91 lines
2.5 KiB
Ruby
91 lines
2.5 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'rails_helper'
|
|
|
|
describe CodeOcean::FilePolicy do
|
|
subject { described_class }
|
|
|
|
let(:exercise) { FactoryBot.create(:fibonacci) }
|
|
let(:submission) { FactoryBot.create(:submission) }
|
|
|
|
permissions :create? do
|
|
context 'as part of an exercise' do
|
|
let(:file) { exercise.files.first }
|
|
|
|
it 'grants access to admins' do
|
|
expect(subject).to permit(FactoryBot.build(:admin), file)
|
|
end
|
|
|
|
it 'grants access to authors' do
|
|
expect(subject).to permit(exercise.author, file)
|
|
end
|
|
|
|
it 'does not grant access to all other users' do
|
|
%i[external_user teacher].each do |factory_name|
|
|
expect(subject).not_to permit(FactoryBot.build(factory_name), file)
|
|
end
|
|
end
|
|
end
|
|
|
|
context 'as part of a submission' do
|
|
let(:file) { submission.files.first }
|
|
|
|
context 'where file creation is allowed' do
|
|
before do
|
|
submission.exercise.update(allow_file_creation: true)
|
|
end
|
|
|
|
it 'grants access to authors' do
|
|
expect(subject).to permit(submission.author, file)
|
|
end
|
|
end
|
|
|
|
context 'where file creation is not allowed' do
|
|
before do
|
|
submission.exercise.update(allow_file_creation: false)
|
|
end
|
|
|
|
it 'grants access to authors' do
|
|
expect(subject).not_to permit(submission.author, file)
|
|
end
|
|
end
|
|
|
|
it 'does not grant access to all other users' do
|
|
%i[admin external_user teacher].each do |factory_name|
|
|
expect(subject).not_to permit(FactoryBot.build(factory_name), file)
|
|
end
|
|
end
|
|
end
|
|
end
|
|
|
|
permissions :destroy? do
|
|
context 'as part of an exercise' do
|
|
let(:file) { exercise.files.first }
|
|
|
|
it 'grants access to admins' do
|
|
expect(subject).to permit(FactoryBot.build(:admin), file)
|
|
end
|
|
|
|
it 'grants access to authors' do
|
|
expect(subject).to permit(exercise.author, file)
|
|
end
|
|
|
|
it 'does not grant access to all other users' do
|
|
%i[external_user teacher].each do |factory_name|
|
|
expect(subject).not_to permit(FactoryBot.build(factory_name), file)
|
|
end
|
|
end
|
|
end
|
|
|
|
context 'as part of a submission' do
|
|
let(:file) { submission.files.first }
|
|
|
|
it 'does not grant access to anyone' do
|
|
%i[admin external_user teacher].each do |factory_name|
|
|
expect(subject).not_to permit(FactoryBot.build(factory_name), file)
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|