gitlab-org--gitlab-foss/spec/features/admin/admin_settings_spec.rb

require 'spec_helper'

feature 'Admin updates settings' do
  include StubENV

  before do
    stub_env('IN_MEMORY_APPLICATION_SETTINGS', 'false')
    sign_in(create(:admin))
    visit admin_application_settings_path
  end

  scenario 'Change visibility settings' do
    page.within('.as-visibility-access') do
      choose "application_setting_default_project_visibility_20"
      click_button 'Save changes'
    end

    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Uncheck all restricted visibility levels' do
    page.within('.as-visibility-access') do
      find('#application_setting_visibility_level_0').set(false)
      find('#application_setting_visibility_level_10').set(false)
      find('#application_setting_visibility_level_20').set(false)
      click_button 'Save changes'
    end

    expect(page).to have_content "Application settings saved successfully"
    expect(find('#application_setting_visibility_level_0')).not_to be_checked
    expect(find('#application_setting_visibility_level_10')).not_to be_checked
    expect(find('#application_setting_visibility_level_20')).not_to be_checked
  end

  scenario 'Change Visibility and Access Controls' do
    page.within('.as-visibility-access') do
      uncheck 'Project export enabled'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.project_export_enabled).to be_falsey
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Account and Limit Settings' do
    page.within('.as-account-limit') do
      uncheck 'Gravatar enabled'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.gravatar_enabled).to be_falsey
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Sign-in restrictions' do
    page.within('.as-signin') do
      fill_in 'Home page URL', with: 'https://about.gitlab.com/'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.home_page_url).to eq "https://about.gitlab.com/"
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Help page' do
    page.within('.as-help-page') do
      fill_in 'Help page text', with: 'Example text'
      check 'Hide marketing-related entries from help'
      fill_in 'Support page URL', with: 'http://example.com/help'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.help_page_text).to eq "Example text"
    expect(Gitlab::CurrentSettings.help_page_hide_commercial_content).to be_truthy
    expect(Gitlab::CurrentSettings.help_page_support_url).to eq "http://example.com/help"
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Pages settings' do
    page.within('.as-pages') do
      fill_in 'Maximum size of pages (MB)', with: 15
      check 'Require users to prove ownership of custom domains'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.max_pages_size).to eq 15
    expect(Gitlab::CurrentSettings.pages_domain_verification_enabled?).to be_truthy
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change CI/CD settings' do
    page.within('.as-ci-cd') do
      check 'Enabled Auto DevOps (Beta) for projects by default'
      fill_in 'Auto devops domain', with: 'domain.com'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.auto_devops_enabled?).to be true
    expect(Gitlab::CurrentSettings.auto_devops_domain).to eq('domain.com')
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Influx settings' do
    page.within('.as-influx') do
      check 'Enable InfluxDB Metrics'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.metrics_enabled?).to be true
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Prometheus settings' do
    page.within('.as-prometheus') do
      check 'Enable Prometheus Metrics'
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.prometheus_metrics_enabled?).to be true
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Performance bar settings' do
    group = create(:group)

    page.within('.as-performance') do
      check 'Enable the Performance Bar'
      fill_in 'Allowed group', with: group.path
      click_on 'Save changes'
    end

    expect(page).to have_content "Application settings saved successfully"
    expect(find_field('Enable the Performance Bar')).to be_checked
    expect(find_field('Allowed group').value).to eq group.path

    page.within('.as-performance') do
      uncheck 'Enable the Performance Bar'
      click_on 'Save changes'
    end

    expect(page).to have_content 'Application settings saved successfully'
    expect(find_field('Enable the Performance Bar')).not_to be_checked
    expect(find_field('Allowed group').value).to be_nil
  end

  scenario 'Change Background jobs settings' do
    page.within('.as-background') do
      fill_in 'Throttling Factor', with: 1
      click_button 'Save changes'
    end

    expect(Gitlab::CurrentSettings.sidekiq_throttling_factor).to eq(1)
    expect(page).to have_content "Application settings saved successfully"
  end

  scenario 'Change Spam settings' do
    page.within('.as-spam') do
      check 'Enable reCAPTCHA'
      fill_in 'reCAPTCHA Site Key', with: 'key'
      fill_in 'reCAPTCHA Private Key', with: 'key'
      fill_in 'IPs per user', with: 15
      click_button 'Save changes'
    end

    expect(page).to have_content "Application settings saved successfully"
    expect(Gitlab::CurrentSettings.recaptcha_enabled).to be true
    expect(Gitlab::CurrentSettings.unique_ips_limit_per_user).to eq(15)
  end

  scenario 'Change Slack Notifications Service template settings' do
    first(:link, 'Service Templates').click
    click_link 'Slack notifications'
    fill_in 'Webhook', with: 'http://localhost'
    fill_in 'Username', with: 'test_user'
    fill_in 'service_push_channel', with: '#test_channel'
    page.check('Notify only broken pipelines')
    page.check('Notify only default branch')

    check_all_events
    click_on 'Save'

    expect(page).to have_content 'Application settings saved successfully'

    click_link 'Slack notifications'

    page.all('input[type=checkbox]').each do |checkbox|
      expect(checkbox).to be_checked
    end
    expect(find_field('Webhook').value).to eq 'http://localhost'
    expect(find_field('Username').value).to eq 'test_user'
    expect(find('#service_push_channel').value).to eq '#test_channel'
  end

  context 'sign-in restrictions', :js do
    it 'de-activates oauth sign-in source' do
      page.within('.as-signin') do
        find('input#application_setting_enabled_oauth_sign_in_sources_[value=gitlab]').send_keys(:return)

        expect(find('.btn', text: 'GitLab.com')).not_to have_css('.active')
      end
    end
  end

  scenario 'Change Keys settings' do
    page.within('.as-visibility-access') do
      select 'Are forbidden', from: 'RSA SSH keys'
      select 'Are allowed', from: 'DSA SSH keys'
      select 'Must be at least 384 bits', from: 'ECDSA SSH keys'
      select 'Are forbidden', from: 'ED25519 SSH keys'
      click_on 'Save changes'
    end

    forbidden = ApplicationSetting::FORBIDDEN_KEY_VALUE.to_s

    expect(page).to have_content 'Application settings saved successfully'
    expect(find_field('RSA SSH keys').value).to eq(forbidden)
    expect(find_field('DSA SSH keys').value).to eq('0')
    expect(find_field('ECDSA SSH keys').value).to eq('384')
    expect(find_field('ED25519 SSH keys').value).to eq(forbidden)
  end

  def check_all_events
    page.check('Active')
    page.check('Push')
    page.check('Tag push')
    page.check('Note')
    page.check('Issue')
    page.check('Merge request')
    page.check('Pipeline')
  end
end
Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00			`require 'spec_helper'`
Improve application settings and write tests 2015-01-08 17:53:35 +00:00
Remove superfluous type defs in specs Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-06-29 04:13:10 +00:00			`feature 'Admin updates settings' do`
Revert "Merge branch 'revert-9cac0317' into 'master' " This reverts commit c20934869f7dc8cfbdbafb6ecb7b1305452c9e8a, reversing changes made to 4b7ec44b91e0571d209c790d54947ba1756dac0e. 2017-01-22 00:11:19 +00:00			`include StubENV`

			`before do`
			`stub_env('IN_MEMORY_APPLICATION_SETTINGS', 'false')`
Change gitlab_sign_in to sign_in where possible 2017-06-21 23:44:10 +00:00			`sign_in(create(:admin))`
Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00			`visit admin_application_settings_path`
			`end`

Fix Error 500 when application settings are saved Due to a Rails bug, fetching the application settings from Redis may prevent the attribute methods from being loaded for the `ApplicationSetting` model. More details here: https://github.com/rails/rails/issues/27348 There was also a secondary problem introduced by overriding these association methods which caused all default visibility levels to be set to `nil`. Before, the previous implementation allowed the string "20" to be saved as an integer, while now a table lookup happens before that. We fix this by enforcing the integer value in the controller and default to PRIVATE. Closes #29674 2017-03-18 09:29:25 +00:00			`scenario 'Change visibility settings' do`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`page.within('.as-visibility-access') do`
			`choose "application_setting_default_project_visibility_20"`
			`click_button 'Save changes'`
			`end`
Fix Error 500 when application settings are saved Due to a Rails bug, fetching the application settings from Redis may prevent the attribute methods from being loaded for the `ApplicationSetting` model. More details here: https://github.com/rails/rails/issues/27348 There was also a secondary problem introduced by overriding these association methods which caused all default visibility levels to be set to `nil`. Before, the previous implementation allowed the string "20" to be saved as an integer, while now a table lookup happens before that. We fix this by enforcing the integer value in the controller and default to PRIVATE. Closes #29674 2017-03-18 09:29:25 +00:00
			`expect(page).to have_content "Application settings saved successfully"`
			`end`

Allow admin to disable all restricted visibility levels 2017-07-05 10:45:58 +00:00			`scenario 'Uncheck all restricted visibility levels' do`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`page.within('.as-visibility-access') do`
			`find('#application_setting_visibility_level_0').set(false)`
			`find('#application_setting_visibility_level_10').set(false)`
			`find('#application_setting_visibility_level_20').set(false)`
			`click_button 'Save changes'`
			`end`
Allow admin to disable all restricted visibility levels 2017-07-05 10:45:58 +00:00
			`expect(page).to have_content "Application settings saved successfully"`
			`expect(find('#application_setting_visibility_level_0')).not_to be_checked`
			`expect(find('#application_setting_visibility_level_10')).not_to be_checked`
			`expect(find('#application_setting_visibility_level_20')).not_to be_checked`
			`end`

Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`scenario 'Change Visibility and Access Controls' do`
			`page.within('.as-visibility-access') do`
			`uncheck 'Project export enabled'`
			`click_button 'Save changes'`
			`end`

			`expect(Gitlab::CurrentSettings.project_export_enabled).to be_falsey`
			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Account and Limit Settings' do`
			`page.within('.as-account-limit') do`
			`uncheck 'Gravatar enabled'`
			`click_button 'Save changes'`
			`end`
Improve application settings and write tests 2015-01-08 17:53:35 +00:00
use Gitlab::UserSettings directly as a singleton instead of including/extending it 2018-02-02 18:39:55 +00:00			`expect(Gitlab::CurrentSettings.gravatar_enabled).to be_falsey`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Sign-in restrictions' do`
			`page.within('.as-signin') do`
			`fill_in 'Home page URL', with: 'https://about.gitlab.com/'`
			`click_button 'Save changes'`
			`end`

use Gitlab::UserSettings directly as a singleton instead of including/extending it 2018-02-02 18:39:55 +00:00			`expect(Gitlab::CurrentSettings.home_page_url).to eq "https://about.gitlab.com/"`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Help page' do`
			`page.within('.as-help-page') do`
			`fill_in 'Help page text', with: 'Example text'`
			`check 'Hide marketing-related entries from help'`
			`fill_in 'Support page URL', with: 'http://example.com/help'`
			`click_button 'Save changes'`
			`end`

use Gitlab::UserSettings directly as a singleton instead of including/extending it 2018-02-02 18:39:55 +00:00			`expect(Gitlab::CurrentSettings.help_page_text).to eq "Example text"`
			`expect(Gitlab::CurrentSettings.help_page_hide_commercial_content).to be_truthy`
			`expect(Gitlab::CurrentSettings.help_page_support_url).to eq "http://example.com/help"`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Pages settings' do`
			`page.within('.as-pages') do`
			`fill_in 'Maximum size of pages (MB)', with: 15`
			`check 'Require users to prove ownership of custom domains'`
			`click_button 'Save changes'`
			`end`

			`expect(Gitlab::CurrentSettings.max_pages_size).to eq 15`
			`expect(Gitlab::CurrentSettings.pages_domain_verification_enabled?).to be_truthy`
Fix features syntax 2015-06-19 02:13:32 +00:00			`expect(page).to have_content "Application settings saved successfully"`
Improve application settings and write tests 2015-01-08 17:53:35 +00:00			`end`
Include missing events and fix save functionality in admin service template settings form Closes #1275 2015-03-23 12:51:38 +00:00
Move ci/cd, influx and prometheus app settings to expandable sections Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-27 14:12:36 +00:00			`scenario 'Change CI/CD settings' do`
			`page.within('.as-ci-cd') do`
			`check 'Enabled Auto DevOps (Beta) for projects by default'`
			`fill_in 'Auto devops domain', with: 'domain.com'`
			`click_button 'Save changes'`
			`end`
Expose auto_devops_domain in admin settings view 2018-01-22 18:31:03 +00:00
Use Gitlab::CurrentSettings instead of current_application_settings 2018-02-03 00:56:11 +00:00			`expect(Gitlab::CurrentSettings.auto_devops_enabled?).to be true`
			`expect(Gitlab::CurrentSettings.auto_devops_domain).to eq('domain.com')`
Expose auto_devops_domain in admin settings view 2018-01-22 18:31:03 +00:00			`expect(page).to have_content "Application settings saved successfully"`
			`end`

Move ci/cd, influx and prometheus app settings to expandable sections Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-27 14:12:36 +00:00			`scenario 'Change Influx settings' do`
			`page.within('.as-influx') do`
			`check 'Enable InfluxDB Metrics'`
			`click_button 'Save changes'`
			`end`

			`expect(Gitlab::CurrentSettings.metrics_enabled?).to be true`
			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Prometheus settings' do`
			`page.within('.as-prometheus') do`
			`check 'Enable Prometheus Metrics'`
			`click_button 'Save changes'`
			`end`

Fix admin settings spec Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-27 16:20:03 +00:00			`expect(Gitlab::CurrentSettings.prometheus_metrics_enabled?).to be true`
Move ci/cd, influx and prometheus app settings to expandable sections Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-27 14:12:36 +00:00			`expect(page).to have_content "Application settings saved successfully"`
			`end`

Move background jobs, spam and performance bar app settings to expandable sections Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-28 16:48:53 +00:00			`scenario 'Change Performance bar settings' do`
			`group = create(:group)`

			`page.within('.as-performance') do`
			`check 'Enable the Performance Bar'`
			`fill_in 'Allowed group', with: group.path`
			`click_on 'Save changes'`
			`end`

			`expect(page).to have_content "Application settings saved successfully"`
			`expect(find_field('Enable the Performance Bar')).to be_checked`
			`expect(find_field('Allowed group').value).to eq group.path`

			`page.within('.as-performance') do`
			`uncheck 'Enable the Performance Bar'`
			`click_on 'Save changes'`
			`end`

			`expect(page).to have_content 'Application settings saved successfully'`
			`expect(find_field('Enable the Performance Bar')).not_to be_checked`
			`expect(find_field('Allowed group').value).to be_nil`
			`end`

			`scenario 'Change Background jobs settings' do`
			`page.within('.as-background') do`
			`fill_in 'Throttling Factor', with: 1`
			`click_button 'Save changes'`
			`end`

			`expect(Gitlab::CurrentSettings.sidekiq_throttling_factor).to eq(1)`
			`expect(page).to have_content "Application settings saved successfully"`
			`end`

			`scenario 'Change Spam settings' do`
			`page.within('.as-spam') do`
			`check 'Enable reCAPTCHA'`
			`fill_in 'reCAPTCHA Site Key', with: 'key'`
			`fill_in 'reCAPTCHA Private Key', with: 'key'`
			`fill_in 'IPs per user', with: 15`
			`click_button 'Save changes'`
			`end`

			`expect(page).to have_content "Application settings saved successfully"`
			`expect(Gitlab::CurrentSettings.recaptcha_enabled).to be true`
			`expect(Gitlab::CurrentSettings.unique_ips_limit_per_user).to eq(15)`
			`end`

Fix spec failures 2016-12-18 22:32:53 +00:00			`scenario 'Change Slack Notifications Service template settings' do`
Add top level items to fly-out navigation This only appears when in the collapsed sidebar. If the sidebar is expanded, then these items are hidden & no fly-out navigation is displayed. Closes #36294 2017-09-01 07:41:31 +00:00			`first(:link, 'Service Templates').click`
Fix spec failures 2016-12-18 22:32:53 +00:00			`click_link 'Slack notifications'`
Fix bug where Slack service channel was not saved in admin template settings. Consolidate allowed parameters in one place to avoid these kinds of bugs in the future. Closes https://github.com/gitlabhq/gitlabhq/issues/9181 2015-04-24 15:33:24 +00:00			`fill_in 'Webhook', with: 'http://localhost'`
			`fill_in 'Username', with: 'test_user'`
Allow slack service to send messages on different channels 2016-07-06 20:52:00 +00:00			`fill_in 'service_push_channel', with: '#test_channel'`
All CI offline migrations 2017-03-17 23:06:11 +00:00			`page.check('Notify only broken pipelines')`
Improve readability and add test 2017-03-23 07:16:48 +00:00			`page.check('Notify only default branch')`
Fix bug where Slack service channel was not saved in admin template settings. Consolidate allowed parameters in one place to avoid these kinds of bugs in the future. Closes https://github.com/gitlabhq/gitlabhq/issues/9181 2015-04-24 15:33:24 +00:00
Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00			`check_all_events`
			`click_on 'Save'`

Update all `should`-style syntax to `expect` in features 2015-06-12 04:44:13 +00:00			`expect(page).to have_content 'Application settings saved successfully'`
Include missing events and fix save functionality in admin service template settings form Closes #1275 2015-03-23 12:51:38 +00:00
Fix failures 2016-12-18 22:34:40 +00:00			`click_link 'Slack notifications'`
Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00
Call `page.all` instead of `all` in feature steps There's a naming conflict between Capybara and rspec-matchers which both define the `all` method. See https://github.com/jnicklas/capybara/issues/1396 2015-06-01 21:43:59 +00:00			`page.all('input[type=checkbox]').each do \|checkbox\|`
Update all `should`-style syntax to `expect` in features 2015-06-12 04:44:13 +00:00			`expect(checkbox).to be_checked`
Include missing events and fix save functionality in admin service template settings form Closes #1275 2015-03-23 12:51:38 +00:00			`end`
Update all `should`-style syntax to `expect` in features 2015-06-12 04:44:13 +00:00			`expect(find_field('Webhook').value).to eq 'http://localhost'`
			`expect(find_field('Username').value).to eq 'test_user'`
Allow slack service to send messages on different channels 2016-07-06 20:52:00 +00:00			`expect(find('#service_push_channel').value).to eq '#test_channel'`
Fix bug where Slack service channel was not saved in admin template settings. Consolidate allowed parameters in one place to avoid these kinds of bugs in the future. Closes https://github.com/gitlabhq/gitlabhq/issues/9181 2015-04-24 15:33:24 +00:00			`end`
Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00
Fixed sign-in restrictions buttons not toggling active state Closes #35882 2017-08-03 09:20:02 +00:00			`context 'sign-in restrictions', :js do`
			`it 'de-activates oauth sign-in source' do`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`page.within('.as-signin') do`
			`find('input#application_setting_enabled_oauth_sign_in_sources_[value=gitlab]').send_keys(:return)`
Enable Layout/TrailingWhitespace cop and auto-correct offenses 2017-08-15 17:44:37 +00:00
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`expect(find('.btn', text: 'GitLab.com')).not_to have_css('.active')`
			`end`
Fixed sign-in restrictions buttons not toggling active state Closes #35882 2017-08-03 09:20:02 +00:00			`end`
			`end`

Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`scenario 'Change Keys settings' do`
Move UI of several application settings to expandable block To make design consistent with project settings Next admin area application settings are afected by this commit: * Visibility and access control * Account and limit settings * Sign in * Sign up * Help page * Pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2018-03-22 17:50:46 +00:00			`page.within('.as-visibility-access') do`
			`select 'Are forbidden', from: 'RSA SSH keys'`
			`select 'Are allowed', from: 'DSA SSH keys'`
			`select 'Must be at least 384 bits', from: 'ECDSA SSH keys'`
			`select 'Are forbidden', from: 'ED25519 SSH keys'`
			`click_on 'Save changes'`
			`end`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00
Rework the permissions model for SSH key restrictions `allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them. 2017-08-25 13:08:48 +00:00			`forbidden = ApplicationSetting::FORBIDDEN_KEY_VALUE.to_s`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00
Rework the permissions model for SSH key restrictions `allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them. 2017-08-25 13:08:48 +00:00			`expect(page).to have_content 'Application settings saved successfully'`
			`expect(find_field('RSA SSH keys').value).to eq(forbidden)`
			`expect(find_field('DSA SSH keys').value).to eq('0')`
			`expect(find_field('ECDSA SSH keys').value).to eq('384')`
			`expect(find_field('ED25519 SSH keys').value).to eq(forbidden)`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`end`

Move admin settings spinach feature to rspec 2016-12-13 10:17:32 +00:00			`def check_all_events`
			`page.check('Active')`
			`page.check('Push')`
			`page.check('Tag push')`
			`page.check('Note')`
			`page.check('Issue')`
			`page.check('Merge request')`
			`page.check('Pipeline')`
			`end`
Improve application settings and write tests 2015-01-08 17:53:35 +00:00			`end`