openproject/spec/requests/auth/api_v2_spec.rb

#-- copyright
# OpenProject is a project management system.
# Copyright (C) 2012-2015 the OpenProject Foundation (OPF)
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License version 3.
#
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:
# Copyright (C) 2006-2013 Jean-Philippe Lang
# Copyright (C) 2010-2013 the ChiliProject Team
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
#
# See doc/COPYRIGHT.rdoc for more details.
#++

require File.expand_path('../../../spec_helper', __FILE__)

describe 'API v2', type: :request do
  let(:admin) { FactoryGirl.create :admin }
  let(:project) { FactoryGirl.create(:project) }

  before do
    @api_key = api_key
    allow(Setting).to receive(:login_required?).and_return true
    allow(Setting).to receive(:rest_api_enabled?).and_return true
  end

  after do
    User.current = nil # api key auth sets the current user, reset it to make test idempotent
  end

  describe 'key authentication' do
    let(:api_key) { admin.api_key }

    shared_examples_for 'API key access' do
      context 'invalid' do
        before { get "#{request_url}?key=invalid_key" }

        it { expect(response.status).to eq(401) }
      end

      context 'valid' do
        before { get "#{request_url}?key=#{api_key}" }

        it { expect(response.status).to eq(200) }
      end
    end

    describe 'for planning element types' do
      let(:request_url) { "/api/v2/projects/#{project.id}/planning_element_types.json" }

      it_behaves_like 'API key access'
    end

    describe 'for project associations' do
      let(:request_url) { "/api/v2/projects/#{project.id}/project_associations.xml" }

      it_behaves_like 'API key access'
    end

    describe "for project associations' available projects" do
      let(:request_url) { "/api/v2/projects/#{project.id}/project_associations/available_projects.xml" }

      it_behaves_like 'API key access'
    end

    describe 'for reportings' do
      let(:request_url) { "/api/v2/projects/#{project.id}/reportings.xml" }

      it_behaves_like 'API key access'
    end

    describe "for reportings' available projects" do
      let(:request_url) { "/api/v2/projects/#{project.id}/reportings/available_projects.xml" }

      it_behaves_like 'API key access'
    end
  end
end
some regression tests for api key auth 11 years ago			`#-- copyright`
			`# OpenProject is a project management system.`
Update year in copyright header to 2015 [ci skip] 10 years ago			`# Copyright (C) 2012-2015 the OpenProject Foundation (OPF)`
some regression tests for api key auth 11 years ago			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License version 3.`
			`#`
			`# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:`
			`# Copyright (C) 2006-2013 Jean-Philippe Lang`
			`# Copyright (C) 2010-2013 the ChiliProject Team`
			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License`
			`# as published by the Free Software Foundation; either version 2`
			`# of the License, or (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program; if not, write to the Free Software`
			`# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`#`
			`# See doc/COPYRIGHT.rdoc for more details.`
			`#++`

			`require File.expand_path('../../../spec_helper', __FILE__)`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`describe 'API v2', type: :request do`
some regression tests for api key auth 11 years ago			`let(:admin) { FactoryGirl.create :admin }`
			`let(:project) { FactoryGirl.create(:project) }`

			`before do`
Improves specs 11 years ago			`@api_key = api_key`
Convert specs to RSpec 2.14.8 syntax with Transpec This conversion is done by Transpec 1.10.4 with the following command: transpec * 1414 conversions from: obj.should to: expect(obj).to * 646 conversions from: == expected to: eq(expected) * 376 conversions from: obj.stub(:message) to: allow(obj).to receive(:message) * 107 conversions from: obj.should_not to: expect(obj).not_to * 70 conversions from: obj.should_receive(:message) to: expect(obj).to receive(:message) * 45 conversions from: =~ [1, 2] to: match_array([1, 2]) * 27 conversions from: lambda { }.should to: expect { }.to * 13 conversions from: Klass.any_instance.stub(:message) to: allow_any_instance_of(Klass).to receive(:message) * 8 conversions from: === expected to: be === expected * 7 conversions from: expect { }.not_to raise_error(SpecificErrorClass) to: expect { }.not_to raise_error * 6 conversions from: =~ /pattern/ to: match(/pattern/) * 2 conversions from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: < expected to: be < expected * 1 conversion from: obj.stub!(:message) to: allow(obj).to receive(:message) * 1 conversion from: stub('something') to: double('something') 11 years ago			`allow(Setting).to receive(:login_required?).and_return true`
			`allow(Setting).to receive(:rest_api_enabled?).and_return true`
some regression tests for api key auth 11 years ago			`end`

			`after do`
			`User.current = nil # api key auth sets the current user, reset it to make test idempotent`
			`end`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`describe 'key authentication' do`
Improves specs 11 years ago			`let(:api_key) { admin.api_key }`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`shared_examples_for 'API key access' do`
			`context 'invalid' do`
Improves specs 11 years ago			`before { get "#{request_url}?key=invalid_key" }`
some regression tests for api key auth 11 years ago
Improves specs 11 years ago			`it { expect(response.status).to eq(401) }`
some regression tests for api key auth 11 years ago			`end`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`context 'valid' do`
Improves specs 11 years ago			`before { get "#{request_url}?key=#{api_key}" }`
some regression tests for api key auth 11 years ago
Improves specs 11 years ago			`it { expect(response.status).to eq(200) }`
some regression tests for api key auth 11 years ago			`end`
			`end`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`describe 'for planning element types' do`
Improves specs 11 years ago			`let(:request_url) { "/api/v2/projects/#{project.id}/planning_element_types.json" }`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`it_behaves_like 'API key access'`
Improves specs 11 years ago			`end`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`describe 'for project associations' do`
Improves specs 11 years ago			`let(:request_url) { "/api/v2/projects/#{project.id}/project_associations.xml" }`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`it_behaves_like 'API key access'`
some regression tests for api key auth 11 years ago			`end`

			`describe "for project associations' available projects" do`
Improves specs 11 years ago			`let(:request_url) { "/api/v2/projects/#{project.id}/project_associations/available_projects.xml" }`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`it_behaves_like 'API key access'`
some regression tests for api key auth 11 years ago			`end`

Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`describe 'for reportings' do`
Improves specs 11 years ago			`let(:request_url) { "/api/v2/projects/#{project.id}/reportings.xml" }`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`it_behaves_like 'API key access'`
some regression tests for api key auth 11 years ago			`end`

			`describe "for reportings' available projects" do`
Improves specs 11 years ago			`let(:request_url) { "/api/v2/projects/#{project.id}/reportings/available_projects.xml" }`
some regression tests for api key auth 11 years ago
Fix syntax (w/Rubocop) in specs Signed-off-by: Alex Coles <alex@alexbcoles.com> 10 years ago			`it_behaves_like 'API key access'`
some regression tests for api key auth 11 years ago			`end`
			`end`
			`end`