2019-10-28 20:06:10 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2014-03-31 09:31:53 -04:00
|
|
|
require 'spec_helper'
|
|
|
|
|
2017-04-21 16:32:02 -04:00
|
|
|
describe API::Branches do
|
2020-02-17 10:09:01 -05:00
|
|
|
let_it_be(:user) { create(:user) }
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:project) { create(:project, :repository, creator: user, path: 'my.project') }
|
2017-09-19 10:11:23 -04:00
|
|
|
let(:guest) { create(:user).tap { |u| project.add_guest(u) } }
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:branch_name) { 'feature' }
|
|
|
|
let(:branch_sha) { '0b4bc9a49b562e85de7cc9e834518ea6828729b9' }
|
|
|
|
let(:branch_with_dot) { project.repository.find_branch('ends-with.json') }
|
|
|
|
let(:branch_with_slash) { project.repository.find_branch('improve/awesome') }
|
|
|
|
|
|
|
|
let(:project_id) { project.id }
|
|
|
|
let(:current_user) { nil }
|
|
|
|
|
|
|
|
before do
|
2018-07-11 10:36:08 -04:00
|
|
|
project.add_maintainer(user)
|
2017-07-26 08:33:09 -04:00
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
|
|
|
|
describe "GET /projects/:id/repository/branches" do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:route) { "/projects/#{project_id}/repository/branches" }
|
2015-07-21 21:52:56 -04:00
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
shared_examples_for 'repository branches' do
|
2019-03-30 08:28:37 -04:00
|
|
|
RSpec::Matchers.define :has_up_to_merged_branch_names_count do |expected|
|
2018-12-26 02:34:47 -05:00
|
|
|
match do |actual|
|
2019-03-30 08:28:37 -04:00
|
|
|
expected >= actual[:merged_branch_names].count
|
2018-12-26 02:34:47 -05:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
it 'returns the repository branches' do
|
2018-12-17 17:52:17 -05:00
|
|
|
get api(route, current_user), params: { per_page: 100 }
|
2017-01-24 15:49:10 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branches')
|
2017-03-20 04:37:14 -04:00
|
|
|
expect(response).to include_pagination_headers
|
|
|
|
branch_names = json_response.map { |x| x['name'] }
|
|
|
|
expect(branch_names).to match_array(project.repository.branch_names)
|
|
|
|
end
|
|
|
|
|
2019-03-29 18:16:31 -04:00
|
|
|
def check_merge_status(json_response)
|
|
|
|
merged, unmerged = json_response.partition { |branch| branch['merged'] }
|
|
|
|
merged_branches = merged.map { |branch| branch['name'] }
|
|
|
|
unmerged_branches = unmerged.map { |branch| branch['name'] }
|
|
|
|
expect(Set.new(merged_branches)).to eq(project.repository.merged_branch_names(merged_branches + unmerged_branches))
|
|
|
|
expect(project.repository.merged_branch_names(unmerged_branches)).to be_empty
|
|
|
|
end
|
|
|
|
|
2018-12-26 02:34:47 -05:00
|
|
|
it 'determines only a limited number of merged branch names' do
|
2019-03-30 08:28:37 -04:00
|
|
|
expect(API::Entities::Branch).to receive(:represent).with(anything, has_up_to_merged_branch_names_count(2)).and_call_original
|
2018-12-26 02:34:47 -05:00
|
|
|
|
|
|
|
get api(route, current_user), params: { per_page: 2 }
|
2019-03-29 18:16:31 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2019-03-29 18:16:31 -04:00
|
|
|
|
|
|
|
check_merge_status(json_response)
|
|
|
|
end
|
|
|
|
|
|
|
|
it 'merge status matches reality on paginated input' do
|
|
|
|
get api(route, current_user), params: { per_page: 20, page: 2 }
|
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2019-03-29 18:16:31 -04:00
|
|
|
|
|
|
|
check_merge_status(json_response)
|
2018-12-26 02:34:47 -05:00
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when repository is disabled' do
|
|
|
|
include_context 'disabled repository'
|
|
|
|
|
2019-06-24 18:12:42 -04:00
|
|
|
it_behaves_like '404 response' do
|
2017-03-20 04:37:14 -04:00
|
|
|
let(:request) { get api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2018-03-05 07:57:47 -05:00
|
|
|
context 'when search parameter is passed' do
|
|
|
|
context 'and branch exists' do
|
|
|
|
it 'returns correct branches' do
|
2018-12-17 17:52:17 -05:00
|
|
|
get api(route, user), params: { per_page: 100, search: branch_name }
|
2018-03-05 07:57:47 -05:00
|
|
|
|
|
|
|
searched_branch_names = json_response.map { |branch| branch['name'] }
|
|
|
|
project_branch_names = project.repository.branch_names.grep(/#{branch_name}/)
|
|
|
|
|
|
|
|
expect(searched_branch_names).to match_array(project_branch_names)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'and branch does not exist' do
|
|
|
|
it 'returns an empty array' do
|
2018-12-17 17:52:17 -05:00
|
|
|
get api(route, user), params: { per_page: 100, search: 'no_such_branch_name_entropy_of_jabadabadu' }
|
2018-03-05 07:57:47 -05:00
|
|
|
|
|
|
|
expect(json_response).to eq []
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when unauthenticated', 'and project is public' do
|
2017-09-19 10:11:23 -04:00
|
|
|
before do
|
|
|
|
project.update(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
|
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
|
|
|
|
it_behaves_like 'repository branches'
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when unauthenticated', 'and project is private' do
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { get api(route) }
|
|
|
|
let(:message) { '404 Project Not Found' }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2018-07-11 10:36:08 -04:00
|
|
|
context 'when authenticated', 'as a maintainer' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:current_user) { user }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branches'
|
|
|
|
|
|
|
|
context 'requesting with the escaped project full path' do
|
|
|
|
let(:project_id) { CGI.escape(project.full_path) }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branches'
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
2019-11-12 04:06:14 -05:00
|
|
|
|
|
|
|
it 'does not submit N+1 DB queries', :request_store do
|
|
|
|
create(:protected_branch, name: 'master', project: project)
|
|
|
|
|
|
|
|
# Make sure no setup step query is recorded.
|
|
|
|
get api(route, current_user), params: { per_page: 100 }
|
|
|
|
|
|
|
|
control = ActiveRecord::QueryRecorder.new do
|
|
|
|
get api(route, current_user), params: { per_page: 100 }
|
|
|
|
end
|
|
|
|
|
|
|
|
new_branch_name = 'protected-branch'
|
2019-12-03 13:06:49 -05:00
|
|
|
::Branches::CreateService.new(project, current_user).execute(new_branch_name, 'master')
|
2019-11-12 04:06:14 -05:00
|
|
|
create(:protected_branch, name: new_branch_name, project: project)
|
|
|
|
|
|
|
|
expect do
|
|
|
|
get api(route, current_user), params: { per_page: 100 }
|
|
|
|
end.not_to exceed_query_limit(control)
|
|
|
|
end
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
2016-12-06 15:56:59 -05:00
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when authenticated', 'as a guest' do
|
|
|
|
it_behaves_like '403 response' do
|
|
|
|
let(:request) { get api(route, guest) }
|
|
|
|
end
|
2016-12-06 15:56:59 -05:00
|
|
|
end
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
describe "GET /projects/:id/repository/branches/:branch" do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:route) { "/projects/#{project_id}/repository/branches/#{branch_name}" }
|
2016-12-06 15:56:59 -05:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
shared_examples_for 'repository branch' do
|
2017-09-04 19:55:12 -04:00
|
|
|
context 'HEAD request' do
|
|
|
|
it 'returns 204 No Content' do
|
|
|
|
head api(route, user)
|
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:no_content)
|
2017-09-04 19:55:12 -04:00
|
|
|
expect(response.body).to be_empty
|
|
|
|
end
|
|
|
|
|
|
|
|
it 'returns 404 Not Found' do
|
|
|
|
head api("/projects/#{project_id}/repository/branches/unknown", user)
|
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:not_found)
|
2017-09-04 19:55:12 -04:00
|
|
|
expect(response.body).to be_empty
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
it 'returns the repository branch' do
|
|
|
|
get api(route, current_user)
|
2016-11-28 13:16:15 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
context 'when branch does not exist' do
|
|
|
|
let(:branch_name) { 'unknown' }
|
|
|
|
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { get api(route, current_user) }
|
|
|
|
let(:message) { '404 Branch Not Found' }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-10-14 05:32:24 -04:00
|
|
|
context 'when the branch refname is invalid' do
|
|
|
|
let(:branch_name) { 'branch*' }
|
|
|
|
let(:message) { 'The branch refname is invalid' }
|
|
|
|
|
|
|
|
it_behaves_like '400 response' do
|
|
|
|
let(:request) { get api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when repository is disabled' do
|
|
|
|
include_context 'disabled repository'
|
|
|
|
|
2019-06-24 18:12:42 -04:00
|
|
|
it_behaves_like '404 response' do
|
2017-03-20 04:37:14 -04:00
|
|
|
let(:request) { get api(route, current_user) }
|
|
|
|
end
|
2016-11-28 13:16:15 -05:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when unauthenticated', 'and project is public' do
|
2017-09-19 10:11:23 -04:00
|
|
|
before do
|
|
|
|
project.update(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
|
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
2018-06-25 12:39:23 -04:00
|
|
|
|
|
|
|
it 'returns that the current user cannot push' do
|
|
|
|
get api(route, current_user)
|
|
|
|
|
|
|
|
expect(json_response['can_push']).to eq(false)
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when unauthenticated', 'and project is private' do
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { get api(route) }
|
|
|
|
let(:message) { '404 Project Not Found' }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-07-11 10:36:08 -04:00
|
|
|
context 'when authenticated', 'as a maintainer' do
|
2017-03-20 04:37:14 -04:00
|
|
|
let(:current_user) { user }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
it_behaves_like 'repository branch'
|
|
|
|
|
2018-06-25 12:39:23 -04:00
|
|
|
it 'returns that the current user can push' do
|
|
|
|
get api(route, current_user)
|
|
|
|
|
|
|
|
expect(json_response['can_push']).to eq(true)
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch contains a slash' do
|
|
|
|
let(:branch_name) { branch_with_slash.name }
|
|
|
|
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { get api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when branch contains an escaped slash' do
|
|
|
|
let(:branch_name) { CGI.escape(branch_with_slash.name) }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'requesting with the escaped project full path' do
|
|
|
|
let(:project_id) { CGI.escape(project.full_path) }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
2017-03-20 04:37:14 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
|
|
|
end
|
2017-03-20 04:37:14 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-06-25 12:39:23 -04:00
|
|
|
context 'when authenticated', 'as a developer and branch is protected' do
|
|
|
|
let(:current_user) { create(:user) }
|
|
|
|
let!(:protected_branch) { create(:protected_branch, project: project, name: branch_name) }
|
|
|
|
|
|
|
|
before do
|
|
|
|
project.add_developer(current_user)
|
|
|
|
end
|
|
|
|
|
|
|
|
it_behaves_like 'repository branch'
|
|
|
|
|
|
|
|
it 'returns that the current user cannot push' do
|
|
|
|
get api(route, current_user)
|
|
|
|
|
|
|
|
expect(json_response['can_push']).to eq(false)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-03-20 04:37:14 -04:00
|
|
|
context 'when authenticated', 'as a guest' do
|
|
|
|
it_behaves_like '403 response' do
|
|
|
|
let(:request) { get api(route, guest) }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2016-07-12 10:31:55 -04:00
|
|
|
describe 'PUT /projects/:id/repository/branches/:branch/protect' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:route) { "/projects/#{project_id}/repository/branches/#{branch_name}/protect" }
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
shared_examples_for 'repository new protected branch' do
|
|
|
|
it 'protects a single branch' do
|
|
|
|
put api(route, current_user)
|
2016-12-06 15:56:59 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
2016-12-06 15:56:59 -05:00
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
end
|
|
|
|
|
2016-09-06 01:05:34 -04:00
|
|
|
it 'protects a single branch and developers can push' do
|
2018-12-17 17:52:17 -05:00
|
|
|
put api(route, current_user), params: { developers_can_push: true }
|
2014-03-31 09:31:53 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
2016-09-06 01:05:34 -04:00
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
expect(json_response['developers_can_push']).to eq(true)
|
|
|
|
expect(json_response['developers_can_merge']).to eq(false)
|
|
|
|
end
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2016-09-06 01:05:34 -04:00
|
|
|
it 'protects a single branch and developers can merge' do
|
2018-12-17 17:52:17 -05:00
|
|
|
put api(route, current_user), params: { developers_can_merge: true }
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
2016-09-06 01:05:34 -04:00
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
expect(json_response['developers_can_push']).to eq(false)
|
|
|
|
expect(json_response['developers_can_merge']).to eq(true)
|
|
|
|
end
|
2016-07-19 04:36:18 -04:00
|
|
|
|
2016-09-06 01:05:34 -04:00
|
|
|
it 'protects a single branch and developers can push and merge' do
|
2018-12-17 17:52:17 -05:00
|
|
|
put api(route, current_user), params: { developers_can_push: true, developers_can_merge: true }
|
2016-07-19 04:36:18 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
2016-09-06 01:05:34 -04:00
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
expect(json_response['developers_can_push']).to eq(true)
|
|
|
|
expect(json_response['developers_can_merge']).to eq(true)
|
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
|
|
|
|
context 'when branch does not exist' do
|
|
|
|
let(:branch_name) { 'unknown' }
|
|
|
|
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
let(:message) { '404 Branch Not Found' }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-10-14 05:32:24 -04:00
|
|
|
context 'when the branch refname is invalid' do
|
|
|
|
let(:branch_name) { 'branch*' }
|
|
|
|
let(:message) { 'The branch refname is invalid' }
|
|
|
|
|
|
|
|
it_behaves_like '400 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when repository is disabled' do
|
|
|
|
include_context 'disabled repository'
|
|
|
|
|
2019-06-24 18:12:42 -04:00
|
|
|
it_behaves_like '404 response' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
2016-07-12 10:31:55 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when unauthenticated', 'and project is private' do
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route) }
|
|
|
|
let(:message) { '404 Project Not Found' }
|
2016-07-12 10:31:55 -04:00
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
context 'when authenticated', 'as a guest' do
|
|
|
|
it_behaves_like '403 response' do
|
|
|
|
let(:request) { put api(route, guest) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-07-11 10:36:08 -04:00
|
|
|
context 'when authenticated', 'as a maintainer' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:current_user) { user }
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context "when a protected branch doesn't already exist" do
|
|
|
|
it_behaves_like 'repository new protected branch'
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like 'repository new protected branch'
|
2016-09-06 01:05:34 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch contains a slash' do
|
|
|
|
let(:branch_name) { branch_with_slash.name }
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
2016-09-06 01:05:34 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch contains an escaped slash' do
|
|
|
|
let(:branch_name) { CGI.escape(branch_with_slash.name) }
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like 'repository new protected branch'
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'requesting with the escaped project full path' do
|
|
|
|
let(:project_id) { CGI.escape(project.full_path) }
|
|
|
|
|
|
|
|
it_behaves_like 'repository new protected branch'
|
|
|
|
|
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
|
|
|
|
|
|
|
it_behaves_like 'repository new protected branch'
|
|
|
|
end
|
2016-09-06 01:05:34 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when protected branch already exists' do
|
|
|
|
before do
|
|
|
|
project.repository.add_branch(user, protected_branch.name, 'master')
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when developers can push and merge' do
|
|
|
|
let(:protected_branch) { create(:protected_branch, :developers_can_push, :developers_can_merge, project: project, name: 'protected_branch') }
|
|
|
|
|
|
|
|
it 'updates that a developer cannot push or merge' do
|
|
|
|
put api("/projects/#{project.id}/repository/branches/#{protected_branch.name}/protect", user),
|
2018-12-17 17:52:17 -05:00
|
|
|
params: { developers_can_push: false, developers_can_merge: false }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(protected_branch.name)
|
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
expect(json_response['developers_can_push']).to eq(false)
|
|
|
|
expect(json_response['developers_can_merge']).to eq(false)
|
2018-07-11 10:36:08 -04:00
|
|
|
expect(protected_branch.reload.push_access_levels.first.access_level).to eq(Gitlab::Access::MAINTAINER)
|
|
|
|
expect(protected_branch.reload.merge_access_levels.first.access_level).to eq(Gitlab::Access::MAINTAINER)
|
2017-07-26 08:33:09 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when developers cannot push or merge' do
|
|
|
|
let(:protected_branch) { create(:protected_branch, project: project, name: 'protected_branch') }
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it 'updates that a developer can push and merge' do
|
|
|
|
put api("/projects/#{project.id}/repository/branches/#{protected_branch.name}/protect", user),
|
2018-12-17 17:52:17 -05:00
|
|
|
params: { developers_can_push: true, developers_can_merge: true }
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(protected_branch.name)
|
|
|
|
expect(json_response['protected']).to eq(true)
|
|
|
|
expect(json_response['developers_can_push']).to eq(true)
|
|
|
|
expect(json_response['developers_can_merge']).to eq(true)
|
|
|
|
end
|
2016-09-06 01:05:34 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
end
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
describe 'PUT /projects/:id/repository/branches/:branch/unprotect' do
|
|
|
|
let(:route) { "/projects/#{project_id}/repository/branches/#{branch_name}/unprotect" }
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
shared_examples_for 'repository unprotected branch' do
|
|
|
|
it 'unprotects a single branch' do
|
|
|
|
put api(route, current_user)
|
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:ok)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq(CGI.unescape(branch_name))
|
|
|
|
expect(json_response['protected']).to eq(false)
|
2016-07-12 10:31:55 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when branch does not exist' do
|
|
|
|
let(:branch_name) { 'unknown' }
|
2016-07-12 10:31:55 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
let(:message) { '404 Branch Not Found' }
|
|
|
|
end
|
2016-09-06 01:05:34 -04:00
|
|
|
end
|
|
|
|
|
2017-10-14 05:32:24 -04:00
|
|
|
context 'when the branch refname is invalid' do
|
|
|
|
let(:branch_name) { 'branch*' }
|
|
|
|
let(:message) { 'The branch refname is invalid' }
|
|
|
|
|
|
|
|
it_behaves_like '400 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when repository is disabled' do
|
|
|
|
include_context 'disabled repository'
|
2016-09-06 01:05:34 -04:00
|
|
|
|
2019-06-24 18:12:42 -04:00
|
|
|
it_behaves_like '404 response' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
2016-07-12 10:31:55 -04:00
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when unauthenticated', 'and project is private' do
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route) }
|
|
|
|
let(:message) { '404 Project Not Found' }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when authenticated', 'as a guest' do
|
|
|
|
it_behaves_like '403 response' do
|
|
|
|
let(:request) { put api(route, guest) }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2018-07-11 10:36:08 -04:00
|
|
|
context 'when authenticated', 'as a maintainer' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:current_user) { user }
|
|
|
|
|
|
|
|
context "when a protected branch doesn't already exist" do
|
|
|
|
it_behaves_like 'repository unprotected branch'
|
|
|
|
|
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
|
|
|
|
|
|
|
it_behaves_like 'repository unprotected branch'
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when branch contains a slash' do
|
|
|
|
let(:branch_name) { branch_with_slash.name }
|
|
|
|
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { put api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when branch contains an escaped slash' do
|
|
|
|
let(:branch_name) { CGI.escape(branch_with_slash.name) }
|
2014-03-31 09:31:53 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like 'repository unprotected branch'
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'requesting with the escaped project full path' do
|
|
|
|
let(:project_id) { CGI.escape(project.full_path) }
|
|
|
|
|
|
|
|
it_behaves_like 'repository unprotected branch'
|
|
|
|
|
|
|
|
context 'when branch contains a dot' do
|
|
|
|
let(:branch_name) { branch_with_dot.name }
|
|
|
|
|
|
|
|
it_behaves_like 'repository unprotected branch'
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
2017-07-26 08:33:09 -04:00
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
describe 'POST /projects/:id/repository/branches' do
|
|
|
|
let(:route) { "/projects/#{project_id}/repository/branches" }
|
2016-12-06 15:56:59 -05:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
shared_examples_for 'repository new branch' do
|
|
|
|
it 'creates a new branch' do
|
2018-12-17 17:52:17 -05:00
|
|
|
post api(route, current_user), params: { branch: 'feature1', ref: branch_sha }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:created)
|
2017-07-26 08:33:09 -04:00
|
|
|
expect(response).to match_response_schema('public_api/v4/branch')
|
|
|
|
expect(json_response['name']).to eq('feature1')
|
|
|
|
expect(json_response['commit']['id']).to eq(branch_sha)
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when repository is disabled' do
|
|
|
|
include_context 'disabled repository'
|
|
|
|
|
2019-06-24 18:12:42 -04:00
|
|
|
it_behaves_like '404 response' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:request) { post api(route, current_user) }
|
|
|
|
end
|
|
|
|
end
|
2016-12-06 15:56:59 -05:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when unauthenticated', 'and project is private' do
|
|
|
|
it_behaves_like '404 response' do
|
|
|
|
let(:request) { post api(route) }
|
|
|
|
let(:message) { '404 Project Not Found' }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'when authenticated', 'as a guest' do
|
|
|
|
it_behaves_like '403 response' do
|
|
|
|
let(:request) { post api(route, guest) }
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|
|
|
|
|
2018-07-11 10:36:08 -04:00
|
|
|
context 'when authenticated', 'as a maintainer' do
|
2017-07-26 08:33:09 -04:00
|
|
|
let(:current_user) { user }
|
2014-04-01 03:39:53 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context "when a protected branch doesn't already exist" do
|
|
|
|
it_behaves_like 'repository new branch'
|
2014-04-01 03:39:53 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
context 'requesting with the escaped project full path' do
|
|
|
|
let(:project_id) { CGI.escape(project.full_path) }
|
2014-04-01 03:39:53 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it_behaves_like 'repository new branch'
|
|
|
|
end
|
|
|
|
end
|
2014-04-01 03:39:53 -04:00
|
|
|
end
|
2014-07-27 10:40:00 -04:00
|
|
|
|
2016-08-01 11:00:44 -04:00
|
|
|
it 'returns 400 if branch name is invalid' do
|
2018-12-17 17:52:17 -05:00
|
|
|
post api(route, user), params: { branch: 'new design', ref: branch_sha }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:bad_request)
|
2015-12-18 09:43:53 -05:00
|
|
|
expect(json_response['message']).to eq('Branch name is invalid')
|
2014-07-27 10:40:00 -04:00
|
|
|
end
|
|
|
|
|
2020-02-03 13:08:46 -05:00
|
|
|
it 'returns 400 if branch already exists', :clean_gitlab_redis_cache do
|
2018-12-17 17:52:17 -05:00
|
|
|
post api(route, user), params: { branch: 'new_design1', ref: branch_sha }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:created)
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2018-12-17 17:52:17 -05:00
|
|
|
post api(route, user), params: { branch: 'new_design1', ref: branch_sha }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:bad_request)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(json_response['message']).to eq('Branch already exists')
|
2014-07-27 10:40:00 -04:00
|
|
|
end
|
|
|
|
|
2016-08-01 11:00:44 -04:00
|
|
|
it 'returns 400 if ref name is invalid' do
|
2018-12-17 17:52:17 -05:00
|
|
|
post api(route, user), params: { branch: 'new_design3', ref: 'foo' }
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:bad_request)
|
2019-10-21 08:06:14 -04:00
|
|
|
expect(json_response['message']).to eq('Invalid reference name: new_design3')
|
2014-07-27 10:40:00 -04:00
|
|
|
end
|
2014-04-01 03:39:53 -04:00
|
|
|
end
|
2014-05-23 08:34:02 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
describe 'DELETE /projects/:id/repository/branches/:branch' do
|
2015-05-21 17:49:06 -04:00
|
|
|
before do
|
2019-12-16 07:07:43 -05:00
|
|
|
allow_next_instance_of(Repository) do |instance|
|
|
|
|
allow(instance).to receive(:rm_branch).and_return(true)
|
|
|
|
end
|
2015-05-21 17:49:06 -04:00
|
|
|
end
|
2014-05-23 08:34:02 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it 'removes branch' do
|
2014-08-01 10:30:28 -04:00
|
|
|
delete api("/projects/#{project.id}/repository/branches/#{branch_name}", user)
|
2017-02-20 13:18:12 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:no_content)
|
2014-05-23 08:34:02 -04:00
|
|
|
end
|
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
it 'removes a branch with dots in the branch name' do
|
2017-03-20 04:37:14 -04:00
|
|
|
delete api("/projects/#{project.id}/repository/branches/#{branch_with_dot.name}", user)
|
2016-12-06 15:56:59 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:no_content)
|
2016-12-06 15:56:59 -05:00
|
|
|
end
|
|
|
|
|
2016-08-01 11:00:44 -04:00
|
|
|
it 'returns 404 if branch not exists' do
|
2014-07-27 10:40:00 -04:00
|
|
|
delete api("/projects/#{project.id}/repository/branches/foobar", user)
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:not_found)
|
2014-07-27 10:40:00 -04:00
|
|
|
end
|
2017-08-24 12:03:39 -04:00
|
|
|
|
2017-10-14 05:32:24 -04:00
|
|
|
context 'when the branch refname is invalid' do
|
|
|
|
let(:branch_name) { 'branch*' }
|
|
|
|
let(:message) { 'The branch refname is invalid' }
|
|
|
|
|
|
|
|
it_behaves_like '400 response' do
|
|
|
|
let(:request) { delete api("/projects/#{project.id}/repository/branches/#{branch_name}", user) }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-08-24 12:03:39 -04:00
|
|
|
it_behaves_like '412 response' do
|
|
|
|
let(:request) { api("/projects/#{project.id}/repository/branches/#{branch_name}", user) }
|
|
|
|
end
|
2014-05-23 08:34:02 -04:00
|
|
|
end
|
2016-09-21 10:15:12 -04:00
|
|
|
|
2017-07-26 08:33:09 -04:00
|
|
|
describe 'DELETE /projects/:id/repository/merged_branches' do
|
2016-09-21 10:15:12 -04:00
|
|
|
before do
|
2019-12-16 07:07:43 -05:00
|
|
|
allow_next_instance_of(Repository) do |instance|
|
|
|
|
allow(instance).to receive(:rm_branch).and_return(true)
|
|
|
|
end
|
2016-09-21 10:15:12 -04:00
|
|
|
end
|
|
|
|
|
2017-02-22 12:37:13 -05:00
|
|
|
it 'returns 202 with json body' do
|
2016-09-21 10:15:12 -04:00
|
|
|
delete api("/projects/#{project.id}/repository/merged_branches", user)
|
2017-02-22 12:37:13 -05:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:accepted)
|
2017-02-22 12:37:13 -05:00
|
|
|
expect(json_response['message']).to eql('202 Accepted')
|
2016-09-21 10:15:12 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
it 'returns a 403 error if guest' do
|
2017-03-20 04:37:14 -04:00
|
|
|
delete api("/projects/#{project.id}/repository/merged_branches", guest)
|
2017-07-26 08:33:09 -04:00
|
|
|
|
2020-02-21 07:09:07 -05:00
|
|
|
expect(response).to have_gitlab_http_status(:forbidden)
|
2016-09-21 10:15:12 -04:00
|
|
|
end
|
|
|
|
end
|
2014-03-31 09:31:53 -04:00
|
|
|
end
|