Home Explore Help
Register Sign In
bida
/
bastodon
7
0
Fork 0
Files Issues 9 Pull Requests 0 Wiki
Tree: 1416745a2b
Branches Tags
bastodon
/
spec
/
controllers
/
settings
/
deletes_controller_spec.rb

deletes_controller_spec.rb 2.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. describe Settings::DeletesController do
    6. 

  6.   render_views
    7. 

  7. 

  8.   describe 'GET #show' do
    9. 

  9.     context 'when signed in' do
    10. 

  10.       let(:user) { Fabricate(:user) }
    11. 

  11. 

  12.       before do
    13. 

  13.         sign_in user, scope: :user
    14. 

  14.         get :show
    15. 

  15.       end
    16. 

  16. 

  17.       it 'renders confirmation page' do
    18. 

  18.         expect(response).to have_http_status(200)
    19. 

  19.       end
    20. 

  20. 

  21.       it 'returns private cache control headers' do
    22. 

  22.         expect(response.headers['Cache-Control']).to include('private, no-store')
    23. 

  23.       end
    24. 

  24. 

  25.       context 'when suspended' do
    26. 

  26.         let(:user) { Fabricate(:user, account_attributes: { suspended_at: Time.now.utc }) }
    27. 

  27. 

  28.         it 'returns http forbidden' do
    29. 

  29.           expect(response).to have_http_status(403)
    30. 

  30.         end
    31. 

  31. 

  32.         it 'returns private cache control headers' do
    33. 

  33.           expect(response.headers['Cache-Control']).to include('private, no-store')
    34. 

  34.         end
    35. 

  35.       end
    36. 

  36.     end
    37. 

  37. 

  38.     context 'when not signed in' do
    39. 

  39.       it 'redirects' do
    40. 

  40.         get :show
    41. 

  41.         expect(response).to redirect_to '/auth/sign_in'
    42. 

  42.       end
    43. 

  43.     end
    44. 

  44.   end
    45. 

  45. 

  46.   describe 'DELETE #destroy' do
    47. 

  47.     context 'when signed in' do
    48. 

  48.       let(:user) { Fabricate(:user, password: 'petsmoldoggos') }
    49. 

  49. 

  50.       before do
    51. 

  51.         sign_in user, scope: :user
    52. 

  52.       end
    53. 

  53. 

  54.       context 'with correct password' do
    55. 

  55.         before do
    56. 

  56.           delete :destroy, params: { form_delete_confirmation: { password: 'petsmoldoggos' } }
    57. 

  57.         end
    58. 

  58. 

  59.         it 'redirects to sign in page' do
    60. 

  60.           expect(response).to redirect_to '/auth/sign_in'
    61. 

  61.         end
    62. 

  62. 

  63.         it 'removes user record' do
    64. 

  64.           expect(User.find_by(id: user.id)).to be_nil
    65. 

  65.         end
    66. 

  66. 

  67.         it 'marks account as suspended' do
    68. 

  68.           expect(user.account.reload).to be_suspended
    69. 

  69.         end
    70. 

  70. 

  71.         it 'does not create an email block' do
    72. 

  72.           expect(CanonicalEmailBlock.block?(user.email)).to be false
    73. 

  73.         end
    74. 

  74. 

  75.         context 'when suspended' do
    76. 

  76.           let(:user) { Fabricate(:user, account_attributes: { suspended_at: Time.now.utc }) }
    77. 

  77. 

  78.           it 'returns http forbidden' do
    79. 

  79.             expect(response).to have_http_status(403)
    80. 

  80.           end
    81. 

  81.         end
    82. 

  82.       end
    83. 

  83. 

  84.       context 'with incorrect password' do
    85. 

  85.         before do
    86. 

  86.           delete :destroy, params: { form_delete_confirmation: { password: 'blaze420' } }
    87. 

  87.         end
    88. 

  88. 

  89.         it 'redirects back to confirmation page' do
    90. 

  90.           expect(response).to redirect_to settings_delete_path
    91. 

  91.         end
    92. 

  92.       end
    93. 

  93.     end
    94. 

  94. 

  95.     context 'when not signed in' do
    96. 

  96.       it 'redirects' do
    97. 

  97.         delete :destroy
    98. 

  98.         expect(response).to redirect_to '/auth/sign_in'
    99. 

  99.       end
    100. 

  100.     end
    101. 

  101.   end
    102. 

  102. end
    103.