Isolate Users (#431)

* WIP to isolate users * Resolved issue with SSH AsUser Updated Isolated User Script to use Server User for Team Access Updated Path creation script to simplify for running as the isolated user * Included the server user * PHPMyAdmin script updated Wordpress Script Updated Updated Execute Script to support executing as isolated users * Issue Resolution & Resolved Failing Unit Tests * Fix for isolated_username vs user * Run the deploy as the isolated user * queue updates for isolated user * Support isolated users in cronjobs * script tests for isolated users * Queue tests for isolated users * Cronjob tests for isolated user * Removed default queue command for laravel apps * add default user to factory * laravel pint fixes * ensure echos are consistent * removed unneeded parameter * update * fix queues for isolated users * revert addslashes --------- Co-authored-by: Saeed Vaziry <mr.saeedvaziry@gmail.com>
2025-07-01 05:56:16 +00:00 · 2025-01-18 00:17:48 +00:00
parent 5947ae80bb
commit c1ae58772c
50 changed files with 717 additions and 69 deletions
--- a/tests/Feature/CronjobTest.php
+++ b/tests/Feature/CronjobTest.php
@ -5,6 +5,8 @@
 use App\Enums\CronjobStatus;
 use App\Facades\SSH;
 use App\Models\CronJob;
+use App\Models\Server;
+use App\Models\Site;
 use App\Web\Pages\Servers\CronJobs\Index;
 use App\Web\Pages\Servers\CronJobs\Widgets\CronJobsList;
 use Illuminate\Foundation\Testing\RefreshDatabase;
@ -83,6 +85,79 @@ public function test_create_cronjob()
        SSH::assertExecutedContains('sudo -u vito crontab -l');
    }

+    public function test_create_cronjob_for_isolated_user(): void
+    {
+        SSH::fake();
+        $this->actingAs($this->user);
+
+        $this->site->user = 'example';
+        $this->site->save();
+
+        Livewire::test(Index::class, [
+            'server' => $this->server,
+        ])
+            ->callAction('create', [
+                'command' => 'ls -la',
+                'user' => 'example',
+                'frequency' => '* * * * *',
+            ])
+            ->assertSuccessful();
+
+        $this->assertDatabaseHas('cron_jobs', [
+            'server_id' => $this->server->id,
+            'user' => 'example',
+        ]);
+
+        SSH::assertExecutedContains("echo '* * * * * ls -la' | sudo -u example crontab -");
+        SSH::assertExecutedContains('sudo -u example crontab -l');
+    }
+
+    public function test_cannot_create_cronjob_for_non_existing_user(): void
+    {
+        SSH::fake();
+        $this->actingAs($this->user);
+
+        Livewire::test(Index::class, [
+            'server' => $this->server,
+        ])
+            ->callAction('create', [
+                'command' => 'ls -la',
+                'user' => 'example',
+                'frequency' => '* * * * *',
+            ])
+            ->assertHasActionErrors();
+
+        $this->assertDatabaseMissing('cron_jobs', [
+            'server_id' => $this->server->id,
+            'user' => 'example',
+        ]);
+    }
+
+    public function test_cannot_create_cronjob_for_user_on_another_server(): void
+    {
+        SSH::fake();
+        $this->actingAs($this->user);
+
+        Site::factory()->create([
+            'server_id' => Server::factory()->create(['user_id' => 1])->id,
+            'user' => 'example',
+        ]);
+
+        Livewire::test(Index::class, [
+            'server' => $this->server,
+        ])
+            ->callAction('create', [
+                'command' => 'ls -la',
+                'user' => 'example',
+                'frequency' => '* * * * *',
+            ])
+            ->assertHasActionErrors();
+
+        $this->assertDatabaseMissing('cron_jobs', [
+            'user' => 'example',
+        ]);
+    }
+
    public function test_create_custom_cronjob()
    {
        SSH::fake();