Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: f43894dd00
Branches Tags
zammad
/
spec
/
policies
/
token_policy_spec.rb

token_policy_spec.rb 780 B
History Raw

123456789101112131415161718192021222324252627282930 
  1. # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. describe TokenPolicy do
    6. 

  6.   subject(:token_policy) { described_class.new(user, record) }
    7. 

  7. 

  8.   context 'when token is visible in frontend' do
    9. 

  9.     let(:record) { create(:token) }
    10. 

  10. 

  11.     context 'when token is owned by the same user' do
    12. 

  12.       let(:user) { record.user }
    13. 

  13. 

  14.       it { is_expected.to permit_action(:destroy) }
    15. 

  15.     end
    16. 

  16. 

  17.     context 'when token is owned by another user' do
    18. 

  18.       let(:user) { create(:user) }
    19. 

  19. 

  20.       it { is_expected.to forbid_action(:destroy) }
    21. 

  21.     end
    22. 

  22.   end
    23. 

  23. 

  24.   context 'when token is not visible in frontend' do
    25. 

  25.     let(:record) { create(:token, action: :nonapi) }
    26. 

  26.     let(:user)   { record.user }
    27. 

  27. 

  28.     it { is_expected.to forbid_action(:destroy) }
    29. 

  29.   end
    30. 

  30. end
    31.