debian-mirror-gitlab/spec/policies/alert_management/alert_policy_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe AlertManagement::AlertPolicy, :models do
  let_it_be(:user) { create(:user) }
  let_it_be(:project) { create(:project) }
  let_it_be(:alert) { create(:alert_management_alert, project: project, issue: incident) }
  let_it_be(:incident) { nil }

  subject(:policy) { described_class.new(user, alert) }

  describe 'rules' do
    it { is_expected.to be_disallowed :read_alert_management_alert }
    it { is_expected.to be_disallowed :update_alert_management_alert }

    context 'when developer' do
      before do
        project.add_developer(user)
      end

      it { is_expected.to be_allowed :read_alert_management_alert }
      it { is_expected.to be_allowed :update_alert_management_alert }
    end

    shared_examples 'does not allow metric image reads' do
      it { expect(policy).to be_disallowed(:read_alert_management_metric_image) }
    end

    shared_examples 'does not allow metric image updates' do
      specify do
        expect(policy).to be_disallowed(:upload_alert_management_metric_image)
        expect(policy).to be_disallowed(:destroy_alert_management_metric_image)
      end
    end

    shared_examples 'allows metric image reads' do
      it { expect(policy).to be_allowed(:read_alert_management_metric_image) }
    end

    shared_examples 'allows metric image updates' do
      specify do
        expect(policy).to be_allowed(:upload_alert_management_metric_image)
        expect(policy).to be_allowed(:destroy_alert_management_metric_image)
      end
    end

    context 'when user is not a member' do
      include_examples 'does not allow metric image reads'
      include_examples 'does not allow metric image updates'
    end

    context 'when user is a guest' do
      before do
        project.add_guest(user)
      end

      include_examples 'does not allow metric image reads'
      include_examples 'does not allow metric image updates'
    end

    context 'when user is a developer' do
      before do
        project.add_developer(user)
      end

      include_examples 'allows metric image reads'
      include_examples 'allows metric image updates'
    end
  end
end