debian-mirror-gitlab/spec/features/admin/admin_users_impersonation_tokens_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe 'Admin > Users > Impersonation Tokens', :js do
  let(:admin) { create(:admin) }
  let!(:user) { create(:user) }

  def active_impersonation_tokens
    find(".table.active-tokens")
  end

  def no_personal_access_tokens_message
    find(".settings-message")
  end

  def created_impersonation_token
    find("#created-personal-access-token").value
  end

  before do
    sign_in(admin)
  end

  describe "token creation" do
    it "allows creation of a token" do
      name = 'Hello World'

      visit admin_user_impersonation_tokens_path(user_id: user.username)
      fill_in "Name", with: name

      # Set date to 1st of next month
      find_field("Expires at").click
      find(".pika-next").click
      click_on "1"

      # Scopes
      check "api"
      check "read_user"

      click_on "Create impersonation token"

      expect(active_impersonation_tokens).to have_text(name)
      expect(active_impersonation_tokens).to have_text('In')
      expect(active_impersonation_tokens).to have_text('api')
      expect(active_impersonation_tokens).to have_text('read_user')
      expect(PersonalAccessTokensFinder.new(impersonation: true).execute.count).to equal(1)
      expect(created_impersonation_token).not_to be_empty
    end
  end

  describe 'active tokens' do
    let!(:impersonation_token) { create(:personal_access_token, :impersonation, user: user) }
    let!(:personal_access_token) { create(:personal_access_token, user: user) }

    it 'only shows impersonation tokens' do
      visit admin_user_impersonation_tokens_path(user_id: user.username)

      expect(active_impersonation_tokens).to have_text(impersonation_token.name)
      expect(active_impersonation_tokens).not_to have_text(personal_access_token.name)
    end
  end

  describe "inactive tokens" do
    let!(:impersonation_token) { create(:personal_access_token, :impersonation, user: user) }

    it "allows revocation of an active impersonation token" do
      visit admin_user_impersonation_tokens_path(user_id: user.username)

      accept_confirm { click_on "Revoke" }

      expect(page).to have_selector(".settings-message")
      expect(no_personal_access_tokens_message).to have_text("This user has no active impersonation tokens.")
    end

    it "removes expired tokens from 'active' section" do
      impersonation_token.update(expires_at: 5.days.ago)

      visit admin_user_impersonation_tokens_path(user_id: user.username)

      expect(page).to have_selector(".settings-message")
      expect(no_personal_access_tokens_message).to have_text("This user has no active impersonation tokens.")
    end
  end
end
New upstream version 12.2.8 2019-10-12 21:52:04 +05:30			`# frozen_string_literal: true`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`require 'spec_helper'`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`RSpec.describe 'Admin > Users > Impersonation Tokens', :js do`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`let(:admin) { create(:admin) }`
			`let!(:user) { create(:user) }`

			`def active_impersonation_tokens`
			`find(".table.active-tokens")`
			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`def no_personal_access_tokens_message`
			`find(".settings-message")`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`def created_impersonation_token`
			`find("#created-personal-access-token").value`
			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`before do`
			`sign_in(admin)`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
			`describe "token creation" do`
			`it "allows creation of a token" do`
			`name = 'Hello World'`

			`visit admin_user_impersonation_tokens_path(user_id: user.username)`
			`fill_in "Name", with: name`

			`# Set date to 1st of next month`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`find_field("Expires at").click`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`find(".pika-next").click`
			`click_on "1"`

			`# Scopes`
			`check "api"`
			`check "read_user"`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`click_on "Create impersonation token"`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`expect(active_impersonation_tokens).to have_text(name)`
			`expect(active_impersonation_tokens).to have_text('In')`
			`expect(active_impersonation_tokens).to have_text('api')`
			`expect(active_impersonation_tokens).to have_text('read_user')`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`expect(PersonalAccessTokensFinder.new(impersonation: true).execute.count).to equal(1)`
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`expect(created_impersonation_token).not_to be_empty`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`

			`describe 'active tokens' do`
			`let!(:impersonation_token) { create(:personal_access_token, :impersonation, user: user) }`
			`let!(:personal_access_token) { create(:personal_access_token, user: user) }`

			`it 'only shows impersonation tokens' do`
			`visit admin_user_impersonation_tokens_path(user_id: user.username)`

			`expect(active_impersonation_tokens).to have_text(impersonation_token.name)`
			`expect(active_impersonation_tokens).not_to have_text(personal_access_token.name)`
			`end`
			`end`

			`describe "inactive tokens" do`
			`let!(:impersonation_token) { create(:personal_access_token, :impersonation, user: user) }`

			`it "allows revocation of an active impersonation token" do`
			`visit admin_user_impersonation_tokens_path(user_id: user.username)`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`accept_confirm { click_on "Revoke" }`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`expect(page).to have_selector(".settings-message")`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`expect(no_personal_access_tokens_message).to have_text("This user has no active impersonation tokens.")`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`it "removes expired tokens from 'active' section" do`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`impersonation_token.update(expires_at: 5.days.ago)`

			`visit admin_user_impersonation_tokens_path(user_id: user.username)`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`expect(page).to have_selector(".settings-message")`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`expect(no_personal_access_tokens_message).to have_text("This user has no active impersonation tokens.")`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`
			`end`