mirror of
https://github.com/TracksApp/tracks.git
synced 2025-12-16 15:20:13 +01:00
35ae5fc431
* Ran rake rails:update * Added old actionwebservice framework * Updated RSpec and RSpec-Rails * Removed asset_packager plugin (not compatible, Scott no longer maintaining), and replaced with bundle_fu. See the bundle_fu README for more info. * Hacks to UJS and ARTS plugins, which are no longer supported. Probably should move off both UJS and RJS. * Hack to flashobject_helper plugin (upgrade to Rails 2.2-compatible version if/when it comes out.) * Hack to skinny-spec plugin, for Rails 2.2 compatibility. Should check for official release. * Hacks to resource_feeder plugin, for Rails 2.2 compatibility. Should check for official release (not likely) or move off it. * Addressed some deprecation warnings. More to come. * My mobile mime type hackery is no longer necessary with new Rails features. Yay! * Updated environment.rb.tmpl with changes TODO: * Restore view specs marked pending * Fix failing integration tests. * Try selenium tests. * Investigate OpenID support. * Address deprecation warnings. * Consider moving parts of environment.rb to initializers * Address annoying config.gem warning about highline gem
107 lines
No EOL
4 KiB
Ruby
107 lines
No EOL
4 KiB
Ruby
require File.dirname(__FILE__) + '/../test_helper'
|
|
require 'users_controller'
|
|
|
|
# Re-raise errors caught by the controller.
|
|
class UsersController; def rescue_action(e) raise e end; end
|
|
|
|
class UsersXmlApiTest < ActionController::IntegrationTest
|
|
fixtures :users
|
|
|
|
@@foobar_postdata = "<request><login>foo</login><password>bar</password></request>"
|
|
@@johnny_postdata = "<request><login>johnny</login><password>barracuda</password></request>"
|
|
|
|
def setup
|
|
assert_test_environment_ok
|
|
end
|
|
|
|
def test_fails_with_401_if_not_authorized_user
|
|
authenticated_post_xml_to_user_create @@foobar_postdata, 'nobody', 'nohow'
|
|
assert_401_unauthorized_admin
|
|
end
|
|
|
|
def test_fails_with_401_if_not_admin_user
|
|
authenticated_post_xml_to_user_create @@foobar_postdata, users(:other_user).login, 'sesame'
|
|
assert_401_unauthorized_admin
|
|
end
|
|
|
|
def test_content_type_must_be_xml
|
|
authenticated_post_xml_to_user_create @@foobar_postdata, users(:admin_user).login, 'abracadabra', {'CONTENT_TYPE' => "application/x-www-form-urlencoded"}
|
|
assert_404_invalid_xml
|
|
end
|
|
|
|
# Fails too hard for test to catch
|
|
# def test_fails_with_invalid_xml_format
|
|
# authenticated_post_xml_to_user_create "<foo></bar>"
|
|
# assert_equal 500, @integration_session.status
|
|
# end
|
|
|
|
def test_fails_with_invalid_xml_format2
|
|
authenticated_post_xml_to_user_create "<request><username>foo</username></request>"
|
|
assert_404_invalid_xml
|
|
end
|
|
|
|
def test_xml_simple_param_parsing
|
|
authenticated_post_xml_to_user_create
|
|
assert @controller.params.has_key?(:request)
|
|
assert @controller.params[:request].has_key?(:login)
|
|
assert @controller.params[:request].has_key?(:password)
|
|
assert_equal 'foo', @controller.params[:request][:login]
|
|
assert_equal 'bar', @controller.params[:request][:password]
|
|
end
|
|
|
|
def test_fails_with_too_short_password
|
|
authenticated_post_xml_to_user_create
|
|
assert_response_and_body 404, "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<errors>\n <error>Password is too short (minimum is 5 characters)</error>\n</errors>\n"
|
|
end
|
|
|
|
def test_fails_with_nonunique_login
|
|
existing_login = users(:other_user).login
|
|
authenticated_post_xml_to_user_create "<request><login>#{existing_login}</login><password>barracuda</password></request>"
|
|
assert_response_and_body 404, "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<errors>\n <error>Login has already been taken</error>\n</errors>\n"
|
|
end
|
|
|
|
def test_creates_new_user
|
|
initial_count = User.count
|
|
authenticated_post_xml_to_user_create @@johnny_postdata
|
|
assert_response_and_body 200, "User created."
|
|
assert_equal initial_count + 1, User.count
|
|
johnny1 = User.find_by_login('johnny')
|
|
assert_not_nil johnny1, "expected user johnny to be created"
|
|
johnny2 = User.authenticate('johnny','barracuda')
|
|
assert_not_nil johnny2, "expected user johnny to be created"
|
|
end
|
|
|
|
def test_fails_with_get_verb
|
|
authenticated_get_xml "/users", users(:admin_user).login, 'abracadabra', {}
|
|
end
|
|
|
|
def test_get_users_as_xml
|
|
get '/users.xml', {}, basic_auth_headers()
|
|
assert_response :success
|
|
assert_tag :tag => "users",
|
|
:children => { :count => 4, :only => { :tag => "user" } }
|
|
assert_no_tag :tag => "password"
|
|
end
|
|
|
|
def test_get_user_as_xml
|
|
get "/users/#{users(:other_user).login}.xml", {}, basic_auth_headers()
|
|
assert_response :success
|
|
assert_tag :tag => "user"
|
|
assert_no_tag :tag => "password"
|
|
end
|
|
|
|
private
|
|
|
|
def basic_auth_headers(username = users(:admin_user).login, password = 'abracadabra')
|
|
{'AUTHORIZATION' => "Basic " + Base64.encode64("#{username}:#{password}") }
|
|
end
|
|
|
|
def authenticated_post_xml_to_user_create(postdata = @@foobar_postdata, user = users(:admin_user).login, password = 'abracadabra', headers = {})
|
|
authenticated_post_xml "/users", user, password, postdata, headers
|
|
end
|
|
|
|
def assert_404_invalid_xml
|
|
assert_response_and_body 404, "Expected post format is valid xml like so: <request><login>username</login><password>abc123</password></request>."
|
|
end
|
|
|
|
end |