gitlab-org--gitlab-foss/spec/features/security/dashboard_access_spec.rb

require 'spec_helper'

describe "Dashboard access" do
  describe "GET /dashboard" do
    subject { dashboard_path }

    it { should be_allowed_for :admin }
    it { should be_allowed_for :user }
    it { should be_denied_for :visitor }
  end

  describe "GET /dashboard/issues" do
    subject { issues_dashboard_path }

    it { should be_allowed_for :admin }
    it { should be_allowed_for :user }
    it { should be_denied_for :visitor }
  end

  describe "GET /dashboard/merge_requests" do
    subject { merge_requests_dashboard_path }

    it { should be_allowed_for :admin }
    it { should be_allowed_for :user }
    it { should be_denied_for :visitor }
  end

  describe "GET /dashboard/projects" do
    subject { projects_dashboard_path }

    it { should be_allowed_for :admin }
    it { should be_allowed_for :user }
    it { should be_denied_for :visitor }
  end

  describe "GET /help" do
    subject { help_path }

    it { should be_allowed_for :admin }
    it { should be_allowed_for :user }
    it { should be_denied_for :visitor }
  end

  describe "GET /projects/new" do
    it { new_project_path.should be_allowed_for :admin }
    it { new_project_path.should be_allowed_for :user }
    it { new_project_path.should be_denied_for :visitor }
  end

  describe "GET /groups/new" do
    it { new_group_path.should be_allowed_for :admin }
    it { new_group_path.should be_allowed_for :user }
    it { new_group_path.should be_denied_for :visitor }
  end
end
Dashboard security specs 2013-09-25 11:04:16 +00:00			`require 'spec_helper'`

			`describe "Dashboard access" do`
			`describe "GET /dashboard" do`
			`subject { dashboard_path }`

			`it { should be_allowed_for :admin }`
			`it { should be_allowed_for :user }`
			`it { should be_denied_for :visitor }`
			`end`

			`describe "GET /dashboard/issues" do`
			`subject { issues_dashboard_path }`

			`it { should be_allowed_for :admin }`
			`it { should be_allowed_for :user }`
			`it { should be_denied_for :visitor }`
			`end`

			`describe "GET /dashboard/merge_requests" do`
			`subject { merge_requests_dashboard_path }`

			`it { should be_allowed_for :admin }`
			`it { should be_allowed_for :user }`
			`it { should be_denied_for :visitor }`
			`end`

			`describe "GET /dashboard/projects" do`
			`subject { projects_dashboard_path }`

			`it { should be_allowed_for :admin }`
			`it { should be_allowed_for :user }`
			`it { should be_denied_for :visitor }`
			`end`

			`describe "GET /help" do`
			`subject { help_path }`

			`it { should be_allowed_for :admin }`
			`it { should be_allowed_for :user }`
			`it { should be_denied_for :visitor }`
			`end`

			`describe "GET /projects/new" do`
			`it { new_project_path.should be_allowed_for :admin }`
			`it { new_project_path.should be_allowed_for :user }`
			`it { new_project_path.should be_denied_for :visitor }`
			`end`

			`describe "GET /groups/new" do`
			`it { new_group_path.should be_allowed_for :admin }`
			`it { new_group_path.should be_allowed_for :user }`
			`it { new_group_path.should be_denied_for :visitor }`
			`end`
			`end`