scinote-web/spec/controllers/access_permissions/my_modules_controller_spec.rb

# frozen_string_literal: true

require 'rails_helper'

describe AccessPermissions::MyModulesController, type: :controller do
  login_user

  let!(:user) { subject.current_user }
  let!(:team) { create :team, created_by: user }
  let!(:experiment) { create :experiment, project: project, created_by: user }
  let!(:owner_role) { UserRole.find_by(name: I18n.t('user_roles.predefined.owner')) }
  let!(:viewer_user_role) { create :viewer_role }
  let!(:technician_role) { create :technician_role }
  let!(:project) { create :project, team: team, created_by: user }
  let!(:user_project) { create :user_project, user: user, project: project }
  let!(:viewer_user) { create :user, confirmed_at: Time.zone.now }
  let!(:viewer_user_project) { create :user_project, user: viewer_user, project: project }
  let!(:my_module) { create :my_module, experiment: experiment, created_by: experiment.created_by, created_by: user }

  before do
    create_user_assignment(team, owner_role, user)
    create_user_assignment(team, viewer_user_role, viewer_user)
    create_user_assignment(my_module, owner_role, user)
    create_user_assignment(my_module, viewer_user_role, viewer_user)
  end

  describe 'GET #show' do
    it 'returns a http success response' do
      get :show, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json
      expect(response).to have_http_status :success
    end

    it 'renders show template' do
      get :show, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json
      expect(response).to render_template :show
    end
  end

  describe 'GET #edit' do
    it 'returns a http success response' do
      get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json
      expect(response).to have_http_status :success
    end

    it 'renders edit template' do
      get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json
      expect(response).to render_template :edit
    end

    it 'renders 403 if user does not have manage permissions on project' do
      sign_in_viewer_user

      get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json
      expect(response).to have_http_status :forbidden
    end
  end

  describe 'PUT #update' do
    let(:valid_params) do
      {
        id: my_module.id,
        experiment_id: experiment.id,
        project_id: project.id,
        my_module_member: {
          user_role_id: technician_role.id,
          user_id: viewer_user.id
        }
      }
    end

    it 'updates the user role' do
      put :update, params: valid_params, format: :json
      expect(response).to have_http_status :success
      expect(UserAssignment.find_by(assignable: my_module, user: viewer_user).user_role).to eq technician_role
    end

    it 'does not update the user role when the user has no permissions' do
      sign_in_viewer_user

      put :update, params: valid_params, format: :json

      expect(response).to have_http_status :forbidden
      expect(UserAssignment.find_by(assignable: my_module, user: viewer_user).user_role).to eq viewer_user_role
    end
  end

  def sign_in_viewer_user
    sign_out user
    sign_in viewer_user
  end
end
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`# frozen_string_literal: true`

			`require 'rails_helper'`

			`describe AccessPermissions::MyModulesController, type: :controller do`
			`login_user`

			`let!(:user) { subject.current_user }`
			`let!(:team) { create :team, created_by: user }`
Fix tests [SCI-6486] (#3913) * Fix tests [SCI-6486] * Fix rspec tests [SCI-6486] Co-authored-by: Anton <anton@scinote.net> 2022-03-09 21:12:16 +08:00			`let!(:experiment) { create :experiment, project: project, created_by: user }`
Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`let!(:owner_role) { UserRole.find_by(name: I18n.t('user_roles.predefined.owner')) }`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`let!(:viewer_user_role) { create :viewer_role }`
			`let!(:technician_role) { create :technician_role }`
Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`let!(:project) { create :project, team: team, created_by: user }`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`let!(:user_project) { create :user_project, user: user, project: project }`
			`let!(:viewer_user) { create :user, confirmed_at: Time.zone.now }`
			`let!(:viewer_user_project) { create :user_project, user: viewer_user, project: project }`
Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`let!(:my_module) { create :my_module, experiment: experiment, created_by: experiment.created_by, created_by: user }`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00
Fix rspec tests [SCI-6044] (#3537) 2021-09-09 21:41:42 +08:00			`before do`
Update tests with new team user assignments [SCI-6843] 2022-06-07 00:21:57 +08:00			`create_user_assignment(team, owner_role, user)`
			`create_user_assignment(team, viewer_user_role, viewer_user)`
Fix rspec tests [SCI-6044] (#3537) 2021-09-09 21:41:42 +08:00			`create_user_assignment(my_module, owner_role, user)`
			`create_user_assignment(my_module, viewer_user_role, viewer_user)`
			`end`

fix code style 2021-05-30 01:25:46 +08:00			`describe 'GET #show' do`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`it 'returns a http success response' do`
			`get :show, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json`
			`expect(response).to have_http_status :success`
			`end`

			`it 'renders show template' do`
			`get :show, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json`
			`expect(response).to render_template :show`
			`end`
			`end`

fix code style 2021-05-30 01:25:46 +08:00			`describe 'GET #edit' do`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`it 'returns a http success response' do`
			`get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json`
			`expect(response).to have_http_status :success`
			`end`

			`it 'renders edit template' do`
			`get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json`
			`expect(response).to render_template :edit`
			`end`

			`it 'renders 403 if user does not have manage permissions on project' do`
			`sign_in_viewer_user`

fix code style 2021-05-30 01:25:46 +08:00			`get :edit, params: { project_id: project.id, experiment_id: experiment.id, id: my_module.id }, format: :json`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`expect(response).to have_http_status :forbidden`
			`end`
			`end`

fix code style 2021-05-30 01:25:46 +08:00			`describe 'PUT #update' do`
			`let(:valid_params) do`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`{`
			`id: my_module.id,`
			`experiment_id: experiment.id,`
			`project_id: project.id,`
			`my_module_member: {`
			`user_role_id: technician_role.id,`
			`user_id: viewer_user.id`
			`}`
			`}`
fix code style 2021-05-30 01:25:46 +08:00			`end`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00
			`it 'updates the user role' do`
			`put :update, params: valid_params, format: :json`
			`expect(response).to have_http_status :success`
Fix rspec tests [SCI-6044] (#3537) 2021-09-09 21:41:42 +08:00			`expect(UserAssignment.find_by(assignable: my_module, user: viewer_user).user_role).to eq technician_role`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`end`

			`it 'does not update the user role when the user has no permissions' do`
			`sign_in_viewer_user`

			`put :update, params: valid_params, format: :json`

			`expect(response).to have_http_status :forbidden`
Fix rspec tests [SCI-6044] (#3537) 2021-09-09 21:41:42 +08:00			`expect(UserAssignment.find_by(assignable: my_module, user: viewer_user).user_role).to eq viewer_user_role`
add read permission and controller tests for new endpoints 2021-05-10 00:23:50 +08:00			`end`
			`end`

			`def sign_in_viewer_user`
			`sign_out user`
			`sign_in viewer_user`
			`end`
			`end`