g5_authenticatable 1.0.0 → 1.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +8 -0
- data/README.md +4 -4
- data/g5_authenticatable.gemspec +1 -1
- data/lib/g5_authenticatable/engine.rb +0 -1
- data/lib/g5_authenticatable/test/controller_helpers.rb +3 -3
- data/lib/g5_authenticatable/test/factories/client_users.rb +1 -1
- data/lib/g5_authenticatable/test/factories/global_users.rb +5 -5
- data/lib/g5_authenticatable/test/factories/location_users.rb +1 -1
- data/lib/g5_authenticatable/test/factories/roles.rb +1 -1
- data/lib/g5_authenticatable/test/factory.rb +14 -1
- data/lib/g5_authenticatable/test/feature_helpers.rb +1 -1
- data/lib/g5_authenticatable/test/request_helpers.rb +1 -1
- data/lib/g5_authenticatable/version.rb +1 -1
- data/spec/factories/post.rb +1 -1
- data/spec/features/default_role_authorization_spec.rb +18 -18
- data/spec/features/sign_in_spec.rb +4 -4
- data/spec/features/token_validation_spec.rb +3 -3
- data/spec/models/g5_authenticatable/role_spec.rb +13 -13
- data/spec/models/g5_authenticatable/user_spec.rb +9 -9
- data/spec/models/post_spec.rb +1 -1
- data/spec/policies/application_policy_spec.rb +15 -15
- data/spec/policies/client_policy_spec.rb +5 -5
- data/spec/policies/location_policy_spec.rb +8 -8
- data/spec/policies/selectable_client_policy_spec.rb +9 -9
- data/spec/requests/default_role_authorization_spec.rb +12 -12
- data/spec/requests/token_validation_spec.rb +3 -3
- data/spec/services/g5_authenticatable/impersonate_sessionable_spec.rb +9 -9
- data/spec/support/shared_examples/super_admin_authorizer.rb +4 -4
- data/spec/tasks/purge_users_spec.rb +3 -3
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: fafd0add7d0b2d50524234cedb46b4db03da7526
|
|
4
|
+
data.tar.gz: 501fce66ab149473948e5a87a1c29a013880299e
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9fd11e97ca4e4551abc0036e994b76e43c533fa65564277e5977f37bbc078aa7a132e23e5f580ae0a73456f827202401761dfdba80371a218d9cb497aafe94b8
|
|
7
|
+
data.tar.gz: 7e42afc27a541a8bf1ad88154fa3bf84b1a14caee4c1e1512f688eedf6db868428daa88b71e6f605782ca9f7a8550aca67d614d366cca713f872eeeaf9d2bc57
|
data/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,11 @@
|
|
|
1
|
+
## v1.1.0 (2017-12-08)
|
|
2
|
+
|
|
3
|
+
* Added support for [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails)
|
|
4
|
+
while deprecating support for factory_girl_rails. Existing projects that use
|
|
5
|
+
FactoryGirl will continue to work with the auth test helpers, but we recommend
|
|
6
|
+
[upgrading to factory_bot](https://github.com/thoughtbot/factory_bot/blob/4-9-0-stable/UPGRADE_FROM_FACTORY_GIRL.md)
|
|
7
|
+
at your earliest convenience.
|
|
8
|
+
|
|
1
9
|
## v1.0.0 (2017-10-19)
|
|
2
10
|
|
|
3
11
|
* **Backwards incompatible changes**
|
data/README.md
CHANGED
|
@@ -18,7 +18,7 @@ library in isolation.
|
|
|
18
18
|
|
|
19
19
|
## Current Version
|
|
20
20
|
|
|
21
|
-
1.
|
|
21
|
+
1.1.0
|
|
22
22
|
|
|
23
23
|
## Requirements
|
|
24
24
|
|
|
@@ -465,7 +465,7 @@ Because the test helpers are optional, bundler will not automatically install
|
|
|
465
465
|
these dependencies. You will have to add the following gems to your own Gemfile:
|
|
466
466
|
|
|
467
467
|
* [rspec-rails](https://github.com/rspec/rspec-rails)
|
|
468
|
-
* [
|
|
468
|
+
* [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails)
|
|
469
469
|
* [webmock](https://github.com/bblimke/webmock)
|
|
470
470
|
|
|
471
471
|
#### Incompatibilities ####
|
|
@@ -654,7 +654,7 @@ method like so:
|
|
|
654
654
|
|
|
655
655
|
```ruby
|
|
656
656
|
describe 'my page' do
|
|
657
|
-
let(:user) {
|
|
657
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
658
658
|
|
|
659
659
|
before do
|
|
660
660
|
stub_g5_omniauth(user)
|
|
@@ -670,7 +670,7 @@ token using the `stub_invalid_access_token` helper:
|
|
|
670
670
|
|
|
671
671
|
```ruby
|
|
672
672
|
describe 'my API call' do
|
|
673
|
-
let(:user) {
|
|
673
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
674
674
|
|
|
675
675
|
before { login_user }
|
|
676
676
|
|
data/g5_authenticatable.gemspec
CHANGED
|
@@ -28,6 +28,6 @@ Gem::Specification.new do |spec|
|
|
|
28
28
|
spec.add_dependency 'pundit', '~> 1.0'
|
|
29
29
|
spec.add_dependency 'g5_updatable', '> 0.6.0'
|
|
30
30
|
|
|
31
|
-
spec.add_development_dependency '
|
|
31
|
+
spec.add_development_dependency 'factory_bot_rails', '~> 4.8'
|
|
32
32
|
spec.add_development_dependency 'webmock'
|
|
33
33
|
end
|
|
@@ -17,13 +17,13 @@ module G5Authenticatable
|
|
|
17
17
|
end
|
|
18
18
|
|
|
19
19
|
RSpec.shared_context 'auth controller' do
|
|
20
|
-
let(:user) {
|
|
20
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
21
21
|
include_context 'authorization controller'
|
|
22
22
|
end
|
|
23
23
|
|
|
24
24
|
RSpec.shared_context 'super admin auth controller' do
|
|
25
25
|
let(:user) do
|
|
26
|
-
user =
|
|
26
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
27
27
|
user.add_role(:super_admin)
|
|
28
28
|
user
|
|
29
29
|
end
|
|
@@ -32,7 +32,7 @@ end
|
|
|
32
32
|
|
|
33
33
|
RSpec.shared_context 'admin auth controller' do
|
|
34
34
|
let(:user) do
|
|
35
|
-
user =
|
|
35
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
36
36
|
user.add_role(:admin)
|
|
37
37
|
user
|
|
38
38
|
end
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
|
|
3
|
+
FactoryBot.define do
|
|
4
4
|
factory :g5_authenticatable_user, class: 'G5Authenticatable::User' do
|
|
5
5
|
sequence(:email) { |n| "test.user#{n}@test.host" }
|
|
6
6
|
provider 'g5'
|
|
@@ -16,28 +16,28 @@ FactoryGirl.define do
|
|
|
16
16
|
factory :g5_authenticatable_super_admin, parent: :g5_authenticatable_user do
|
|
17
17
|
after(:build) do |user|
|
|
18
18
|
user.roles.clear
|
|
19
|
-
user.roles <<
|
|
19
|
+
user.roles << FactoryBot.build(:g5_authenticatable_super_admin_role)
|
|
20
20
|
end
|
|
21
21
|
end
|
|
22
22
|
|
|
23
23
|
factory :g5_authenticatable_admin, parent: :g5_authenticatable_user do
|
|
24
24
|
after(:build) do |user|
|
|
25
25
|
user.roles.clear
|
|
26
|
-
user.roles <<
|
|
26
|
+
user.roles << FactoryBot.build(:g5_authenticatable_admin_role)
|
|
27
27
|
end
|
|
28
28
|
end
|
|
29
29
|
|
|
30
30
|
factory :g5_authenticatable_editor, parent: :g5_authenticatable_user do
|
|
31
31
|
after(:build) do |user|
|
|
32
32
|
user.roles.clear
|
|
33
|
-
user.roles <<
|
|
33
|
+
user.roles << FactoryBot.build(:g5_authenticatable_editor_role)
|
|
34
34
|
end
|
|
35
35
|
end
|
|
36
36
|
|
|
37
37
|
factory :g5_authenticatable_viewer, parent: :g5_authenticatable_user do
|
|
38
38
|
after(:build) do |user|
|
|
39
39
|
user.roles.clear
|
|
40
|
-
user.roles <<
|
|
40
|
+
user.roles << FactoryBot.build(:g5_authenticatable_viewer_role)
|
|
41
41
|
end
|
|
42
42
|
end
|
|
43
43
|
end
|
|
@@ -1,6 +1,19 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
|
|
3
|
+
# TODO: drop factory_girl support and force people to upgrade
|
|
4
|
+
# once g5_updatable factories are using the FactoryBot constant
|
|
5
|
+
begin
|
|
6
|
+
# We need to define the aliased constant before the *_rails gem
|
|
7
|
+
# tries to load any factory definitions
|
|
8
|
+
require 'factory_bot'
|
|
9
|
+
FactoryGirl = FactoryBot
|
|
10
|
+
require 'factory_bot_rails'
|
|
11
|
+
rescue LoadError
|
|
12
|
+
require 'factory_girl'
|
|
13
|
+
FactoryBot = FactoryGirl
|
|
14
|
+
require 'factory_girl_rails'
|
|
15
|
+
end
|
|
16
|
+
|
|
4
17
|
require 'g5_authenticatable/test/factories/roles'
|
|
5
18
|
require 'g5_authenticatable/test/factories/global_users'
|
|
6
19
|
require 'g5_authenticatable/test/factories/client_users'
|
|
@@ -20,7 +20,7 @@ end
|
|
|
20
20
|
RSpec.shared_context 'auth request' do
|
|
21
21
|
include G5Authenticatable::Test::RequestHelpers
|
|
22
22
|
|
|
23
|
-
let(:user) {
|
|
23
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
24
24
|
|
|
25
25
|
before do
|
|
26
26
|
login_user(user)
|
data/spec/factories/post.rb
CHANGED
|
@@ -6,13 +6,13 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
6
6
|
describe 'Posts index' do
|
|
7
7
|
let(:visit_posts_index) { visit_path_and_login_with(posts_path, user) }
|
|
8
8
|
|
|
9
|
-
let!(:post) {
|
|
10
|
-
let!(:other_post) {
|
|
9
|
+
let!(:post) { FactoryBot.create(:post, author: user) }
|
|
10
|
+
let!(:other_post) { FactoryBot.create(:post) }
|
|
11
11
|
|
|
12
12
|
before { visit_posts_index }
|
|
13
13
|
|
|
14
14
|
context 'when authenticated user is a super admin' do
|
|
15
|
-
let(:user) {
|
|
15
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
16
16
|
|
|
17
17
|
it 'renders the posts index page' do
|
|
18
18
|
expect(current_path).to eq(posts_path)
|
|
@@ -28,7 +28,7 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
28
28
|
end
|
|
29
29
|
|
|
30
30
|
context 'when authenticated user is not a super admin' do
|
|
31
|
-
let(:user) {
|
|
31
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
32
32
|
|
|
33
33
|
it 'displays an error message' do
|
|
34
34
|
expect(page).to have_content(/forbidden/i)
|
|
@@ -47,12 +47,12 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
47
47
|
describe 'Show post' do
|
|
48
48
|
let(:show_post) { visit_path_and_login_with(post_path(post.id), user) }
|
|
49
49
|
|
|
50
|
-
let!(:post) {
|
|
50
|
+
let!(:post) { FactoryBot.create(:post, author: user) }
|
|
51
51
|
|
|
52
52
|
before { show_post }
|
|
53
53
|
|
|
54
54
|
context 'when authenticated user is a super_admin' do
|
|
55
|
-
let(:user) {
|
|
55
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
56
56
|
|
|
57
57
|
it 'renders the show post page' do
|
|
58
58
|
expect(current_path).to eq(post_path(post.id))
|
|
@@ -64,7 +64,7 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
64
64
|
end
|
|
65
65
|
|
|
66
66
|
context 'when authenticated user is not a super_admin' do
|
|
67
|
-
let(:user) {
|
|
67
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
68
68
|
|
|
69
69
|
it 'displays an error message' do
|
|
70
70
|
expect(page).to have_content(/forbidden/i)
|
|
@@ -82,7 +82,7 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
82
82
|
before { visit_new_post }
|
|
83
83
|
|
|
84
84
|
context 'when authenticated user is a super admin' do
|
|
85
|
-
let(:user) {
|
|
85
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
86
86
|
|
|
87
87
|
it 'renders the new post page' do
|
|
88
88
|
expect(current_path).to eq(new_post_path)
|
|
@@ -94,7 +94,7 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
94
94
|
end
|
|
95
95
|
|
|
96
96
|
context 'when authenticated user is not a super admin' do
|
|
97
|
-
let(:user) {
|
|
97
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
98
98
|
|
|
99
99
|
it 'displays an error message' do
|
|
100
100
|
expect(page).to have_content(/forbidden/i)
|
|
@@ -114,8 +114,8 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
114
114
|
fill_in 'Content', with: post.content
|
|
115
115
|
end
|
|
116
116
|
|
|
117
|
-
let(:post) {
|
|
118
|
-
let(:user) {
|
|
117
|
+
let(:post) { FactoryBot.build(:post, author: user) }
|
|
118
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
119
119
|
|
|
120
120
|
context 'when authenticated user is a super admin' do
|
|
121
121
|
it 'renders the flash message' do
|
|
@@ -155,10 +155,10 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
155
155
|
end
|
|
156
156
|
before { edit_post }
|
|
157
157
|
|
|
158
|
-
let(:post) {
|
|
158
|
+
let(:post) { FactoryBot.create(:post, author: user) }
|
|
159
159
|
|
|
160
160
|
context 'when authenticated user is a super admin' do
|
|
161
|
-
let(:user) {
|
|
161
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
162
162
|
|
|
163
163
|
it 'renders the edit post page' do
|
|
164
164
|
expect(current_path).to eq(edit_post_path(post.id))
|
|
@@ -170,7 +170,7 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
170
170
|
end
|
|
171
171
|
|
|
172
172
|
context 'when authenticated user is not a super admin' do
|
|
173
|
-
let(:user) {
|
|
173
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
174
174
|
|
|
175
175
|
it 'displays an error message' do
|
|
176
176
|
expect(page).to have_content(/forbidden/i)
|
|
@@ -190,8 +190,8 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
190
190
|
fill_in 'Content', with: new_content
|
|
191
191
|
end
|
|
192
192
|
|
|
193
|
-
let(:post) {
|
|
194
|
-
let(:user) {
|
|
193
|
+
let(:post) { FactoryBot.create(:post, author: user) }
|
|
194
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
195
195
|
let(:new_content) { 'My updated post content' }
|
|
196
196
|
|
|
197
197
|
context 'when authenticated user is a super admin' do
|
|
@@ -226,8 +226,8 @@ RSpec.describe 'Default role-based authorization UI' do
|
|
|
226
226
|
describe 'Delete post' do
|
|
227
227
|
subject(:delete_post) { click_link 'Destroy' }
|
|
228
228
|
|
|
229
|
-
let!(:post) {
|
|
230
|
-
let(:user) {
|
|
229
|
+
let!(:post) { FactoryBot.create(:post, author: user) }
|
|
230
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
231
231
|
|
|
232
232
|
before { visit_path_and_login_with(posts_path, user) }
|
|
233
233
|
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
require 'rails_helper'
|
|
4
4
|
|
|
5
5
|
RSpec.describe 'Signing in' do
|
|
6
|
-
let(:user) {
|
|
6
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_viewer) }
|
|
7
7
|
|
|
8
8
|
context 'from a login link' do
|
|
9
9
|
subject(:login) { click_link 'Login' }
|
|
@@ -43,7 +43,7 @@ RSpec.describe 'Signing in' do
|
|
|
43
43
|
let(:updated_organization_name) { "Updated #{user.organization_name}" }
|
|
44
44
|
let(:updated_access_token) { "updated-#{user.g5_access_token}-123" }
|
|
45
45
|
let(:updated_role) do
|
|
46
|
-
|
|
46
|
+
FactoryBot.create(:g5_authenticatable_super_admin_role)
|
|
47
47
|
end
|
|
48
48
|
|
|
49
49
|
it 'should sign in the user successfully' do
|
|
@@ -136,10 +136,10 @@ RSpec.describe 'Signing in' do
|
|
|
136
136
|
end
|
|
137
137
|
|
|
138
138
|
let(:user_attributes) do
|
|
139
|
-
|
|
139
|
+
FactoryBot.attributes_for(:g5_authenticatable_user)
|
|
140
140
|
end
|
|
141
141
|
let(:role_attributes) do
|
|
142
|
-
|
|
142
|
+
FactoryBot.attributes_for(:g5_authenticatable_editor_role)
|
|
143
143
|
end
|
|
144
144
|
|
|
145
145
|
it 'should sign in the user successfully' do
|
|
@@ -7,7 +7,7 @@ RSpec.describe 'UI Token validation' do
|
|
|
7
7
|
before { G5Authenticatable.strict_token_validation = true }
|
|
8
8
|
|
|
9
9
|
context 'when user has a valid g5 access token' do
|
|
10
|
-
let(:user) {
|
|
10
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
11
11
|
|
|
12
12
|
before do
|
|
13
13
|
stub_g5_omniauth(user)
|
|
@@ -27,7 +27,7 @@ RSpec.describe 'UI Token validation' do
|
|
|
27
27
|
end
|
|
28
28
|
|
|
29
29
|
context 'when user access token becomes invalid' do
|
|
30
|
-
let(:user) {
|
|
30
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
31
31
|
|
|
32
32
|
before do
|
|
33
33
|
# User access token is valid at sign in
|
|
@@ -67,7 +67,7 @@ RSpec.describe 'UI Token validation' do
|
|
|
67
67
|
end
|
|
68
68
|
|
|
69
69
|
context 'when user access token has become invalid' do
|
|
70
|
-
let(:user) {
|
|
70
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
71
71
|
|
|
72
72
|
before do
|
|
73
73
|
stub_g5_omniauth(user)
|
|
@@ -5,7 +5,7 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe G5Authenticatable::Role do
|
|
6
6
|
subject { role }
|
|
7
7
|
let(:role) { G5Authenticatable::Role.new(role_attributes) }
|
|
8
|
-
let(:role_attributes) {
|
|
8
|
+
let(:role_attributes) { FactoryBot.attributes_for(:g5_authenticatable_role) }
|
|
9
9
|
|
|
10
10
|
it { is_expected.to have_and_belong_to_many(:users) }
|
|
11
11
|
it { is_expected.to belong_to(:resource) }
|
|
@@ -17,10 +17,10 @@ RSpec.describe G5Authenticatable::Role do
|
|
|
17
17
|
describe '.global' do
|
|
18
18
|
subject(:global) { G5Authenticatable::Role.global }
|
|
19
19
|
let!(:global_role) { user.roles.first }
|
|
20
|
-
let(:user) {
|
|
20
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_viewer) }
|
|
21
21
|
|
|
22
22
|
let!(:scoped_role) do
|
|
23
|
-
|
|
23
|
+
FactoryBot.create(:g5_authenticatable_role,
|
|
24
24
|
resource: user)
|
|
25
25
|
end
|
|
26
26
|
|
|
@@ -37,15 +37,15 @@ RSpec.describe G5Authenticatable::Role do
|
|
|
37
37
|
subject(:class_scoped) do
|
|
38
38
|
G5Authenticatable::Role.class_scoped(G5Authenticatable::User)
|
|
39
39
|
end
|
|
40
|
-
let!(:global_role) {
|
|
40
|
+
let!(:global_role) { FactoryBot.create(:g5_authenticatable_role) }
|
|
41
41
|
let!(:class_scoped_role) do
|
|
42
|
-
|
|
42
|
+
FactoryBot.create(:g5_authenticatable_role,
|
|
43
43
|
resource_type: 'G5Authenticatable::User')
|
|
44
44
|
end
|
|
45
45
|
let!(:instance_scoped_role) do
|
|
46
|
-
|
|
46
|
+
FactoryBot.create(:g5_authenticatable_role, resource: user)
|
|
47
47
|
end
|
|
48
|
-
let(:user) {
|
|
48
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
49
49
|
|
|
50
50
|
it 'should match one role' do
|
|
51
51
|
expect(class_scoped.count).to eq(1)
|
|
@@ -58,21 +58,21 @@ RSpec.describe G5Authenticatable::Role do
|
|
|
58
58
|
|
|
59
59
|
describe '.instance_scoped' do
|
|
60
60
|
subject(:instance_scoped) { G5Authenticatable::Role.instance_scoped(user) }
|
|
61
|
-
let!(:global_role) {
|
|
61
|
+
let!(:global_role) { FactoryBot.create(:g5_authenticatable_role) }
|
|
62
62
|
let!(:class_scoped_role) do
|
|
63
|
-
|
|
63
|
+
FactoryBot.create(:g5_authenticatable_role,
|
|
64
64
|
resource_type: 'G5Authenticatable::User')
|
|
65
65
|
end
|
|
66
66
|
|
|
67
67
|
let!(:user_scoped_role) do
|
|
68
|
-
|
|
68
|
+
FactoryBot.create(:g5_authenticatable_role, resource: user)
|
|
69
69
|
end
|
|
70
|
-
let(:user) {
|
|
70
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
71
71
|
|
|
72
72
|
let!(:other_user_scoped_role) do
|
|
73
|
-
|
|
73
|
+
FactoryBot.create(:g5_authenticatable_role, resource: other_user)
|
|
74
74
|
end
|
|
75
|
-
let(:other_user) {
|
|
75
|
+
let(:other_user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
76
76
|
|
|
77
77
|
it 'should match one role' do
|
|
78
78
|
expect(instance_scoped.count).to eq(1)
|
|
@@ -5,7 +5,7 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe G5Authenticatable::User do
|
|
6
6
|
subject { user }
|
|
7
7
|
let(:user) { G5Authenticatable::User.create(user_attributes) }
|
|
8
|
-
let(:user_attributes) {
|
|
8
|
+
let(:user_attributes) { FactoryBot.attributes_for(:g5_authenticatable_user) }
|
|
9
9
|
|
|
10
10
|
it { is_expected.to have_and_belong_to_many(:roles) }
|
|
11
11
|
|
|
@@ -96,10 +96,10 @@ RSpec.describe G5Authenticatable::User do
|
|
|
96
96
|
end
|
|
97
97
|
|
|
98
98
|
let(:new_user_attributes) do
|
|
99
|
-
|
|
99
|
+
FactoryBot.attributes_for(:g5_authenticatable_user)
|
|
100
100
|
end
|
|
101
101
|
let(:new_role_attributes) do
|
|
102
|
-
|
|
102
|
+
FactoryBot.attributes_for(:g5_authenticatable_role)
|
|
103
103
|
end
|
|
104
104
|
|
|
105
105
|
it 'has the correct uid' do
|
|
@@ -177,10 +177,10 @@ RSpec.describe G5Authenticatable::User do
|
|
|
177
177
|
end
|
|
178
178
|
|
|
179
179
|
let(:new_user_attributes) do
|
|
180
|
-
|
|
180
|
+
FactoryBot.attributes_for(:g5_authenticatable_user)
|
|
181
181
|
end
|
|
182
182
|
let(:new_role_attributes) do
|
|
183
|
-
|
|
183
|
+
FactoryBot.attributes_for(:g5_authenticatable_role)
|
|
184
184
|
end
|
|
185
185
|
|
|
186
186
|
context 'when there is auth data in the session' do
|
|
@@ -280,7 +280,7 @@ RSpec.describe G5Authenticatable::User do
|
|
|
280
280
|
end
|
|
281
281
|
|
|
282
282
|
let(:user_attributes) do
|
|
283
|
-
|
|
283
|
+
FactoryBot.attributes_for(:g5_authenticatable_user,
|
|
284
284
|
first_name: nil,
|
|
285
285
|
last_name: nil,
|
|
286
286
|
phone_number: nil,
|
|
@@ -442,7 +442,7 @@ RSpec.describe G5Authenticatable::User do
|
|
|
442
442
|
subject(:add_role) { user.add_role(role_name) }
|
|
443
443
|
|
|
444
444
|
context 'when role already exists' do
|
|
445
|
-
let(:role) {
|
|
445
|
+
let(:role) { FactoryBot.create(:g5_authenticatable_role) }
|
|
446
446
|
let(:role_name) { role.name }
|
|
447
447
|
|
|
448
448
|
it 'should assign a role to the user' do
|
|
@@ -496,10 +496,10 @@ RSpec.describe G5Authenticatable::User do
|
|
|
496
496
|
|
|
497
497
|
let(:user2) { G5Authenticatable::User.create(user_attributes) }
|
|
498
498
|
let(:user_attributes2) do
|
|
499
|
-
|
|
499
|
+
FactoryBot.attributes_for(:g5_authenticatable_user)
|
|
500
500
|
end
|
|
501
501
|
|
|
502
|
-
let!(:resource) {
|
|
502
|
+
let!(:resource) { FactoryBot.create(:g5_updatable_client) }
|
|
503
503
|
|
|
504
504
|
let(:auth_data) do
|
|
505
505
|
OmniAuth::AuthHash.new(
|
data/spec/models/post_spec.rb
CHANGED
|
@@ -5,8 +5,8 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe ApplicationPolicy do
|
|
6
6
|
subject(:policy) { described_class }
|
|
7
7
|
|
|
8
|
-
let(:user) {
|
|
9
|
-
let(:record) {
|
|
8
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
9
|
+
let(:record) { FactoryBot.create(:post) }
|
|
10
10
|
|
|
11
11
|
permissions :index? do
|
|
12
12
|
it_behaves_like 'a super_admin authorizer'
|
|
@@ -14,14 +14,14 @@ RSpec.describe ApplicationPolicy do
|
|
|
14
14
|
|
|
15
15
|
permissions :show? do
|
|
16
16
|
context 'when user is a super_admin' do
|
|
17
|
-
let(:user) {
|
|
17
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
18
18
|
|
|
19
19
|
context 'when record exists in scope' do
|
|
20
20
|
it { is_expected.to permit(user, record) }
|
|
21
21
|
end
|
|
22
22
|
|
|
23
23
|
context 'when record does not exist in scope' do
|
|
24
|
-
let(:record) {
|
|
24
|
+
let(:record) { FactoryBot.build(:post) }
|
|
25
25
|
|
|
26
26
|
it { is_expected.to_not permit(user, record) }
|
|
27
27
|
end
|
|
@@ -75,7 +75,7 @@ RSpec.describe ApplicationPolicy do
|
|
|
75
75
|
end
|
|
76
76
|
|
|
77
77
|
context 'when user has the super_admin role' do
|
|
78
|
-
let(:user) {
|
|
78
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
79
79
|
|
|
80
80
|
it { is_expected.to eq(true) }
|
|
81
81
|
end
|
|
@@ -95,7 +95,7 @@ RSpec.describe ApplicationPolicy do
|
|
|
95
95
|
end
|
|
96
96
|
|
|
97
97
|
context 'when user has the admin role' do
|
|
98
|
-
let(:user) {
|
|
98
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_admin) }
|
|
99
99
|
|
|
100
100
|
it { is_expected.to eq(true) }
|
|
101
101
|
end
|
|
@@ -115,7 +115,7 @@ RSpec.describe ApplicationPolicy do
|
|
|
115
115
|
end
|
|
116
116
|
|
|
117
117
|
context 'when user has the editor role' do
|
|
118
|
-
let(:user) {
|
|
118
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_editor) }
|
|
119
119
|
|
|
120
120
|
it { is_expected.to eq(true) }
|
|
121
121
|
end
|
|
@@ -131,13 +131,13 @@ RSpec.describe ApplicationPolicy do
|
|
|
131
131
|
end
|
|
132
132
|
|
|
133
133
|
context 'when user does not have viewer role' do
|
|
134
|
-
let(:user) {
|
|
134
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_editor) }
|
|
135
135
|
|
|
136
136
|
it { is_expected.to eq(false) }
|
|
137
137
|
end
|
|
138
138
|
|
|
139
139
|
context 'when user has the viewer role' do
|
|
140
|
-
let(:user) {
|
|
140
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_viewer) }
|
|
141
141
|
|
|
142
142
|
it { is_expected.to eq(true) }
|
|
143
143
|
end
|
|
@@ -147,35 +147,35 @@ RSpec.describe ApplicationPolicy do
|
|
|
147
147
|
subject(:global_role?) { policy.new(user, record).global_role? }
|
|
148
148
|
|
|
149
149
|
let(:scoped_role) do
|
|
150
|
-
|
|
150
|
+
FactoryBot.create(:g5_authenticatable_role, name: role_name,
|
|
151
151
|
resource: resource)
|
|
152
152
|
end
|
|
153
|
-
let(:resource) {
|
|
153
|
+
let(:resource) { FactoryBot.create(:g5_updatable_client) }
|
|
154
154
|
|
|
155
155
|
context 'when there is no user' do
|
|
156
156
|
it { is_expected.to eq(false) }
|
|
157
157
|
end
|
|
158
158
|
|
|
159
159
|
context 'when the user is a global super admin' do
|
|
160
|
-
let(:user) {
|
|
160
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
161
161
|
|
|
162
162
|
it { is_expected.to eq(true) }
|
|
163
163
|
end
|
|
164
164
|
|
|
165
165
|
context 'when the user is a global admin' do
|
|
166
|
-
let(:user) {
|
|
166
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_admin) }
|
|
167
167
|
|
|
168
168
|
it { is_expected.to eq(true) }
|
|
169
169
|
end
|
|
170
170
|
|
|
171
171
|
context 'when the user is a global editor' do
|
|
172
|
-
let(:user) {
|
|
172
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_editor) }
|
|
173
173
|
|
|
174
174
|
it { is_expected.to eq(true) }
|
|
175
175
|
end
|
|
176
176
|
|
|
177
177
|
context 'when the user is a global viewer' do
|
|
178
|
-
let(:user) {
|
|
178
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_viewer) }
|
|
179
179
|
|
|
180
180
|
it { is_expected.to eq(true) }
|
|
181
181
|
end
|
|
@@ -5,8 +5,8 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe G5Updatable::ClientPolicy do
|
|
6
6
|
subject(:policy) { described_class }
|
|
7
7
|
|
|
8
|
-
let(:user) {
|
|
9
|
-
let(:user2) {
|
|
8
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
9
|
+
let(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
10
10
|
|
|
11
11
|
before do
|
|
12
12
|
user.roles = []
|
|
@@ -14,9 +14,9 @@ RSpec.describe G5Updatable::ClientPolicy do
|
|
|
14
14
|
user2.add_role(:viewer, client_1)
|
|
15
15
|
end
|
|
16
16
|
|
|
17
|
-
let!(:client_1) {
|
|
18
|
-
let!(:client_2) {
|
|
19
|
-
let!(:client_3) {
|
|
17
|
+
let!(:client_1) { FactoryBot.create(:g5_updatable_client) }
|
|
18
|
+
let!(:client_2) { FactoryBot.create(:g5_updatable_client) }
|
|
19
|
+
let!(:client_3) { FactoryBot.create(:g5_updatable_client) }
|
|
20
20
|
|
|
21
21
|
describe '.resolve' do
|
|
22
22
|
subject do
|
|
@@ -5,24 +5,24 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe G5Updatable::LocationPolicy do
|
|
6
6
|
subject(:policy) { described_class }
|
|
7
7
|
|
|
8
|
-
let(:user) {
|
|
9
|
-
let(:user2) {
|
|
8
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
9
|
+
let(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
10
10
|
|
|
11
|
-
let!(:client_1) {
|
|
12
|
-
let!(:client_2) {
|
|
11
|
+
let!(:client_1) { FactoryBot.create(:g5_updatable_client) }
|
|
12
|
+
let!(:client_2) { FactoryBot.create(:g5_updatable_client) }
|
|
13
13
|
|
|
14
14
|
let!(:location_1) do
|
|
15
|
-
|
|
15
|
+
FactoryBot.create(:g5_updatable_location, client: client_1)
|
|
16
16
|
end
|
|
17
17
|
let!(:location_2) do
|
|
18
|
-
|
|
18
|
+
FactoryBot.create(:g5_updatable_location, client: client_1)
|
|
19
19
|
end
|
|
20
20
|
|
|
21
21
|
let!(:location_3) do
|
|
22
|
-
|
|
22
|
+
FactoryBot.create(:g5_updatable_location, client: client_2)
|
|
23
23
|
end
|
|
24
24
|
let!(:location_4) do
|
|
25
|
-
|
|
25
|
+
FactoryBot.create(:g5_updatable_location, client: client_2)
|
|
26
26
|
end
|
|
27
27
|
|
|
28
28
|
before do
|
|
@@ -5,8 +5,8 @@ require 'rails_helper'
|
|
|
5
5
|
RSpec.describe G5Updatable::SelectableClientPolicy do
|
|
6
6
|
subject(:policy) { described_class }
|
|
7
7
|
|
|
8
|
-
let(:user) {
|
|
9
|
-
let(:user2) {
|
|
8
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
9
|
+
let(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
10
10
|
|
|
11
11
|
before do
|
|
12
12
|
user.roles = []
|
|
@@ -14,9 +14,9 @@ RSpec.describe G5Updatable::SelectableClientPolicy do
|
|
|
14
14
|
user2.add_role(:viewer, client_1)
|
|
15
15
|
end
|
|
16
16
|
|
|
17
|
-
let!(:client_1) {
|
|
18
|
-
let!(:client_2) {
|
|
19
|
-
let!(:client_3) {
|
|
17
|
+
let!(:client_1) { FactoryBot.create(:g5_updatable_client) }
|
|
18
|
+
let!(:client_2) { FactoryBot.create(:g5_updatable_client) }
|
|
19
|
+
let!(:client_3) { FactoryBot.create(:g5_updatable_client) }
|
|
20
20
|
|
|
21
21
|
describe '.resolve' do
|
|
22
22
|
subject do
|
|
@@ -25,17 +25,17 @@ RSpec.describe G5Updatable::SelectableClientPolicy do
|
|
|
25
25
|
end
|
|
26
26
|
|
|
27
27
|
let!(:location_1) do
|
|
28
|
-
|
|
28
|
+
FactoryBot.create(:g5_updatable_location, client: client_1)
|
|
29
29
|
end
|
|
30
30
|
let!(:location_2) do
|
|
31
|
-
|
|
31
|
+
FactoryBot.create(:g5_updatable_location, client: client_1)
|
|
32
32
|
end
|
|
33
33
|
|
|
34
34
|
let!(:location_3) do
|
|
35
|
-
|
|
35
|
+
FactoryBot.create(:g5_updatable_location, client: client_2)
|
|
36
36
|
end
|
|
37
37
|
let!(:location_4) do
|
|
38
|
-
|
|
38
|
+
FactoryBot.create(:g5_updatable_location, client: client_2)
|
|
39
39
|
end
|
|
40
40
|
|
|
41
41
|
context 'with global role' do
|
|
@@ -8,13 +8,13 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
8
8
|
describe 'GET /posts', :auth_request do
|
|
9
9
|
subject(:get_posts) { safe_get posts_path, format: :json }
|
|
10
10
|
|
|
11
|
-
let!(:post) {
|
|
12
|
-
let!(:other_post) {
|
|
11
|
+
let!(:post) { FactoryBot.create(:post, author: user) }
|
|
12
|
+
let!(:other_post) { FactoryBot.create(:post) }
|
|
13
13
|
|
|
14
14
|
before { get_posts }
|
|
15
15
|
|
|
16
16
|
context 'when user is a super_admin' do
|
|
17
|
-
let(:user) {
|
|
17
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
18
18
|
|
|
19
19
|
it 'returns ok' do
|
|
20
20
|
expect(response).to be_ok
|
|
@@ -42,12 +42,12 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
42
42
|
describe 'GET /posts/:id', :auth_request do
|
|
43
43
|
subject(:show_post) { safe_get post_path(post.id), format: :json }
|
|
44
44
|
|
|
45
|
-
let(:post) {
|
|
45
|
+
let(:post) { FactoryBot.create(:post, author: user) }
|
|
46
46
|
|
|
47
47
|
before { show_post }
|
|
48
48
|
|
|
49
49
|
context 'when user is a super_admin' do
|
|
50
|
-
let(:user) {
|
|
50
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
51
51
|
|
|
52
52
|
it 'returns ok' do
|
|
53
53
|
expect(response).to be_ok
|
|
@@ -61,7 +61,7 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
61
61
|
end
|
|
62
62
|
|
|
63
63
|
context 'when user is not a super_admin' do
|
|
64
|
-
let(:user) {
|
|
64
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_viewer) }
|
|
65
65
|
|
|
66
66
|
it 'returns forbidden' do
|
|
67
67
|
expect(response).to be_forbidden
|
|
@@ -77,10 +77,10 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
77
77
|
let(:post_params) do
|
|
78
78
|
{ content: post_obj.content, author_id: post_obj.author.id }
|
|
79
79
|
end
|
|
80
|
-
let(:post_obj) {
|
|
80
|
+
let(:post_obj) { FactoryBot.build(:post, author: user) }
|
|
81
81
|
|
|
82
82
|
context 'when user is a super_admin' do
|
|
83
|
-
let(:user) {
|
|
83
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
84
84
|
|
|
85
85
|
it 'returns ok' do
|
|
86
86
|
create_post
|
|
@@ -112,10 +112,10 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
112
112
|
let(:post_params) do
|
|
113
113
|
{ content: 'some brand new content', author_id: post.author.id }
|
|
114
114
|
end
|
|
115
|
-
let(:post) {
|
|
115
|
+
let(:post) { FactoryBot.create(:post, author: user) }
|
|
116
116
|
|
|
117
117
|
context 'when user is a super_admin' do
|
|
118
|
-
let(:user) {
|
|
118
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
119
119
|
|
|
120
120
|
it 'returns ok' do
|
|
121
121
|
update_post
|
|
@@ -144,10 +144,10 @@ RSpec.describe 'Default role-based authorization API' do
|
|
|
144
144
|
safe_delete post_path(post.id), format: :json
|
|
145
145
|
end
|
|
146
146
|
|
|
147
|
-
let!(:post) {
|
|
147
|
+
let!(:post) { FactoryBot.create(:post, author: user) }
|
|
148
148
|
|
|
149
149
|
context 'when user is a super_admin' do
|
|
150
|
-
let(:user) {
|
|
150
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
151
151
|
|
|
152
152
|
it 'returns ok' do
|
|
153
153
|
delete_post
|
|
@@ -13,7 +13,7 @@ RSpec.describe 'API Token validation' do
|
|
|
13
13
|
before { G5Authenticatable.strict_token_validation = true }
|
|
14
14
|
|
|
15
15
|
context 'when user has a valid g5 access token' do
|
|
16
|
-
let(:user) {
|
|
16
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
17
17
|
|
|
18
18
|
before do
|
|
19
19
|
login_user(user)
|
|
@@ -29,7 +29,7 @@ RSpec.describe 'API Token validation' do
|
|
|
29
29
|
end
|
|
30
30
|
|
|
31
31
|
context 'when user has an invalid g5 access token' do
|
|
32
|
-
let(:user) {
|
|
32
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
33
33
|
|
|
34
34
|
before do
|
|
35
35
|
login_user(user)
|
|
@@ -56,7 +56,7 @@ RSpec.describe 'API Token validation' do
|
|
|
56
56
|
before { G5Authenticatable.strict_token_validation = false }
|
|
57
57
|
|
|
58
58
|
context 'when the user has an invalid g5 access token' do
|
|
59
|
-
let(:user) {
|
|
59
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
60
60
|
|
|
61
61
|
before do
|
|
62
62
|
login_user(user)
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
require 'rails_helper'
|
|
4
4
|
|
|
5
5
|
RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
6
|
-
let!(:user) {
|
|
6
|
+
let!(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
7
7
|
|
|
8
8
|
class MyImpersponateSessionableTest
|
|
9
9
|
include G5Authenticatable::ImpersonateSessionable
|
|
@@ -52,25 +52,25 @@ RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
|
52
52
|
|
|
53
53
|
context 'having a super admin and any other user' do
|
|
54
54
|
let!(:user) do
|
|
55
|
-
user =
|
|
55
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
56
56
|
user.add_role(:super_admin)
|
|
57
57
|
user
|
|
58
58
|
end
|
|
59
|
-
let!(:user2) {
|
|
59
|
+
let!(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
60
60
|
|
|
61
61
|
it { is_expected.to eq(true) }
|
|
62
62
|
end
|
|
63
63
|
|
|
64
64
|
context 'having an admin' do
|
|
65
65
|
let!(:user) do
|
|
66
|
-
user =
|
|
66
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
67
67
|
user.add_role(:admin)
|
|
68
68
|
user
|
|
69
69
|
end
|
|
70
70
|
|
|
71
71
|
context 'assuming a super admin' do
|
|
72
72
|
let!(:user2) do
|
|
73
|
-
user =
|
|
73
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
74
74
|
user.add_role(:super_admin)
|
|
75
75
|
user
|
|
76
76
|
end
|
|
@@ -80,7 +80,7 @@ RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
|
80
80
|
|
|
81
81
|
context 'assuming another admin' do
|
|
82
82
|
let!(:user2) do
|
|
83
|
-
user =
|
|
83
|
+
user = FactoryBot.create(:g5_authenticatable_user)
|
|
84
84
|
user.add_role(:admin)
|
|
85
85
|
user
|
|
86
86
|
end
|
|
@@ -89,7 +89,7 @@ RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
|
89
89
|
end
|
|
90
90
|
|
|
91
91
|
context 'assuming a regular user' do
|
|
92
|
-
let!(:user2) {
|
|
92
|
+
let!(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
93
93
|
|
|
94
94
|
it { is_expected.to eq(true) }
|
|
95
95
|
end
|
|
@@ -97,7 +97,7 @@ RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
|
97
97
|
|
|
98
98
|
context 'providing no user' do
|
|
99
99
|
context 'when user to impersonate is nil' do
|
|
100
|
-
let(:user) {
|
|
100
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
101
101
|
let(:user2) {}
|
|
102
102
|
|
|
103
103
|
it { is_expected.to eq(false) }
|
|
@@ -105,7 +105,7 @@ RSpec.describe G5Authenticatable::ImpersonateSessionable do
|
|
|
105
105
|
|
|
106
106
|
context 'when signed-in user is nil' do
|
|
107
107
|
let(:user) {}
|
|
108
|
-
let(:user2) {
|
|
108
|
+
let(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
109
109
|
|
|
110
110
|
it { is_expected.to eq(false) }
|
|
111
111
|
end
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
RSpec.shared_examples_for 'a super_admin authorizer' do
|
|
4
4
|
context 'when user is an admin' do
|
|
5
|
-
let(:user) {
|
|
5
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_admin) }
|
|
6
6
|
|
|
7
7
|
it 'denies access' do
|
|
8
8
|
expect(policy).to_not permit(user, record)
|
|
@@ -10,7 +10,7 @@ RSpec.shared_examples_for 'a super_admin authorizer' do
|
|
|
10
10
|
end
|
|
11
11
|
|
|
12
12
|
context 'when user is an editor' do
|
|
13
|
-
let(:user) {
|
|
13
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_editor) }
|
|
14
14
|
|
|
15
15
|
it 'denies access' do
|
|
16
16
|
expect(policy).to_not permit(user, record)
|
|
@@ -18,7 +18,7 @@ RSpec.shared_examples_for 'a super_admin authorizer' do
|
|
|
18
18
|
end
|
|
19
19
|
|
|
20
20
|
context 'when user is a viewer' do
|
|
21
|
-
let(:user) {
|
|
21
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
22
22
|
|
|
23
23
|
it 'denies access' do
|
|
24
24
|
expect(policy).to_not permit(user, record)
|
|
@@ -26,7 +26,7 @@ RSpec.shared_examples_for 'a super_admin authorizer' do
|
|
|
26
26
|
end
|
|
27
27
|
|
|
28
28
|
context 'when user has super_admin role' do
|
|
29
|
-
let(:user) {
|
|
29
|
+
let(:user) { FactoryBot.create(:g5_authenticatable_super_admin) }
|
|
30
30
|
|
|
31
31
|
it 'permits access' do
|
|
32
32
|
expect(policy).to permit(user, record)
|
|
@@ -17,7 +17,7 @@ RSpec.describe 'g5_authenticatable:purge_users' do
|
|
|
17
17
|
end
|
|
18
18
|
|
|
19
19
|
context 'when there is one local user' do
|
|
20
|
-
let!(:user) {
|
|
20
|
+
let!(:user) { FactoryBot.create(:g5_authenticatable_user) }
|
|
21
21
|
|
|
22
22
|
it 'should delete the user data from the db' do
|
|
23
23
|
expect { task.invoke }.to change { G5Authenticatable::User.count }.from(1).to(0)
|
|
@@ -25,8 +25,8 @@ RSpec.describe 'g5_authenticatable:purge_users' do
|
|
|
25
25
|
end
|
|
26
26
|
|
|
27
27
|
context 'when there are multiple local users' do
|
|
28
|
-
let!(:user1) {
|
|
29
|
-
let!(:user2) {
|
|
28
|
+
let!(:user1) { FactoryBot.create(:g5_authenticatable_user) }
|
|
29
|
+
let!(:user2) { FactoryBot.create(:g5_authenticatable_user) }
|
|
30
30
|
|
|
31
31
|
it 'should delete the user data from the db' do
|
|
32
32
|
expect { task.invoke }.to change { G5Authenticatable::User.count }.from(2).to(0)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: g5_authenticatable
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- maeve
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2017-
|
|
11
|
+
date: 2017-12-08 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: devise_g5_authenticatable
|
|
@@ -81,7 +81,7 @@ dependencies:
|
|
|
81
81
|
- !ruby/object:Gem::Version
|
|
82
82
|
version: 0.6.0
|
|
83
83
|
- !ruby/object:Gem::Dependency
|
|
84
|
-
name:
|
|
84
|
+
name: factory_bot_rails
|
|
85
85
|
requirement: !ruby/object:Gem::Requirement
|
|
86
86
|
requirements:
|
|
87
87
|
- - "~>"
|