2023-03-04 16:57:22 +01:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
require 'rails_helper'
|
|
|
|
require 'pundit/rspec'
|
|
|
|
|
2024-09-04 07:12:25 +02:00
|
|
|
RSpec.describe Admin::StatusPolicy do
|
2023-03-04 16:57:22 +01:00
|
|
|
let(:policy) { described_class }
|
|
|
|
let(:admin) { Fabricate(:user, role: UserRole.find_by(name: 'Admin')).account }
|
|
|
|
let(:john) { Fabricate(:account) }
|
2023-09-06 16:40:19 +02:00
|
|
|
let(:status) { Fabricate(:status, visibility: status_visibility) }
|
|
|
|
let(:status_visibility) { :public }
|
2023-03-04 16:57:22 +01:00
|
|
|
|
|
|
|
permissions :index?, :update?, :review?, :destroy? do
|
|
|
|
context 'with an admin' do
|
|
|
|
it 'permits' do
|
|
|
|
expect(policy).to permit(admin, Tag)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'with a non-admin' do
|
|
|
|
it 'denies' do
|
|
|
|
expect(policy).to_not permit(john, Tag)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
permissions :show? do
|
|
|
|
context 'with an admin' do
|
|
|
|
context 'with a public visible status' do
|
2023-09-06 16:40:19 +02:00
|
|
|
let(:status_visibility) { :public }
|
2023-03-04 16:57:22 +01:00
|
|
|
|
|
|
|
it 'permits' do
|
|
|
|
expect(policy).to permit(admin, status)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'with a not public visible status' do
|
2023-09-06 16:40:19 +02:00
|
|
|
let(:status_visibility) { :direct }
|
2023-03-04 16:57:22 +01:00
|
|
|
|
|
|
|
it 'denies' do
|
|
|
|
expect(policy).to_not permit(admin, status)
|
|
|
|
end
|
2023-09-06 16:40:19 +02:00
|
|
|
|
|
|
|
context 'when the status mentions the admin' do
|
|
|
|
before do
|
|
|
|
status.mentions.create!(account: admin)
|
|
|
|
end
|
|
|
|
|
|
|
|
it 'permits' do
|
|
|
|
expect(policy).to permit(admin, status)
|
|
|
|
end
|
|
|
|
end
|
2023-03-04 16:57:22 +01:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'with a non admin' do
|
|
|
|
it 'denies' do
|
|
|
|
expect(policy).to_not permit(john, status)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|