scinote-web/spec/requests/api/v1/experiment_user_assignments_controller_spec.rb

# frozen_string_literal: true

require 'rails_helper'

RSpec.describe "Api::V1::ExperimentUserAssignmentsController", type: :request do
  before :all do
    @user = create(:user)
    @another_user = create(:user)
    @team = create(:team, created_by: @user)
    @normal_user_role = create :normal_user_role
    @owner_role = UserRole.find_by(name: I18n.t('user_roles.predefined.owner'))
    create(:user_team, user: @user, team: @team, role: :normal_user)
    create(:user_team, user: @another_user, team: @team, role: :normal_user)
    @own_project = create(:project, name: Faker::Name.unique.name, created_by: @user, team: @team)
    @own_experiment = create :experiment,
                             name: Faker::Name.unique.name,
                             project: @own_project,
                             created_by: @user
    @invalid_project = create :project,
                              name: Faker::Name.unique.name,
                              created_by: @another_user,
                              team: @team,
                              visibility: :hidden
    @invalid_experiment = create :experiment,
                                 name: Faker::Name.unique.name,
                                 project: @invalid_project,
                                 created_by: @another_user
    create :user_project, user: @user, project: @own_project
    @technician_user_role = create :technician_role

    @valid_headers = { 'Authorization': 'Bearer ' + generate_token(@user.id) }
  end

  describe 'GET experiment_user_assignments, #index' do
    it 'Response with correct user assignments' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignments_path(
        team_id: @team.id,
        project_id: @own_project.id,
        experiment_id: @own_experiment.id
      ), headers: @valid_headers
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body[:data]).to match(
                                    JSON.parse(ActiveModelSerializers::SerializableResource
                                      .new(@own_experiment.user_assignments, each_serializer: Api::V1::UserAssignmentSerializer)
                                      .to_json)['data']
                                  )
    end

    it 'When invalid request, user in not an owner of the experiment' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignments_path(
        team_id: @team.id,
        project_id: @invalid_project.id,
        experiment_id: @invalid_experiment.id
      ), headers: @valid_headers
      expect(response).to have_http_status(403)
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body['errors'][0]).to include('status': 403)
    end

    it 'When invalid request, non existing experiment' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignments_path(
        team_id: @team.id,
        project_id: @own_project.id,
        experiment_id: -1
      ), headers: @valid_headers
      expect(response).to have_http_status(404)
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body['errors'][0]).to include('status': 404)
    end
  end

  describe 'GET user_assignment, #show' do
    it 'When valid request, user can read user assignment' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignment_path(
        team_id: @team.id,
        project_id: @own_project.id,
        experiment_id: @own_experiment.id,
        id: @own_experiment.user_assignments.first.id
      ), headers: @valid_headers
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body[:data]).to match(
                                    JSON.parse(ActiveModelSerializers::SerializableResource
                                      .new(@own_experiment.user_assignments.first, serializer: Api::V1::UserAssignmentSerializer)
                                      .to_json)['data']
                                  )
    end

    it 'When invalid request, user in not member of the project' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignment_path(
        team_id: @team.id,
        project_id: @invalid_project.id,
        experiment_id: @invalid_experiment.id,
        id: -1
      ), headers: @valid_headers
      expect(response).to have_http_status(403)
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body['errors'][0]).to include('status': 403)
    end

    it 'When invalid request, non existing project' do
      hash_body = nil
      get api_v1_team_project_experiment_user_assignment_path(
        team_id: @team.id,
        project_id: -1,
        experiment_id: -1,
        id: -1
      ), headers: @valid_headers
      expect(response).to have_http_status(404)
      expect { hash_body = json }.not_to raise_exception
      expect(hash_body['errors'][0]).to include('status': 404)
    end
  end

  describe 'PATCH user_assignment, #update' do
    before :all do
      @valid_headers['Content-Type'] = 'application/json'
      create :user_assignment,
             assignable: @own_project,
             user: @another_user,
             user_role: @normal_user_role,
             assigned_by: @user
      @user_assignment = create :user_assignment,
                                assignable: @own_experiment,
                                user: @another_user,
                                user_role: @normal_user_role,
                                assigned_by: @user
    end

    let(:action) do
      patch(
        api_v1_team_project_experiment_user_assignment_path(
          team_id: @own_project.team.id,
          project_id: @own_project.id,
          experiment_id: @own_experiment.id,
          id: @user_assignment.id
        ),
        params: request_body.to_json,
        headers: @valid_headers
      )
    end

    context 'when has valid params' do
      let(:request_body) do
        {
          data: {
            type: 'user_assignments',
            attributes: {
              user_role_id: @technician_user_role.id
            }
          }
        }
      end

      it 'returns status 200' do
        action

        expect(response).to have_http_status 200
      end

      it 'returns well formated response' do
        action

        expect(json).to match(
          JSON.parse(ActiveModelSerializers::SerializableResource
            .new(Experiment.first.user_assignments.last, serializer: Api::V1::UserAssignmentSerializer)
            .to_json)
        )
      end
    end

    context 'when has missing param' do
      let(:request_body) do
        {
          data: {
            type: 'user_assignments',
            attributes: {
            }
          }
        }
      end

      it 'renders 400' do
        action

        expect(response).to have_http_status(400)
      end
    end

    context 'when user is not an owner of the project' do
      let(:request_body) do
        {
          data: {
            type: 'user_assignments',
            attributes: {
              user_role_id: @technician_user_role.id
            }
          }
        }
      end

      it 'renders 403' do
        patch(
          api_v1_team_project_experiment_user_assignment_path(
            team_id: @invalid_project.team.id,
            project_id: @invalid_project.id,
            experiment_id: @invalid_experiment.id,
            id: UserAssignment.last.id
          ),
          params: request_body.to_json,
          headers: @valid_headers
        )

        expect(response).to have_http_status(403)
      end
    end
  end
end