X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/523291442766e7cd4adbad6d2bc7c6803cdd3811..7a177cb03f0b8865cbf8cdea95208046450776ff:/test/models/abilities_test.rb diff --git a/test/models/abilities_test.rb b/test/models/abilities_test.rb index 6472ad2e3..fc37b0e7d 100644 --- a/test/models/abilities_test.rb +++ b/test/models/abilities_test.rb @@ -3,36 +3,64 @@ require "test_helper" class AbilityTest < ActiveSupport::TestCase +end + +class GuestAbilityTest < AbilityTest + test "geocoder permission for a guest" do + ability = Ability.new nil + + [:search, :search_latlon, :search_ca_postcode, :search_osm_nominatim, + :search_geonames, :search_osm_nominatim_reverse, :search_geonames_reverse].each do |action| + assert ability.can?(action, :geocoder), "should be able to #{action} geocoder" + end + end test "diary permissions for a guest" do - ability = Ability.new(nil, []) - [:list, :rss, :view, :comments].each do |action| + ability = Ability.new nil + [:index, :rss, :show, :comments].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" end [:create, :edit, :comment, :subscribe, :unsubscribe, :hide, :hidecomment].each do |action| - assert ability.cannot?(action, DiaryEntry), "should be able to #{action} DiaryEntries" - assert ability.cannot?(action, DiaryComment), "should be able to #{action} DiaryEntries" + assert ability.cannot?(action, DiaryEntry), "should not be able to #{action} DiaryEntries" + assert ability.cannot?(action, DiaryComment), "should not be able to #{action} DiaryEntries" end end +end +class UserAbilityTest < AbilityTest + test "Diary permissions" do + ability = Ability.new create(:user) - test "Diary permissions for a normal user" do - ability = Ability.new(create(:user), []) - - [:list, :rss, :view, :comments, :create, :edit, :comment, :subscribe, :unsubscribe].each do |action| + [:index, :rss, :show, :comments, :create, :edit, :comment, :subscribe, :unsubscribe].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" end [:hide, :hidecomment].each do |action| - assert ability.cannot?(action, DiaryEntry), "should be able to #{action} DiaryEntries" - assert ability.cannot?(action, DiaryComment), "should be able to #{action} DiaryEntries" + assert ability.cannot?(action, DiaryEntry), "should not be able to #{action} DiaryEntries" + assert ability.cannot?(action, DiaryComment), "should not be able to #{action} DiaryEntries" + end + + [:index, :show, :resolve, :ignore, :reopen].each do |action| + assert ability.cannot?(action, Issue), "should not be able to #{action} Issues" end end +end + +class ModeratorAbilityTest < AbilityTest + test "Issue permissions" do + ability = Ability.new create(:moderator_user) + + [:index, :show, :resolve, :ignore, :reopen].each do |action| + assert ability.can?(action, Issue), "should be able to #{action} Issues" + end + end +end +class AdministratorAbilityTest < AbilityTest test "Diary for an administrator" do - ability = Ability.new(create(:administrator_user), []) - [:list, :rss, :view, :comments, :create, :edit, :comment, :subscribe, :unsubscribe, :hide, :hidecomment].each do |action| + ability = Ability.new create(:administrator_user) + [:index, :rss, :show, :comments, :create, :edit, :comment, :subscribe, :unsubscribe, :hide, :hidecomment].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" end