mks_auth 1.0.0 → 1.0.4

data/spec/controllers/mks/auth/menus_controller_spec.rb

@@ -0,0 +1,53 @@
+require 'rails_helper'
+
+module Mks
+  module Auth
+    RSpec.describe MenusController, type: :controller do
+      routes { Mks::Auth::Engine.routes }
+
+      before(:each) do
+        u = create(:user)
+        token = Mks::Auth::TokenAuth.issue(name: u.full_name, email: u.email, id: u.id)
+        request.headers['Authorization'] = "Bearer #{token}"
+      end
+
+      describe 'GET #menus' do
+        it 'gets menus for user' do
+          m = create(:application_module)
+          ur = create(:user_role, application_module: m)
+          user = create(:user, roles: [ur])
+          p1 = create(:menu, roles: [ur])
+          p2 = create(:menu, roles: [ur])
+          p3 = create(:menu)
+
+          3.times { create(:menu, parent: p1, roles: [ur]) }
+          3.times { create(:menu, parent: p2, roles: [ur]) }
+          3.times { create(:menu, parent: p3) }
+
+          get :menus, params: { id: user.id, app_module: m.code }
+          result = JSON(response.body)
+          expect(result['data'].count).to eq 2
+        end
+
+        it 'gets menus only for the current application module' do
+          m1 = create(:application_module)
+          m2 = create(:application_module)
+          ur1 = create(:user_role, application_module: m1)
+          ur2 = create(:user_role, application_module: m2)
+
+          menu1 = create(:menu, application_module: m1, roles: [ur1])
+          menu2 = create(:menu, application_module: m1, roles: [ur1])
+          menu3 = create(:menu, application_module: m2, roles: [ur2])
+          menu4 = create(:menu, application_module: m2, roles: [ur2])
+
+          u = create(:user, roles: [ur1, ur2], application_modules: [m1, m2])
+
+          get :menus, params: { id: u.id, app_module: m1.code }
+          result = JSON(response.body)
+          expect(result['data'].count).to eq 2
+          # expect(result['data'])
+        end
+      end
+    end
+  end
+end

data/spec/controllers/mks/auth/user_roles_controller_spec.rb

@@ -0,0 +1,130 @@
+require 'rails_helper'
+
+module Mks
+  module Auth
+    RSpec.describe UserRolesController, type: :controller do
+      routes { Mks::Auth::Engine.routes }
+
+      before(:each) do
+        u = create(:user)
+        token = Mks::Auth::TokenAuth.issue(name: u.full_name, email: u.email, id: u.id)
+        request.headers['Authorization'] = "Bearer #{token}"
+      end
+
+      describe 'GET #index' do
+        it 'returns only roles of the application module' do
+          app_module = create(:application_module, code: 'DUMMY')
+          3.times { create(:user_role, application_module: app_module) }
+          create(:user_role)
+
+          get :index
+
+          result = JSON(response.body)
+          expect(result['data'].count).to eq 3
+        end
+      end
+
+      describe 'GET #users' do
+        it 'fetches users of a role' do
+          r1 = create(:user_role)
+          r2 = create(:user_role)
+
+          u1 = create(:user, roles: [r1])
+          u2 = create(:user, roles: [r1, r2])
+          u3 = create(:user, roles: [r1, r2])
+          create(:user, roles: [r2])
+
+          get :users, params: { id: r1.id }
+
+          result = JSON(response.body)
+          data = result['data']
+          users = [JSON(u1.to_json), JSON(u2.to_json), JSON(u3.to_json)]
+          expect(data.count).to eq 3
+          expect((users - data).empty?).to be_truthy
+        end
+      end
+
+      describe 'GET #assigned_roles' do
+        it 'gets all roles with assigned ones as selected for a user' do
+          app_module = create(:application_module, code: 'DUMMY')
+          ur1 = create(:user_role, application_module: app_module)
+          ur2 = create(:user_role, application_module: app_module)
+          create(:user_role, application_module: app_module)
+
+          3.times { create(:user_role) }
+          user = create(:user, roles: [ur1, ur2])
+
+          get :assigned_roles, params: { id: user.id }
+
+          result = JSON(response.body)
+          expect(result['data'].count).to eq 3
+          selected = result['data'].select { |d| (d['selected'])}
+          unselected = result['data'].reject { |d| (d['selected'])}
+
+          expect(selected.count).to eq 2
+          expect(unselected.count).to eq 1
+        end
+      end
+
+      describe 'POST #assign_roles' do
+        it 'assigns roles to a user' do
+          app_module = create(:application_module, code: 'DUMMY')
+          ur1 = create(:user_role, application_module: app_module)
+          ur2 = create(:user_role, application_module: app_module)
+          create(:user_role, application_module: app_module)
+
+          u = create(:user)
+          u.application_modules = [app_module]
+
+          payload = [
+            { id: ur1.id, selected: true },
+            { id: ur2.id, selected: true }
+          ]
+
+          post :assign_roles, params: { id: u.id, roles: payload }, format: :json
+          result = JSON(response.body)
+          expect(result['success']).to be_truthy
+          u.reload
+          expect(u.roles.count).to eq 2
+
+        end
+
+        it 'assigns only selected roles' do
+          app_module = create(:application_module, code: 'DUMMY')
+          ur1 = create(:user_role, application_module: app_module)
+          ur2 = create(:user_role, application_module: app_module)
+          ur3 = create(:user_role, application_module: app_module)
+
+          u = create(:user, roles: [ur1, ur2], application_modules: [app_module])
+
+          payload = [
+            { id: ur1.id, selected: true },
+            { id: ur3.id, selected: true }
+          ]
+
+          post :assign_roles, params: { id: u.id, roles: payload }, format: :json
+          result = JSON(response.body)
+          expect(result['success']).to be_truthy
+          u.reload
+          expect(u.roles.count).to eq 2
+          expect(u.roles).to include ur1
+          expect(u.roles).to include ur3
+        end
+
+        it 'removes roles if unselected' do
+          app_module = create(:application_module, code: 'DUMMY')
+          ur1 = create(:user_role, application_module: app_module)
+          ur2 = create(:user_role, application_module: app_module)
+
+          u = create(:user, roles: [ur1, ur2], application_modules: [app_module])
+
+          post :assign_roles, params: { id: u.id, roles: [] }, format: :json
+          result = JSON(response.body)
+          expect(result['success']).to be_truthy
+          u.reload
+          expect(u.roles.count).to eq 0
+        end
+      end
+    end
+  end
+end

data/spec/controllers/mks/auth/users_controller_spec.rb

@@ -1,4 +1,5 @@
 require 'rails_helper'
+require 'mks/auth/token_auth'
 
 module Mks
   module Auth
@@ -8,13 +9,78 @@ module Mks
       describe 'GET #roles' do
         it 'gets roles of a user' do
           u = create(:user)
+          token = Mks::Auth::TokenAuth.issue(name: u.full_name, email: u.email, id: u.id)
+          request.headers['Authorization'] = "Bearer #{token}"
+
           roles = [create(:user_role), create(:user_role)]
           u.roles << roles
-          get :roles, session: { user_id: u.id }
+          get :roles, params: { id: u.id }
           result = JSON(response.body)
           expect(result['data'].count).to eq 2
         end
       end
+
+      describe 'GET #user_roles' do
+        it 'fetches roles' do
+          app_module = create(:application_module, code: 'DUMMY')
+          u = create(:user, application_modules: [app_module])
+          token = Mks::Auth::TokenAuth.issue(name: u.full_name, email: u.email, id: u.id)
+          request.headers['Authorization'] = "Bearer #{token}"
+
+          r1 = create(:user_role, application_module: app_module)
+          r2 = create(:user_role, application_module: app_module)
+          u.roles << r1
+
+          get :user_roles, params: { id: u.id }
+          result = JSON(response.body)
+          expect(result.count).to eq 2
+          expect(result.select { |r| r['id'] == r1.id }[0]['selected']).to be_truthy
+          expect(result.select { |r| r['id'] == r2.id }[0]['selected']).to be_falsey
+        end
+      end
+
+      describe 'POST #save_selected_roles' do
+        it 'saves selected user roles' do
+          app_module = create(:application_module, code: 'DUMMY')
+          u = create(:user, application_modules: [app_module])
+          token = Mks::Auth::TokenAuth.issue(name: u.full_name, email: u.email, id: u.id)
+          request.headers['Authorization'] = "Bearer #{token}"
+
+          r1 = create(:user_role, application_module: app_module)
+          r2 = create(:user_role, application_module: app_module)
+
+          roles = [
+            { id: r1.id, selected: true },
+            { id: r2.id, selected: true }
+          ]
+
+          post :save_selected_roles, params: { id: u.id, roles: roles }
+          u.reload
+          expect(u.roles.count).to eq 2
+        end
+      end
+
+      describe 'POST #login' do
+        it 'returns a jwt token for correct credentials' do
+          m = create(:application_module)
+          ur = create(:user_role, application_module: m)
+          u = create(:user, password: '123456', password_confirmation: '123456', roles: [ur], application_modules: [m])
+          auth = { email: u.email, password: '123456', app_module: m.code }
+          token = Mks::Auth::TokenAuth.issue(u.to_token_payload)
+          post :login, params: { auth: auth }
+
+          result = JSON(response.body)
+          expect(result['jwt']).to eq token
+        end
+
+        it 'returns a 401 status for failed logins' do
+          u = create(:user)
+          auth = { email: u.email, password: '123456' }
+          post :login, params: { auth: auth }
+
+          expect(response.status).to eq 400
+        end
+      end
     end
   end
 end

data/spec/dummy/config/application.rb

@@ -15,6 +15,8 @@ require "mks_auth"
 
 module Dummy
   class Application < Rails::Application
+    config.auth_secret = '31a70abfaa57e5e77a3fc9f27aeaaf59b9a9f5355b5e16c842ee172035a8ed40bf82c1c971ecc176e4f0b4c9e6141db07fd4a5af3f7db9265e719fbe340b105a'
+    config.app_code = 'DUMMY'
     # Settings in config/environments/* take precedence over those specified here.
     # Application configuration should go into files in config/initializers
     # -- all .rb files in that directory are automatically loaded.

data/spec/dummy/config/database.yml

@@ -6,18 +6,20 @@
 #
 default: &default
   adapter: postgresql
+  host: localhost
+  port: 5433
   pool: 5
   timeout: 5000
-  user: henock
+  user: postgres
   pass:
 
 development:
   <<: *default
-  database: logistics_development
+  database: construction_development
 
 # Warning: The database defined as "test" will be erased and
 # re-generated from your development database when you run "rake".
 # Do not set this db to the same as development or production.
 test:
   <<: *default
-  database: logistics_test
+  database: construction_test

data/spec/dummy/config/initializers/new_framework_defaults.rb

@@ -18,7 +18,7 @@ ActiveSupport.to_time_preserves_timezone = true
 Rails.application.config.active_record.belongs_to_required_by_default = true
 
 # Do not halt callback chains when a callback returns false. Previous versions had true.
-ActiveSupport.halt_callback_chains_on_return_false = false
+# ActiveSupport.halt_callback_chains_on_return_false = false
 
 # Configure SSL options to enable HSTS with subdomains. Previous versions had false.
 Rails.application.config.ssl_options = { hsts: { subdomains: true } }

data/spec/dummy/db/schema.rb

@@ -10,66 +10,74 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20161029074023) do
+ActiveRecord::Schema.define(version: 2018_02_01_104912) do
 
   # These are extensions that must be enabled in order to support this database
   enable_extension "plpgsql"
 
   create_table "mks_auth_application_modules", force: :cascade do |t|
-    t.string   "code",       null: false
-    t.string   "name",       null: false
+    t.string "code", null: false
+    t.string "name", null: false
     t.datetime "created_at", null: false
     t.datetime "updated_at", null: false
   end
 
   create_table "mks_auth_menus", force: :cascade do |t|
-    t.string   "text",                  null: false
-    t.string   "icon_cls"
-    t.string   "class_name"
-    t.string   "location"
-    t.integer  "parent_id"
-    t.integer  "application_module_id"
-    t.datetime "created_at",            null: false
-    t.datetime "updated_at",            null: false
-    t.index ["application_module_id"], name: "index_mks_auth_menus_on_application_module_id", using: :btree
-    t.index ["parent_id"], name: "index_mks_auth_menus_on_parent_id", using: :btree
+    t.string "text", null: false
+    t.string "icon_cls"
+    t.string "class_name"
+    t.string "location"
+    t.integer "parent_id"
+    t.bigint "application_module_id"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+    t.index ["application_module_id"], name: "index_mks_auth_menus_on_application_module_id"
+    t.index ["parent_id"], name: "index_mks_auth_menus_on_parent_id"
   end
 
   create_table "mks_auth_menus_user_roles", force: :cascade do |t|
-    t.integer "menu_id"
-    t.integer "user_role_id"
-    t.index ["menu_id", "user_role_id"], name: "index_mks_auth_menus_user_roles_on_menu_id_and_user_role_id", using: :btree
+    t.bigint "menu_id"
+    t.bigint "user_role_id"
+    t.index ["menu_id", "user_role_id"], name: "index_mks_auth_menus_user_roles_on_menu_id_and_user_role_id"
   end
 
   create_table "mks_auth_user_roles", force: :cascade do |t|
-    t.string   "name",       null: false
+    t.string "name", null: false
+    t.bigint "application_module_id"
     t.datetime "created_at", null: false
     t.datetime "updated_at", null: false
+    t.index ["application_module_id"], name: "index_mks_auth_user_roles_on_application_module_id"
   end
 
   create_table "mks_auth_users", force: :cascade do |t|
-    t.string   "first_name",                           null: false
-    t.string   "last_name",                            null: false
-    t.string   "email",                                null: false
-    t.boolean  "active",                default: true, null: false
-    t.integer  "application_module_id"
-    t.string   "password_digest"
-    t.datetime "created_at",                           null: false
-    t.datetime "updated_at",                           null: false
-    t.index ["application_module_id"], name: "index_mks_auth_users_on_application_module_id", using: :btree
+    t.string "first_name", null: false
+    t.string "last_name", null: false
+    t.string "email", null: false
+    t.boolean "active", default: true, null: false
+    t.string "password_digest"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+  end
+
+  create_table "mks_auth_users_application_modules", id: false, force: :cascade do |t|
+    t.bigint "user_id"
+    t.bigint "application_module_id"
+    t.index ["user_id", "application_module_id"], name: "am_on_users_indx"
   end
 
   create_table "mks_auth_users_user_roles", id: false, force: :cascade do |t|
-    t.integer "user_id"
-    t.integer "user_role_id"
-    t.index ["user_id", "user_role_id"], name: "index_mks_auth_users_user_roles_on_user_id_and_user_role_id", using: :btree
+    t.bigint "user_id"
+    t.bigint "user_role_id"
+    t.index ["user_id", "user_role_id"], name: "index_mks_auth_users_user_roles_on_user_id_and_user_role_id"
   end
 
   add_foreign_key "mks_auth_menus", "mks_auth_application_modules", column: "application_module_id"
   add_foreign_key "mks_auth_menus", "mks_auth_menus", column: "parent_id"
   add_foreign_key "mks_auth_menus_user_roles", "mks_auth_menus", column: "menu_id"
   add_foreign_key "mks_auth_menus_user_roles", "mks_auth_user_roles", column: "user_role_id"
-  add_foreign_key "mks_auth_users", "mks_auth_application_modules", column: "application_module_id"
+  add_foreign_key "mks_auth_user_roles", "mks_auth_application_modules", column: "application_module_id"
+  add_foreign_key "mks_auth_users_application_modules", "mks_auth_application_modules", column: "application_module_id"
+  add_foreign_key "mks_auth_users_application_modules", "mks_auth_users", column: "user_id"
   add_foreign_key "mks_auth_users_user_roles", "mks_auth_user_roles", column: "user_role_id"
   add_foreign_key "mks_auth_users_user_roles", "mks_auth_users", column: "user_id"
 end