2012-01-30 20:39:34 +00:00
|
|
|
# -*- encoding : utf-8 -*-
|
2011-10-13 16:55:03 +01:00
|
|
|
require 'spec_helper'
|
2012-03-20 15:40:49 +00:00
|
|
|
require "cancan/matchers"
|
2011-10-13 16:55:03 +01:00
|
|
|
|
|
|
|
|
describe Group do
|
2012-03-20 15:40:49 +00:00
|
|
|
before(:each) do
|
|
|
|
|
stub_rsync_methods
|
2012-03-29 21:34:22 +01:00
|
|
|
@group = FactoryGirl.create(:group)
|
2012-03-20 15:40:49 +00:00
|
|
|
@ability = Ability.new(User.new)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'for guest' do
|
|
|
|
|
[:read, :update, :destroy, :manage_members, :autocomplete_group_uname].each do |action|
|
|
|
|
|
it "should not be able to #{action} group" do
|
|
|
|
|
@ability.should_not be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'for global admin' do
|
|
|
|
|
before(:each) do
|
2012-03-29 21:34:22 +01:00
|
|
|
@admin = FactoryGirl.create(:admin)
|
2012-03-20 15:40:49 +00:00
|
|
|
@ability = Ability.new(@admin)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
[:read, :update, :destroy, :manage_members, :autocomplete_group_uname].each do |action|
|
|
|
|
|
it "should be able to #{action} group" do
|
|
|
|
|
@ability.should be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'for group admin' do
|
|
|
|
|
before(:each) do
|
2012-03-29 21:34:22 +01:00
|
|
|
@user = FactoryGirl.create(:user)
|
|
|
|
|
@another_user = FactoryGirl.create(:user)
|
2012-04-26 02:38:33 +01:00
|
|
|
@group.actors.create(:actor_type => 'User', :actor_id => @user.id, :role => 'admin')
|
2012-03-20 15:40:49 +00:00
|
|
|
@ability = Ability.new(@user)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
[:read, :update, :manage_members, :autocomplete_group_uname].each do |action|
|
|
|
|
|
it "should be able to #{action} group" do
|
|
|
|
|
@ability.should be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should not be able to destroy group" do
|
|
|
|
|
@ability.should_not be_able_to(:destroy, @group)
|
|
|
|
|
end
|
2012-03-21 13:52:35 +00:00
|
|
|
|
|
|
|
|
context 'with mass assignment' do
|
|
|
|
|
it 'should not be able to update uname' do
|
|
|
|
|
@group.should_not allow_mass_assignment_of :uname => 'new_uname'
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should not be able to update owner' do
|
|
|
|
|
@group.should_not allow_mass_assignment_of :owner_type => 'User', :owner_id => @another_user.id
|
|
|
|
|
end
|
|
|
|
|
end
|
2012-03-20 15:40:49 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'for group owner' do
|
|
|
|
|
before(:each) do
|
2012-03-29 21:34:22 +01:00
|
|
|
@user = FactoryGirl.create(:user)
|
2012-03-20 15:40:49 +00:00
|
|
|
@group.update_attribute(:owner, @user)
|
2012-04-26 02:38:33 +01:00
|
|
|
@group.actors.create(:actor_type => 'User', :actor_id => @user.id, :role => 'admin')
|
2012-03-20 15:40:49 +00:00
|
|
|
@ability = Ability.new(@user)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
[:read, :update, :destroy, :manage_members, :autocomplete_group_uname].each do |action|
|
|
|
|
|
it "should be able to #{action} group" do
|
|
|
|
|
@ability.should be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'for group reader and writer user' do
|
|
|
|
|
before(:each) do
|
2012-03-29 21:34:22 +01:00
|
|
|
@user = FactoryGirl.create(:user)
|
2012-04-26 02:38:33 +01:00
|
|
|
@group.actors.create(:actor_type => 'User', :actor_id => @user.id, :role => 'reader')
|
2012-03-20 15:40:49 +00:00
|
|
|
@ability = Ability.new(@user)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
[:read, :autocomplete_group_uname].each do |action|
|
|
|
|
|
it "should be able to #{action} group" do
|
|
|
|
|
@ability.should be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
[:update, :destroy, :manage_members].each do |action|
|
|
|
|
|
it "should not be able to #{action} group" do
|
|
|
|
|
@ability.should_not be_able_to(action, @group)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
2011-10-13 16:55:03 +01:00
|
|
|
end
|
