gitlab-org--gitlab-foss/spec/requests/api/internal_spec.rb

208 lines
4.6 KiB
Ruby
Raw Normal View History

2013-02-26 15:53:59 -05:00
require 'spec_helper'
2014-04-11 15:45:56 -04:00
describe API::API, api: true do
2013-02-26 15:53:59 -05:00
include ApiHelpers
let(:user) { create(:user) }
let(:key) { create(:key, user: user) }
let(:project) { create(:project) }
2014-10-15 11:26:15 -04:00
let(:secret_token) { File.read Rails.root.join('.gitlab_shell_secret') }
2013-02-26 15:53:59 -05:00
describe "GET /internal/check", no_db: true do
it do
2014-10-15 11:26:15 -04:00
get api("/internal/check"), secret_token: secret_token
2013-02-26 15:53:59 -05:00
response.status.should == 200
json_response['api_version'].should == API::API.version
2013-02-26 15:53:59 -05:00
end
end
describe "GET /internal/discover" do
it do
2014-10-15 11:26:15 -04:00
get(api("/internal/discover"), key_id: key.id, secret_token: secret_token)
2013-02-26 15:53:59 -05:00
response.status.should == 200
2013-03-11 09:47:44 -04:00
json_response['name'].should == user.name
2013-02-26 15:53:59 -05:00
end
end
describe "POST /internal/allowed" do
2013-02-26 15:53:59 -05:00
context "access granted" do
before do
project.team << [user, :developer]
end
context "git pull" do
it do
2013-03-07 07:18:30 -05:00
pull(key, project)
2013-02-26 15:53:59 -05:00
response.status.should == 200
JSON.parse(response.body)["status"].should be_true
2013-02-26 15:53:59 -05:00
end
end
context "git push" do
it do
2013-03-07 07:18:30 -05:00
push(key, project)
2013-02-26 15:53:59 -05:00
response.status.should == 200
JSON.parse(response.body)["status"].should be_true
2013-02-26 15:53:59 -05:00
end
end
end
context "access denied" do
before do
project.team << [user, :guest]
end
context "git pull" do
it do
2013-03-07 07:18:30 -05:00
pull(key, project)
2013-02-26 15:53:59 -05:00
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
2013-02-26 15:53:59 -05:00
end
end
context "git push" do
it do
2013-03-07 07:18:30 -05:00
push(key, project)
2013-02-26 15:53:59 -05:00
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
2013-02-26 15:53:59 -05:00
end
end
end
2013-03-07 07:18:30 -05:00
context "blocked user" do
let(:personal_project) { create(:project, namespace: user.namespace) }
before do
user.block
end
context "git pull" do
it do
pull(key, personal_project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
2013-03-07 07:18:30 -05:00
end
end
context "git push" do
it do
push(key, personal_project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
2013-03-07 07:18:30 -05:00
end
end
end
context "archived project" do
let(:personal_project) { create(:project, namespace: user.namespace) }
before do
project.team << [user, :developer]
project.archive!
end
context "git pull" do
it do
pull(key, project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_true
end
end
context "git push" do
it do
push(key, project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
end
end
end
context "deploy key" do
let(:key) { create(:deploy_key) }
context "added to project" do
before do
key.projects << project
end
it do
archive(key, project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_true
end
end
context "not added to project" do
it do
archive(key, project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
end
end
end
context 'project does not exist' do
it do
pull(key, OpenStruct.new(path_with_namespace: 'gitlab/notexists'))
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
end
end
context 'user does not exist' do
it do
pull(OpenStruct.new(id: 0), project)
response.status.should == 200
JSON.parse(response.body)["status"].should be_false
end
end
2013-03-07 07:18:30 -05:00
end
def pull(key, project)
post(
2013-03-07 07:18:30 -05:00
api("/internal/allowed"),
key_id: key.id,
project: project.path_with_namespace,
2014-10-15 11:26:15 -04:00
action: 'git-upload-pack',
secret_token: secret_token
2013-03-07 07:18:30 -05:00
)
end
def push(key, project)
post(
2013-03-07 07:18:30 -05:00
api("/internal/allowed"),
changes: 'd14d6c0abdd253381df51a723d58691b2ee1ab08 570e7b2abdd848b95f2f578043fc23bd6f6fd24d refs/heads/master',
2013-03-07 07:18:30 -05:00
key_id: key.id,
project: project.path_with_namespace,
2014-10-15 11:26:15 -04:00
action: 'git-receive-pack',
secret_token: secret_token
2013-03-07 07:18:30 -05:00
)
2013-02-26 15:53:59 -05:00
end
def archive(key, project)
post(
api("/internal/allowed"),
ref: 'master',
key_id: key.id,
project: project.path_with_namespace,
2014-10-15 11:26:15 -04:00
action: 'git-upload-archive',
secret_token: secret_token
)
end
2013-02-26 15:53:59 -05:00
end