Home Explore Help
Register Sign In
bida
/
bastodon
6
0
Fork 0
Files Issues 7 Pull Requests 0 Wiki
Tree: 1416745a2b
Branches Tags
bastodon
/
spec
/
controllers
/
admin
/
users
/
roles_controller_spec.rb

roles_controller_spec.rb 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. describe Admin::Users::RolesController do
    6. 

  6.   render_views
    7. 

  7. 

  8.   let(:current_role) { UserRole.create(name: 'Foo', permissions: UserRole::FLAGS[:manage_roles], position: 10) }
    9. 

  9.   let(:current_user) { Fabricate(:user, role: current_role) }
    10. 

  10. 

  11.   let(:previous_role) { nil }
    12. 

  12.   let(:user) { Fabricate(:user, role: previous_role) }
    13. 

  13. 

  14.   before do
    15. 

  15.     sign_in current_user, scope: :user
    16. 

  16.   end
    17. 

  17. 

  18.   describe 'GET #show' do
    19. 

  19.     before do
    20. 

  20.       get :show, params: { user_id: user.id }
    21. 

  21.     end
    22. 

  22. 

  23.     it 'returns http success' do
    24. 

  24.       expect(response).to have_http_status(:success)
    25. 

  25.     end
    26. 

  26. 

  27.     context 'when target user is higher ranked than current user' do
    28. 

  28.       let(:previous_role) { UserRole.create(name: 'Baz', permissions: UserRole::FLAGS[:administrator], position: 100) }
    29. 

  29. 

  30.       it 'returns http forbidden' do
    31. 

  31.         expect(response).to have_http_status(403)
    32. 

  32.       end
    33. 

  33.     end
    34. 

  34.   end
    35. 

  35. 

  36.   describe 'PUT #update' do
    37. 

  37.     let(:selected_role) { UserRole.create(name: 'Bar', permissions: permissions, position: position) }
    38. 

  38. 

  39.     before do
    40. 

  40.       put :update, params: { user_id: user.id, user: { role_id: selected_role.id } }
    41. 

  41.     end
    42. 

  42. 

  43.     context 'with manage roles permissions' do
    44. 

  44.       let(:permissions) { UserRole::FLAGS[:manage_roles] }
    45. 

  45.       let(:position) { 1 }
    46. 

  46. 

  47.       it 'updates user role' do
    48. 

  48.         expect(user.reload.role_id).to eq selected_role&.id
    49. 

  49.       end
    50. 

  50. 

  51.       it 'redirects back to account page' do
    52. 

  52.         expect(response).to redirect_to(admin_account_path(user.account_id))
    53. 

  53.       end
    54. 

  54.     end
    55. 

  55. 

  56.     context 'when selected role has higher position than current user\'s role' do
    57. 

  57.       let(:permissions) { UserRole::FLAGS[:administrator] }
    58. 

  58.       let(:position) { 100 }
    59. 

  59. 

  60.       it 'does not update user role' do
    61. 

  61.         expect(user.reload.role_id).to eq previous_role&.id
    62. 

  62.       end
    63. 

  63. 

  64.       it 'renders edit form' do
    65. 

  65.         expect(response).to render_template(:show)
    66. 

  66.       end
    67. 

  67.     end
    68. 

  68. 

  69.     context 'when target user is higher ranked than current user' do
    70. 

  70.       let(:previous_role) { UserRole.create(name: 'Baz', permissions: UserRole::FLAGS[:administrator], position: 100) }
    71. 

  71.       let(:permissions) { UserRole::FLAGS[:manage_roles] }
    72. 

  72.       let(:position) { 1 }
    73. 

  73. 

  74.       it 'does not update user role' do
    75. 

  75.         expect(user.reload.role_id).to eq previous_role&.id
    76. 

  76.       end
    77. 

  77. 

  78.       it 'returns http forbidden' do
    79. 

  79.         expect(response).to have_http_status(403)
    80. 

  80.       end
    81. 

  81.     end
    82. 

  82.   end
    83. 

  83. end
    84.