debian-mirror-gitlab/spec/controllers/projects/releases/evidences_controller_spec.rb

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

160 lines
4.3 KiB
Ruby
Raw Permalink Normal View History

2020-04-22 19:07:51 +05:30
# frozen_string_literal: true
require 'spec_helper'
2023-03-17 16:20:25 +05:30
RSpec.describe Projects::Releases::EvidencesController, :with_license do
2020-04-22 19:07:51 +05:30
let!(:project) { create(:project, :repository, :public) }
let_it_be(:private_project) { create(:project, :repository, :private) }
let_it_be(:developer) { create(:user) }
let_it_be(:reporter) { create(:user) }
2021-04-29 21:17:54 +05:30
2020-04-22 19:07:51 +05:30
let(:user) { developer }
before do
project.add_developer(developer)
project.add_reporter(reporter)
end
shared_examples_for 'successful request' do
it 'renders a 200' do
subject
expect(response).to have_gitlab_http_status(:success)
end
end
shared_examples_for 'not found' do
it 'renders 404' do
subject
expect(response).to have_gitlab_http_status(:not_found)
end
end
describe 'GET #show' do
2020-06-23 00:09:42 +05:30
let(:tag_name) { "v1.1.0-evidence" }
let!(:release) { create(:release, project: project, tag: tag_name) }
2020-04-22 19:07:51 +05:30
let(:evidence) { release.evidences.first }
let(:tag) { CGI.escape(release.tag) }
let(:format) { :json }
subject do
get :show, params: {
namespace_id: project.namespace.to_param,
project_id: project,
tag: tag,
id: evidence.id,
format: format
}
end
before do
2020-06-23 00:09:42 +05:30
::Releases::CreateEvidenceService.new(release).execute
2020-04-22 19:07:51 +05:30
sign_in(user)
end
context 'when the user is a developer' do
it 'returns the correct evidence summary as a json' do
subject
expect(json_response).to eq(evidence.summary)
end
context 'when the release was created before evidence existed' do
before do
2021-04-29 21:17:54 +05:30
evidence.destroy!
2020-04-22 19:07:51 +05:30
end
it_behaves_like 'not found'
end
end
context 'when the user is a guest for the project' do
before do
project.add_guest(user)
end
context 'when the project is private' do
let(:project) { private_project }
it_behaves_like 'not found'
end
context 'when the project is public' do
it_behaves_like 'successful request'
end
end
context 'when release is associated to a milestone which includes an issue' do
2020-06-23 00:09:42 +05:30
let(:issue) { create(:issue, project: project) }
let(:milestone) { create(:milestone, project: project, issues: [issue]) }
let(:release) { create(:release, project: project, tag: tag_name, milestones: [milestone]) }
2020-04-22 19:07:51 +05:30
shared_examples_for 'does not show the issue in evidence' do
it do
subject
expect(response).to have_gitlab_http_status(:ok)
expect(json_response['release']['milestones']
.all? { |milestone| milestone['issues'].nil? }).to eq(true)
end
end
shared_examples_for 'evidence not found' do
it do
subject
expect(response).to have_gitlab_http_status(:not_found)
end
end
2020-06-23 00:09:42 +05:30
context 'when user is non-project member' do
let(:user) { create(:user) }
2020-04-22 19:07:51 +05:30
it_behaves_like 'does not show the issue in evidence'
context 'when project is private' do
2020-06-23 00:09:42 +05:30
let(:project) { create(:project, :repository, :private) }
2020-04-22 19:07:51 +05:30
it_behaves_like 'evidence not found'
end
context 'when project restricts the visibility of issues to project members only' do
2020-06-23 00:09:42 +05:30
let(:project) { create(:project, :repository, :issues_private) }
2020-04-22 19:07:51 +05:30
it_behaves_like 'evidence not found'
end
end
context 'when user is auditor', if: Gitlab.ee? do
let(:user) { create(:user, :auditor) }
2020-06-23 00:09:42 +05:30
it_behaves_like 'does not show the issue in evidence'
context 'when project is private' do
let(:project) { create(:project, :repository, :private) }
2021-01-03 14:25:43 +05:30
it_behaves_like 'does not show the issue in evidence'
2020-06-23 00:09:42 +05:30
end
context 'when project restricts the visibility of issues to project members only' do
let(:project) { create(:project, :repository, :issues_private) }
2021-01-03 14:25:43 +05:30
it_behaves_like 'does not show the issue in evidence'
2020-06-23 00:09:42 +05:30
end
2020-04-22 19:07:51 +05:30
end
context 'when external authorization control is enabled' do
let(:user) { create(:user) }
before do
stub_application_setting(external_authorization_service_enabled: true)
end
it_behaves_like 'evidence not found'
end
end
end
end