graphql_devise 0.12.1 → 0.13.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (168) hide show
  1. checksums.yaml +4 -4
  2. data/.travis.yml +7 -0
  3. data/Appraisals +14 -0
  4. data/CHANGELOG.md +60 -0
  5. data/Gemfile +2 -0
  6. data/README.md +125 -82
  7. data/Rakefile +2 -0
  8. data/app/controllers/graphql_devise/application_controller.rb +2 -0
  9. data/app/controllers/graphql_devise/concerns/set_user_by_token.rb +12 -4
  10. data/app/controllers/graphql_devise/graphql_controller.rb +2 -0
  11. data/app/helpers/graphql_devise/application_helper.rb +2 -0
  12. data/app/helpers/graphql_devise/mailer_helper.rb +2 -0
  13. data/app/models/graphql_devise/concerns/model.rb +10 -0
  14. data/app/views/graphql_devise/mailer/confirmation_instructions.html.erb +1 -1
  15. data/app/views/graphql_devise/mailer/reset_password_instructions.html.erb +1 -1
  16. data/config/routes.rb +2 -0
  17. data/graphql_devise.gemspec +1 -1
  18. data/lib/generators/graphql_devise/install_generator.rb +3 -1
  19. data/lib/graphql_devise.rb +2 -0
  20. data/lib/graphql_devise/concerns/controller_methods.rb +2 -0
  21. data/lib/graphql_devise/default_operations/mutations.rb +2 -0
  22. data/lib/graphql_devise/default_operations/resolvers.rb +2 -0
  23. data/lib/graphql_devise/engine.rb +2 -0
  24. data/lib/graphql_devise/errors/authentication_error.rb +2 -0
  25. data/lib/graphql_devise/errors/detailed_user_error.rb +2 -0
  26. data/lib/graphql_devise/errors/error_codes.rb +2 -0
  27. data/lib/graphql_devise/errors/execution_error.rb +2 -0
  28. data/lib/graphql_devise/errors/user_error.rb +2 -0
  29. data/lib/graphql_devise/model/with_email_updater.rb +74 -0
  30. data/lib/graphql_devise/mount_method/operation_preparer.rb +2 -0
  31. data/lib/graphql_devise/mount_method/operation_preparers/custom_operation_preparer.rb +2 -0
  32. data/lib/graphql_devise/mount_method/operation_preparers/default_operation_preparer.rb +2 -0
  33. data/lib/graphql_devise/mount_method/operation_preparers/gql_name_setter.rb +2 -0
  34. data/lib/graphql_devise/mount_method/operation_preparers/mutation_field_setter.rb +2 -0
  35. data/lib/graphql_devise/mount_method/operation_preparers/resolver_type_setter.rb +2 -0
  36. data/lib/graphql_devise/mount_method/operation_preparers/resource_name_setter.rb +2 -0
  37. data/lib/graphql_devise/mount_method/operation_sanitizer.rb +2 -0
  38. data/lib/graphql_devise/mount_method/option_sanitizer.rb +2 -0
  39. data/lib/graphql_devise/mount_method/option_sanitizers/array_checker.rb +2 -0
  40. data/lib/graphql_devise/mount_method/option_sanitizers/class_checker.rb +2 -0
  41. data/lib/graphql_devise/mount_method/option_sanitizers/hash_checker.rb +2 -0
  42. data/lib/graphql_devise/mount_method/option_sanitizers/string_checker.rb +2 -0
  43. data/lib/graphql_devise/mount_method/option_validators/provided_operations_validator.rb +2 -0
  44. data/lib/graphql_devise/mount_method/option_validators/skip_only_validator.rb +2 -0
  45. data/lib/graphql_devise/mount_method/option_validators/supported_operations_validator.rb +2 -0
  46. data/lib/graphql_devise/mount_method/options_validator.rb +2 -0
  47. data/lib/graphql_devise/mount_method/supported_options.rb +2 -0
  48. data/lib/graphql_devise/mutations/base.rb +2 -0
  49. data/lib/graphql_devise/mutations/login.rb +2 -0
  50. data/lib/graphql_devise/mutations/logout.rb +2 -0
  51. data/lib/graphql_devise/mutations/resend_confirmation.rb +4 -1
  52. data/lib/graphql_devise/mutations/send_password_reset.rb +4 -1
  53. data/lib/graphql_devise/mutations/sign_up.rb +13 -3
  54. data/lib/graphql_devise/mutations/update_password.rb +2 -0
  55. data/lib/graphql_devise/rails/routes.rb +2 -0
  56. data/lib/graphql_devise/resolvers/base.rb +2 -0
  57. data/lib/graphql_devise/resolvers/check_password_token.rb +2 -0
  58. data/lib/graphql_devise/resolvers/confirm_account.rb +7 -2
  59. data/lib/graphql_devise/resolvers/dummy.rb +2 -0
  60. data/lib/graphql_devise/resource_loader.rb +2 -0
  61. data/lib/graphql_devise/schema.rb +2 -0
  62. data/lib/graphql_devise/schema_plugin.rb +30 -3
  63. data/lib/graphql_devise/types/authenticatable_type.rb +2 -0
  64. data/lib/graphql_devise/types/credential_type.rb +2 -0
  65. data/lib/graphql_devise/types/mutation_type.rb +2 -0
  66. data/lib/graphql_devise/types/query_type.rb +2 -0
  67. data/lib/graphql_devise/version.rb +3 -1
  68. data/spec/dummy/Rakefile +2 -0
  69. data/spec/dummy/app/controllers/api/v1/graphql_controller.rb +35 -4
  70. data/spec/dummy/app/controllers/application_controller.rb +2 -0
  71. data/spec/dummy/app/graphql/dummy_schema.rb +14 -2
  72. data/spec/dummy/app/graphql/interpreter_schema.rb +2 -0
  73. data/spec/dummy/app/graphql/mutations/login.rb +2 -0
  74. data/spec/dummy/app/graphql/mutations/register_confirmed_user.rb +2 -0
  75. data/spec/dummy/app/graphql/mutations/sign_up.rb +2 -0
  76. data/spec/dummy/app/graphql/mutations/update_user.rb +22 -0
  77. data/spec/dummy/app/graphql/resolvers/public_user.rb +2 -0
  78. data/spec/dummy/app/graphql/resolvers/user_show.rb +2 -0
  79. data/spec/dummy/app/graphql/types/base_object.rb +2 -0
  80. data/spec/dummy/app/graphql/types/custom_admin_type.rb +2 -0
  81. data/spec/dummy/app/graphql/types/mutation_type.rb +3 -0
  82. data/spec/dummy/app/graphql/types/query_type.rb +2 -0
  83. data/spec/dummy/app/graphql/types/user_type.rb +2 -0
  84. data/spec/dummy/app/jobs/application_job.rb +2 -0
  85. data/spec/dummy/app/mailers/application_mailer.rb +2 -0
  86. data/spec/dummy/app/models/admin.rb +2 -0
  87. data/spec/dummy/app/models/application_record.rb +2 -0
  88. data/spec/dummy/app/models/guest.rb +2 -0
  89. data/spec/dummy/app/models/schema_user.rb +13 -0
  90. data/spec/dummy/app/models/user.rb +2 -0
  91. data/spec/dummy/app/models/users.rb +2 -0
  92. data/spec/dummy/app/models/users/customer.rb +2 -0
  93. data/spec/dummy/config.ru +2 -0
  94. data/spec/dummy/config/application.rb +2 -0
  95. data/spec/dummy/config/environment.rb +2 -0
  96. data/spec/dummy/config/environments/development.rb +2 -0
  97. data/spec/dummy/config/environments/production.rb +2 -0
  98. data/spec/dummy/config/environments/test.rb +2 -0
  99. data/spec/dummy/config/initializers/application_controller_renderer.rb +2 -0
  100. data/spec/dummy/config/initializers/backtrace_silencers.rb +2 -0
  101. data/spec/dummy/config/initializers/cors.rb +2 -0
  102. data/spec/dummy/config/initializers/devise_token_auth.rb +2 -0
  103. data/spec/dummy/config/initializers/filter_parameter_logging.rb +2 -0
  104. data/spec/dummy/config/initializers/i18n.rb +2 -0
  105. data/spec/dummy/config/initializers/inflections.rb +2 -0
  106. data/spec/dummy/config/initializers/mime_types.rb +2 -0
  107. data/spec/dummy/config/initializers/wrap_parameters.rb +2 -0
  108. data/spec/dummy/config/puma.rb +2 -0
  109. data/spec/dummy/config/routes.rb +4 -0
  110. data/spec/dummy/config/spring.rb +2 -0
  111. data/spec/dummy/db/migrate/20190815114303_create_users.rb +2 -0
  112. data/spec/dummy/db/migrate/20190824215150_add_auth_available_to_users.rb +2 -0
  113. data/spec/dummy/db/migrate/20190916012505_create_admins.rb +2 -0
  114. data/spec/dummy/db/migrate/20191013213045_create_guests.rb +2 -0
  115. data/spec/dummy/db/migrate/20200321121807_create_users_customers.rb +2 -0
  116. data/spec/dummy/db/migrate/20200621182414_remove_uncofirmed_email_from_admins.rb +7 -0
  117. data/spec/dummy/db/migrate/20200623003142_create_schema_users.rb +46 -0
  118. data/spec/dummy/db/schema.rb +30 -2
  119. data/spec/dummy/db/seeds.rb +2 -0
  120. data/spec/factories/admins.rb +2 -0
  121. data/spec/factories/guests.rb +2 -0
  122. data/spec/factories/schema_users.rb +13 -0
  123. data/spec/factories/users.rb +2 -0
  124. data/spec/factories/users_customers.rb +2 -0
  125. data/spec/generators/graphql_devise/install_generator_spec.rb +3 -1
  126. data/spec/graphql_devise/model/with_email_updater_spec.rb +131 -0
  127. data/spec/graphql_devise_spec.rb +2 -0
  128. data/spec/models/user_spec.rb +2 -0
  129. data/spec/rails_helper.rb +3 -0
  130. data/spec/requests/graphql_controller_spec.rb +2 -0
  131. data/spec/requests/mutations/additional_mutations_spec.rb +2 -0
  132. data/spec/requests/mutations/additional_queries_spec.rb +2 -0
  133. data/spec/requests/mutations/login_spec.rb +2 -0
  134. data/spec/requests/mutations/logout_spec.rb +2 -0
  135. data/spec/requests/mutations/resend_confirmation_spec.rb +45 -16
  136. data/spec/requests/mutations/send_password_reset_spec.rb +37 -12
  137. data/spec/requests/mutations/sign_up_spec.rb +15 -2
  138. data/spec/requests/mutations/update_password_spec.rb +2 -0
  139. data/spec/requests/queries/check_password_token_spec.rb +2 -0
  140. data/spec/requests/queries/confirm_account_spec.rb +9 -1
  141. data/spec/requests/user_controller_spec.rb +65 -7
  142. data/spec/services/mount_method/operation_preparer_spec.rb +2 -0
  143. data/spec/services/mount_method/operation_preparers/custom_operation_preparer_spec.rb +2 -0
  144. data/spec/services/mount_method/operation_preparers/default_operation_preparer_spec.rb +2 -0
  145. data/spec/services/mount_method/operation_preparers/gql_name_setter_spec.rb +2 -0
  146. data/spec/services/mount_method/operation_preparers/mutation_field_setter_spec.rb +2 -0
  147. data/spec/services/mount_method/operation_preparers/resolver_type_setter_spec.rb +2 -0
  148. data/spec/services/mount_method/operation_preparers/resource_name_setter_spec.rb +2 -0
  149. data/spec/services/mount_method/operation_sanitizer_spec.rb +2 -0
  150. data/spec/services/mount_method/option_sanitizer_spec.rb +2 -0
  151. data/spec/services/mount_method/option_sanitizers/array_checker_spec.rb +2 -0
  152. data/spec/services/mount_method/option_sanitizers/class_checker_spec.rb +2 -0
  153. data/spec/services/mount_method/option_sanitizers/hash_checker_spec.rb +2 -0
  154. data/spec/services/mount_method/option_sanitizers/string_checker_spec.rb +2 -0
  155. data/spec/services/mount_method/option_validators/provided_operations_validator_spec.rb +2 -0
  156. data/spec/services/mount_method/option_validators/skip_only_validator_spec.rb +2 -0
  157. data/spec/services/mount_method/option_validators/supported_operations_validator_spec.rb +2 -0
  158. data/spec/services/mount_method/options_validator_spec.rb +2 -0
  159. data/spec/services/resource_loader_spec.rb +2 -0
  160. data/spec/services/schema_plugin_spec.rb +2 -0
  161. data/spec/spec_helper.rb +2 -0
  162. data/spec/support/contexts/graphql_request.rb +2 -0
  163. data/spec/support/factory_bot.rb +2 -0
  164. data/spec/support/matchers/auth_headers_matcher.rb +2 -0
  165. data/spec/support/matchers/not_change_matcher.rb +2 -0
  166. data/spec/support/requests/auth_helpers.rb +2 -0
  167. data/spec/support/requests/json_helpers.rb +2 -0
  168. metadata +17 -4
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  RSpec.describe GraphqlDevise do
2
4
  it 'has a version number' do
3
5
  expect(GraphqlDevise::VERSION).not_to be_nil
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe User do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  ENV['RAILS_ENV'] ||= 'test'
@@ -42,4 +44,5 @@ RSpec.configure do |config|
42
44
  config.before(:suite) do
43
45
  ActionController::Base.allow_forgery_protection = true
44
46
  end
47
+ config.before { ActionMailer::Base.deliveries.clear }
45
48
  end
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::GraphqlController do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Additional Mutations' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Additional Queries' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Login Requests' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Logout Requests' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Resend confirmation' do
@@ -21,25 +23,52 @@ RSpec.describe 'Resend confirmation' do
21
23
  end
22
24
 
23
25
  context 'when params are correct' do
24
- it 'sends an email to the user with confirmation url and returns a success message' do
25
- expect { post_request }.to change(ActionMailer::Base.deliveries, :count).by(1)
26
- expect(json_response[:data][:userResendConfirmation]).to include(
27
- message: 'You will receive an email with instructions for how to confirm your email address in a few minutes.'
28
- )
26
+ context 'when using the gem schema' do
27
+ it 'sends an email to the user with confirmation url and returns a success message' do
28
+ expect { post_request }.to change(ActionMailer::Base.deliveries, :count).by(1)
29
+ expect(json_response[:data][:userResendConfirmation]).to include(
30
+ message: 'You will receive an email with instructions for how to confirm your email address in a few minutes.'
31
+ )
32
+
33
+ email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
34
+ link = email.css('a').first
35
+ confirm_link_msg_text = email.css('p')[1].inner_html
36
+ confirm_account_link_text = link.inner_html
29
37
 
30
- email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
31
- link = email.css('a').first
32
- confirm_link_msg_text = email.css('p')[1].inner_html
33
- confirm_account_link_text = link.inner_html
38
+ expect(link['href']).to include('/api/v1/graphql_auth?')
39
+ expect(confirm_link_msg_text).to eq('You can confirm your account email through the link below:')
40
+ expect(confirm_account_link_text).to eq('Confirm my account')
34
41
 
35
- expect(confirm_link_msg_text).to eq('You can confirm your account email through the link below:')
36
- expect(confirm_account_link_text).to eq('Confirm my account')
42
+ expect do
43
+ get link['href']
44
+ user.reload
45
+ end.to change(user, :confirmed_at).from(NilClass).to(ActiveSupport::TimeWithZone)
46
+ end
47
+ end
37
48
 
38
- # TODO: Move to feature spec
39
- expect do
40
- get link['href']
41
- user.reload
42
- end.to change(user, :confirmed_at).from(NilClass).to(ActiveSupport::TimeWithZone)
49
+ context 'when using a custom schema' do
50
+ let(:custom_path) { '/api/v1/graphql' }
51
+
52
+ it 'sends an email to the user with confirmation url and returns a success message' do
53
+ expect { post_request(custom_path) }.to change(ActionMailer::Base.deliveries, :count).by(1)
54
+ expect(json_response[:data][:userResendConfirmation]).to include(
55
+ message: 'You will receive an email with instructions for how to confirm your email address in a few minutes.'
56
+ )
57
+
58
+ email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
59
+ link = email.css('a').first
60
+ confirm_link_msg_text = email.css('p')[1].inner_html
61
+ confirm_account_link_text = link.inner_html
62
+
63
+ expect(link['href']).to include("#{custom_path}?")
64
+ expect(confirm_link_msg_text).to eq('You can confirm your account email through the link below:')
65
+ expect(confirm_account_link_text).to eq('Confirm my account')
66
+
67
+ expect do
68
+ get link['href']
69
+ user.reload
70
+ end.to change(user, :confirmed_at).from(NilClass).to(ActiveSupport::TimeWithZone)
71
+ end
43
72
  end
44
73
 
45
74
  context 'when email address uses different casing' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Send Password Reset Requests' do
@@ -20,21 +22,44 @@ RSpec.describe 'Send Password Reset Requests' do
20
22
  end
21
23
 
22
24
  context 'when params are correct' do
23
- it 'sends password reset email' do
24
- expect { post_request }.to change(ActionMailer::Base.deliveries, :count).by(1)
25
+ context 'when using the gem schema' do
26
+ it 'sends password reset email' do
27
+ expect { post_request }.to change(ActionMailer::Base.deliveries, :count).by(1)
25
28
 
26
- expect(json_response[:data][:userSendPasswordReset]).to include(
27
- message: 'You will receive an email with instructions on how to reset your password in a few minutes.'
28
- )
29
+ expect(json_response[:data][:userSendPasswordReset]).to include(
30
+ message: 'You will receive an email with instructions on how to reset your password in a few minutes.'
31
+ )
32
+
33
+ email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
34
+ link = email.css('a').first
35
+ expect(link['href']).to include('/api/v1/graphql_auth?')
36
+
37
+ expect do
38
+ get link['href']
39
+ user.reload
40
+ end.to change(user, :allow_password_change).from(false).to(true)
41
+ end
42
+ end
43
+
44
+ context 'when using a custom schema' do
45
+ let(:custom_path) { '/api/v1/graphql' }
46
+
47
+ it 'sends password reset email' do
48
+ expect { post_request(custom_path) }.to change(ActionMailer::Base.deliveries, :count).by(1)
49
+
50
+ expect(json_response[:data][:userSendPasswordReset]).to include(
51
+ message: 'You will receive an email with instructions on how to reset your password in a few minutes.'
52
+ )
29
53
 
30
- email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
31
- link = email.css('a').first
54
+ email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
55
+ link = email.css('a').first
56
+ expect(link['href']).to include("#{custom_path}?")
32
57
 
33
- # TODO: Move to feature spec
34
- expect do
35
- get link['href']
36
- user.reload
37
- end.to change(user, :allow_password_change).from(false).to(true)
58
+ expect do
59
+ get link['href']
60
+ user.reload
61
+ end.to change(user, :allow_password_change).from(false).to(true)
62
+ end
38
63
  end
39
64
  end
40
65
 
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Sign Up process' do
@@ -19,6 +21,7 @@ RSpec.describe 'Sign Up process' do
19
21
  passwordConfirmation: "#{password}"
20
22
  confirmSuccessUrl: "#{redirect}"
21
23
  ) {
24
+ credentials { accessToken }
22
25
  user {
23
26
  email
24
27
  name
@@ -41,7 +44,8 @@ RSpec.describe 'Sign Up process' do
41
44
  expect(user.confirmed_at).to be_nil
42
45
  expect(user).to be_valid_password(password)
43
46
  expect(json_response[:data][:userSignUp]).to include(
44
- user: {
47
+ credentials: nil,
48
+ user: {
45
49
  email: email,
46
50
  name: name
47
51
  }
@@ -124,6 +128,7 @@ RSpec.describe 'Sign Up process' do
124
128
  passwordConfirmation: "#{password}"
125
129
  confirmSuccessUrl: "#{redirect}"
126
130
  ) {
131
+ credentials { accessToken client uid }
127
132
  authenticatable {
128
133
  email
129
134
  }
@@ -132,8 +137,16 @@ RSpec.describe 'Sign Up process' do
132
137
  GRAPHQL
133
138
  end
134
139
 
135
- it 'works without the confirmable module' do
140
+ it 'returns credentials as no confirmation is required' do
136
141
  expect { post_request }.to change(Guest, :count).from(0).to(1)
142
+
143
+ expect(json_response[:data][:guestSignUp]).to include(
144
+ authenticatable: { email: email },
145
+ credentials: hash_including(
146
+ uid: email,
147
+ client: Guest.last.tokens.keys.first
148
+ )
149
+ )
137
150
  end
138
151
  end
139
152
  end
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Update Password Requests' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Check Password Token Requests' do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe 'Account confirmation' do
@@ -22,7 +24,13 @@ RSpec.describe 'Account confirmation' do
22
24
  context 'when confirmation token is correct' do
23
25
  let(:token) { user.confirmation_token }
24
26
 
25
- before { user.send_confirmation_instructions(template_path: ['graphql_devise/mailer']) }
27
+ before do
28
+ user.send_confirmation_instructions(
29
+ template_path: ['graphql_devise/mailer'],
30
+ controller: 'graphql_devise/graphql',
31
+ schema_url: 'http://not-using-this-value.com/gql'
32
+ )
33
+ end
26
34
 
27
35
  it 'confirms the resource and redirects to the sent url' do
28
36
  expect do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'rails_helper'
2
4
 
3
5
  RSpec.describe "Integrations with the user's controller" do
@@ -29,6 +31,15 @@ RSpec.describe "Integrations with the user's controller" do
29
31
  expect(json_response[:data][:publicField]).to eq('Field does not require authentication')
30
32
  end
31
33
  end
34
+
35
+ context 'when using the failing route' do
36
+ it 'raises an invalid resource_name error' do
37
+ expect { post_request('/api/v1/failing') }.to raise_error(
38
+ GraphqlDevise::Error,
39
+ 'Invalid resource_name `fail` provided to `graphql_context`. Possible values are: [:user, :admin, :guest, :users_customer, :schema_user].'
40
+ )
41
+ end
42
+ end
32
43
  end
33
44
 
34
45
  describe 'privateField' do
@@ -46,9 +57,17 @@ RSpec.describe "Integrations with the user's controller" do
46
57
  context 'when user is authenticated' do
47
58
  let(:headers) { user.create_new_auth_token }
48
59
 
49
- it 'allow to perform the query' do
60
+ it 'allows to perform the query' do
50
61
  expect(json_response[:data][:privateField]).to eq('Field will always require authentication')
51
62
  end
63
+
64
+ context 'when using a SchemaUser' do
65
+ let(:headers) { create(:schema_user, :confirmed).create_new_auth_token }
66
+
67
+ it 'allows to perform the query' do
68
+ expect(json_response[:data][:privateField]).to eq('Field will always require authentication')
69
+ end
70
+ end
52
71
  end
53
72
 
54
73
  context 'when user is not authenticated' do
@@ -66,7 +85,7 @@ RSpec.describe "Integrations with the user's controller" do
66
85
  context 'when user is authenticated' do
67
86
  let(:headers) { user.create_new_auth_token }
68
87
 
69
- it 'allow to perform the query' do
88
+ it 'allows to perform the query' do
70
89
  expect(json_response[:data][:privateField]).to eq('Field will always require authentication')
71
90
  end
72
91
  end
@@ -96,7 +115,7 @@ RSpec.describe "Integrations with the user's controller" do
96
115
  context 'when user is authenticated' do
97
116
  let(:headers) { user.create_new_auth_token }
98
117
 
99
- it 'allow to perform the query' do
118
+ it 'allows to perform the query' do
100
119
  expect(json_response[:data][:dummyMutation]).to eq('Necessary so GraphQL gem does not complain about empty mutation type')
101
120
  end
102
121
  end
@@ -116,7 +135,7 @@ RSpec.describe "Integrations with the user's controller" do
116
135
  context 'when user is authenticated' do
117
136
  let(:headers) { user.create_new_auth_token }
118
137
 
119
- it 'allow to perform the query' do
138
+ it 'allows to perform the query' do
120
139
  expect(json_response[:data][:dummyMutation]).to eq('Necessary so GraphQL gem does not complain about empty mutation type')
121
140
  end
122
141
  end
@@ -151,7 +170,7 @@ RSpec.describe "Integrations with the user's controller" do
151
170
  context 'when user is authenticated' do
152
171
  let(:headers) { user.create_new_auth_token }
153
172
 
154
- it 'allow to perform the query' do
173
+ it 'allows to perform the query' do
155
174
  expect(json_response[:data][:user]).to match(
156
175
  email: user.email,
157
176
  id: user.id
@@ -174,7 +193,7 @@ RSpec.describe "Integrations with the user's controller" do
174
193
  context 'when user is authenticated' do
175
194
  let(:headers) { user.create_new_auth_token }
176
195
 
177
- it 'allow to perform the query' do
196
+ it 'allows to perform the query' do
178
197
  expect(json_response[:data][:user]).to match(
179
198
  email: user.email,
180
199
  id: user.id
@@ -184,7 +203,7 @@ RSpec.describe "Integrations with the user's controller" do
184
203
 
185
204
  context 'when user is not authenticated' do
186
205
  # Interpreter schema fields are public unless specified otherwise (plugin setting)
187
- it 'allow to perform the query' do
206
+ it 'allows to perform the query' do
188
207
  expect(json_response[:data][:user]).to match(
189
208
  email: user.email,
190
209
  id: user.id
@@ -193,4 +212,43 @@ RSpec.describe "Integrations with the user's controller" do
193
212
  end
194
213
  end
195
214
  end
215
+
216
+ describe 'updateUser' do
217
+ let(:headers) { user.create_new_auth_token }
218
+ let(:query) do
219
+ <<-GRAPHQL
220
+ mutation {
221
+ updateUser(email: "updated@gmail.com", name: "updated name") {
222
+ user { email name }
223
+ }
224
+ }
225
+ GRAPHQL
226
+ end
227
+
228
+ it 'requires new email confirmation' do
229
+ original_email = user.email
230
+
231
+ expect do
232
+ post_request('/api/v1/graphql?test=value')
233
+ user.reload
234
+ end.to not_change(user, :email).from(original_email).and(
235
+ change(user, :unconfirmed_email).from(nil).to('updated@gmail.com')
236
+ ).and(
237
+ not_change(user, :uid).from(original_email)
238
+ ).and(
239
+ change(user, :name).from(user.name).to('updated name')
240
+ )
241
+
242
+ email = Nokogiri::HTML(ActionMailer::Base.deliveries.last.body.encoded)
243
+ link = email.css('a').first
244
+ expect(link['href']).to include('/api/v1/graphql')
245
+
246
+ expect do
247
+ get link['href']
248
+ user.reload
249
+ end.to change(user, :email).from(original_email).to('updated@gmail.com').and(
250
+ change(user, :uid).from(original_email).to('updated@gmail.com')
251
+ )
252
+ end
253
+ end
196
254
  end
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::MountMethod::OperationPreparer do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::MountMethod::OperationPreparers::CustomOperationPreparer do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::MountMethod::OperationPreparers::DefaultOperationPreparer do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::MountMethod::OperationPreparers::GqlNameSetter do
@@ -1,3 +1,5 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require 'spec_helper'
2
4
 
3
5
  RSpec.describe GraphqlDevise::MountMethod::OperationPreparers::MutationFieldSetter do