3 class ClientApplicationsTest < ActionDispatch::IntegrationTest
5 # run through the procedure of creating a client application and checking
6 # that it shows up on the user's account page.
7 def test_create_application
11 assert_response :redirect
12 assert_redirected_to login_path(:cookie_test => "true")
14 assert_response :success
15 post "/login", :params => { "username" => user.email, "password" => "test", :referer => "/user/#{ERB::Util.u(user.display_name)}" }
16 assert_response :redirect
18 assert_response :success
19 assert_template "users/show"
21 assert_response :success
22 assert_template "accounts/edit"
24 # check that the form to allow new client application creations exists
26 assert_select "ul.nav.nav-tabs li.nav-item a[href='/user/#{ERB::Util.u(user.display_name)}/oauth_clients']"
29 # now we follow the link to the oauth client list
30 get "/user/#{ERB::Util.u(user.display_name)}/oauth_clients"
31 assert_response :success
33 assert_select "a[href='/user/#{ERB::Util.u(user.display_name)}/oauth_clients/new']"
36 # now we follow the link to the new oauth client page
37 get "/user/#{ERB::Util.u(user.display_name)}/oauth_clients/new"
38 assert_response :success
40 assert_select "h1", "Register a new application"
43 assert_select "form[action='/user/#{ERB::Util.u(user.display_name)}/oauth_clients']" do
44 [:name, :url, :callback_url, :support_url].each do |inp|
45 assert_select "input[name=?]", "client_application[#{inp}]"
47 ClientApplication.all_permissions.each do |perm|
48 assert_select "input[name=?]", "client_application[#{perm}]"
53 post "/user/#{ERB::Util.u(user.display_name)}/oauth_clients",
54 :params => { "client_application[name]" => "My New App",
55 "client_application[url]" => "http://my.new.app.org/",
56 "client_application[callback_url]" => "http://my.new.app.org/callback",
57 "client_application[support_url]" => "http://my.new.app.org/support" }
58 assert_response :redirect
60 assert_response :success
61 assert_template "oauth_clients/show"
62 assert_equal "Registered the information successfully", flash[:notice]
64 # now go back to the account page and check its listed under this user
65 get "/user/#{ERB::Util.u(user.display_name)}/oauth_clients"
66 assert_response :success
67 assert_template "oauth_clients/index"
68 assert_in_body { assert_select "div>a", "My New App" }
72 # fake client workflow.
73 # this acts like a 3rd party client trying to access the site.
74 def test_3rd_party_token
75 # apparently the oauth gem doesn't really support being used inside integration
76 # tests, as its too tied into the HTTP headers and stuff that it signs.
82 # utility method to make the HTML screening easier to read.
83 def assert_in_heading(&block)
84 assert_select("div.content-heading", &block)
88 # utility method to make the HTML screening easier to read.
89 def assert_in_body(&block)
90 assert_select("div#content", &block)