Search moodle.org's
Developer Documentation

See Release Notes
Long Term Support Release

  • Bug fixes for general core bugs in 4.1.x will end 13 November 2023 (12 months).
  • Bug fixes for security issues in 4.1.x will end 10 November 2025 (36 months).
  • PHP version: minimum PHP 7.4.0 Note: minimum PHP version has increased since Moodle 4.0. PHP 8.0.x is supported too.
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

defined('MOODLE_INTERNAL') || die();

// Include all the needed stuff.
global $CFG;
require_once($CFG->dirroot . '/backup/util/includes/backup_includes.php');
require_once($CFG->dirroot . '/backup/util/includes/restore_includes.php');


/**
 * Unit tests for how backup and restore handles role-related things.
 *
 * @package   core_backup
 * @copyright 2021 The Open University
 * @license   http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
 */
class roles_backup_restore_test extends advanced_testcase {

    /**
     * Create a course where the (non-editing) Teacher role is overridden
     * to have 'moodle/user:loginas' and 'moodle/site:accessallgroups'.
     *
     * @return stdClass the new course.
     */
    protected function create_course_with_role_overrides(): stdClass {
        $generator = $this->getDataGenerator();
        $course = $generator->create_course();
        $teacher = $generator->create_user();

        $context = context_course::instance($course->id);
        $generator->enrol_user($teacher->id, $course->id, 'teacher');

        $editingteacherrole = $this->get_role('teacher');
        role_change_permission($editingteacherrole->id, $context, 'moodle/user:loginas', CAP_ALLOW);
        role_change_permission($editingteacherrole->id, $context, 'moodle/site:accessallgroups', CAP_ALLOW);

        return $course;
    }

    /**
     * Get the role id from a shortname.
     *
     * @param string $shortname the role shortname.
     * @return stdClass the role from the DB.
     */
    protected function get_role(string $shortname): stdClass {
        global $DB;
        return $DB->get_record('role', ['shortname' => $shortname]);
    }

    /**
     * Get an array capability => CAP_... constant for all the orverrides set for a given role on a given context.
     *
     * @param string $shortname role shortname.
     * @param context $context context.
     * @return array the overrides set here.
     */
    protected function get_overrides_for_role_on_context(string $shortname, context $context): array {
        $overridedata = get_capabilities_from_role_on_context($this->get_role($shortname), $context);
        $overrides = [];
        foreach ($overridedata as $override) {
            $overrides[$override->capability] = $override->permission;
        }
        return $overrides;
    }

    /**
     * Makes a backup of the course.
     *
     * @param stdClass $course The course object.
     * @return string Unique identifier for this backup.
     */
    protected function backup_course(\stdClass $course): string {
        global $CFG, $USER;

        // Turn off file logging, otherwise it can't delete the file (Windows).
        $CFG->backup_file_logger_level = backup::LOG_NONE;

        // Do backup with default settings. MODE_IMPORT means it will just
        // create the directory and not zip it.
        $bc = new \backup_controller(backup::TYPE_1COURSE, $course->id,
                backup::FORMAT_MOODLE, backup::INTERACTIVE_NO, backup::MODE_IMPORT,
                $USER->id);
        $backupid = $bc->get_backupid();
        $bc->execute_plan();
        $bc->destroy();

        return $backupid;
    }

    /**
     * Restores a backup that has been made earlier.
     *
     * @param string $backupid The unique identifier of the backup.
     * @param string $asroleshortname Which role in the new cousre the restorer should have.
     * @return int The new course id.
     */
    protected function restore_adding_to_course(string $backupid, string $asroleshortname): int {
        global $CFG, $USER;

        // Create course to restore into, and a user to do the restore.
        $generator = $this->getDataGenerator();
        $course = $generator->create_course();
        $restorer = $generator->create_user();

        $generator->enrol_user($restorer->id, $course->id, $asroleshortname);
        $this->setUser($restorer);

        // Turn off file logging, otherwise it can't delete the file (Windows).
        $CFG->backup_file_logger_level = backup::LOG_NONE;

        // Do restore to new course with default settings.
        $rc = new \restore_controller($backupid, $course->id,
                backup::INTERACTIVE_NO, backup::MODE_GENERAL, $USER->id,
                backup::TARGET_CURRENT_ADDING);

        $precheck = $rc->execute_precheck();
        $this->assertTrue($precheck);
        $rc->get_plan()->get_setting('role_assignments')->set_value(true);
> $rc->get_plan()->get_setting('permissions')->set_value(true);
$rc->execute_plan(); $rc->destroy(); return $course->id; } public function test_restore_role_overrides_as_manager(): void { $this->resetAfterTest(); $this->setAdminUser(); // Create a course and back it up. $course = $this->create_course_with_role_overrides(); $backupid = $this->backup_course($course); // When manager restores, both role overrides should be restored. $newcourseid = $this->restore_adding_to_course($backupid, 'manager'); // Verify. $overrides = $this->get_overrides_for_role_on_context('teacher', context_course::instance($newcourseid)); $this->assertArrayHasKey('moodle/user:loginas', $overrides); $this->assertEquals(CAP_ALLOW, $overrides['moodle/user:loginas']); $this->assertArrayHasKey('moodle/site:accessallgroups', $overrides); $this->assertEquals(CAP_ALLOW, $overrides['moodle/site:accessallgroups']); } public function test_restore_role_overrides_as_teacher(): void { $this->resetAfterTest(); $this->setAdminUser(); // Create a course and back it up. $course = $this->create_course_with_role_overrides(); $backupid = $this->backup_course($course); // When teacher restores, only the safe override should be restored. $newcourseid = $this->restore_adding_to_course($backupid, 'editingteacher'); // Verify. $overrides = $this->get_overrides_for_role_on_context('teacher', context_course::instance($newcourseid)); $this->assertArrayNotHasKey('moodle/user:loginas', $overrides); $this->assertArrayHasKey('moodle/site:accessallgroups', $overrides); $this->assertEquals(CAP_ALLOW, $overrides['moodle/site:accessallgroups']); } }