2016-10-13 15:53:01 +00:00
|
|
|
require 'spec_helper'
|
|
|
|
|
|
|
|
|
|
describe IssuePolicy, models: true do
|
|
|
|
|
let(:user) { create(:user) }
|
|
|
|
|
|
|
|
|
|
describe '#rules' do
|
|
|
|
|
context 'using a regular issue' do
|
2017-03-27 19:34:45 +00:00
|
|
|
let(:project) { create(:empty_project, :public) }
|
2016-10-13 15:53:01 +00:00
|
|
|
let(:issue) { create(:issue, project: project) }
|
|
|
|
|
let(:policies) { described_class.abilities(user, issue).to_set }
|
|
|
|
|
|
|
|
|
|
context 'with a regular user' do
|
|
|
|
|
it 'includes the read_issue permission' do
|
|
|
|
|
expect(policies).to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the admin_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the update_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'with a user that is a project reporter' do
|
|
|
|
|
before do
|
|
|
|
|
project.team << [user, :reporter]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the read_issue permission' do
|
|
|
|
|
expect(policies).to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the admin_issue permission' do
|
|
|
|
|
expect(policies).to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the update_issue permission' do
|
|
|
|
|
expect(policies).to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'with a user that is a project guest' do
|
|
|
|
|
before do
|
|
|
|
|
project.team << [user, :guest]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the read_issue permission' do
|
|
|
|
|
expect(policies).to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the admin_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the update_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'using a confidential issue' do
|
|
|
|
|
let(:issue) { create(:issue, :confidential) }
|
|
|
|
|
|
|
|
|
|
context 'with a regular user' do
|
|
|
|
|
let(:policies) { described_class.abilities(user, issue).to_set }
|
|
|
|
|
|
|
|
|
|
it 'does not include the read_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the admin_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the update_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'with a user that is a project member' do
|
|
|
|
|
let(:policies) { described_class.abilities(user, issue).to_set }
|
|
|
|
|
|
|
|
|
|
before do
|
|
|
|
|
issue.project.team << [user, :reporter]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the read_issue permission' do
|
|
|
|
|
expect(policies).to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the admin_issue permission' do
|
|
|
|
|
expect(policies).to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'includes the update_issue permission' do
|
|
|
|
|
expect(policies).to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'without a user' do
|
|
|
|
|
let(:policies) { described_class.abilities(nil, issue).to_set }
|
|
|
|
|
|
|
|
|
|
it 'does not include the read_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:read_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the admin_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:admin_issue)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'does not include the update_issue permission' do
|
|
|
|
|
expect(policies).not_to include(:update_issue)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
