Mercurial > hg > isophonics-drupal-site

annotate core/modules/media/tests/src/FunctionalJavascript/MediaSourceOEmbedVideoTest.php @ 19:fa3358dc1485 tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add ndrum files
author Chris Cannam
date Wed, 28 Aug 2019 13:14:47 +0100
parents af1871eacc83
children
rev   line source
Chris@17 1 <?php
Chris@17 2
Chris@17 3 namespace Drupal\Tests\media\FunctionalJavascript;
Chris@17 4
Chris@17 5 use Drupal\Core\Session\AccountInterface;
Chris@17 6 use Drupal\media\Entity\Media;
Chris@17 7 use Drupal\media_test_oembed\Controller\ResourceController;
Chris@17 8 use Drupal\Tests\media\Traits\OEmbedTestTrait;
Chris@17 9 use Drupal\user\Entity\Role;
Chris@17 10 use Symfony\Component\DependencyInjection\ContainerInterface;
Chris@17 11
Chris@17 12 /**
Chris@17 13 * Tests the oembed:video media source.
Chris@17 14 *
Chris@17 15 * @group media
Chris@17 16 */
Chris@17 17 class MediaSourceOEmbedVideoTest extends MediaSourceTestBase {
Chris@17 18
Chris@17 19 /**
Chris@17 20 * {@inheritdoc}
Chris@17 21 */
Chris@17 22 public static $modules = ['media_test_oembed'];
Chris@17 23
Chris@17 24 use OEmbedTestTrait;
Chris@17 25
Chris@17 26 /**
Chris@17 27 * {@inheritdoc}
Chris@17 28 */
Chris@17 29 protected function setUp() {
Chris@17 30 parent::setUp();
Chris@17 31 $this->lockHttpClientToFixtures();
Chris@17 32 }
Chris@17 33
Chris@17 34 /**
Chris@17 35 * {@inheritdoc}
Chris@17 36 */
Chris@17 37 protected function initConfig(ContainerInterface $container) {
Chris@17 38 parent::initConfig($container);
Chris@17 39
Chris@17 40 // Enable twig debugging to make testing template usage easy.
Chris@17 41 $parameters = $container->getParameter('twig.config');
Chris@17 42 $parameters['debug'] = TRUE;
Chris@17 43 $this->setContainerParameter('twig.config', $parameters);
Chris@17 44 }
Chris@17 45
Chris@17 46 /**
Chris@17 47 * Tests the oembed media source.
Chris@17 48 */
Chris@17 49 public function testMediaOEmbedVideoSource() {
Chris@17 50 $media_type_id = 'test_media_oembed_type';
Chris@17 51 $provided_fields = [
Chris@17 52 'type',
Chris@17 53 'title',
Chris@17 54 'default_name',
Chris@17 55 'author_name',
Chris@17 56 'author_url',
Chris@17 57 'provider_name',
Chris@17 58 'provider_url',
Chris@17 59 'cache_age',
Chris@17 60 'thumbnail_uri',
Chris@17 61 'thumbnail_width',
Chris@17 62 'thumbnail_height',
Chris@17 63 'url',
Chris@17 64 'width',
Chris@17 65 'height',
Chris@17 66 'html',
Chris@17 67 ];
Chris@17 68
Chris@17 69 $session = $this->getSession();
Chris@17 70 $page = $session->getPage();
Chris@17 71 $assert_session = $this->assertSession();
Chris@17 72
Chris@17 73 $this->doTestCreateMediaType($media_type_id, 'oembed:video', $provided_fields);
Chris@17 74
Chris@17 75 // Create custom fields for the media type to store metadata attributes.
Chris@17 76 $fields = [
Chris@17 77 'field_string_width' => 'string',
Chris@17 78 'field_string_height' => 'string',
Chris@17 79 'field_string_author_name' => 'string',
Chris@17 80 ];
Chris@17 81 $this->createMediaTypeFields($fields, $media_type_id);
Chris@17 82
Chris@17 83 // Hide the name field widget to test default name generation.
Chris@17 84 $this->hideMediaTypeFieldWidget('name', $media_type_id);
Chris@17 85
Chris@17 86 $this->drupalGet("admin/structure/media/manage/$media_type_id");
Chris@17 87 // Only accept Vimeo videos.
Chris@17 88 $page->checkField("source_configuration[providers][Vimeo]");
Chris@17 89 $assert_session->selectExists('field_map[width]')->setValue('field_string_width');
Chris@17 90 $assert_session->selectExists('field_map[height]')->setValue('field_string_height');
Chris@17 91 $assert_session->selectExists('field_map[author_name]')->setValue('field_string_author_name');
Chris@17 92 $assert_session->buttonExists('Save')->press();
Chris@17 93
Chris@18 94 // Configure the iframe to be narrower than the actual video, so we can
Chris@18 95 // verify that the video scales correctly.
Chris@18 96 $display = entity_get_display('media', $media_type_id, 'default');
Chris@18 97 $this->assertFalse($display->isNew());
Chris@18 98 $component = $display->getComponent('field_media_oembed_video');
Chris@18 99 $this->assertInternalType('array', $component);
Chris@18 100 $component['settings']['max_width'] = 240;
Chris@18 101 $display->setComponent('field_media_oembed_video', $component);
Chris@18 102 $this->assertSame(SAVED_UPDATED, $display->save());
Chris@18 103
Chris@17 104 $this->hijackProviderEndpoints();
Chris@17 105 $video_url = 'https://vimeo.com/7073899';
Chris@17 106 ResourceController::setResourceUrl($video_url, $this->getFixturesDirectory() . '/video_vimeo.json');
Chris@17 107
Chris@17 108 // Create a media item.
Chris@17 109 $this->drupalGet("media/add/$media_type_id");
Chris@17 110 $assert_session->fieldExists('Remote video URL')->setValue($video_url);
Chris@17 111 $assert_session->buttonExists('Save')->press();
Chris@17 112
Chris@17 113 $assert_session->addressEquals('admin/content/media');
Chris@17 114
Chris@17 115 // Get the media entity view URL from the creation message.
Chris@17 116 $this->drupalGet($this->assertLinkToCreatedMedia());
Chris@17 117
Chris@17 118 /** @var \Drupal\media\MediaInterface $media */
Chris@17 119 $media = Media::load(1);
Chris@17 120
Chris@17 121 // The thumbnail should have been downloaded.
Chris@17 122 $thumbnail = $media->getSource()->getMetadata($media, 'thumbnail_uri');
Chris@17 123 $this->assertFileExists($thumbnail);
Chris@17 124
Chris@18 125 // Ensure the iframe exists and has the expected CSS class, and that its src
Chris@18 126 // attribute contains a coherent URL with the query parameters we expect.
Chris@18 127 $iframe = $assert_session->elementExists('css', 'iframe.media-oembed-content');
Chris@18 128 $iframe_url = parse_url($iframe->getAttribute('src'));
Chris@17 129 $this->assertStringEndsWith('/media/oembed', $iframe_url['path']);
Chris@17 130 $this->assertNotEmpty($iframe_url['query']);
Chris@17 131 $query = [];
Chris@17 132 parse_str($iframe_url['query'], $query);
Chris@17 133 $this->assertSame($video_url, $query['url']);
Chris@17 134 $this->assertNotEmpty($query['hash']);
Chris@18 135 // Ensure that the outer iframe's width respects the formatter settings.
Chris@18 136 $this->assertSame('240', $iframe->getAttribute('width'));
Chris@18 137 // Check the inner iframe to make sure that CSS has been applied to scale it
Chris@18 138 // correctly, regardless of whatever its width attribute may be (the fixture
Chris@18 139 // hard-codes it to 480).
Chris@18 140 $inner_frame = 'frames[0].document.querySelector("iframe")';
Chris@18 141 $this->assertSame('480', $session->evaluateScript("$inner_frame.getAttribute('width')"));
Chris@18 142 $this->assertLessThanOrEqual(240, $session->evaluateScript("$inner_frame.clientWidth"));
Chris@17 143
Chris@17 144 // Make sure the thumbnail is displayed from uploaded image.
Chris@17 145 $assert_session->elementAttributeContains('css', '.image-style-thumbnail', 'src', '/oembed_thumbnails/' . basename($thumbnail));
Chris@17 146
Chris@17 147 // Load the media and check that all fields are properly populated.
Chris@17 148 $media = Media::load(1);
Chris@17 149 $this->assertSame('Drupal Rap Video - Schipulcon09', $media->getName());
Chris@17 150 $this->assertSame('480', $media->field_string_width->value);
Chris@17 151 $this->assertSame('360', $media->field_string_height->value);
Chris@17 152
Chris@17 153 // Try to create a media asset from a disallowed provider.
Chris@17 154 $this->drupalGet("media/add/$media_type_id");
Chris@17 155 $assert_session->fieldExists('Remote video URL')->setValue('http://www.collegehumor.com/video/40003213/grant-and-katie-are-starting-their-own-company');
Chris@17 156 $page->pressButton('Save');
Chris@17 157
Chris@17 158 $assert_session->pageTextContains('The CollegeHumor provider is not allowed.');
Chris@17 159
Chris@17 160 // Test anonymous access to media via iframe.
Chris@17 161 $this->drupalLogout();
Chris@17 162
Chris@17 163 // Without a hash should be denied.
Chris@17 164 $no_hash_query = array_diff_key($query, ['hash' => '']);
Chris@17 165 $this->drupalGet('media/oembed', ['query' => $no_hash_query]);
Chris@17 166 $assert_session->pageTextNotContains('By the power of Greyskull, Vimeo works!');
Chris@17 167 $assert_session->pageTextContains('Access denied');
Chris@17 168
Chris@17 169 // A correct query should be allowed because the anonymous role has the
Chris@17 170 // 'view media' permission.
Chris@17 171 $this->drupalGet('media/oembed', ['query' => $query]);
Chris@17 172 $assert_session->pageTextContains('By the power of Greyskull, Vimeo works!');
Chris@17 173 $this->assertRaw('core/themes/stable/templates/content/media-oembed-iframe.html.twig');
Chris@17 174 $this->assertNoRaw('core/modules/media/templates/media-oembed-iframe.html.twig');
Chris@17 175
Chris@17 176 // Test themes not inheriting from stable.
Chris@17 177 \Drupal::service('theme_handler')->install(['stark']);
Chris@17 178 $this->config('system.theme')->set('default', 'stark')->save();
Chris@17 179 $this->drupalGet('media/oembed', ['query' => $query]);
Chris@17 180 $assert_session->pageTextContains('By the power of Greyskull, Vimeo works!');
Chris@17 181 $this->assertNoRaw('core/themes/stable/templates/content/media-oembed-iframe.html.twig');
Chris@17 182 $this->assertRaw('core/modules/media/templates/media-oembed-iframe.html.twig');
Chris@17 183
Chris@17 184 // Remove the 'view media' permission to test that this restricts access.
Chris@17 185 $role = Role::load(AccountInterface::ANONYMOUS_ROLE);
Chris@17 186 $role->revokePermission('view media');
Chris@17 187 $role->save();
Chris@17 188 $this->drupalGet('media/oembed', ['query' => $query]);
Chris@17 189 $assert_session->pageTextNotContains('By the power of Greyskull, Vimeo works!');
Chris@17 190 $assert_session->pageTextContains('Access denied');
Chris@17 191 }
Chris@17 192
Chris@17 193 /**
Chris@17 194 * Test that a security warning appears if iFrame domain is not set.
Chris@17 195 */
Chris@17 196 public function testOEmbedSecurityWarning() {
Chris@17 197 $media_type_id = 'test_media_oembed_type';
Chris@17 198 $source_id = 'oembed:video';
Chris@17 199
Chris@17 200 $session = $this->getSession();
Chris@17 201 $page = $session->getPage();
Chris@17 202 $assert_session = $this->assertSession();
Chris@17 203
Chris@17 204 $this->drupalGet('admin/structure/media/add');
Chris@17 205 $page->fillField('label', $media_type_id);
Chris@17 206 $this->getSession()
Chris@17 207 ->wait(5000, "jQuery('.machine-name-value').text() === '{$media_type_id}'");
Chris@17 208
Chris@17 209 // Make sure the source is available.
Chris@17 210 $assert_session->fieldExists('Media source');
Chris@17 211 $assert_session->optionExists('Media source', $source_id);
Chris@17 212 $page->selectFieldOption('Media source', $source_id);
Chris@17 213 $result = $assert_session->waitForElementVisible('css', 'fieldset[data-drupal-selector="edit-source-configuration"]');
Chris@17 214 $this->assertNotEmpty($result);
Chris@17 215
Chris@17 216 $assert_session->pageTextContains('It is potentially insecure to display oEmbed content in a frame');
Chris@17 217
Chris@17 218 $this->config('media.settings')->set('iframe_domain', 'http://example.com')->save();
Chris@17 219
Chris@17 220 $this->drupalGet('admin/structure/media/add');
Chris@17 221 $page->fillField('label', $media_type_id);
Chris@17 222 $this->getSession()
Chris@17 223 ->wait(5000, "jQuery('.machine-name-value').text() === '{$media_type_id}'");
Chris@17 224
Chris@17 225 // Make sure the source is available.
Chris@17 226 $assert_session->fieldExists('Media source');
Chris@17 227 $assert_session->optionExists('Media source', $source_id);
Chris@17 228 $page->selectFieldOption('Media source', $source_id);
Chris@17 229 $result = $assert_session->waitForElementVisible('css', 'fieldset[data-drupal-selector="edit-source-configuration"]');
Chris@17 230 $this->assertNotEmpty($result);
Chris@17 231
Chris@17 232 $assert_session->pageTextNotContains('It is potentially insecure to display oEmbed content in a frame');
Chris@17 233 }
Chris@17 234
Chris@17 235 }