locomotive_cms 2.0.0.rc12 → 2.0.0
Sign up to get free protection for your applications and to get access to all the features.
- data/Gemfile +35 -28
- data/LICENSE +1 -1
- data/README.textile +9 -4
- data/app/assets/images/locomotive/icons/flags/de.png +0 -0
- data/app/assets/images/locomotive/icons/flags/en.png +0 -0
- data/app/assets/images/locomotive/icons/flags/es.png +0 -0
- data/app/assets/images/locomotive/icons/flags/et.png +0 -0
- data/app/assets/images/locomotive/icons/flags/fr.png +0 -0
- data/app/assets/images/locomotive/icons/flags/it.png +0 -0
- data/app/assets/images/locomotive/icons/flags/nb.png +0 -0
- data/app/assets/images/locomotive/icons/flags/nl.png +0 -0
- data/app/assets/images/locomotive/icons/flags/pl.png +0 -0
- data/app/assets/images/locomotive/icons/flags/pt-BR.png +0 -0
- data/app/assets/images/locomotive/icons/flags/ru.png +0 -0
- data/app/assets/javascripts/aloha/plugins/custom/locomotive_media/css/image.css +1 -1
- data/app/assets/javascripts/aloha/plugins/custom/locomotive_media/lib/locomotive_media-plugin.js +10 -21
- data/app/assets/javascripts/locomotive/models/content_entry.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/models/content_type.js.coffee +6 -0
- data/app/assets/javascripts/locomotive/models/translation.js.coffee +5 -0
- data/app/assets/javascripts/locomotive/utils/aloha_settings.js.coffee +20 -2
- data/app/assets/javascripts/locomotive/utils/tinymce_settings.js.coffee +6 -6
- data/app/assets/javascripts/locomotive/views/application_view.js.coffee +4 -4
- data/app/assets/javascripts/locomotive/views/content_assets/picker_item_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/content_entries/_form_view.js.coffee +10 -3
- data/app/assets/javascripts/locomotive/views/content_entries/_popup_form_view.js.coffee +7 -6
- data/app/assets/javascripts/locomotive/views/content_entries/index_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/content_types/_form_view.js.coffee +4 -1
- data/app/assets/javascripts/locomotive/views/content_types/custom_field_entry_view.js.coffee +2 -2
- data/app/assets/javascripts/locomotive/views/content_types/custom_fields_view.coffee +5 -0
- data/app/assets/javascripts/locomotive/views/content_types/edit_view.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/content_types/select_options_view.js.coffee +6 -6
- data/app/assets/javascripts/locomotive/views/current_site/edit_view.js.coffee +2 -1
- data/app/assets/javascripts/locomotive/views/editable_elements/edit_all_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/editable_elements/file_view.js.coffee +2 -2
- data/app/assets/javascripts/locomotive/views/inline_editor/application_view.js.coffee +36 -15
- data/app/assets/javascripts/locomotive/views/inline_editor/toolbar_view.js.coffee +30 -14
- data/app/assets/javascripts/locomotive/views/pages/_form_view.js.coffee +24 -11
- data/app/assets/javascripts/locomotive/views/pages/edit_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/pages/list_view.js.coffee +2 -2
- data/app/assets/javascripts/locomotive/views/shared/fields/file_view.js.coffee +5 -4
- data/app/assets/javascripts/locomotive/views/shared/fields/has_many_view.js.coffee +2 -1
- data/app/assets/javascripts/locomotive/views/shared/fields/many_to_many_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/shared/fields/select_view.js.coffee +6 -2
- data/app/assets/javascripts/locomotive/views/shared/form_view.js.coffee +17 -12
- data/app/assets/javascripts/locomotive/views/shared/list_item_view.js.coffee +1 -1
- data/app/assets/javascripts/locomotive/views/sites/membership_entry_view.js.coffee +2 -1
- data/app/assets/javascripts/locomotive/views/snippets/_form_view.js.coffee +19 -3
- data/app/assets/javascripts/locomotive/views/theme_assets/index_view.js.coffee +8 -1
- data/app/assets/javascripts/locomotive/views/translations/_form_view.js.coffee +20 -0
- data/app/assets/javascripts/locomotive/views/translations/edit_view.js.coffee +6 -0
- data/app/assets/javascripts/locomotive/views/translations/new_view.js.coffee +8 -0
- data/app/assets/javascripts/tinymce/plugins/jqueryinlinepopups/editor_plugin.js +2 -2
- data/app/assets/javascripts/tinymce/plugins/locomotive_media/editor_plugin.js +1 -0
- data/app/assets/javascripts/tinymce/plugins/locomotive_media/langs/en.js +1 -0
- data/app/assets/javascripts/tinymce/plugins/locomotive_media/langs/fr.js +1 -0
- data/app/assets/javascripts/tinymce/plugins/locomotive_media/langs/ru.js +1 -0
- data/app/assets/stylesheets/locomotive.css +2 -1
- data/app/assets/stylesheets/locomotive/backoffice/_box.css.scss +3 -13
- data/app/assets/stylesheets/locomotive/backoffice/_buttons.css.scss +39 -16
- data/app/assets/stylesheets/locomotive/backoffice/application.css.scss +45 -56
- data/app/assets/stylesheets/locomotive/backoffice/codemirror_changes.css.scss +2 -0
- data/app/assets/stylesheets/locomotive/backoffice/content_assets.css.scss +5 -8
- data/app/assets/stylesheets/locomotive/backoffice/datepicker.css.scss +23 -9
- data/app/assets/stylesheets/locomotive/backoffice/formtastic_changes.css.scss +36 -32
- data/app/assets/stylesheets/locomotive/backoffice/layout.css.scss +2 -1
- data/app/assets/stylesheets/locomotive/backoffice/menu/_colors.css.scss +2 -1
- data/app/assets/stylesheets/locomotive/backoffice/menu/default.css.scss +4 -39
- data/app/assets/stylesheets/locomotive/backoffice/menu/main.css.scss +1 -1
- data/app/assets/stylesheets/locomotive/backoffice/menu/sub.css.scss +28 -36
- data/app/assets/stylesheets/locomotive/inline_editor.css +2 -1
- data/app/assets/stylesheets/locomotive/inline_editor/_buttons.css.scss +1 -11
- data/app/assets/stylesheets/locomotive/inline_editor/toolbar.css.scss +3 -4
- data/app/assets/stylesheets/locomotive/not_logged_in.css +1 -0
- data/app/assets/stylesheets/locomotive/not_logged_in/layout.css.scss +17 -8
- data/app/assets/stylesheets/locomotive/shared/_helpers.css.scss +21 -41
- data/app/assets/stylesheets/locomotive/shared/common.css.scss +2 -1
- data/app/assets/stylesheets/locomotive/shared/content_locale_picker.css.scss +11 -13
- data/app/cells/locomotive/content_locale_picker/show.html.haml +2 -2
- data/app/cells/locomotive/content_locale_picker_cell.rb +6 -2
- data/app/cells/locomotive/global_actions_cell.rb +1 -1
- data/app/cells/locomotive/main_menu/show.html.haml +1 -1
- data/app/cells/locomotive/main_menu_cell.rb +2 -2
- data/app/cells/locomotive/settings_menu_cell.rb +1 -0
- data/app/controllers/locomotive/api/accounts_controller.rb +70 -0
- data/app/controllers/locomotive/api/base_controller.rb +8 -0
- data/app/controllers/locomotive/api/content_assets_controller.rb +7 -9
- data/app/controllers/locomotive/api/content_entries_controller.rb +18 -14
- data/app/controllers/locomotive/api/content_types_controller.rb +56 -9
- data/app/controllers/locomotive/api/current_site_controller.rb +47 -1
- data/app/controllers/locomotive/api/documentation_controller.rb +15 -0
- data/app/controllers/locomotive/api/memberships_controller.rb +49 -14
- data/app/controllers/locomotive/api/my_account_controller.rb +19 -2
- data/app/controllers/locomotive/api/pages_controller.rb +56 -9
- data/app/controllers/locomotive/api/sites_controller.rb +62 -14
- data/app/controllers/locomotive/api/snippets_controller.rb +56 -9
- data/app/controllers/locomotive/api/theme_assets_controller.rb +7 -9
- data/app/controllers/locomotive/api/tokens_controller.rb +32 -5
- data/app/controllers/locomotive/api/translations_controller.rb +33 -0
- data/app/controllers/locomotive/public/base_controller.rb +1 -1
- data/app/controllers/locomotive/public/content_entries_controller.rb +13 -12
- data/app/controllers/locomotive/public/pages_controller.rb +3 -1
- data/app/controllers/locomotive/public/robots_controller.rb +2 -2
- data/app/controllers/locomotive/public/sitemaps_controller.rb +2 -2
- data/app/controllers/locomotive/sites_controller.rb +2 -2
- data/app/controllers/locomotive/snippets_controller.rb +6 -1
- data/app/controllers/locomotive/translations_controller.rb +39 -0
- data/app/helpers/locomotive/accounts_helper.rb +1 -1
- data/app/helpers/locomotive/base_helper.rb +68 -2
- data/app/helpers/locomotive/content_entries_helper.rb +27 -1
- data/app/helpers/locomotive/custom_fields_helper.rb +2 -2
- data/app/helpers/locomotive/pages_helper.rb +30 -2
- data/app/helpers/locomotive/snippets_helper.rb +20 -0
- data/app/helpers/locomotive/translations_helper.rb +19 -0
- data/app/inputs/locomotive/code_input.rb +29 -7
- data/app/inputs/locomotive/file_input.rb +5 -1
- data/app/inputs/locomotive/locale_input.rb +3 -2
- data/app/inputs/locomotive/locales_input.rb +3 -2
- data/app/mailers/locomotive/notifications.rb +7 -1
- data/app/models/locomotive/ability.rb +9 -3
- data/app/models/locomotive/account.rb +11 -5
- data/app/models/locomotive/content_asset.rb +2 -7
- data/app/models/locomotive/content_entry.rb +26 -20
- data/app/models/locomotive/content_type.rb +56 -28
- data/app/models/locomotive/editable_control.rb +0 -4
- data/app/models/locomotive/editable_element.rb +15 -4
- data/app/models/locomotive/editable_file.rb +11 -5
- data/app/models/locomotive/editable_long_text.rb +1 -7
- data/app/models/locomotive/editable_short_text.rb +12 -3
- data/app/models/locomotive/extensions/content_type/default_values.rb +2 -4
- data/app/models/locomotive/extensions/page/editable_elements.rb +22 -3
- data/app/models/locomotive/extensions/page/listed.rb +1 -1
- data/app/models/locomotive/extensions/page/parse.rb +18 -12
- data/app/models/locomotive/extensions/page/redirect.rb +6 -4
- data/app/models/locomotive/extensions/page/render.rb +1 -1
- data/app/models/locomotive/extensions/page/templatized.rb +48 -19
- data/app/models/locomotive/extensions/page/tree.rb +14 -2
- data/app/models/locomotive/extensions/site/locales.rb +11 -3
- data/app/models/locomotive/extensions/site/subdomain_domains.rb +7 -2
- data/app/models/locomotive/membership.rb +0 -4
- data/app/models/locomotive/page.rb +5 -13
- data/app/models/locomotive/site.rb +16 -23
- data/app/models/locomotive/snippet.rb +1 -9
- data/app/models/locomotive/theme_asset.rb +24 -28
- data/app/models/locomotive/translation.rb +35 -0
- data/app/presenters/locomotive/account_presenter.rb +12 -4
- data/app/presenters/locomotive/base_presenter.rb +122 -20
- data/app/presenters/locomotive/content_asset_presenter.rb +22 -11
- data/app/presenters/locomotive/content_entry_presenter.rb +151 -36
- data/app/presenters/locomotive/content_field_presenter.rb +76 -0
- data/app/presenters/locomotive/content_type_presenter.rb +66 -8
- data/app/presenters/locomotive/editable_control_presenter.rb +9 -8
- data/app/presenters/locomotive/editable_element_presenter.rb +26 -7
- data/app/presenters/locomotive/editable_file_presenter.rb +26 -5
- data/app/presenters/locomotive/editable_short_text_presenter.rb +21 -4
- data/app/presenters/locomotive/membership_presenter.rb +14 -16
- data/app/presenters/locomotive/page_presenter.rb +60 -14
- data/app/presenters/locomotive/site_presenter.rb +23 -8
- data/app/presenters/locomotive/snippet_presenter.rb +10 -8
- data/app/presenters/locomotive/theme_asset_presenter.rb +32 -15
- data/app/presenters/locomotive/translation_presenter.rb +9 -0
- data/app/uploaders/locomotive/editable_file_uploader.rb +4 -0
- data/app/views/locomotive/content_assets/_asset.html.haml +1 -1
- data/app/views/locomotive/content_assets/_picker.html.haml +1 -1
- data/app/views/locomotive/content_entries/_form.html.haml +2 -2
- data/app/views/locomotive/content_entries/_list.html.haml +1 -2
- data/app/views/locomotive/content_entries/edit.html.haml +6 -3
- data/app/views/locomotive/content_entries/index.html.haml +2 -2
- data/app/views/locomotive/content_entries/new.html.haml +5 -2
- data/app/views/locomotive/content_types/edit.html.haml +2 -2
- data/app/views/locomotive/current_site/edit.html.haml +1 -1
- data/app/views/locomotive/custom_fields/_form.html.haml +4 -4
- data/app/views/locomotive/custom_fields/_select_templates.html.haml +2 -2
- data/app/views/locomotive/custom_fields/types/_has_many.html.haml +6 -34
- data/app/views/locomotive/custom_fields/types/_has_many_form.html.haml +31 -0
- data/app/views/locomotive/custom_fields/types/_many_to_many.html.haml +2 -3
- data/app/views/locomotive/layouts/not_logged_in.html.haml +1 -1
- data/app/views/locomotive/my_account/edit.html.haml +2 -2
- data/app/views/locomotive/pages/_form.html.haml +8 -4
- data/app/views/locomotive/pages/_page.html.haml +7 -1
- data/app/views/locomotive/pages/edit.html.haml +1 -1
- data/app/views/locomotive/pages/index.html.haml +1 -1
- data/app/views/locomotive/public/pages/show_toolbar.html.haml +2 -3
- data/app/views/locomotive/public/sitemaps/show.xml.builder +4 -4
- data/app/views/locomotive/shared/_head.html.haml +3 -2
- data/app/views/locomotive/shared/_locale_picker_link.html.haml +3 -4
- data/app/views/locomotive/shared/actions/_contents.html.haml +3 -1
- data/app/views/locomotive/shared/menu/_contents.html.haml +14 -3
- data/app/views/locomotive/sites/_domains.html.haml +1 -1
- data/app/views/locomotive/sites/_form.html.haml +5 -5
- data/app/views/locomotive/sites/_memberships.html.haml +4 -2
- data/app/views/locomotive/snippets/_form.html.haml +2 -2
- data/app/views/locomotive/snippets/_snippet.html.haml +1 -1
- data/app/views/locomotive/snippets/edit.html.haml +1 -1
- data/app/views/locomotive/theme_assets/_asset.html.haml +1 -1
- data/app/views/locomotive/theme_assets/_form.html.haml +6 -2
- data/app/views/locomotive/theme_assets/edit.html.haml +1 -1
- data/app/views/locomotive/theme_assets/index.html.haml +15 -11
- data/app/views/locomotive/translations/_form.html.haml +12 -0
- data/app/views/locomotive/translations/edit.html.haml +15 -0
- data/app/views/locomotive/translations/index.html.haml +28 -0
- data/app/views/locomotive/translations/new.html.haml +12 -0
- data/config/initializers/deny_phantomjs_ttf.rb +29 -0
- data/config/locales/admin_ui.de.yml +1 -0
- data/config/locales/admin_ui.en.yml +22 -2
- data/config/locales/admin_ui.es.yml +1 -0
- data/config/locales/admin_ui.et.yml +14 -0
- data/config/locales/admin_ui.fr.yml +36 -14
- data/config/locales/admin_ui.it.yml +1 -0
- data/config/locales/admin_ui.nb.yml +1 -0
- data/config/locales/admin_ui.pl.yml +319 -0
- data/config/locales/admin_ui.pt-BR.yml +38 -6
- data/config/locales/admin_ui.ru.yml +1 -0
- data/config/locales/carrierwave.pl.yml +4 -0
- data/config/locales/default.fr.yml +3 -1
- data/config/locales/default.pl.yml +317 -0
- data/config/locales/devise.de.yml +1 -0
- data/config/locales/devise.en.yml +1 -0
- data/config/locales/devise.es.yml +1 -0
- data/config/locales/devise.et.yml +1 -0
- data/config/locales/devise.fr.yml +3 -2
- data/config/locales/devise.it.yml +1 -0
- data/config/locales/devise.nb.yml +1 -0
- data/config/locales/devise.nl.yml +1 -0
- data/config/locales/devise.pl.yml +64 -0
- data/config/locales/devise.pt-BR.yml +1 -0
- data/config/locales/devise.ru.yml +1 -0
- data/config/locales/flash.en.yml +9 -0
- data/config/locales/flash.pl.yml +106 -0
- data/config/locales/formtastic.en.yml +2 -0
- data/config/locales/formtastic.fr.yml +3 -1
- data/config/locales/formtastic.pl.yml +105 -0
- data/config/routes.rb +46 -38
- data/features/api/accounts.feature +25 -0
- data/features/api/authentication.feature +19 -0
- data/features/api/authorization/accounts.feature +125 -0
- data/features/api/authorization/content_assets.feature +147 -0
- data/features/api/authorization/content_entries.feature +202 -0
- data/features/api/authorization/content_types.feature +237 -0
- data/features/api/authorization/current_site.feature +30 -0
- data/features/api/authorization/memberships.feature +225 -0
- data/features/api/authorization/pages.feature +187 -0
- data/features/api/authorization/sites.feature +213 -0
- data/features/api/authorization/snippets.feature +179 -0
- data/features/api/authorization/theme_assets.feature +185 -0
- data/features/api/authorization/translations.feature +253 -0
- data/features/api/content_entries.feature +169 -0
- data/features/api/content_types.feature +156 -0
- data/features/api/editable_elements.feature +190 -0
- data/features/api/entries_custom_fields.feature +150 -0
- data/features/api/pages.feature +72 -0
- data/features/backoffice/authorization/account_settings.feature +28 -0
- data/features/backoffice/authorization/content_type.feature +35 -0
- data/features/backoffice/authorization/current_site.feature +53 -0
- data/features/backoffice/authorization/inline_front_end_editing.feature +46 -0
- data/features/backoffice/authorization/pages.feature +95 -0
- data/features/backoffice/authorization/theme_assets.feature +50 -0
- data/features/backoffice/content_types/edit.feature +20 -0
- data/features/backoffice/content_types/has_many.feature +60 -0
- data/features/backoffice/content_types/many_to_many.feature +42 -0
- data/features/backoffice/contents.feature +70 -0
- data/features/backoffice/editable_elements.feature +22 -0
- data/features/backoffice/login.feature +33 -0
- data/features/backoffice/mounting.feature +13 -0
- data/features/backoffice/pages.feature +35 -0
- data/features/backoffice/site.feature +45 -0
- data/features/backoffice/snippets.feature +39 -0
- data/features/backoffice/theme_assets.feature +72 -0
- data/features/backoffice/translations.feature +44 -0
- data/features/public/basic.feature +30 -0
- data/features/public/contact_form.feature +78 -0
- data/features/public/content_entries.feature +56 -0
- data/features/public/editable_elements.feature +138 -0
- data/features/public/has_many.feature +8 -0
- data/features/public/inheritance.feature +157 -0
- data/features/public/inline_front_end_editing.feature +26 -0
- data/features/public/many_to_many.feature +64 -0
- data/features/public/pagination.feature +8 -0
- data/features/public/robots.feature +22 -0
- data/features/public/sitemap.feature +74 -0
- data/features/public/snippets.feature +21 -0
- data/features/public/tablerow.feature +42 -0
- data/features/step_definitions/api_steps.rb +176 -0
- data/features/step_definitions/backoffice/mounting_steps.rb +22 -0
- data/features/step_definitions/backoffice_steps.rb +43 -0
- data/features/step_definitions/content_assets_steps.rb +12 -0
- data/features/step_definitions/content_types_steps.rb +106 -0
- data/features/step_definitions/current_site_steps.rb +43 -0
- data/features/step_definitions/editable_elements_steps.rb +24 -0
- data/features/step_definitions/membership_steps.rb +19 -0
- data/features/step_definitions/more_web_steps.rb +96 -0
- data/features/step_definitions/page_steps.rb +110 -0
- data/features/step_definitions/pagination_steps.rb +35 -0
- data/features/step_definitions/pickle_steps.rb +100 -0
- data/features/step_definitions/relationships_steps.rb +107 -0
- data/features/step_definitions/site_steps.rb +100 -0
- data/features/step_definitions/snippet_steps.rb +37 -0
- data/features/step_definitions/theme_asset_steps.rb +64 -0
- data/features/step_definitions/translation_steps.rb +7 -0
- data/features/step_definitions/web_steps.rb +197 -0
- data/features/step_definitions/within_steps.rb +14 -0
- data/features/support/cleaner.rb +4 -0
- data/features/support/env.rb +82 -0
- data/features/support/factory_girl.rb +2 -0
- data/features/support/http.rb +22 -0
- data/features/support/paths.rb +62 -0
- data/features/support/pickle.rb +24 -0
- data/features/support/selectors.rb +57 -0
- data/lib/generators/locomotive/install/install_generator.rb +5 -0
- data/lib/generators/locomotive/install/templates/dragonfly.rb +2 -3
- data/lib/generators/locomotive/install/templates/locomotive.rb +2 -2
- data/lib/locomotive.rb +13 -2
- data/lib/locomotive/action_controller/locale_helpers.rb +1 -1
- data/lib/locomotive/action_controller/public_responder.rb +17 -1
- data/lib/locomotive/action_controller/responder.rb +3 -2
- data/lib/locomotive/action_controller/url_helpers.rb +1 -1
- data/lib/locomotive/cancan.rb +22 -0
- data/lib/locomotive/carrierwave.rb +2 -0
- data/lib/locomotive/carrierwave/asset.rb +17 -7
- data/lib/locomotive/configuration.rb +6 -2
- data/lib/locomotive/core_ext.rb +5 -4
- data/lib/locomotive/custom_fields.rb +11 -0
- data/lib/locomotive/dependencies.rb +3 -3
- data/lib/locomotive/dragonfly.rb +1 -1
- data/lib/locomotive/engine.rb +24 -8
- data/lib/locomotive/formtastic.rb +26 -1
- data/lib/locomotive/liquid/drops/current_user.rb +2 -2
- data/lib/locomotive/liquid/drops/page.rb +5 -1
- data/lib/locomotive/liquid/filters/date.rb +19 -0
- data/lib/locomotive/liquid/filters/html.rb +7 -7
- data/lib/locomotive/liquid/filters/misc.rb +5 -7
- data/lib/locomotive/liquid/filters/text.rb +11 -0
- data/lib/locomotive/liquid/filters/translate.rb +16 -0
- data/lib/locomotive/liquid/patches.rb +21 -0
- data/lib/locomotive/liquid/tags/consume.rb +13 -2
- data/lib/locomotive/liquid/tags/csrf.rb +3 -3
- data/lib/locomotive/liquid/tags/editable/base.rb +11 -4
- data/lib/locomotive/liquid/tags/inline_editor.rb +5 -2
- data/lib/locomotive/liquid/tags/locale_switcher.rb +12 -4
- data/lib/locomotive/liquid/tags/nav.rb +1 -1
- data/lib/locomotive/liquid/tags/paginate.rb +4 -1
- data/lib/locomotive/liquid/tags/seo.rb +2 -2
- data/lib/locomotive/liquid/tags/snippet.rb +10 -2
- data/lib/locomotive/liquid/tags/with_scope.rb +11 -0
- data/lib/locomotive/middlewares.rb +2 -1
- data/lib/locomotive/middlewares/fonts.rb +2 -2
- data/lib/locomotive/middlewares/permalink.rb +22 -0
- data/lib/locomotive/misc/api_documentation.rb +114 -0
- data/lib/locomotive/misc/api_documentation/bootstrap.html.haml +196 -0
- data/lib/locomotive/mongoid.rb +2 -1
- data/lib/locomotive/mongoid/document.rb +3 -2
- data/lib/locomotive/mongoid/liquid.rb +39 -0
- data/lib/locomotive/mongoid/presenter.rb +73 -0
- data/lib/locomotive/presentable.rb +216 -0
- data/lib/locomotive/render.rb +76 -24
- data/lib/locomotive/routing/site_dispatcher.rb +15 -4
- data/lib/locomotive/version.rb +1 -1
- data/lib/tasks/development.rake +29 -0
- data/lib/tasks/locomotive.rake +58 -7
- data/spec/cells/locomotive/global_actions_spec.rb +98 -0
- data/spec/cells/locomotive/main_menu_cell_spec.rb +99 -0
- data/spec/cells/locomotive/settings_menu_cell_spec.rb +107 -0
- data/spec/dummy/Rakefile +7 -0
- data/spec/dummy/app/assets/javascripts/application.js +9 -0
- data/spec/dummy/app/assets/javascripts/locomotive_misc.js.coffee +2 -0
- data/spec/dummy/app/assets/stylesheets/application.css +7 -0
- data/spec/dummy/app/cells/locomotive/main_menu_cell.rb +9 -0
- data/spec/dummy/app/controllers/application_controller.rb +3 -0
- data/spec/dummy/app/controllers/foo_controller.rb +10 -0
- data/spec/dummy/app/helpers/application_helper.rb +2 -0
- data/spec/dummy/app/models/foo.rb +7 -0
- data/spec/dummy/app/views/foo/index.html.haml +1 -0
- data/spec/dummy/app/views/layouts/application.html.erb +14 -0
- data/spec/dummy/app/views/locomotive/shared/_main_app_head.html.haml +1 -0
- data/spec/dummy/config.ru +4 -0
- data/spec/dummy/config/application.rb +57 -0
- data/spec/dummy/config/boot.rb +20 -0
- data/spec/dummy/config/environment.rb +5 -0
- data/spec/dummy/config/environments/development.rb +38 -0
- data/spec/dummy/config/environments/production.rb +60 -0
- data/spec/dummy/config/environments/test.rb +39 -0
- data/spec/dummy/config/initializers/carrierwave.rb +8 -0
- data/spec/dummy/config/initializers/devise.rb +190 -0
- data/spec/dummy/config/initializers/dragonfly.rb +21 -0
- data/spec/dummy/config/initializers/formtastic.rb +5 -0
- data/spec/dummy/config/initializers/haml.rb +2 -0
- data/spec/dummy/config/initializers/locomotive.rb +80 -0
- data/spec/dummy/config/initializers/secret_token.rb +7 -0
- data/spec/dummy/config/initializers/session_store.rb +8 -0
- data/spec/dummy/config/initializers/wrap_parameters.rb +14 -0
- data/spec/dummy/config/locales/en.yml +10 -0
- data/spec/dummy/config/locales/fr.yml +10 -0
- data/spec/dummy/config/mongoid.yml +23 -0
- data/spec/dummy/config/routes.rb +9 -0
- data/spec/dummy/public/404.html +26 -0
- data/spec/dummy/public/422.html +26 -0
- data/spec/dummy/public/500.html +26 -0
- data/spec/dummy/script/rails +6 -0
- data/spec/fixtures/assets/5k.png +0 -0
- data/spec/fixtures/assets/5k_2.png +0 -0
- data/spec/fixtures/assets/application.js +1 -0
- data/spec/fixtures/assets/main.css +1 -0
- data/spec/fixtures/assets/wrong.txt +1 -0
- data/spec/fixtures/images/logo1.jpg +0 -0
- data/spec/fixtures/images/logo2.jpg +0 -0
- data/spec/lib/core_ext_spec.rb +37 -0
- data/spec/lib/locomotive/configuration_spec.rb +26 -0
- data/spec/lib/locomotive/httparty/webservice_spec.rb +33 -0
- data/spec/lib/locomotive/liquid/drops/content_entry_spec.rb +46 -0
- data/spec/lib/locomotive/liquid/drops/current_user.rb +63 -0
- data/spec/lib/locomotive/liquid/drops/page_spec.rb +143 -0
- data/spec/lib/locomotive/liquid/drops/site_spec.rb +32 -0
- data/spec/lib/locomotive/liquid/filters/date_spec.rb +68 -0
- data/spec/lib/locomotive/liquid/filters/html_spec.rb +224 -0
- data/spec/lib/locomotive/liquid/filters/misc_spec.rb +56 -0
- data/spec/lib/locomotive/liquid/filters/resize_spec.rb +61 -0
- data/spec/lib/locomotive/liquid/filters/text_spec.rb +32 -0
- data/spec/lib/locomotive/liquid/filters/translate_spec.rb +50 -0
- data/spec/lib/locomotive/liquid/tags/consume_spec.rb +52 -0
- data/spec/lib/locomotive/liquid/tags/csrf_spec.rb +26 -0
- data/spec/lib/locomotive/liquid/tags/editable/short_text_spec.rb +46 -0
- data/spec/lib/locomotive/liquid/tags/extends_spec.rb +58 -0
- data/spec/lib/locomotive/liquid/tags/locale_switcher_spec.rb +47 -0
- data/spec/lib/locomotive/liquid/tags/nav_spec.rb +142 -0
- data/spec/lib/locomotive/liquid/tags/paginate_spec.rb +139 -0
- data/spec/lib/locomotive/liquid/tags/seo_spec.rb +135 -0
- data/spec/lib/locomotive/liquid/tags/with_scope_spec.rb +49 -0
- data/spec/lib/locomotive/presentable_spec.rb +184 -0
- data/spec/lib/locomotive/render_spec.rb +209 -0
- data/spec/lib/locomotive/routing/site_dispatcher_spec.rb +258 -0
- data/spec/mailers/locomotive/notifications_spec.rb +57 -0
- data/spec/models/locomotive/ability_spec.rb +132 -0
- data/spec/models/locomotive/account_spec.rb +87 -0
- data/spec/models/locomotive/content_asset_spec.rb +46 -0
- data/spec/models/locomotive/content_entry_spec.rb +269 -0
- data/spec/models/locomotive/content_type_spec.rb +391 -0
- data/spec/models/locomotive/editable_control_spec.rb +70 -0
- data/spec/models/locomotive/editable_file_spec.rb +95 -0
- data/spec/models/locomotive/editable_long_text_spec.rb +50 -0
- data/spec/models/locomotive/editable_short_text_spec.rb +174 -0
- data/spec/models/locomotive/extensions/page/editable_elements_spec.rb +67 -0
- data/spec/models/locomotive/extensions/page/redirect_spec.rb +28 -0
- data/spec/models/locomotive/extensions/page/render_spec.rb +88 -0
- data/spec/models/locomotive/extensions/site/locales_spec.rb +52 -0
- data/spec/models/locomotive/extensions/site/subdomain_domains_spec.rb +25 -0
- data/spec/models/locomotive/membership_spec.rb +61 -0
- data/spec/models/locomotive/page_spec.rb +427 -0
- data/spec/models/locomotive/site_spec.rb +176 -0
- data/spec/models/locomotive/snippet_spec.rb +77 -0
- data/spec/models/locomotive/theme_asset_spec.rb +128 -0
- data/spec/requests/seo_trailing_slash_spec.rb +25 -0
- data/spec/support/carrierwave.rb +50 -0
- data/spec/support/cells.rb +3 -0
- data/spec/support/controller.rb +32 -0
- data/spec/support/factories.rb +156 -0
- data/spec/support/locomotive.rb +37 -0
- data/spec/support/matchers.rb +127 -0
- data/spec/support/middlewares.rb +0 -0
- data/vendor/assets/fonts/locomotive/fontawesome-webfont.eot +0 -0
- data/vendor/assets/fonts/locomotive/fontawesome-webfont.svg +255 -0
- data/vendor/assets/fonts/locomotive/fontawesome-webfont.ttf +0 -0
- data/vendor/assets/fonts/locomotive/fontawesome-webfont.woff +0 -0
- data/vendor/assets/javascripts/locomotive/backbone.modelbinding.js +34 -9
- data/vendor/assets/javascripts/locomotive/backbone.sync.js +2 -2
- data/vendor/assets/javascripts/locomotive/form_submit_notification.js +2 -2
- data/vendor/assets/javascripts/locomotive/growl.js +10 -10
- data/vendor/assets/javascripts/locomotive/menu_toggler.js +8 -4
- data/vendor/assets/javascripts/locomotive/slugify.js +21 -5
- data/vendor/assets/stylesheets/locomotive/font-awesome.scss +329 -0
- data/vendor/assets/stylesheets/locomotive/jquery/{ui.css → ui.css.scss} +19 -19
- metadata +538 -195
- data/app/assets/images/locomotive/background/light.png +0 -0
- data/app/assets/images/locomotive/datepicker/ui-widget-left-icon.png +0 -0
- data/app/assets/images/locomotive/datepicker/ui-widget-right-icon.png +0 -0
- data/app/assets/images/locomotive/form/folded-arrow-off.png +0 -0
- data/app/assets/images/locomotive/form/folded-arrow-on.png +0 -0
- data/app/assets/images/locomotive/form/icons/drag.png +0 -0
- data/app/assets/images/locomotive/form/icons/edit.png +0 -0
- data/app/assets/images/locomotive/form/icons/error.png +0 -0
- data/app/assets/images/locomotive/form/icons/spinner.gif +0 -0
- data/app/assets/images/locomotive/form/icons/trash.png +0 -0
- data/app/assets/images/locomotive/form/pen.png +0 -0
- data/app/assets/images/locomotive/form/spinner.gif +0 -0
- data/app/assets/images/locomotive/icons/actions.png +0 -0
- data/app/assets/images/locomotive/icons/asset_add.png +0 -0
- data/app/assets/images/locomotive/icons/asset_switch.png +0 -0
- data/app/assets/images/locomotive/icons/membership_edit.png +0 -0
- data/app/assets/images/locomotive/icons/membership_lock.png +0 -0
- data/app/assets/images/locomotive/inline_editor/back.png +0 -0
- data/app/assets/images/locomotive/list/icons/cross.png +0 -0
- data/app/assets/images/locomotive/list/icons/drag.png +0 -0
- data/app/assets/images/locomotive/list/icons/move.png +0 -0
- data/app/assets/images/locomotive/list/icons/move_off.png +0 -0
- data/app/assets/images/locomotive/list/icons/node_closed.png +0 -0
- data/app/assets/images/locomotive/list/icons/node_open.png +0 -0
- data/app/assets/images/locomotive/list/icons/pencil.png +0 -0
- data/app/assets/images/locomotive/list/icons/pencil_off.png +0 -0
- data/app/assets/images/locomotive/list/icons/popup.png +0 -0
- data/app/assets/images/locomotive/list/icons/popup_off.png +0 -0
- data/app/assets/images/locomotive/list/icons/redirect.png +0 -0
- data/app/assets/images/locomotive/list/icons/states.png +0 -0
- data/app/assets/images/locomotive/list/icons/template.png +0 -0
- data/app/assets/images/locomotive/list/icons/toggle.png +0 -0
- data/app/assets/images/locomotive/list/icons/toggle_off.png +0 -0
- data/app/assets/images/locomotive/list/icons/trash.png +0 -0
- data/app/assets/images/locomotive/list/icons/trash_off.png +0 -0
- data/app/assets/images/locomotive/menu/icons.png +0 -0
- data/app/assets/images/locomotive/menu/popup/add.png +0 -0
- data/app/assets/images/locomotive/menu/popup/bottom-right-corner.png +0 -0
- data/app/assets/images/locomotive/menu/popup/bullet.png +0 -0
- data/app/assets/images/locomotive/plugins/selectmenu/arrow.png +0 -0
- data/app/assets/images/locomotive/plugins/selectmenu/background.png +0 -0
- data/app/assets/images/locomotive/plugins/sites_picker_entry_bg.png +0 -0
- data/app/assets/images/locomotive/simple/light_bg.png +0 -0
- data/app/assets/images/locomotive/simple/wrapper_bg.png +0 -0
- data/app/assets/stylesheets/locomotive/backoffice/menu/_icons.css.scss +0 -30
- data/app/uploaders/locomotive/theme_uploader.rb +0 -19
- data/lib/locomotive/mongoid/model_extensions.rb +0 -1
- data/lib/tasks/cucumber.rake +0 -66
- data/vendor/assets/stylesheets/locomotive/jquery.css +0 -3
@@ -0,0 +1,187 @@
|
|
1
|
+
Feature: Pages
|
2
|
+
In order to ensure pages are not tampered with
|
3
|
+
As an admin, designer or author
|
4
|
+
I will be restricted based on my role
|
5
|
+
|
6
|
+
Background:
|
7
|
+
Given I have the site: "test site" set up
|
8
|
+
And I have a custom model named "Projects" with
|
9
|
+
| label | type | required |
|
10
|
+
| Name | string | true |
|
11
|
+
| Description | text | false |
|
12
|
+
And I have a designer and an author
|
13
|
+
And a page named "hello-world" with id "4f832c2cb0d86d3f42fffffe"
|
14
|
+
And a page named "goodbye-world" with id "4f832c2cb0d86d3f42ffffff"
|
15
|
+
|
16
|
+
Scenario: As an unauthenticated user
|
17
|
+
Given I am not authenticated
|
18
|
+
When I do an API GET to pages.json
|
19
|
+
Then the JSON response at "error" should be "You need to sign in or sign up before continuing."
|
20
|
+
|
21
|
+
# listing pages
|
22
|
+
|
23
|
+
Scenario: Accessing pages as an Admin
|
24
|
+
Given I have an "admin" API token
|
25
|
+
When I do an API GET request to pages.json
|
26
|
+
Then the JSON response should be an array
|
27
|
+
And the JSON response should have 4 entries
|
28
|
+
|
29
|
+
Scenario: Accessing pages as a Designer
|
30
|
+
Given I have a "designer" API token
|
31
|
+
When I do an API GET request to pages.json
|
32
|
+
Then the JSON response should be an array
|
33
|
+
And the JSON response should have 4 entries
|
34
|
+
|
35
|
+
Scenario: Accessing pages as an Author
|
36
|
+
Given I have an "author" API token
|
37
|
+
When I do an API GET request to pages.json
|
38
|
+
Then the JSON response should be an array
|
39
|
+
And the JSON response should have 4 entries
|
40
|
+
|
41
|
+
# showing page
|
42
|
+
|
43
|
+
Scenario: Accessing page as an Admin
|
44
|
+
Given I have an "admin" API token
|
45
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
46
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
47
|
+
And the JSON response at "slug" should be "hello-world"
|
48
|
+
|
49
|
+
Scenario: Accessing page as a Designer
|
50
|
+
Given I have a "designer" API token
|
51
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
52
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
53
|
+
And the JSON response at "slug" should be "hello-world"
|
54
|
+
|
55
|
+
Scenario: Accessing page as an Author
|
56
|
+
Given I have an "author" API token
|
57
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
58
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
59
|
+
And the JSON response at "slug" should be "hello-world"
|
60
|
+
|
61
|
+
# create page
|
62
|
+
|
63
|
+
Scenario: Creating new page as an Admin
|
64
|
+
Given I have an "admin" API token
|
65
|
+
When I do an API GET request to pages.json
|
66
|
+
Then the JSON response should be an array
|
67
|
+
And the JSON response should have 4 entries
|
68
|
+
When I do an API POST to pages.json with:
|
69
|
+
"""
|
70
|
+
{
|
71
|
+
"page": {
|
72
|
+
"title": "New Page",
|
73
|
+
"slug": "new-page",
|
74
|
+
"parent_fullpath": "index"
|
75
|
+
}
|
76
|
+
}
|
77
|
+
"""
|
78
|
+
When I do an API GET request to pages.json
|
79
|
+
Then the JSON response should be an array
|
80
|
+
And the JSON response should have 5 entries
|
81
|
+
|
82
|
+
Scenario: Creating new page as a Designer
|
83
|
+
Given I have a "designer" API token
|
84
|
+
When I do an API GET request to pages.json
|
85
|
+
Then the JSON response should be an array
|
86
|
+
And the JSON response should have 4 entries
|
87
|
+
When I do an API POST to pages.json with:
|
88
|
+
"""
|
89
|
+
{
|
90
|
+
"page": {
|
91
|
+
"title": "New Page",
|
92
|
+
"slug": "new-page",
|
93
|
+
"parent_fullpath": "index"
|
94
|
+
}
|
95
|
+
}
|
96
|
+
"""
|
97
|
+
When I do an API GET request to pages.json
|
98
|
+
Then the JSON response should be an array
|
99
|
+
And the JSON response should have 5 entries
|
100
|
+
|
101
|
+
Scenario: Creating new page as an Author
|
102
|
+
Given I have an "author" API token
|
103
|
+
When I do an API POST to pages.json with:
|
104
|
+
"""
|
105
|
+
{
|
106
|
+
"page": {
|
107
|
+
"title": "New Page",
|
108
|
+
"slug": "new-page",
|
109
|
+
"parent_fullpath": "index"
|
110
|
+
}
|
111
|
+
}
|
112
|
+
"""
|
113
|
+
Then an access denied error should occur
|
114
|
+
|
115
|
+
# update page
|
116
|
+
|
117
|
+
Scenario: Updating page as an Admin
|
118
|
+
Given I have an "admin" API token
|
119
|
+
When I do an API PUT to pages/4f832c2cb0d86d3f42fffffe.json with:
|
120
|
+
"""
|
121
|
+
{
|
122
|
+
"page": {
|
123
|
+
"title": "Brand new updated title"
|
124
|
+
}
|
125
|
+
}
|
126
|
+
"""
|
127
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
128
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
129
|
+
And the JSON response at "title" should be "Brand new updated title"
|
130
|
+
|
131
|
+
Scenario: Updating page as a Designer
|
132
|
+
Given I have a "designer" API token
|
133
|
+
When I do an API PUT to pages/4f832c2cb0d86d3f42fffffe.json with:
|
134
|
+
"""
|
135
|
+
{
|
136
|
+
"page": {
|
137
|
+
"title": "Brand new updated title"
|
138
|
+
}
|
139
|
+
}
|
140
|
+
"""
|
141
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
142
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
143
|
+
And the JSON response at "title" should be "Brand new updated title"
|
144
|
+
|
145
|
+
Scenario: Updating page as an Author
|
146
|
+
Given I have a "author" API token
|
147
|
+
When I do an API PUT to pages/4f832c2cb0d86d3f42fffffe.json with:
|
148
|
+
"""
|
149
|
+
{
|
150
|
+
"page": {
|
151
|
+
"title": "Brand new updated title"
|
152
|
+
}
|
153
|
+
}
|
154
|
+
"""
|
155
|
+
When I do an API GET request to pages/4f832c2cb0d86d3f42fffffe.json
|
156
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
157
|
+
And the JSON response at "title" should be "Brand new updated title"
|
158
|
+
|
159
|
+
# destroy page
|
160
|
+
|
161
|
+
Scenario: Destroying page as an Admin
|
162
|
+
Given I have an "admin" API token
|
163
|
+
When I do an API GET request to pages.json
|
164
|
+
Then the JSON response should be an array
|
165
|
+
And the JSON response should have 4 entries
|
166
|
+
When I do an API DELETE to pages/4f832c2cb0d86d3f42fffffe.json
|
167
|
+
When I do an API GET request to pages.json
|
168
|
+
Then the JSON response should be an array
|
169
|
+
And the JSON response should have 3 entries
|
170
|
+
|
171
|
+
Scenario: Destroying page as a Designer
|
172
|
+
Given I have a "designer" API token
|
173
|
+
When I do an API GET request to pages.json
|
174
|
+
Then the JSON response should be an array
|
175
|
+
And the JSON response should have 4 entries
|
176
|
+
When I do an API DELETE to pages/4f832c2cb0d86d3f42fffffe.json
|
177
|
+
When I do an API GET request to pages.json
|
178
|
+
Then the JSON response should be an array
|
179
|
+
And the JSON response should have 3 entries
|
180
|
+
|
181
|
+
Scenario: Deleting page as an Author
|
182
|
+
Given I have a "author" API token
|
183
|
+
When I do an API GET request to pages.json
|
184
|
+
Then the JSON response should be an array
|
185
|
+
And the JSON response should have 4 entries
|
186
|
+
When I do an API DELETE to pages/4f832c2cb0d86d3f42fffffe.json
|
187
|
+
Then an access denied error should occur
|
@@ -0,0 +1,213 @@
|
|
1
|
+
Feature: Sites
|
2
|
+
In order to ensure sites are not tampered with
|
3
|
+
As an admin, designer or author
|
4
|
+
I will be restricted based on my role
|
5
|
+
|
6
|
+
Background:
|
7
|
+
Given I have the site: "test site" set up with id: "4f832c2cb0d86d3f42fffffe"
|
8
|
+
And I have the site: "another site" set up with id: "4f832c2cb0d86d3f42ffffff"
|
9
|
+
And I have a designer and an author
|
10
|
+
|
11
|
+
Scenario: As an unauthenticated user
|
12
|
+
Given I am not authenticated
|
13
|
+
When I do an API GET to sites.json
|
14
|
+
Then the JSON response at "error" should be "You need to sign in or sign up before continuing."
|
15
|
+
|
16
|
+
# listing sites
|
17
|
+
|
18
|
+
Scenario: Accessing sites as an Admin
|
19
|
+
Given I have an "admin" API token
|
20
|
+
When I do an API GET request to sites.json
|
21
|
+
Then the JSON response should be an array
|
22
|
+
And the JSON response should have 2 entries
|
23
|
+
|
24
|
+
Scenario: Accessing sites as a Designer
|
25
|
+
Given I have a "designer" API token
|
26
|
+
When I do an API GET request to sites.json
|
27
|
+
Then the JSON response should be an array
|
28
|
+
And the JSON response should have 1 entry
|
29
|
+
|
30
|
+
Scenario: Accessing sites as an Author
|
31
|
+
Given I have an "author" API token
|
32
|
+
When I do an API GET request to sites.json
|
33
|
+
Then the JSON response should be an array
|
34
|
+
And the JSON response should have 1 entry
|
35
|
+
|
36
|
+
# showing site
|
37
|
+
|
38
|
+
Scenario: Accessing site as an Admin
|
39
|
+
Given I have an "admin" API token
|
40
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
41
|
+
Then the JSON response at "name" should be "Locomotive test website"
|
42
|
+
|
43
|
+
Scenario: Accessing my site as a Designer
|
44
|
+
Given I have a "designer" API token
|
45
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
46
|
+
Then the JSON response at "name" should be "Locomotive test website"
|
47
|
+
|
48
|
+
Scenario: Accessing other site as a Designer
|
49
|
+
Given I have a "designer" API token
|
50
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42ffffff.json
|
51
|
+
# Then I print the json response
|
52
|
+
Then an access denied error should occur
|
53
|
+
|
54
|
+
Scenario: Accessing my site as an Author
|
55
|
+
Given I have an "author" API token
|
56
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
57
|
+
Then the JSON response at "name" should be "Locomotive test website"
|
58
|
+
|
59
|
+
Scenario: Accessing other site as an Author
|
60
|
+
Given I have an "author" API token
|
61
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42ffffff.json
|
62
|
+
Then an access denied error should occur
|
63
|
+
|
64
|
+
# create site
|
65
|
+
|
66
|
+
Scenario: Creating new site as an Admin
|
67
|
+
Given I have an "admin" API token
|
68
|
+
When I do an API GET request to sites.json
|
69
|
+
Then the JSON response should be an array
|
70
|
+
And the JSON response should have 2 entries
|
71
|
+
When I do an API POST to sites.json with:
|
72
|
+
"""
|
73
|
+
{
|
74
|
+
"site": {
|
75
|
+
"name": "New site",
|
76
|
+
"subdomain": "new-site"
|
77
|
+
}
|
78
|
+
}
|
79
|
+
"""
|
80
|
+
When I do an API GET request to sites.json
|
81
|
+
Then the JSON response should be an array
|
82
|
+
And the JSON response should have 3 entries
|
83
|
+
And the JSON response at "0/memberships" should not have 0 entries
|
84
|
+
And the JSON response at "1/memberships" should not have 0 entries
|
85
|
+
And the JSON response at "2/memberships" should not have 0 entries
|
86
|
+
|
87
|
+
|
88
|
+
Scenario: Creating new site as a Designer
|
89
|
+
Given I have a "designer" API token
|
90
|
+
When I do an API POST to sites.json with:
|
91
|
+
"""
|
92
|
+
{
|
93
|
+
"site": {
|
94
|
+
"name": "New site",
|
95
|
+
"subdomain": "new-site"
|
96
|
+
}
|
97
|
+
}
|
98
|
+
"""
|
99
|
+
Then an access denied error should occur
|
100
|
+
|
101
|
+
Scenario: Creating new site as an Author
|
102
|
+
Given I have an "author" API token
|
103
|
+
When I do an API POST to sites.json with:
|
104
|
+
"""
|
105
|
+
{
|
106
|
+
"site": {
|
107
|
+
"name": "New site",
|
108
|
+
"subdomain": "new-site"
|
109
|
+
}
|
110
|
+
}
|
111
|
+
"""
|
112
|
+
Then an access denied error should occur
|
113
|
+
|
114
|
+
# update site
|
115
|
+
|
116
|
+
Scenario: Updating site as an Admin
|
117
|
+
Given I have an "admin" API token
|
118
|
+
When I do an API PUT to sites/4f832c2cb0d86d3f42fffffe.json with:
|
119
|
+
"""
|
120
|
+
{
|
121
|
+
"site": {
|
122
|
+
"name": "Brand new updated name"
|
123
|
+
}
|
124
|
+
}
|
125
|
+
"""
|
126
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
127
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
128
|
+
And the JSON response at "name" should be "Brand new updated name"
|
129
|
+
|
130
|
+
Scenario: Updating my site as a Designer
|
131
|
+
Given I have a "designer" API token
|
132
|
+
When I do an API PUT to sites/4f832c2cb0d86d3f42fffffe.json with:
|
133
|
+
"""
|
134
|
+
{
|
135
|
+
"site": {
|
136
|
+
"name": "Brand new updated name"
|
137
|
+
}
|
138
|
+
}
|
139
|
+
"""
|
140
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
141
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
142
|
+
And the JSON response at "name" should be "Brand new updated name"
|
143
|
+
|
144
|
+
Scenario: Updating other site as a Designer
|
145
|
+
Given I have a "designer" API token
|
146
|
+
When I do an API PUT to sites/4f832c2cb0d86d3f42ffffff.json with:
|
147
|
+
"""
|
148
|
+
{
|
149
|
+
"site": {
|
150
|
+
"name": "Brand new updated name"
|
151
|
+
}
|
152
|
+
}
|
153
|
+
"""
|
154
|
+
Then an access denied error should occur
|
155
|
+
|
156
|
+
Scenario: Updating my site as an Author
|
157
|
+
Given I have a "author" API token
|
158
|
+
When I do an API PUT to sites/4f832c2cb0d86d3f42fffffe.json with:
|
159
|
+
"""
|
160
|
+
{
|
161
|
+
"site": {
|
162
|
+
"name": "Brand new updated name"
|
163
|
+
}
|
164
|
+
}
|
165
|
+
"""
|
166
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
167
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
168
|
+
And the JSON response at "name" should be "Brand new updated name"
|
169
|
+
|
170
|
+
Scenario: Updating other site as an Author
|
171
|
+
Given I have a "author" API token
|
172
|
+
When I do an API PUT to sites/4f832c2cb0d86d3f42ffffff.json with:
|
173
|
+
"""
|
174
|
+
{
|
175
|
+
"site": {
|
176
|
+
"name": "Brand new updated name"
|
177
|
+
}
|
178
|
+
}
|
179
|
+
"""
|
180
|
+
Then an access denied error should occur
|
181
|
+
|
182
|
+
# destroy site
|
183
|
+
|
184
|
+
Scenario: Destroying site as an Admin
|
185
|
+
Given I have an "admin" API token
|
186
|
+
When I do an API GET request to sites.json
|
187
|
+
Then the JSON response should be an array
|
188
|
+
And the JSON response should have 2 entries
|
189
|
+
When I do an API DELETE to sites/4f832c2cb0d86d3f42fffffe.json
|
190
|
+
When I do an API GET request to sites.json
|
191
|
+
Then the JSON response should be an array
|
192
|
+
And the JSON response should have 1 entries
|
193
|
+
|
194
|
+
Scenario: Destroying my site as a Designer
|
195
|
+
Given I have a "designer" API token
|
196
|
+
When I do an API DELETE to sites/4f832c2cb0d86d3f42fffffe.json
|
197
|
+
When I do an API GET request to sites/4f832c2cb0d86d3f42fffffe.json
|
198
|
+
Then it should not exist
|
199
|
+
|
200
|
+
Scenario: Deleting other site as a Designer
|
201
|
+
Given I have a "designer" API token
|
202
|
+
When I do an API DELETE to sites/4f832c2cb0d86d3f42ffffff.json
|
203
|
+
Then an access denied error should occur
|
204
|
+
|
205
|
+
Scenario: Deleting my site as an Author
|
206
|
+
Given I have a "author" API token
|
207
|
+
When I do an API DELETE to sites/4f832c2cb0d86d3f42fffffe.json
|
208
|
+
Then an access denied error should occur
|
209
|
+
|
210
|
+
Scenario: Deleting other site as an Author
|
211
|
+
Given I have a "author" API token
|
212
|
+
When I do an API DELETE to sites/4f832c2cb0d86d3f42ffffff.json
|
213
|
+
Then an access denied error should occur
|
@@ -0,0 +1,179 @@
|
|
1
|
+
Feature: Snippets
|
2
|
+
In order to ensure snippets are not tampered with
|
3
|
+
As an admin, designer or author
|
4
|
+
I will be restricted based on my role
|
5
|
+
|
6
|
+
Background:
|
7
|
+
Given I have the site: "test site" set up
|
8
|
+
And a snippet named "My Snippet" with id "4f832c2cb0d86d3f42fffffe" and template:
|
9
|
+
"""
|
10
|
+
My Snippet
|
11
|
+
"""
|
12
|
+
And I have a designer and an author
|
13
|
+
|
14
|
+
Scenario: As an unauthenticated user
|
15
|
+
Given I am not authenticated
|
16
|
+
When I do an API GET to snippets.json
|
17
|
+
Then the JSON response at "error" should be "You need to sign in or sign up before continuing."
|
18
|
+
|
19
|
+
# listing content types
|
20
|
+
|
21
|
+
Scenario: Accessing snippets as an Admin
|
22
|
+
Given I have an "admin" API token
|
23
|
+
When I do an API GET request to snippets.json
|
24
|
+
Then the JSON response should be an array
|
25
|
+
And the JSON response should have 1 entry
|
26
|
+
|
27
|
+
Scenario: Accessing snippets as a Designer
|
28
|
+
Given I have a "designer" API token
|
29
|
+
When I do an API GET request to snippets.json
|
30
|
+
Then the JSON response should be an array
|
31
|
+
And the JSON response should have 1 entry
|
32
|
+
|
33
|
+
Scenario: Accessing snippets as an Author
|
34
|
+
Given I have an "author" API token
|
35
|
+
When I do an API GET request to snippets.json
|
36
|
+
Then an access denied error should occur
|
37
|
+
|
38
|
+
# showing snippet
|
39
|
+
|
40
|
+
Scenario: Accessing snippet as an Admin
|
41
|
+
Given I have an "admin" API token
|
42
|
+
When I do an API GET request to snippets/4f832c2cb0d86d3f42fffffe.json
|
43
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
44
|
+
And the JSON response at "name" should be "My Snippet"
|
45
|
+
|
46
|
+
Scenario: Accessing snippet as a Designer
|
47
|
+
Given I have a "designer" API token
|
48
|
+
When I do an API GET request to snippets/4f832c2cb0d86d3f42fffffe.json
|
49
|
+
Then the JSON response at "id" should be "4f832c2cb0d86d3f42fffffe"
|
50
|
+
And the JSON response at "name" should be "My Snippet"
|
51
|
+
|
52
|
+
Scenario: Accessing snippet as an Author
|
53
|
+
Given I have an "author" API token
|
54
|
+
When I do an API GET request to snippets/4f832c2cb0d86d3f42fffffe.json
|
55
|
+
Then an access denied error should occur
|
56
|
+
|
57
|
+
# create snippet
|
58
|
+
|
59
|
+
Scenario: Creating new snippet as an Admin
|
60
|
+
Given I have an "admin" API token
|
61
|
+
When I do an API GET request to snippets.json
|
62
|
+
Then the JSON response should be an array
|
63
|
+
And the JSON response should have 1 entry
|
64
|
+
When I do an API POST to snippets.json with:
|
65
|
+
"""
|
66
|
+
{
|
67
|
+
"snippet": {
|
68
|
+
"name": "Another snippet",
|
69
|
+
"template": "<h1>Another Snippet!</h1>"
|
70
|
+
}
|
71
|
+
}
|
72
|
+
"""
|
73
|
+
When I do an API GET request to snippets.json
|
74
|
+
Then the JSON response should be an array
|
75
|
+
And the JSON response should have 2 entries
|
76
|
+
And the JSON should have the following:
|
77
|
+
| 0/name | "Another snippet" |
|
78
|
+
| 0/template | "<h1>Another Snippet!</h1>" |
|
79
|
+
|
80
|
+
Scenario: Creating new snippet as a Designer
|
81
|
+
Given I have a "designer" API token
|
82
|
+
When I do an API GET request to snippets.json
|
83
|
+
Then the JSON response should be an array
|
84
|
+
And the JSON response should have 1 entry
|
85
|
+
When I do an API POST to snippets.json with:
|
86
|
+
"""
|
87
|
+
{
|
88
|
+
"snippet": {
|
89
|
+
"name": "Another snippet",
|
90
|
+
"template": "<h1>Another Snippet!</h1>"
|
91
|
+
}
|
92
|
+
}
|
93
|
+
"""
|
94
|
+
When I do an API GET request to snippets.json
|
95
|
+
Then the JSON response should be an array
|
96
|
+
And the JSON response should have 2 entries
|
97
|
+
And the JSON should have the following:
|
98
|
+
| 0/name | "Another snippet" |
|
99
|
+
| 0/template | "<h1>Another Snippet!</h1>" |
|
100
|
+
|
101
|
+
Scenario: Creating new snippet as an Author
|
102
|
+
Given I have an "author" API token
|
103
|
+
When I do an API POST to snippets.json with:
|
104
|
+
"""
|
105
|
+
{
|
106
|
+
"snippet": {
|
107
|
+
"name": "Another snippet",
|
108
|
+
"template": "<h1>Another Snippet!</h1>"
|
109
|
+
}
|
110
|
+
}
|
111
|
+
"""
|
112
|
+
Then an access denied error should occur
|
113
|
+
|
114
|
+
# update snippet
|
115
|
+
|
116
|
+
Scenario: Updating snippet as an Admin
|
117
|
+
Given I have an "admin" API token
|
118
|
+
When I do an API PUT to snippets/4f832c2cb0d86d3f42fffffe.json with:
|
119
|
+
"""
|
120
|
+
{
|
121
|
+
"snippet": {
|
122
|
+
"name": "Brand new updated name"
|
123
|
+
}
|
124
|
+
}
|
125
|
+
"""
|
126
|
+
When I do an API GET request to snippets/4f832c2cb0d86d3f42fffffe.json
|
127
|
+
Then the JSON response at "name" should be "Brand new updated name"
|
128
|
+
|
129
|
+
Scenario: Updating snippet as a Designer
|
130
|
+
Given I have a "designer" API token
|
131
|
+
When I do an API PUT to snippets/4f832c2cb0d86d3f42fffffe.json with:
|
132
|
+
"""
|
133
|
+
{
|
134
|
+
"snippet": {
|
135
|
+
"name": "Brand new updated name"
|
136
|
+
}
|
137
|
+
}
|
138
|
+
"""
|
139
|
+
When I do an API GET request to snippets/4f832c2cb0d86d3f42fffffe.json
|
140
|
+
Then the JSON response at "name" should be "Brand new updated name"
|
141
|
+
|
142
|
+
Scenario: Updating snippet as an Author
|
143
|
+
Given I have a "author" API token
|
144
|
+
When I do an API PUT to snippets/4f832c2cb0d86d3f42fffffe.json with:
|
145
|
+
"""
|
146
|
+
{
|
147
|
+
"snippet": {
|
148
|
+
"name": "Brand new updated name"
|
149
|
+
}
|
150
|
+
}
|
151
|
+
"""
|
152
|
+
Then an access denied error should occur
|
153
|
+
|
154
|
+
# destroy snippet
|
155
|
+
|
156
|
+
Scenario: Destroying snippet as an Admin
|
157
|
+
Given I have an "admin" API token
|
158
|
+
When I do an API GET request to snippets.json
|
159
|
+
Then the JSON response should be an array
|
160
|
+
And the JSON response should have 1 entry
|
161
|
+
When I do an API DELETE to snippets/4f832c2cb0d86d3f42fffffe.json
|
162
|
+
When I do an API GET request to snippets.json
|
163
|
+
Then the JSON response should be an array
|
164
|
+
And the JSON response should have 0 entries
|
165
|
+
|
166
|
+
Scenario: Destroying snippet as a Designer
|
167
|
+
Given I have a "designer" API token
|
168
|
+
When I do an API GET request to snippets.json
|
169
|
+
Then the JSON response should be an array
|
170
|
+
And the JSON response should have 1 entry
|
171
|
+
When I do an API DELETE to snippets/4f832c2cb0d86d3f42fffffe.json
|
172
|
+
When I do an API GET request to snippets.json
|
173
|
+
Then the JSON response should be an array
|
174
|
+
And the JSON response should have 0 entries
|
175
|
+
|
176
|
+
Scenario: Deleting snippet as an Author
|
177
|
+
Given I have a "author" API token
|
178
|
+
When I do an API DELETE to snippets/4f832c2cb0d86d3f42fffffe.json
|
179
|
+
Then an access denied error should occur
|