97 lines
3.1 KiB
Ruby
97 lines
3.1 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'spec_helper'
|
|
|
|
RSpec.describe 'admin/sessions/new.html.haml' do
|
|
let(:user) { create(:admin) }
|
|
|
|
before do
|
|
disable_all_signin_methods
|
|
|
|
allow(view).to receive(:current_user).and_return(user)
|
|
end
|
|
|
|
context 'internal admin user' do
|
|
before do
|
|
allow(view).to receive(:allow_admin_mode_password_authentication_for_web?).and_return(true)
|
|
end
|
|
|
|
it 'shows enter password form' do
|
|
render
|
|
|
|
expect(rendered).to have_selector('[data-testid="sign-in-tab"]')
|
|
expect(rendered).to have_css('#login-pane.active')
|
|
expect(rendered).to have_selector('[data-testid="password-field"]')
|
|
end
|
|
|
|
it 'warns authentication not possible if password not set' do
|
|
allow(view).to receive(:allow_admin_mode_password_authentication_for_web?).and_return(false)
|
|
|
|
render
|
|
|
|
expect(rendered).not_to have_css('#login-pane')
|
|
expect(rendered).to have_content _('No authentication methods configured.')
|
|
end
|
|
end
|
|
|
|
context 'omniauth authentication enabled' do
|
|
before do
|
|
allow(view).to receive(:omniauth_enabled?).and_return(true)
|
|
allow(view).to receive(:button_based_providers_enabled?).and_return(true)
|
|
end
|
|
|
|
it 'shows omniauth form' do
|
|
render
|
|
|
|
expect(rendered).to have_css('.omniauth-container')
|
|
expect(rendered).to have_content _('Sign in with')
|
|
expect(rendered).not_to have_content _('No authentication methods configured.')
|
|
end
|
|
end
|
|
|
|
context 'ldap authentication' do
|
|
let(:user) { create(:omniauth_user, :admin, extern_uid: 'my-uid', provider: 'ldapmain') }
|
|
let(:server) { { provider_name: 'ldapmain', label: 'LDAP' }.with_indifferent_access }
|
|
|
|
before do
|
|
enable_ldap
|
|
end
|
|
|
|
it 'is shown when enabled' do
|
|
render
|
|
|
|
expect(rendered).to have_selector('[data-testid="ldap-tab"]')
|
|
expect(rendered).to have_css('.login-box#ldapmain')
|
|
expect(rendered).to have_field('LDAP Username')
|
|
expect(rendered).not_to have_content('No authentication methods configured')
|
|
end
|
|
|
|
it 'is not shown when LDAP sign in is disabled' do
|
|
disable_ldap_sign_in
|
|
|
|
render
|
|
|
|
expect(rendered).not_to have_selector('[data-testid="ldap-tab"]')
|
|
expect(rendered).not_to have_field('LDAP Username')
|
|
expect(rendered).to have_content('No authentication methods configured')
|
|
end
|
|
|
|
def enable_ldap
|
|
allow(view).to receive(:ldap_servers).and_return([server])
|
|
allow(view).to receive(:form_based_providers).and_return([:ldapmain])
|
|
allow(view).to receive(:omniauth_callback_path).with(:user, 'ldapmain').and_return('/ldapmain')
|
|
allow(view).to receive(:ldap_sign_in_enabled?).and_return(true)
|
|
end
|
|
|
|
def disable_ldap_sign_in
|
|
allow(view).to receive(:ldap_sign_in_enabled?).and_return(false)
|
|
allow(view).to receive(:ldap_servers).and_return([])
|
|
end
|
|
end
|
|
|
|
def disable_all_signin_methods
|
|
allow(view).to receive(:password_authentication_enabled_for_web?).and_return(false)
|
|
allow(view).to receive(:omniauth_enabled?).and_return(false)
|
|
allow(view).to receive(:ldap_sign_in_enabled?).and_return(false)
|
|
end
|
|
end
|