167 lines
5.8 KiB
Ruby
167 lines
5.8 KiB
Ruby
# frozen_string_literal: true
|
|
require 'spec_helper'
|
|
|
|
describe "Pages with Let's Encrypt", :https_pages_enabled do
|
|
include LetsEncryptHelpers
|
|
|
|
let(:project) { create(:project, pages_https_only: false) }
|
|
let(:user) { create(:user) }
|
|
let(:role) { :maintainer }
|
|
let(:certificate_pem) { attributes_for(:pages_domain)[:certificate] }
|
|
|
|
let(:certificate_key) { attributes_for(:pages_domain)[:key] }
|
|
|
|
before do
|
|
allow(Gitlab.config.pages).to receive(:enabled).and_return(true)
|
|
stub_lets_encrypt_settings
|
|
|
|
project.add_role(user, role)
|
|
sign_in(user)
|
|
project.namespace.update(owner: user)
|
|
allow_next_instance_of(Project) do |instance|
|
|
allow(instance).to receive(:pages_deployed?) { true }
|
|
end
|
|
end
|
|
|
|
it "creates new domain with Let's Encrypt enabled by default" do
|
|
visit new_project_pages_domain_path(project)
|
|
|
|
fill_in 'Domain', with: 'my.test.domain.com'
|
|
|
|
expect(find("#pages_domain_auto_ssl_enabled", visible: false).value).to eq 'true'
|
|
click_button 'Create New Domain'
|
|
|
|
expect(page).to have_content('my.test.domain.com')
|
|
expect(PagesDomain.find_by_domain('my.test.domain.com').auto_ssl_enabled).to eq(true)
|
|
end
|
|
|
|
context 'when the auto SSL management is initially disabled' do
|
|
let(:domain) do
|
|
create(:pages_domain, auto_ssl_enabled: false, project: project)
|
|
end
|
|
|
|
it 'enables auto SSL and dynamically updates the form accordingly', :js do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(domain.auto_ssl_enabled).to eq false
|
|
|
|
expect(find("#pages_domain_auto_ssl_enabled", visible: false).value).to eq 'false'
|
|
expect(page).to have_selector '.card-header', text: 'Certificate'
|
|
expect(page).to have_text domain.subject
|
|
|
|
find('.js-auto-ssl-toggle-container .project-feature-toggle').click
|
|
|
|
expect(find("#pages_domain_auto_ssl_enabled", visible: false).value).to eq 'true'
|
|
expect(page).not_to have_selector '.card-header', text: 'Certificate'
|
|
expect(page).not_to have_text domain.subject
|
|
|
|
click_on 'Save Changes'
|
|
|
|
expect(domain.reload.auto_ssl_enabled).to eq true
|
|
end
|
|
end
|
|
|
|
context 'when the auto SSL management is initially enabled' do
|
|
let(:domain) do
|
|
create(:pages_domain, :letsencrypt, auto_ssl_enabled: true, project: project)
|
|
end
|
|
|
|
it 'disables auto SSL and dynamically updates the form accordingly', :js do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(find("#pages_domain_auto_ssl_enabled", visible: false).value).to eq 'true'
|
|
expect(page).not_to have_field 'Certificate (PEM)', type: 'textarea'
|
|
expect(page).not_to have_field 'Key (PEM)', type: 'textarea'
|
|
|
|
find('.js-auto-ssl-toggle-container .project-feature-toggle').click
|
|
|
|
expect(find("#pages_domain_auto_ssl_enabled", visible: false).value).to eq 'false'
|
|
expect(page).to have_field 'Certificate (PEM)', type: 'textarea'
|
|
expect(page).to have_field 'Key (PEM)', type: 'textarea'
|
|
|
|
click_on 'Save Changes'
|
|
|
|
expect(domain.reload.auto_ssl_enabled).to eq false
|
|
end
|
|
end
|
|
|
|
context "when we failed to obtain Let's Encrypt certificate", :js do
|
|
let(:domain) do
|
|
create(:pages_domain, auto_ssl_enabled: true, auto_ssl_failed: true, project: project)
|
|
end
|
|
|
|
it 'user can retry obtaining certificate' do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(page).to have_text("Something went wrong while obtaining the Let's Encrypt certificate.")
|
|
|
|
click_on('Retry')
|
|
|
|
expect(page).to have_text("GitLab is obtaining a Let's Encrypt SSL certificate for this domain. This process can take some time. Please try again later.")
|
|
end
|
|
end
|
|
|
|
shared_examples 'user sees private keys only for user provided certificate' do
|
|
shared_examples 'user do not see private key' do
|
|
it 'user do not see private key' do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(page).not_to have_selector '.card-header', text: 'Certificate'
|
|
expect(page).not_to have_text domain.subject
|
|
end
|
|
end
|
|
|
|
context 'when auto_ssl is enabled for domain' do
|
|
let(:domain) { create(:pages_domain, :letsencrypt, project: project, auto_ssl_enabled: true) }
|
|
|
|
include_examples 'user do not see private key'
|
|
end
|
|
|
|
context 'when auto_ssl is disabled for domain' do
|
|
let(:domain) { create(:pages_domain, :letsencrypt, project: project) }
|
|
|
|
include_examples 'user do not see private key'
|
|
end
|
|
|
|
context 'when certificate is provided by user' do
|
|
let(:domain) { create(:pages_domain, project: project, auto_ssl_enabled: false) }
|
|
|
|
it 'user sees certificate subject' do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(page).to have_selector '.card-header', text: 'Certificate'
|
|
expect(page).to have_text domain.subject
|
|
end
|
|
|
|
it 'user can delete the certificate', :js do
|
|
visit project_pages_domain_path(project, domain)
|
|
|
|
expect(page).to have_selector '.card-header', text: 'Certificate'
|
|
expect(page).to have_text domain.subject
|
|
within('.card') { accept_confirm { click_on 'Remove' } }
|
|
expect(page).to have_field 'Certificate (PEM)', with: ''
|
|
expect(page).to have_field 'Key (PEM)', with: ''
|
|
end
|
|
end
|
|
end
|
|
|
|
include_examples 'user sees private keys only for user provided certificate'
|
|
|
|
context 'when letsencrypt is disabled' do
|
|
let(:domain) do
|
|
create(:pages_domain, auto_ssl_enabled: false, project: project)
|
|
end
|
|
|
|
before do
|
|
stub_application_setting(lets_encrypt_terms_of_service_accepted: false)
|
|
|
|
visit project_pages_domain_path(project, domain)
|
|
end
|
|
|
|
it "does not render the Let's Encrypt field", :js do
|
|
expect(page).not_to have_selector '.js-auto-ssl-toggle-container'
|
|
end
|
|
|
|
include_examples 'user sees private keys only for user provided certificate'
|
|
end
|
|
end
|