spec/controllers/concerns/lfs_request_spec.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93

# frozen_string_literal: true

require 'spec_helper'

describe LfsRequest do
  include ProjectForksHelper

  controller(Projects::GitHttpClientController) do
    # `described_class` is not available in this context
    include LfsRequest

    def show
      storage_project

      head :ok
    end

    def project
      @project ||= Project.find_by(id: params[:id])
    end

    def download_request?
      true
    end

    def upload_request?
      false
    end

    def ci?
      false
    end
  end

  let(:project) { create(:project, :public) }

  before do
    stub_lfs_setting(enabled: true)
  end

  describe '#storage_project' do
    it 'assigns the project as storage project' do
      get :show, params: { id: project.id }

      expect(assigns(:storage_project)).to eq(project)
    end

    it 'assigns the source of a forked project' do
      forked_project = fork_project(project)

      get :show, params: { id: forked_project.id }

      expect(assigns(:storage_project)).to eq(project)
    end
  end

  context 'user is authenticated without access to lfs' do
    before do
      allow(controller).to receive(:authenticate_user)
      allow(controller).to receive(:authentication_result) do
        Gitlab::Auth::Result.new
      end
    end

    context 'with access to the project' do
      it 'returns 403' do
        get :show, params: { id: project.id }

        expect(response.status).to eq(403)
      end
    end

    context 'without access to the project' do
      context 'project does not exist' do
        it 'returns 404' do
          get :show, params: { id: 'does not exist' }

          expect(response.status).to eq(404)
        end
      end

      context 'project is private' do
        let(:project) { create(:project, :private) }

        it 'returns 404' do
          get :show, params: { id: project.id }

          expect(response.status).to eq(404)
        end
      end
    end
  end
end