gitlab-org--gitlab-foss/spec/requests/api/deploy_keys_spec.rb

require 'spec_helper'

describe API::DeployKeys do
  let(:user)        { create(:user) }
  let(:admin)       { create(:admin) }
  let(:project)     { create(:empty_project, creator_id: user.id) }
  let(:project2)    { create(:empty_project, creator_id: user.id) }
  let(:deploy_key)  { create(:deploy_key, public: true) }

  let!(:deploy_keys_project) do
    create(:deploy_keys_project, project: project, deploy_key: deploy_key)
  end

  describe 'GET /deploy_keys' do
    context 'when unauthenticated' do
      it 'should return authentication error' do
        get api('/deploy_keys')

        expect(response.status).to eq(401)
      end
    end

    context 'when authenticated as non-admin user' do
      it 'should return a 403 error' do
        get api('/deploy_keys', user)

        expect(response.status).to eq(403)
      end
    end

    context 'when authenticated as admin' do
      it 'should return all deploy keys' do
        get api('/deploy_keys', admin)

        expect(response.status).to eq(200)
        expect(response).to include_pagination_headers
        expect(json_response).to be_an Array
        expect(json_response.first['id']).to eq(deploy_keys_project.deploy_key.id)
      end
    end
  end

  describe 'GET /projects/:id/deploy_keys' do
    before { deploy_key }

    it 'should return array of ssh keys' do
      get api("/projects/#{project.id}/deploy_keys", admin)

      expect(response).to have_http_status(200)
      expect(response).to include_pagination_headers
      expect(json_response).to be_an Array
      expect(json_response.first['title']).to eq(deploy_key.title)
    end
  end

  describe 'GET /projects/:id/deploy_keys/:key_id' do
    it 'should return a single key' do
      get api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}", admin)

      expect(response).to have_http_status(200)
      expect(json_response['title']).to eq(deploy_key.title)
    end

    it 'should return 404 Not Found with invalid ID' do
      get api("/projects/#{project.id}/deploy_keys/404", admin)

      expect(response).to have_http_status(404)
    end
  end

  describe 'POST /projects/:id/deploy_keys' do
    it 'should not create an invalid ssh key' do
      post api("/projects/#{project.id}/deploy_keys", admin), { title: 'invalid key' }

      expect(response).to have_http_status(400)
      expect(json_response['error']).to eq('key is missing')
    end

    it 'should not create a key without title' do
      post api("/projects/#{project.id}/deploy_keys", admin), key: 'some key'

      expect(response).to have_http_status(400)
      expect(json_response['error']).to eq('title is missing')
    end

    it 'should create new ssh key' do
      key_attrs = attributes_for :another_key

      expect do
        post api("/projects/#{project.id}/deploy_keys", admin), key_attrs
      end.to change{ project.deploy_keys.count }.by(1)
    end

    it 'returns an existing ssh key when attempting to add a duplicate' do
      expect do
        post api("/projects/#{project.id}/deploy_keys", admin), { key: deploy_key.key, title: deploy_key.title }
      end.not_to change { project.deploy_keys.count }

      expect(response).to have_http_status(201)
    end

    it 'joins an existing ssh key to a new project' do
      expect do
        post api("/projects/#{project2.id}/deploy_keys", admin), { key: deploy_key.key, title: deploy_key.title }
      end.to change { project2.deploy_keys.count }.by(1)

      expect(response).to have_http_status(201)
    end

    it 'accepts can_push parameter' do
      key_attrs = attributes_for :write_access_key

      post api("/projects/#{project.id}/deploy_keys", admin), key_attrs

      expect(response).to have_http_status(201)
      expect(json_response['can_push']).to eq(true)
    end
  end

  describe 'DELETE /projects/:id/deploy_keys/:key_id' do
    before { deploy_key }

    it 'should delete existing key' do
      expect do
        delete api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}", admin)

        expect(response).to have_http_status(204)
      end.to change{ project.deploy_keys.count }.by(-1)
    end

    it 'should return 404 Not Found with invalid ID' do
      delete api("/projects/#{project.id}/deploy_keys/404", admin)

      expect(response).to have_http_status(404)
    end
  end

  describe 'POST /projects/:id/deploy_keys/:key_id/enable' do
    let(:project2) { create(:empty_project) }

    context 'when the user can admin the project' do
      it 'enables the key' do
        expect do
          post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", admin)
        end.to change { project2.deploy_keys.count }.from(0).to(1)

        expect(response).to have_http_status(201)
        expect(json_response['id']).to eq(deploy_key.id)
      end
    end

    context 'when authenticated as non-admin user' do
      it 'should return a 404 error' do
        post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", user)

        expect(response).to have_http_status(404)
      end
    end
  end
end
Endpoints to enable and disable deploy keys Resolves #20123 2016-08-03 12:45:32 +00:00			`require 'spec_helper'`

Unnecessary "include WaitForAjax" and "include ApiHelpers" Removed all the unnecessary include of `WaitForAjax` and `ApiHelpers` in the specs. Removed unnecessary usage of `api:true` 2017-04-21 20:32:02 +00:00			`describe API::DeployKeys do`
Create service for enabling deploy keys 2016-08-05 09:35:44 +00:00			`let(:user) { create(:user) }`
			`let(:admin) { create(:admin) }`
Replace many :project with :empty_projects in API specs Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-01-17 06:15:35 +00:00			`let(:project) { create(:empty_project, creator_id: user.id) }`
			`let(:project2) { create(:empty_project, creator_id: user.id) }`
Create service for enabling deploy keys 2016-08-05 09:35:44 +00:00			`let(:deploy_key) { create(:deploy_key, public: true) }`

			`let!(:deploy_keys_project) do`
			`create(:deploy_keys_project, project: project, deploy_key: deploy_key)`
			`end`
Endpoints to enable and disable deploy keys Resolves #20123 2016-08-03 12:45:32 +00:00
			`describe 'GET /deploy_keys' do`
			`context 'when unauthenticated' do`
			`it 'should return authentication error' do`
			`get api('/deploy_keys')`

			`expect(response.status).to eq(401)`
			`end`
			`end`

			`context 'when authenticated as non-admin user' do`
			`it 'should return a 403 error' do`
			`get api('/deploy_keys', user)`

			`expect(response.status).to eq(403)`
			`end`
			`end`

			`context 'when authenticated as admin' do`
			`it 'should return all deploy keys' do`
			`get api('/deploy_keys', admin)`

			`expect(response.status).to eq(200)`
Add a custom pagination matcher 2017-01-24 20:49:10 +00:00			`expect(response).to include_pagination_headers`
Endpoints to enable and disable deploy keys Resolves #20123 2016-08-03 12:45:32 +00:00			`expect(json_response).to be_an Array`
			`expect(json_response.first['id']).to eq(deploy_keys_project.deploy_key.id)`
			`end`
			`end`
			`end`

Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`describe 'GET /projects/:id/deploy_keys' do`
			`before { deploy_key }`

			`it 'should return array of ssh keys' do`
			`get api("/projects/#{project.id}/deploy_keys", admin)`

			`expect(response).to have_http_status(200)`
Add a custom pagination matcher 2017-01-24 20:49:10 +00:00			`expect(response).to include_pagination_headers`
Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`expect(json_response).to be_an Array`
			`expect(json_response.first['title']).to eq(deploy_key.title)`
			`end`
			`end`

			`describe 'GET /projects/:id/deploy_keys/:key_id' do`
			`it 'should return a single key' do`
			`get api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}", admin)`

			`expect(response).to have_http_status(200)`
			`expect(json_response['title']).to eq(deploy_key.title)`
			`end`

			`it 'should return 404 Not Found with invalid ID' do`
			`get api("/projects/#{project.id}/deploy_keys/404", admin)`

			`expect(response).to have_http_status(404)`
			`end`
			`end`

			`describe 'POST /projects/:id/deploy_keys' do`
			`it 'should not create an invalid ssh key' do`
			`post api("/projects/#{project.id}/deploy_keys", admin), { title: 'invalid key' }`

			`expect(response).to have_http_status(400)`
Grapify all endpoints of the deploy keys API 2017-01-23 16:06:57 +00:00			`expect(json_response['error']).to eq('key is missing')`
Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`end`

			`it 'should not create a key without title' do`
			`post api("/projects/#{project.id}/deploy_keys", admin), key: 'some key'`

			`expect(response).to have_http_status(400)`
Grapify all endpoints of the deploy keys API 2017-01-23 16:06:57 +00:00			`expect(json_response['error']).to eq('title is missing')`
Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`end`

			`it 'should create new ssh key' do`
			`key_attrs = attributes_for :another_key`

			`expect do`
			`post api("/projects/#{project.id}/deploy_keys", admin), key_attrs`
			`end.to change{ project.deploy_keys.count }.by(1)`
			`end`
Fixes various errors when adding deploy keys caused by not exiting the control flow. When adding a deploy key that already exists in the project the existing key would not be returned, resulting in an attempt to create a new one, which in turn caused a 500 error due to an ActiveRecord exception. When adding a deploy key that exists within another project the key would be joined to the project, but would also attempt to create a new one, which resulted in a 400 error due to the key already existing. Fixes #22741 Fixes #21754 Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-10-11 09:02:51 +00:00
			`it 'returns an existing ssh key when attempting to add a duplicate' do`
			`expect do`
			`post api("/projects/#{project.id}/deploy_keys", admin), { key: deploy_key.key, title: deploy_key.title }`
			`end.not_to change { project.deploy_keys.count }`

			`expect(response).to have_http_status(201)`
			`end`

			`it 'joins an existing ssh key to a new project' do`
			`expect do`
			`post api("/projects/#{project2.id}/deploy_keys", admin), { key: deploy_key.key, title: deploy_key.title }`
			`end.to change { project2.deploy_keys.count }.by(1)`

			`expect(response).to have_http_status(201)`
			`end`
Enable creation of deploy keys with write access via the API * Documentation was incorrectly advertising the missing param 2017-04-05 06:22:28 +00:00
			`it 'accepts can_push parameter' do`
			`key_attrs = attributes_for :write_access_key`

			`post api("/projects/#{project.id}/deploy_keys", admin), key_attrs`

			`expect(response).to have_http_status(201)`
			`expect(json_response['can_push']).to eq(true)`
			`end`
Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`end`

			`describe 'DELETE /projects/:id/deploy_keys/:key_id' do`
			`before { deploy_key }`

			`it 'should delete existing key' do`
			`expect do`
			`delete api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}", admin)`
Return 204 for delete endpoints 2017-02-20 18:18:12 +00:00
			`expect(response).to have_http_status(204)`
Move deploy_key tests to deploy_key_spec.rb Also, fix the failing test in the process 2016-08-04 11:09:10 +00:00			`end.to change{ project.deploy_keys.count }.by(-1)`
			`end`

			`it 'should return 404 Not Found with invalid ID' do`
			`delete api("/projects/#{project.id}/deploy_keys/404", admin)`

			`expect(response).to have_http_status(404)`
			`end`
			`end`

Endpoints to enable and disable deploy keys Resolves #20123 2016-08-03 12:45:32 +00:00			`describe 'POST /projects/:id/deploy_keys/:key_id/enable' do`
			`let(:project2) { create(:empty_project) }`

			`context 'when the user can admin the project' do`
			`it 'enables the key' do`
			`expect do`
			`post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", admin)`
			`end.to change { project2.deploy_keys.count }.from(0).to(1)`

			`expect(response).to have_http_status(201)`
			`expect(json_response['id']).to eq(deploy_key.id)`
			`end`
			`end`

			`context 'when authenticated as non-admin user' do`
			`it 'should return a 404 error' do`
			`post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", user)`

			`expect(response).to have_http_status(404)`
			`end`
			`end`
			`end`
			`end`