Sha256: a3e600d89d2822b6fecfe5ee700c26f9d46acbb881e02bfc3b220dc9976dd25f

Contents?: true

Size: 1.25 KB

Versions: 6

Compression:

Stored size: 1.25 KB

Contents

# frozen_string_literal: true

require "logger"

RSpec.describe Rails::Auth::ACL::Middleware do
  let(:request)     { Rack::MockRequest.env_for("https://www.example.com") }
  let(:app)         { ->(env) { [200, env, "Hello, world!"] } }
  let(:acl)         { instance_double(Rails::Auth::ACL, match: authorized) }
  let(:middleware)  { described_class.new(app, acl: acl) }

  context "authorized" do
    let(:authorized) { true }

    it "allows authorized requests" do
      expect(middleware.call(request)[0]).to eq 200
    end
  end

  context "unauthorized" do
    let(:authorized) { false }

    it "raises Rails::Auth::NotAuthorizedError for unauthorized requests" do
      expect { expect(middleware.call(request)) }.to raise_error(Rails::Auth::NotAuthorizedError)
    end
  end

  context "externally authorized requests" do
    let(:authorized) { false }
    let(:external_middleware) do
      Class.new do
        def initialize(app)
          @app = app
        end

        def call(env)
          allowed_by = "example"
          Rails::Auth.authorized!(env, allowed_by)
          @app.call(env)
        end
      end
    end

    it "allows externally authorized requests" do
      expect(external_middleware.new(middleware).call(request)[0]).to eq 200
    end
  end
end

Version data entries

6 entries across 6 versions & 1 rubygems

Version Path
rails-auth-3.2.0 spec/rails/auth/acl/middleware_spec.rb
rails-auth-3.1.0 spec/rails/auth/acl/middleware_spec.rb
rails-auth-3.0.0 spec/rails/auth/acl/middleware_spec.rb
rails-auth-2.2.2 spec/rails/auth/acl/middleware_spec.rb
rails-auth-2.2.1 spec/rails/auth/acl/middleware_spec.rb
rails-auth-2.2.0 spec/rails/auth/acl/middleware_spec.rb