debian-mirror-gitlab/spec/controllers/groups/group_links_controller_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe Groups::GroupLinksController do
  let(:shared_with_group) { create(:group, :private) }
  let(:shared_group) { create(:group, :private) }
  let(:user) { create(:user) }
  let(:group_member) { create(:user) }
  let!(:project) { create(:project, group: shared_group) }

  before do
    sign_in(user)

    shared_with_group.add_developer(group_member)
  end

  describe '#create' do
    let(:shared_with_group_id) { shared_with_group.id }
    let(:shared_group_access) { GroupGroupLink.default_access }

    subject do
      post(:create,
           params: { group_id: shared_group,
                     shared_with_group_id: shared_with_group_id,
                     shared_group_access: shared_group_access })
    end

    shared_examples 'creates group group link' do
      it 'links group with selected group' do
        expect { subject }.to change { shared_with_group.shared_groups.include?(shared_group) }.from(false).to(true)
      end

      it 'redirects to group links page' do
        subject

        expect(response).to(redirect_to(group_group_members_path(shared_group)))
      end

      it 'allows access for group member' do
        expect { subject }.to(
          change { group_member.can?(:read_group, shared_group) }.from(false).to(true))
      end
    end

    context 'when user has correct access to both groups' do
      before do
        shared_with_group.add_developer(user)
        shared_group.add_owner(user)
      end

      context 'when default access level is requested' do
        include_examples 'creates group group link'
      end

      context 'when owner access is requested' do
        let(:shared_group_access) { Gitlab::Access::OWNER }

        before do
          shared_with_group.add_owner(group_member)
        end

        include_examples 'creates group group link'

        it 'allows admin access for group member' do
          expect { subject }.to(
            change { group_member.can?(:admin_group, shared_group) }.from(false).to(true))
        end
      end

      it 'updates project permissions' do
        expect { subject }.to change { group_member.can?(:read_project, project) }.from(false).to(true)
      end

      context 'when shared with group id is not present' do
        let(:shared_with_group_id) { nil }

        it 'redirects to group links page' do
          subject

          expect(response).to(redirect_to(group_group_members_path(shared_group)))
          expect(flash[:alert]).to eq('Please select a group.')
        end
      end

      context 'when link is not persisted in the database' do
        before do
          allow(::Groups::GroupLinks::CreateService).to(
            receive_message_chain(:new, :execute)
              .and_return({ status: :error,
                            http_status: 409,
                            message: 'error' }))
        end

        it 'redirects to group links page' do
          subject

          expect(response).to(redirect_to(group_group_members_path(shared_group)))
          expect(flash[:alert]).to eq('error')
        end
      end
    end

    context 'when user does not have access to the group' do
      before do
        shared_group.add_owner(user)
      end

      it 'renders 404' do
        subject

        expect(response).to have_gitlab_http_status(:not_found)
      end
    end

    context 'when user does not have admin access to the shared group' do
      before do
        shared_with_group.add_developer(user)
        shared_group.add_developer(user)
      end

      it 'renders 404' do
        subject

        expect(response).to have_gitlab_http_status(:not_found)
      end
    end
  end

  describe '#update' do
    let!(:link) do
      create(:group_group_link, { shared_group: shared_group,
                                  shared_with_group: shared_with_group })
    end

    let(:expiry_date) { 1.month.from_now.to_date }

    subject do
      post(:update, params: { group_id: shared_group,
                               id: link.id,
                               group_link: { group_access: Gitlab::Access::GUEST,
                                             expires_at: expiry_date } })
    end

    context 'when user has admin access to the shared group' do
      before do
        shared_group.add_owner(user)
        shared_with_group.refresh_members_authorized_projects
      end

      it 'updates existing link' do
        expect(link.group_access).to eq(Gitlab::Access::DEVELOPER)
        expect(link.expires_at).to be_nil

        subject

        link.reload

        expect(link.group_access).to eq(Gitlab::Access::GUEST)
        expect(link.expires_at).to eq(expiry_date)
      end

      it 'updates project permissions' do
        expect { subject }.to change { group_member.can?(:create_release, project) }.from(true).to(false)
      end
    end

    context 'when user does not have admin access to the shared group' do
      it 'renders 404' do
        subject

        expect(response).to have_gitlab_http_status(:not_found)
      end
    end
  end

  describe '#destroy' do
    let!(:link) do
      create(:group_group_link, { shared_group: shared_group,
                                  shared_with_group: shared_with_group })
    end

    subject do
      post(:destroy, params: { group_id: shared_group,
                               id: link.id })
    end

    context 'when user has admin access to the shared group' do
      before do
        shared_group.add_owner(user)
        shared_with_group.refresh_members_authorized_projects
      end

      it 'deletes existing link' do
        expect { subject }.to change(GroupGroupLink, :count).by(-1)
      end

      it 'updates project permissions' do
        expect { subject }.to change { group_member.can?(:create_release, project) }.from(true).to(false)
      end
    end

    context 'when user does not have admin access to the shared group' do
      it 'renders 404' do
        subject

        expect(response).to have_gitlab_http_status(:not_found)
      end
    end
  end
end
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`# frozen_string_literal: true`

			`require 'spec_helper'`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`RSpec.describe Groups::GroupLinksController do`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`let(:shared_with_group) { create(:group, :private) }`
			`let(:shared_group) { create(:group, :private) }`
			`let(:user) { create(:user) }`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`let(:group_member) { create(:user) }`
			`let!(:project) { create(:project, group: shared_group) }`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30
			`before do`
			`sign_in(user)`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30
			`shared_with_group.add_developer(group_member)`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`end`

			`describe '#create' do`
			`let(:shared_with_group_id) { shared_with_group.id }`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`let(:shared_group_access) { GroupGroupLink.default_access }`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30
			`subject do`
			`post(:create,`
			`params: { group_id: shared_group,`
			`shared_with_group_id: shared_with_group_id,`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`shared_group_access: shared_group_access })`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`end`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`shared_examples 'creates group group link' do`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`it 'links group with selected group' do`
			`expect { subject }.to change { shared_with_group.shared_groups.include?(shared_group) }.from(false).to(true)`
			`end`

			`it 'redirects to group links page' do`
			`subject`

			`expect(response).to(redirect_to(group_group_members_path(shared_group)))`
			`end`

			`it 'allows access for group member' do`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect { subject }.to(`
			`change { group_member.can?(:read_group, shared_group) }.from(false).to(true))`
			`end`
			`end`

			`context 'when user has correct access to both groups' do`
			`before do`
			`shared_with_group.add_developer(user)`
			`shared_group.add_owner(user)`
			`end`

			`context 'when default access level is requested' do`
			`include_examples 'creates group group link'`
			`end`

			`context 'when owner access is requested' do`
			`let(:shared_group_access) { Gitlab::Access::OWNER }`

			`before do`
			`shared_with_group.add_owner(group_member)`
			`end`

			`include_examples 'creates group group link'`

			`it 'allows admin access for group member' do`
			`expect { subject }.to(`
			`change { group_member.can?(:admin_group, shared_group) }.from(false).to(true))`
			`end`
			`end`

			`it 'updates project permissions' do`
			`expect { subject }.to change { group_member.can?(:read_project, project) }.from(false).to(true)`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`end`

			`context 'when shared with group id is not present' do`
			`let(:shared_with_group_id) { nil }`

			`it 'redirects to group links page' do`
			`subject`

			`expect(response).to(redirect_to(group_group_members_path(shared_group)))`
			`expect(flash[:alert]).to eq('Please select a group.')`
			`end`
			`end`

			`context 'when link is not persisted in the database' do`
			`before do`
			`allow(::Groups::GroupLinks::CreateService).to(`
			`receive_message_chain(:new, :execute)`
			`.and_return({ status: :error,`
			`http_status: 409,`
			`message: 'error' }))`
			`end`

			`it 'redirects to group links page' do`
			`subject`

			`expect(response).to(redirect_to(group_group_members_path(shared_group)))`
			`expect(flash[:alert]).to eq('error')`
			`end`
			`end`
			`end`

			`context 'when user does not have access to the group' do`
			`before do`
			`shared_group.add_owner(user)`
			`end`

			`it 'renders 404' do`
			`subject`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:not_found)`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`end`
			`end`

			`context 'when user does not have admin access to the shared group' do`
			`before do`
			`shared_with_group.add_developer(user)`
			`shared_group.add_developer(user)`
			`end`

			`it 'renders 404' do`
			`subject`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:not_found)`
			`end`
			`end`
			`end`

			`describe '#update' do`
			`let!(:link) do`
			`create(:group_group_link, { shared_group: shared_group,`
			`shared_with_group: shared_with_group })`
			`end`

			`let(:expiry_date) { 1.month.from_now.to_date }`

			`subject do`
			`post(:update, params: { group_id: shared_group,`
			`id: link.id,`
			`group_link: { group_access: Gitlab::Access::GUEST,`
			`expires_at: expiry_date } })`
			`end`

			`context 'when user has admin access to the shared group' do`
			`before do`
			`shared_group.add_owner(user)`
			`shared_with_group.refresh_members_authorized_projects`
			`end`

			`it 'updates existing link' do`
			`expect(link.group_access).to eq(Gitlab::Access::DEVELOPER)`
			`expect(link.expires_at).to be_nil`

			`subject`

			`link.reload`

			`expect(link.group_access).to eq(Gitlab::Access::GUEST)`
			`expect(link.expires_at).to eq(expiry_date)`
			`end`

			`it 'updates project permissions' do`
			`expect { subject }.to change { group_member.can?(:create_release, project) }.from(true).to(false)`
			`end`
			`end`

			`context 'when user does not have admin access to the shared group' do`
			`it 'renders 404' do`
			`subject`

			`expect(response).to have_gitlab_http_status(:not_found)`
			`end`
			`end`
			`end`

			`describe '#destroy' do`
			`let!(:link) do`
			`create(:group_group_link, { shared_group: shared_group,`
			`shared_with_group: shared_with_group })`
			`end`

			`subject do`
			`post(:destroy, params: { group_id: shared_group,`
			`id: link.id })`
			`end`

			`context 'when user has admin access to the shared group' do`
			`before do`
			`shared_group.add_owner(user)`
			`shared_with_group.refresh_members_authorized_projects`
			`end`

			`it 'deletes existing link' do`
			`expect { subject }.to change(GroupGroupLink, :count).by(-1)`
			`end`

			`it 'updates project permissions' do`
			`expect { subject }.to change { group_member.can?(:create_release, project) }.from(true).to(false)`
			`end`
			`end`

			`context 'when user does not have admin access to the shared group' do`
			`it 'renders 404' do`
			`subject`

			`expect(response).to have_gitlab_http_status(:not_found)`
			`end`
			`end`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`end`
			`end`