assert_select "form > fieldset > div.form-row > input.field_with_errors#user_display_name"
end
+ def test_new_blocked_domain
+ user = build(:user, :pending, :email => "user@example.net")
+ create(:acl, :domain => "example.net", :k => "no_account_creation")
+
+ assert_no_difference "User.count" do
+ assert_no_difference "ActionMailer::Base.deliveries.size" do
+ perform_enqueued_jobs do
+ post :save, :session => { :new_user => user }
+ end
+ end
+ end
+
+ assert_response :success
+ assert_template "blocked"
+ end
+
def test_save_referer_params
user = build(:user, :pending)
assert_equal true, user.terms_seen
end
+ # Check that if you haven't seen the terms, and make a request that requires authentication,
+ # that your request is redirected to view the terms
+ def test_terms_not_seen_redirection
+ user = create(:user, :terms_seen => false)
+ session[:user] = user.id
+
+ get :account, :params => { :display_name => user.display_name }
+ assert_response :redirect
+ assert_redirected_to :action => :terms, :referer => "/user/#{ERB::Util.u(user.display_name)}/account"
+ end
+
def test_go_public
user = create(:user, :data_public => false)
post :go_public, :session => { :user => user }
user = create(:user, :home_lon => 1.1, :home_lat => 1.1)
friend_user = create(:user, :home_lon => 1.2, :home_lat => 1.2)
create(:friend, :befriender => user, :befriendee => friend_user)
+ create(:changeset, :user => friend_user)
+
get :show, :params => { :display_name => user.display_name }
assert_response :success
assert_select "div#userinformation" do
# Now try as a normal user
get :set_status, :params => { :display_name => user.display_name, :status => "suspended" }, :session => { :user => user }
assert_response :redirect
- assert_redirected_to :action => :show, :display_name => user.display_name
+ assert_redirected_to :controller => :errors, :action => :forbidden
# Finally try as an administrator
get :set_status, :params => { :display_name => user.display_name, :status => "suspended" }, :session => { :user => create(:administrator_user) }
# Now try as a normal user
get :delete, :params => { :display_name => user.display_name, :status => "suspended" }, :session => { :user => user }
assert_response :redirect
- assert_redirected_to :action => :show, :display_name => user.display_name
+ assert_redirected_to :controller => :errors, :action => :forbidden
# Finally try as an administrator
get :delete, :params => { :display_name => user.display_name, :status => "suspended" }, :session => { :user => create(:administrator_user) }
# Shouldn't work when logged in as a normal user
get :index
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
session[:user] = moderator_user.id
# Shouldn't work when logged in as a moderator
get :index
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
session[:user] = administrator_user.id
assert_no_difference "User.active.count" do
post :index, :params => { :confirm => 1, :user => { inactive_user.id => 1, suspended_user.id => 1 } }
end
- assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_response :forbidden
+
assert_equal "pending", inactive_user.reload.status
assert_equal "suspended", suspended_user.reload.status
post :index, :params => { :confirm => 1, :user => { inactive_user.id => 1, suspended_user.id => 1 } }
end
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
assert_equal "pending", inactive_user.reload.status
assert_equal "suspended", suspended_user.reload.status
post :index, :params => { :confirm => 1, :user => { inactive_user.id => 1, suspended_user.id => 1 } }
end
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
assert_equal "pending", inactive_user.reload.status
assert_equal "suspended", suspended_user.reload.status
assert_no_difference "User.active.count" do
post :index, :params => { :hide => 1, :user => { normal_user.id => 1, confirmed_user.id => 1 } }
end
- assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_response :forbidden
+
assert_equal "active", normal_user.reload.status
assert_equal "confirmed", confirmed_user.reload.status
post :index, :params => { :hide => 1, :user => { normal_user.id => 1, confirmed_user.id => 1 } }
end
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
assert_equal "active", normal_user.reload.status
assert_equal "confirmed", confirmed_user.reload.status
post :index, :params => { :hide => 1, :user => { normal_user.id => 1, confirmed_user.id => 1 } }
end
assert_response :redirect
- assert_redirected_to :action => :login, :referer => users_path
+ assert_redirected_to :controller => :errors, :action => :forbidden
assert_equal "active", normal_user.reload.status
assert_equal "confirmed", confirmed_user.reload.status