Changeset 14070 for trunk/tests/phpunit/testcases/core/caps.php

Timestamp:

11/03/2024 06:19:06 PM (9 months ago)

Author:

espellcaste

Message:

A user is no longer de-authenticated when making REST API requests.

We are introducing a new BP_LoggedIn_User class to fetch data about a BuddyPress logged-in user. This new addition fixes an issue where a user could be de-authenticated when making REST API requests.

Props dcavins, DJPaul, johnjamesjacoby, and imath.

Closes ​https://github.com/buddypress/buddypress/pull/395
See #9229 and #9145
Fixes #7658

File:

• trunk/tests/phpunit/testcases/core/caps.php (modified) (9 diffs)

trunk/tests/phpunit/testcases/core/caps.php

@@ -20 +20 @@
 
     public function tear_down() {
-        self::set_current_user( $this->reset_user_id );
+        wp_set_current_user( $this->reset_user_id );
         parent::tear_down();
     }
@@ -32 +32 @@
         $u = self::factory()->user->create();
 
-        self::set_current_user( $u );
+        wp_set_current_user( $u );
 
         add_filter( 'user_has_cap', array( $this, 'grant_cap_foo' ), 10, 2 );
@@ -54 +54 @@
         $u = self::factory()->user->create();
 
-        self::set_current_user( $u );
+        wp_set_current_user( $u );
 
         add_filter( 'user_has_cap', array( $this, 'grant_cap_foo' ), 10, 2 );
@@ -88 +88 @@
         );
 
-        self::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $this->assertTrue( bp_current_user_can( 'bp_moderate' ), 'Administrator can `bp_moderate` on default WordPress config' );
@@ -108 +108 @@
         );
 
-        self::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $this->assertTrue( bp_current_user_can( 'bp_moderate' ), 'Users having a `manage_options` cap into their role can `bp_moderate`' );
@@ -130 +130 @@
         );
 
-        self::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
 
         $email = self::factory()->post->create(
@@ -140 +140 @@
         $this->assertTrue( current_user_can( 'edit_post', $email ), 'Administrator should be able to edit emails they created' );
 
-        self::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
 
         $this->assertTrue( current_user_can( 'edit_post', $email ), 'Administrator should be able to edit emails others created when BuddyPress is not network activated' );
@@ -171 +171 @@
         switch_to_blog( $this->blog_id );
 
-        self::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
         $this->assertTrue( bp_current_user_can( 'bp_moderate' ), 'Only Super Admins can `bp_moderate` when BuddyPress is network activated' );
 
-        self::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
 
         $this->assertFalse( bp_current_user_can( 'bp_moderate' ), 'Regular Admins cannot `bp_moderate` when BuddyPress is network activated' );
@@ -219 +219 @@
         restore_current_blog();
 
-        self::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
         $this->assertTrue( current_user_can( 'edit_post', $email ), 'Super Admins should be able to edit emails they created' );
 
-        self::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
         $this->assertFalse( current_user_can( 'edit_post', $email ), 'Administrator should not be able to edit emails others created when BuddyPress is network activated' );