Refactor authorization checks to use instance methods in Database and Mongo classes, improving consistency and readability. Update DocumentTests to remove unnecessary whitespace.

Author: shimonewman

src/Database/Adapter/Mongo.php

@@ -1868,8 +1868,8 @@ public function find(Document $collection, array $queries = [], ?int $limit = 25
         }
 
         // permissions
-        if (Authorization::$status) {
-            $roles = \implode('|', Authorization::getRoles());
+        if ($this->authorization->getStatus()) {
+            $roles = \implode('|', $this->authorization->getRoles());
             $filters['_permissions']['$in'] = [new Regex("{$forPermission}\\(\".*(?:{$roles}).*\"\\)", 'i')];
         }
 
@@ -2115,8 +2115,8 @@ public function count(Document $collection, array $queries = [], ?int $max = nul
         }
 
         // Add permissions filter if authorization is enabled
-        if (Authorization::$status) {
-            $roles = \implode('|', Authorization::getRoles());
+        if ($this->authorization->getStatus()) {
+            $roles = \implode('|', $this->authorization->getRoles());
             $filters['_permissions']['$in'] = [new Regex("read\\(\".*(?:{$roles}).*\"\\)", 'i')];
         }
 
@@ -2205,8 +2205,8 @@ public function sum(Document $collection, string $attribute, array $queries = []
         }
 
         // permissions
-        if (Authorization::$status) { // skip if authorization is disabled
-            $roles = \implode('|', Authorization::getRoles());
+        if ($this->authorization->getStatus()) { // skip if authorization is disabled
+            $roles = \implode('|', $this->authorization->getRoles());
             $filters['_permissions']['$in'] = [new Regex("read\\(\".*(?:{$roles}).*\"\\)", 'i')];
         }
 

src/Database/Database.php

@@ -7236,10 +7236,7 @@ public function sum(string $collection, string $attribute, array $queries = [],
             }
         }
 
-        $authorization = new Authorization(self::PERMISSION_READ);
-        if ($authorization->isValid($collection->getRead())) {
-            $skipAuth = true;
-        }
+        $skipAuth = $this->authorization->isValid(new Input(self::PERMISSION_READ, $collection->getRead()));
 
         $relationships = \array_filter(
             $collection->getAttribute('attributes', []),
@@ -7257,7 +7254,7 @@ public function sum(string $collection, string $attribute, array $queries = [],
         $queries = $queriesOrNull;
 
         $getSum = fn () => $this->adapter->sum($collection, $attribute, $queries, $max);
-        $sum = $skipAuth ?? false ? Authorization::skip($getSum) : $getSum();
+        $sum = $skipAuth ? $this->authorization->skip($getSum) : $getSum();
 
         $this->trigger(self::EVENT_DOCUMENT_SUM, $sum);
 

tests/e2e/Adapter/Schemaless/MongoDBTest.php

@@ -29,7 +29,7 @@ public static function getAdapterName(): string
      * @return Database
      * @throws Exception
      */
-    public static function getDatabase(): Database
+    public  function getDatabase(): Database
     {
         if (!is_null(self::$database)) {
             return self::$database;
@@ -53,6 +53,7 @@ public static function getDatabase(): Database
         $database = new Database(new Mongo($client), $cache);
         $database->getAdapter()->setSupportForAttributes(false);
         $database
+            ->setAuthorization(self::$authorization)
             ->setDatabase($schema)
             ->setNamespace(static::$namespace = 'myapp_' . uniqid());
 
@@ -73,9 +74,9 @@ public function testCreateExistsDelete(): void
     {
         // Mongo creates databases on the fly, so exists would always pass. So we override this test to remove the exists check.
         $this->assertNotNull(static::getDatabase()->create());
-        $this->assertEquals(true, static::getDatabase()->delete($this->testDatabase));
-        $this->assertEquals(true, static::getDatabase()->create());
-        $this->assertEquals(static::getDatabase(), static::getDatabase()->setDatabase($this->testDatabase));
+        $this->assertEquals(true, $this->getDatabase()->delete($this->testDatabase));
+        $this->assertEquals(true, $this->getDatabase()->create());
+        $this->assertEquals($this->getDatabase(), $this->getDatabase()->setDatabase($this->testDatabase));
     }
 
     public function testRenameAttribute(): void
@@ -98,12 +99,12 @@ public function testKeywords(): void
         $this->assertTrue(true);
     }
 
-    protected static function deleteColumn(string $collection, string $column): bool
+    protected  function deleteColumn(string $collection, string $column): bool
     {
         return true;
     }
 
-    protected static function deleteIndex(string $collection, string $index): bool
+    protected  function deleteIndex(string $collection, string $index): bool
     {
         return true;
     }

tests/e2e/Adapter/Scopes/DocumentTests.php

@@ -3943,7 +3943,7 @@ public function testSum(): void
         $this->assertEquals(2019, $sum);
 
         $this->getDatabase()->getAuthorization()->removeRole('user:x');
-    
+
         $sum = $database->sum('movies', 'year', [Query::equal('year', [2019]),]);
         $this->assertEquals(2019 + 2019, $sum);
         $sum = $database->sum('movies', 'year');

tests/e2e/Adapter/Scopes/SchemalessTests.php

@@ -20,7 +20,7 @@ trait SchemalessTests
     public function testSchemalessDocumentOperation(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -117,7 +117,7 @@ public function testSchemalessDocumentOperation(): void
     public function testSchemalessDocumentInvalidInteralAttributeValidation(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         // test to ensure internal attributes are checked during creating schemaless document
         if ($database->getAdapter()->getSupportForAttributes()) {
@@ -156,7 +156,7 @@ public function testSchemalessDocumentInvalidInteralAttributeValidation(): void
     public function testSchemalessSelectionOnUnknownAttributes(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -203,7 +203,7 @@ public function testSchemalessSelectionOnUnknownAttributes(): void
     public function testSchemalessIncrement(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -257,7 +257,7 @@ public function testSchemalessIncrement(): void
     public function testSchemalessDecrement(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -311,7 +311,7 @@ public function testSchemalessDecrement(): void
     public function testSchemalessUpdateDocumentWithQuery(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -369,7 +369,7 @@ public function testSchemalessUpdateDocumentWithQuery(): void
     public function testSchemalessDeleteDocumentWithQuery(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -412,7 +412,7 @@ public function testSchemalessDeleteDocumentWithQuery(): void
     public function testSchemalessUpdateDocumentsWithQuery(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -507,7 +507,7 @@ public function testSchemalessUpdateDocumentsWithQuery(): void
     public function testSchemalessDeleteDocumentsWithQuery(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -589,7 +589,7 @@ public function testSchemalessDeleteDocumentsWithQuery(): void
     public function testSchemalessOperationsWithCallback(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -677,7 +677,7 @@ public function testSchemalessOperationsWithCallback(): void
     public function testSchemalessIndexCreateListDelete(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -723,7 +723,7 @@ public function testSchemalessIndexCreateListDelete(): void
     public function testSchemalessIndexDuplicatePrevention(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -754,7 +754,7 @@ public function testSchemalessIndexDuplicatePrevention(): void
     public function testSchemalessPermissions(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -776,18 +776,18 @@ public function testSchemalessPermissions(): void
         $this->assertFalse($doc->isEmpty());
 
         // Without roles, cannot read
-        Authorization::cleanRoles();
+        $database->getAuthorization()->cleanRoles();
         $empty = $database->getDocument($col, 'd1');
         $this->assertTrue($empty->isEmpty());
 
         // With any role, can read
-        Authorization::setRole(Role::any()->toString());
+        $database->getAuthorization()->addRole(Role::any()->toString());
         $fetched = $database->getDocument($col, 'd1');
         $this->assertEquals('value', $fetched->getAttribute('field'));
 
         // Attempt update without update permission
-        Authorization::cleanRoles();
-        Authorization::setRole(Role::any()->toString());
+        $database->getAuthorization()->cleanRoles();
+        $database->getAuthorization()->addRole(Role::any()->toString());
         try {
             $database->updateDocument($col, 'd1', new Document(['field' => 'updated']));
             $this->fail('Failed to throw exception');
@@ -796,7 +796,7 @@ public function testSchemalessPermissions(): void
         }
 
         // Grant update permission and update
-        Authorization::skip(function () use ($database, $col) {
+        $database->getAuthorization()->skip(function () use ($database, $col) {
             $database->updateDocument($col, 'd1', new Document([
                 '$permissions' => [
                     Permission::read(Role::any()),
@@ -809,7 +809,7 @@ public function testSchemalessPermissions(): void
         $this->assertEquals('updated', $updated->getAttribute('field'));
 
         // Creating without any roles should fail
-        Authorization::cleanRoles();
+        $database->getAuthorization()->cleanRoles();
         try {
             $database->createDocument($col, new Document([
                 'field' => 'x'
@@ -820,13 +820,13 @@ public function testSchemalessPermissions(): void
         }
 
         $database->deleteCollection($col);
-        Authorization::cleanRoles();
+        $database->getAuthorization()->cleanRoles();
     }
 
     public function testSchemalessInternalAttributes(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();
@@ -836,7 +836,7 @@ public function testSchemalessInternalAttributes(): void
         $col = uniqid('sl_internal_full');
         $database->createCollection($col);
 
-        Authorization::setRole(Role::any()->toString());
+        $database->getAuthorization()->addRole(Role::any()->toString());
 
         $doc = $database->createDocument($col, new Document([
             '$id' => 'i1',
@@ -930,13 +930,13 @@ public function testSchemalessInternalAttributes(): void
         $database->setPreserveDates(false);
 
         $database->deleteCollection($col);
-        Authorization::cleanRoles();
+        $database->getAuthorization()->cleanRoles();
     }
 
     public function testSchemalessDates(): void
     {
         /** @var Database $database */
-        $database = static::getDatabase();
+        $database = $this->getDatabase();
 
         if ($database->getAdapter()->getSupportForAttributes()) {
             $this->expectNotToPerformAssertions();