RubyGems - spree_backend - Versions diffs - 3.1.5 → 3.1.6 - Mend

spree_backend 3.1.5 → 3.1.6

Files changed (100) hide show

data/spec/controllers/spree/admin/general_settings_controller_spec.rb DELETED

@@ -1,41 +0,0 @@
-require 'spec_helper'
-describe Spree::Admin::GeneralSettingsController, type: :controller do
-  let(:user) { create(:user) }
-  before do
-    allow(controller).to receive_messages :spree_current_user => user
-    user.spree_roles << Spree::Role.find_or_create_by(name: 'admin')
-  end
-  describe '#clear_cache' do
-    subject { spree_post :clear_cache }
-    shared_examples 'a HTTP 204 response' do
-      it 'grant access to users with an admin role' do
-        subject
-        expect(response.status).to eq(204)
-      end
-    end
-    context 'when no callback' do
-      it_behaves_like 'a HTTP 204 response'
-    end
-    context 'when callback implemented' do
-      Spree::Admin::GeneralSettingsController.class_eval do
-        custom_callback(:clear_cache).after :foo
-        def foo
-          # Make a call to Akamai, CloudFlare, etc invalidation....
-        end
-      end
-      before do
-        expect(controller).to receive(:foo).once
-      end
-      it_behaves_like 'a HTTP 204 response'
-    end
-  end
-end

data/spec/controllers/spree/admin/missing_products_controller_spec.rb DELETED

@@ -1,18 +0,0 @@
-require 'spec_helper'
-# This test exists in this file because in the standard admin/products_controller spec
-# There is the stub_authorization call. This call is not triggered for this test because
-# the load_resource filter in Spree::Admin::ResourceController is prepended to the filter chain
-# this means this call is triggered before the authorize_admin call and in this case
-# the load_resource filter halts the request meaning authorize_admin is not called at all.
-describe Spree::Admin::ProductsController, :type => :controller do
-  stub_authorization!
-  # Regression test for GH #538
-  it "cannot find a non-existent product" do
-    spree_get :edit, :id => "non-existent-product"
-    expect(response).to redirect_to(spree.admin_products_path)
-    expect(flash[:error]).to eql("Product is not found")
-  end
-end

data/spec/controllers/spree/admin/orders/customer_details_controller_spec.rb DELETED

@@ -1,197 +0,0 @@
-require "spec_helper"
-require "cancan"
-require "spree/testing_support/bar_ability"
-describe Spree::Admin::Orders::CustomerDetailsController, type: :controller do
-  context "with authorization" do
-    stub_authorization!
-    let(:order) do
-      mock_model(
-        Spree::Order,
-        total:           100,
-        number:          "R123456789",
-        billing_address: mock_model(Spree::Address)
-      )
-    end
-    before do
-      allow(Spree::Order).to receive_message_chain(:friendly, :find).and_return(order)
-    end
-    describe '#update' do
-      let(:attributes) do
-        {
-          order_id: order.number,
-          order: {
-            email: "",
-            use_billing: "",
-            bill_address_attributes: {},
-            ship_address_attributes: {}
-          },
-          guest_checkout: 'true'
-        }
-      end
-      def send_request(params = {})
-        spree_put :update, params
-      end
-      context 'using guest checkout' do
-        context 'having valid parameters' do
-          before do
-            allow(order).to receive_messages(update_attributes: true)
-            allow(order).to receive_messages(next: false)
-            allow(order).to receive_messages(complete?: true)
-            allow(order).to receive_messages(refresh_shipment_rates: true)
-          end
-          context 'having successful response' do
-            before { send_request(attributes) }
-            it { expect(response).to have_http_status(302) }
-            it { expect(response).to redirect_to(edit_admin_order_url(order)) }
-          end
-          context 'with correct method flow' do
-            it { expect(order).to receive(:update_attributes).with(attributes[:order]) }
-            it { expect(order).to_not receive(:next) }
-            it { expect(order).to receive(:complete?) }
-            it 'does refresh the shipment rates with all shipping methods' do
-              expect(order).to receive(:refresh_shipment_rates).
-                with(Spree::ShippingMethod::DISPLAY_ON_FRONT_AND_BACK_END)
-            end
-            it { expect(controller).to receive(:load_order).and_call_original }
-            it { expect(controller).to receive(:guest_checkout?).twice.and_call_original }
-            it { expect(controller).to_not receive(:load_user).and_call_original }
-            after { send_request(attributes) }
-          end
-        end
-        context 'having invalid parameters' do
-          before do
-            allow(order).to receive_messages(update_attributes: false)
-          end
-          context 'having failure response' do
-            before { send_request(attributes) }
-            it { expect(response).to render_template(:edit) }
-          end
-          context 'with correct method flow' do
-            it { expect(order).to receive(:update_attributes).with(attributes[:order]) }
-            it { expect(controller).to receive(:load_order).and_call_original }
-            it { expect(controller).to receive(:guest_checkout?).and_call_original }
-            it { expect(controller).to_not receive(:load_user).and_call_original }
-            after { send_request(attributes) }
-          end
-        end
-      end
-      context 'without using guest checkout' do
-        let(:user) { mock_model(Spree.user_class) }
-        let(:changed_attributes) { attributes.merge(guest_checkout: 'false', user_id: user.id) }
-        context 'having valid parameters' do
-          before do
-            allow(Spree.user_class).to receive(:find_by).and_return(user)
-            allow(order).to receive_messages(update_attributes: true)
-            allow(order).to receive_messages(next: false)
-            allow(order).to receive_messages(complete?: true)
-            allow(order).to receive_messages(refresh_shipment_rates: true)
-            allow(order).to receive_messages(associate_user!: true)
-            allow(controller).to receive(:guest_checkout?).and_return(false)
-            allow(order).to receive(:associate_user!)
-          end
-          context 'having successful response' do
-            before { send_request(changed_attributes) }
-            it { expect(response).to have_http_status(302) }
-            it { expect(response).to redirect_to(edit_admin_order_url(order)) }
-          end
-          context 'with correct method flow' do
-            it { expect(order).to receive(:update_attributes).with(changed_attributes[:order]) }
-            it { expect(order).to receive(:associate_user!).with(user, order.email.blank?) }
-            it { expect(order).to_not receive(:next) }
-            it { expect(order).to receive(:complete?) }
-            it 'does refresh the shipment rates with all shipping methods' do
-              expect(order).to receive(:refresh_shipment_rates).
-                with(Spree::ShippingMethod::DISPLAY_ON_FRONT_AND_BACK_END)
-            end
-            it { expect(controller).to receive(:load_order).and_call_original }
-            it { expect(controller).to receive(:guest_checkout?).twice.and_call_original }
-            it { expect(controller).to receive(:load_user).and_call_original }
-            after { send_request(changed_attributes) }
-          end
-        end
-        context 'having invalid parameters' do
-          before do
-            allow(Spree.user_class).to receive(:find_by).and_return(false)
-            allow(controller).to receive(:guest_checkout?).and_return(false)
-          end
-          context 'having failure response' do
-            before { send_request(changed_attributes) }
-            it { expect(response).to render_template(:edit) }
-          end
-          context 'with correct method flow' do
-            it { expect(order).to_not receive(:update_attributes).with(changed_attributes[:order]) }
-            it { expect(controller).to receive(:load_order).and_call_original }
-            it { expect(controller).to receive(:guest_checkout?).and_call_original }
-            it { expect(controller).to receive(:load_user).and_call_original }
-            after { send_request(changed_attributes) }
-          end
-        end
-        describe '#load_user' do
-          context 'having valid parameters' do
-            before do
-              allow(Spree.user_class).to receive(:find_by).and_return(user)
-              allow(order).to receive_messages(update_attributes: true)
-              allow(order).to receive_messages(next: false)
-              allow(order).to receive_messages(complete?: true)
-              allow(order).to receive_messages(refresh_shipment_rates: true)
-              allow(order).to receive_messages(associate_user!: true)
-              allow(controller).to receive(:guest_checkout?).and_return(false)
-              allow(order).to receive(:associate_user!)
-            end
-            it "expects to assign user" do
-              send_request(changed_attributes)
-              expect(assigns[:user]).to eq(user)
-            end
-            context 'with correct method flow' do
-              it { expect(Spree.user_class).to receive(:find_by).with(id: user.id.to_s).and_return(user) }
-              after { send_request(changed_attributes) }
-            end
-          end
-          context 'with invalid parameters' do
-            before do
-              allow(Spree.user_class).to receive(:find_by).and_return(nil)
-              allow(controller).to receive(:guest_checkout?).and_return(false)
-            end
-            it "expects to not assign user" do
-              send_request(changed_attributes)
-              expect(assigns[:user]).to_not eq(user)
-            end
-            context 'with correct method flow' do
-              it { expect(Spree.user_class).to receive(:find_by).with(id: user.id.to_s).and_return(nil) }
-              it "expects user class to receive find_by with email" do
-                expect(Spree.user_class).to receive(:find_by).
-                  with(email: changed_attributes[:order][:email]).and_return(nil)
-              end
-              after { send_request(changed_attributes) }
-            end
-          end
-        end
-      end
-    end
-  end
-end

data/spec/controllers/spree/admin/orders_controller_spec.rb DELETED

@@ -1,254 +0,0 @@
-require 'spec_helper'
-require 'cancan'
-require 'spree/testing_support/bar_ability'
-# Ability to test access to specific model instances
-class OrderSpecificAbility
-  include CanCan::Ability
-  def initialize(user)
-    can [:admin, :manage], Spree::Order, number: 'R987654321'
-  end
-end
-describe Spree::Admin::OrdersController, type: :controller do
-  context "with authorization" do
-    stub_authorization!
-    before do
-      request.env["HTTP_REFERER"] = "http://localhost:3000"
-      # ensure no respond_overrides are in effect
-      if Spree::BaseController.spree_responders[:OrdersController].present?
-        Spree::BaseController.spree_responders[:OrdersController].clear
-      end
-    end
-    let(:order) do
-      mock_model(
-        Spree::Order,
-        completed?:      true,
-        total:           100,
-        number:          'R123456789',
-        all_adjustments: adjustments,
-        billing_address: mock_model(Spree::Address)
-      )
-    end
-    let(:adjustments) { double('adjustments') }
-    before do
-      allow(Spree::Order).to receive_message_chain(:friendly, :find).and_return(order)
-    end
-    context "#approve" do
-      it "approves an order" do
-        expect(order).to receive(:approved_by).with(controller.try_spree_current_user)
-        spree_put :approve, id: order.number
-        expect(flash[:success]).to eq Spree.t(:order_approved)
-      end
-    end
-    context "#cancel" do
-      it "cancels an order" do
-        expect(order).to receive(:canceled_by).with(controller.try_spree_current_user)
-        spree_put :cancel, id: order.number
-        expect(flash[:success]).to eq Spree.t(:order_canceled)
-      end
-    end
-    context "#resume" do
-      it "resumes an order" do
-        expect(order).to receive(:resume!)
-        spree_put :resume, id: order.number
-        expect(flash[:success]).to eq Spree.t(:order_resumed)
-      end
-    end
-    context "pagination" do
-      it "can page through the orders" do
-        spree_get :index, page: 2, per_page: 10
-        expect(assigns[:orders].offset_value).to eq(10)
-        expect(assigns[:orders].limit_value).to eq(10)
-      end
-    end
-    # Test for #3346
-    context "#new" do
-      it "a new order has the current user assigned as a creator" do
-        spree_get :new
-        expect(assigns[:order].created_by).to eq(controller.try_spree_current_user)
-      end
-    end
-    # Regression test for #3684
-    context "#edit" do
-      it "does not refresh rates if the order is completed" do
-        allow(order).to receive_messages completed?: true
-        expect(order).not_to receive :refresh_shipment_rates
-        spree_get :edit, id: order.number
-      end
-      it "does refresh the rates if the order is incomplete" do
-        allow(order).to receive_messages completed?: false
-        expect(order).to receive :refresh_shipment_rates
-        spree_get :edit, id: order.number
-      end
-    end
-    # Test for #3919
-    context "search" do
-      let(:user) { create(:user) }
-      before do
-        allow(controller).to receive_messages spree_current_user: user
-        user.spree_roles << Spree::Role.find_or_create_by(name: 'admin')
-        create(:completed_order_with_totals)
-        expect(Spree::Order.count).to eq 1
-      end
-      def send_request
-        spree_get :index, q: {
-          line_items_variant_id_in: Spree::Order.first.variants.map(&:id)
-        }
-      end
-      it 'does not display duplicate results' do
-        send_request
-        expect(assigns[:orders].map { |o| o.number }.count).to eq 1
-      end
-      it 'preloads users' do
-        expect(Spree::Order).to receive(:preload).with(:user).and_return(Spree::Order.all)
-        send_request
-      end
-    end
-    context "#open_adjustments" do
-      let(:closed) { double('closed_adjustments') }
-      before do
-        allow(adjustments).to receive(:closed).and_return(closed)
-        allow(closed).to receive(:update_all)
-      end
-      it "changes all the closed adjustments to open" do
-        expect(adjustments).to receive(:closed).and_return(closed)
-        expect(closed).to receive(:update_all).with(state: 'open')
-        spree_post :open_adjustments, id: order.number
-      end
-      it "sets the flash success message" do
-        spree_post :open_adjustments, id: order.number
-        expect(flash[:success]).to eql('All adjustments successfully opened!')
-      end
-      it "redirects back" do
-        spree_post :open_adjustments, id: order.number
-        expect(response).to redirect_to(:back)
-      end
-    end
-    context "#close_adjustments" do
-      let(:open) { double('open_adjustments') }
-      before do
-        allow(adjustments).to receive(:open).and_return(open)
-        allow(open).to receive(:update_all)
-      end
-      it "changes all the open adjustments to closed" do
-        expect(adjustments).to receive(:open).and_return(open)
-        expect(open).to receive(:update_all).with(state: 'closed')
-        spree_post :close_adjustments, id: order.number
-      end
-      it "sets the flash success message" do
-        spree_post :close_adjustments, id: order.number
-        expect(flash[:success]).to eql('All adjustments successfully closed!')
-      end
-      it "redirects back" do
-        spree_post :close_adjustments, id: order.number
-        expect(response).to redirect_to(:back)
-      end
-    end
-  end
-  context '#authorize_admin' do
-    let(:user) { create(:user) }
-    let(:order) { create(:completed_order_with_totals, number: 'R987654321') }
-    def with_ability(ability)
-      Spree::Ability.register_ability(ability)
-      yield
-    ensure
-      Spree::Ability.remove_ability(ability)
-    end
-    before do
-      allow(Spree::Order).to receive_messages find: order
-      allow(controller).to receive_messages spree_current_user: user
-    end
-    it 'should grant access to users with an admin role' do
-      user.spree_roles << Spree::Role.find_or_create_by(name: 'admin')
-      spree_post :index
-      expect(response).to render_template :index
-    end
-    it 'should grant access to users with an bar role' do
-      with_ability(BarAbility) do
-        user.spree_roles << Spree::Role.find_or_create_by(name: 'bar')
-        spree_post :index
-        expect(response).to render_template :index
-      end
-    end
-    it 'should deny access to users with an bar role' do
-      with_ability(BarAbility) do
-        allow(order).to receive(:update_attributes).and_return true
-        allow(order).to receive(:user).and_return Spree.user_class.new
-        allow(order).to receive(:token).and_return nil
-        user.spree_roles.clear
-        user.spree_roles << Spree::Role.find_or_create_by(name: 'bar')
-        spree_put :update, id: order.number
-        expect(response).to redirect_to(spree.forbidden_path)
-      end
-    end
-    it 'should deny access to users without an admin role' do
-      allow(user).to receive_messages has_spree_role?: false
-      spree_post :index
-      expect(response).to redirect_to(spree.forbidden_path)
-    end
-    it 'should restrict returned order(s) on index when using OrderSpecificAbility' do
-      number = order.number
-      3.times { create(:completed_order_with_totals) }
-      expect(Spree::Order.complete.count).to eq 4
-      with_ability(OrderSpecificAbility) do
-        allow(user).to receive_messages has_spree_role?: false
-        spree_get :index
-        expect(response).to render_template :index
-        expect(assigns['orders'].size).to eq 1
-        expect(assigns['orders'].first.number).to eq number
-        expect(Spree::Order.accessible_by(Spree::Ability.new(user), :index).pluck(:number)).to eq  [number]
-      end
-    end
-  end
-  context "order number not given" do
-    stub_authorization!
-    it "raise active record not found" do
-      expect {
-        spree_get :edit, id: 99999999
-      }.to raise_error ActiveRecord::RecordNotFound
-    end
-  end
-end