refinerycms-api 1.0.0.beta

data/spec/controllers/refinery/api/v1/images_controller_spec.rb

@@ -0,0 +1,93 @@
+require 'spec_helper'
+
+module Refinery
+  describe Api::V1::ImagesController, type: :controller  do
+    render_views
+
+    let!(:attributes_new) { [ { "image" => [] }, "image_size", "image_title", "image_alt" ] }
+    let!(:attributes) { [ "image", "image_size", "image_title", "image_alt" ] }
+
+    before do
+      stub_authentication!
+    end
+
+    context "as an admin" do
+      sign_in_as_admin!
+
+      it "can learn how to create a new image" do
+        api_get :new
+        expect(json_response["attributes"]).to eq(attributes_new)
+        required_attributes = json_response["required_attributes"]
+        expect(required_attributes).to include("image")
+      end
+
+      it "can upload a new image" do
+        expect do
+          api_post :create, image: { image: [upload_file('thinking-cat.jpg', 'image/jpg')] }
+          expect(response.status).to eq(201)
+          expect(json_response).to have_attributes(attributes)
+        end.to change(Image, :count).by(1)
+      end
+
+      it "can't upload a new image without attachment" do
+        api_post :create, image: {}
+        expect(response.status).to eq(422)
+      end
+
+      context "working with an existing image" do
+        let!(:image) { FactoryGirl.create(:image) }
+
+        it "can get a single image" do
+          api_get :show, id: image.id
+          expect(response.status).to eq(200)
+          expect(json_response).to have_attributes(attributes)
+        end
+
+        it "can get a list of images" do
+          api_get :index
+          expect(response.status).to eq(200)
+          expect(json_response).to have_key("images")
+          expect(json_response["images"].first).to have_attributes(attributes)
+        end
+
+        it "can update image data" do
+          expect(image.image_title).to eq(nil)
+          api_post :update, image: { image_title: "test" }, id: image.id
+          expect(response.status).to eq(200)
+          expect(json_response).to have_attributes(attributes)
+          expect(image.reload.image_title).to eq('test')
+        end
+
+        it "can't update a image without attachment" do
+          api_post :update,
+                   image: {},
+                   id: image.id
+          expect(response.status).to eq(422)
+        end
+
+        it "can delete an image" do
+          api_delete :destroy, id: image.id
+          expect(response.status).to eq(204)
+          expect { image.reload }.to raise_error(ActiveRecord::RecordNotFound)
+        end
+      end
+    end
+
+    context "as a non-admin" do
+      it "cannot create an image" do
+        api_post :create
+        assert_unauthorized!
+      end
+
+      it "cannot update an image" do
+        api_put :update, id: 1
+        assert_not_found!
+      end
+
+      it "cannot delete an image" do
+        api_delete :destroy, id: 1
+        assert_not_found!
+      end
+    end
+  end
+end

data/spec/controllers/refinery/api/v1/inquiries/inquiries_controller_spec.rb

@@ -0,0 +1,126 @@
+require 'spec_helper'
+
+module Refinery
+  describe Api::V1::Inquiries::InquiriesController, type: :controller do
+    render_views
+
+    let!(:inquiry) { FactoryGirl.create(:inquiry) }
+
+    let!(:attributes) { [ "name", "phone", "message", "email"] }
+
+    before do
+      stub_authentication!
+    end
+
+    context "as a normal user" do
+      it "can get a list of inquiries" do
+        api_get :index
+
+        expect(response.status).to eq(200)
+        expect(json_response).to have_key("inquiries")
+        expect(json_response["inquiries"].first.keys).to eq(attributes)
+      end
+
+      # it "paginates through taxons" do
+      #   new_taxon = create(:taxon, :name => "Go", :taxonomy => taxonomy)
+      #   taxonomy.root.children << new_taxon
+      #   expect(taxonomy.root.children.count).to eql(2)
+      #   api_get :index, :taxonomy_id => taxonomy.id, :page => 1, :per_page => 1
+      #   expect(json_response["count"]).to eql(1)
+      #   expect(json_response["total_count"]).to eql(2)
+      #   expect(json_response["current_page"]).to eql(1)
+      #   expect(json_response["per_page"]).to eql(1)
+      #   expect(json_response["pages"]).to eql(2)
+      # end
+
+      # describe 'searching' do
+      #   context 'with a name' do
+      #     before do
+      #       api_get :index, :q => { :name_cont => name }
+      #     end
+
+      #     context 'with one result' do
+      #       let(:name) { "Ruby" }
+
+      #       it "returns an array including the matching taxon" do
+      #         expect(json_response['taxons'].count).to eq(1)
+      #         expect(json_response['taxons'].first['name']).to eq "Ruby"
+      #       end
+      #     end
+
+      #     context 'with no results' do
+      #       let(:name) { "Imaginary" }
+
+      #       it 'returns an empty array of taxons' do
+      #         expect(json_response.keys).to include('taxons')
+      #         expect(json_response['taxons'].count).to eq(0)
+      #       end
+      #     end
+      #   end
+
+      #   context 'with no filters' do
+      #     it "gets all taxons" do
+      #       api_get :index
+
+      #       expect(json_response['taxons'].first['name']).to eq taxonomy.root.name
+      #       children = json_response['taxons'].first['taxons']
+      #       expect(children.count).to eq 1
+      #       expect(children.first['name']).to eq taxon.name
+      #       expect(children.first['taxons'].count).to eq 1
+      #     end
+      #   end
+      # end
+
+      it "gets a single inquiry" do
+        api_get :show, id: inquiry.id
+
+        expect(json_response['name']).to eq inquiry.name
+        expect(json_response['inquiries']).to be_nil
+      end
+
+      it "can learn how to create a new inquiry" do
+        api_get :new
+        expect(json_response["attributes"]).to eq(attributes)
+        required_attributes = json_response["required_attributes"]
+        expect(required_attributes).to include("name")
+      end
+
+      it "cannot create a new inquiry if not an admin" do
+        api_post :create, inquiry: { name: "John Doe", message: "Hello world!", email: "refinery@example.org" }
+        assert_unauthorized!
+      end
+
+      it "cannot delete a inquiry" do
+        api_delete :destroy, id: inquiry.id
+        assert_unauthorized!
+      end
+    end
+
+    context "as an admin" do
+      sign_in_as_admin!
+
+      it "can create" do
+        expect do
+          api_post :create, inquiry: { name: "John Doe", message: "Hello world!", email: "refinery@example.org" }
+          expect(json_response.keys).to eq(attributes)
+          expect(response.status).to eq(201)
+        end.to change(Inquiries::Inquiry, :count).by(1)
+      end
+
+      it "cannot create a new inquiry with invalid attributes" do
+        api_post :create, inquiry: {}
+        expect(response.status).to eq(422)
+        expect(json_response["error"]).to eq("Invalid resource. Please fix errors and try again.")
+        errors = json_response["errors"]
+
+        expect(Inquiries::Inquiry.count).to eq 1
+      end
+
+      it "can destroy" do
+        api_delete :destroy, :id => inquiry.id
+        expect(response.status).to eq(204)
+      end
+    end
+
+  end
+end

data/spec/controllers/refinery/api/v1/pages_controller_spec.rb

@@ -0,0 +1,150 @@
+require 'spec_helper'
+
+module Refinery
+  describe Api::V1::PagesController, type: :controller do
+    render_views
+
+    let(:page) { FactoryGirl.create(:page, :title => "Ruby") }
+    let(:page2) { FactoryGirl.create(:page, :title => "Rails") }
+    let(:page_with_page_part) { FactoryGirl.create(:page_with_page_part) }
+    let(:attributes) { ["browser_title", "draft", "link_url", "menu_title", "meta_description", "parent_id", "skip_to_first_child", "show_in_menu", "title", "view_template", "layout_template", "custom_slug", {"parts_attributes"=>["id", "title", "slug", "body", "position"]}] }
+
+    before do
+      stub_authentication!
+      page2.children << create(:page, title: "3.2.2")
+      page.children << page2
+    end
+
+    context "as a normal user" do
+      it "gets all pages" do
+        api_get :index
+
+        expect(json_response['pages'].first['title']).to eq page.title
+        children = json_response['pages'].first['pages']
+        expect(children.count).to eq 1
+        expect(children.first['title']).to eq page2.title
+        expect(children.first['pages'].count).to eq 1
+      end
+
+      it "does not include children when asked not to" do
+        api_get :index, without_children: 1
+
+        expect(json_response['pages'].first['title']).to eq(page.title)
+        expect(json_response['pages'].first['pages']).to be_nil
+      end
+
+      # it "paginates through taxons" do
+      #   new_taxon = create(:taxon, :name => "Go", :taxonomy => taxonomy)
+      #   taxonomy.root.children << new_taxon
+      #   expect(taxonomy.root.children.count).to eql(2)
+      #   api_get :index, :taxonomy_id => taxonomy.id, :page => 1, :per_page => 1
+      #   expect(json_response["count"]).to eql(1)
+      #   expect(json_response["total_count"]).to eql(2)
+      #   expect(json_response["current_page"]).to eql(1)
+      #   expect(json_response["per_page"]).to eql(1)
+      #   expect(json_response["pages"]).to eql(2)
+      # end
+
+      # describe 'searching' do
+      #   context 'with a name' do
+      #     before do
+      #       api_get :index, :q => { :name_cont => name }
+      #     end
+
+      #     context 'with one result' do
+      #       let(:name) { "Ruby" }
+
+      #       it "returns an array including the matching taxon" do
+      #         expect(json_response['taxons'].count).to eq(1)
+      #         expect(json_response['taxons'].first['name']).to eq "Ruby"
+      #       end
+      #     end
+
+      #     context 'with no results' do
+      #       let(:name) { "Imaginary" }
+
+      #       it 'returns an empty array of taxons' do
+      #         expect(json_response.keys).to include('taxons')
+      #         expect(json_response['taxons'].count).to eq(0)
+      #       end
+      #     end
+      #   end
+
+      #   context 'with no filters' do
+      #     it "gets all taxons" do
+      #       api_get :index
+
+      #       expect(json_response['taxons'].first['name']).to eq taxonomy.root.name
+      #       children = json_response['taxons'].first['taxons']
+      #       expect(children.count).to eq 1
+      #       expect(children.first['name']).to eq taxon.name
+      #       expect(children.first['taxons'].count).to eq 1
+      #     end
+      #   end
+      # end
+
+      it "gets a single page" do
+        api_get :show, id: page.id
+
+        expect(json_response['title']).to eq page.title
+        expect(json_response['pages']).to be_nil
+      end
+
+      it "can learn how to create a new page" do
+        api_get :new
+        expect(json_response["attributes"]).to eq(attributes)
+        required_attributes = json_response["required_attributes"]
+        expect(required_attributes).to include("title")
+      end
+
+      it "cannot create a new page if not an admin" do
+        api_post :create, page: { title: "Location" }
+        assert_unauthorized!
+      end
+
+      it "cannot update a page" do
+        api_put :update, id: page.id, page: { title: "I hacked your website!" }
+        assert_unauthorized!
+      end
+
+      it "cannot delete a page" do
+        api_delete :destroy, id: page.id
+        assert_unauthorized!
+      end
+    end
+
+    context "as an admin" do
+      sign_in_as_admin!
+
+      it "can create" do
+        expect do
+          api_post :create, page: { title: "Colors" }
+          # expect(json_response).to have_attributes(attributes)
+          expect(response.status).to eq(201)
+        end.to change(Page, :count).by(1)
+      end
+
+      it "can update the position in the list" do
+        page.root.children << page2
+        api_put :update, id: page.id, page: { parent_id: page.parent_id, child_index: 2 }
+        expect(response.status).to eq(200)
+        expect(page.reload.root.children[0]).to eql page2
+      end
+
+      it "cannot create a new page with invalid attributes" do
+        api_post :create, page: {}
+        expect(response.status).to eq(422)
+        expect(json_response["error"]).to eq("Invalid resource. Please fix errors and try again.")
+        errors = json_response["errors"]
+
+        expect(page.reload.root.children.count).to eq 1
+      end
+
+      it "can destroy" do
+        api_delete :destroy, :id => page.id
+        expect(response.status).to eq(204)
+      end
+    end
+
+  end
+end

data/spec/controllers/refinery/api/v1/resources_controller_spec.rb

@@ -0,0 +1,94 @@
+require 'spec_helper'
+
+module Refinery
+  describe Api::V1::ResourcesController, type: :controller do
+    render_views
+
+    let!(:attributes_new) { [ "resource_title",  { "file" => [] } ] }
+    let!(:attributes) { [ "resource_title", "file" ] }
+
+    before do
+      stub_authentication!
+    end
+
+    context "as an admin" do
+      sign_in_as_admin!
+
+      it "can learn how to create a new resource" do
+        api_get :new
+        expect(json_response["attributes"]).to eq(attributes_new)
+        required_attributes = json_response["required_attributes"]
+        expect(required_attributes).to include("file")
+      end
+
+      it "can upload a new resource" do
+        pending "TODO: Find why i can't upload a new resource by the Rest API"
+        expect do
+          api_post :create, resource: { file: [upload_file('refinery_is_awesome.txt', 'text/html')] }
+          expect(response.status).to eq(201)
+          expect(json_response).to have_attributes(attributes)
+        end.to change(Resource, :count).by(1)
+      end
+
+      it "can't upload a new resource without attachment" do
+        api_post :create, resource: {}
+        expect(response.status).to eq(422)
+      end
+
+      context "working with an existing resource" do
+        let!(:resource) { FactoryGirl.create(:resource) }
+
+        it "can get a single resource" do
+          api_get :show, id: resource.id
+          expect(response.status).to eq(200)
+          expect(json_response).to have_attributes(attributes)
+        end
+
+        it "can get a list of resources" do
+          api_get :index
+          expect(response.status).to eq(200)
+          expect(json_response).to have_key("resources")
+          expect(json_response["resources"].first).to have_attributes(attributes)
+        end
+
+        it "can update resource data" do
+          expect(resource.resource_title).to eq(nil)
+          api_post :update, resource: { resource_title: "test" }, id: resource.id
+          expect(response.status).to eq(200)
+          expect(json_response).to have_attributes(attributes)
+          expect(resource.reload.resource_title).to eq('test')
+        end
+
+        it "can't update a resource without attachment" do
+          api_post :update,
+                   resource: nil,
+                   id: resource.id
+          expect(response.status).to eq(422)
+        end
+
+        it "can delete an resource" do
+          api_delete :destroy, id: resource.id
+          expect(response.status).to eq(204)
+          expect { resource.reload }.to raise_error(ActiveRecord::RecordNotFound)
+        end
+      end
+    end
+
+    context "as a non-admin" do
+      it "cannot create an resource" do
+        api_post :create
+        assert_unauthorized!
+      end
+
+      it "cannot update an resource" do
+        api_put :update, id: 1
+        assert_not_found!
+      end
+
+      it "cannot delete an resource" do
+        api_delete :destroy, id: 1
+        assert_not_found!
+      end
+    end
+  end
+end