monty-rspec-rails 0.1.1 → 0.2.0

data/README.md

@@ -8,6 +8,48 @@ In your spec/spec_helper.rb
     require 'monty-rspec-rails'
     include Monty::RspecRails
 
+Some test examples:
+
+    describe UsersController do
+
+      describe "public" do
+        before do
+          public_user
+        end
+
+        it '#new is allowed' do
+          request_allowed?(:new).should be_true
+        end
+
+        # Need to pass in the :post method to mimic the Rails request
+        it '#create is allowed' do
+          request_allowed?(:create, :post).should be_true
+        end
+
+        # Need to pass in the :post method and the put param 
+        # to mimic the Rails request
+        it '#update is not allowed' do
+          request_allowed?(:update, :post, :_method => 'put').should be_false
+        end
+
+        it '#show is not allowed' do
+          request_allowed?(:show).should be_false
+        end
+      end
+
+      describe "protected" do
+        before do
+          authenticated_user
+        end
+
+        it '#show is not allowed' do
+          request_allowed?(:show).should be_true
+        end
+
+        # And so on..
+      end
+    end
+
 
 
 Note on Patches/Pull Requests

data/lib/monty-rspec-rails.rb

@@ -1,7 +1,7 @@
 module Monty
   module RspecRails
     def self.version
-      '0.1.1'
+      '0.2.0'
     end
 
     def public_user
@@ -14,40 +14,14 @@ module Monty
       controller.session[:access_rights] = Monty.authenticated_access
     end
 
-    def all_actions_are_allowed(hash = {})
-      actions = controller_actions
-
-      if excepts = hash.delete(:except)
-        excepts = Array.new(excepts)
-        actions.reject!{|m| excepts.include?(m.to_sym)}
-      end
-
-      c = controller.controller_path
-      actions.each do |method|
-        path = URI.parse(controller.url_for(:controller => c, :action => method)).path
-        next if path == "/"
-        session_regexp.should match(path)
-      end
-    end
-
-    def no_actions_are_allowed
-      c = controller.controller_path
-
-      controller_actions.each do |method|
-        path = URI.parse(controller.url_for(:controller => c, :action => method)).path
-        session_regexp.should_not match(path)
-      end
-    end
-
-    def only_actions_are_allowed(*actions)
-      c = controller.controller_path
-
-      actions.each do |method|
-        path = URI.parse(controller.url_for(:controller => c, :action => method)).path
-        session_regexp.should match(path)
-      end
+    def request_allowed?(action, method = 'get', params = {})
+      path = URI.parse(controller.url_for(:controller => controller.controller_path, :action => action)).path
+      delivery = Monty::Delivery.new  'REQUEST_PATH' => path, 
+                                      'REQUEST_METHOD' => method.to_s,
+                                      'rack.session' => controller.session,
+                                      'rack.input' => StringIO.new(params.to_query)
+      delivery.allowed?
     end
-
     private
 
     def login(session_stubs = {}, user_stubs = {})
@@ -65,17 +39,5 @@ module Monty
     def logout
       @current_user_session = nil
     end
-
-    def session_regexp
-      @session_regexp ||= Regexp.new(/\A#{allowed_actions}\z/)
-    end
-
-    def allowed_actions
-      controller.session[:access_rights]
-    end
-
-    def controller_actions
-      controller.send :action_methods
-    end
   end
 end

metadata

@@ -4,9 +4,9 @@ version: !ruby/object:Gem::Version
   prerelease: false
   segments: 
   - 0
-  - 1
-  - 1
-  version: 0.1.1
+  - 2
+  - 0
+  version: 0.2.0
 platform: ruby
 authors: 
 - stonean
@@ -14,7 +14,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-05-13 00:00:00 -04:00
+date: 2010-05-19 00:00:00 -04:00
 default_executable: 
 dependencies: []