debian-mirror-gitlab/spec/controllers/concerns/project_unauthorized_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe ProjectUnauthorized do
  include ExternalAuthorizationServiceHelpers
  let(:user) { create(:user) }

  before do
    sign_in user
  end

  render_views

  describe '.on_routable_not_found' do
    controller(::Projects::ApplicationController) do
      def show
        head :ok
      end
    end

    let(:project) { create(:project) }

    before do
      project.add_developer(user)
    end

    it 'renders a 200 when the service allows access to the project' do
      external_service_allow_access(user, project)

      get :show, params: { namespace_id: project.namespace.to_param, id: project.to_param }

      expect(response).to have_gitlab_http_status(:ok)
    end

    it 'renders a 403 when the service denies access to the project' do
      external_service_deny_access(user, project)

      get :show, params: { namespace_id: project.namespace.to_param, id: project.to_param }

      expect(response).to have_gitlab_http_status(:forbidden)
      expect(response.body).to match("External authorization denied access to this project")
    end

    it 'renders a 404 when the user cannot see the project at all' do
      other_project = create(:project, :private)

      get :show, params: { namespace_id: other_project.namespace.to_param, id: other_project.to_param }

      expect(response).to have_gitlab_http_status(:not_found)
    end
  end
end
New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`# frozen_string_literal: true`

New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`require 'spec_helper'`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`RSpec.describe ProjectUnauthorized do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`include ExternalAuthorizationServiceHelpers`
			`let(:user) { create(:user) }`

			`before do`
			`sign_in user`
			`end`

			`render_views`

New upstream version 12.0.8 2019-09-04 21:01:54 +05:30			`describe '.on_routable_not_found' do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`controller(::Projects::ApplicationController) do`
			`def show`
			`head :ok`
			`end`
			`end`

			`let(:project) { create(:project) }`

			`before do`
			`project.add_developer(user)`
			`end`

			`it 'renders a 200 when the service allows access to the project' do`
			`external_service_allow_access(user, project)`

			`get :show, params: { namespace_id: project.namespace.to_param, id: project.to_param }`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:ok)`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`end`

			`it 'renders a 403 when the service denies access to the project' do`
			`external_service_deny_access(user, project)`

			`get :show, params: { namespace_id: project.namespace.to_param, id: project.to_param }`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:forbidden)`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`expect(response.body).to match("External authorization denied access to this project")`
			`end`

			`it 'renders a 404 when the user cannot see the project at all' do`
			`other_project = create(:project, :private)`

			`get :show, params: { namespace_id: other_project.namespace.to_param, id: other_project.to_param }`

New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:not_found)`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`end`
			`end`
			`end`