scinote-web/spec/permissions/controllers/api/v1/projects_controller_spec.rb

87 lines
1.8 KiB
Ruby

# frozen_string_literal: true
require 'rails_helper'
describe Api::V1::ProjectsController, type: :controller do
include PermissionExtends
it_behaves_like "a controller with authentication", {
index: {
team_id: 1
},
show: {
team_id: 1,
id: 1
},
update: {
team_id: 1,
id: 1
},
create: {
team_id: 1
},
activities: {
team_id: 1,
project_id: 1
}
}, [],
:unauthorized
describe 'permissions checking' do
login_api_user
include_context 'reference_project_structure', {
team_role: :guest
}
it_behaves_like "a controller action with permissions checking", :get, :show do
let(:testable) { project }
let(:permissions) { [ProjectPermissions::READ] }
let(:action_params) {
{
team_id: team.id,
id: project.id
}
}
end
it_behaves_like "a controller action with permissions checking", :post, :create do
let(:testable) { project }
let(:permissions) { [] }
let(:action_params) {
{
team_id: team.id,
data: {
type: "projects",
attributes: {
name: "test"
}
}
}
}
end
it_behaves_like "a controller action with permissions checking", :put, :update do
let(:testable) { project }
let(:permissions) { [ProjectPermissions::MANAGE] }
let(:action_params) {
{
team_id: team.id,
id: project.id
}
}
end
it_behaves_like "a controller action with permissions checking", :get, :activities do
let(:testable) { project }
let(:permissions) { [ProjectPermissions::READ] }
let(:action_params) {
{
team_id: team.id,
project_id: project.id
}
}
end
end
end