Contents

# Spree's rpsec controller tests get the Spree::ControllerHacks
# we don't need those for the anonymous controller here, so
# we call process directly instead of get
require 'spec_helper'

describe Spree::Admin::BaseController, type: :controller do
  controller(Spree::Admin::BaseController) do
    def index
      authorize! :update, Spree::Order
      render plain: 'test'
    end
  end

  context "unauthorized request" do
    before do
      allow_any_instance_of(Spree::Admin::BaseController).to receive(:spree_current_user).and_return(nil)
    end

    it "redirects to root" do
      allow(controller).to receive_message_chain(:spree, :root_path).and_return('/root')
      get :index
      expect(response).to redirect_to '/root'
    end
  end

  context "#generate_api_key" do
    let(:user) { mock_model(Spree.user_class, has_spree_role?: true) }

    before do
      allow(controller).to receive(:authorize_admin) { true }
      allow(controller).to receive(:try_spree_current_user) { user }
    end

    it "generates the API key for a user when they visit" do
      expect(user).to receive(:spree_api_key).and_return(nil)
      expect(user).to receive(:generate_spree_api_key!)
      get :index
    end

    it "does not attempt to regenerate the API key if the key is already set" do
      expect(user).to receive(:spree_api_key).and_return('fake')
      expect(user).not_to receive(:generate_spree_api_key!)
      get :index
    end
  end
end

Version data entries

6 entries across 6 versions & 1 rubygems

Version	Path
spree_backend-3.3.0.rc1	spec/controllers/spree/admin/base_controller_spec.rb
spree_backend-3.2.1	spec/controllers/spree/admin/base_controller_spec.rb
spree_backend-3.2.0	spec/controllers/spree/admin/base_controller_spec.rb
spree_backend-3.2.0.rc3	spec/controllers/spree/admin/base_controller_spec.rb
spree_backend-3.2.0.rc2	spec/controllers/spree/admin/base_controller_spec.rb
spree_backend-3.2.0.rc1	spec/controllers/spree/admin/base_controller_spec.rb