gitlab-org--gitlab-foss/spec/features/profiles/keys_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe 'Profile > SSH Keys' do
  let(:user) { create(:user) }

  before do
    sign_in(user)
  end

  describe 'User adds a key' do
    before do
      visit profile_keys_path
    end

    it 'auto-populates the title', :js do
      fill_in('Key', with: attributes_for(:key).fetch(:key))

      expect(page).to have_field("Title", with: "dummy@gitlab.com")
    end

    it 'saves the new key' do
      attrs = attributes_for(:key)

      fill_in('Key', with: attrs[:key])
      fill_in('Title', with: attrs[:title])
      click_button('Add key')

      expect(page).to have_content("Title: #{attrs[:title]}")
      expect(page).to have_content(attrs[:key])
      expect(find('.breadcrumbs-sub-title')).to have_link(attrs[:title])
    end

    it 'shows a confirmable warning if the key does not start with ssh-' do
      attrs = attributes_for(:key)

      fill_in('Key', with: 'invalid-key')
      fill_in('Title', with: attrs[:title])
      click_button('Add key')

      expect(page).to have_selector('.js-add-ssh-key-validation-warning')

      find('.js-add-ssh-key-validation-confirm-submit').click

      expect(page).to have_content('Key is invalid')
    end

    context 'when only DSA and ECDSA keys are allowed' do
      before do
        forbidden = ApplicationSetting::FORBIDDEN_KEY_VALUE
        stub_application_setting(rsa_key_restriction: forbidden, ed25519_key_restriction: forbidden)
      end

      it 'shows a validation error' do
        attrs = attributes_for(:key)

        fill_in('Key', with: attrs[:key])
        fill_in('Title', with: attrs[:title])
        click_button('Add key')

        expect(page).to have_content('Key type is forbidden. Must be DSA or ECDSA')
      end
    end
  end

  it 'User sees their keys' do
    key = create(:key, user: user)
    visit profile_keys_path

    expect(page).to have_content(key.title)
  end

  it 'User removes a key via the key index' do
    create(:key, user: user)
    visit profile_keys_path

    click_link('Remove')

    expect(page).to have_content('Your SSH keys (0)')
  end

  it 'User removes a key via its details page' do
    key = create(:key, user: user)
    visit profile_key_path(key)

    click_link('Remove')

    expect(page).to have_content('Your SSH keys (0)')
  end
end
Add frozen_string_literal to spec/features Using the sed script from https://gitlab.com/gitlab-org/gitlab-ce/issues/59758 2019-07-25 05:24:42 +00:00			`# frozen_string_literal: true`

Replace rails_helper.rb with spec_helper.rb rails_helper.rb's only logic was to require spec_helper.rb. 2019-08-29 07:56:52 +00:00			`require 'spec_helper'`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00
Add latest changes from gitlab-org/gitlab@master 2020-06-16 18:09:01 +00:00			`RSpec.describe 'Profile > SSH Keys' do`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00			`let(:user) { create(:user) }`

			`before do`
Change gitlab_sign_in to sign_in where possible 2017-06-21 23:44:10 +00:00			`sign_in(user)`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00			`end`

Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`describe 'User adds a key' do`
			`before do`
			`visit profile_keys_path`
			`end`

Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'auto-populates the title', :js do`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00			`fill_in('Key', with: attributes_for(:key).fetch(:key))`

Updates SSH key title after pasting key Previously it was listening for focusout, it now listens for blur & paste events Closes #28436 2017-02-23 17:48:44 +00:00			`expect(page).to have_field("Title", with: "dummy@gitlab.com")`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00			`end`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00
Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'saves the new key' do`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`attrs = attributes_for(:key)`

			`fill_in('Key', with: attrs[:key])`
			`fill_in('Title', with: attrs[:title])`
			`click_button('Add key')`

			`expect(page).to have_content("Title: #{attrs[:title]}")`
			`expect(page).to have_content(attrs[:key])`
Add breadcrumbs to User Settings sub-views Closes #40274 2018-01-01 13:55:52 +00:00			`expect(find('.breadcrumbs-sub-title')).to have_link(attrs[:title])`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`end`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00
(Part 2) Resolve "Recognise when a user is trying to validate a private SSH key" 2018-07-06 14:36:02 +00:00			`it 'shows a confirmable warning if the key does not start with ssh-' do`
			`attrs = attributes_for(:key)`

			`fill_in('Key', with: 'invalid-key')`
			`fill_in('Title', with: attrs[:title])`
			`click_button('Add key')`

			`expect(page).to have_selector('.js-add-ssh-key-validation-warning')`

			`find('.js-add-ssh-key-validation-confirm-submit').click`

			`expect(page).to have_content('Key is invalid')`
			`end`

Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`context 'when only DSA and ECDSA keys are allowed' do`
			`before do`
Rework the permissions model for SSH key restrictions `allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them. 2017-08-25 13:08:48 +00:00			`forbidden = ApplicationSetting::FORBIDDEN_KEY_VALUE`
			`stub_application_setting(rsa_key_restriction: forbidden, ed25519_key_restriction: forbidden)`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`end`

Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'shows a validation error' do`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`attrs = attributes_for(:key)`

			`fill_in('Key', with: attrs[:key])`
			`fill_in('Title', with: attrs[:title])`
			`click_button('Add key')`

Rework the permissions model for SSH key restrictions `allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them. 2017-08-25 13:08:48 +00:00			`expect(page).to have_content('Key type is forbidden. Must be DSA or ECDSA')`
Add settings for minimum key strength and allowed key type This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 2017-08-21 10:30:03 +00:00			`end`
			`end`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`end`

Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'User sees their keys' do`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`key = create(:key, user: user)`
			`visit profile_keys_path`

			`expect(page).to have_content(key.title)`
			`end`

Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'User removes a key via the key index' do`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`create(:key, user: user)`
			`visit profile_keys_path`

			`click_link('Remove')`

			`expect(page).to have_content('Your SSH keys (0)')`
			`end`

Enable Capybara/FeatureMethods cop 2018-07-05 06:32:05 +00:00			`it 'User removes a key via its details page' do`
Convert "SSH Keys" Spinach features to RSpec 2016-10-02 15:00:41 +00:00			`key = create(:key, user: user)`
			`visit profile_key_path(key)`

			`click_link('Remove')`

			`expect(page).to have_content('Your SSH keys (0)')`
Restore SSH Key title auto-population behavior Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/21823 2016-09-02 15:55:16 +00:00			`end`
			`end`