fat_free_crm 0.13.0 → 0.13.1

data/spec/lib/secret_token_generator_spec.rb

@@ -0,0 +1,55 @@
+# Copyright (c) 2008-2014 Michael Dvorkin and contributors.
+#
+# Fat Free CRM is freely distributable under the terms of MIT license.
+# See MIT-LICENSE file or http://www.opensource.org/licenses/mit-license.php
+#------------------------------------------------------------------------------
+
+require 'spec_helper'
+require 'fat_free_crm/secret_token_generator'
+
+describe FatFreeCRM::SecretTokenGenerator do
+
+  let(:token) { 'e5a4b315c062dec4ecb40dabcde84fd6c067cb016a813702d2f4299ad16255c88ed1020bd47fb527e8e5f7052b04be1fbb8e63c043b8fb36f88d3c7d79a68681' }
+
+  describe "setup!" do
+
+    it "should not generate a token if one already exists" do
+      FatFreeCRM::SecretTokenGenerator.stub(:token).and_return(nil)
+      expect(FatFreeCRM::SecretTokenGenerator).to receive(:generate_and_persist_token!)
+      FatFreeCRM::Application.config.stub(:secret_token).and_return(token)
+      FatFreeCRM::SecretTokenGenerator.setup!
+    end
+
+    it "should generate a token if none exists already" do
+      FatFreeCRM::SecretTokenGenerator.stub(:token).and_return(token)
+      expect(FatFreeCRM::SecretTokenGenerator).not_to receive(:generate_and_persist_token!)
+      FatFreeCRM::SecretTokenGenerator.setup!
+    end
+
+    it "should raise an error if the token is still blank (should never happen)" do
+      FatFreeCRM::SecretTokenGenerator.stub(:token).and_return(nil)
+      lambda { FatFreeCRM::SecretTokenGenerator.setup! }.should raise_error(RuntimeError)
+    end
+
+  end
+
+  describe "token" do
+
+    it "should delegate to Setting" do
+      expect(Setting).to receive(:secret_token).and_return(token)
+      expect(FatFreeCRM::SecretTokenGenerator.send(:token)).to eql(token)
+    end
+
+  end
+
+  describe "generate_and_persist_token!" do
+
+    it "should generate a random token" do
+      expect(SecureRandom).to receive(:hex).with(64).and_return(token)
+      expect(Setting).to receive(:secret_token=).with(token)
+      FatFreeCRM::SecretTokenGenerator.send(:generate_and_persist_token!)
+    end
+
+  end
+
+end

data/spec/models/users/abilities/user_ability_spec.rb

@@ -0,0 +1,58 @@
+require 'spec_helper'
+require 'cancan/matchers'
+
+def all_actions
+  [:index, :show, :create, :update, :destroy, :manage]
+end
+
+describe "User abilities" do
+
+  subject(:ability)  { Ability.new(user) }
+  let(:subject_user) { create :user }
+
+  context "when site manager, I" do
+    let(:user)  { create :user, admin: true}
+    all_actions.each do |do_action|
+      it{ should be_able_to(do_action, subject_user) }
+    end
+  end
+
+  context "when myself, I" do
+    let(:user) { create :user }
+    let(:subject_user) { user }
+    all_actions.each do |do_action|
+      it{ should be_able_to(do_action, subject_user) }
+    end
+  end
+
+  context "when another user, I" do
+    let(:user)  { create :user }
+    let(:can)    { [] }
+    let(:cannot) { [:show, :create, :update, :index, :destroy, :manage] }
+    it{ can.each do |do_action|
+      should be_able_to(do_action, subject_user)
+    end}
+    it{ cannot.each do |do_action|
+      should_not be_able_to(do_action, subject_user)
+    end}
+  end
+
+  context "when anonymous user, I" do
+    let(:user)  { nil }
+    let(:can)    { [] }
+    let(:cannot) { [:show, :create, :update, :index, :destroy, :manage] }
+    it{ can.each do |do_action|
+      should be_able_to(do_action, subject_user)
+    end}
+    it{ cannot.each do |do_action|
+      should_not be_able_to(do_action, subject_user)
+    end}
+
+    it "and signup enabled" do
+      User.stub(:can_signup?).and_return(true)
+      should be_able_to(:create, User)
+    end
+
+  end
+
+end

data/spec/routing/emails_routing_spec.rb

@@ -3,33 +3,33 @@
 # Fat Free CRM is freely distributable under the terms of MIT license.
 # See MIT-LICENSE file or http://www.opensource.org/licenses/mit-license.php
 #------------------------------------------------------------------------------
-require File.expand_path(File.dirname(__FILE__) + '/../spec_helper')
+require 'spec_helper'
 
 describe EmailsController do
   describe "routing" do
 
-    it "recognizes and generates #index" do
-      { :get => "/emails" }.should route_to(:controller => "emails", :action => "index")
+    it "should not recognize #index" do
+      { :get => "/emails" }.should_not be_routable
     end
 
-    it "recognizes and generates #new" do
-      { :get => "/emails/new" }.should route_to(:controller => "emails", :action => "new")
+    it "should not recognize #new" do
+      { :get => "/emails/new" }.should_not be_routable
     end
 
-    it "recognizes and generates #show" do
-      { :get => "/emails/1" }.should route_to(:controller => "emails", :action => "show", :id => "1")
+    it "should not recognize #show" do
+      { :get => "/emails/1" }.should_not be_routable
     end
 
-    it "recognizes and generates #edit" do
-      { :get => "/emails/1/edit" }.should route_to(:controller => "emails", :action => "edit", :id => "1")
+    it "should not recognize #edit" do
+      { :get => "/emails/1/edit" }.should_not be_routable
     end
 
-    it "recognizes and generates #create" do
-      { :post => "/emails" }.should route_to(:controller => "emails", :action => "create")
+    it "should not recognize #create" do
+      { :post => "/emails" }.should_not be_routable
     end
 
-    it "recognizes and generates #update" do
-      { :put => "/emails/1" }.should route_to(:controller => "emails", :action => "update", :id => "1")
+    it "should not recognize #update" do
+      { :put => "/emails/1" }.should_not be_routable
     end
 
     it "recognizes and generates #destroy" do
@@ -37,4 +37,3 @@ describe EmailsController do
     end
   end
 end
-

data/spec/spec_helper.rb

@@ -11,7 +11,7 @@ require 'rspec/rails'
 require 'capybara/rails'
 
 require 'acts_as_fu'
-require 'factory_girl'
+require 'factory_girl_rails'
 require 'ffaker'
 
 require 'coveralls'
@@ -38,6 +38,7 @@ RSpec.configure do |config|
 
   # RSpec configuration options for Fat Free CRM.
   config.include RSpec::Rails::Matchers
+  config.include(FactoryGirl::Syntax::Methods)
 
   config.before(:each) do
     # Overwrite locale settings within "config/settings.yml" if necessary.

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: fat_free_crm
 version: !ruby/object:Gem::Version
-  version: 0.13.0
+  version: 0.13.1
 platform: ruby
 authors:
 - Michael Dvorkin
@@ -11,7 +11,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-12-27 00:00:00.000000000 Z
+date: 2014-01-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -1042,6 +1042,7 @@ files:
 - lib/fat_free_crm/plugin.rb
 - lib/fat_free_crm/plugin_dependencies.rb
 - lib/fat_free_crm/renderers.rb
+- lib/fat_free_crm/secret_token_generator.rb
 - lib/fat_free_crm/sortable.rb
 - lib/fat_free_crm/tabs.rb
 - lib/fat_free_crm/version.rb
@@ -1161,6 +1162,7 @@ files:
 - spec/lib/mail_processor/dropbox_spec.rb
 - spec/lib/mail_processor/sample_emails/dropbox.rb
 - spec/lib/permissions_spec.rb
+- spec/lib/secret_token_generator_spec.rb
 - spec/lib/view_factory_spec.rb
 - spec/mailers/subscription_mailer_spec.rb
 - spec/mailers/user_mailer_spec.rb
@@ -1186,6 +1188,7 @@ files:
 - spec/models/polymorphic/task_spec.rb
 - spec/models/polymorphic/version_spec.rb
 - spec/models/setting_spec.rb
+- spec/models/users/abilities/user_ability_spec.rb
 - spec/models/users/authentication_spec.rb
 - spec/models/users/group_spec.rb
 - spec/models/users/permission_spec.rb