X-Git-Url: https://git.openstreetmap.org/rails.git/blobdiff_plain/523291442766e7cd4adbad6d2bc7c6803cdd3811..4d20a2c96a3ff722071e7b1093d260b1236b2eeb:/test/models/abilities_test.rb diff --git a/test/models/abilities_test.rb b/test/models/abilities_test.rb index 6472ad2e3..298e8299b 100644 --- a/test/models/abilities_test.rb +++ b/test/models/abilities_test.rb @@ -4,8 +4,29 @@ require "test_helper" class AbilityTest < ActiveSupport::TestCase + def tokens(*toks) + AccessToken.new do |token| + toks.each do |t| + token.public_send("#{t}=", true) + end + end + end + +end + +class GuestAbilityTest < AbilityTest + + test "geocoder permission for a guest" do + ability = Ability.new nil, tokens + + [:search, :search_latlon, :search_ca_postcode, :search_osm_nominatim, + :search_geonames, :search_osm_nominatim_reverse, :search_geonames_reverse].each do |action| + assert ability.can?(action, :geocoder), "should be able to #{action} geocoder" + end + end + test "diary permissions for a guest" do - ability = Ability.new(nil, []) + ability = Ability.new nil, tokens [:list, :rss, :view, :comments].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" end @@ -16,9 +37,12 @@ class AbilityTest < ActiveSupport::TestCase end end +end + +class UserAbilityTest < AbilityTest - test "Diary permissions for a normal user" do - ability = Ability.new(create(:user), []) + test "Diary permissions" do + ability = Ability.new create(:user), tokens [:list, :rss, :view, :comments, :create, :edit, :comment, :subscribe, :unsubscribe].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" @@ -30,8 +54,47 @@ class AbilityTest < ActiveSupport::TestCase end end + test "user preferences" do + user = create(:user) + + # a user with no tokens + ability = Ability.new create(:user), nil + [:read, :read_one, :update, :update_one, :delete_one].each do |act| + assert ability.can? act, UserPreference + end + + # A user with empty tokens + ability = Ability.new create(:user), tokens + + [:read, :read_one, :update, :update_one, :delete_one].each do |act| + assert ability.cannot? act, UserPreference + end + + ability = Ability.new user, tokens(:allow_read_prefs) + + [:update, :update_one, :delete_one].each do |act| + assert ability.cannot? act, UserPreference + end + + [:read, :read_one].each do |act| + assert ability.can? act, UserPreference + end + + ability = Ability.new user, tokens(:allow_write_prefs) + [:read, :read_one].each do |act| + assert ability.cannot? act, UserPreference + end + + [:update, :update_one, :delete_one].each do |act| + assert ability.can? act, UserPreference + end + end +end + +class AdministratorAbilityTest < AbilityTest + test "Diary for an administrator" do - ability = Ability.new(create(:administrator_user), []) + ability = Ability.new create(:administrator_user), tokens [:list, :rss, :view, :comments, :create, :edit, :comment, :subscribe, :unsubscribe, :hide, :hidecomment].each do |action| assert ability.can?(action, DiaryEntry), "should be able to #{action} DiaryEntries" end @@ -40,4 +103,14 @@ class AbilityTest < ActiveSupport::TestCase assert ability.can?(action, DiaryComment), "should be able to #{action} DiaryComment" end end + + test "administrator does not auto-grant user preferences" do + ability = Ability.new create(:administrator_user), tokens + + [:read, :read_one, :update, :update_one, :delete_one].each do |act| + assert ability.cannot? act, UserPreference + end + end + + end