loginAsUser16($client); $client->request('GET', self::DELETE_PHOTO_ROUTE_404); self::assertResponseStatusCodeSame(Response::HTTP_NOT_FOUND); } /** * Access denied to other users. */ public function testAccessDeniedException(): void { $client = self::createClient(); $this->loginAsUser16($client); $client->request('GET', self::DELETE_PHOTO_ROUTE); self::assertResponseStatusCodeSame(Response::HTTP_NOT_FOUND); } /** * Nominal case (owner). */ public function testOwnerSuccess(): void { $client = self::createClient(); $this->loginAsAdmin($client); $client->request('GET', self::EDIT_ROUTE); self::assertResponseIsSuccessful(); // @todo: use POST+csrf token $client->request('GET', self::DELETE_PHOTO_ROUTE); self::assertResponseRedirects(); $client->followRedirect(); self::assertResponseIsSuccessful(); self::assertSelectorTextContains('body', self::FLASH_SUCCESS); } }