gitlab-org--gitlab-foss/spec/controllers/application_controller_spec.rb

require 'spec_helper'

describe ApplicationController do
  describe '#check_password_expiration' do
    let(:user) { create(:user) }
    let(:controller) { ApplicationController.new }

    it 'should redirect if the user is over their password expiry' do
      user.password_expires_at = Time.new(2002)
      expect(user.ldap_user?).to be_falsey
      allow(controller).to receive(:current_user).and_return(user)
      expect(controller).to receive(:redirect_to)
      expect(controller).to receive(:new_profile_password_path)
      controller.send(:check_password_expiration)
    end

    it 'should not redirect if the user is under their password expiry' do
      user.password_expires_at = Time.now + 20010101
      expect(user.ldap_user?).to be_falsey
      allow(controller).to receive(:current_user).and_return(user)
      expect(controller).not_to receive(:redirect_to)
      controller.send(:check_password_expiration)
    end

    it 'should not redirect if the user is over their password expiry but they are an ldap user' do
      user.password_expires_at = Time.new(2002)
      allow(user).to receive(:ldap_user?).and_return(true)
      allow(controller).to receive(:current_user).and_return(user)
      expect(controller).not_to receive(:redirect_to)
      controller.send(:check_password_expiration)
    end
  end

  describe "#authenticate_user_from_private_token!" do
    controller(ApplicationController) do
      def index
        render text: "authenticated"
      end
    end

    let(:user) { create(:user) }

    it "logs the user in when the 'private_token' param is populated with the private token" do
      get :index, private_token: user.private_token
      expect(response.status).to eq(200)
      expect(response.body).to eq("authenticated")
    end

    it "logs the user in when the 'PRIVATE-TOKEN' header is populated with the private token" do
      @request.headers['PRIVATE-TOKEN'] = user.private_token
      get :index
      expect(response.status).to eq(200)
      expect(response.body).to eq("authenticated")
    end

    it "doesn't log the user in otherwise" do
      @request.headers['PRIVATE-TOKEN'] = "token"
      get :index, private_token: "token", authenticity_token: "token"
      expect(response.status).to_not eq(200)
      expect(response.body).to_not eq("authenticated")
    end
  end

  describe "#authenticate_user_from_personal_access_token!" do
    controller(ApplicationController) do
      def index
        render text: 'authenticated'
      end
    end

    let(:user) { create(:user) }
    let(:personal_access_token) { create(:personal_access_token, user: user) }

    it "logs the user in when the 'personal_access_token' param is populated with the personal access token" do
      get :index, private_token: personal_access_token.token
      expect(response.status).to eq(200)
      expect(response.body).to eq('authenticated')
    end

    it "logs the user in when the 'PERSONAL_ACCESS_TOKEN' header is populated with the personal access token" do
      @request.headers["PRIVATE-TOKEN"] = personal_access_token.token
      get :index
      expect(response.status).to eq(200)
      expect(response.body).to eq('authenticated')
    end

    it "doesn't log the user in otherwise" do
      get :index, private_token: "token"
      expect(response.status).to_not eq(200)
      expect(response.body).to_not eq('authenticated')
    end
  end
end
Don't show users password change page if ldap users 2013-09-17 20:37:36 +00:00			`require 'spec_helper'`

			`describe ApplicationController do`
			`describe '#check_password_expiration' do`
			`let(:user) { create(:user) }`
			`let(:controller) { ApplicationController.new }`

			`it 'should redirect if the user is over their password expiry' do`
			`user.password_expires_at = Time.new(2002)`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 18:17:35 +00:00			`expect(user.ldap_user?).to be_falsey`
			`allow(controller).to receive(:current_user).and_return(user)`
			`expect(controller).to receive(:redirect_to)`
			`expect(controller).to receive(:new_profile_password_path)`
Don't show users password change page if ldap users 2013-09-17 20:37:36 +00:00			`controller.send(:check_password_expiration)`
			`end`

			`it 'should not redirect if the user is under their password expiry' do`
			`user.password_expires_at = Time.now + 20010101`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 18:17:35 +00:00			`expect(user.ldap_user?).to be_falsey`
			`allow(controller).to receive(:current_user).and_return(user)`
			`expect(controller).not_to receive(:redirect_to)`
Don't show users password change page if ldap users 2013-09-17 20:37:36 +00:00			`controller.send(:check_password_expiration)`
			`end`

			`it 'should not redirect if the user is over their password expiry but they are an ldap user' do`
			`user.password_expires_at = Time.new(2002)`
Updated rspec to rspec 3.x syntax Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-02-12 18:17:35 +00:00			`allow(user).to receive(:ldap_user?).and_return(true)`
			`allow(controller).to receive(:current_user).and_return(user)`
			`expect(controller).not_to receive(:redirect_to)`
Don't show users password change page if ldap users 2013-09-17 20:37:36 +00:00			`controller.send(:check_password_expiration)`
			`end`
			`end`
Authenticate non-API requests with personal access tokens. - Rename the `authenticate_user_from_token!` filter to `authenticate_user_from_private_token!` - Add a new `authenticate_user_from_personal_access_token!` filter - Add tests for both. 2016-04-19 10:52:15 +00:00
			`describe "#authenticate_user_from_private_token!" do`
			`controller(ApplicationController) do`
			`def index`
			`render text: "authenticated"`
			`end`
			`end`

			`let(:user) { create(:user) }`

			`it "logs the user in when the 'private_token' param is populated with the private token" do`
			`get :index, private_token: user.private_token`
			`expect(response.status).to eq(200)`
			`expect(response.body).to eq("authenticated")`
			`end`

			`it "logs the user in when the 'PRIVATE-TOKEN' header is populated with the private token" do`
			`@request.headers['PRIVATE-TOKEN'] = user.private_token`
			`get :index`
			`expect(response.status).to eq(200)`
			`expect(response.body).to eq("authenticated")`
			`end`

			`it "doesn't log the user in otherwise" do`
			`@request.headers['PRIVATE-TOKEN'] = "token"`
			`get :index, private_token: "token", authenticity_token: "token"`
			`expect(response.status).to_not eq(200)`
			`expect(response.body).to_not eq("authenticated")`
			`end`
			`end`

			`describe "#authenticate_user_from_personal_access_token!" do`
			`controller(ApplicationController) do`
			`def index`
			`render text: 'authenticated'`
			`end`
			`end`

			`let(:user) { create(:user) }`
			`let(:personal_access_token) { create(:personal_access_token, user: user) }`

			`it "logs the user in when the 'personal_access_token' param is populated with the personal access token" do`
Reuse the private token param and header for personal access tokens. - https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3749#note_11626427 - Personal access tokens are still a separate entity as far as the codebase is concerned - they just happen to use the same entry point as private tokens. - Update tests and documentation to reflect this change 2016-05-11 04:46:23 +00:00			`get :index, private_token: personal_access_token.token`
Authenticate non-API requests with personal access tokens. - Rename the `authenticate_user_from_token!` filter to `authenticate_user_from_private_token!` - Add a new `authenticate_user_from_personal_access_token!` filter - Add tests for both. 2016-04-19 10:52:15 +00:00			`expect(response.status).to eq(200)`
			`expect(response.body).to eq('authenticated')`
			`end`

			`it "logs the user in when the 'PERSONAL_ACCESS_TOKEN' header is populated with the personal access token" do`
Reuse the private token param and header for personal access tokens. - https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3749#note_11626427 - Personal access tokens are still a separate entity as far as the codebase is concerned - they just happen to use the same entry point as private tokens. - Update tests and documentation to reflect this change 2016-05-11 04:46:23 +00:00			`@request.headers["PRIVATE-TOKEN"] = personal_access_token.token`
Authenticate non-API requests with personal access tokens. - Rename the `authenticate_user_from_token!` filter to `authenticate_user_from_private_token!` - Add a new `authenticate_user_from_personal_access_token!` filter - Add tests for both. 2016-04-19 10:52:15 +00:00			`get :index`
			`expect(response.status).to eq(200)`
			`expect(response.body).to eq('authenticated')`
			`end`

			`it "doesn't log the user in otherwise" do`
Reuse the private token param and header for personal access tokens. - https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3749#note_11626427 - Personal access tokens are still a separate entity as far as the codebase is concerned - they just happen to use the same entry point as private tokens. - Update tests and documentation to reflect this change 2016-05-11 04:46:23 +00:00			`get :index, private_token: "token"`
Authenticate non-API requests with personal access tokens. - Rename the `authenticate_user_from_token!` filter to `authenticate_user_from_private_token!` - Add a new `authenticate_user_from_personal_access_token!` filter - Add tests for both. 2016-04-19 10:52:15 +00:00			`expect(response.status).to_not eq(200)`
			`expect(response.body).to_not eq('authenticated')`
			`end`
			`end`
Add trailing newline to all text files. Present in the large majority of files of each respective type. 2014-06-21 09:18:57 +00:00			`end`