gitlab-org--gitlab-foss/spec/features/security/profile_access_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe "Profile access" do
  include AccessMatchers

  describe "GET /-/profile/keys" do
    subject { profile_keys_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end

  describe "GET /-/profile" do
    subject { profile_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end

  describe "GET /-/profile/account" do
    subject { profile_account_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end

  describe "GET /-/profile/preferences" do
    subject { profile_preferences_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end

  describe "GET /-/profile/audit_log" do
    subject { audit_log_profile_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end

  describe "GET /-/profile/notifications" do
    subject { profile_notifications_path }

    it { is_expected.to be_allowed_for :admin }
    it { is_expected.to be_allowed_for :user }
    it { is_expected.to be_denied_for :visitor }
  end
end
Show Test Automation Engineer for spec/feature as reviewers. 2019-05-23 18:07:59 +00:00			`# frozen_string_literal: true`

init commit 2011-10-08 21:36:38 +00:00			`require 'spec_helper'`

Add latest changes from gitlab-org/gitlab@master 2020-06-03 18:08:28 +00:00			`RSpec.describe "Profile access" do`
Move access-related matchers to their own module 2015-07-22 02:09:02 +00:00			`include AccessMatchers`

Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile/keys" do`
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`subject { profile_keys_path }`
Clean up request specs 2012-08-25 17:43:55 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
			`end`
init commit 2011-10-08 21:36:38 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile" do`
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`subject { profile_path }`
Refactored profile to resource. Added missing flash notice on successfull updated. Update username via ajax 2012-12-02 11:29:24 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
			`end`
Refactored profile to resource. Added missing flash notice on successfull updated. Update username via ajax 2012-12-02 11:29:24 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile/account" do`
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`subject { profile_account_path }`
Clean up request specs 2012-08-25 17:43:55 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
			`end`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile/preferences" do`
Add Profiles::PreferencesController 2015-06-05 18:00:21 +00:00			`subject { profile_preferences_path }`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
			`end`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile/audit_log" do`
Audit log for user authentication 2015-07-03 11:54:50 +00:00			`subject { audit_log_profile_path }`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
			`end`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-01-18 15:10:42 +00:00			`describe "GET /-/profile/notifications" do`
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`subject { profile_notifications_path }`
Extend profile security specs 2013-09-25 11:05:03 +00:00
Move Profile groups tests to Dashboard group tests 2015-03-09 03:52:22 +00:00			`it { is_expected.to be_allowed_for :admin }`
			`it { is_expected.to be_allowed_for :user }`
			`it { is_expected.to be_denied_for :visitor }`
init commit 2011-10-08 21:36:38 +00:00			`end`
			`end`