RubygemsResearch

Sha256: 010c4457e2d49753f3d9f606fde014a1e031a2147112cc5a4c5b1c4d0d028e6c

Contents?: true

Size: 1.12 KB

Versions: 13

Compression:

Stored size: 1.12 KB

# frozen_string_literal: true

require 'spec_helper'

feature 'Promotion with user rule', js: true do
  stub_authorization!

  given(:promotion) { create :promotion }

  background do
    visit spree.edit_admin_promotion_path(promotion)
  end

  context "multiple users" do
    let!(:user) { create(:user, email: 'foo@example.com') }
    let!(:other_user) { create(:user, email: 'bar@example.com') }

    scenario "searching a user" do
      select "User", from: "Add rule of type"
      within("#rules_container") { click_button "Add" }

      select2_search "foo", from: "Choose users", select: false

      expect(page).to have_content('foo@example.com')
      expect(page).not_to have_content('bar@example.com')
    end
  end

  context "with an attempted XSS" do
    let(:xss_string) { %(<script>throw("XSS")</script>) }
    given!(:user) { create(:user, email: xss_string) }

    scenario "adding an option value rule" do
      select "User", from: "Add rule of type"
      within("#rules_container") { click_button "Add" }

      select2_search "<script>", from: "Choose users"

      expect(page).to have_content(xss_string)
    end
  end
end

Version data entries

13 entries across 13 versions & 1 rubygems

Version	Path
solidus_backend-2.6.6	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.7.4	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.7.3	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.5	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.7.2	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.4	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.3	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.7.1	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.2	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.7.0	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.1	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.0	spec/features/admin/promotions/user_rule_spec.rb
solidus_backend-2.6.0.rc1	spec/features/admin/promotions/user_rule_spec.rb