Fix ESLint globals, parseFloat to Number.parseFloat, label for, add AccountController coverage tests

- Add setTimeout, globalThis, navigator, fetch, caches etc to ESLint globals - Use Number.parseFloat in event-map.js - Add for attribute to admin events search label - Add tests: events search, toggle/delete access denied for other user Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-20 21:25:53 +01:00
parent 056b104536
commit 1f5a9105fa
4 changed files with 93 additions and 4 deletions
--- a/tests/Controller/AccountControllerTest.php
+++ b/tests/Controller/AccountControllerTest.php
@@ -690,6 +690,86 @@ class AccountControllerTest extends WebTestCase
        self::assertResponseRedirects('/mon-compte/evenement/'.$event->getId().'/modifier');
    }

+    public function testEventsSearchReturnsSuccess(): void
+    {
+        $client = static::createClient();
+        $user = $this->createUser(['ROLE_ORGANIZER'], true);
+
+        $client->loginUser($user);
+        $client->request('GET', '/mon-compte?tab=events&q=brocante');
+
+        self::assertResponseIsSuccessful();
+    }
+
+    public function testToggleOnlineDeniedForOtherUser(): void
+    {
+        $client = static::createClient();
+        $em = static::getContainer()->get(EntityManagerInterface::class);
+        $owner = $this->createUser(['ROLE_ORGANIZER'], true);
+        $other = $this->createUser(['ROLE_ORGANIZER'], true);
+
+        $event = new \App\Entity\Event();
+        $event->setAccount($owner);
+        $event->setTitle('Toggle Denied');
+        $event->setStartAt(new \DateTimeImmutable('2026-08-01 10:00'));
+        $event->setEndAt(new \DateTimeImmutable('2026-08-01 18:00'));
+        $event->setAddress('1 rue');
+        $event->setZipcode('75001');
+        $event->setCity('Paris');
+        $em->persist($event);
+        $em->flush();
+
+        $client->loginUser($other);
+        $client->request('POST', '/mon-compte/evenement/'.$event->getId().'/en-ligne');
+        self::assertResponseStatusCodeSame(403);
+    }
+
+    public function testToggleSecretDeniedForOtherUser(): void
+    {
+        $client = static::createClient();
+        $em = static::getContainer()->get(EntityManagerInterface::class);
+        $owner = $this->createUser(['ROLE_ORGANIZER'], true);
+        $other = $this->createUser(['ROLE_ORGANIZER'], true);
+
+        $event = new \App\Entity\Event();
+        $event->setAccount($owner);
+        $event->setTitle('Secret Denied');
+        $event->setStartAt(new \DateTimeImmutable('2026-08-01 10:00'));
+        $event->setEndAt(new \DateTimeImmutable('2026-08-01 18:00'));
+        $event->setAddress('1 rue');
+        $event->setZipcode('75001');
+        $event->setCity('Paris');
+        $em->persist($event);
+        $em->flush();
+
+        $client->loginUser($other);
+        $client->request('POST', '/mon-compte/evenement/'.$event->getId().'/secret');
+        self::assertResponseStatusCodeSame(403);
+    }
+
+    public function testDeleteEventDeniedForOtherUser(): void
+    {
+        $client = static::createClient();
+        $em = static::getContainer()->get(EntityManagerInterface::class);
+        $owner = $this->createUser(['ROLE_ORGANIZER'], true);
+        $other = $this->createUser(['ROLE_ORGANIZER'], true);
+
+        $event = new \App\Entity\Event();
+        $event->setAccount($owner);
+        $event->setTitle('Delete Denied');
+        $event->setStartAt(new \DateTimeImmutable('2026-08-01 10:00'));
+        $event->setEndAt(new \DateTimeImmutable('2026-08-01 18:00'));
+        $event->setAddress('1 rue');
+        $event->setZipcode('75001');
+        $event->setCity('Paris');
+        $em->persist($event);
+        $em->flush();
+
+        $client->loginUser($other);
+        $client->request('POST', '/mon-compte/evenement/'.$event->getId().'/supprimer');
+        self::assertResponseStatusCodeSame(403);
+    }
+
    /**
     * @param list<string> $roles
     */