Home Explore Help
Sign In
RISCI_ATOM
/
mastodon
mirror of https://github.com/tootsuite/mastodon.git
1
0
Fork 0
Files Issues 8 Wiki
Tree: 187359d88f
Branches Tags
mastodon
/
spec
/
requests
/
api
/
v1
/
admin
/
account_actions_spec.rb

account_actions_spec.rb 4.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. RSpec.describe 'Account actions' do
    6. 

  6.   let(:role)    { UserRole.find_by(name: 'Admin') }
    7. 

  7.   let(:user)    { Fabricate(:user, role: role) }
    8. 

  8.   let(:scopes)  { 'admin:write admin:write:accounts' }
    9. 

  9.   let(:token)   { Fabricate(:accessible_access_token, resource_owner_id: user.id, scopes: scopes) }
    10. 

  10.   let(:headers) { { 'Authorization' => "Bearer #{token.token}" } }
    11. 

  11. 

  12.   shared_examples 'a successful notification delivery' do
    13. 

  13.     it 'notifies the user about the action taken', :sidekiq_inline do
    14. 

  14.       emails = capture_emails { subject }
    15. 

  15. 

  16.       expect(emails.size)
    17. 

  17.         .to eq(1)
    18. 

  18. 

  19.       expect(emails.first)
    20. 

  20.         .to have_attributes(
    21. 

  21.           to: contain_exactly(target_account.user.email)
    22. 

  22.         )
    23. 

  23.     end
    24. 

  24.   end
    25. 

  25. 

  26.   shared_examples 'a successful logged action' do |action_type, target_type|
    27. 

  27.     it 'logs action' do
    28. 

  28.       subject
    29. 

  29. 

  30.       expect(latest_admin_action_log)
    31. 

  31.         .to be_present
    32. 

  32.         .and have_attributes(
    33. 

  33.           action: eq(action_type),
    34. 

  34.           account_id: eq(user.account_id),
    35. 

  35.           target_id: eq(target_type == :user ? target_account.user.id : target_account.id)
    36. 

  36.         )
    37. 

  37.     end
    38. 

  38. 

  39.     private
    40. 

  40. 

  41.     def latest_admin_action_log
    42. 

  42.       Admin::ActionLog.last
    43. 

  43.     end
    44. 

  44.   end
    45. 

  45. 

  46.   describe 'POST /api/v1/admin/accounts/:id/action' do
    47. 

  47.     subject do
    48. 

  48.       post "/api/v1/admin/accounts/#{target_account.id}/action", headers: headers, params: params
    49. 

  49.     end
    50. 

  50. 

  51.     let(:target_account) { Fabricate(:account) }
    52. 

  52. 

  53.     context 'with type of disable' do
    54. 

  54.       let(:params) { { type: 'disable' } }
    55. 

  55. 

  56.       it_behaves_like 'forbidden for wrong scope', 'admin:read admin:read:accounts'
    57. 

  57.       it_behaves_like 'forbidden for wrong role', ''
    58. 

  58.       it_behaves_like 'a successful notification delivery'
    59. 

  59.       it_behaves_like 'a successful logged action', :disable, :user
    60. 

  60. 

  61.       it 'disables the target account' do
    62. 

  62.         expect { subject }.to change { target_account.reload.user_disabled? }.from(false).to(true)
    63. 

  63.         expect(response).to have_http_status(200)
    64. 

  64.       end
    65. 

  65.     end
    66. 

  66. 

  67.     context 'with type of sensitive' do
    68. 

  68.       let(:params) { { type: 'sensitive' } }
    69. 

  69. 

  70.       it_behaves_like 'forbidden for wrong scope', 'admin:read admin:read:accounts'
    71. 

  71.       it_behaves_like 'forbidden for wrong role', ''
    72. 

  72.       it_behaves_like 'a successful notification delivery'
    73. 

  73.       it_behaves_like 'a successful logged action', :sensitive, :account
    74. 

  74. 

  75.       it 'marks the target account as sensitive' do
    76. 

  76.         expect { subject }.to change { target_account.reload.sensitized? }.from(false).to(true)
    77. 

  77.         expect(response).to have_http_status(200)
    78. 

  78.       end
    79. 

  79.     end
    80. 

  80. 

  81.     context 'with type of silence' do
    82. 

  82.       let(:params) { { type: 'silence' } }
    83. 

  83. 

  84.       it_behaves_like 'forbidden for wrong scope', 'admin:read admin:read:accounts'
    85. 

  85.       it_behaves_like 'forbidden for wrong role', ''
    86. 

  86.       it_behaves_like 'a successful notification delivery'
    87. 

  87.       it_behaves_like 'a successful logged action', :silence, :account
    88. 

  88. 

  89.       it 'marks the target account as silenced' do
    90. 

  90.         expect { subject }.to change { target_account.reload.silenced? }.from(false).to(true)
    91. 

  91.         expect(response).to have_http_status(200)
    92. 

  92.       end
    93. 

  93.     end
    94. 

  94. 

  95.     context 'with type of suspend' do
    96. 

  96.       let(:params) { { type: 'suspend' } }
    97. 

  97. 

  98.       it_behaves_like 'forbidden for wrong scope', 'admin:read admin:read:accounts'
    99. 

  99.       it_behaves_like 'forbidden for wrong role', ''
    100. 

  100.       it_behaves_like 'a successful notification delivery'
    101. 

  101.       it_behaves_like 'a successful logged action', :suspend, :account
    102. 

  102. 

  103.       it 'marks the target account as suspended' do
    104. 

  104.         expect { subject }.to change { target_account.reload.suspended? }.from(false).to(true)
    105. 

  105.         expect(response).to have_http_status(200)
    106. 

  106.       end
    107. 

  107.     end
    108. 

  108. 

  109.     context 'with type of none' do
    110. 

  110.       let(:params) { { type: 'none' } }
    111. 

  111. 

  112.       it_behaves_like 'a successful notification delivery'
    113. 

  113. 

  114.       it 'returns http success' do
    115. 

  115.         subject
    116. 

  116. 

  117.         expect(response).to have_http_status(200)
    118. 

  118.       end
    119. 

  119.     end
    120. 

  120. 

  121.     context 'with no type' do
    122. 

  122.       let(:params) { {} }
    123. 

  123. 

  124.       it 'returns http unprocessable entity' do
    125. 

  125.         subject
    126. 

  126. 

  127.         expect(response).to have_http_status(422)
    128. 

  128.       end
    129. 

  129.     end
    130. 

  130. 

  131.     context 'with invalid type' do
    132. 

  132.       let(:params) { { type: 'invalid' } }
    133. 

  133. 

  134.       it 'returns http unprocessable entity' do
    135. 

  135.         subject
    136. 

  136. 

  137.         expect(response).to have_http_status(422)
    138. 

  138.       end
    139. 

  139.     end
    140. 

  140.   end
    141. 

  141. end
    142.