]> git.openstreetmap.org Git - rails.git/blob - test/integration/client_applications_test.rb
83325657caeec88ee914378d391ad9fc30232ddf
[rails.git] / test / integration / client_applications_test.rb
1 require "test_helper"
2
3 class ClientApplicationsTest < ActionDispatch::IntegrationTest
4   ##
5   # run through the procedure of creating a client application and checking
6   # that it shows up on the user's account page.
7   def test_create_application
8     user = create(:user)
9
10     get "/login"
11     assert_response :redirect
12     assert_redirected_to "controller" => "user", "action" => "login", "cookie_test" => "true"
13     follow_redirect!
14     assert_response :success
15     post "/login", "username" => user.email, "password" => "test", :referer => "/user/#{URI.encode(user.display_name)}"
16     assert_response :redirect
17     follow_redirect!
18     assert_response :success
19     assert_template "user/view"
20     get "/user/#{URI.encode(user.display_name)}/account"
21     assert_response :success
22     assert_template "user/account"
23
24     # check that the form to allow new client application creations exists
25     assert_in_heading do
26       assert_select "ul.secondary-actions li a[href='/user/#{URI.encode(user.display_name)}/oauth_clients']"
27     end
28
29     # now we follow the link to the oauth client list
30     get "/user/#{URI.encode(user.display_name)}/oauth_clients"
31     assert_response :success
32     assert_in_body do
33       assert_select "a[href='/user/#{URI.encode(user.display_name)}/oauth_clients/new']"
34     end
35
36     # now we follow the link to the new oauth client page
37     get "/user/#{URI.encode(user.display_name)}/oauth_clients/new"
38     assert_response :success
39     assert_in_heading do
40       assert_select "h1", "Register a new application"
41     end
42     assert_in_body do
43       assert_select "form[action='/user/#{URI.encode(user.display_name)}/oauth_clients']" do
44         [:name, :url, :callback_url, :support_url].each do |inp|
45           assert_select "input[name=?]", "client_application[#{inp}]"
46         end
47         ClientApplication.all_permissions.each do |perm|
48           assert_select "input[name=?]", "client_application[#{perm}]"
49         end
50       end
51     end
52
53     post "/user/#{URI.encode(user.display_name)}/oauth_clients", "client_application[name]" => "My New App",
54                                                                  "client_application[url]" => "http://my.new.app.org/",
55                                                                  "client_application[callback_url]" => "http://my.new.app.org/callback",
56                                                                  "client_application[support_url]" => "http://my.new.app.org/support"
57     assert_response :redirect
58     follow_redirect!
59     assert_response :success
60     assert_template "oauth_clients/show"
61     assert_equal "Registered the information successfully", flash[:notice]
62
63     # now go back to the account page and check its listed under this user
64     get "/user/#{URI.encode(user.display_name)}/oauth_clients"
65     assert_response :success
66     assert_template "oauth_clients/index"
67     assert_in_body { assert_select "div>a", "My New App" }
68   end
69
70   ##
71   # fake client workflow.
72   # this acts like a 3rd party client trying to access the site.
73   def test_3rd_party_token
74     # apparently the oauth gem doesn't really support being used inside integration
75     # tests, as its too tied into the HTTP headers and stuff that it signs.
76   end
77
78   ##
79   # utility method to make the HTML screening easier to read.
80   def assert_in_heading
81     assert_select "div.content-heading" do
82       yield
83     end
84   end
85
86   ##
87   # utility method to make the HTML screening easier to read.
88   def assert_in_body
89     assert_select "div#content" do
90       yield
91     end
92   end
93 end