TheDude
/
openproject
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
OpenProject is the leading open source project management software.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26643 Commits
139 Branches
203 Tags
1.2 GiB
Tag: Branch: Tree: 77a10100ff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '77a10100ff'
${ noResults }
openproject/spec/controllers/account_controller_spec.rb

536 lines
17 KiB
Raw Normal View History Unescape

Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
#-- copyright
# OpenProject is a project management system.
Update year in copyright header to 2015 [ci skip]
10 years ago
# Copyright (C) 2012-2015 the OpenProject Foundation (OPF)
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License version 3.
#
new copyright header #1903
11 years ago
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:
# Copyright (C) 2006-2013 Jean-Philippe Lang
# Copyright (C) 2010-2013 the ChiliProject Team
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
#
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
# See doc/COPYRIGHT.rdoc for more details.
#++
require 'spec_helper'
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
describe AccountController, type: :controller do
Attempt to work-around an AccountController CI failure NoMethodError: undefined method `original_path_set' for nil:NilClass Failure only occurs with a full plugin configuration. See https://github.com/rspec/rspec-rails/issues/860
11 years ago
render_views
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
after do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
User.delete_all
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
User.current = nil
end
linted AccountControllerSpec
11 years ago
context 'POST #login' do
Rewrote login unit tests into specs
11 years ago
let(:admin) { FactoryGirl.create(:admin) }
linted AccountControllerSpec
11 years ago
describe 'User logging in with back_url' do
it 'should redirect to a relative path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login, password: 'adminADMIN!', back_url: '/'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to root_path
convert tests to specs to be able to disable them in plugins
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should redirect to an absolute path given the same host' do
convert tests to specs to be able to disable them in plugins
11 years ago
# note: test.host is the hostname during tests
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: 'http://test.host/work_packages/show/1'
Rewrote login unit tests into specs
11 years ago
expect(response).to redirect_to '/work_packages/show/1'
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another host' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: 'http://test.foo/work_packages/show/1'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
convert tests to specs to be able to disable them in plugins
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another host with a protocol relative url' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: '//test.foo/fake'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
Rewrote login unit tests into specs
11 years ago
end
another logout back URL spec for good measure
10 years ago
it 'should not redirect to logout' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
9 years ago
post :login, username: admin.login, password: 'adminADMIN!', back_url: '/logout'
another logout back URL spec for good measure
10 years ago
expect(response).to redirect_to my_page_path
end
linted AccountControllerSpec
11 years ago
it 'should create users on the fly' do
Rewrite account test into a spec
11 years ago
Setting.self_registration = '0'
linted AccountControllerSpec
11 years ago
allow(AuthSource).to receive(:authenticate).and_return(login: 'foo',
firstname: 'Foo',
lastname: 'Smith',
mail: 'foo@bar.com',
auth_source_id: 66)
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: 'foo', password: 'bar'
Rewrite account test into a spec
11 years ago
drop my first_login; redirect to work packages if possible
9 years ago
expect(response).to redirect_to my_page_path
Rewrite account test into a spec
11 years ago
user = User.find_by_login('foo')
Convert specs to RSpec 2.14.8 syntax with Transpec This conversion is done by Transpec 1.10.4 with the following command: transpec * 1414 conversions from: obj.should to: expect(obj).to * 646 conversions from: == expected to: eq(expected) * 376 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 107 conversions from: obj.should_not to: expect(obj).not_to * 70 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 45 conversions from: =~ [1, 2] to: match_array([1, 2]) * 27 conversions from: lambda { }.should to: expect { }.to * 13 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 8 conversions from: === expected to: be === expected * 7 conversions from: expect { }.not_to raise_error(SpecificErrorClass) to: expect { }.not_to raise_error * 6 conversions from: =~ /pattern/ to: match(/pattern/) * 2 conversions from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: < expected to: be < expected * 1 conversion from: obj.stub!(:message) to: allow(obj).to receive(:message) * 1 conversion from: stub('something') to: double('something')
11 years ago
expect(user).to be_an_instance_of User
expect(user.auth_source_id).to eq(66)
expect(user.current_password).to be_nil
Rewrite account test into a spec
11 years ago
end
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
context 'with a relative url root' do
before do
Fix redirect vulnerability `redirect_back_or_default` was vulnerable to some of the URLs found to be vulnerable in redmine, such as `@test.foo`. This commit extracts the whole functionality into a policy and alters the constraints with a path check to avoid these cases. Thanks to @marutosi for pointing this out. http://www.redmine.org/projects/redmine/repository/revisions/14560
9 years ago
@old_relative_url_root = OpenProject::Configuration['rails_relative_url_root']
OpenProject::Configuration['rails_relative_url_root'] = '/openproject'
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
after do
Fix redirect vulnerability `redirect_back_or_default` was vulnerable to some of the URLs found to be vulnerable in redmine, such as `@test.foo`. This commit extracts the whole functionality into a policy and alters the constraints with a path check to avoid these cases. Thanks to @marutosi for pointing this out. http://www.redmine.org/projects/redmine/repository/revisions/14560
9 years ago
OpenProject::Configuration['rails_relative_url_root'] = @old_relative_url_root
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should redirect to the same subdirectory with an absolute path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: 'http://test.host/openproject/work_packages/show/1'
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
expect(response).to redirect_to '/openproject/work_packages/show/1'
end
linted AccountControllerSpec
11 years ago
it 'should redirect to the same subdirectory with a relative path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: '/openproject/work_packages/show/1'
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
expect(response).to redirect_to '/openproject/work_packages/show/1'
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another subdirectory with an absolute path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: 'http://test.host/foo/work_packages/show/1'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another subdirectory with a relative path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: '/foo/work_packages/show/1'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another subdirectory by going up the path hierarchy' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: 'http://test.host/openproject/../foo/work_packages/show/1'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'should not redirect to another subdirectory with a protocol relative path' do
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: admin.login,
password: 'adminADMIN!',
back_url: '//test.host/foo/work_packages/show/1'
AccountController spec: Use route helpers for MyController
11 years ago
expect(response).to redirect_to my_page_path
given openproject runs in a subdirectory we cannot allow redirecting to a different subdirectory. also tries to catch shenanigans to circumvent the check like ".." in the path.
11 years ago
end
end
Rewrote login unit tests into specs
11 years ago
end
CSRF Protection: Prevent login CSRF
11 years ago
describe 'for a user trying to log in via an API request' do
before do
post :login, username: admin.login,
password: 'adminADMIN!',
format: :json
end
it 'should return a 410' do
expect(response.code.to_s).to eql('410')
end
it 'should not login the user' do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 1.12.0 with the following command: transpec * 100 conversions from: it { should ... } to: it { is_expected.to ... } * 17 conversions from: expect(collection).to have(n).items to: expect(collection.size).to eq(n) * 10 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 9 conversions from: be_true to: be_truthy * 9 conversions from: expect(obj).to have(n).errors_on(...) to: expect(obj.errors_on(...).size).to eq(n) * 8 conversions from: obj.should to: expect(obj).to * 4 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 2 conversions from: be_false to: be_falsey * 2 conversions from: expect(obj).to have(n).error_on(...) to: expect(obj.error_on(...).size).to eq(n) * 2 conversions from: pending 'is an example' { } to: skip 'is an example' { } * 1 conversion from: before { example } to: before { |example| example } * 1 conversion from: expect(collection).to have_at_least(n).items to: expect(collection.size).to be >= n * 1 conversion from: obj.unstub(:message) to: allow(obj).to receive(:message).and_call_original * 1 conversion from: pending to: skip
11 years ago
expect(@controller.send(:current_user).anonymous?).to be_truthy
CSRF Protection: Prevent login CSRF
11 years ago
end
end
spec: post login with disabled password login
10 years ago
context 'with disabled password login' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec: post login with disabled password login
10 years ago
post :login
end
it 'is not found' do
expect(response.status).to eq 404
end
end
Rewrote login unit tests into specs
11 years ago
end
also disable login per post
10 years ago
describe '#login with omniauth_direct_login enabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(Concerns::OmniauthLogin).to receive(:direct_login_provider).and_return('some_provider')
also disable login per post
10 years ago
end
describe 'GET' do
it 'redirects to some_provider' do
get :login
expect(response).to redirect_to '/auth/some_provider'
end
end
describe 'POST' do
it 'redirects to some_provider' do
post :login, username: 'foo', password: 'bar'
expect(response).to redirect_to '/auth/some_provider'
end
end
end
add omniauth failure callback and specs for omniauth login/registration
11 years ago
linted AccountControllerSpec
11 years ago
describe 'Login for user with forced password change' do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
let(:admin) { FactoryGirl.create(:admin, force_password_change: true) }
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
before do
Fix AccountController spec No idea what I did back then.
11 years ago
allow_any_instance_of(User).to receive(:change_password_allowed?).and_return(false)
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
describe "User who is not allowed to change password can't login" do
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post 'change_password', username: admin.login,
password: 'adminADMIN!',
new_password: 'adminADMIN!New',
new_password_confirmation: 'adminADMIN!New'
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
linted AccountControllerSpec
11 years ago
it 'should redirect to the login page' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
expect(response).to redirect_to '/login'
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
end
linted AccountControllerSpec
11 years ago
describe 'User who is not allowed to change password, is not redirected to the login page' do
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post 'login', username: admin.login, password: 'adminADMIN!'
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
linted AccountControllerSpec
11 years ago
it 'should redirect ot the login page' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
expect(response).to redirect_to '/login'
end
end
end
spec: don't show "change password" menu entry
10 years ago
describe 'POST #change_password' do
context 'with disabled password login' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec: don't show "change password" menu entry
10 years ago
post :change_password
end
it 'is not found' do
expect(response.status).to eq 404
end
end
end
spec registration with disabled password login
10 years ago
shared_examples 'registration disabled' do
it 'redirects to back the login page' do
expect(response).to redirect_to signin_path
end
it 'informs the user that registration is disabled' do
expect(flash[:error]).to eq(I18n.t('account.error_self_registration_disabled'))
end
end
linted AccountControllerSpec
11 years ago
context 'GET #register' do
context 'with self registration on' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('3')
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
spec registration with disabled password login
10 years ago
context 'and password login enabled' do
before do
get :register
end
it 'is successful' do
Merge branch 'dev' into feature/rspec-299 Signed-off-by: Alex Coles <alex@alexbcoles.com> Conflicts: spec/controllers/account_controller_spec.rb spec/controllers/versions_controller_spec.rb spec/models/project/copy_spec.rb spec/representers/work_package_representer_spec.rb
10 years ago
is_expected.to respond_with :success
spec registration with disabled password login
10 years ago
expect(response).to render_template :register
expect(assigns[:user]).not_to be_nil
end
end
context 'and password login disabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec registration with disabled password login
10 years ago
get :register
end
it_behaves_like 'registration disabled'
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
end
linted AccountControllerSpec
11 years ago
context 'with self registration off' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('0')
Convert specs to RSpec 2.14.8 syntax with Transpec This conversion is done by Transpec 1.10.4 with the following command: transpec * 1414 conversions from: obj.should to: expect(obj).to * 646 conversions from: == expected to: eq(expected) * 376 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 107 conversions from: obj.should_not to: expect(obj).not_to * 70 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 45 conversions from: =~ [1, 2] to: match_array([1, 2]) * 27 conversions from: lambda { }.should to: expect { }.to * 13 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 8 conversions from: === expected to: be === expected * 7 conversions from: expect { }.not_to raise_error(SpecificErrorClass) to: expect { }.not_to raise_error * 6 conversions from: =~ /pattern/ to: match(/pattern/) * 2 conversions from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: < expected to: be < expected * 1 conversion from: obj.stub!(:message) to: allow(obj).to receive(:message) * 1 conversion from: stub('something') to: double('something')
11 years ago
allow(Setting).to receive(:self_registration?).and_return(false)
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
get :register
end
spec registration with disabled password login
10 years ago
it_behaves_like 'registration disabled'
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
end
# See integration/account_test.rb for the full test
linted AccountControllerSpec
11 years ago
context 'POST #register' do
context 'with self registration on automatic' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('3')
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login enabled' do
drop my first_login; redirect to work packages if possible
9 years ago
# expects `redirect_to_path`
shared_examples 'automatic self registration succeeds' do
before do
post :register, user: {
login: 'register',
password: 'adminADMIN!',
password_confirmation: 'adminADMIN!',
firstname: 'John',
lastname: 'Doe',
mail: 'register@example.com'
}
end
it 'redirects to my page' do
is_expected.to respond_with :redirect
expect(assigns[:user]).not_to be_nil
is_expected.to redirect_to(redirect_to_path)
expect(User.where(login: 'register').last).not_to be_nil
end
it 'set the user status to active' do
user = User.where(login: 'register').last
expect(user).not_to be_nil
expect(user.status).to eq(User::STATUSES[:active])
end
spec registration with disabled password login
10 years ago
end
drop my first_login; redirect to work packages if possible
9 years ago
context 'without demo project' do
let(:redirect_to_path) { my_page_path }
it_behaves_like 'automatic self registration succeeds'
spec registration with disabled password login
10 years ago
end
drop my first_login; redirect to work packages if possible
9 years ago
context 'with demo project' do
let!(:project) { FactoryGirl.create :project, identifier: 'demo' }
before do
allow(controller).to receive(:welcome_project).and_return(project)
end
context 'with the user not being admin' do
let(:redirect_to_path) { my_page_path }
it_behaves_like 'automatic self registration succeeds'
end
context 'with the user being admin' do
let(:redirect_to_path) { '/projects/demo/work_packages' }
before do
allow_any_instance_of(User).to receive(:admin?).and_return(true)
end
it_behaves_like 'automatic self registration succeeds'
end
spec registration with disabled password login
10 years ago
end
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login disabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec registration with disabled password login
10 years ago
post :register
end
it_behaves_like 'registration disabled'
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
end
linted AccountControllerSpec
11 years ago
context 'with self registration by email' do
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('1')
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login enabled' do
before do
Token.delete_all
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: {
login: 'register',
password: 'adminADMIN!',
password_confirmation: 'adminADMIN!',
firstname: 'John',
lastname: 'Doe',
mail: 'register@example.com'
spec registration with disabled password login
10 years ago
}
end
it 'redirects to the login page' do
Merge branch 'dev' into feature/rspec-299 Signed-off-by: Alex Coles <alex@alexbcoles.com> Conflicts: spec/controllers/account_controller_spec.rb spec/controllers/versions_controller_spec.rb spec/models/project/copy_spec.rb spec/representers/work_package_representer_spec.rb
10 years ago
is_expected.to redirect_to '/login'
spec registration with disabled password login
10 years ago
end
it "doesn't activate the user but sends out a token instead" do
expect(User.find_by_login('register')).not_to be_active
Migrate AR finder/query methods in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
9 years ago
token = Token.first
spec registration with disabled password login
10 years ago
expect(token.action).to eq('register')
expect(token.user.mail).to eq('register@example.com')
expect(token).not_to be_expired
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login disabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec registration with disabled password login
10 years ago
post :register
end
it_behaves_like 'registration disabled'
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
end
linted AccountControllerSpec
11 years ago
context 'with manual activation' do
Register: Add spec testing back_url is preserved on manual activation
11 years ago
let(:user_hash) do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
{ login: 'register',
password: 'adminADMIN!',
password_confirmation: 'adminADMIN!',
firstname: 'John',
lastname: 'Doe',
mail: 'register@example.com' }
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
Register: Add spec testing back_url is preserved on manual activation
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('2')
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
linted AccountControllerSpec
11 years ago
context 'without back_url' do
Register: Add spec testing back_url is preserved on manual activation
11 years ago
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: user_hash
Register: Add spec testing back_url is preserved on manual activation
11 years ago
end
linted AccountControllerSpec
11 years ago
it 'redirects to the login page' do
Register: Add spec testing back_url is preserved on manual activation
11 years ago
expect(response).to redirect_to '/login'
end
it "doesn't activate the user" do
expect(User.find_by_login('register')).not_to be_active
end
end
linted AccountControllerSpec
11 years ago
context 'with back_url' do
Register: Add spec testing back_url is preserved on manual activation
11 years ago
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: user_hash, back_url: 'https://example.net/some_back_url'
Register: Add spec testing back_url is preserved on manual activation
11 years ago
end
it 'preserves the back url' do
expect(response).to redirect_to(
'/login?back_url=https%3A%2F%2Fexample.net%2Fsome_back_url')
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login disabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec registration with disabled password login
10 years ago
post :register
end
it_behaves_like 'registration disabled'
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
linted AccountControllerSpec
11 years ago
context 'with self registration off' do
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('0')
Convert specs to RSpec 2.14.8 syntax with Transpec This conversion is done by Transpec 1.10.4 with the following command: transpec * 1414 conversions from: obj.should to: expect(obj).to * 646 conversions from: == expected to: eq(expected) * 376 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 107 conversions from: obj.should_not to: expect(obj).not_to * 70 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 45 conversions from: =~ [1, 2] to: match_array([1, 2]) * 27 conversions from: lambda { }.should to: expect { }.to * 13 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 8 conversions from: === expected to: be === expected * 7 conversions from: expect { }.not_to raise_error(SpecificErrorClass) to: expect { }.not_to raise_error * 6 conversions from: =~ /pattern/ to: match(/pattern/) * 2 conversions from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: < expected to: be < expected * 1 conversion from: obj.stub!(:message) to: allow(obj).to receive(:message) * 1 conversion from: stub('something') to: double('something')
11 years ago
allow(Setting).to receive(:self_registration?).and_return(false)
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: {
login: 'register',
password: 'adminADMIN!',
password_confirmation: 'adminADMIN!',
firstname: 'John',
lastname: 'Doe',
mail: 'register@example.com'
Stubb settings values in spec instead of persisting them.
11 years ago
}
Migrate unit tests to rspec (to be able to disable them in self-registration per mail).
11 years ago
end
spec registration with disabled password login
10 years ago
it_behaves_like 'registration disabled'
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
linted AccountControllerSpec
11 years ago
context 'with on-the-fly registration' do
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
before do
linted AccountControllerSpec
11 years ago
allow(Setting).to receive(:self_registration).and_return('0')
Convert specs to RSpec 2.14.8 syntax with Transpec This conversion is done by Transpec 1.10.4 with the following command: transpec * 1414 conversions from: obj.should to: expect(obj).to * 646 conversions from: == expected to: eq(expected) * 376 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 107 conversions from: obj.should_not to: expect(obj).not_to * 70 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 45 conversions from: =~ [1, 2] to: match_array([1, 2]) * 27 conversions from: lambda { }.should to: expect { }.to * 13 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 8 conversions from: === expected to: be === expected * 7 conversions from: expect { }.not_to raise_error(SpecificErrorClass) to: expect { }.not_to raise_error * 6 conversions from: =~ /pattern/ to: match(/pattern/) * 2 conversions from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: < expected to: be < expected * 1 conversion from: obj.stub!(:message) to: allow(obj).to receive(:message) * 1 conversion from: stub('something') to: double('something')
11 years ago
allow(Setting).to receive(:self_registration?).and_return(false)
Fix failing AccountController#register spec With an OpenProject config containing private plugins this spec will fail with the following Error: ActionView::Template::Error: undefined method `allow_password_changes?' for nil:NilClass ./app/models/user.rb:377:in `change_password_allowed?' This failure was most likely previously obscured because `render_views` was not enabled. Signed-off-by: Alex Coles <alex@alexbcoles.com>
11 years ago
allow_any_instance_of(User).to receive(:change_password_allowed?).and_return(false)
linted AccountControllerSpec
11 years ago
allow(AuthSource).to receive(:authenticate).and_return(login: 'foo',
lastname: 'Smith',
auth_source_id: 66)
spec registration with disabled password login
10 years ago
end
context 'with password login enabled' do
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: 'foo', password: 'bar'
spec registration with disabled password login
10 years ago
end
it 'registers the user on-the-fly' do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
is_expected.to respond_with :success
spec registration with disabled password login
10 years ago
expect(response).to render_template :register
Fix failing AccountController#register spec With an OpenProject config containing private plugins this spec will fail with the following Error: ActionView::Template::Error: undefined method `allow_password_changes?' for nil:NilClass ./app/models/user.rb:377:in `change_password_allowed?' This failure was most likely previously obscured because `render_views` was not enabled. Signed-off-by: Alex Coles <alex@alexbcoles.com>
11 years ago
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: { firstname: 'Foo',
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
lastname: 'Smith',
mail: 'foo@bar.com' }
spec registration with disabled password login
10 years ago
expect(response).to redirect_to '/my/account'
Fix failing AccountController#register spec With an OpenProject config containing private plugins this spec will fail with the following Error: ActionView::Template::Error: undefined method `allow_password_changes?' for nil:NilClass ./app/models/user.rb:377:in `change_password_allowed?' This failure was most likely previously obscured because `render_views` was not enabled. Signed-off-by: Alex Coles <alex@alexbcoles.com>
11 years ago
spec registration with disabled password login
10 years ago
user = User.find_by_login('foo')
expect(user).to be_an_instance_of(User)
expect(user.auth_source_id).to eql 66
expect(user.current_password).to be_nil
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
spec registration with disabled password login
10 years ago
context 'with password login disabled' do
before do
Convert specs to RSpec 2.99.0 syntax with Transpec This conversion is done by Transpec 2.3.6 with the following command: transpec -f * 66 conversions from: it { should ... } to: it { is_expected.to ... } * 53 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 20 conversions from: == expected to: eq(expected) * 19 conversions from: obj.should to: expect(obj).to * 7 conversions from: describe 'some request' { } to: describe 'some request', :type => :request { } * 7 conversions from: describe 'some routing' { } to: describe 'some routing', :type => :routing { } * 7 conversions from: its(:attr) { } to: describe '#attr' do subject { super().attr }; it { } end * 5 conversions from: obj.should_not to: expect(obj).not_to * 4 conversions from: describe 'some view' { } to: describe 'some view', :type => :view { } * 3 conversions from: be_true to: be_truthy * 2 conversions from: describe 'some model' { } to: describe 'some model', :type => :model { } * 2 conversions from: its([:key]) { } to: describe '[:key]' do subject { super()[:key] }; it { } end * 2 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 1 conversion from: be_false to: be_falsey * 1 conversion from: describe 'some controller' { } to: describe 'some controller', :type => :controller { } * 1 conversion from: describe 'some feature' { } to: describe 'some feature', :type => :feature { } * 1 conversion from: it { should_not ... } to: it { is_expected.not_to ... } For more details: https://github.com/yujinakayama/transpec#supported-conversions
10 years ago
allow(OpenProject::Configuration).to receive(:disable_password_login?).and_return(true)
spec registration with disabled password login
10 years ago
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
spec registration with disabled password login
10 years ago
describe 'login' do
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :login, username: 'foo', password: 'bar'
spec registration with disabled password login
10 years ago
end
Removal of trailing white spaces
11 years ago
spec registration with disabled password login
10 years ago
it 'is not found' do
expect(response.status).to eq 404
end
end
add omniauth failure callback and specs for omniauth login/registration
11 years ago
spec registration with disabled password login
10 years ago
describe 'registration' do
before do
Use 1.9+ Hash syntax in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
post :register, user: { firstname: 'Foo',
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com>
10 years ago
lastname: 'Smith',
mail: 'foo@bar.com' }
spec registration with disabled password login
10 years ago
end
add omniauth failure callback and specs for omniauth login/registration
11 years ago
spec registration with disabled password login
10 years ago
it_behaves_like 'registration disabled'
end
Rewrite unit tests as specs so they can be disabled by plugins.
11 years ago
end
end
Add option to force a user to change password on next login * Add force_password_reset field to user * Add force_password_reset field to user edit form Also, reindent the form HTML. * Rename force_password_reset to force_password_change * Force password change: Show form on login, allow change * Remove unused step definitions for setting RAILS_ENV * Fix forced password change, add cuke * Don't reveal whether user exists when not authenticated * Also add spec for testing reaction when user is not allowed to change the password. * Improve force password change code after review * Fix MyController password test and change to spec * Fix AccountController force password change spec
12 years ago
end
end