require 'spec_helper' #require 'shared_examples/personal_repositories_controller' describe PersonalRepositoriesController do before(:each) do @repository = Factory(:personal_repository) @platform = Factory(:platform) @project = Factory(:project) @another_user = Factory(:user) @create_params = {:repository => {:name => 'pro', :description => 'pro2'}, :platform_id => @platform.id} end context 'for guest' do [:show, :add_project, :remove_project, :settings, :change_visibility].each do |action| it "should not be able to perform #{ action } action" do get action, :id => @repository.id response.should redirect_to(new_user_session_path) end end end context 'for admin' do before(:each) do @admin = Factory(:admin) set_session_for(@admin) end it_should_behave_like 'be_able_to_perform_show#personal_repositories' it_should_behave_like 'be_able_to_perform_add_project#personal_repositories' it_should_behave_like 'be_able_to_perform_add_project#personal_repositories_with_project_id_param' it_should_behave_like 'add_project_to_repository' it_should_behave_like 'be_able_to_perform_remove_project#personal_repositories' it_should_behave_like 'remove_project_from_repository' it_should_behave_like 'be_able_to_perform_settings#personal_repositories' it_should_behave_like 'be_able_to_perform_change_visibility' it_should_behave_like 'be_able_to_change_visibility' end context 'for anyone except admin' do before(:each) do @user = Factory(:user) set_session_for(@user) end end context 'for owner user' do before(:each) do @user = Factory(:user) set_session_for(@user) @repository.update_attribute(:owner, @user) r = @repository.relations.build(:object_type => 'User', :object_id => @user.id, :role => 'admin') r.save! @repository.platform.update_attribute(:owner, @user) p = @repository.platform.relations.build(:object_type => 'User', :object_id => @user.id, :role => 'admin') p.save! end it_should_behave_like 'be_able_to_perform_settings#personal_repositories' it_should_behave_like 'be_able_to_perform_change_visibility' it_should_behave_like 'be_able_to_change_visibility' it_should_behave_like 'be_able_to_perform_show#personal_repositories' it_should_behave_like 'be_able_to_perform_add_project#personal_repositories' it_should_behave_like 'be_able_to_perform_add_project#personal_repositories_with_project_id_param' it_should_behave_like 'add_project_to_repository' it_should_behave_like 'be_able_to_perform_remove_project#personal_repositories' it_should_behave_like 'remove_project_from_repository' end context 'for reader user' do before(:each) do @user = Factory(:user) set_session_for(@user) r = @repository.relations.build(:object_type => 'User', :object_id => @user.id, :role => 'reader') r.save! end it_should_behave_like 'be_able_to_perform_show#personal_repositories' it 'should not be able to perform add_project action' do get :add_project, :id => @repository.id response.should redirect_to(forbidden_path) end it 'should not be able to perform add_project action with project_id param' do get :add_project, :id => @repository.id, :project_id => @project.id response.should redirect_to(forbidden_path) end it 'should not be able to perform settings action' do get :settings, :id => @repository.id response.should redirect_to(forbidden_path) end it 'should not be able to perform change_visibility action' do get :change_visibility, :id => @repository.id response.should redirect_to(forbidden_path) end it 'should not change visibility of repository' do get :change_visibility, :id => @repository.id @repository.platform.reload.visibility.should == 'hidden' end end end