Sha256: 15ef6418ff5040a8ca3f68152717492025da461fe163f63e3abf2fcbe2e4aec2
Contents?: true
Size: 1.38 KB
Versions: 18
Compression:
Stored size: 1.38 KB
Contents
# frozen_string_literal: true require 'rails_helper' RSpec.describe 'a secure Rails API' do describe 'POST request to an API-only action' do subject(:api_call) { safe_post '/rails_api/secure_resource' } context 'with an authenticated user', :auth_request do it 'should be successful' do api_call expect(response.status).to eq(200) end end context 'without an authenticated user' do it 'should be unauthorized' do api_call expect(response.status).to eq(401) end end end describe 'GET json request to mixed API/website action' do subject(:api_call) { safe_get '/rails_api/secure_resource.json' } context 'with an authenticated user', :auth_request do it 'should be successful' do api_call expect(response.status).to eq(200) end end context 'without an authenticated user' do it 'should be unauthorized' do api_call expect(response.status).to eq(401) end end end describe 'GET html request to mixed API/website action' do subject(:website_call) { safe_get '/rails_api/secure_resource.html' } it 'should be a redirect' do website_call expect(response).to be_redirect end it 'should redirect to the new session path' do website_call expect(response).to redirect_to('/g5_auth/users/sign_in') end end end
Version data entries
18 entries across 18 versions & 1 rubygems