debian-mirror-gitlab/spec/models/personal_access_token_spec.rb

78 lines
2.4 KiB
Ruby
Raw Permalink Normal View History

2016-06-22 15:30:34 +05:30
require 'spec_helper'
2017-09-10 17:25:29 +05:30
describe PersonalAccessToken do
2017-08-17 22:00:37 +05:30
describe '.build' do
let(:personal_access_token) { build(:personal_access_token) }
let(:invalid_personal_access_token) { build(:personal_access_token, :invalid) }
it 'is a valid personal access token' do
expect(personal_access_token).to be_valid
end
it 'ensures that the token is generated' do
invalid_personal_access_token.save!
expect(invalid_personal_access_token).to be_valid
expect(invalid_personal_access_token.token).not_to be_nil
2016-06-22 15:30:34 +05:30
end
2017-08-17 22:00:37 +05:30
end
describe ".active?" do
let(:active_personal_access_token) { build(:personal_access_token) }
let(:revoked_personal_access_token) { build(:personal_access_token, :revoked) }
let(:expired_personal_access_token) { build(:personal_access_token, :expired) }
it "returns false if the personal_access_token is revoked" do
expect(revoked_personal_access_token).not_to be_active
end
it "returns false if the personal_access_token is expired" do
expect(expired_personal_access_token).not_to be_active
end
it "returns true if the personal_access_token is not revoked and not expired" do
expect(active_personal_access_token).to be_active
end
end
2017-09-10 17:25:29 +05:30
describe 'revoke!' do
let(:active_personal_access_token) { create(:personal_access_token) }
it 'revokes the token' do
active_personal_access_token.revoke!
expect(active_personal_access_token.revoked?).to be true
end
end
2017-08-17 22:00:37 +05:30
context "validations" do
let(:personal_access_token) { build(:personal_access_token) }
it "requires at least one scope" do
personal_access_token.scopes = []
expect(personal_access_token).not_to be_valid
expect(personal_access_token.errors[:scopes].first).to eq "can't be blank"
end
it "allows creating a token with API scopes" do
personal_access_token.scopes = [:api, :read_user]
expect(personal_access_token).to be_valid
end
2017-09-10 17:25:29 +05:30
it "allows creating a token with read_registry scope" do
personal_access_token.scopes = [:read_registry]
expect(personal_access_token).to be_valid
end
it "rejects creating a token with unavailable scopes" do
2017-08-17 22:00:37 +05:30
personal_access_token.scopes = [:openid, :api]
2016-06-22 15:30:34 +05:30
2017-08-17 22:00:37 +05:30
expect(personal_access_token).not_to be_valid
2017-09-10 17:25:29 +05:30
expect(personal_access_token.errors[:scopes].first).to eq "can only contain available scopes"
2016-06-22 15:30:34 +05:30
end
end
end