discourse/spec/controllers/post_actions_controller_spe...

require 'rails_helper'

describe PostActionsController do

  describe 'create' do
    it 'requires you to be logged in' do
      expect do
        post :create, format: :json
      end.to raise_error(Discourse::NotLoggedIn)
    end

    context 'logged in as user' do
      let(:user) { Fabricate(:user) }
      let(:private_message) { Fabricate(:private_message_post, user: Fabricate(:coding_horror)) }

      before do
        log_in_user(user)
      end

      it 'fails when the user does not have permission to see the post' do
        post :create, params: {
          id: private_message.id,
          post_action_type_id: PostActionType.types[:bookmark]
        }, format: :json

        expect(response).to be_forbidden
      end
    end
  end

  context 'destroy' do

    let(:post) { Fabricate(:post, user: Fabricate(:coding_horror)) }

    it 'requires you to be logged in' do
      expect do
        delete :destroy, params: { id: post.id }, format: :json
      end.to raise_error(Discourse::NotLoggedIn)
    end

    context 'logged in' do
      let!(:user) { log_in }

      it 'raises an error when the post_action_type_id is missing' do
        expect do
          delete :destroy, params: { id: post.id }, format: :json
        end.to raise_error(ActionController::ParameterMissing)
      end

      it "returns 404 when the post action type doesn't exist for that user" do
        delete :destroy, params: { id: post.id, post_action_type_id: 1 }, format: :json
        expect(response.code).to eq('404')
      end

      context 'with a post_action record ' do
        let!(:post_action) { PostAction.create(user_id: user.id, post_id: post.id, post_action_type_id: 1) }

        it 'returns success' do
          delete :destroy, params: { id: post.id, post_action_type_id: 1 }, format: :json
          expect(response).to be_success
        end

        it 'deletes the action' do
          delete :destroy, params: {
            id: post.id, post_action_type_id: 1
          }, format: :json

          expect(PostAction.exists?(user_id: user.id, post_id: post.id, post_action_type_id: 1, deleted_at: nil)).to eq(false)
        end

        it 'ensures it can be deleted' do
          Guardian.any_instance.expects(:can_delete?).with(post_action).returns(false)

          delete :destroy, params: {
            id: post.id, post_action_type_id: 1
          }, format: :json

          expect(response).to be_forbidden
        end
      end

    end

  end

  context 'defer_flags' do

    let(:flagged_post) { Fabricate(:post, user: Fabricate(:coding_horror)) }

    context "not logged in" do
      it "should not allow them to clear flags" do
        expect do
          post :defer_flags, format: :json
        end.to raise_error(Discourse::NotLoggedIn)
      end
    end

    context 'logged in' do
      let!(:user) { log_in(:moderator) }

      it "raises an error without a post_action_type_id" do
        expect do
          post :defer_flags, params: { id: flagged_post.id }, format: :json
        end.to raise_error(ActionController::ParameterMissing)
      end

      it "raises an error when the user doesn't have access" do
        Guardian.any_instance.expects(:can_defer_flags?).returns(false)

        post :defer_flags, params: {
          id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]
        }, format: :json

        expect(response).to be_forbidden
      end

      context "success" do
        before do
          Guardian.any_instance.expects(:can_defer_flags?).returns(true)
          PostAction.expects(:defer_flags!).with(flagged_post, user)
        end

        it "delegates to defer_flags" do
          post :defer_flags, params: {
            id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]
          }, format: :json

          expect(response).to be_success
        end

        it "works with a deleted post" do
          flagged_post.trash!(user)

          post :defer_flags, params: {
            id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]
          }, format: :json

          expect(response).to be_success
        end

      end

    end

  end

end
Prepare for separation of RSpec helper files Since rspec-rails 3, the default installation creates two helper files: * `spec_helper.rb` * `rails_helper.rb` `spec_helper.rb` is intended as a way of running specs that do not require Rails, whereas `rails_helper.rb` loads Rails (as Discourse's current `spec_helper.rb` does). For more information: https://www.relishapp.com/rspec/rspec-rails/docs/upgrade#default-helper-files In this commit, I've simply replaced all instances of `spec_helper` with `rails_helper`, and renamed the original `spec_helper.rb`. This brings the Discourse project closer to the standard usage of RSpec in a Rails app. At present, every spec relies on loading Rails, but there are likely many that don't need to. In a future pull request, I hope to introduce a separate, minimal `spec_helper.rb` which can be used in tests which don't rely on Rails. 2015-10-11 05:41:23 -04:00			`require 'rails_helper'`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`describe PostActionsController do`

			`describe 'create' do`
			`it 'requires you to be logged in' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`expect do`
			`post :create, format: :json`
			`end.to raise_error(Discourse::NotLoggedIn)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

SECURITY: Users can only bookmark posts which they can see. 2016-12-20 23:01:26 -05:00			`context 'logged in as user' do`
			`let(:user) { Fabricate(:user) }`
			`let(:private_message) { Fabricate(:private_message_post, user: Fabricate(:coding_horror)) }`

			`before do`
			`log_in_user(user)`
			`end`

			`it 'fails when the user does not have permission to see the post' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`post :create, params: {`
			`id: private_message.id,`
			`post_action_type_id: PostActionType.types[:bookmark]`
			`}, format: :json`
FIX: Return 404 if id is not valid. 2017-01-05 21:39:44 -05:00
controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_forbidden`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`
			`end`

			`context 'destroy' do`

			`let(:post) { Fabricate(:post, user: Fabricate(:coding_horror)) }`

			`it 'requires you to be logged in' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`expect do`
			`delete :destroy, params: { id: post.id }, format: :json`
			`end.to raise_error(Discourse::NotLoggedIn)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`context 'logged in' do`
			`let!(:user) { log_in }`

			`it 'raises an error when the post_action_type_id is missing' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`expect do`
			`delete :destroy, params: { id: post.id }, format: :json`
			`end.to raise_error(ActionController::ParameterMissing)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "returns 404 when the post action type doesn't exist for that user" do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`delete :destroy, params: { id: post.id, post_action_type_id: 1 }, format: :json`
controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response.code).to eq('404')`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`context 'with a post_action record ' do`
Add rubocop to our build. (#5004) 2017-07-27 21:20:09 -04:00			`let!(:post_action) { PostAction.create(user_id: user.id, post_id: post.id, post_action_type_id: 1) }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`it 'returns success' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`delete :destroy, params: { id: post.id, post_action_type_id: 1 }, format: :json`
controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_success`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'deletes the action' do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`delete :destroy, params: {`
			`id: post.id, post_action_type_id: 1`
			`}, format: :json`

controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(PostAction.exists?(user_id: user.id, post_id: post.id, post_action_type_id: 1, deleted_at: nil)).to eq(false)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'ensures it can be deleted' do`
			`Guardian.any_instance.expects(:can_delete?).with(post_action).returns(false)`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00
			`delete :destroy, params: {`
			`id: post.id, post_action_type_id: 1`
			`}, format: :json`

controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_forbidden`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

			`end`

			`end`

FEATURE: flag dispositions normalization All flags should end up in one of the three dispositions - Agree - Disagree - Defer In the administration area, the active flags section displays 4 buttons - Agree (hide post + send PM) - Disagree - Defer - Delete Clicking "Delete" will open a modal that offer to - Delete Post & Defer Flags - Delete Post & Agree with Flags - Delete Spammer (if available) When the flag has a list associated, the list will now display 1 response and 1 reply and a "show more..." link if there are more in the conversation. Replying to the conversation will NOT give a disposition. Moderators must click the buttons that does that. If someone clicks one buttons, this will add a default moderator message from that moderator saying what happened. The old flags section now displays the proper dispositions and is super duper fast (no more N+9999 queries). FIX: the old list includes deleted topics FIX: the lists now properly display the topic states (deleted, closed, archived, hidden, PM) FIX: flagging a topic that you've already flagged the first post 2014-07-28 13:17:37 -04:00			`context 'defer_flags' do`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00
			`let(:flagged_post) { Fabricate(:post, user: Fabricate(:coding_horror)) }`

			`context "not logged in" do`
			`it "should not allow them to clear flags" do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`expect do`
			`post :defer_flags, format: :json`
			`end.to raise_error(Discourse::NotLoggedIn)`
remove trailing whitespaces :heart: 2013-02-25 11:42:20 -05:00			`end`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00			`end`

			`context 'logged in' do`
			`let!(:user) { log_in(:moderator) }`

			`it "raises an error without a post_action_type_id" do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`expect do`
			`post :defer_flags, params: { id: flagged_post.id }, format: :json`
			`end.to raise_error(ActionController::ParameterMissing)`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00			`end`

			`it "raises an error when the user doesn't have access" do`
FEATURE: flag dispositions normalization All flags should end up in one of the three dispositions - Agree - Disagree - Defer In the administration area, the active flags section displays 4 buttons - Agree (hide post + send PM) - Disagree - Defer - Delete Clicking "Delete" will open a modal that offer to - Delete Post & Defer Flags - Delete Post & Agree with Flags - Delete Spammer (if available) When the flag has a list associated, the list will now display 1 response and 1 reply and a "show more..." link if there are more in the conversation. Replying to the conversation will NOT give a disposition. Moderators must click the buttons that does that. If someone clicks one buttons, this will add a default moderator message from that moderator saying what happened. The old flags section now displays the proper dispositions and is super duper fast (no more N+9999 queries). FIX: the old list includes deleted topics FIX: the lists now properly display the topic states (deleted, closed, archived, hidden, PM) FIX: flagging a topic that you've already flagged the first post 2014-07-28 13:17:37 -04:00			`Guardian.any_instance.expects(:can_defer_flags?).returns(false)`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00
			`post :defer_flags, params: {`
			`id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]`
			`}, format: :json`

controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_forbidden`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00			`end`

			`context "success" do`
			`before do`
FEATURE: flag dispositions normalization All flags should end up in one of the three dispositions - Agree - Disagree - Defer In the administration area, the active flags section displays 4 buttons - Agree (hide post + send PM) - Disagree - Defer - Delete Clicking "Delete" will open a modal that offer to - Delete Post & Defer Flags - Delete Post & Agree with Flags - Delete Spammer (if available) When the flag has a list associated, the list will now display 1 response and 1 reply and a "show more..." link if there are more in the conversation. Replying to the conversation will NOT give a disposition. Moderators must click the buttons that does that. If someone clicks one buttons, this will add a default moderator message from that moderator saying what happened. The old flags section now displays the proper dispositions and is super duper fast (no more N+9999 queries). FIX: the old list includes deleted topics FIX: the lists now properly display the topic states (deleted, closed, archived, hidden, PM) FIX: flagging a topic that you've already flagged the first post 2014-07-28 13:17:37 -04:00			`Guardian.any_instance.expects(:can_defer_flags?).returns(true)`
			`PostAction.expects(:defer_flags!).with(flagged_post, user)`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00			`end`

FEATURE: flag dispositions normalization All flags should end up in one of the three dispositions - Agree - Disagree - Defer In the administration area, the active flags section displays 4 buttons - Agree (hide post + send PM) - Disagree - Defer - Delete Clicking "Delete" will open a modal that offer to - Delete Post & Defer Flags - Delete Post & Agree with Flags - Delete Spammer (if available) When the flag has a list associated, the list will now display 1 response and 1 reply and a "show more..." link if there are more in the conversation. Replying to the conversation will NOT give a disposition. Moderators must click the buttons that does that. If someone clicks one buttons, this will add a default moderator message from that moderator saying what happened. The old flags section now displays the proper dispositions and is super duper fast (no more N+9999 queries). FIX: the old list includes deleted topics FIX: the lists now properly display the topic states (deleted, closed, archived, hidden, PM) FIX: flagging a topic that you've already flagged the first post 2014-07-28 13:17:37 -04:00			`it "delegates to defer_flags" do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`post :defer_flags, params: {`
			`id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]`
			`}, format: :json`

controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_success`
remove trailing whitespaces :heart: 2013-02-25 11:42:20 -05:00			`end`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00
			`it "works with a deleted post" do`
Add `deleted_by` to `Trashable` tables 2013-07-09 15:20:18 -04:00			`flagged_post.trash!(user)`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00
			`post :defer_flags, params: {`
			`id: flagged_post.id, post_action_type_id: PostActionType.types[:spam]`
			`}, format: :json`

controllers with rspec3 syntax 2015-01-09 12:04:02 -05:00			`expect(response).to be_success`
Can clear flags on deleted posts if you're a moderator 2013-02-08 19:04:14 -05:00			`end`

			`end`

			`end`

			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`