2012-07-24 08:19:51 -04:00
|
|
|
require 'spec_helper'
|
|
|
|
|
|
2014-04-11 15:45:56 -04:00
|
|
|
describe API::API, api: true do
|
2012-08-25 13:31:50 -04:00
|
|
|
include ApiHelpers
|
2016-03-18 14:11:25 -04:00
|
|
|
let(:user) { create(:user) }
|
2016-04-08 08:17:42 -04:00
|
|
|
let(:user2) { create(:user) }
|
2016-03-18 14:11:25 -04:00
|
|
|
let(:non_member) { create(:user) }
|
|
|
|
|
let(:author) { create(:author) }
|
|
|
|
|
let(:assignee) { create(:assignee) }
|
|
|
|
|
let(:admin) { create(:user, :admin) }
|
2016-04-07 08:07:17 -04:00
|
|
|
let!(:project) { create(:project, :public, creator_id: user.id, namespace: user.namespace ) }
|
2014-09-04 18:01:12 -04:00
|
|
|
let!(:closed_issue) do
|
|
|
|
|
create :closed_issue,
|
|
|
|
|
author: user,
|
|
|
|
|
assignee: user,
|
|
|
|
|
project: project,
|
|
|
|
|
state: :closed,
|
|
|
|
|
milestone: milestone
|
|
|
|
|
end
|
2016-03-17 16:45:00 -04:00
|
|
|
let!(:confidential_issue) do
|
|
|
|
|
create :issue,
|
|
|
|
|
:confidential,
|
|
|
|
|
project: project,
|
|
|
|
|
author: author,
|
|
|
|
|
assignee: assignee
|
|
|
|
|
end
|
2014-09-04 18:01:12 -04:00
|
|
|
let!(:issue) do
|
|
|
|
|
create :issue,
|
|
|
|
|
author: user,
|
|
|
|
|
assignee: user,
|
|
|
|
|
project: project,
|
|
|
|
|
milestone: milestone
|
|
|
|
|
end
|
2014-08-14 04:17:52 -04:00
|
|
|
let!(:label) do
|
|
|
|
|
create(:label, title: 'label', color: '#FFAABB', project: project)
|
|
|
|
|
end
|
2014-08-14 10:17:19 -04:00
|
|
|
let!(:label_link) { create(:label_link, label: label, target: issue) }
|
2014-09-04 18:01:12 -04:00
|
|
|
let!(:milestone) { create(:milestone, title: '1.0.0', project: project) }
|
|
|
|
|
let!(:empty_milestone) do
|
|
|
|
|
create(:milestone, title: '2.0.0', project: project)
|
|
|
|
|
end
|
2016-03-15 11:17:24 -04:00
|
|
|
let!(:note) { create(:note_on_issue, author: user, project: project, noteable: issue) }
|
2014-08-14 04:17:52 -04:00
|
|
|
|
2013-01-04 11:50:31 -05:00
|
|
|
before { project.team << [user, :reporter] }
|
2012-07-24 08:19:51 -04:00
|
|
|
|
|
|
|
|
describe "GET /issues" do
|
2012-09-12 08:11:56 -04:00
|
|
|
context "when unauthenticated" do
|
|
|
|
|
it "should return authentication error" do
|
|
|
|
|
get api("/issues")
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(401)
|
2012-09-12 08:11:56 -04:00
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
|
2012-09-12 08:11:56 -04:00
|
|
|
context "when authenticated" do
|
2012-07-24 08:19:51 -04:00
|
|
|
it "should return an array of issues" do
|
2012-08-25 13:43:55 -04:00
|
|
|
get api("/issues", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
2013-10-29 05:41:20 -04:00
|
|
|
|
2016-02-02 08:34:46 -05:00
|
|
|
it "should add pagination headers and keep query params" do
|
|
|
|
|
get api("/issues?state=closed&per_page=3", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.headers['Link']).to eq(
|
2016-02-02 08:34:46 -05:00
|
|
|
'<http://www.example.com/api/v3/issues?page=1&per_page=3&private_token=%s&state=closed>; rel="first", <http://www.example.com/api/v3/issues?page=1&per_page=3&private_token=%s&state=closed>; rel="last"' % [user.private_token, user.private_token]
|
2015-02-12 13:17:35 -05:00
|
|
|
)
|
2013-10-29 05:41:20 -04:00
|
|
|
end
|
2014-08-14 06:41:16 -04:00
|
|
|
|
|
|
|
|
it 'should return an array of closed issues' do
|
|
|
|
|
get api('/issues?state=closed', user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['id']).to eq(closed_issue.id)
|
2014-08-14 06:41:16 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of opened issues' do
|
|
|
|
|
get api('/issues?state=opened', user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['id']).to eq(issue.id)
|
2014-08-14 06:41:16 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of all issues' do
|
|
|
|
|
get api('/issues?state=all', user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(2)
|
|
|
|
|
expect(json_response.first['id']).to eq(issue.id)
|
|
|
|
|
expect(json_response.second['id']).to eq(closed_issue.id)
|
2014-08-14 06:41:16 -04:00
|
|
|
end
|
2014-08-14 10:17:19 -04:00
|
|
|
|
|
|
|
|
it 'should return an array of labeled issues' do
|
|
|
|
|
get api("/issues?labels=#{label.title}", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['labels']).to eq([label.title])
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of labeled issues when at least one label matches' do
|
|
|
|
|
get api("/issues?labels=#{label.title},foo,bar", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['labels']).to eq([label.title])
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an empty array if no issue matches labels' do
|
|
|
|
|
get api('/issues?labels=foo,bar', user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(0)
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of labeled issues matching given state' do
|
|
|
|
|
get api("/issues?labels=#{label.title}&state=opened", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['labels']).to eq([label.title])
|
|
|
|
|
expect(json_response.first['state']).to eq('opened')
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an empty array if no issue matches labels and state filters' do
|
|
|
|
|
get api("/issues?labels=#{label.title}&state=closed", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(0)
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "GET /projects/:id/issues" do
|
2014-09-04 18:01:12 -04:00
|
|
|
let(:base_url) { "/projects/#{project.id}" }
|
|
|
|
|
let(:title) { milestone.title }
|
|
|
|
|
|
2016-03-17 16:45:00 -04:00
|
|
|
it 'should return project issues without confidential issues for non project members' do
|
|
|
|
|
get api("#{base_url}/issues", non_member)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(2)
|
|
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return project confidential issues for author' do
|
|
|
|
|
get api("#{base_url}/issues", author)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(3)
|
|
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return project confidential issues for assignee' do
|
|
|
|
|
get api("#{base_url}/issues", assignee)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(3)
|
|
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return project issues with confidential issues for project members' do
|
2014-09-04 18:01:12 -04:00
|
|
|
get api("#{base_url}/issues", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
2016-03-17 16:45:00 -04:00
|
|
|
expect(json_response.length).to eq(3)
|
|
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return project confidential issues for admin' do
|
|
|
|
|
get api("#{base_url}/issues", admin)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(3)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(json_response.first['title']).to eq(issue.title)
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
2014-08-14 10:17:19 -04:00
|
|
|
|
|
|
|
|
it 'should return an array of labeled project issues' do
|
2014-09-04 18:01:12 -04:00
|
|
|
get api("#{base_url}/issues?labels=#{label.title}", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['labels']).to eq([label.title])
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of labeled project issues when at least one label matches' do
|
2014-09-04 18:01:12 -04:00
|
|
|
get api("#{base_url}/issues?labels=#{label.title},foo,bar", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['labels']).to eq([label.title])
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an empty array if no project issue matches labels' do
|
2014-09-04 18:01:12 -04:00
|
|
|
get api("#{base_url}/issues?labels=foo,bar", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(0)
|
2014-09-04 18:01:12 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an empty array if no issue matches milestone' do
|
|
|
|
|
get api("#{base_url}/issues?milestone=#{empty_milestone.title}", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(0)
|
2014-08-14 10:17:19 -04:00
|
|
|
end
|
2014-09-04 18:01:12 -04:00
|
|
|
|
|
|
|
|
it 'should return an empty array if milestone does not exist' do
|
|
|
|
|
get api("#{base_url}/issues?milestone=foo", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(0)
|
2014-09-04 18:01:12 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of issues in given milestone' do
|
|
|
|
|
get api("#{base_url}/issues?milestone=#{title}", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(2)
|
|
|
|
|
expect(json_response.first['id']).to eq(issue.id)
|
|
|
|
|
expect(json_response.second['id']).to eq(closed_issue.id)
|
2014-09-04 18:01:12 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return an array of issues matching state in milestone' do
|
|
|
|
|
get api("#{base_url}/issues?milestone=#{milestone.title}"\
|
|
|
|
|
'&state=closed', user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response).to be_an Array
|
|
|
|
|
expect(json_response.length).to eq(1)
|
|
|
|
|
expect(json_response.first['id']).to eq(closed_issue.id)
|
2014-09-04 18:01:12 -04:00
|
|
|
end
|
2016-03-15 11:17:24 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "GET /projects/:id/issues/:issue_id" do
|
|
|
|
|
it 'exposes known attributes' do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{issue.id}", user)
|
2016-02-23 16:59:32 -05:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(200)
|
2016-03-15 11:17:24 -04:00
|
|
|
expect(json_response['id']).to eq(issue.id)
|
|
|
|
|
expect(json_response['iid']).to eq(issue.iid)
|
|
|
|
|
expect(json_response['project_id']).to eq(issue.project.id)
|
|
|
|
|
expect(json_response['title']).to eq(issue.title)
|
|
|
|
|
expect(json_response['description']).to eq(issue.description)
|
|
|
|
|
expect(json_response['state']).to eq(issue.state)
|
|
|
|
|
expect(json_response['created_at']).to be_present
|
|
|
|
|
expect(json_response['updated_at']).to be_present
|
|
|
|
|
expect(json_response['labels']).to eq(issue.label_names)
|
|
|
|
|
expect(json_response['milestone']).to be_a Hash
|
|
|
|
|
expect(json_response['assignee']).to be_a Hash
|
|
|
|
|
expect(json_response['author']).to be_a Hash
|
2016-02-23 16:59:32 -05:00
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
|
|
|
|
|
it "should return a project issue by id" do
|
2013-01-02 12:46:06 -05:00
|
|
|
get api("/projects/#{project.id}/issues/#{issue.id}", user)
|
2016-03-15 11:17:24 -04:00
|
|
|
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq(issue.title)
|
|
|
|
|
expect(json_response['iid']).to eq(issue.iid)
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
2013-02-27 08:36:20 -05:00
|
|
|
|
2015-01-17 17:45:39 -05:00
|
|
|
it 'should return a project issue by iid' do
|
|
|
|
|
get api("/projects/#{project.id}/issues?iid=#{issue.iid}", user)
|
2015-06-13 18:24:51 -04:00
|
|
|
expect(response.status).to eq 200
|
|
|
|
|
expect(json_response.first['title']).to eq issue.title
|
|
|
|
|
expect(json_response.first['id']).to eq issue.id
|
|
|
|
|
expect(json_response.first['iid']).to eq issue.iid
|
2015-01-17 17:45:39 -05:00
|
|
|
end
|
|
|
|
|
|
2013-02-27 08:36:20 -05:00
|
|
|
it "should return 404 if issue id not found" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/54321", user)
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(404)
|
2013-02-27 08:36:20 -05:00
|
|
|
end
|
2016-03-17 16:45:00 -04:00
|
|
|
|
|
|
|
|
context 'confidential issues' do
|
|
|
|
|
it "should return 404 for non project members" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{confidential_issue.id}", non_member)
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should return confidential issue for project members" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{confidential_issue.id}", user)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq(confidential_issue.title)
|
|
|
|
|
expect(json_response['iid']).to eq(confidential_issue.iid)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should return confidential issue for author" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{confidential_issue.id}", author)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq(confidential_issue.title)
|
|
|
|
|
expect(json_response['iid']).to eq(confidential_issue.iid)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should return confidential issue for assignee" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{confidential_issue.id}", assignee)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq(confidential_issue.title)
|
|
|
|
|
expect(json_response['iid']).to eq(confidential_issue.iid)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should return confidential issue for admin" do
|
|
|
|
|
get api("/projects/#{project.id}/issues/#{confidential_issue.id}", admin)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq(confidential_issue.title)
|
|
|
|
|
expect(json_response['iid']).to eq(confidential_issue.iid)
|
|
|
|
|
end
|
|
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "POST /projects/:id/issues" do
|
|
|
|
|
it "should create a new project issue" do
|
2013-01-02 12:46:06 -05:00
|
|
|
post api("/projects/#{project.id}/issues", user),
|
2012-08-10 18:07:50 -04:00
|
|
|
title: 'new issue', labels: 'label, label2'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(201)
|
|
|
|
|
expect(json_response['title']).to eq('new issue')
|
|
|
|
|
expect(json_response['description']).to be_nil
|
|
|
|
|
expect(json_response['labels']).to eq(['label', 'label2'])
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
2013-02-27 08:36:20 -05:00
|
|
|
|
|
|
|
|
it "should return a 400 bad request if title not given" do
|
|
|
|
|
post api("/projects/#{project.id}/issues", user), labels: 'label, label2'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
2013-02-27 08:36:20 -05:00
|
|
|
end
|
2014-08-14 04:17:52 -04:00
|
|
|
|
2014-08-17 16:22:01 -04:00
|
|
|
it 'should return 400 on invalid label names' do
|
2014-08-14 04:17:52 -04:00
|
|
|
post api("/projects/#{project.id}/issues", user),
|
|
|
|
|
title: 'new issue',
|
|
|
|
|
labels: 'label, ?'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']['labels']['?']['title']).to eq(['is invalid'])
|
2014-08-14 04:17:52 -04:00
|
|
|
end
|
2014-08-18 14:09:09 -04:00
|
|
|
|
|
|
|
|
it 'should return 400 if title is too long' do
|
|
|
|
|
post api("/projects/#{project.id}/issues", user),
|
|
|
|
|
title: 'g' * 256
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']['title']).to eq([
|
2014-08-18 14:09:09 -04:00
|
|
|
'is too long (maximum is 255 characters)'
|
2015-02-12 13:17:35 -05:00
|
|
|
])
|
2014-08-18 14:09:09 -04:00
|
|
|
end
|
2016-03-25 17:21:50 -04:00
|
|
|
|
|
|
|
|
context 'when an admin or owner makes the request' do
|
2016-04-05 13:05:55 -04:00
|
|
|
it 'accepts the creation date to be set' do
|
|
|
|
|
creation_time = 2.weeks.ago
|
2016-03-25 17:21:50 -04:00
|
|
|
post api("/projects/#{project.id}/issues", user),
|
2016-04-05 13:05:55 -04:00
|
|
|
title: 'new issue', labels: 'label, label2', created_at: creation_time
|
2016-03-25 17:21:50 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(201)
|
2016-04-05 13:05:55 -04:00
|
|
|
expect(Time.parse(json_response['created_at'])).to be_within(1.second).of(creation_time)
|
2016-03-25 17:21:50 -04:00
|
|
|
end
|
|
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
|
2016-01-09 14:30:34 -05:00
|
|
|
describe 'POST /projects/:id/issues with spam filtering' do
|
|
|
|
|
before do
|
|
|
|
|
Grape::Endpoint.before_each do |endpoint|
|
|
|
|
|
allow(endpoint).to receive(:check_for_spam?).and_return(true)
|
|
|
|
|
allow(endpoint).to receive(:is_spam?).and_return(true)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2016-01-26 16:51:52 -05:00
|
|
|
let(:params) do
|
|
|
|
|
{
|
|
|
|
|
title: 'new issue',
|
|
|
|
|
description: 'content here',
|
|
|
|
|
labels: 'label, label2'
|
|
|
|
|
}
|
|
|
|
|
end
|
2016-01-26 15:08:20 -05:00
|
|
|
|
2016-01-26 16:51:52 -05:00
|
|
|
it "should not create a new project issue" do
|
|
|
|
|
expect { post api("/projects/#{project.id}/issues", user), params }.not_to change(Issue, :count)
|
2016-01-09 14:30:34 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']).to eq({ "error" => "Spam detected" })
|
2016-01-26 15:08:20 -05:00
|
|
|
|
2016-01-09 14:30:34 -05:00
|
|
|
spam_logs = SpamLog.all
|
|
|
|
|
expect(spam_logs.count).to eq(1)
|
|
|
|
|
expect(spam_logs[0].title).to eq('new issue')
|
2016-01-26 15:08:20 -05:00
|
|
|
expect(spam_logs[0].description).to eq('content here')
|
2016-01-09 14:30:34 -05:00
|
|
|
expect(spam_logs[0].user).to eq(user)
|
|
|
|
|
expect(spam_logs[0].noteable_type).to eq('Issue')
|
|
|
|
|
expect(spam_logs[0].project_id).to eq(project.id)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2013-02-18 04:10:58 -05:00
|
|
|
describe "PUT /projects/:id/issues/:issue_id to update only title" do
|
2012-07-24 08:19:51 -04:00
|
|
|
it "should update a project issue" do
|
2013-01-02 12:46:06 -05:00
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
2013-02-18 04:10:58 -05:00
|
|
|
title: 'updated title'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
2013-02-18 04:10:58 -05:00
|
|
|
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(json_response['title']).to eq('updated title')
|
2013-02-18 04:10:58 -05:00
|
|
|
end
|
2013-02-27 08:36:20 -05:00
|
|
|
|
|
|
|
|
it "should return 404 error if issue id not found" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/44444", user),
|
|
|
|
|
title: 'updated title'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(404)
|
2013-02-27 08:36:20 -05:00
|
|
|
end
|
2014-08-14 04:17:52 -04:00
|
|
|
|
2014-08-17 16:22:01 -04:00
|
|
|
it 'should return 400 on invalid label names' do
|
2014-08-14 04:17:52 -04:00
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
title: 'updated title',
|
|
|
|
|
labels: 'label, ?'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']['labels']['?']['title']).to eq(['is invalid'])
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
2016-03-17 16:45:00 -04:00
|
|
|
|
|
|
|
|
context 'confidential issues' do
|
|
|
|
|
it "should return 403 for non project members" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{confidential_issue.id}", non_member),
|
|
|
|
|
title: 'updated title'
|
|
|
|
|
expect(response.status).to eq(403)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should update a confidential issue for project members" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{confidential_issue.id}", user),
|
|
|
|
|
title: 'updated title'
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq('updated title')
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should update a confidential issue for author" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{confidential_issue.id}", author),
|
|
|
|
|
title: 'updated title'
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq('updated title')
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it "should update a confidential issue for admin" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{confidential_issue.id}", admin),
|
|
|
|
|
title: 'updated title'
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['title']).to eq('updated title')
|
|
|
|
|
end
|
|
|
|
|
end
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe 'PUT /projects/:id/issues/:issue_id to update labels' do
|
|
|
|
|
let!(:label) { create(:label, title: 'dummy', project: project) }
|
|
|
|
|
let!(:label_link) { create(:label_link, label: label, target: issue) }
|
|
|
|
|
|
|
|
|
|
it 'should not update labels if not present' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
title: 'updated title'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['labels']).to eq([label.title])
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should remove all labels' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: ''
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['labels']).to eq([])
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should update labels' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: 'foo,bar'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['labels']).to include 'foo'
|
|
|
|
|
expect(json_response['labels']).to include 'bar'
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should return 400 on invalid label names' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: 'label, ?'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']['labels']['?']['title']).to eq(['is invalid'])
|
2014-08-17 16:22:01 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'should allow special label names' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: 'label:foo, label-bar,label_bar,label/bar'
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['labels']).to include 'label:foo'
|
|
|
|
|
expect(json_response['labels']).to include 'label-bar'
|
|
|
|
|
expect(json_response['labels']).to include 'label_bar'
|
|
|
|
|
expect(json_response['labels']).to include 'label/bar'
|
2014-08-14 04:17:52 -04:00
|
|
|
end
|
2014-08-18 14:09:09 -04:00
|
|
|
|
|
|
|
|
it 'should return 400 if title is too long' do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
title: 'g' * 256
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']['title']).to eq([
|
2014-08-18 14:09:09 -04:00
|
|
|
'is too long (maximum is 255 characters)'
|
2015-02-12 13:17:35 -05:00
|
|
|
])
|
2014-08-18 14:09:09 -04:00
|
|
|
end
|
2013-02-18 04:10:58 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "PUT /projects/:id/issues/:issue_id to update state and label" do
|
|
|
|
|
it "should update a project issue" do
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: 'label2', state_event: "close"
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(response.status).to eq(200)
|
2013-02-18 04:10:58 -05:00
|
|
|
|
2015-02-12 13:17:35 -05:00
|
|
|
expect(json_response['labels']).to include 'label2'
|
|
|
|
|
expect(json_response['state']).to eq "closed"
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
2016-04-05 13:05:55 -04:00
|
|
|
|
|
|
|
|
context 'when an admin or owner makes the request' do
|
|
|
|
|
it 'accepts the update date to be set' do
|
|
|
|
|
update_time = 2.weeks.ago
|
|
|
|
|
put api("/projects/#{project.id}/issues/#{issue.id}", user),
|
|
|
|
|
labels: 'label3', state_event: 'close', updated_at: update_time
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
|
|
|
|
|
expect(json_response['labels']).to include 'label3'
|
|
|
|
|
expect(Time.parse(json_response['updated_at'])).to be_within(1.second).of(update_time)
|
|
|
|
|
end
|
|
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "DELETE /projects/:id/issues/:issue_id" do
|
2016-03-21 09:12:52 -04:00
|
|
|
it "rejects a non member from deleting an issue" do
|
2016-03-18 14:11:25 -04:00
|
|
|
delete api("/projects/#{project.id}/issues/#{issue.id}", non_member)
|
|
|
|
|
expect(response.status).to be(403)
|
2016-02-26 03:55:43 -05:00
|
|
|
end
|
|
|
|
|
|
2016-03-21 09:12:52 -04:00
|
|
|
it "rejects a developer from deleting an issue" do
|
2016-03-18 14:11:25 -04:00
|
|
|
delete api("/projects/#{project.id}/issues/#{issue.id}", author)
|
|
|
|
|
expect(response.status).to be(403)
|
|
|
|
|
end
|
2016-02-26 03:55:43 -05:00
|
|
|
|
2016-03-21 09:12:52 -04:00
|
|
|
context "when the user is project owner" do
|
|
|
|
|
let(:owner) { create(:user) }
|
|
|
|
|
let(:project) { create(:project, namespace: owner.namespace) }
|
|
|
|
|
|
|
|
|
|
it "deletes the issue if an admin requests it" do
|
|
|
|
|
delete api("/projects/#{project.id}/issues/#{issue.id}", owner)
|
|
|
|
|
expect(response.status).to eq(200)
|
|
|
|
|
expect(json_response['state']).to eq 'opened'
|
|
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
|
|
|
|
end
|
2016-04-07 08:07:17 -04:00
|
|
|
|
|
|
|
|
describe '/projects/:id/issues/:issue_id/move' do
|
|
|
|
|
let!(:target_project) { create(:project, path: 'project2', creator_id: user.id, namespace: user.namespace ) }
|
|
|
|
|
let!(:target_project2) { create(:project, creator_id: non_member.id, namespace: non_member.namespace ) }
|
|
|
|
|
|
|
|
|
|
it 'moves an issue' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/move", user),
|
2016-04-12 12:38:18 -04:00
|
|
|
to_project_id: target_project.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(201)
|
|
|
|
|
expect(json_response['project_id']).to eq(target_project.id)
|
|
|
|
|
end
|
|
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
context 'when source and target projects are the same' do
|
|
|
|
|
it 'returns 400 when trying to move an issue' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/move", user),
|
|
|
|
|
to_project_id: project.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']).to eq('Cannot move issue to project it originates from!')
|
|
|
|
|
end
|
2016-04-07 08:07:17 -04:00
|
|
|
end
|
|
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
context 'when the user does not have the permission to move issues' do
|
|
|
|
|
it 'returns 400 when trying to move an issue' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/move", user),
|
|
|
|
|
to_project_id: target_project2.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
expect(response.status).to eq(400)
|
|
|
|
|
expect(json_response['message']).to eq('Cannot move issue due to insufficient permissions!')
|
|
|
|
|
end
|
2016-04-07 08:07:17 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'moves the issue to another namespace if I am admin' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/move", admin),
|
2016-04-12 12:38:18 -04:00
|
|
|
to_project_id: target_project2.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(201)
|
|
|
|
|
expect(json_response['project_id']).to eq(target_project2.id)
|
|
|
|
|
end
|
|
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
context 'when issue does not exist' do
|
|
|
|
|
it 'returns 404 when trying to move an issue' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/123/move", user),
|
|
|
|
|
to_project_id: target_project.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-04-07 08:07:17 -04:00
|
|
|
end
|
|
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
context 'when source project does not exist' do
|
|
|
|
|
it 'returns 404 when trying to move an issue' do
|
|
|
|
|
post api("/projects/123/issues/#{issue.id}/move", user),
|
|
|
|
|
to_project_id: target_project.id
|
2016-04-07 08:07:17 -04:00
|
|
|
|
2016-04-12 12:38:18 -04:00
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
context 'when target project does not exist' do
|
|
|
|
|
it 'returns 404 when trying to move an issue' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/move", user),
|
|
|
|
|
to_project_id: 123
|
|
|
|
|
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-04-07 08:07:17 -04:00
|
|
|
end
|
|
|
|
|
end
|
2016-04-08 08:17:42 -04:00
|
|
|
|
2016-04-12 08:46:59 -04:00
|
|
|
describe 'POST :id/issues/:issue_id/subscription' do
|
2016-04-08 08:17:42 -04:00
|
|
|
it 'subscribes to an issue' do
|
2016-04-12 08:46:59 -04:00
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/subscription", user2)
|
2016-04-08 08:17:42 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(201)
|
|
|
|
|
expect(json_response['subscribed']).to eq(true)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'returns 304 if already subscribed' do
|
2016-04-12 08:46:59 -04:00
|
|
|
post api("/projects/#{project.id}/issues/#{issue.id}/subscription", user)
|
2016-04-08 08:17:42 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(304)
|
|
|
|
|
end
|
2016-04-12 08:46:59 -04:00
|
|
|
|
|
|
|
|
it 'returns 404 if the issue is not found' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/123/subscription", user)
|
|
|
|
|
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-05-12 16:48:09 -04:00
|
|
|
|
|
|
|
|
it 'returns 404 if the issue is confidential' do
|
|
|
|
|
post api("/projects/#{project.id}/issues/#{confidential_issue.id}/subscription", non_member)
|
|
|
|
|
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-04-08 08:17:42 -04:00
|
|
|
end
|
|
|
|
|
|
2016-04-12 08:46:59 -04:00
|
|
|
describe 'DELETE :id/issues/:issue_id/subscription' do
|
2016-04-08 08:17:42 -04:00
|
|
|
it 'unsubscribes from an issue' do
|
2016-04-13 10:30:20 -04:00
|
|
|
delete api("/projects/#{project.id}/issues/#{issue.id}/subscription", user)
|
2016-04-08 08:17:42 -04:00
|
|
|
|
2016-04-12 08:46:59 -04:00
|
|
|
expect(response.status).to eq(200)
|
2016-04-08 08:17:42 -04:00
|
|
|
expect(json_response['subscribed']).to eq(false)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
it 'returns 304 if not subscribed' do
|
2016-04-13 10:30:20 -04:00
|
|
|
delete api("/projects/#{project.id}/issues/#{issue.id}/subscription", user2)
|
2016-04-08 08:17:42 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(304)
|
|
|
|
|
end
|
2016-04-12 08:46:59 -04:00
|
|
|
|
|
|
|
|
it 'returns 404 if the issue is not found' do
|
2016-04-13 10:30:20 -04:00
|
|
|
delete api("/projects/#{project.id}/issues/123/subscription", user)
|
2016-04-12 08:46:59 -04:00
|
|
|
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-05-12 16:48:09 -04:00
|
|
|
|
|
|
|
|
it 'returns 404 if the issue is confidential' do
|
|
|
|
|
delete api("/projects/#{project.id}/issues/#{confidential_issue.id}/subscription", non_member)
|
|
|
|
|
|
|
|
|
|
expect(response.status).to eq(404)
|
|
|
|
|
end
|
2016-04-08 08:17:42 -04:00
|
|
|
end
|
2012-07-24 08:19:51 -04:00
|
|
|
end
|
