gitlab-org--gitlab-foss/spec/requests/api/internal_spec.rb

require 'spec_helper'

describe API::API do
  include ApiHelpers
  before(:each) { ActiveRecord::Base.observers.enable(:user_observer) }
  after(:each) { ActiveRecord::Base.observers.disable(:user_observer) }

  let(:user) { create(:user) }
  let(:key) { create(:key, user: user) }
  let(:project) { create(:project) }

  describe "GET /internal/check", no_db: true do
    it do
      get api("/internal/check")

      response.status.should == 200
      json_response['api_version'].should == API::API.version
    end
  end

  describe "GET /internal/discover" do
    it do
      get(api("/internal/discover"), key_id: key.id)

      response.status.should == 200

      json_response['name'].should == user.name
    end
  end

  describe "GET /internal/allowed" do
    context "access granted" do
      before do
        project.team << [user, :developer]
      end

      context "git pull" do
        it do
          pull(key, project)

          response.status.should == 200
          response.body.should == 'true'
        end
      end

      context "git push" do
        it do
          push(key, project)

          response.status.should == 200
          response.body.should == 'true'
        end
      end
    end

    context "access denied" do
      before do
        project.team << [user, :guest]
      end

      context "git pull" do
        it do
          pull(key, project)

          response.status.should == 200
          response.body.should == 'false'
        end
      end

      context "git push" do
        it do
          push(key, project)

          response.status.should == 200
          response.body.should == 'false'
        end
      end
    end

    context "blocked user" do
      let(:personal_project) { create(:project, namespace: user.namespace) }

      before do
        user.block
      end

      context "git pull" do
        it do
          pull(key, personal_project)

          response.status.should == 200
          response.body.should == 'false'
        end
      end

      context "git push" do
        it do
          push(key, personal_project)

          response.status.should == 200
          response.body.should == 'false'
        end
      end
    end

    context "deploy key" do
      let(:key) { create(:deploy_key) }

      context "added to project" do
        before do
          key.projects << project
        end

        it do
          archive(key, project)

          response.status.should == 200
          response.body.should == 'true'
        end
      end

      context "not added to project" do
        it do
          archive(key, project)

          response.status.should == 200
          response.body.should == 'false'
        end
      end
    end
  end

  def pull(key, project)
    get(
      api("/internal/allowed"),
      ref: 'master',
      key_id: key.id,
      project: project.path_with_namespace,
      action: 'git-upload-pack'
    )
  end

  def push(key, project)
    get(
      api("/internal/allowed"),
      ref: 'master',
      key_id: key.id,
      project: project.path_with_namespace,
      action: 'git-receive-pack'
    )
  end

  def archive(key, project)
    get(
      api("/internal/allowed"),
      ref: 'master',
      key_id: key.id,
      project: project.path_with_namespace,
      action: 'git-upload-archive'
    )
  end
end
specs for api/internal 2013-02-26 15:53:59 -05:00			`require 'spec_helper'`

Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 08:33:31 -04:00			`describe API::API do`
specs for api/internal 2013-02-26 15:53:59 -05:00			`include ApiHelpers`
Drop support of root namespace in model 2013-09-17 09:12:10 -04:00			`before(:each) { ActiveRecord::Base.observers.enable(:user_observer) }`
			`after(:each) { ActiveRecord::Base.observers.disable(:user_observer) }`
specs for api/internal 2013-02-26 15:53:59 -05:00
			`let(:user) { create(:user) }`
			`let(:key) { create(:key, user: user) }`
			`let(:project) { create(:project) }`

			`describe "GET /internal/check", no_db: true do`
			`it do`
			`get api("/internal/check")`

			`response.status.should == 200`
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 08:33:31 -04:00			`json_response['api_version'].should == API::API.version`
specs for api/internal 2013-02-26 15:53:59 -05:00			`end`
			`end`

			`describe "GET /internal/discover" do`
			`it do`
			`get(api("/internal/discover"), key_id: key.id)`

			`response.status.should == 200`

fix api internal test 2013-03-11 09:47:44 -04:00			`json_response['name'].should == user.name`
specs for api/internal 2013-02-26 15:53:59 -05:00			`end`
			`end`

			`describe "GET /internal/allowed" do`
			`context "access granted" do`
			`before do`
			`project.team << [user, :developer]`
			`end`

			`context "git pull" do`
			`it do`
block user should not be able to push 2013-03-07 07:18:30 -05:00			`pull(key, project)`
specs for api/internal 2013-02-26 15:53:59 -05:00
			`response.status.should == 200`
			`response.body.should == 'true'`
			`end`
			`end`

			`context "git push" do`
			`it do`
block user should not be able to push 2013-03-07 07:18:30 -05:00			`push(key, project)`
specs for api/internal 2013-02-26 15:53:59 -05:00
			`response.status.should == 200`
			`response.body.should == 'true'`
			`end`
			`end`
			`end`

			`context "access denied" do`
			`before do`
			`project.team << [user, :guest]`
			`end`

			`context "git pull" do`
			`it do`
block user should not be able to push 2013-03-07 07:18:30 -05:00			`pull(key, project)`
specs for api/internal 2013-02-26 15:53:59 -05:00
			`response.status.should == 200`
			`response.body.should == 'false'`
			`end`
			`end`

			`context "git push" do`
			`it do`
block user should not be able to push 2013-03-07 07:18:30 -05:00			`push(key, project)`
specs for api/internal 2013-02-26 15:53:59 -05:00
			`response.status.should == 200`
			`response.body.should == 'false'`
			`end`
			`end`
			`end`

block user should not be able to push 2013-03-07 07:18:30 -05:00			`context "blocked user" do`
			`let(:personal_project) { create(:project, namespace: user.namespace) }`

			`before do`
			`user.block`
			`end`

			`context "git pull" do`
			`it do`
			`pull(key, personal_project)`

			`response.status.should == 200`
			`response.body.should == 'false'`
			`end`
			`end`

			`context "git push" do`
			`it do`
			`push(key, personal_project)`

			`response.status.should == 200`
			`response.body.should == 'false'`
			`end`
			`end`
			`end`
allow all git-upload-* commands for deploy keys 2013-07-29 08:25:33 -04:00
			`context "deploy key" do`
			`let(:key) { create(:deploy_key) }`

			`context "added to project" do`
			`before do`
			`key.projects << project`
			`end`

			`it do`
			`archive(key, project)`

			`response.status.should == 200`
			`response.body.should == 'true'`
			`end`
			`end`

			`context "not added to project" do`
			`it do`
			`archive(key, project)`

			`response.status.should == 200`
			`response.body.should == 'false'`
			`end`
			`end`
			`end`
block user should not be able to push 2013-03-07 07:18:30 -05:00			`end`

			`def pull(key, project)`
			`get(`
			`api("/internal/allowed"),`
			`ref: 'master',`
			`key_id: key.id,`
			`project: project.path_with_namespace,`
			`action: 'git-upload-pack'`
			`)`
			`end`

			`def push(key, project)`
			`get(`
			`api("/internal/allowed"),`
			`ref: 'master',`
			`key_id: key.id,`
			`project: project.path_with_namespace,`
			`action: 'git-receive-pack'`
			`)`
specs for api/internal 2013-02-26 15:53:59 -05:00			`end`
allow all git-upload-* commands for deploy keys 2013-07-29 08:25:33 -04:00
			`def archive(key, project)`
			`get(`
			`api("/internal/allowed"),`
			`ref: 'master',`
			`key_id: key.id,`
			`project: project.path_with_namespace,`
			`action: 'git-upload-archive'`
			`)`
			`end`
specs for api/internal 2013-02-26 15:53:59 -05:00			`end`