gitlab-org--gitlab-foss/spec/models/key_spec.rb

require 'spec_helper'

describe Key do
  include EmailHelpers

  describe "Associations" do
    it { is_expected.to belong_to(:user) }
  end

  describe "Validation" do
    it { is_expected.to validate_presence_of(:title) }
    it { is_expected.to validate_length_of(:title).is_at_most(255) }

    it { is_expected.to validate_presence_of(:key) }
    it { is_expected.to validate_length_of(:key).is_at_most(5000) }
    it { is_expected.to allow_value('ssh-foo').for(:key) }
    it { is_expected.to allow_value('ecdsa-foo').for(:key) }
    it { is_expected.not_to allow_value('foo-bar').for(:key) }
  end

  describe "Methods" do
    let(:user) { create(:user) }
    it { is_expected.to respond_to :projects }
    it { is_expected.to respond_to :publishable_key }

    describe "#publishable_keys" do
      it 'replaces SSH key comment with simple identifier of username + hostname' do
        expect(build(:key, user: user).publishable_key).to include("#{user.name} (#{Gitlab.config.gitlab.host})")
      end
    end

    describe "#update_last_used_at" do
      let(:key) { create(:key) }

      context 'when key was not updated during the last day' do
        before do
          allow_any_instance_of(Gitlab::ExclusiveLease).to receive(:try_obtain)
            .and_return('000000')
        end

        it 'enqueues a UseKeyWorker job' do
          expect(UseKeyWorker).to receive(:perform_async).with(key.id)
          key.update_last_used_at
        end
      end

      context 'when key was updated during the last day' do
        before do
          allow_any_instance_of(Gitlab::ExclusiveLease).to receive(:try_obtain)
            .and_return(false)
        end

        it 'does not enqueue a UseKeyWorker job' do
          expect(UseKeyWorker).not_to receive(:perform_async)
          key.update_last_used_at
        end
      end
    end
  end

  context "validation of uniqueness (based on fingerprint uniqueness)" do
    let(:user) { create(:user) }

    it "accepts the key once" do
      expect(build(:key, user: user)).to be_valid
    end

    it "does not accept the exact same key twice" do
      first_key = create(:key, user: user)

      expect(build(:key, user: user, key: first_key.key)).not_to be_valid
    end

    it "does not accept a duplicate key with a different comment" do
      first_key = create(:key, user: user)
      duplicate = build(:key, user: user, key: first_key.key)
      duplicate.key << ' extra comment'

      expect(duplicate).not_to be_valid
    end
  end

  context "validate it is a fingerprintable key" do
    it "accepts the fingerprintable key" do
      expect(build(:key)).to be_valid
    end

    it 'rejects an unfingerprintable key that contains a space' do
      key = build(:key)

      # Not always the middle, but close enough
      key.key = key.key[0..100] + ' ' + key.key[101..-1]

      expect(key).not_to be_valid
    end

    it 'rejects the unfingerprintable key (not a key)' do
      expect(build(:key, key: 'ssh-rsa an-invalid-key==')).not_to be_valid
    end

    it 'rejects the multiple line key' do
      key = build(:key)
      key.key.tr!(' ', "\n")
      expect(key).not_to be_valid
    end
  end

  context 'callbacks' do
    it 'adds new key to authorized_file' do
      key = build(:personal_key, id: 7)
      expect(GitlabShellWorker).to receive(:perform_async).with(:add_key, key.shell_id, key.key)
      key.save!
    end

    it 'removes key from authorized_file' do
      key = create(:personal_key)
      expect(GitlabShellWorker).to receive(:perform_async).with(:remove_key, key.shell_id, key.key)
      key.destroy
    end
  end

  describe '#key=' do
    let(:valid_key) do
      "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIEAiPWx6WM4lhHNedGfBpPJNPpZ7yKu+dnn1SJejgt4596k6YjzGGphH2TUxwKzxcKDKKezwkpfnxPkSMkuEspGRt/aZZ9wa++Oi7Qkr8prgHc4soW6NUlfDzpvZK2H5E7eQaSeP3SAwGmQKUFHCddNaP0L+hM7zhFNzjFvpaMgJw0= dummy@gitlab.com"
    end

    it 'strips white spaces' do
      expect(described_class.new(key: " #{valid_key} ").key).to eq(valid_key)
    end
  end

  describe 'notification' do
    let(:user) { create(:user) }

    it 'sends a notification' do
      perform_enqueued_jobs do
        create(:key, user: user)
      end

      should_email(user)
    end
  end
end
init commit 2011-10-08 17:36:38 -04:00			`require 'spec_helper'`

Remove superfluous lib: true, type: redis, service: true, models: true, services: true, no_db: true, api: true Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-07-10 10:24:02 -04:00			`describe Key do`
Now we need to include EmailHelpers for each test 2016-12-06 08:33:55 -05:00			`include EmailHelpers`

init commit 2011-10-08 17:36:38 -04:00			`describe "Associations" do`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`it { is_expected.to belong_to(:user) }`
init commit 2011-10-08 17:36:38 -04:00			`end`

			`describe "Validation" do`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`it { is_expected.to validate_presence_of(:title) }`
Use :maximum instead of :within for length validators with a 0..N range Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-12-02 07:54:57 -05:00			`it { is_expected.to validate_length_of(:title).is_at_most(255) }`

Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`it { is_expected.to validate_presence_of(:key) }`
Use :maximum instead of :within for length validators with a 0..N range Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-12-02 07:54:57 -05:00			`it { is_expected.to validate_length_of(:key).is_at_most(5000) }`
			`it { is_expected.to allow_value('ssh-foo').for(:key) }`
			`it { is_expected.to allow_value('ecdsa-foo').for(:key) }`
			`it { is_expected.not_to allow_value('foo-bar').for(:key) }`
init commit 2011-10-08 17:36:38 -04:00			`end`

clean-up code * Remove trailing whitespace * Converts hard-tabs into two-space soft-tabs * Remove consecutive blank lines 2011-10-26 09:46:25 -04:00			`describe "Methods" do`
Add simple identifier to public SSH keys 2016-08-02 01:56:23 -04:00			`let(:user) { create(:user) }`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`it { is_expected.to respond_to :projects }`
Only publish ssh key-type and key 2015-06-19 13:17:34 -04:00			`it { is_expected.to respond_to :publishable_key }`

			`describe "#publishable_keys" do`
Add simple identifier to public SSH keys 2016-08-02 01:56:23 -04:00			`it 'replaces SSH key comment with simple identifier of username + hostname' do`
Use `Gitlab.config.gitlab.host` over `'localhost'` This would fix long standing failures running tests on my development machine, which set `Gitlab.config.gitlab.host` to another host because it's not my local computer. Now I finally cannot withstand it and decided to fix them once and for all. 2016-11-18 07:17:10 -05:00			`expect(build(:key, user: user).publishable_key).to include("#{user.name} (#{Gitlab.config.gitlab.host})")`
Only publish ssh key-type and key 2015-06-19 13:17:34 -04:00			`end`
			`end`
Record and show last used date of SSH Keys Addresses: Issue #13810 1. Adds a last_used_at attribute to the Key table/model 2. Update a key's last_used_at whenever it gets used 3. Display how long ago an ssh key was last used 2016-12-21 09:59:54 -05:00
			`describe "#update_last_used_at" do`
Record used SSH keys only once per day Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job at most once per day for given key. 2017-01-20 05:42:46 -05:00			`let(:key) { create(:key) }`
Record and show last used date of SSH Keys Addresses: Issue #13810 1. Adds a last_used_at attribute to the Key table/model 2. Update a key's last_used_at whenever it gets used 3. Display how long ago an ssh key was last used 2016-12-21 09:59:54 -05:00
Record used SSH keys only once per day Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job at most once per day for given key. 2017-01-20 05:42:46 -05:00			`context 'when key was not updated during the last day' do`
			`before do`
Enable Style/DotPosition Rubocop :cop: 2017-06-21 09:48:12 -04:00			`allow_any_instance_of(Gitlab::ExclusiveLease).to receive(:try_obtain)`
			`.and_return('000000')`
Record used SSH keys only once per day Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job at most once per day for given key. 2017-01-20 05:42:46 -05:00			`end`

			`it 'enqueues a UseKeyWorker job' do`
			`expect(UseKeyWorker).to receive(:perform_async).with(key.id)`
			`key.update_last_used_at`
			`end`
			`end`

			`context 'when key was updated during the last day' do`
			`before do`
Enable Style/DotPosition Rubocop :cop: 2017-06-21 09:48:12 -04:00			`allow_any_instance_of(Gitlab::ExclusiveLease).to receive(:try_obtain)`
			`.and_return(false)`
Record used SSH keys only once per day Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job at most once per day for given key. 2017-01-20 05:42:46 -05:00			`end`

			`it 'does not enqueue a UseKeyWorker job' do`
			`expect(UseKeyWorker).not_to receive(:perform_async)`
			`key.update_last_used_at`
			`end`
Record and show last used date of SSH Keys Addresses: Issue #13810 1. Adds a last_used_at attribute to the Key table/model 2. Update a key's last_used_at whenever it gets used 3. Display how long ago an ssh key was last used 2016-12-21 09:59:54 -05:00			`end`
			`end`
init commit 2011-10-08 17:36:38 -04:00			`end`

Remove Duplicated keys add UNIQUE index to fingerprint 2016-06-16 06:53:32 -04:00			`context "validation of uniqueness (based on fingerprint uniqueness)" do`
Model specs for DeployKeys 2013-05-06 08:09:26 -04:00			`let(:user) { create(:user) }`
Merge branch 'deploy_keys_nonunique' of https://github.com/miks/gitlabhq into miks-deploy_keys_nonunique Added/fixed specs Update spec/factory to allow Factory#new without opts Conflicts: app/models/key.rb 2012-03-01 10:00:14 -05:00
Model specs for DeployKeys 2013-05-06 08:09:26 -04:00			`it "accepts the key once" do`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`expect(build(:key, user: user)).to be_valid`
Merge branch 'deploy_keys_nonunique' of https://github.com/miks/gitlabhq into miks-deploy_keys_nonunique Added/fixed specs Update spec/factory to allow Factory#new without opts Conflicts: app/models/key.rb 2012-03-01 10:00:14 -05:00			`end`

Validate fingerprint uniqueness 2013-07-17 09:16:34 -04:00			`it "does not accept the exact same key twice" do`
Lint our factories creation in addition to their build Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-05-31 09:43:19 -04:00			`first_key = create(:key, user: user)`

			`expect(build(:key, user: user, key: first_key.key)).not_to be_valid`
Merge branch 'deploy_keys_nonunique' of https://github.com/miks/gitlabhq into miks-deploy_keys_nonunique Added/fixed specs Update spec/factory to allow Factory#new without opts Conflicts: app/models/key.rb 2012-03-01 10:00:14 -05:00			`end`
Validate fingerprint uniqueness 2013-07-17 09:16:34 -04:00
			`it "does not accept a duplicate key with a different comment" do`
Lint our factories creation in addition to their build Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-05-31 09:43:19 -04:00			`first_key = create(:key, user: user)`
			`duplicate = build(:key, user: user, key: first_key.key)`
Validate fingerprint uniqueness 2013-07-17 09:16:34 -04:00			`duplicate.key << ' extra comment'`
Lint our factories creation in addition to their build Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-05-31 09:43:19 -04:00
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`expect(duplicate).not_to be_valid`
Validate fingerprint uniqueness 2013-07-17 09:16:34 -04:00			`end`
Merge branch 'deploy_keys_nonunique' of https://github.com/miks/gitlabhq into miks-deploy_keys_nonunique Added/fixed specs Update spec/factory to allow Factory#new without opts Conflicts: app/models/key.rb 2012-03-01 10:00:14 -05:00			`end`
Reject ssh keys that break gitolite. Failing test. Working check. 2012-09-21 12:22:43 -04:00
			`context "validate it is a fingerprintable key" do`
			`it "accepts the fingerprintable key" do`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 13:17:35 -05:00			`expect(build(:key)).to be_valid`
Reject ssh keys that break gitolite. Failing test. Working check. 2012-09-21 12:22:43 -04:00			`end`

Remove the invalid key factories They're only used once each, and they're easy to build in-place. 2015-04-09 17:16:01 -04:00			`it 'rejects an unfingerprintable key that contains a space' do`
			`key = build(:key)`

			`# Not always the middle, but close enough`
Add error message for SSH key linebreaks 2015-07-11 14:18:56 -04:00			`key.key = key.key[0..100] + ' ' + key.key[101..-1]`
Remove the invalid key factories They're only used once each, and they're easy to build in-place. 2015-04-09 17:16:01 -04:00
			`expect(key).not_to be_valid`
Reject ssh keys that break gitolite. Failing test. Working check. 2012-09-21 12:22:43 -04:00			`end`
Tests to validate that invalid keys are rejected 2013-02-15 04:31:05 -05:00
Remove the invalid key factories They're only used once each, and they're easy to build in-place. 2015-04-09 17:16:01 -04:00			`it 'rejects the unfingerprintable key (not a key)' do`
			`expect(build(:key, key: 'ssh-rsa an-invalid-key==')).not_to be_valid`
Tests to validate that invalid keys are rejected 2013-02-15 04:31:05 -05:00			`end`
Add error message for SSH key linebreaks 2015-07-11 14:18:56 -04:00
			`it 'rejects the multiple line key' do`
			`key = build(:key)`
Fixed Rubocop offenses 2015-12-14 21:53:52 -05:00			`key.key.tr!(' ', "\n")`
Add error message for SSH key linebreaks 2015-07-11 14:18:56 -04:00			`expect(key).not_to be_valid`
			`end`
Reject ssh keys that break gitolite. Failing test. Working check. 2012-09-21 12:22:43 -04:00			`end`
Remove KeysObserver Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-04-02 14:13:05 -04:00
			`context 'callbacks' do`
adds second batch of tests changed to active tense 2016-08-01 11:00:44 -04:00			`it 'adds new key to authorized_file' do`
Remove instance vars from key model tests 2016-11-15 14:27:49 -05:00			`key = build(:personal_key, id: 7)`
			`expect(GitlabShellWorker).to receive(:perform_async).with(:add_key, key.shell_id, key.key)`
			`key.save!`
Remove KeysObserver Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-04-02 14:13:05 -04:00			`end`

adds second batch of tests changed to active tense 2016-08-01 11:00:44 -04:00			`it 'removes key from authorized_file' do`
Remove instance vars from key model tests 2016-11-15 14:27:49 -05:00			`key = create(:personal_key)`
			`expect(GitlabShellWorker).to receive(:perform_async).with(:remove_key, key.shell_id, key.key)`
			`key.destroy`
Remove KeysObserver Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-04-02 14:13:05 -04:00			`end`
			`end`
Use setter for key instead AR callback ref: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/6763 2016-11-15 14:16:45 -05:00
			`describe '#key=' do`
			`let(:valid_key) do`
			`"ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIEAiPWx6WM4lhHNedGfBpPJNPpZ7yKu+dnn1SJejgt4596k6YjzGGphH2TUxwKzxcKDKKezwkpfnxPkSMkuEspGRt/aZZ9wa++Oi7Qkr8prgHc4soW6NUlfDzpvZK2H5E7eQaSeP3SAwGmQKUFHCddNaP0L+hM7zhFNzjFvpaMgJw0= dummy@gitlab.com"`
			`end`

			`it 'strips white spaces' do`
			`expect(described_class.new(key: " #{valid_key} ").key).to eq(valid_key)`
			`end`
			`end`
Add tests for key/deploy key notifications 2016-11-18 06:09:03 -05:00
			`describe 'notification' do`
			`let(:user) { create(:user) }`

			`it 'sends a notification' do`
			`perform_enqueued_jobs do`
			`create(:key, user: user)`
			`end`

			`should_email(user)`
			`end`
			`end`
init commit 2011-10-08 17:36:38 -04:00			`end`