Changeset 14070 for trunk/tests/phpunit/testcases/members/test-controller.php

Timestamp:

11/03/2024 06:19:06 PM (13 months ago)

Author:

espellcaste

Message:

A user is no longer de-authenticated when making REST API requests.

We are introducing a new BP_LoggedIn_User class to fetch data about a BuddyPress logged-in user. This new addition fixes an issue where a user could be de-authenticated when making REST API requests.

Props dcavins, DJPaul, johnjamesjacoby, and imath.

Closes ​https://github.com/buddypress/buddypress/pull/395
See #9229 and #9145
Fixes #7658

File:

• trunk/tests/phpunit/testcases/members/test-controller.php (modified) (20 diffs)

trunk/tests/phpunit/testcases/members/test-controller.php

@@ -79 +79 @@
         // Set current user.
         $current_user = get_current_user_id();
-        $this->bp::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
 
         // u2 is the only one to have a latest_update.
@@ -95 +95 @@
         bp_update_user_last_activity( $u1, $date_last_activity );
 
-        $this->bp::set_current_user( $current_user );
+        wp_set_current_user( $current_user );
 
         // u1 and u3 are friends.
@@ -422 +422 @@
         // Set current user.
         $current_user = get_current_user_id();
-        $this->bp::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
 
         $a1 = bp_activity_post_update(
@@ -454 +454 @@
         $this->assertEquals( 1, $member['total_friend_count'] );
 
-        $this->bp::set_current_user( $current_user );
+        wp_set_current_user( $current_user );
     }
 
@@ -463 +463 @@
         // Set current user.
         $current_user = get_current_user_id();
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'GET', $this->endpoint_url . '/me' );
@@ -480 +480 @@
         $this->assertEquals( 'right now', $me['last_activity']['timediff'] );
 
-        $this->bp::set_current_user( $current_user );
+        wp_set_current_user( $current_user );
     }
 
@@ -571 +571 @@
         $this->assertTrue( bp_is_user_spammer( $u ) );
 
-        $this->bp::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
 
         $request = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', $u ) );
@@ -591 +591 @@
         $this->assertTrue( bp_is_user_spammer( $u ) );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', $u ) );
@@ -611 +611 @@
         $this->assertTrue( bp_is_user_spammer( $u ) );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', $u ) );
@@ -657 +657 @@
     public function test_create_item_without_permission() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $params = array(
@@ -725 +725 @@
      */
     public function test_update_item_invalid_id() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', REST_TESTS_IMPOSSIBLY_HIGH_NUMBER ) );
@@ -750 +750 @@
         $u2 = static::factory()->user->create();
 
-        $this->bp::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $u2 ) );
@@ -778 +778 @@
         );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
         bp_register_member_type( 'membertypeone' );
 
@@ -807 +807 @@
         );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
         bp_register_member_type( 'membertypeone' );
 
@@ -827 +827 @@
      */
     public function test_update_item_member_type_as_admin_user() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
         bp_register_member_type( 'membertypeone' );
         bp_register_member_type( 'membertypetwo' );
@@ -875 +875 @@
      */
     public function test_delete_item_invalid_id() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', REST_TESTS_IMPOSSIBLY_HIGH_NUMBER ) );
@@ -906 +906 @@
         $u2 = static::factory()->user->create();
 
-        $this->bp::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
 
         $request = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $u2 ) );
@@ -922 +922 @@
         $u            = static::factory()->user->create( array( 'display_name' => 'Deleted User' ) );
         $current_user = get_current_user_id();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'DELETE', $this->endpoint_url . '/me' );
@@ -937 +937 @@
         $this->assertEquals( 'Deleted User', $data['previous']['name'] );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
     }
 
     public function test_prepare_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request();
@@ -1002 +1002 @@
 
     protected function allow_user_to_manage_multisite() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         if ( is_multisite() ) {