Home Esplora Aiuto
Accedi
RISCI_ATOM
/
mastodon
mirror da https://github.com/tootsuite/mastodon.git
1
0
Forka 0
File Problemi 8 Wiki
Albero (Tree): 74cd277e07
Rami (Branch) Tag
mastodon
/
spec
/
controllers
/
admin
/
users
/
roles_controller.rb

roles_controller.rb 2.3 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. require 'rails_helper'
    2. 

  2. 

  3. describe Admin::Users::RolesController do
    4. 

  4.   render_views
    5. 

  5. 

  6.   let(:current_role) { UserRole.create(name: 'Foo', permissions: UserRole::FLAGS[:manage_roles], position: 10) }
    7. 

  7.   let(:current_user) { Fabricate(:user, role: current_role) }
    8. 

  8. 

  9.   let(:previous_role) { nil }
    10. 

  10.   let(:user) { Fabricate(:user, role: previous_role) }
    11. 

  11. 

  12.   before do
    13. 

  13.     sign_in current_user, scope: :user
    14. 

  14.   end
    15. 

  15. 

  16.   describe 'GET #show' do
    17. 

  17.     before do
    18. 

  18.       get :show, params: { user_id: user.id }
    19. 

  19.     end
    20. 

  20. 

  21.     it 'returns http success' do
    22. 

  22.       expect(response).to have_http_status(:success)
    23. 

  23.     end
    24. 

  24. 

  25.     context 'when target user is higher ranked than current user' do
    26. 

  26.       let(:previous_role) { UserRole.create(name: 'Baz', permissions: UserRole::FLAGS[:administrator], position: 100) }
    27. 

  27. 

  28.       it 'returns http forbidden' do
    29. 

  29.         expect(response).to have_http_status(:forbidden)
    30. 

  30.       end
    31. 

  31.     end
    32. 

  32.   end
    33. 

  33. 

  34.   describe 'PUT #update' do
    35. 

  35.     let(:selected_role) { UserRole.create(name: 'Bar', permissions: permissions, position: position) }
    36. 

  36. 

  37.     before do
    38. 

  38.       put :update, params: { user_id: user.id, user: { role_id: selected_role.id } }
    39. 

  39.     end
    40. 

  40. 

  41.     context do
    42. 

  42.       let(:permissions) { UserRole::FLAGS[:manage_roles] }
    43. 

  43.       let(:position) { 1 }
    44. 

  44. 

  45.       it 'updates user role' do
    46. 

  46.         expect(user.reload.role_id).to eq selected_role&.id
    47. 

  47.       end
    48. 

  48. 

  49.       it 'redirects back to account page' do
    50. 

  50.         expect(response).to redirect_to(admin_account_path(user.account_id))
    51. 

  51.       end
    52. 

  52.     end
    53. 

  53. 

  54.     context 'when selected role has higher position than current user\'s role' do
    55. 

  55.       let(:permissions) { UserRole::FLAGS[:administrator] }
    56. 

  56.       let(:position) { 100 }
    57. 

  57. 

  58.       it 'does not update user role' do
    59. 

  59.         expect(user.reload.role_id).to eq previous_role&.id
    60. 

  60.       end
    61. 

  61. 

  62.       it 'renders edit form' do
    63. 

  63.         expect(response).to render_template(:show)
    64. 

  64.       end
    65. 

  65.     end
    66. 

  66. 

  67.     context 'when target user is higher ranked than current user' do
    68. 

  68.       let(:previous_role) { UserRole.create(name: 'Baz', permissions: UserRole::FLAGS[:administrator], position: 100) }
    69. 

  69.       let(:permissions) { UserRole::FLAGS[:manage_roles] }
    70. 

  70.       let(:position) { 1 }
    71. 

  71. 

  72.       it 'does not update user role' do
    73. 

  73.         expect(user.reload.role_id).to eq previous_role&.id
    74. 

  74.       end
    75. 

  75. 

  76.       it 'returns http forbidden' do
    77. 

  77.         expect(response).to have_http_status(:forbidden)
    78. 

  78.       end
    79. 

  79.     end
    80. 

  80.   end
    81. 

  81. end
    82.