Add latest changes from gitlab-org/gitlab@14-4-stable-eev14.4.0-rc42

3 files changed, 137 insertions, 0 deletions

diff --git a/spec/requests/api/graphql/mutations/clusters/agent_tokens/agent_tokens/create_spec.rb b/spec/requests/api/graphql/mutations/clusters/agent_tokens/agent_tokens/create_spec.rb
new file mode 100644
index 00000000000..aac8eb22771
--- /dev/null
+++ b/spec/requests/api/graphql/mutations/clusters/agent_tokens/agent_tokens/create_spec.rb
@@ -0,0 +1,52 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+RSpec.describe 'Create a new cluster agent token' do
+  include GraphqlHelpers
+
+  let_it_be(:cluster_agent) { create(:cluster_agent) }
+  let_it_be(:current_user) { create(:user) }
+
+  let(:description) { 'create token' }
+  let(:name) { 'token name' }
+  let(:mutation) do
+    graphql_mutation(
+      :cluster_agent_token_create,
+      { cluster_agent_id: cluster_agent.to_global_id.to_s, description: description, name: name }
+    )
+  end
+
+  def mutation_response
+    graphql_mutation_response(:cluster_agent_token_create)
+  end
+
+  context 'without user permissions' do
+    it_behaves_like 'a mutation that returns top-level errors',
+                    errors: ["The resource that you are attempting to access does not exist "\
+                             "or you don't have permission to perform this action"]
+
+    it 'does not create a token' do
+      expect { post_graphql_mutation(mutation, current_user: current_user) }.not_to change(Clusters::AgentToken, :count)
+    end
+  end
+
+  context 'with project permissions' do
+    before do
+      cluster_agent.project.add_maintainer(current_user)
+    end
+
+    it 'creates a new token', :aggregate_failures do
+      expect { post_graphql_mutation(mutation, current_user: current_user) }.to change { Clusters::AgentToken.count }.by(1)
+      expect(mutation_response['errors']).to eq([])
+    end
+
+    it 'returns token information', :aggregate_failures do
+      post_graphql_mutation(mutation, current_user: current_user)
+
+      expect(mutation_response['secret']).not_to be_nil
+      expect(mutation_response.dig('token', 'description')).to eq(description)
+      expect(mutation_response.dig('token', 'name')).to eq(name)
+    end
+  end
+end
diff --git a/spec/requests/api/graphql/mutations/clusters/agents/create_spec.rb b/spec/requests/api/graphql/mutations/clusters/agents/create_spec.rb
new file mode 100644
index 00000000000..c2ef2362d66
--- /dev/null
+++ b/spec/requests/api/graphql/mutations/clusters/agents/create_spec.rb
@@ -0,0 +1,42 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+RSpec.describe 'Create a new cluster agent' do
+  include GraphqlHelpers
+
+  let(:project) { create(:project, :public, :repository) }
+  let(:project_name) { 'agent-test' }
+  let(:current_user) { create(:user) }
+
+  let(:mutation) do
+    graphql_mutation(
+      :create_cluster_agent,
+      { project_path: project.full_path, name: project_name }
+    )
+  end
+
+  def mutation_response
+    graphql_mutation_response(:create_cluster_agent)
+  end
+
+  context 'without project permissions' do
+    it_behaves_like 'a mutation that returns a top-level access error'
+
+    it 'does not create cluster agent' do
+      expect { post_graphql_mutation(mutation, current_user: current_user) }.not_to change(Clusters::Agent, :count)
+    end
+  end
+
+  context 'with user permissions' do
+    before do
+      project.add_maintainer(current_user)
+    end
+
+    it 'creates a new cluster agent', :aggregate_failures do
+      expect { post_graphql_mutation(mutation, current_user: current_user) }.to change { Clusters::Agent.count }.by(1)
+      expect(mutation_response.dig('clusterAgent', 'name')).to eq(project_name)
+      expect(mutation_response['errors']).to eq([])
+    end
+  end
+end
diff --git a/spec/requests/api/graphql/mutations/clusters/agents/delete_spec.rb b/spec/requests/api/graphql/mutations/clusters/agents/delete_spec.rb
new file mode 100644
index 00000000000..5f6822223ca
--- /dev/null
+++ b/spec/requests/api/graphql/mutations/clusters/agents/delete_spec.rb
@@ -0,0 +1,43 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+RSpec.describe 'Delete a cluster agent' do
+  include GraphqlHelpers
+
+  let(:cluster_agent) { create(:cluster_agent) }
+  let(:project) { cluster_agent.project }
+  let(:current_user) { create(:user) }
+
+  let(:mutation) do
+    graphql_mutation(
+      :cluster_agent_delete,
+      { id: cluster_agent.to_global_id.uri }
+    )
+  end
+
+  def mutation_response
+    graphql_mutation_response(:cluster_agent_delete)
+  end
+
+  context 'without project permissions' do
+    it_behaves_like 'a mutation that returns top-level errors',
+                    errors: ['The resource that you are attempting to access does not exist '\
+               'or you don\'t have permission to perform this action']
+
+    it 'does not delete cluster agent' do
+      expect { cluster_agent.reload }.not_to raise_error(ActiveRecord::RecordNotFound)
+    end
+  end
+
+  context 'with project permissions' do
+    before do
+      project.add_maintainer(current_user)
+    end
+
+    it 'deletes a cluster agent', :aggregate_failures do
+      expect { post_graphql_mutation(mutation, current_user: current_user) }.to change { Clusters::Agent.count }.by(-1)
+      expect(mutation_response['errors']).to eq([])
+    end
+  end
+end