2019-10-12 21:52:04 +05:30
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
2019-12-04 20:38:33 +05:30
|
|
|
require 'spec_helper'
|
2016-06-02 11:05:42 +05:30
|
|
|
|
2017-09-10 17:25:29 +05:30
|
|
|
describe 'Private Group access' do
|
2016-06-02 11:05:42 +05:30
|
|
|
include AccessMatchers
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
let(:group) { create(:group, :private) }
|
2016-06-02 11:05:42 +05:30
|
|
|
let(:project) { create(:project, :private, group: group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
let(:project_guest) do
|
|
|
|
|
create(:user) do |user|
|
|
|
|
|
project.add_guest(user)
|
|
|
|
|
end
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "Group should be private" do
|
|
|
|
|
describe '#private?' do
|
|
|
|
|
subject { group.private? }
|
|
|
|
|
it { is_expected.to be_truthy }
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'GET /groups/:path' do
|
|
|
|
|
subject { group_path(group) }
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
2018-11-18 11:00:15 +05:30
|
|
|
it { is_expected.to be_allowed_for(:maintainer).of(group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'GET /groups/:path/issues' do
|
|
|
|
|
subject { issues_group_path(group) }
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
2018-11-18 11:00:15 +05:30
|
|
|
it { is_expected.to be_allowed_for(:maintainer).of(group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'GET /groups/:path/merge_requests' do
|
2017-09-10 17:25:29 +05:30
|
|
|
let(:project) { create(:project, :private, :repository, group: group) }
|
2016-06-02 11:05:42 +05:30
|
|
|
subject { merge_requests_group_path(group) }
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
2018-11-18 11:00:15 +05:30
|
|
|
it { is_expected.to be_allowed_for(:maintainer).of(group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'GET /groups/:path/group_members' do
|
|
|
|
|
subject { group_group_members_path(group) }
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
2018-11-18 11:00:15 +05:30
|
|
|
it { is_expected.to be_allowed_for(:maintainer).of(group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'GET /groups/:path/edit' do
|
|
|
|
|
subject { edit_group_path(group) }
|
|
|
|
|
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
2018-11-18 11:00:15 +05:30
|
|
|
it { is_expected.to be_denied_for(:maintainer).of(group) }
|
2017-08-17 22:00:37 +05:30
|
|
|
it { is_expected.to be_denied_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_denied_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_denied_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_denied_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
2019-03-13 22:55:13 +05:30
|
|
|
|
|
|
|
|
describe 'GET /groups/:path for shared projects' do
|
|
|
|
|
let(:project) { create(:project, :public) }
|
|
|
|
|
|
|
|
|
|
before do
|
2019-07-07 11:18:12 +05:30
|
|
|
create(:project_group_link, project: project, group: group)
|
2019-03-13 22:55:13 +05:30
|
|
|
end
|
|
|
|
|
|
|
|
|
|
subject { group_path(group) }
|
|
|
|
|
|
|
|
|
|
it { is_expected.to be_allowed_for(:admin) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:owner).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:maintainer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:developer).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:reporter).of(group) }
|
|
|
|
|
it { is_expected.to be_allowed_for(:guest).of(group) }
|
|
|
|
|
it { is_expected.to be_denied_for(project_guest) }
|
|
|
|
|
it { is_expected.to be_denied_for(:user) }
|
|
|
|
|
it { is_expected.to be_denied_for(:external) }
|
|
|
|
|
it { is_expected.to be_denied_for(:visitor) }
|
|
|
|
|
end
|
2016-06-02 11:05:42 +05:30
|
|
|
end
|
