WITHOUT the tenant parameter + // matches the route WITH the tenant parameter + expect(route('foo'))->toBe(route('foo', ['tenant' => 'acme'])); +}); + +test('early identification works with request data identification', function (string $type) { + app(Kernel::class)->pushMiddleware(InitializeTenancyByRequestData::class); + + Route::get('/foo', [Controller::class, 'index'])->name('foo'); + + $tenant = Tenant::create([ + 'id' => 'acme', + ]); + + if ($type === 'header') { + $response = pest()->get('/foo', ['X-Tenant' => $tenant->id])->assertOk(); + } elseif ($type === 'queryParameter') { + $response = pest()->get("/foo?tenant=$tenant->id")->assertOk(); + } + + assertTenancyInitializedInEarlyIdentificationRequest($response->getContent()); +})->with([ + 'using request header parameter' => 'header', + 'using request query parameter' => 'queryParameter' +]); + +// The name of this test is suffixed by the dataset — domain / subdomain / domainOrSubdomain identification +test('early identification works', function (string $middleware, string $domain, string $url) { + app(Kernel::class)->pushMiddleware($middleware); + + config(['tenancy.tenant_model' => Tenant::class]); + + Route::get('/foo', [Controller::class, 'index']) + ->middleware(PreventAccessFromUnwantedDomains::class) + ->name('foo'); + + $tenant = Tenant::create(); + + $tenant->domains()->create([ + 'domain' => $domain, + ]); + + $response = pest()->get($url)->assertOk(); + + assertTenancyInitializedInEarlyIdentificationRequest($response->getContent()); +})->with([ + 'domain identification' => ['middleware' => InitializeTenancyByDomain::class, 'domain' => 'foo.test', 'url' => 'http://foo.test/foo'], + 'subdomain identification' => ['middleware' => InitializeTenancyBySubdomain::class, 'domain' => 'foo', 'url' => 'http://foo.localhost/foo'], + 'domainOrSubdomain identification using domain' => ['middleware' => InitializeTenancyByDomainOrSubdomain::class, 'domain' => 'foo.test', 'url' => 'http://foo.test/foo'], + 'domainOrSubdomain identification using subdomain' => ['middleware' => InitializeTenancyByDomainOrSubdomain::class, 'domain' => 'foo', 'url' => 'http://foo.localhost/foo'], +]); + +function assertTenancyInitializedInEarlyIdentificationRequest(string|false $string): void +{ + expect($string)->toBe(tenant()->getTenantKey() . '-abc123'); // Assert that the service class returns tenant value + expect(app()->make('additionalMiddlewareRunsInTenantContext'))->toBeTrue(); // Assert that middleware added in the controller constructor runs in tenant context + expect(app()->make('controllerRunsInTenantContext'))->toBeTrue(); // Assert that tenancy is initialized in the controller constructor +} diff --git a/tests/Etc/EarlyIdentification/AdditionalMiddleware.php b/tests/Etc/EarlyIdentification/AdditionalMiddleware.php new file mode 100644 index 00000000..b580c6f6 --- /dev/null +++ b/tests/Etc/EarlyIdentification/AdditionalMiddleware.php @@ -0,0 +1,16 @@ +instance('additionalMiddlewareRunsInTenantContext', tenancy()->initialized); + + return $next($request); + } +} diff --git a/tests/Etc/EarlyIdentification/Controller.php b/tests/Etc/EarlyIdentification/Controller.php new file mode 100644 index 00000000..69898593 --- /dev/null +++ b/tests/Etc/EarlyIdentification/Controller.php @@ -0,0 +1,19 @@ +instance('controllerRunsInTenantContext', tenancy()->initialized); + $this->middleware(AdditionalMiddleware::class); + } + + public function index(): string + { + return $this->service->token; + } +} diff --git a/tests/Etc/EarlyIdentification/Service.php b/tests/Etc/EarlyIdentification/Service.php new file mode 100644 index 00000000..29d9414c --- /dev/null +++ b/tests/Etc/EarlyIdentification/Service.php @@ -0,0 +1,15 @@ +token = config('tenancy.token'); + } +} diff --git a/tests/Etc/HttpKernel.php b/tests/Etc/HttpKernel.php index 3bb43c53..4fc4b7dc 100644 --- a/tests/Etc/HttpKernel.php +++ b/tests/Etc/HttpKernel.php @@ -30,7 +30,7 @@ class HttpKernel extends Kernel */ protected $middlewareGroups = [ 'web' => [ - \Orchestra\Testbench\Http\Middleware\EncryptCookies::class, + \Illuminate\Cookie\Middleware\EncryptCookies::class, \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class, \Illuminate\Session\Middleware\StartSession::class, // \Illuminate\Session\Middleware\AuthenticateSession::class, diff --git a/tests/Etc/session_migrations/2022_05_11_181442_create_sessions_table.php b/tests/Etc/session_migrations/2022_05_11_181442_create_sessions_table.php new file mode 100644 index 00000000..88b4a316 --- /dev/null +++ b/tests/Etc/session_migrations/2022_05_11_181442_create_sessions_table.php @@ -0,0 +1,35 @@ +string('id')->primary(); + $table->foreignId('user_id')->nullable()->index(); + $table->string('ip_address', 45)->nullable(); + $table->text('user_agent')->nullable(); + $table->text('payload'); + $table->integer('last_activity')->index(); + }); + } + + /** + * Reverse the migrations. + * + * @return void + */ + public function down() + { + Schema::dropIfExists('sessions'); + } +} diff --git a/tests/SessionBootstrapperTest.php b/tests/SessionBootstrapperTest.php new file mode 100644 index 00000000..772cb427 --- /dev/null +++ b/tests/SessionBootstrapperTest.php @@ -0,0 +1,145 @@ + 'database']); + config(['tenancy.bootstrappers' => [DatabaseTenancyBootstrapper::class]]); + + Event::listen( + TenantCreated::class, + JobPipeline::make([CreateDatabase::class])->send(function (TenantCreated $event) { + return $event->tenant; + })->toListener() + ); + + Event::listen(Events\TenancyInitialized::class, Listeners\BootstrapTenancy::class); + Event::listen(Events\TenancyEnded::class, Listeners\RevertToCentralContext::class); + + // Sessions table for central database + pest()->artisan('migrate', [ + '--path' => __DIR__ . '/Etc/session_migrations', + '--realpath' => true, + ])->assertExitCode(0); + }); + +test('central helper can be used in tenant requests', function (bool $enabled, bool $shouldThrow) { + if ($enabled) { + config()->set( + 'tenancy.bootstrappers', + array_merge(config('tenancy.bootstrappers'), [SessionTenancyBootstrapper::class]), + ); + } + + $tenant = Tenant::create(); + + $tenant->domains()->create(['domain' => 'foo.localhost']); + + // run for tenants + pest()->artisan('tenants:migrate', [ + '--path' => __DIR__ . '/Etc/session_migrations', + '--realpath' => true, + ])->assertExitCode(0); + + Route::middleware(['web', InitializeTenancyByDomain::class])->get('/bar', function () { + session(['message' => 'tenant session']); + + tenancy()->central(function () { + return 'central results'; + }); + + return session('message'); + }); + + // We initialize tenancy before making the request, since sessions work a bit differently in tests + // and we need the DB session handler to use the tenant connection (as it does in a real app on tenant requests). + tenancy()->initialize($tenant); + + try { + $this->withoutExceptionHandling() + ->get('http://foo.localhost/bar') + ->assertOk() + ->assertSee('tenant session'); + + if ($shouldThrow) { + pest()->fail('Exception not thrown'); + } + } catch (Throwable $e) { + if ($shouldThrow) { + pest()->assertTrue(true); // empty assertion to make the test pass + } else { + pest()->fail('Exception thrown: ' . $e->getMessage()); + } + } +})->with([ + ['enabled' => false, 'shouldThrow' => true], + ['enabled' => true, 'shouldThrow' => false], +]); + +test('tenant run helper can be used on central requests', function (bool $enabled, bool $shouldThrow) { + if ($enabled) { + config()->set( + 'tenancy.bootstrappers', + array_merge(config('tenancy.bootstrappers'), [SessionTenancyBootstrapper::class]), + ); + } + + Tenant::create(); + + // run for tenants + pest()->artisan('tenants:migrate', [ + '--path' => __DIR__ . '/Etc/session_migrations', + '--realpath' => true, + ])->assertExitCode(0); + + Route::middleware(['web'])->get('/bar', function () { + session(['message' => 'central session']); + + Tenant::first()->run(function () { + return 'tenant results'; + }); + + return session('message'); + }); + + try { + $this->withoutExceptionHandling() + ->get('http://localhost/bar') + ->assertOk() + ->assertSee('central session'); + + if ($shouldThrow) { + pest()->fail('Exception not thrown'); + } + } catch (Throwable $e) { + if ($shouldThrow) { + pest()->assertTrue(true); // empty assertion to make the test pass + } else { + pest()->fail('Exception thrown: ' . $e->getMessage()); + } + } +})->with([ + ['enabled' => false, 'shouldThrow' => true], + ['enabled' => true, 'shouldThrow' => false], +]); diff --git a/tests/SubdomainTest.php b/tests/SubdomainTest.php index 365ecc47..eefdc7ca 100644 --- a/tests/SubdomainTest.php +++ b/tests/SubdomainTest.php @@ -52,12 +52,13 @@ test('onfail logic can be customized', function () { ->assertSee('foo'); }); -test('localhost is not a valid subdomain', function () { +test('archte.ch is not a valid subdomain', function () { pest()->expectException(NotASubdomainException::class); + // This gets routed to the app, but with a request domain of 'archte.ch' $this ->withoutExceptionHandling() - ->get('http://localhost/foo/abc/xyz'); + ->get('http://archte.ch/foo/abc/xyz'); }); test('ip address is not a valid subdomain', function () { @@ -65,7 +66,7 @@ test('ip address is not a valid subdomain', function () { $this ->withoutExceptionHandling() - ->get('http://127.0.0.1/foo/abc/xyz'); + ->get('http://127.0.0.2/foo/abc/xyz'); }); test('oninvalidsubdomain logic can be customized', function () { @@ -81,7 +82,7 @@ test('oninvalidsubdomain logic can be customized', function () { $this ->withoutExceptionHandling() - ->get('http://127.0.0.1/foo/abc/xyz') + ->get('http://127.0.0.2/foo/abc/xyz') ->assertSee('foo custom invalid subdomain handler'); }); @@ -106,26 +107,6 @@ test('we cant use a subdomain that doesnt belong to our central domains', functi ->get('http://foo.localhost/foo/abc/xyz'); }); -test('central domain is not a subdomain', function () { - config(['tenancy.central_domains' => [ - 'localhost', - ]]); - - $tenant = SubdomainTenant::create([ - 'id' => 'acme', - ]); - - $tenant->domains()->create([ - 'domain' => 'acme', - ]); - - pest()->expectException(NotASubdomainException::class); - - $this - ->withoutExceptionHandling() - ->get('http://localhost/foo/abc/xyz'); -}); - class SubdomainTenant extends Models\Tenant { use HasDomains; diff --git a/tests/UniversalRouteTest.php b/tests/UniversalRouteTest.php index 20723cca..d520e580 100644 --- a/tests/UniversalRouteTest.php +++ b/tests/UniversalRouteTest.php @@ -3,27 +3,24 @@ declare(strict_types=1); use Illuminate\Support\Facades\Route; -use Stancl\Tenancy\Features\UniversalRoutes; +use Stancl\Tenancy\Exceptions\TenantCouldNotBeIdentifiedOnDomainException; use Stancl\Tenancy\Middleware\InitializeTenancyByDomain; +use Stancl\Tenancy\Middleware\PreventAccessFromUnwantedDomains; use Stancl\Tenancy\Tests\Etc\Tenant; +use Illuminate\Contracts\Http\Kernel; -afterEach(function () { - InitializeTenancyByDomain::$onFail = null; -}); +test('a route can work in both central and tenant context', function (array $routeMiddleware, string|null $globalMiddleware) { + if ($globalMiddleware) { + app(Kernel::class)->pushMiddleware($globalMiddleware); + } -test('a route can work in both central and tenant context', function () { Route::middlewareGroup('universal', []); - config(['tenancy.features' => [UniversalRoutes::class]]); Route::get('/foo', function () { return tenancy()->initialized ? 'Tenancy is initialized.' : 'Tenancy is not initialized.'; - })->middleware(['universal', InitializeTenancyByDomain::class]); - - pest()->get('http://localhost/foo') - ->assertSuccessful() - ->assertSee('Tenancy is not initialized.'); + })->middleware($routeMiddleware); $tenant = Tenant::create([ 'id' => 'acme', @@ -32,28 +29,33 @@ test('a route can work in both central and tenant context', function () { 'domain' => 'acme.localhost', ]); - pest()->get('http://acme.localhost/foo') + pest()->get("http://localhost/foo") + ->assertSuccessful() + ->assertSee('Tenancy is not initialized.'); + + pest()->get("http://acme.localhost/foo") ->assertSuccessful() ->assertSee('Tenancy is initialized.'); -}); +})->with('identification types'); -test('making one route universal doesnt make all routes universal', function () { - Route::get('/bar', function () { - return tenant('id'); - })->middleware(InitializeTenancyByDomain::class); +test('making one route universal doesnt make all routes universal', function (array $routeMiddleware, string|null $globalMiddleware) { + if ($globalMiddleware) { + app(Kernel::class)->pushMiddleware($globalMiddleware); + } Route::middlewareGroup('universal', []); - config(['tenancy.features' => [UniversalRoutes::class]]); - Route::get('/foo', function () { - return tenancy()->initialized - ? 'Tenancy is initialized.' - : 'Tenancy is not initialized.'; - })->middleware(['universal', InitializeTenancyByDomain::class]); + Route::middleware($routeMiddleware)->group(function () { + Route::get('/nonuniversal', function () { + return tenant('id'); + }); - pest()->get('http://localhost/foo') - ->assertSuccessful() - ->assertSee('Tenancy is not initialized.'); + Route::get('/universal', function () { + return tenancy()->initialized + ? 'Tenancy is initialized.' + : 'Tenancy is not initialized.'; + })->middleware('universal'); + }); $tenant = Tenant::create([ 'id' => 'acme', @@ -62,16 +64,57 @@ test('making one route universal doesnt make all routes universal', function () 'domain' => 'acme.localhost', ]); - pest()->get('http://acme.localhost/foo') + pest()->get("http://localhost/universal") + ->assertSuccessful() + ->assertSee('Tenancy is not initialized.'); + + pest()->get("http://acme.localhost/universal") ->assertSuccessful() ->assertSee('Tenancy is initialized.'); tenancy()->end(); - pest()->get('http://localhost/bar') - ->assertStatus(500); + pest()->get('http://localhost/nonuniversal') + ->assertStatus(404); - pest()->get('http://acme.localhost/bar') + pest()->get('http://acme.localhost/nonuniversal') ->assertSuccessful() ->assertSee('acme'); -}); +})->with([ + 'early identification' => [ + 'route_middleware' => [PreventAccessFromUnwantedDomains::class], + 'global_middleware' => InitializeTenancyByDomain::class, + ], + 'route-level identification' => [ + 'route_middleware' => [PreventAccessFromUnwantedDomains::class, InitializeTenancyByDomain::class], + 'global_middleware' => null, + ] +]); + +test('it throws correct exception when route is universal and tenant does not exist', function (array $routeMiddleware, string|null $globalMiddleware) { + if ($globalMiddleware) { + app(Kernel::class)->pushMiddleware($globalMiddleware); + } + + Route::middlewareGroup('universal', []); + + Route::get('/foo', function () { + return tenancy()->initialized + ? 'Tenancy is initialized.' + : 'Tenancy is not initialized.'; + })->middleware($routeMiddleware); + + pest()->expectException(TenantCouldNotBeIdentifiedOnDomainException::class); + $this->withoutExceptionHandling()->get('http://acme.localhost/foo'); +})->with('identification types'); + +dataset('identification types', [ + 'early identification' => [ + 'route_middleware' => ['universal', PreventAccessFromUnwantedDomains::class], + 'global_middleware' => InitializeTenancyByDomain::class, + ], + 'route-level identification' => [ + 'route_middleware' => ['universal', PreventAccessFromUnwantedDomains::class, InitializeTenancyByDomain::class], + 'global_middleware' => null, + ] +]);