9cb4d3c1ce
This mirrors the check that happens post-query in `WP_Query`. See #30911. Props bswatson. Fixes #30287. git-svn-id: https://develop.svn.wordpress.org/trunk@31302 602fd350-edb4-49c9-b593-d223f7449a82
429 lines
12 KiB
PHP
429 lines
12 KiB
PHP
<?php
|
|
|
|
// tests for link-template.php and related URL functions
|
|
/**
|
|
* @group url
|
|
*/
|
|
class Tests_URL extends WP_UnitTestCase {
|
|
var $_old_server;
|
|
function setUp() {
|
|
parent::setUp();
|
|
$this->_old_server = $_SERVER;
|
|
$GLOBALS['pagenow'] = '';
|
|
}
|
|
|
|
function tearDown() {
|
|
$_SERVER = $this->_old_server;
|
|
parent::tearDown();
|
|
}
|
|
|
|
function test_is_ssl_positive() {
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertTrue( is_ssl() );
|
|
|
|
$_SERVER['HTTPS'] = 'ON';
|
|
$this->assertTrue( is_ssl() );
|
|
|
|
$_SERVER['HTTPS'] = '1';
|
|
$this->assertTrue( is_ssl() );
|
|
|
|
unset( $_SERVER['HTTPS'] );
|
|
$_SERVER['SERVER_PORT'] = '443';
|
|
$this->assertTrue( is_ssl() );
|
|
}
|
|
|
|
function test_is_ssl_negative() {
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertFalse( is_ssl() );
|
|
|
|
$_SERVER['HTTPS'] = 'OFF';
|
|
$this->assertFalse( is_ssl() );
|
|
|
|
unset($_SERVER['HTTPS']);
|
|
$this->assertFalse( is_ssl() );
|
|
}
|
|
|
|
function test_admin_url_valid() {
|
|
$paths = array(
|
|
'' => "/wp-admin/",
|
|
'foo' => "/wp-admin/foo",
|
|
'/foo' => "/wp-admin/foo",
|
|
'/foo/' => "/wp-admin/foo/",
|
|
'foo.php' => "/wp-admin/foo.php",
|
|
'/foo.php' => "/wp-admin/foo.php",
|
|
'/foo.php?bar=1' => "/wp-admin/foo.php?bar=1",
|
|
);
|
|
$https = array('on', 'off');
|
|
|
|
foreach ($https as $val) {
|
|
$_SERVER['HTTPS'] = $val;
|
|
$siteurl = get_option('siteurl');
|
|
if ( $val == 'on' )
|
|
$siteurl = str_replace('http://', 'https://', $siteurl);
|
|
|
|
foreach ($paths as $in => $out) {
|
|
$this->assertEquals( $siteurl.$out, admin_url($in), "admin_url('{$in}') should equal '{$siteurl}{$out}'");
|
|
}
|
|
}
|
|
}
|
|
|
|
function test_admin_url_invalid() {
|
|
$paths = array(
|
|
null => "/wp-admin/",
|
|
0 => "/wp-admin/",
|
|
-1 => "/wp-admin/",
|
|
'///' => "/wp-admin/",
|
|
);
|
|
$https = array('on', 'off');
|
|
|
|
foreach ($https as $val) {
|
|
$_SERVER['HTTPS'] = $val;
|
|
$siteurl = get_option('siteurl');
|
|
if ( $val == 'on' )
|
|
$siteurl = str_replace('http://', 'https://', $siteurl);
|
|
|
|
foreach ($paths as $in => $out) {
|
|
$this->assertEquals( $siteurl.$out, admin_url($in), "admin_url('{$in}') should equal '{$siteurl}{$out}'");
|
|
}
|
|
}
|
|
}
|
|
|
|
function test_home_url_valid() {
|
|
$paths = array(
|
|
'' => "",
|
|
'foo' => "/foo",
|
|
'/foo' => "/foo",
|
|
'/foo/' => "/foo/",
|
|
'foo.php' => "/foo.php",
|
|
'/foo.php' => "/foo.php",
|
|
'/foo.php?bar=1' => "/foo.php?bar=1",
|
|
);
|
|
$https = array('on', 'off');
|
|
|
|
foreach ($https as $val) {
|
|
$_SERVER['HTTPS'] = $val;
|
|
$home = get_option('home');
|
|
if ( $val == 'on' )
|
|
$home = str_replace('http://', 'https://', $home);
|
|
|
|
foreach ($paths as $in => $out) {
|
|
$this->assertEquals( $home.$out, home_url($in), "home_url('{$in}') should equal '{$home}{$out}'");
|
|
}
|
|
}
|
|
}
|
|
|
|
function test_home_url_invalid() {
|
|
$paths = array(
|
|
null => "",
|
|
0 => "",
|
|
-1 => "",
|
|
'///' => "/",
|
|
);
|
|
$https = array('on', 'off');
|
|
|
|
foreach ($https as $val) {
|
|
$_SERVER['HTTPS'] = $val;
|
|
$home = get_option('home');
|
|
if ( $val == 'on' )
|
|
$home = str_replace('http://', 'https://', $home);
|
|
|
|
foreach ($paths as $in => $out) {
|
|
$this->assertEquals( $home.$out, home_url($in), "home_url('{$in}') should equal '{$home}{$out}'");
|
|
}
|
|
}
|
|
}
|
|
|
|
function test_home_url_from_admin() {
|
|
$screen = get_current_screen();
|
|
|
|
// Pretend to be in the site admin
|
|
set_current_screen( 'dashboard' );
|
|
$home = get_option('home');
|
|
|
|
// home_url() should return http when in the admin
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
// If not in the admin, is_ssl() should determine the scheme
|
|
set_current_screen( 'front' );
|
|
$this->assertEquals( $home, home_url() );
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$home = str_replace('http://', 'https://', $home);
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
|
|
// Test with https in home
|
|
update_option( 'home', set_url_scheme( $home, 'https' ) );
|
|
|
|
// Pretend to be in the site admin
|
|
set_current_screen( 'dashboard' );
|
|
$home = get_option('home');
|
|
|
|
// home_url() should return whatever scheme is set in the home option when in the admin
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
// If not in the admin, is_ssl() should determine the scheme unless https hard-coded in home
|
|
set_current_screen( 'front' );
|
|
$this->assertEquals( $home, home_url() );
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertEquals( $home, home_url() );
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertEquals( $home, home_url() );
|
|
|
|
update_option( 'home', set_url_scheme( $home, 'http' ) );
|
|
|
|
$GLOBALS['current_screen'] = $screen;
|
|
}
|
|
|
|
function test_network_home_url_from_admin() {
|
|
$screen = get_current_screen();
|
|
|
|
// Pretend to be in the site admin
|
|
set_current_screen( 'dashboard' );
|
|
$home = network_home_url();
|
|
|
|
// home_url() should return http when in the admin
|
|
$this->assertEquals( 0, strpos( $home, 'http://') );
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertEquals( $home, network_home_url() );
|
|
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertEquals( $home, network_home_url() );
|
|
|
|
// If not in the admin, is_ssl() should determine the scheme
|
|
set_current_screen( 'front' );
|
|
$this->assertEquals( $home, network_home_url() );
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$home = str_replace('http://', 'https://', $home);
|
|
$this->assertEquals( $home, network_home_url() );
|
|
|
|
$GLOBALS['current_screen'] = $screen;
|
|
}
|
|
|
|
function test_set_url_scheme() {
|
|
if ( ! function_exists( 'set_url_scheme' ) )
|
|
return;
|
|
|
|
$links = array(
|
|
'http://wordpress.org/',
|
|
'https://wordpress.org/',
|
|
'http://wordpress.org/news/',
|
|
'http://wordpress.org',
|
|
);
|
|
|
|
$https_links = array(
|
|
'https://wordpress.org/',
|
|
'https://wordpress.org/',
|
|
'https://wordpress.org/news/',
|
|
'https://wordpress.org',
|
|
);
|
|
|
|
$http_links = array(
|
|
'http://wordpress.org/',
|
|
'http://wordpress.org/',
|
|
'http://wordpress.org/news/',
|
|
'http://wordpress.org',
|
|
);
|
|
|
|
$relative_links = array(
|
|
'/',
|
|
'/',
|
|
'/news/',
|
|
''
|
|
);
|
|
|
|
$forced_admin = force_ssl_admin();
|
|
$forced_login = force_ssl_login();
|
|
$i = 0;
|
|
foreach ( $links as $link ) {
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'https' ) );
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link, 'http' ) );
|
|
$this->assertEquals( $relative_links[ $i ], set_url_scheme( $link, 'relative' ) );
|
|
|
|
$_SERVER['HTTPS'] = 'on';
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link ) );
|
|
|
|
$_SERVER['HTTPS'] = 'off';
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link ) );
|
|
|
|
force_ssl_login( false );
|
|
force_ssl_admin( true );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'admin' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'login_post' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'login' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'rpc' ) );
|
|
|
|
force_ssl_admin( false );
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link, 'admin' ) );
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link, 'login_post' ) );
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link, 'login' ) );
|
|
$this->assertEquals( $http_links[ $i ], set_url_scheme( $link, 'rpc' ) );
|
|
|
|
force_ssl_login( true );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'admin' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'login_post' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'login' ) );
|
|
$this->assertEquals( $https_links[ $i ], set_url_scheme( $link, 'rpc' ) );
|
|
|
|
$i++;
|
|
}
|
|
|
|
force_ssl_admin( $forced_admin );
|
|
force_ssl_login( $forced_login );
|
|
}
|
|
|
|
public function test_get_adjacent_post() {
|
|
$now = time();
|
|
$post_id = $this->factory->post->create( array( 'post_date' => date( 'Y-m-d H:i:s', $now - 1 ) ) );
|
|
$post_id2 = $this->factory->post->create( array( 'post_date' => date( 'Y-m-d H:i:s', $now ) ) );
|
|
|
|
if ( ! isset( $GLOBALS['post'] ) )
|
|
$GLOBALS['post'] = null;
|
|
$orig_post = $GLOBALS['post'];
|
|
$GLOBALS['post'] = get_post( $post_id2 );
|
|
|
|
$p = get_adjacent_post();
|
|
$this->assertInstanceOf( 'WP_Post', $p );
|
|
$this->assertEquals( $post_id, $p->ID );
|
|
|
|
// The same again to make sure a cached query returns the same result
|
|
$p = get_adjacent_post();
|
|
$this->assertInstanceOf( 'WP_Post', $p );
|
|
$this->assertEquals( $post_id, $p->ID );
|
|
|
|
// Test next
|
|
$p = get_adjacent_post( false, '', false );
|
|
$this->assertEquals( '', $p );
|
|
|
|
unset( $GLOBALS['post'] );
|
|
$this->assertNull( get_adjacent_post() );
|
|
|
|
$GLOBALS['post'] = $orig_post;
|
|
}
|
|
|
|
/**
|
|
* Test get_adjacent_post returns the next private post when the author is the currently logged in user.
|
|
*
|
|
* @ticket 30287
|
|
*/
|
|
public function test_get_adjacent_post_should_return_private_posts_belonging_to_the_current_user() {
|
|
$u = $this->factory->user->create( array( 'role' => 'author' ) );
|
|
$old_uid = get_current_user_id();
|
|
wp_set_current_user( $u );
|
|
|
|
$now = time();
|
|
$p1 = $this->factory->post->create( array( 'post_author' => $u, 'post_status' => 'private', 'post_date' => date( 'Y-m-d H:i:s', $now - 1 ) ) );
|
|
$p2 = $this->factory->post->create( array( 'post_author' => $u, 'post_date' => date( 'Y-m-d H:i:s', $now ) ) );
|
|
|
|
if ( ! isset( $GLOBALS['post'] ) ) {
|
|
$GLOBALS['post'] = null;
|
|
}
|
|
$orig_post = $GLOBALS['post'];
|
|
|
|
$GLOBALS['post'] = get_post( $p2 );
|
|
|
|
$p = get_adjacent_post();
|
|
$this->assertEquals( $p1, $p->ID );
|
|
|
|
$GLOBALS['post'] = $orig_post;
|
|
wp_set_current_user( $old_uid );
|
|
}
|
|
|
|
/**
|
|
* @ticket 30287
|
|
*/
|
|
public function test_get_adjacent_post_should_return_private_posts_belonging_to_other_users_if_the_current_user_can_read_private_posts() {
|
|
$u1 = $this->factory->user->create( array( 'role' => 'author' ) );
|
|
$u2 = $this->factory->user->create( array( 'role' => 'administrator' ) );
|
|
$old_uid = get_current_user_id();
|
|
wp_set_current_user( $u2 );
|
|
|
|
$now = time();
|
|
$p1 = $this->factory->post->create( array( 'post_author' => $u1, 'post_status' => 'private', 'post_date' => date( 'Y-m-d H:i:s', $now - 1 ) ) );
|
|
$p2 = $this->factory->post->create( array( 'post_author' => $u1, 'post_date' => date( 'Y-m-d H:i:s', $now ) ) );
|
|
|
|
if ( ! isset( $GLOBALS['post'] ) ) {
|
|
$GLOBALS['post'] = null;
|
|
}
|
|
$orig_post = $GLOBALS['post'];
|
|
|
|
$GLOBALS['post'] = get_post( $p2 );
|
|
|
|
$p = get_adjacent_post();
|
|
$this->assertEquals( $p1, $p->ID );
|
|
|
|
$GLOBALS['post'] = $orig_post;
|
|
wp_set_current_user( $old_uid );
|
|
}
|
|
|
|
/**
|
|
* @ticket 30287
|
|
*/
|
|
public function test_get_adjacent_post_should_not_return_private_posts_belonging_to_other_users_if_the_current_user_cannot_read_private_posts() {
|
|
$u1 = $this->factory->user->create( array( 'role' => 'author' ) );
|
|
$u2 = $this->factory->user->create( array( 'role' => 'author' ) );
|
|
$old_uid = get_current_user_id();
|
|
wp_set_current_user( $u2 );
|
|
|
|
$now = time();
|
|
$p1 = $this->factory->post->create( array( 'post_author' => $u1, 'post_date' => date( 'Y-m-d H:i:s', $now - 2 ) ) );
|
|
$p2 = $this->factory->post->create( array( 'post_author' => $u1, 'post_status' => 'private', 'post_date' => date( 'Y-m-d H:i:s', $now - 1 ) ) );
|
|
$p3 = $this->factory->post->create( array( 'post_author' => $u1, 'post_date' => date( 'Y-m-d H:i:s', $now ) ) );
|
|
|
|
if ( ! isset( $GLOBALS['post'] ) ) {
|
|
$GLOBALS['post'] = null;
|
|
}
|
|
$orig_post = $GLOBALS['post'];
|
|
|
|
$GLOBALS['post'] = get_post( $p3 );
|
|
|
|
$p = get_adjacent_post();
|
|
$this->assertEquals( $p1, $p->ID );
|
|
|
|
$GLOBALS['post'] = $orig_post;
|
|
wp_set_current_user( $old_uid );
|
|
}
|
|
|
|
/**
|
|
* Test that *_url functions handle paths with ".."
|
|
*
|
|
* @ticket 19032
|
|
*/
|
|
public function test_url_functions_for_dots_in_paths() {
|
|
$functions = array(
|
|
'site_url',
|
|
'home_url',
|
|
'admin_url',
|
|
'network_admin_url',
|
|
'user_admin_url',
|
|
'includes_url',
|
|
'network_site_url',
|
|
'network_home_url',
|
|
'content_url',
|
|
'plugins_url',
|
|
);
|
|
|
|
foreach ( $functions as $function ) {
|
|
$this->assertEquals( call_user_func( $function, '/' ) . '../',
|
|
call_user_func( $function, '../' ) );
|
|
$this->assertEquals( call_user_func( $function, '/' ) . 'something...here',
|
|
call_user_func( $function, 'something...here' ) );
|
|
}
|
|
|
|
// These functions accept a blog ID argument.
|
|
foreach ( array( 'get_site_url', 'get_home_url', 'get_admin_url' ) as $function ) {
|
|
$this->assertEquals( call_user_func( $function, null, '/' ) . '../',
|
|
call_user_func( $function, null, '../' ) );
|
|
$this->assertEquals( call_user_func( $function, null, '/' ) . 'something...here',
|
|
call_user_func( $function, null, 'something...here' ) );
|
|
}
|
|
}
|
|
}
|