Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/spec/services/todos
diff options
context:
space:
mode:
authorGitLab Bot <gitlab-bot@gitlab.com>2022-09-29 00:59:41 +0300
committerGitLab Bot <gitlab-bot@gitlab.com>2022-09-29 00:59:41 +0300
commitcc201d1e1be2c8f4de2e2265c2b83bd925f8a260 (patch)
tree7347a079cde32c08900547d96a7c5ddbc2a50259 /spec/services/todos
parent70d9f335be46efecb1328cd2b7da3f3e17516d7d (diff)
Add latest changes from gitlab-org/security/gitlab@15-4-stable-ee
Diffstat (limited to 'spec/services/todos')
-rw-r--r--spec/services/todos/allowed_target_filter_service_spec.rb105
1 files changed, 85 insertions, 20 deletions
diff --git a/spec/services/todos/allowed_target_filter_service_spec.rb b/spec/services/todos/allowed_target_filter_service_spec.rb
index 707df8e8514..1d2b1b044db 100644
--- a/spec/services/todos/allowed_target_filter_service_spec.rb
+++ b/spec/services/todos/allowed_target_filter_service_spec.rb
@@ -10,14 +10,23 @@ RSpec.describe Todos::AllowedTargetFilterService do
let_it_be(:unauthorized_group) { create(:group, :private) }
let_it_be(:unauthorized_project) { create(:project, group: unauthorized_group) }
let_it_be(:user) { create(:user) }
+
let_it_be(:authorized_issue) { create(:issue, project: authorized_project) }
let_it_be(:authorized_issue_todo) { create(:todo, project: authorized_project, target: authorized_issue, user: user) }
+ let_it_be(:authorized_note) { create(:note, noteable: authorized_issue, project: authorized_project) }
+ let_it_be(:authorized_note_todo) { create(:todo, project: authorized_project, target: authorized_issue, note: authorized_note, user: user) }
+ let_it_be(:confidential_issue) { create(:issue, :confidential, project: authorized_project) }
+ let_it_be(:confidential_issue_todo) { create(:todo, project: authorized_project, target: confidential_issue, user: user) }
+ let_it_be(:confidential_note) { create(:note, :confidential, noteable: confidential_issue, project: authorized_project) }
+ let_it_be(:confidential_note_todo) { create(:todo, project: authorized_project, target: authorized_issue, note: confidential_note, user: user) }
let_it_be(:unauthorized_issue) { create(:issue, project: unauthorized_project) }
let_it_be(:unauthorized_issue_todo) { create(:todo, project: unauthorized_project, target: unauthorized_issue, user: user) }
let_it_be(:authorized_design) { create(:design, issue: authorized_issue) }
let_it_be(:authorized_design_todo) { create(:todo, project: authorized_project, target: authorized_design, user: user) }
let_it_be(:unauthorized_design) { create(:design, issue: unauthorized_issue) }
let_it_be(:unauthorized_design_todo) { create(:todo, project: unauthorized_project, target: unauthorized_design, user: user) }
+ let_it_be(:unauthorized_note) { create(:note, noteable: unauthorized_issue, project: unauthorized_project) }
+ let_it_be(:unauthorized_note_todo) { create(:todo, project: unauthorized_project, target: unauthorized_issue, note: unauthorized_note, user: user) }
# Cannot use let_it_be with MRs
let(:authorized_mr) { create(:merge_request, source_project: authorized_project) }
@@ -25,35 +34,91 @@ RSpec.describe Todos::AllowedTargetFilterService do
let(:unauthorized_mr) { create(:merge_request, source_project: unauthorized_project) }
let(:unauthorized_mr_todo) { create(:todo, project: unauthorized_project, user: user, target: unauthorized_mr) }
- before_all do
- authorized_group.add_developer(user)
- end
-
describe '#execute' do
+ let(:all_todos) { authorized_todos + unauthorized_todos }
+
subject(:execute_service) { described_class.new(all_todos, user).execute }
- let!(:all_todos) { authorized_todos + unauthorized_todos }
+ shared_examples 'allowed Todos filter' do
+ before do
+ enable_design_management
+ end
- let(:authorized_todos) do
- [
- authorized_mr_todo,
- authorized_issue_todo,
- authorized_design_todo
- ]
+ it { is_expected.to match_array(authorized_todos) }
end
- let(:unauthorized_todos) do
- [
- unauthorized_mr_todo,
- unauthorized_issue_todo,
- unauthorized_design_todo
- ]
+ context 'with reporter user' do
+ before_all do
+ authorized_group.add_reporter(user)
+ end
+
+ it_behaves_like 'allowed Todos filter' do
+ let(:authorized_todos) do
+ [
+ authorized_mr_todo,
+ authorized_issue_todo,
+ confidential_issue_todo,
+ confidential_note_todo,
+ authorized_design_todo
+ ]
+ end
+
+ let(:unauthorized_todos) do
+ [
+ unauthorized_mr_todo,
+ unauthorized_issue_todo,
+ unauthorized_note_todo,
+ unauthorized_design_todo
+ ]
+ end
+ end
end
- before do
- enable_design_management
+ context 'with guest user' do
+ before_all do
+ authorized_group.add_guest(user)
+ end
+
+ it_behaves_like 'allowed Todos filter' do
+ let(:authorized_todos) do
+ [
+ authorized_issue_todo,
+ authorized_design_todo
+ ]
+ end
+
+ let(:unauthorized_todos) do
+ [
+ authorized_mr_todo,
+ confidential_issue_todo,
+ confidential_note_todo,
+ unauthorized_mr_todo,
+ unauthorized_issue_todo,
+ unauthorized_note_todo,
+ unauthorized_design_todo
+ ]
+ end
+ end
end
- it { is_expected.to match_array(authorized_todos) }
+ context 'with a non-member user' do
+ it_behaves_like 'allowed Todos filter' do
+ let(:authorized_todos) { [] }
+
+ let(:unauthorized_todos) do
+ [
+ authorized_issue_todo,
+ authorized_design_todo,
+ authorized_mr_todo,
+ confidential_issue_todo,
+ confidential_note_todo,
+ unauthorized_mr_todo,
+ unauthorized_issue_todo,
+ unauthorized_note_todo,
+ unauthorized_design_todo
+ ]
+ end
+ end
+ end
end
end
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-20 23:15:35 +0300