feat: add post publish mode with review

src/test/java/com/openisle/integration/PublishModeIntegrationTest.java

@@ -0,0 +1,86 @@
+package com.openisle.integration;
+
+import com.openisle.model.Role;
+import com.openisle.model.User;
+import com.openisle.repository.UserRepository;
+import com.openisle.service.EmailSender;
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.boot.test.web.client.TestRestTemplate;
+import org.springframework.http.*;
+
+import java.util.List;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+/** Integration tests for review publish mode. */
+@SpringBootTest(webEnvironment = SpringBootTest.WebEnvironment.RANDOM_PORT,
+        properties = "app.post.publish-mode=REVIEW")
+class PublishModeIntegrationTest {
+
+    @Autowired
+    private TestRestTemplate rest;
+
+    @Autowired
+    private UserRepository users;
+
+    @MockBean
+    private EmailSender emailService;
+
+    private String registerAndLogin(String username, String email) {
+        HttpHeaders h = new HttpHeaders();
+        h.setContentType(MediaType.APPLICATION_JSON);
+        rest.postForEntity("/api/auth/register", new HttpEntity<>(
+                Map.of("username", username, "email", email, "password", "pass"), h), Map.class);
+        User u = users.findByUsername(username).orElseThrow();
+        rest.postForEntity("/api/auth/verify", new HttpEntity<>(
+                Map.of("username", username, "code", u.getVerificationCode()), h), Map.class);
+        ResponseEntity<Map> resp = rest.postForEntity("/api/auth/login", new HttpEntity<>(
+                Map.of("username", username, "password", "pass"), h), Map.class);
+        return (String) resp.getBody().get("token");
+    }
+
+    private String registerAndLoginAsAdmin(String username, String email) {
+        String token = registerAndLogin(username, email);
+        User u = users.findByUsername(username).orElseThrow();
+        u.setRole(Role.ADMIN);
+        users.save(u);
+        return token;
+    }
+
+    private ResponseEntity<Map> postJson(String url, Map<?,?> body, String token) {
+        HttpHeaders h = new HttpHeaders();
+        h.setContentType(MediaType.APPLICATION_JSON);
+        if (token != null) h.setBearerAuth(token);
+        return rest.exchange(url, HttpMethod.POST, new HttpEntity<>(body, h), Map.class);
+    }
+
+    @Test
+    void postRequiresApproval() {
+        String userToken = registerAndLogin("eve", "e@example.com");
+        String adminToken = registerAndLoginAsAdmin("admin", "admin@example.com");
+
+        ResponseEntity<Map> catResp = postJson("/api/categories",
+                Map.of("name", "review"), adminToken);
+        Long catId = ((Number)catResp.getBody().get("id")).longValue();
+
+        ResponseEntity<Map> postResp = postJson("/api/posts",
+                Map.of("title", "Need", "content", "Review", "categoryId", catId), userToken);
+        Long postId = ((Number)postResp.getBody().get("id")).longValue();
+
+        List<?> list = rest.getForObject("/api/posts", List.class);
+        assertTrue(list.isEmpty(), "Post should not be listed before approval");
+
+        List<Map<String, Object>> pending = (List<Map<String, Object>>) rest.getForObject("/api/admin/posts/pending", List.class);
+        assertEquals(1, pending.size());
+        assertEquals(postId.intValue(), ((Number)pending.get(0).get("id")).intValue());
+
+        postJson("/api/admin/posts/" + postId + "/approve", Map.of(), adminToken);
+
+        List<?> listAfter = rest.getForObject("/api/posts", List.class);
+        assertEquals(1, listAfter.size(), "Post should appear after approval");
+    }
+}