Allow admins to stop impersonating users without e-mail addresses

Resolves #24576 Modify the guard clause of the `ApplicationController#require_email` before action to skip requests where an admin is impersonating the current user.
2016-11-17 23:21:02 -05:00 · 2016-11-17 23:21:02 -05:00 · 8dd9a8b6e0
commit 8dd9a8b6e0
parent 694b55c828
3 changed files with 26 additions and 8 deletions
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@ -224,7 +224,7 @@ class ApplicationController < ActionController::Base
  end

  def require_email
-    if current_user && current_user.temp_oauth_email?
+    if current_user && current_user.temp_oauth_email? && session[:impersonator_id].nil?
      redirect_to profile_path, notice: 'Please complete your profile with email address' and return
    end
  end
--- a/changelogs/unreleased/24576_cant_stop_impersonating.yml
+++ b/changelogs/unreleased/24576_cant_stop_impersonating.yml
@ -0,0 +1,4 @@
+---
+title: Allow admins to stop impersonating users without e-mail addresses
+merge_request: 7550
+author: Oren Kanner
--- a/spec/controllers/admin/impersonations_controller_spec.rb
+++ b/spec/controllers/admin/impersonations_controller_spec.rb
@ -76,18 +76,32 @@ describe Admin::ImpersonationsController do
          end

          context "when the impersonator is not blocked" do
-            it "redirects to the impersonated user's page" do
-              expect(Gitlab::AppLogger).to receive(:info).with("User #{impersonator.username} has stopped impersonating #{user.username}").and_call_original
+            shared_examples_for "successfully stops impersonating" do
+              it "redirects to the impersonated user's page" do
+                expect(Gitlab::AppLogger).to receive(:info).with("User #{impersonator.username} has stopped impersonating #{user.username}").and_call_original

-              delete :destroy
+                delete :destroy

-              expect(response).to redirect_to(admin_user_path(user))
+                expect(response).to redirect_to(admin_user_path(user))
+              end
+
+              it "signs us in as the impersonator" do
+                delete :destroy
+
+                expect(warden.user).to eq(impersonator)
+              end
            end

-            it "signs us in as the impersonator" do
-              delete :destroy
+            # base case
+            it_behaves_like "successfully stops impersonating"

-              expect(warden.user).to eq(impersonator)
+            context "and the user has a temporary oauth e-mail address" do
+              before do
+                allow(user).to receive(:temp_oauth_email?).and_return(true)
+                allow(controller).to receive(:current_user).and_return(user)
+              end
+
+              it_behaves_like "successfully stops impersonating"
            end
          end
        end