Code Coverage for libsmalldb: /src/AccessControlExtension/SimpleTransitionGuard.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	100.00% covered (success)	100.00%	1 / 1	100.00% covered (success)	100.00%	7 / 7	CRAP	100.00% covered (success)	100.00%	42 / 42
SimpleTransitionGuard	100.00% covered (success)	100.00%	1 / 1	100.00% covered (success)	100.00%	7 / 7	18	100.00% covered (success)	100.00%	42 / 42
__construct				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	3 / 3
compileTransitionPredicatesSymfony				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
compileTransitionPredicates				100.00% covered (success)	100.00%	1 / 1	6	100.00% covered (success)	100.00%	19 / 19
isTransitionAllowed				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
isAccessAllowed				100.00% covered (success)	100.00%	1 / 1	4	100.00% covered (success)	100.00%	10 / 10
getTransitionPredicates				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
getTransitionPredicate				100.00% covered (success)	100.00%	1 / 1	4	100.00% covered (success)	100.00%	6 / 6

1	<?php declare(strict_types = 1);
2	/*
3	* Copyright (c) 2020, Josef Kufner <josef@kufner.cz>
4	*
5	* Licensed under the Apache License, Version 2.0 (the "License");
6	* you may not use this file except in compliance with the License.
7	* You may obtain a copy of the License at
8	*
9	* http://www.apache.org/licenses/LICENSE-2.0
10	*
11	* Unless required by applicable law or agreed to in writing, software
12	* distributed under the License is distributed on an "AS IS" BASIS,
13	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14	* See the License for the specific language governing permissions and
15	* limitations under the License.
16	*
17	*/
18
19	namespace Smalldb\StateMachine\AccessControlExtension;
20
21	use Smalldb\StateMachine\AccessControlExtension\Definition\StateMachine\AccessControlExtension;
22	use Smalldb\StateMachine\AccessControlExtension\Definition\Transition\AccessPolicyExtension;
23	use Smalldb\StateMachine\AccessControlExtension\Predicate\ContainerAdapter;
24	use Smalldb\StateMachine\AccessControlExtension\Predicate\PredicateCompiled;
25	use Smalldb\StateMachine\AccessControlExtension\Predicate\SymfonyContainerAdapter;
26	use Smalldb\StateMachine\Definition\TransitionDefinition;
27	use Smalldb\StateMachine\InvalidArgumentException;
28	use Smalldb\StateMachine\ReferenceInterface;
29	use Smalldb\StateMachine\SmalldbDefinitionBagInterface;
30	use Smalldb\StateMachine\Transition\TransitionGuard;
31	use Symfony\Component\DependencyInjection\ContainerBuilder;
32
33
34	class SimpleTransitionGuard implements TransitionGuard
35	{
36
37	/** @var \Closure[][][] */
38	private array $transitionPredicates;
39	/** @var PredicateCompiled[][][] */
40	private array $transitionPredicateCache = [];
41	private bool $defaultAllow;
42
43
44	/**
45	* @param \Closure[][][] $transitionPredicates
46	*/
47	public function __construct(array $transitionPredicates = [], bool $defaultAllow = true)
48	{
49	$this->transitionPredicates = $transitionPredicates;
50	$this->defaultAllow = $defaultAllow;
51	}
52
53
54	public static function compileTransitionPredicatesSymfony(SmalldbDefinitionBagInterface $definitionBag, ContainerBuilder $container)
55	{
56	$containerAdapter = new SymfonyContainerAdapter($container);
57	return static::compileTransitionPredicates($definitionBag, $containerAdapter);
58	}
59
60
61	public static function compileTransitionPredicates(SmalldbDefinitionBagInterface $definitionBag, ContainerAdapter $containerAdapter)
62	{
63	$guardPredicates = [];
64
65	foreach ($definitionBag->getAllDefinitions() as $definition) {
66	if ($definition->hasExtension(AccessControlExtension::class)) {
67	/** @var AccessControlExtension $ext */
68	$ext = $definition->getExtension(AccessControlExtension::class);
69	$predicates = $ext->compilePolicyPredicates($containerAdapter);
70	$defaultPolicyName = $ext->getDefaultPolicyName();
71
72	$machineType = $definition->getMachineType();
73	foreach ($definition->getTransitions() as $tr) {
74	$transitionName = $tr->getName();
75	$sourceState = $tr->getSourceState()->getName();
76	if ($tr->hasExtension(AccessPolicyExtension::class)) {
77	/** @var AccessPolicyExtension $policyExt */
78	$policyExt = $tr->getExtension(AccessPolicyExtension::class);
79	$policyName = $policyExt->getPolicyName();
80	} else {
81	$policyName = $defaultPolicyName;
82	}
83
84	if (empty($predicates[$policyName])) {
85	throw new InvalidArgumentException("Access policy not found: $policyName");
86	}
87	$guardPredicates[$machineType][$sourceState][$transitionName]
88	= $containerAdapter->closureWrap($predicates[$policyName]);
89	}
90	}
91	}
92
93	return $guardPredicates;
94	}
95
96
97	public function isTransitionAllowed(ReferenceInterface $ref, TransitionDefinition $transition): bool
98	{
99	return $this->isAccessAllowed($ref->getMachineType(), $transition->getName(), $ref);
100	}
101
102
103	public function isAccessAllowed(string $machineType, string $transitionName, ReferenceInterface $ref): bool
104	{
105	if (!empty($this->transitionPredicates[$machineType])) {
106	$sourceState = $ref->getState();
107
108	// Check cached predicate
109	if (isset($this->transitionPredicateCache[$machineType][$sourceState][$transitionName])) {
110	return $this->transitionPredicateCache[$machineType][$sourceState][$transitionName]->evaluate($ref);
111	}
112
113	// Load predicate
114	$predicate = $this->getTransitionPredicate($machineType, $sourceState, $transitionName);
115	if ($predicate !== null) {
116	$this->transitionPredicateCache[$machineType][$sourceState][$transitionName] = $predicate;
117	return $predicate->evaluate($ref);
118	}
119
120	// No predicate
121	return false;
122	} else {
123	return $this->defaultAllow;
124	}
125	}
126
127
128	public function getTransitionPredicates(): array
129	{
130	return $this->transitionPredicates;
131	}
132
133
134	private function getTransitionPredicate(string $machineType, string $sourceState, string $transitionName): ?PredicateCompiled
135	{
136	$p = $this->transitionPredicates[$machineType][$sourceState][$transitionName] ?? null;
137	if ($p instanceof PredicateCompiled) {
138	return $p;
139	} else if (is_callable($p)) {
140	return $p();
141	} else {
142	return null;
143	}
144	}
145
146	}