Skip to content
Snippets Groups Projects
Unverified Commit 0348fc51 authored by Alex Pott's avatar Alex Pott
Browse files

Issue #3358586 by godotislate, kala4ek, jaswinsingh, benjifisher, creact,... 

Issue #3358586 by godotislate, kala4ek, jaswinsingh, benjifisher, creact, catch, simohell, alexpott, alfthecat, aaronbauman, rupertj, poker10: RuntimeException: Adding non-existent permissions to a role is not allowed
parent ee894196
No related branches found
No related tags found
5 merge requests!11197Issue #3506427 by eduardo morales alberti: Remove responsive_image.ajax from hook,!11131[10.4.x-only-DO-NOT-MERGE]: Issue ##2842525 Ajax attached to Views exposed filter form does not trigger callbacks,!2964Issue #2865710 : Dependencies from only one instance of a widget are used in display modes,!10223132456: Fix issue where views instances are emptied before an ajax request is complete,!617Issue #3043725: Provide a Entity Handler for user cancelation
Pipeline #389541 passed with warnings
Stage: 🪄 Lint
Stage: 🗜️ Test
Pipeline: drupal

#389563

    Pipeline: drupal

    #389553

      Pipeline: drupal

      #389546

        Hide whitespace changes
        Inline Side-by-side
        core/modules/user/src/Entity/Role.php
        + 7
        2
        View file @ 0348fc51
        ......@@ -211,10 +211,15 @@ public function calculateDependencies() {
        $valid_permissions = array_intersect($this->permissions, array_keys($permission_definitions));
        $invalid_permissions = array_diff($this->permissions, $valid_permissions);
        if (!empty($invalid_permissions)) {
        throw new \RuntimeException('Adding non-existent permissions to a role is not allowed. The incorrect permissions are "' . implode('", "', $invalid_permissions) . '".');
        \Drupal::logger('user')->error('Non-existent permission(s) assigned to role "@label" (@id) were removed. Invalid permission(s): @permissions.', [
        '@label' => $this->label(),
        '@id' => $this->id(),
        '@permissions' => implode(', ', $invalid_permissions),
        ]);
        $this->permissions = $valid_permissions;
        }
        foreach ($valid_permissions as $permission) {
        // Depend on the module that is providing this permissions.
        // Depend on the module that is providing this permission.
        $this->addDependency('module', $permission_definitions[$permission]['provider']);
        // Depend on any other dependencies defined by permissions granted to
        // this role.
        ......
        core/modules/user/tests/src/Kernel/UserRoleEntityTest.php
        + 28
        5
        View file @ 0348fc51
        ......@@ -4,8 +4,11 @@
        namespace Drupal\Tests\user\Kernel;
        use Drupal\Core\DependencyInjection\ContainerBuilder;
        use Drupal\Core\Logger\RfcLogLevel;
        use Drupal\KernelTests\KernelTestBase;
        use Drupal\user\Entity\Role;
        use Symfony\Component\ErrorHandler\BufferingLogger;
        /**
        * @group user
        ......@@ -18,6 +21,16 @@ class UserRoleEntityTest extends KernelTestBase {
        */
        protected static $modules = ['system', 'user', 'user_permissions_test'];
        /**
        * {@inheritdoc}
        */
        public function register(ContainerBuilder $container): void {
        parent::register($container);
        $container
        ->register(BufferingLogger::class)
        ->addTag('logger');
        }
        public function testOrderOfPermissions(): void {
        $role = Role::create(['id' => 'test_role', 'label' => 'Test role']);
        $role->grantPermission('b')
        ......@@ -37,17 +50,27 @@ public function testGrantingNonExistentPermission(): void {
        $role = Role::create(['id' => 'test_role', 'label' => 'Test role']);
        // A single permission that does not exist.
        $this->expectException(\RuntimeException::class);
        $this->expectExceptionMessage('Adding non-existent permissions to a role is not allowed. The incorrect permissions are "does not exist".');
        $role->grantPermission('does not exist')
        ->save();
        $log_message = \Drupal::service(BufferingLogger::class)->cleanLogs()[0];
        $this->assertSame(RfcLogLevel::ERROR, $log_message[0]);
        $this->assertSame('Non-existent permission(s) assigned to role "@label" (@id) were removed. Invalid permission(s): @permissions.', $log_message[1]);
        $this->assertSame('Test role', $log_message[2]['@label']);
        $this->assertSame('test_role', $log_message[2]['@id']);
        $this->assertSame('does not exist', $log_message[2]['@permissions']);
        // A multiple permissions that do not exist.
        $this->expectException(\RuntimeException::class);
        $this->expectExceptionMessage('Adding non-existent permissions to a role is not allowed. The incorrect permissions are "does not exist, also does not exist".');
        // Multiple permissions that do not exist.
        $role->grantPermission('does not exist')
        ->grantPermission('also does not exist')
        ->save();
        $log_message = \Drupal::service(BufferingLogger::class)->cleanLogs()[0];
        $this->assertSame(RfcLogLevel::ERROR, $log_message[0]);
        $this->assertSame('Non-existent permission(s) assigned to role "@label" (@id) were removed. Invalid permission(s): @permissions.', $log_message[1]);
        $this->assertSame('Test role', $log_message[2]['@label']);
        $this->assertSame('test_role', $log_message[2]['@id']);
        $this->assertSame('does not exist, also does not exist', $log_message[2]['@permissions']);
        $permissions = $role->getPermissions();
        $this->assertEmpty(array_intersect(['does not exist', 'also does not exist'], $permissions));
        }
        public function testPermissionRevokeAndConfigSync(): void {
        ......
        0% or .
        You are about to add 0 people to the discussion. Proceed with caution.
        Finish editing this message first!
        Please register or to comment