gitlab-org--gitlab-foss/spec/controllers/passwords_controller_spec.rb

require 'spec_helper'

describe PasswordsController do
  describe '#check_password_authentication_available' do
    before do
      @request.env["devise.mapping"] = Devise.mappings[:user]
    end

    context 'when password authentication is disabled for the web interface and Git' do
      it 'prevents a password reset' do
        stub_application_setting(password_authentication_enabled_for_web: false)
        stub_application_setting(password_authentication_enabled_for_git: false)

        post :create

        expect(response).to have_gitlab_http_status(302)
        expect(flash[:alert]).to eq 'Password authentication is unavailable.'
      end
    end

    context 'when reset email belongs to an ldap user' do
      let(:user) { create(:omniauth_user, provider: 'ldapmain', email: 'ldapuser@gitlab.com') }

      it 'prevents a password reset' do
        post :create, user: { email: user.email }

        expect(flash[:alert]).to eq 'Password authentication is unavailable.'
      end
    end
  end
end
Fixes needed when GitLab sign-in is not enabled When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController 2017-06-27 18:02:09 +00:00			`require 'spec_helper'`

			`describe PasswordsController do`
Allow password authentication to be disabled entirely 2017-11-23 13:16:14 +00:00			`describe '#check_password_authentication_available' do`
Fixes needed when GitLab sign-in is not enabled When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController 2017-06-27 18:02:09 +00:00			`before do`
			`@request.env["devise.mapping"] = Devise.mappings[:user]`
			`end`

Allow password authentication to be disabled entirely 2017-11-23 13:16:14 +00:00			`context 'when password authentication is disabled for the web interface and Git' do`
			`it 'prevents a password reset' do`
			`stub_application_setting(password_authentication_enabled_for_web: false)`
			`stub_application_setting(password_authentication_enabled_for_git: false)`
Fixes needed when GitLab sign-in is not enabled When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController 2017-06-27 18:02:09 +00:00
			`post :create`

Refactor `have_http_status` into `have_gitlab_http_status` in the specs 2017-10-19 18:28:19 +00:00			`expect(response).to have_gitlab_http_status(302)`
Allow password authentication to be disabled entirely 2017-11-23 13:16:14 +00:00			`expect(flash[:alert]).to eq 'Password authentication is unavailable.'`
Fixes needed when GitLab sign-in is not enabled When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController 2017-06-27 18:02:09 +00:00			`end`
			`end`

			`context 'when reset email belongs to an ldap user' do`
			`let(:user) { create(:omniauth_user, provider: 'ldapmain', email: 'ldapuser@gitlab.com') }`

			`it 'prevents a password reset' do`
			`post :create, user: { email: user.email }`

Allow password authentication to be disabled entirely 2017-11-23 13:16:14 +00:00			`expect(flash[:alert]).to eq 'Password authentication is unavailable.'`
Fixes needed when GitLab sign-in is not enabled When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController 2017-06-27 18:02:09 +00:00			`end`
			`end`
			`end`
			`end`