Sha256: cb3742482648868fc8c1a39370eb08d359133a5faf1213afbadbfd6a871a8ca1
Contents?: true
Size: 1.49 KB
Versions: 1
Compression:
Stored size: 1.49 KB
Contents
require 'spec_helper' module Alchemy describe AttachmentsController do let(:attachment) { build_stubbed(:attachment) } it "should raise ActiveRecord::RecordNotFound for requesting not existing attachments" do expect { get :download, id: 0 }.to raise_error(ActiveRecord::RecordNotFound) end context 'with restricted attachment' do before do allow(attachment).to receive(:restricted?).and_return(true) allow(Attachment).to receive(:find).and_return(attachment) end context 'as anonymous user' do it "should not be possible to download attachments from restricted pages" do get :download, :id => attachment.id expect(response.status).to eq(302) expect(response).to redirect_to(Alchemy.login_path) end it "should not be possible to see attachments from restricted pages" do get :show, :id => attachment.id expect(response.status).to eq(302) expect(response).to redirect_to(Alchemy.login_path) end end context "as member user" do before { sign_in(member_user) } it "should be possible to download attachments from restricted pages" do get :download, :id => attachment.id expect(response.status).to eq(200) end it "should be possible to see attachments from restricted pages" do get :show, :id => attachment.id expect(response.status).to eq(200) end end end end end
Version data entries
1 entries across 1 versions & 1 rubygems
Version | Path |
---|---|
alchemy_cms-3.1.0.beta1 | spec/controllers/attachments_controller_spec.rb |