Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Browse Source

Refactoring: Use more explicit methods to reason about code.

Thorsten Eckel 4 years ago
parent
a7607f574e
commit
f5dc00e6d5
2 changed files with 53 additions and 10 deletions
Split View Show Diff Stats
  1. 20 9
      app/policies/ticket_policy.rb
  2. 33 1
      spec/policies/ticket_policy_spec.rb

+ 20 - 9
app/policies/ticket_policy.rb
View File 

@@ -37,23 +37,34 @@ class TicketPolicy < ApplicationPolicy
 
   private
 
 
   def access?(access)
 
+    return true if agent_access?(access)
 
 
-    # agent - access if requester is owner
 
-    return true if record.owner_id == user.id
 
+    customer_access?
 
+  end
 
+
 
+  def agent_access?(access)
 
+    return false if !user.permissions?('ticket.agent')
 
+    return true if owner?
 
+
 
+    user.group_access?(record.group.id, access)
 
+  end
 
 
-    # agent - access if requester is in group
 
-    return true if user.group_access?(record.group.id, access)
 
+  def owner?
 
+    record.owner_id == user.id
 
+  end
 
 
-    # check customer
 
+  def customer_access?
 
     return false if !user.permissions?('ticket.customer')
 
+    return true if customer?
 
 
-    # access ok if its own ticket
 
-    return true if record.customer_id == user.id
 
+    shared_organization?
 
+  end
 
 
-    organization_access?
 
+  def customer?
 
+    record.customer_id == user.id
 
   end
 
 
-  def organization_access?
 
+  def shared_organization?
 
     return false if record.organization_id.blank?
 
     return false if user.organization_id.blank?
 
     return false if record.organization_id != user.organization_id

+ 33 - 1
spec/policies/ticket_policy_spec.rb
View File 

@@ -8,7 +8,18 @@ describe TicketPolicy do
 
   context 'when given ticket’s owner' do
 
     let(:user) { record.owner }
 
 
-    it { is_expected.to permit_actions(%i[show full]) }
 
+    it { is_expected.not_to permit_actions(%i[show full]) }
 
+
 
+    context 'when owner has ticket.agent permission' do
 
+
 
+      let(:user) do
 
+        create(:agent, groups: [record.group]).tap do |user|
 
+          record.update!(owner: user)
 
+        end
 
+      end
 
+
 
+      it { is_expected.to permit_actions(%i[show full]) }
 
+    end
 
   end
 
 
   context 'when given user that is agent and customer' do
 
@@ -44,5 +55,26 @@ describe TicketPolicy do
 
         it { is_expected.not_to permit_actions(%i[show full]) }
 
       end
 
     end
 
+
 
+    context 'when user is admin with group access' do
 
+      let(:user) { create(:user, roles: Role.where(name: %w[Admin])) }
 
+
 
+      it { is_expected.not_to permit_actions(%i[show full]) }
 
+    end
 
+  end
 
+
 
+  context 'when user is agent' do
 
+
 
+    context 'when owner has ticket.agent permission' do
 
+
 
+      let(:user) do
 
+        create(:agent, groups: [record.group]).tap do |user|
 
+          record.update!(owner: user)
 
+        end
 
+      end
 
+
 
+      it { is_expected.to permit_actions(%i[show full]) }
 
+    end
 
+
 
   end
 
 end