Skip to content
Snippets Groups Projects
Normal view Permalink
deploy_keys_spec.rb 2.48 KiB
Newer Older
  • Learn to ignore specific revisions
    • Zeger-Jan van de Weg's avatar
    Endpoints to enable and disable deploy keys
    Zeger-Jan van de Weg committed
    1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 
    require 'spec_helper'

describe API::API, api: true  do
  include ApiHelpers

  let(:user)    { create(:user) }
  let(:admin)   { create(:admin) }
  let(:project) { create(:project, creator_id: user.id) }
  let!(:deploy_keys_project) { create(:deploy_keys_project, project: project) }
  let(:deploy_key)  { deploy_keys_project.deploy_key }

  describe 'GET /deploy_keys' do
    context 'when unauthenticated' do
      it 'should return authentication error' do
        get api('/deploy_keys')

        expect(response.status).to eq(401)
      end
    end

    context 'when authenticated as non-admin user' do
      it 'should return a 403 error' do
        get api('/deploy_keys', user)

        expect(response.status).to eq(403)
      end
    end

    context 'when authenticated as admin' do

      it 'should return all deploy keys' do
        get api('/deploy_keys', admin)

        expect(response.status).to eq(200)
        expect(json_response).to be_an Array
        expect(json_response.first['id']).to eq(deploy_keys_project.deploy_key.id)
      end
    end
  end

  describe 'POST /projects/:id/deploy_keys/:key_id/enable' do
    let(:project2) { create(:empty_project) }

    context 'when the user can admin the project' do
      it 'enables the key' do
        expect do
          post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", admin)
        end.to change { project2.deploy_keys.count }.from(0).to(1)

        expect(response).to have_http_status(201)
        expect(json_response['id']).to eq(deploy_key.id)
      end
    end

    context 'when authenticated as non-admin user' do
      it 'should return a 404 error' do
        post api("/projects/#{project2.id}/deploy_keys/#{deploy_key.id}/enable", user)

        expect(response).to have_http_status(404)
      end
    end
  end

  describe 'DELETE /projects/:id/deploy_keys/:key_id/disable' do
    context 'when the user can admin the project' do
      it 'disables the key' do
        expect do
          delete api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}/disable", admin)
        end.to change { project.deploy_keys.count }.from(1).to(0)

        expect(response).to have_http_status(200)
        expect(json_response['id']).to eq(deploy_key.id)
      end
    end

    context 'when authenticated as non-admin user' do
      it 'should return a 404 error' do
        delete api("/projects/#{project.id}/deploy_keys/#{deploy_key.id}/disable", user)

        expect(response).to have_http_status(404)
      end
    end
  end
end