-require 'test_helper'
+require "test_helper"
class UserTermsSeenTest < ActionDispatch::IntegrationTest
- fixtures :users
+ def setup
+ stub_hostip_requests
+ end
def test_api_blocked
with_terms_seen(true) do
- user = users(:terms_not_seen_user)
+ user = create(:user, :terms_seen => false)
get "/api/#{API_VERSION}/user/preferences", nil, auth_header(user.display_name, "test")
assert_response :forbidden
def test_terms_presented_at_login
with_terms_seen(true) do
- user = users(:terms_not_seen_user)
+ user = create(:user, :terms_seen => false)
# try to log in
get_via_redirect "/login"
assert_response :success
- assert_template 'user/login'
- post "/login", {'username' => user.email, 'password' => 'test', :referer => "/"}
+ assert_template "user/login"
+ post "/login", :username => user.email, :password => "test", :referer => "/diary/new"
assert_response :redirect
# but now we need to look at the terms
- assert_redirected_to "controller" => "user", "action" => "terms", :referer => "/"
+ assert_redirected_to :controller => :user, :action => :terms, :referer => "/diary/new"
follow_redirect!
assert_response :success
# don't agree to the terms, but hit decline
- post "/user/save", {'decline' => 'decline', 'referer' => '/'}
- assert_redirected_to "/"
+ post "/user/save", :decline => true, :referer => "/diary/new"
+ assert_redirected_to "/diary/new"
follow_redirect!
-
+
# should be carried through to a normal login with a message
assert_response :success
assert !flash[:notice].nil?
def test_terms_cant_be_circumvented
with_terms_seen(true) do
- user = users(:terms_not_seen_user)
+ user = create(:user, :terms_seen => false)
# try to log in
get_via_redirect "/login"
assert_response :success
- assert_template 'user/login'
- post "/login", {'username' => user.email, 'password' => 'test', :referer => "/"}
+ assert_template "user/login"
+ post "/login", :username => user.email, :password => "test", :referer => "/diary/new"
assert_response :redirect
# but now we need to look at the terms
- assert_redirected_to "controller" => "user", "action" => "terms", :referer => "/"
- follow_redirect!
- assert_response :success
+ assert_redirected_to :controller => :user, :action => :terms, :referer => "/diary/new"
# check that if we go somewhere else now, it redirects
# back to the terms page.
get "/traces/mine"
- assert_redirected_to "controller" => "user", "action" => "terms", :referer => "/traces/mine"
+ assert_redirected_to :controller => :user, :action => :terms, :referer => "/traces/mine"
+ get "/traces/mine", :referer => "/diary/new"
+ assert_redirected_to :controller => :user, :action => :terms, :referer => "/diary/new"
end
end
-private
+ private
def auth_header(user, pass)
- {"HTTP_AUTHORIZATION" => "Basic %s" % Base64.encode64("#{user}:#{pass}")}
+ { "HTTP_AUTHORIZATION" => format("Basic %s", Base64.encode64("#{user}:#{pass}")) }
end
def with_terms_seen(value)