misc_pterodactyl-panel/tests/Integration/Api/Client/Server/Backup/DeleteBackupTest.php

<?php

namespace Pterodactyl\Tests\Integration\Api\Client\Server\Backup;

use Mockery;
use Illuminate\Http\Response;
use Pterodactyl\Models\Backup;
use Pterodactyl\Models\AuditLog;
use Pterodactyl\Models\Permission;
use Pterodactyl\Repositories\Wings\DaemonBackupRepository;
use Pterodactyl\Tests\Integration\Api\Client\ClientApiIntegrationTestCase;

class DeleteBackupTest extends ClientApiIntegrationTestCase
{
    private $repository;

    public function setUp(): void
    {
        parent::setUp();

        $this->repository = $this->mock(DaemonBackupRepository::class);
    }

    public function testUserWithoutPermissionCannotDeleteBackup()
    {
        [$user, $server] = $this->generateTestAccount([Permission::ACTION_BACKUP_CREATE]);

        $backup = Backup::factory()->create(['server_id' => $server->id]);

        $this->actingAs($user)->deleteJson($this->link($backup))
            ->assertStatus(Response::HTTP_FORBIDDEN);
    }

    /**
     * Tests that a backup can be deleted for a server and that it is properly updated
     * in the database. Once deleted there should also be a corresponding record in the
     * audit logs table for this API call.
     */
    public function testBackupCanBeDeleted()
    {
        [$user, $server] = $this->generateTestAccount([Permission::ACTION_BACKUP_DELETE]);

        /** @var \Pterodactyl\Models\Backup $backup */
        $backup = Backup::factory()->create(['server_id' => $server->id]);

        $this->repository->expects('setServer->delete')->with(Mockery::on(function ($value) use ($backup) {
            return $value instanceof Backup && $value->uuid === $backup->uuid;
        }))->andReturn(new Response());

        $this->actingAs($user)->deleteJson($this->link($backup))->assertStatus(Response::HTTP_NO_CONTENT);

        $backup->refresh();

        $this->assertNotNull($backup->deleted_at);

        $this->actingAs($user)->deleteJson($this->link($backup))->assertStatus(Response::HTTP_NOT_FOUND);

        $event = $backup->audits()->where('action', AuditLog::SERVER__BACKUP_DELETED)->latest()->first();

        $this->assertNotNull($event);
        $this->assertFalse($event->is_system);
        $this->assertEquals($backup->server_id, $event->server_id);
        $this->assertEquals($user->id, $event->user_id);
    }
}
Test that a deleted backup makes an audit log entry 2021-07-11 19:15:39 +00:00			`<?php`

			`namespace Pterodactyl\Tests\Integration\Api\Client\Server\Backup;`

			`use Mockery;`
			`use Illuminate\Http\Response;`
			`use Pterodactyl\Models\Backup;`
			`use Pterodactyl\Models\AuditLog;`
			`use Pterodactyl\Models\Permission;`
			`use Pterodactyl\Repositories\Wings\DaemonBackupRepository;`
			`use Pterodactyl\Tests\Integration\Api\Client\ClientApiIntegrationTestCase;`

			`class DeleteBackupTest extends ClientApiIntegrationTestCase`
			`{`
			`private $repository;`

			`public function setUp(): void`
			`{`
			`parent::setUp();`

			`$this->repository = $this->mock(DaemonBackupRepository::class);`
			`}`

			`public function testUserWithoutPermissionCannotDeleteBackup()`
			`{`
			`[$user, $server] = $this->generateTestAccount([Permission::ACTION_BACKUP_CREATE]);`

			`$backup = Backup::factory()->create(['server_id' => $server->id]);`

			`$this->actingAs($user)->deleteJson($this->link($backup))`
			`->assertStatus(Response::HTTP_FORBIDDEN);`
			`}`

			`/**`
			`* Tests that a backup can be deleted for a server and that it is properly updated`
			`* in the database. Once deleted there should also be a corresponding record in the`
			`* audit logs table for this API call.`
			`*/`
			`public function testBackupCanBeDeleted()`
			`{`
			`[$user, $server] = $this->generateTestAccount([Permission::ACTION_BACKUP_DELETE]);`

			`/** @var \Pterodactyl\Models\Backup $backup */`
			`$backup = Backup::factory()->create(['server_id' => $server->id]);`

			`$this->repository->expects('setServer->delete')->with(Mockery::on(function ($value) use ($backup) {`
			`return $value instanceof Backup && $value->uuid === $backup->uuid;`
			`}))->andReturn(new Response());`

			`$this->actingAs($user)->deleteJson($this->link($backup))->assertStatus(Response::HTTP_NO_CONTENT);`

			`$backup->refresh();`

			`$this->assertNotNull($backup->deleted_at);`

			`$this->actingAs($user)->deleteJson($this->link($backup))->assertStatus(Response::HTTP_NOT_FOUND);`

			`$event = $backup->audits()->where('action', AuditLog::SERVER__BACKUP_DELETED)->latest()->first();`

			`$this->assertNotNull($event);`
			`$this->assertFalse($event->is_system);`
			`$this->assertEquals($backup->server_id, $event->server_id);`
			`$this->assertEquals($user->id, $event->user_id);`
			`}`
			`}`