Sha256: 6435bc5e0265312e058720afa604dd1950933f70216506ce7ede4c0922b14f98
Contents?: true
Size: 1.55 KB
Versions: 8
Compression:
Stored size: 1.55 KB
Contents
# frozen_string_literal: true
require 'spec_helper'
describe "Product Display Order", type: :feature do
stub_authorization!
context "managing display order", js: true do
def assert_selected_taxons(taxons)
# Regression test for https://github.com/spree/spree/issues/2139
taxons.each do |taxon|
expect(page).to have_css(".select2-search-choice", text: taxon.name)
end
expected_value = taxons.map(&:id).join(",")
expect(page).to have_xpath("//*[@id = 'product_taxon_ids' and @value = '#{expected_value}']", visible: :all)
end
let(:product) { create(:product) }
it "should allow an admin to manage display order (taxons)" do
taxon_1 = create(:taxon)
taxon_2 = create(:taxon, name: 'Clothing')
product.taxons << taxon_1
visit spree.edit_admin_product_path(product)
assert_selected_taxons([taxon_1])
select2_search "Clothing", from: "Taxon"
assert_selected_taxons([taxon_1, taxon_2])
click_button "Update"
expect(find(".flash")).to have_text "Product \"#{product.name}\" has been successfully updated!"
assert_selected_taxons([taxon_1, taxon_2])
end
context "with an XSS attempt", skip: true do
let(:taxon_name) { %(<script>throw("XSS")</script>) }
let!(:taxon) { create(:taxon, name: taxon_name) }
it "displays the escaped HTML without executing it" do
visit spree.edit_admin_product_path(product)
select2_search "<script>", from: "Taxon"
expect(page).to have_content(taxon_name)
end
end
end
end
Version data entries
8 entries across 8 versions & 1 rubygems