apicasso 0.4.11 → 0.5.0

data/spec/requests/requests_spec.rb

@@ -1,7 +1,6 @@
 # frozen_string_literal: true
 
 require 'rails_helper'
-
 RSpec.describe 'Used Model requests', type: :request do
   token = Apicasso::Key.create(scope: { manage: { used_model: true } }).token
   access_token = { 'AUTHORIZATION' => "Token token=#{token}" }
@@ -38,7 +37,7 @@ RSpec.describe 'Used Model requests', type: :request do
     end
 
     context 'with pagination' do
-      per_page = (1..UsedModel.count+1).to_a.sample
+      per_page = (1..UsedModel.count + 1).to_a.sample
       page = (1..5).to_a.sample
 
       before(:all) do
@@ -72,16 +71,25 @@ RSpec.describe 'Used Model requests', type: :request do
     end
 
     context 'by grouping' do
+      column_by, column_fields = [:active, :account_id, :unit_id, :brand, :name, :slug,
+        :model, :version, :model_year, :production_year, :kind, :new_vehicle, :old_price,
+        :price_value, :price, :category, :transmission, :km_value, :km, :plate, :color, :doors,
+        :fuel, :fuel_text, :shielded].sample(2)
+
       before(:all) do
-        get '/api/v1/used_model', params: { 'group[by]': 'brand', 'group[calculate]': 'count', 'group[fields]': 'transmission' }, headers: access_token
+        get '/api/v1/used_model', params: {
+          'group[by]': column_by,
+          'group[calculate]': 'count',
+          'group[fields]': column_fields
+        }, headers: access_token
       end
 
       it 'returns status ok' do
         expect(response).to have_http_status(:ok)
       end
 
-      it 'returns all records grouped brand queried' do
-        expect(JSON.parse(response.body)).to eq(UsedModel.group(:brand).count)
+      it 'returns all records grouped by field queried' do
+        expect(response.body).to eq(UsedModel.where("#{column_fields} is NOT NULL").group(column_by).count.to_json)
       end
     end
 
@@ -102,7 +110,10 @@ RSpec.describe 'Used Model requests', type: :request do
     end
 
     context 'with field selecting' do
-      field_select = UsedModel.column_names.sample
+      fields = UsedModel.column_names
+      fields.delete('id')
+      field_select = fields.sample
+
       before(:all) do
         get '/api/v1/used_model', params: { 'select': field_select }, headers: access_token
       end
@@ -111,9 +122,9 @@ RSpec.describe 'Used Model requests', type: :request do
         expect(response).to have_http_status(:ok)
       end
 
-      it 'returns all records that have field queried' do
+      it 'returns all records with id (default) and that have field queried' do
         JSON.parse(response.body)['entries'].each do |record|
-          expect(record.keys).to include(field_select)
+          expect(record.keys).to eq(['id', field_select])
         end
       end
     end
@@ -134,19 +145,11 @@ RSpec.describe 'Used Model requests', type: :request do
       end
     end
 
-    context 'with include associations invalid' do
-      before(:all) do
-        get '/api/v1/used_model', params: { 'include': 'files,file' }, headers: access_token
-      end
-
-      it 'returns status ok' do
-        expect(response).to have_http_status(:ok)
-      end
-
-      it 'returns all records without includes queried' do
-        JSON.parse(response.body)['entries'].each do |record|
-          expect(record.keys).not_to include('files_blobs', 'files_url')
-        end
+    context 'when include invalid associations' do
+      it 'raise a bad request exception' do
+        expect {
+          get '/api/v1/used_model', params: { 'include': 'filess,filee' }, headers: access_token
+        }.to raise_exception(ActionController::BadRequest)
       end
     end
   end
@@ -168,6 +171,51 @@ RSpec.describe 'Used Model requests', type: :request do
     it 'return matches with object searched' do
       expect(UsedModel.find(id_to_get_id.to_i).attributes.to_json).to eq(response.body)
     end
+
+    context 'with field selecting' do
+      id_to_get_id = UsedModel.all.sample.id.to_s
+      fields = UsedModel.column_names
+      fields.delete('id')
+      field_select = fields.sample
+
+      before(:all) do
+        get '/api/v1/used_model/' + id_to_get_id, params: { 'select': field_select }, headers: access_token
+      end
+
+      it 'returns status ok' do
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns the record with id (default) and that have field queried' do
+        expect(JSON.parse(response.body).keys).to eq([field_select])
+      end
+    end
+
+    context 'with include associations valid' do
+      id_to_test = UsedModel.all.sample.id.to_s
+
+      before(:all) do
+        get '/api/v1/used_model/' + id_to_test, params: { 'include': 'files_blobs,files_url' }, headers: access_token
+      end
+
+      it 'returns status ok' do
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns the record with includes queried' do
+        expect(JSON.parse(response.body).keys).to include('files_blobs', 'files_url')
+      end
+    end
+
+    context 'when include invalid associations' do
+      id_to_test = UsedModel.all.sample.id.to_s
+
+      it 'raise a bad request exception' do
+        expect {
+          get '/api/v1/used_model/' + id_to_test, params: { 'include': 'filess,filee' }, headers: access_token
+        }.to raise_exception(ActionController::BadRequest)
+      end
+    end
   end
 
   describe 'GET /api/v1/used_model/:slug' do
@@ -195,7 +243,35 @@ RSpec.describe 'Used Model requests', type: :request do
     context 'with valid params' do
       before(:all) do
         @quantity = UsedModel.all.size
-        post '/api/v1/used_model/', params: { 'used_model': { 'name': 'test', 'account_id': 1, 'unit_id': 1, 'slug': slug_to_post, 'brand': 'BMW' }}, headers: access_token
+        slug_to_post = Faker::Lorem.word
+        post '/api/v1/used_model/', params: {
+          'used_model': {
+            'active': Faker::Boolean.boolean,
+            'account_id': Faker::Number.number(1),
+            'unit_id': Faker::Number.number(1),
+            'brand': Faker::Vehicle.make,
+            'name': Faker::Vehicle.make_and_model,
+            'model': Faker::Vehicle.model,
+            'slug': slug_to_post,
+            'version': Faker::Number.decimal(1, 1),
+            'model_year': Faker::Vehicle.year,
+            'production_year': Faker::Vehicle.year,
+            'kind': 'car',
+            'new_vehicle': Faker::Boolean.boolean,
+            'old_price': Faker::Number.decimal(4, 2).to_s,
+            'price_value': Faker::Number.decimal(4, 2),
+            'price': Faker::Number.decimal(4, 2).to_s,
+            'category': Faker::Vehicle.car_type,
+            'transmission': Faker::Vehicle.transmission,
+            'km_value': Faker::Number.number(8),
+            'km': Faker::Number.number(8),
+            'plate': Faker::Number.number(4),
+            'color': Faker::Vehicle.color,
+            'doors': Faker::Number.number(1),
+            'fuel':  Faker::Number.number(1),
+            'fuel_text': Faker::Vehicle.fuel_type,
+            'shielded': Faker::Boolean.boolean,
+          }}, headers: access_token
       end
 
       it 'returns status created' do
@@ -222,7 +298,6 @@ RSpec.describe 'Used Model requests', type: :request do
   describe 'PUT /api/v1/used_model/:id' do
     id_to_put = UsedModel.all.sample.id.to_s
     name_to_put = Faker::Lorem.word
-    slug_to_put = UsedModel.all.sample.slug
 
     context 'with valid params' do
       before(:all) do

data/spec/spec_helper.rb

@@ -3,6 +3,7 @@ ENV['RAILS_ENV'] ||= 'test'
 require File.expand_path("../dummy/config/environment.rb", __FILE__)
 require 'rspec/rails'
 require 'factory_bot_rails'
+require 'database_cleaner'
 require 'faker'
 require 'simplecov'
 SimpleCov.start
@@ -13,4 +14,3 @@ Rails.backtrace_cleaner.remove_silencers!
 
 # Load support files
 Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }
-

data/spec/support/database_cleaner.rb

@@ -0,0 +1,8 @@
+RSpec.configure do |config|
+  config.use_transactional_fixtures = false
+
+  config.after(:suite) do
+    DatabaseCleaner.strategy = :truncation, { :only => %w[apicasso_keys] }
+    DatabaseCleaner.clean
+  end
+end

data/spec/token/token_spec.rb

@@ -0,0 +1,322 @@
+# frozen_string_literal: true
+
+require 'rails_helper'
+
+RSpec.describe 'Apicasso Keys', type: :request do
+  describe 'Generation keys' do
+    context 'with scope manage' do
+      apicasso_key = Apicasso::Key.create(scope: { manage: { used_model: true } })
+      access_token = { 'AUTHORIZATION' => "Token token=#{apicasso_key.token}" }
+
+      it 'returns ok to GET' do
+        get '/api/v1/used_model', headers: access_token
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns ok to POST' do
+        size_before = UsedModel.all.size
+
+        post '/api/v1/used_model/', params: {
+          'used_model': {
+            'active': Faker::Boolean.boolean,
+            'account_id': Faker::Number.number(1),
+            'unit_id': Faker::Number.number(1),
+            'brand': Faker::Vehicle.make,
+            'name': Faker::Vehicle.make_and_model,
+            'model': Faker::Vehicle.model,
+            'version': Faker::Number.decimal(1, 1),
+            'model_year': Faker::Vehicle.year,
+            'production_year': Faker::Vehicle.year,
+            'kind': 'car',
+            'new_vehicle': Faker::Boolean.boolean,
+            'old_price': Faker::Number.decimal(4, 2).to_s,
+            'price_value': Faker::Number.decimal(4, 2),
+            'price': Faker::Number.decimal(4, 2).to_s,
+            'category': Faker::Vehicle.car_type,
+            'transmission': Faker::Vehicle.transmission,
+            'km_value': Faker::Number.number(8),
+            'km': Faker::Number.number(8),
+            'plate': Faker::Number.number(4),
+            'color': Faker::Vehicle.color,
+            'doors': Faker::Number.number(1),
+            'fuel':  Faker::Number.number(1),
+            'fuel_text': Faker::Vehicle.fuel_type,
+            'shielded': Faker::Boolean.boolean,
+          }}, headers: access_token
+
+        expect(UsedModel.all.size).to eq(size_before + 1)
+        expect(response).to have_http_status(:created)
+      end
+
+      it 'returns ok to UPDATE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+
+        patch '/api/v1/used_model/' + id_to_del, params: {'used_model': { 'name': Faker::Vehicle.make_and_model }}, headers: access_token
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns ok to DELETE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+        size_before = UsedModel.all.size
+
+        delete '/api/v1/used_model/' + id_to_del, headers: access_token
+
+        expect(UsedModel.all.size).to eq(size_before - 1)
+        expect(response).to have_http_status(:no_content)
+      end
+    end
+
+    context 'with scope to read' do
+      apicasso_key = Apicasso::Key.create(scope: { read: { used_model: true } })
+      access_token = { 'AUTHORIZATION' => "Token token=#{apicasso_key.token}" }
+
+      it 'returns ok to GET' do
+        get '/api/v1/used_model', headers: access_token
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns a raise to POST' do
+        size_before = UsedModel.all.size
+
+        expect {
+          post '/api/v1/used_model/', params: {
+            'used_model': {
+              'active': Faker::Boolean.boolean,
+              'account_id': Faker::Number.number(1),
+              'unit_id': Faker::Number.number(1),
+              'brand': Faker::Vehicle.make,
+              'name': Faker::Vehicle.make_and_model,
+              'model': Faker::Vehicle.model,
+              'version': Faker::Number.decimal(1, 1),
+              'model_year': Faker::Vehicle.year,
+              'production_year': Faker::Vehicle.year,
+              'kind': 'car',
+              'new_vehicle': Faker::Boolean.boolean,
+              'old_price': Faker::Number.decimal(4, 2).to_s,
+              'price_value': Faker::Number.decimal(4, 2),
+              'price': Faker::Number.decimal(4, 2).to_s,
+              'category': Faker::Vehicle.car_type,
+              'transmission': Faker::Vehicle.transmission,
+              'km_value': Faker::Number.number(8),
+              'km': Faker::Number.number(8),
+              'plate': Faker::Number.number(4),
+              'color': Faker::Vehicle.color,
+              'doors': Faker::Number.number(1),
+              'fuel':  Faker::Number.number(1),
+              'fuel_text': Faker::Vehicle.fuel_type,
+              'shielded': Faker::Boolean.boolean
+            }}, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+
+      it 'returns a raise to UPDATE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+
+        expect {
+          patch '/api/v1/used_model/' + id_to_del, params: { 'used_model': { 'name': Faker::Vehicle.make_and_model }}, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns a raise to DELETE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+        size_before = UsedModel.all.size
+
+        expect {
+          delete '/api/v1/used_model/' + id_to_del, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+    end
+
+    context 'with scope to write' do
+      apicasso_key = Apicasso::Key.create(scope: { create: { used_model: true } })
+      access_token = { 'AUTHORIZATION' => "Token token=#{apicasso_key.token}" }
+
+      it 'returns a raise to GET' do
+        expect {
+          get '/api/v1/used_model', headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns ok to POST' do
+        size_before = UsedModel.all.size
+
+        post '/api/v1/used_model/', params: {
+          'used_model': {
+            'active': Faker::Boolean.boolean,
+            'account_id': Faker::Number.number(1),
+            'unit_id': Faker::Number.number(1),
+            'brand': Faker::Vehicle.make,
+            'name': Faker::Vehicle.make_and_model,
+            'model': Faker::Vehicle.model,
+            'version': Faker::Number.decimal(1, 1),
+            'model_year': Faker::Vehicle.year,
+            'production_year': Faker::Vehicle.year,
+            'kind': 'car',
+            'new_vehicle': Faker::Boolean.boolean,
+            'old_price': Faker::Number.decimal(4, 2).to_s,
+            'price_value': Faker::Number.decimal(4, 2),
+            'price': Faker::Number.decimal(4, 2).to_s,
+            'category': Faker::Vehicle.car_type,
+            'transmission': Faker::Vehicle.transmission,
+            'km_value': Faker::Number.number(8),
+            'km': Faker::Number.number(8),
+            'plate': Faker::Number.number(4),
+            'color': Faker::Vehicle.color,
+            'doors': Faker::Number.number(1),
+            'fuel':  Faker::Number.number(1),
+            'fuel_text': Faker::Vehicle.fuel_type,
+            'shielded': Faker::Boolean.boolean
+          }}, headers: access_token
+
+        expect(response).to have_http_status(:created)
+        expect(UsedModel.all.size).to eq(size_before + 1)
+      end
+
+      it 'returns a raise to UPDATE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+
+        expect {
+          patch '/api/v1/used_model/' + id_to_del, params: { 'used_model': { 'name': Faker::Vehicle.make_and_model }}, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns a raise to DELETE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+        size_before = UsedModel.all.size
+
+        expect {
+          delete '/api/v1/used_model/' + id_to_del, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+    end
+
+    context 'with scope to update' do
+      apicasso_key = Apicasso::Key.create(scope: { update: { used_model: true } })
+      access_token = { 'AUTHORIZATION' => "Token token=#{apicasso_key.token}" }
+
+      it 'returns a raise to GET' do
+        expect {
+          get '/api/v1/used_model', headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns a raise to POST' do
+        size_before = UsedModel.all.size
+
+        expect {
+          post '/api/v1/used_model/', params: {
+            'used_model': {
+              'active': Faker::Boolean.boolean,
+              'account_id': Faker::Number.number(1),
+              'unit_id': Faker::Number.number(1),
+              'brand': Faker::Vehicle.make,
+              'name': Faker::Vehicle.make_and_model,
+              'model': Faker::Vehicle.model,
+              'version': Faker::Number.decimal(1, 1),
+              'model_year': Faker::Vehicle.year,
+              'production_year': Faker::Vehicle.year,
+              'kind': 'car',
+              'new_vehicle': Faker::Boolean.boolean,
+              'old_price': Faker::Number.decimal(4, 2).to_s,
+              'price_value': Faker::Number.decimal(4, 2),
+              'price': Faker::Number.decimal(4, 2).to_s,
+              'category': Faker::Vehicle.car_type,
+              'transmission': Faker::Vehicle.transmission,
+              'km_value': Faker::Number.number(8),
+              'km': Faker::Number.number(8),
+              'plate': Faker::Number.number(4),
+              'color': Faker::Vehicle.color,
+              'doors': Faker::Number.number(1),
+              'fuel':  Faker::Number.number(1),
+              'fuel_text': Faker::Vehicle.fuel_type,
+              'shielded': Faker::Boolean.boolean
+            }}, headers: access_token
+          }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+
+      it 'returns ok to UPDATE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+
+        patch '/api/v1/used_model/' + id_to_del, params: { 'used_model': { 'name': Faker::Vehicle.make_and_model }}, headers: access_token
+        expect(response).to have_http_status(:ok)
+      end
+
+      it 'returns a raise to DELETE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+        size_before = UsedModel.all.size
+
+        expect {
+          delete '/api/v1/used_model/' + id_to_del, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+    end
+
+    context 'with scope to destroy' do
+      apicasso_key = Apicasso::Key.create(scope: { destroy: { used_model: true } })
+      access_token = { 'AUTHORIZATION' => "Token token=#{apicasso_key.token}" }
+
+      it 'returns a raise to GET' do
+        expect {
+          get '/api/v1/used_model', headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns a raise to POST' do
+        size_before = UsedModel.all.size
+
+        expect {
+          post '/api/v1/used_model/', params: {
+            'used_model': {
+              'active': Faker::Boolean.boolean,
+              'account_id': Faker::Number.number(1),
+              'unit_id': Faker::Number.number(1),
+              'brand': Faker::Vehicle.make,
+              'name': Faker::Vehicle.make_and_model,
+              'model': Faker::Vehicle.model,
+              'version': Faker::Number.decimal(1, 1),
+              'model_year': Faker::Vehicle.year,
+              'production_year': Faker::Vehicle.year,
+              'kind': 'car',
+              'new_vehicle': Faker::Boolean.boolean,
+              'old_price': Faker::Number.decimal(4, 2).to_s,
+              'price_value': Faker::Number.decimal(4, 2),
+              'price': Faker::Number.decimal(4, 2).to_s,
+              'category': Faker::Vehicle.car_type,
+              'transmission': Faker::Vehicle.transmission,
+              'km_value': Faker::Number.number(8),
+              'km': Faker::Number.number(8),
+              'plate': Faker::Number.number(4),
+              'color': Faker::Vehicle.color,
+              'doors': Faker::Number.number(1),
+              'fuel':  Faker::Number.number(1),
+              'fuel_text': Faker::Vehicle.fuel_type,
+              'shielded': Faker::Boolean.boolean
+            }}, headers: access_token
+          }.to raise_exception(CanCan::AccessDenied)
+        expect(UsedModel.all.size).to eq(size_before)
+      end
+
+      it 'returns a raise to UPDATE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+
+        expect {
+          patch '/api/v1/used_model/' + id_to_del, params: { 'used_model': { 'name': Faker::Vehicle.make_and_model }}, headers: access_token
+        }.to raise_exception(CanCan::AccessDenied)
+      end
+
+      it 'returns ok to DELETE' do
+        id_to_del = UsedModel.all.sample.id.to_s
+        size_before = UsedModel.all.size
+
+        delete '/api/v1/used_model/' + id_to_del, headers: access_token
+        expect(response).to have_http_status(:no_content)
+        expect(UsedModel.all.size).to eq(size_before - 1)
+      end
+    end
+  end
+end