| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 |
- # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
- require 'rails_helper'
- describe MacroPolicy do
- subject { described_class.new(user, record) }
- let(:record) { create(:macro, groups:) }
- context 'when user is admin' do
- let(:user) { create(:admin) }
- context 'when macro is not active' do
- before { record.update! active: false }
- let(:groups) { [] }
- it { is_expected.to permit_actions(:show, :create, :update, :destroy) }
- end
- context 'when macro has group user does not have access to' do
- let(:groups) { [create(:group)] }
- it { is_expected.to permit_actions(:show, :create, :update, :destroy) }
- end
- end
- context 'when user is agent' do
- let(:group) { create(:group) }
- let(:user) { create(:agent, groups: [group]) }
- context 'when macro has no group' do
- let(:groups) { [] }
- it { is_expected.to permit_action(:show) }
- it { is_expected.to forbid_actions(:create, :update, :destroy) }
- context 'when macro is not active' do
- before { record.update! active: false }
- it { is_expected.to forbid_actions(:show, :create, :update, :destroy) }
- end
- end
- context 'when macro has group user has access to' do
- let(:groups) { [group, create(:group)] }
- it { is_expected.to permit_action(:show) }
- it { is_expected.to forbid_actions(:create, :update, :destroy) }
- context 'when macro is not active' do
- before { record.update! active: false }
- it { is_expected.to forbid_actions(:show, :create, :update, :destroy) }
- end
- end
- context 'when macro has group user no access to' do
- let(:groups) { [create(:group)] }
- it { is_expected.to forbid_actions(:show, :create, :update, :destroy) }
- end
- end
- context 'when user is customer' do
- let(:user) { create(:customer) }
- let(:groups) { [] }
- it { is_expected.to forbid_actions(:show, :create, :update, :destroy) }
- end
- end
|
