debian-mirror-gitlab/spec/features/security/dashboard_access_spec.rb

66 lines
1.9 KiB
Ruby
Raw Normal View History

2014-09-02 18:07:02 +05:30
require 'spec_helper'
describe "Dashboard access", feature: true do
2015-09-11 14:41:01 +05:30
include AccessMatchers
2014-09-02 18:07:02 +05:30
describe "GET /dashboard" do
2015-09-25 12:07:36 +05:30
subject { dashboard_projects_path }
2014-09-02 18:07:02 +05:30
2015-04-26 12:48:37 +05:30
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
it { is_expected.to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
describe "GET /dashboard/issues" do
subject { issues_dashboard_path }
2015-04-26 12:48:37 +05:30
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
it { is_expected.to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
describe "GET /dashboard/merge_requests" do
subject { merge_requests_dashboard_path }
2015-04-26 12:48:37 +05:30
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
it { is_expected.to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
2015-04-26 12:48:37 +05:30
describe "GET /dashboard/projects/starred" do
subject { starred_dashboard_projects_path }
2014-09-02 18:07:02 +05:30
2015-04-26 12:48:37 +05:30
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
it { is_expected.to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
describe "GET /help" do
subject { help_path }
2015-04-26 12:48:37 +05:30
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
2015-09-25 12:07:36 +05:30
it { is_expected.to be_allowed_for :visitor }
2014-09-02 18:07:02 +05:30
end
describe "GET /projects/new" do
2015-04-26 12:48:37 +05:30
it { expect(new_project_path).to be_allowed_for :admin }
it { expect(new_project_path).to be_allowed_for :user }
it { expect(new_project_path).to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
describe "GET /groups/new" do
2015-04-26 12:48:37 +05:30
it { expect(new_group_path).to be_allowed_for :admin }
it { expect(new_group_path).to be_allowed_for :user }
it { expect(new_group_path).to be_denied_for :visitor }
end
describe "GET /profile/groups" do
subject { dashboard_groups_path }
it { is_expected.to be_allowed_for :admin }
it { is_expected.to be_allowed_for :user }
it { is_expected.to be_denied_for :visitor }
2014-09-02 18:07:02 +05:30
end
end