require "test_helper"
-class ApiCapabilityTest < ActiveSupport::TestCase
- def tokens(*toks)
- AccessToken.new do |token|
- toks.each do |t|
- token.public_send("#{t}=", true)
- end
- end
- end
-end
-
-class ChangesetCommentApiCapabilityTest < ApiCapabilityTest
+class ChangesetCommentApiCapabilityTest < ActiveSupport::TestCase
test "as a normal user with permissionless token" do
- token = create(:access_token)
+ token = create(:oauth_access_token)
capability = ApiCapability.new token
[:create, :destroy, :restore].each do |action|
end
end
- test "as a normal user with allow_write_api token" do
- token = create(:access_token, :allow_write_api => true)
+ test "as a normal user with write_api token" do
+ token = create(:oauth_access_token, :scopes => %w[write_api])
capability = ApiCapability.new token
[:destroy, :restore].each do |action|
end
test "as a moderator with permissionless token" do
- token = create(:access_token, :user => create(:moderator_user))
+ token = create(:oauth_access_token, :resource_owner_id => create(:moderator_user).id)
capability = ApiCapability.new token
[:create, :destroy, :restore].each do |action|
end
end
- test "as a moderator with allow_write_api token" do
- token = create(:access_token, :user => create(:moderator_user), :allow_write_api => true)
+ test "as a moderator with write_api token" do
+ token = create(:oauth_access_token, :resource_owner_id => create(:moderator_user).id, :scopes => %w[write_api])
capability = ApiCapability.new token
[:create, :destroy, :restore].each do |action|
end
end
-class NoteApiCapabilityTest < ApiCapabilityTest
+class NoteApiCapabilityTest < ActiveSupport::TestCase
test "as a normal user with permissionless token" do
- token = create(:access_token)
+ token = create(:oauth_access_token)
capability = ApiCapability.new token
[:create, :comment, :close, :reopen, :destroy].each do |action|
end
end
- test "as a normal user with allow_write_notes token" do
- token = create(:access_token, :allow_write_notes => true)
+ test "as a normal user with write_notes token" do
+ token = create(:oauth_access_token, :scopes => %w[write_notes])
capability = ApiCapability.new token
[:destroy].each do |action|
end
test "as a moderator with permissionless token" do
- token = create(:access_token, :user => create(:moderator_user))
+ token = create(:oauth_access_token, :resource_owner_id => create(:moderator_user).id)
capability = ApiCapability.new token
[:destroy].each do |action|
end
end
- test "as a moderator with allow_write_notes token" do
- token = create(:access_token, :user => create(:moderator_user), :allow_write_notes => true)
+ test "as a moderator with write_notes token" do
+ token = create(:oauth_access_token, :resource_owner_id => create(:moderator_user).id, :scopes => %w[write_notes])
capability = ApiCapability.new token
[:destroy].each do |action|
end
end
-class UserApiCapabilityTest < ApiCapabilityTest
+class UserApiCapabilityTest < ActiveSupport::TestCase
test "user preferences" do
# a user with no tokens
capability = ApiCapability.new nil
- [:read, :read_one, :update, :update_one, :delete_one].each do |act|
+ [:index, :show, :update_all, :update, :destroy].each do |act|
assert capability.cannot? act, UserPreference
end
# A user with empty tokens
- capability = ApiCapability.new tokens
+ token = create(:oauth_access_token)
+ capability = ApiCapability.new token
- [:read, :read_one, :update, :update_one, :delete_one].each do |act|
+ [:index, :show, :update_all, :update, :destroy].each do |act|
assert capability.cannot? act, UserPreference
end
- capability = ApiCapability.new tokens(:allow_read_prefs)
+ token = create(:oauth_access_token, :scopes => %w[read_prefs])
+ capability = ApiCapability.new token
- [:update, :update_one, :delete_one].each do |act|
+ [:update_all, :update, :destroy].each do |act|
assert capability.cannot? act, UserPreference
end
- [:read, :read_one].each do |act|
+ [:index, :show].each do |act|
assert capability.can? act, UserPreference
end
- capability = ApiCapability.new tokens(:allow_write_prefs)
- [:read, :read_one].each do |act|
+ token = create(:oauth_access_token, :scopes => %w[write_prefs])
+ capability = ApiCapability.new token
+
+ [:index, :show].each do |act|
assert capability.cannot? act, UserPreference
end
- [:update, :update_one, :delete_one].each do |act|
+ [:update_all, :update, :destroy].each do |act|
assert capability.can? act, UserPreference
end
end