gitlab-org--gitlab-foss/spec/features/protected_branches_spec.rb

require 'spec_helper'

feature 'Protected Branches', :js do
  let(:user) { create(:user) }
  let(:admin) { create(:admin) }
  let(:project) { create(:project, :repository) }

  context 'logged in as developer' do
    before do
      project.add_developer(user)
      sign_in(user)
    end

    describe 'Delete protected branch' do
      before do
        create(:protected_branch, project: project, name: 'fix')
        expect(ProtectedBranch.count).to eq(1)
      end

      it 'does not allow developer to removes protected branch' do
        visit project_branches_path(project)

        fill_in 'branch-search', with: 'fix'
        find('#branch-search').native.send_keys(:enter)

        expect(page).to have_css('.btn-remove.disabled')
      end
    end
  end

  context 'logged in as master' do
    before do
      project.add_master(user)
      sign_in(user)
    end

    describe 'Delete protected branch' do
      before do
        create(:protected_branch, project: project, name: 'fix')
        expect(ProtectedBranch.count).to eq(1)
      end

      it 'removes branch after modal confirmation' do
        visit project_branches_path(project)

        fill_in 'branch-search', with: 'fix'
        find('#branch-search').native.send_keys(:enter)

        expect(page).to have_content('fix')
        expect(find('.all-branches')).to have_selector('li', count: 1)
        page.find('[data-target="#modal-delete-branch"]').click

        expect(page).to have_css('.js-delete-branch[disabled]')
        fill_in 'delete_branch_input', with: 'fix'
        click_link 'Delete protected branch'

        fill_in 'branch-search', with: 'fix'
        find('#branch-search').native.send_keys(:enter)

        expect(page).to have_content('No branches to show')
      end
    end

    describe "Saved defaults" do
      it "keeps the allowed to merge and push dropdowns defaults based on the previous selection" do
        visit project_protected_branches_path(project)
        form = '.js-new-protected-branch'

        within form do
          find(".js-allowed-to-merge").click
          click_link 'No one'
          find(".js-allowed-to-push").click
          click_link 'Developers + Masters'
        end

        visit project_protected_branches_path(project)

        within form do
          page.within(".js-allowed-to-merge") do
            expect(page.find(".dropdown-toggle-text")).to have_content("No one")
          end
          page.within(".js-allowed-to-push") do
            expect(page.find(".dropdown-toggle-text")).to have_content("Developers + Masters")
          end
        end
      end
    end
  end

  context 'logged in as admin' do
    before do
      sign_in(admin)
    end

    describe "explicit protected branches" do
      it "allows creating explicit protected branches" do
        visit project_protected_branches_path(project)
        set_protected_branch_name('some-branch')
        click_on "Protect"

        within(".protected-branches-list") { expect(page).to have_content('some-branch') }
        expect(ProtectedBranch.count).to eq(1)
        expect(ProtectedBranch.last.name).to eq('some-branch')
      end

      it "displays the last commit on the matching branch if it exists" do
        commit = create(:commit, project: project)
        project.repository.add_branch(admin, 'some-branch', commit.id)

        visit project_protected_branches_path(project)
        set_protected_branch_name('some-branch')
        click_on "Protect"

        within(".protected-branches-list") { expect(page).to have_content(commit.id[0..7]) }
      end

      it "displays an error message if the named branch does not exist" do
        visit project_protected_branches_path(project)
        set_protected_branch_name('some-branch')
        click_on "Protect"

        within(".protected-branches-list") { expect(page).to have_content('branch was removed') }
      end
    end

    describe "wildcard protected branches" do
      it "allows creating protected branches with a wildcard" do
        visit project_protected_branches_path(project)
        set_protected_branch_name('*-stable')
        click_on "Protect"

        within(".protected-branches-list") { expect(page).to have_content('*-stable') }
        expect(ProtectedBranch.count).to eq(1)
        expect(ProtectedBranch.last.name).to eq('*-stable')
      end

      it "displays the number of matching branches" do
        project.repository.add_branch(admin, 'production-stable', 'master')
        project.repository.add_branch(admin, 'staging-stable', 'master')

        visit project_protected_branches_path(project)
        set_protected_branch_name('*-stable')
        click_on "Protect"

        within(".protected-branches-list") { expect(page).to have_content("2 matching branches") }
      end

      it "displays all the branches matching the wildcard" do
        project.repository.add_branch(admin, 'production-stable', 'master')
        project.repository.add_branch(admin, 'staging-stable', 'master')
        project.repository.add_branch(admin, 'development', 'master')

        visit project_protected_branches_path(project)
        set_protected_branch_name('*-stable')
        click_on "Protect"

        visit project_protected_branches_path(project)
        click_on "2 matching branches"

        within(".protected-branches-list") do
          expect(page).to have_content("production-stable")
          expect(page).to have_content("staging-stable")
          expect(page).not_to have_content("development")
        end
      end
    end

    describe "access control" do
      include_examples "protected branches > access control > CE"
    end
  end

  def set_protected_branch_name(branch_name)
    find(".js-protected-branch-select").click
    find(".dropdown-input-field").set(branch_name)
    click_on("Create wildcard #{branch_name}")
  end
end
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`require 'spec_helper'`

Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`feature 'Protected Branches', :js do`
			`let(:user) { create(:user) }`
			`let(:admin) { create(:admin) }`
Use `:empty_project` where possible in top-level feature specs 2017-03-28 21:13:16 +00:00			`let(:project) { create(:project, :repository) }`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`context 'logged in as developer' do`
			`before do`
			`project.add_developer(user)`
			`sign_in(user)`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`describe 'Delete protected branch' do`
			`before do`
			`create(:protected_branch, project: project, name: 'fix')`
			`expect(ProtectedBranch.count).to eq(1)`
			`end`

			`it 'does not allow developer to removes protected branch' do`
			`visit project_branches_path(project)`

			`fill_in 'branch-search', with: 'fix'`
			`find('#branch-search').native.send_keys(:enter)`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`expect(page).to have_css('.btn-remove.disabled')`
			`end`
			`end`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`context 'logged in as master' do`
			`before do`
			`project.add_master(user)`
			`sign_in(user)`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`

Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`describe 'Delete protected branch' do`
			`before do`
			`create(:protected_branch, project: project, name: 'fix')`
			`expect(ProtectedBranch.count).to eq(1)`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`it 'removes branch after modal confirmation' do`
			`visit project_branches_path(project)`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`fill_in 'branch-search', with: 'fix'`
			`find('#branch-search').native.send_keys(:enter)`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`expect(page).to have_content('fix')`
			`expect(find('.all-branches')).to have_selector('li', count: 1)`
Fix trigger elements and element is not clickable at this position 2017-10-11 21:54:05 +00:00			`page.find('[data-target="#modal-delete-branch"]').click`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`expect(page).to have_css('.js-delete-branch[disabled]')`
			`fill_in 'delete_branch_input', with: 'fix'`
			`click_link 'Delete protected branch'`

			`fill_in 'branch-search', with: 'fix'`
			`find('#branch-search').native.send_keys(:enter)`

			`expect(page).to have_content('No branches to show')`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`
fix protected_branch spec describe block 2017-10-05 21:41:57 +00:00
			`describe "Saved defaults" do`
			`it "keeps the allowed to merge and push dropdowns defaults based on the previous selection" do`
			`visit project_protected_branches_path(project)`
backport protected_branches_spec improvements from EE 2017-10-06 22:04:45 +00:00			`form = '.js-new-protected-branch'`

			`within form do`
Fix trigger elements and element is not clickable at this position 2017-10-11 21:54:05 +00:00			`find(".js-allowed-to-merge").click`
backport protected_branches_spec improvements from EE 2017-10-06 22:04:45 +00:00			`click_link 'No one'`
Fix trigger elements and element is not clickable at this position 2017-10-11 21:54:05 +00:00			`find(".js-allowed-to-push").click`
backport protected_branches_spec improvements from EE 2017-10-06 22:04:45 +00:00			`click_link 'Developers + Masters'`
fix protected_branch spec describe block 2017-10-05 21:41:57 +00:00			`end`
backport protected_branches_spec improvements from EE 2017-10-06 22:04:45 +00:00
			`visit project_protected_branches_path(project)`

			`within form do`
			`page.within(".js-allowed-to-merge") do`
			`expect(page.find(".dropdown-toggle-text")).to have_content("No one")`
			`end`
			`page.within(".js-allowed-to-push") do`
			`expect(page.find(".dropdown-toggle-text")).to have_content("Developers + Masters")`
			`end`
fix protected_branch spec describe block 2017-10-05 21:41:57 +00:00			`end`
			`end`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`

Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`context 'logged in as admin' do`
			`before do`
			`sign_in(admin)`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`

Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`describe "explicit protected branches" do`
			`it "allows creating explicit protected branches" do`
			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('some-branch')`
			`click_on "Protect"`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`within(".protected-branches-list") { expect(page).to have_content('some-branch') }`
			`expect(ProtectedBranch.count).to eq(1)`
			`expect(ProtectedBranch.last.name).to eq('some-branch')`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`it "displays the last commit on the matching branch if it exists" do`
			`commit = create(:commit, project: project)`
			`project.repository.add_branch(admin, 'some-branch', commit.id)`

			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('some-branch')`
			`click_on "Protect"`

			`within(".protected-branches-list") { expect(page).to have_content(commit.id[0..7]) }`
			`end`

			`it "displays an error message if the named branch does not exist" do`
			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('some-branch')`
			`click_on "Protect"`

			`within(".protected-branches-list") { expect(page).to have_content('branch was removed') }`
			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`

Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`describe "wildcard protected branches" do`
			`it "allows creating protected branches with a wildcard" do`
			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('*-stable')`
			`click_on "Protect"`

			`within(".protected-branches-list") { expect(page).to have_content('*-stable') }`
			`expect(ProtectedBranch.count).to eq(1)`
			`expect(ProtectedBranch.last.name).to eq('*-stable')`
			`end`
Backport changes from gitlab-org/gitlab-ee!581 to CE. !581 has a lot of changes that would cause merge conflicts if not properly backported to CE. This commit/MR serves as a better foundation for gitlab-org/gitlab-ee!581. = Changes = 1. Move from `has_one {merge,push}_access_level` to `has_many`, with the `length` of the association limited to `1`. This is _effectively_ a `has_one` association, but should cause less conflicts with EE, which is set to `has_many`. This has a number of related changes in the views, specs, and factories. 2. Make `gon` variable loading more consistent (with EE!581) in the `ProtectedBranchesController`. Also use `::` to prefix the `ProtectedBranches` services, because this is required in EE. 3. Extract a `ProtectedBranchAccess` concern from the two access level models. This concern only has a single `humanize` method here, but will have more methods in EE. 4. Add `form_errors` to the protected branches creation form. This is not strictly required for EE compatibility, but was an oversight nonetheless. 2016-08-16 05:09:13 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`it "displays the number of matching branches" do`
			`project.repository.add_branch(admin, 'production-stable', 'master')`
			`project.repository.add_branch(admin, 'staging-stable', 'master')`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('*-stable')`
			`click_on "Protect"`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`within(".protected-branches-list") { expect(page).to have_content("2 matching branches") }`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00
			`it "displays all the branches matching the wildcard" do`
			`project.repository.add_branch(admin, 'production-stable', 'master')`
			`project.repository.add_branch(admin, 'staging-stable', 'master')`
			`project.repository.add_branch(admin, 'development', 'master')`

			`visit project_protected_branches_path(project)`
			`set_protected_branch_name('*-stable')`
			`click_on "Protect"`

			`visit project_protected_branches_path(project)`
			`click_on "2 matching branches"`

			`within(".protected-branches-list") do`
			`expect(page).to have_content("production-stable")`
			`expect(page).to have_content("staging-stable")`
			`expect(page).not_to have_content("development")`
			`end`
			`end`
			`end`

			`describe "access control" do`
			`include_examples "protected branches > access control > CE"`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`
			`end`
Update protected branches spec to work with the `select`s. 1. Get the existing spec passing. 2. Add specs for all the access control options, both while creating and updating protected branches. 3. Show a flash notice when updating protected branches, primarily so the spec knows when the update is done. 2016-07-08 08:48:50 +00:00
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`def set_protected_branch_name(branch_name)`
Fix trigger elements and element is not clickable at this position 2017-10-11 21:54:05 +00:00			`find(".js-protected-branch-select").click`
Fix the default branches sorting to actually be 'Last updated' Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-09-15 11:25:12 +00:00			`find(".dropdown-input-field").set(branch_name)`
			`click_on("Create wildcard #{branch_name}")`
Update protected branches spec to work with the `select`s. 1. Get the existing spec passing. 2. Add specs for all the access control options, both while creating and updating protected branches. 3. Show a flash notice when updating protected branches, primarily so the spec knows when the update is done. 2016-07-08 08:48:50 +00:00			`end`
Add a feature spec for protected branch creation. 1. Doesn't seem like there's an easy way to do this for the actual branch protection, since we'd have to test an actual `git push`. 2. Testing branch creation the web UI is also not straightforward, since the factory repo doesn't have any hooks, and so access checks at the `gitlab-shell` level aren't run. 2016-06-17 08:49:02 +00:00			`end`