debian-mirror-gitlab/spec/controllers/projects/protected_branches_controller_spec.rb

# frozen_string_literal: true

require('spec_helper')

RSpec.describe Projects::ProtectedBranchesController do
  let_it_be_with_reload(:project) { create(:project, :repository) }
  let_it_be_with_reload(:empty_project) { create(:project, :empty_repo) }
  let_it_be(:maintainer) { create(:user, maintainer_projects: [project, empty_project]) }

  let(:protected_branch) { create(:protected_branch, project: project) }
  let(:project_params) { { namespace_id: project.namespace.to_param, project_id: project } }
  let(:base_params) { project_params.merge(id: protected_branch.id) }
  let(:user) { maintainer }

  before do
    sign_in(user)
  end

  describe "GET #index" do
    it 'redirects to repository settings' do
      get(:index, params: { namespace_id: empty_project.namespace.to_param, project_id: empty_project })

      expect(response).to redirect_to(project_settings_repository_path(empty_project))
    end
  end

  describe "POST #create" do
    let(:maintainer_access_level) { [{ access_level: Gitlab::Access::MAINTAINER }] }
    let(:access_level_params) do
      { merge_access_levels_attributes: maintainer_access_level,
        push_access_levels_attributes: maintainer_access_level }
    end

    let(:create_params) { attributes_for(:protected_branch).merge(access_level_params) }

    it 'creates the protected branch rule' do
      expect do
        post(:create, params: project_params.merge(protected_branch: create_params))
      end.to change(ProtectedBranch, :count).by(1)
    end

    context 'when repository is empty' do
      let(:project) { empty_project }

      it 'creates the protected branch rule' do
        expect do
          post(:create, params: project_params.merge(protected_branch: create_params))
        end.to change(ProtectedBranch, :count).by(1)

        expect(response).to have_gitlab_http_status(:found)
      end
    end

    context 'when a policy restricts rule creation' do
      it "prevents creation of the protected branch rule" do
        disallow(:create_protected_branch, an_instance_of(ProtectedBranch))

        post(:create, params: project_params.merge(protected_branch: create_params))

        expect(ProtectedBranch.count).to eq 0
      end
    end
  end

  describe "PUT #update" do
    let(:update_params) { { name: 'new_name' } }

    it 'updates the protected branch rule' do
      put(:update, params: base_params.merge(protected_branch: update_params))

      expect(protected_branch.reload.name).to eq('new_name')
      expect(json_response["name"]).to eq('new_name')
    end

    context 'when repository is empty' do
      let(:project) { empty_project }

      it 'updates the protected branch rule' do
        put(:update, params: base_params.merge(protected_branch: update_params))

        expect(protected_branch.reload.name).to eq('new_name')
        expect(json_response["name"]).to eq('new_name')
      end
    end

    context 'when a policy restricts rule update' do
      it "prevents update of the protected branch rule" do
        disallow(:update_protected_branch, protected_branch)

        old_name = protected_branch.name

        put(:update, params: base_params.merge(protected_branch: update_params))

        expect(protected_branch.reload.name).to eq(old_name)
      end
    end
  end

  describe "DELETE #destroy" do
    it "deletes the protected branch rule" do
      delete(:destroy, params: base_params)

      expect { ProtectedBranch.find(protected_branch.id) }.to raise_error(ActiveRecord::RecordNotFound)
    end

    context 'when repository is empty' do
      let(:project) { empty_project }

      it 'deletes the protected branch rule' do
        delete(:destroy, params: base_params)

        expect { ProtectedBranch.find(protected_branch.id) }.to raise_error(ActiveRecord::RecordNotFound)
      end
    end

    context 'when a policy restricts rule deletion' do
      it "prevents deletion of the protected branch rule" do
        disallow(:destroy_protected_branch, protected_branch)

        delete(:destroy, params: base_params)

        expect(response).to have_gitlab_http_status(:forbidden)
      end
    end
  end

  def disallow(ability, protected_branch)
    allow(Ability).to receive(:allowed?).and_call_original
    allow(Ability).to receive(:allowed?).with(user, ability, protected_branch).and_return(false)
  end
end
New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`# frozen_string_literal: true`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`require('spec_helper')`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`RSpec.describe Projects::ProtectedBranchesController do`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`let_it_be_with_reload(:project) { create(:project, :repository) }`
New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`let_it_be_with_reload(:empty_project) { create(:project, :empty_repo) }`
			`let_it_be(:maintainer) { create(:user, maintainer_projects: [project, empty_project]) }`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`let(:protected_branch) { create(:protected_branch, project: project) }`
			`let(:project_params) { { namespace_id: project.namespace.to_param, project_id: project } }`
			`let(:base_params) { project_params.merge(id: protected_branch.id) }`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`let(:user) { maintainer }`

New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`before do`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`sign_in(user)`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`end`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`describe "GET #index" do`
New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`it 'redirects to repository settings' do`
			`get(:index, params: { namespace_id: empty_project.namespace.to_param, project_id: empty_project })`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`expect(response).to redirect_to(project_settings_repository_path(empty_project))`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`
			`end`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
			`describe "POST #create" do`
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`let(:maintainer_access_level) { [{ access_level: Gitlab::Access::MAINTAINER }] }`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`let(:access_level_params) do`
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`{ merge_access_levels_attributes: maintainer_access_level,`
			`push_access_levels_attributes: maintainer_access_level }`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`end`
New upstream version 13.3.8 2020-10-24 23:57:45 +05:30
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`let(:create_params) { attributes_for(:protected_branch).merge(access_level_params) }`

			`it 'creates the protected branch rule' do`
			`expect do`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`post(:create, params: project_params.merge(protected_branch: create_params))`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`end.to change(ProtectedBranch, :count).by(1)`
			`end`

New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`context 'when repository is empty' do`
			`let(:project) { empty_project }`

			`it 'creates the protected branch rule' do`
			`expect do`
			`post(:create, params: project_params.merge(protected_branch: create_params))`
			`end.to change(ProtectedBranch, :count).by(1)`

			`expect(response).to have_gitlab_http_status(:found)`
			`end`
			`end`

New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`context 'when a policy restricts rule creation' do`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`it "prevents creation of the protected branch rule" do`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`disallow(:create_protected_branch, an_instance_of(ProtectedBranch))`

New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`post(:create, params: project_params.merge(protected_branch: create_params))`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
			`expect(ProtectedBranch.count).to eq 0`
			`end`
			`end`
			`end`

			`describe "PUT #update" do`
			`let(:update_params) { { name: 'new_name' } }`

			`it 'updates the protected branch rule' do`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`put(:update, params: base_params.merge(protected_branch: update_params))`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
			`expect(protected_branch.reload.name).to eq('new_name')`
			`expect(json_response["name"]).to eq('new_name')`
			`end`

New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`context 'when repository is empty' do`
			`let(:project) { empty_project }`

			`it 'updates the protected branch rule' do`
			`put(:update, params: base_params.merge(protected_branch: update_params))`

			`expect(protected_branch.reload.name).to eq('new_name')`
			`expect(json_response["name"]).to eq('new_name')`
			`end`
			`end`

New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`context 'when a policy restricts rule update' do`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`it "prevents update of the protected branch rule" do`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`disallow(:update_protected_branch, protected_branch)`

New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`old_name = protected_branch.name`

New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`put(:update, params: base_params.merge(protected_branch: update_params))`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
			`expect(protected_branch.reload.name).to eq(old_name)`
			`end`
			`end`
			`end`

			`describe "DELETE #destroy" do`
			`it "deletes the protected branch rule" do`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`delete(:destroy, params: base_params)`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
			`expect { ProtectedBranch.find(protected_branch.id) }.to raise_error(ActiveRecord::RecordNotFound)`
			`end`

New upstream version 15.5.4+ds1 2022-11-25 23:54:43 +05:30			`context 'when repository is empty' do`
			`let(:project) { empty_project }`

			`it 'deletes the protected branch rule' do`
			`delete(:destroy, params: base_params)`

			`expect { ProtectedBranch.find(protected_branch.id) }.to raise_error(ActiveRecord::RecordNotFound)`
			`end`
			`end`

New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`context 'when a policy restricts rule deletion' do`
			`it "prevents deletion of the protected branch rule" do`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30			`disallow(:destroy_protected_branch, protected_branch)`

New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`delete(:destroy, params: base_params)`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30
New upstream version 12.10.0 2020-04-22 19:07:51 +05:30			`expect(response).to have_gitlab_http_status(:forbidden)`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`end`
			`end`
			`end`
New upstream version 15.3.1+ds1 2022-08-27 11:52:29 +05:30
			`def disallow(ability, protected_branch)`
			`allow(Ability).to receive(:allowed?).and_call_original`
			`allow(Ability).to receive(:allowed?).with(user, ability, protected_branch).and_return(false)`
			`end`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`