104 lines
2.6 KiB
Ruby
104 lines
2.6 KiB
Ruby
|
require 'spec_helper'
|
||
|
|
||
|
describe Ci::TriggerPolicy, :models do
|
||
|
let(:user) { create(:user) }
|
||
|
let(:project) { create(:empty_project) }
|
||
|
let(:trigger) { create(:ci_trigger, project: project, owner: owner) }
|
||
|
|
||
|
let(:policies) do
|
||
|
described_class.abilities(user, trigger).to_set
|
||
|
end
|
||
|
|
||
|
shared_examples 'allows to admin and manage trigger' do
|
||
|
it 'does include ability to admin trigger' do
|
||
|
expect(policies).to include :admin_trigger
|
||
|
end
|
||
|
|
||
|
it 'does include ability to manage trigger' do
|
||
|
expect(policies).to include :manage_trigger
|
||
|
end
|
||
|
end
|
||
|
|
||
|
shared_examples 'allows to manage trigger' do
|
||
|
it 'does not include ability to admin trigger' do
|
||
|
expect(policies).not_to include :admin_trigger
|
||
|
end
|
||
|
|
||
|
it 'does include ability to manage trigger' do
|
||
|
expect(policies).to include :manage_trigger
|
||
|
end
|
||
|
end
|
||
|
|
||
|
shared_examples 'disallows to admin and manage trigger' do
|
||
|
it 'does not include ability to admin trigger' do
|
||
|
expect(policies).not_to include :admin_trigger
|
||
|
end
|
||
|
|
||
|
it 'does not include ability to manage trigger' do
|
||
|
expect(policies).not_to include :manage_trigger
|
||
|
end
|
||
|
end
|
||
|
|
||
|
describe '#rules' do
|
||
|
context 'when owner is undefined' do
|
||
|
let(:owner) { nil }
|
||
|
|
||
|
context 'when user is master of the project' do
|
||
|
before do
|
||
|
project.team << [user, :master]
|
||
|
end
|
||
|
|
||
|
it_behaves_like 'allows to admin and manage trigger'
|
||
|
end
|
||
|
|
||
|
context 'when user is developer of the project' do
|
||
|
before do
|
||
|
project.team << [user, :developer]
|
||
|
end
|
||
|
|
||
|
it_behaves_like 'disallows to admin and manage trigger'
|
||
|
end
|
||
|
|
||
|
context 'when user is not member of the project' do
|
||
|
it_behaves_like 'disallows to admin and manage trigger'
|
||
|
end
|
||
|
end
|
||
|
|
||
|
context 'when owner is an user' do
|
||
|
let(:owner) { user }
|
||
|
|
||
|
context 'when user is master of the project' do
|
||
|
before do
|
||
|
project.team << [user, :master]
|
||
|
end
|
||
|
|
||
|
it_behaves_like 'allows to admin and manage trigger'
|
||
|
end
|
||
|
end
|
||
|
|
||
|
context 'when owner is another user' do
|
||
|
let(:owner) { create(:user) }
|
||
|
|
||
|
context 'when user is master of the project' do
|
||
|
before do
|
||
|
project.team << [user, :master]
|
||
|
end
|
||
|
|
||
|
it_behaves_like 'allows to manage trigger'
|
||
|
end
|
||
|
|
||
|
context 'when user is developer of the project' do
|
||
|
before do
|
||
|
project.team << [user, :developer]
|
||
|
end
|
||
|
|
||
|
it_behaves_like 'disallows to admin and manage trigger'
|
||
|
end
|
||
|
|
||
|
context 'when user is not member of the project' do
|
||
|
it_behaves_like 'disallows to admin and manage trigger'
|
||
|
end
|
||
|
end
|
||
|
end
|
||
|
end
|