123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137 |
- # Copyright (C) 2012-2025 Zammad Foundation, https://zammad-foundation.org/
- RSpec.shared_examples 'mobile app: article security' do |integration:, ticket_create: false|
- let(:security_name) { integration == :pgp ? 'pgp' : 'smime' }
- let(:certificate) { integration == :pgp ? :pgp_key : :smime_certificate }
- def authenticate
- Setting.set("#{security_name}_integration", true)
- Setting.set("#{security_name}_config", security_config) if defined?(security_config)
- agent
- end
- shared_examples 'having available security options' do |encrypt:, sign:|
- it "available security options - encrypt: #{encrypt}, sign: #{sign}" do
- prepare_email_article
- expect { find_outer('Security') }.not_to raise_error
- expect(find_button('Encrypt', disabled: !encrypt).disabled?).to be(!encrypt)
- expect(find_button('Sign', disabled: !sign).disabled?).to be(!sign)
- click('button[aria-describedby="tooltip-security-security"]')
- expect(page).to have_css('[aria-label="Security Information"]')
- end
- end
- shared_examples 'saving article' do |encrypt:, sign:|
- it "can create a ticket - encrypt: #{encrypt}, sign: #{sign}" do
- prepare_email_article with_body: true
- submit_form
- find('[role=alert]', text: 'Ticket has been created successfully.') if ticket_create
- expect(Ticket.last.articles.last.preferences['security']['encryption']['success']).to be(encrypt)
- expect(Ticket.last.articles.last.preferences['security']['sign']['success']).to be(sign)
- end
- end
- context 'without certificates present' do
- it_behaves_like 'having available security options', encrypt: false, sign: false
- it_behaves_like 'saving article', encrypt: false, sign: false
- end
- context 'with sender certificate present' do
- let(:system_email_address) { "#{security_name}1@example.com" }
- let(:email_address) { create(:email_address, email: system_email_address) }
- let(:group) { create(:group, email_address: email_address) }
- before do
- create(certificate, :with_private, fixture: system_email_address)
- end
- it_behaves_like 'having available security options', encrypt: false, sign: true
- it_behaves_like 'saving article', encrypt: false, sign: true
- context 'with recipient certificate present' do
- let(:recipient_email_address) { "#{security_name}2@example.com" }
- let(:customer) { create(:customer, email: recipient_email_address) }
- before do
- create(certificate, fixture: recipient_email_address)
- end
- it_behaves_like 'having available security options', encrypt: true, sign: true
- it_behaves_like 'saving article', encrypt: true, sign: true
- it 'hides the security field for phone tickets' do
- prepare_phone_article
- expect(page).to have_no_css('label', text: 'Security')
- end
- context 'with default group configuration' do
- let(:security_config) do
- {
- 'group_id' => group_defaults
- }
- end
- let(:group_defaults) do
- {
- 'default_encryption' => {
- group.id.to_s => default_encryption,
- },
- 'default_sign' => {
- group.id.to_s => default_sign,
- }
- }
- end
- let(:default_sign) { true }
- let(:default_encryption) { true }
- shared_examples 'having default security options' do |encrypt:, sign:|
- it "default security options - encrypt: #{encrypt}, sign: #{sign}" do
- prepare_email_article
- expect(find_button('Encrypt')['aria-selected']).to eq(encrypt.to_s)
- expect(find_button('Sign')['aria-selected']).to eq(sign.to_s)
- end
- end
- it_behaves_like 'having default security options', encrypt: true, sign: true
- context 'when it has no value' do
- let(:group_defaults) { {} }
- it_behaves_like 'having default security options', encrypt: true, sign: true
- end
- context 'when signing is disabled' do
- let(:default_sign) { false }
- it_behaves_like 'having default security options', encrypt: true, sign: false
- end
- context 'when encryption is disabled' do
- let(:default_encryption) { false }
- it_behaves_like 'having default security options', encrypt: false, sign: true
- end
- end
- end
- end
- context 'with recipient certificate present' do
- let(:recipient_email_address) { "#{security_name}2@example.com" }
- let(:customer) { create(:customer, email: recipient_email_address) }
- before do
- create(certificate, fixture: recipient_email_address)
- end
- it_behaves_like 'having available security options', encrypt: true, sign: false
- it_behaves_like 'saving article', encrypt: true, sign: false
- end
- end
|