diff options
| author | GitLab Bot <gitlab-bot@gitlab.com> | 2023-08-02 00:10:20 +0300 |
|---|---|---|
| committer | GitLab Bot <gitlab-bot@gitlab.com> | 2023-08-02 00:10:20 +0300 |
| commit | cc77bdd6f5f12bea0f50064f3feadcd9c87009a6 (patch) | |
| tree | b9347c56663684eaa5939984c9a604dc767f214e /spec/finders | |
| parent | 9cf7b70ac7b17ea3310ebdf83e94d1d5fd248b82 (diff) | |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'spec/finders')
| -rw-r--r-- | spec/finders/work_items/namespace_work_items_finder_spec.rb | 123 |
1 files changed, 123 insertions, 0 deletions
diff --git a/spec/finders/work_items/namespace_work_items_finder_spec.rb b/spec/finders/work_items/namespace_work_items_finder_spec.rb new file mode 100644 index 00000000000..0b314a9635d --- /dev/null +++ b/spec/finders/work_items/namespace_work_items_finder_spec.rb @@ -0,0 +1,123 @@ +# frozen_string_literal: true + +require 'spec_helper' + +RSpec.describe WorkItems::NamespaceWorkItemsFinder, feature_category: :team_planning do + include AdminModeHelper + + describe '#execute' do + let_it_be(:group) { create(:group, :public) } + let_it_be(:sub_group) { create(:group, :private, parent: group) } + let_it_be(:project) { create(:project, :repository, :public, group: group) } + let_it_be(:user) { create(:user) } + let_it_be(:reporter) { create(:user).tap { |user| group.add_reporter(user) } } + let_it_be(:guest) { create(:user).tap { |user| group.add_guest(user) } } + let_it_be(:guest_author) { create(:user).tap { |user| group.add_guest(user) } } + let_it_be(:banned_user) { create(:banned_user) } + + let_it_be(:project_work_item) { create(:work_item, project: project) } + let_it_be(:sub_group_work_item) do + create(:work_item, namespace: sub_group, author: reporter) + end + + let_it_be(:group_work_item) do + create(:work_item, namespace: group, author: reporter) + end + + let_it_be(:group_confidential_work_item, reload: true) do + create(:work_item, :confidential, namespace: group, author: guest_author) + end + + let_it_be(:sub_group_confidential_work_item, reload: true) do + create(:work_item, :confidential, namespace: sub_group, author: guest_author) + end + + let_it_be(:hidden_work_item) do + create(:work_item, :confidential, namespace: group, author: banned_user.user) + end + + let_it_be(:other_work_item) { create(:work_item) } + let(:finder_params) { {} } + let(:current_user) { user } + let(:namespace) { nil } + + subject do + finder = described_class.new(current_user, finder_params) + finder.parent_param = namespace + + finder.execute + end + + context 'when no parent is provided' do + it { is_expected.to be_empty } + end + + context 'when the namespace is private' do + let(:namespace) { sub_group } + + context 'when the user cannot read the namespace' do + it { is_expected.to be_empty } + end + + context 'when the user can not see confidential work_items' do + let(:current_user) { guest } + + it { is_expected.to contain_exactly(sub_group_work_item) } + + context 'when the user is the author of the work item' do + let(:current_user) { guest_author } + + it { is_expected.to contain_exactly(sub_group_work_item, sub_group_confidential_work_item) } + end + + context 'when the user is assigned to a confidential work item' do + before do + sub_group_confidential_work_item.update!(assignees: [current_user]) + end + + it { is_expected.to contain_exactly(sub_group_work_item, sub_group_confidential_work_item) } + end + end + + context 'when the user can see confidential work_items' do + let(:current_user) { reporter } + + it { is_expected.to contain_exactly(sub_group_work_item, sub_group_confidential_work_item) } + end + end + + context 'when the namespace is public' do + let(:namespace) { group } + + context 'when user is admin' do + let(:current_user) { create(:user, :admin).tap { |u| enable_admin_mode!(u) } } + + it { is_expected.to match_array(WorkItem.all.to_a) } + end + + context 'when the user can not see confidential work_items' do + it { is_expected.to contain_exactly(group_work_item) } + + context 'when the user is the author of the work item' do + let(:current_user) { guest_author } + + it { is_expected.to contain_exactly(group_work_item, group_confidential_work_item) } + end + + context 'when the user is assigned to a confidential work item' do + before do + group_confidential_work_item.update!(assignees: [current_user]) + end + + it { is_expected.to contain_exactly(group_work_item, group_confidential_work_item) } + end + end + + context 'when the user can see confidential work_items' do + let(:current_user) { reporter } + + it { is_expected.to contain_exactly(group_work_item, group_confidential_work_item) } + end + end + end +end |