123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596 |
- # Copyright (C) 2012-2025 Zammad Foundation, https://zammad-foundation.org/
- require 'rails_helper'
- RSpec.describe Service::History::Group, current_user_id: -> { user.id } do
- subject(:service) { described_class.new(current_user: user) }
- before do
- object
- end
- context 'when history object is a ticket' do
- let(:group) { create(:group) }
- let(:object) { create(:ticket, group: group) }
- context 'when user is not authorized to view the ticket' do
- let(:user) { create(:agent) }
- it 'raises an error' do
- expect { service.execute(object:) }.to raise_error(Pundit::NotAuthorizedError)
- end
- end
- context 'when user is authorized to view the ticket' do
- let(:user) { create(:agent, groups: [group]) }
- it 'returns a group of history records for the ticket', :aggregate_failures do
- expect { service.execute(object:) }.not_to raise_error
- expect(service.execute(object:)).to be_an_instance_of(Array)
- expect(service.execute(object:).first).to include(
- :created_at, :records
- )
- expect(service.execute(object:).first[:records].first).to include(
- :issuer, :events
- )
- expect(service.execute(object:).first[:records].first[:events].first).not_to include(:issuer)
- end
- end
- end
- context 'when history object is a user' do
- let(:object) { create(:user) }
- context 'when user is not authorized to view the user' do
- let(:user) { create(:customer) }
- it 'raises an error' do
- expect { service.execute(object:) }.to raise_error(Pundit::NotAuthorizedError)
- end
- end
- context 'when user is authorized to view the user' do
- let(:user) { create(:admin) }
- it 'returns a group of history records for the user', :aggregate_failures do
- expect { service.execute(object:) }.not_to raise_error
- expect(service.execute(object:)).to be_an_instance_of(Array)
- expect(service.execute(object:).first).to include(
- :created_at, :records
- )
- expect(service.execute(object:).first[:records].first).to include(
- :issuer, :events
- )
- expect(service.execute(object:).first[:records].first[:events].first).not_to include(:issuer)
- end
- end
- end
- context 'when history object is a organization' do
- let(:object) { create(:organization) }
- context 'when user is not authorized to view the organization' do
- let(:user) { create(:customer) }
- it 'raises an error' do
- expect { service.execute(object:) }.to raise_error(Pundit::NotAuthorizedError)
- end
- end
- context 'when user is authorized to view the organization' do
- let(:user) { create(:admin) }
- it 'returns a group of history records for the organization', :aggregate_failures do
- expect { service.execute(object:) }.not_to raise_error
- expect(service.execute(object:)).to be_an_instance_of(Array)
- expect(service.execute(object:).first).to include(
- :created_at, :records
- )
- expect(service.execute(object:).first[:records].first).to include(
- :issuer, :events
- )
- expect(service.execute(object:).first[:records].first[:events].first).not_to include(:issuer)
- end
- end
- end
- end
|