transferred Code Ocean from original repository to GitHub

2015-01-22 09:51:49 +01:00
commit 4cbf9970b1
683 changed files with 11979 additions and 0 deletions
--- a/spec/policies/exercise_policy_spec.rb
+++ b/spec/policies/exercise_policy_spec.rb
@ -0,0 +1,99 @@
+require 'rails_helper'
+
+describe ExercisePolicy do
+  subject { ExercisePolicy }
+
+  let(:exercise) { FactoryGirl.build(:fibonacci) }
+
+  [:create?, :index?, :new?].each do |action|
+    permissions(action) do
+      it 'grants access to admins' do
+        expect(subject).to permit(FactoryGirl.build(:admin), exercise)
+      end
+
+      it 'grants access to teachers' do
+        expect(subject).to permit(FactoryGirl.build(:teacher), exercise)
+      end
+
+      it 'does not grant access to external users' do
+        expect(subject).not_to permit(FactoryGirl.build(:external_user), exercise)
+      end
+    end
+  end
+
+  [:destroy?, :edit?, :show?, :update?].each do |action|
+    permissions(action) do
+      it 'grants access to admins' do
+        expect(subject).to permit(FactoryGirl.build(:admin), exercise)
+      end
+
+      it 'grants access to authors' do
+        expect(subject).to permit(exercise.author, exercise)
+      end
+
+      it 'does not grant access to all other users' do
+        [:external_user, :teacher].each do |factory_name|
+          expect(subject).not_to permit(FactoryGirl.build(factory_name), exercise)
+        end
+      end
+    end
+  end
+
+  [:implement?, :submit?].each do |action|
+    permissions(action) do
+      it 'grants access to anyone' do
+        [:admin, :external_user, :teacher].each do |factory_name|
+          expect(subject).to permit(FactoryGirl.build(factory_name), Exercise.new)
+        end
+      end
+    end
+  end
+
+  describe ExercisePolicy::Scope do
+    describe '#resolve' do
+      let(:admin) { FactoryGirl.create(:admin) }
+      let(:external_user) { FactoryGirl.create(:external_user) }
+      let(:teacher) { FactoryGirl.create(:teacher) }
+
+      before(:each) do
+        [admin, teacher].each do |user|
+          [true, false].each do |public|
+            FactoryGirl.create(:fibonacci, public: public, user_id: user.id, user_type: InternalUser.class.name)
+          end
+        end
+      end
+
+      context 'for admins' do
+        let(:scope) { Pundit.policy_scope!(admin, Exercise) }
+
+        it 'returns all exercises' do
+          expect(scope.map(&:id)).to include(*Exercise.all.map(&:id))
+        end
+      end
+
+      context 'for external users' do
+        let(:scope) { Pundit.policy_scope!(external_user, Exercise) }
+
+        it 'returns only public exercises' do
+          expect(scope.map(&:id)).to include(*Exercise.where(public: true).map(&:id))
+        end
+      end
+
+      context 'for teachers' do
+        let(:scope) { Pundit.policy_scope!(teacher, Exercise) }
+
+        it 'includes all public exercises' do
+          expect(scope.map(&:id)).to include(*Exercise.where(public: true).map(&:id))
+        end
+
+        it 'includes all authored non-public exercises' do
+          expect(scope.map(&:id)).to include(*Exercise.where(public: false, user_id: teacher.id).map(&:id))
+        end
+
+        it "does not include other authors' non-public exercises" do
+          expect(scope.map(&:id)).not_to include(*Exercise.where(public: false).where("user_id <> #{teacher.id}").map(&:id))
+        end
+      end
+    end
+  end
+end