discourse/spec/models/email_token_spec.rb

# frozen_string_literal: true

RSpec.describe EmailToken do
  it { is_expected.to validate_presence_of :user_id }
  it { is_expected.to validate_presence_of :email }
  it { is_expected.to belong_to :user }

  describe '#create' do
    fab!(:user) { Fabricate(:user, active: false) }
    let!(:original_token) { user.email_tokens.first }
    let!(:email_token) { Fabricate(:email_token, user: user, email: 'bubblegum@adventuretime.ooo') }

    it 'should create the email token' do
      expect(email_token).to be_present
    end

    it 'should downcase the email' do
      token = Fabricate(:email_token, user: user, email: "UpperCaseSoWoW@GMail.com")
      expect(token.email).to eq "uppercasesowow@gmail.com"
    end

    it 'is valid' do
      expect(email_token).to be_valid
    end

    it 'has a token' do
      expect(email_token.token).to be_present
    end

    it 'is not confirmed' do
      expect(email_token).to_not be_confirmed
    end

    it 'is not expired' do
      expect(email_token).to_not be_expired
    end

    it 'marks the older token as expired' do
      original_token.reload
      expect(original_token).to be_expired
    end
  end

  describe '#confirm' do
    fab!(:user) { Fabricate(:user, active: false) }
    let!(:email_token) { Fabricate(:email_token, user: user) }

    it 'returns nil with a nil token' do
      expect(EmailToken.confirm(nil)).to be_blank
    end

    it 'returns nil with an invalid token' do
      expect(EmailToken.confirm("random token")).to be_blank
    end

    it 'returns nil when a token is expired' do
      email_token.update_column(:expired, true)
      expect(EmailToken.confirm(email_token.token)).to be_blank
    end

    it 'returns nil when a token is older than a specific time' do
      SiteSetting.email_token_valid_hours = 10
      email_token.update_column(:created_at, 11.hours.ago)
      expect(EmailToken.confirm(email_token.token)).to be_blank
    end

    context 'with taken email address' do
      before do
        @other_user = Fabricate(:coding_horror)
        email_token.update_attribute :email, @other_user.email
      end

      it 'returns nil when the email has been taken since the token has been generated' do
        expect(EmailToken.confirm(email_token.token)).to be_blank
      end
    end

    context 'with welcome message' do
      it 'sends a welcome message when the user is activated' do
        user = EmailToken.confirm(email_token.token)
        expect(user.send_welcome_message).to eq true
      end
    end

    context 'with success' do
      let!(:confirmed_user) { EmailToken.confirm(email_token.token) }

      it "returns the correct user" do
        expect(confirmed_user).to eq user
      end

      it 'marks the user as active' do
        confirmed_user.reload
        expect(confirmed_user).to be_active
      end

      it 'marks the token as confirmed' do
        email_token.reload
        expect(email_token).to be_confirmed
      end

      it "will not confirm again" do
        expect(EmailToken.confirm(email_token.token)).to be_blank
      end
    end

    context 'when confirms the token and redeems invite' do
      before do
        SiteSetting.must_approve_users = true
        Jobs.run_immediately!
      end

      fab!(:invite) { Fabricate(:invite, email: 'test@example.com') }
      fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }
      let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:signup]) }
      let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:signup]) }

      it "returns the correct user" do
        expect(confirmed_invited_user).to eq invited_user
      end

      it 'marks the user as active' do
        confirmed_invited_user.reload
        expect(confirmed_invited_user).to be_active
      end

      it 'marks the token as confirmed' do
        user_email_token.reload
        expect(user_email_token).to be_confirmed
      end

      it 'redeems invite' do
        invite.reload
        expect(invite).to be_redeemed
      end

      it 'marks the user as approved' do
        expect(confirmed_invited_user).to be_approved
      end
    end

    context 'when does not redeem the invite if token is password_reset' do
      before do
        SiteSetting.must_approve_users = true
        Jobs.run_immediately!
      end

      fab!(:invite) { Fabricate(:invite, email: 'test@example.com') }
      fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }
      let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:password_reset]) }
      let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:password_reset]) }

      it "returns the correct user" do
        expect(confirmed_invited_user).to eq invited_user
      end

      it 'marks the user as active' do
        confirmed_invited_user.reload
        expect(confirmed_invited_user).to be_active
      end

      it 'marks the token as confirmed' do
        user_email_token.reload
        expect(user_email_token).to be_confirmed
      end

      it 'does not redeem invite' do
        invite.reload
        expect(invite).not_to be_redeemed
      end

      it 'marks the user as approved' do
        expect(confirmed_invited_user).to be_approved
      end
    end

    context 'with expired invite record' do
      before do
        SiteSetting.must_approve_users = true
        Jobs.run_immediately!
      end

      fab!(:invite) { Fabricate(:invite, email: 'test@example.com', expires_at: 1.day.ago) }
      fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }
      let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:signup]) }
      let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:signup]) }

      it "returns the correct user" do
        expect(confirmed_invited_user).to eq invited_user
      end

      it 'marks the user as active' do
        confirmed_invited_user.reload
        expect(confirmed_invited_user).to be_active
      end

      it 'marks the token as confirmed' do
        user_email_token.reload
        expect(user_email_token).to be_confirmed
      end

      it 'does not redeem invite' do
        invite.reload
        expect(invite).not_to be_redeemed
      end

      it 'marks the user as approved' do
        expect(confirmed_invited_user).to be_approved
      end
    end
  end
end
DEV: use #frozen_string_literal: true on all spec This change both speeds up specs (less strings to allocate) and helps catch cases where methods in Discourse are mutating inputs. Overall we will be migrating everything to use #frozen_string_literal: true it will take a while, but this is the first and safest move in this direction 2019-04-30 10:27:42 +10:00			`# frozen_string_literal: true`

Add RSpec 4 compatibility (#17652) * Remove outdated option https://github.com/rspec/rspec-core/commit/04078317ba6577699d06cf4dccf014254dcde7a6 * Use the non-globally exposed RSpec syntax https://github.com/rspec/rspec-core/pull/2803 * Use the non-globally exposed RSpec syntax, cont https://github.com/rspec/rspec-core/pull/2803 * Comply to strict predicate matchers See: - https://github.com/rspec/rspec-expectations/pull/1195 - https://github.com/rspec/rspec-expectations/pull/1196 - https://github.com/rspec/rspec-expectations/pull/1277 2022-07-28 05:27:38 +03:00			`RSpec.describe EmailToken do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`it { is_expected.to validate_presence_of :user_id }`
			`it { is_expected.to validate_presence_of :email }`
			`it { is_expected.to belong_to :user }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
DEV: Use `describe` for methods in specs 2022-07-27 12:21:10 +02:00			`describe '#create' do`
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0 2019-05-07 03:12:20 +00:00			`fab!(:user) { Fabricate(:user, active: false) }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`let!(:original_token) { user.email_tokens.first }`
DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 09:34:39 +02:00			`let!(:email_token) { Fabricate(:email_token, user: user, email: 'bubblegum@adventuretime.ooo') }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`it 'should create the email token' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token).to be_present`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

Emails are case insensitive 2014-07-14 10:16:24 -04:00			`it 'should downcase the email' do`
DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 09:34:39 +02:00			`token = Fabricate(:email_token, user: user, email: "UpperCaseSoWoW@GMail.com")`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(token.email).to eq "uppercasesowow@gmail.com"`
Emails are case insensitive 2014-07-14 10:16:24 -04:00			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`it 'is valid' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token).to be_valid`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'has a token' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token.token).to be_present`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'is not confirmed' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token).to_not be_confirmed`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'is not expired' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token).to_not be_expired`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'marks the older token as expired' do`
			`original_token.reload`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(original_token).to be_expired`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

DEV: Use `describe` for methods in specs 2022-07-27 12:21:10 +02:00			`describe '#confirm' do`
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0 2019-05-07 03:12:20 +00:00			`fab!(:user) { Fabricate(:user, active: false) }`
DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 09:34:39 +02:00			`let!(:email_token) { Fabricate(:email_token, user: user) }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`it 'returns nil with a nil token' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(EmailToken.confirm(nil)).to be_blank`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 09:34:39 +02:00			`it 'returns nil with an invalid token' do`
			`expect(EmailToken.confirm("random token")).to be_blank`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'returns nil when a token is expired' do`
			`email_token.update_column(:expired, true)`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(EmailToken.confirm(email_token.token)).to be_blank`
remove trailing whitespaces :heart: 2013-02-25 19:42:20 +03:00			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`it 'returns nil when a token is older than a specific time' do`
FIX: tighten up email token durations 2014-07-02 09:08:25 +10:00			`SiteSetting.email_token_valid_hours = 10`
			`email_token.update_column(:created_at, 11.hours.ago)`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(EmailToken.confirm(email_token.token)).to be_blank`
remove trailing whitespaces :heart: 2013-02-25 19:42:20 +03:00			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
DEV: Use proper wording for contexts in specs 2022-07-27 18:14:14 +02:00			`context 'with taken email address' do`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`before do`
			`@other_user = Fabricate(:coding_horror)`
			`email_token.update_attribute :email, @other_user.email`
			`end`

			`it 'returns nil when the email has been taken since the token has been generated' do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(EmailToken.confirm(email_token.token)).to be_blank`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

DEV: Use proper wording for contexts in specs 2022-07-27 18:14:14 +02:00			`context 'with welcome message' do`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`it 'sends a welcome message when the user is activated' do`
			`user = EmailToken.confirm(email_token.token)`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(user.send_welcome_message).to eq true`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

DEV: Use proper wording for contexts in specs 2022-07-27 18:14:14 +02:00			`context 'with success' do`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`let!(:confirmed_user) { EmailToken.confirm(email_token.token) }`

			`it "returns the correct user" do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(confirmed_user).to eq user`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'marks the user as active' do`
			`confirmed_user.reload`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(confirmed_user).to be_active`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it 'marks the token as confirmed' do`
			`email_token.reload`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(email_token).to be_confirmed`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

FEATURE: remove email_token_grace_period_hours The site setting email_token_grace_period_hours just causes confusion and should not be used anyway. Out of the box, tokens stop working once confirmed, no need to add complexity here 2016-12-19 17:15:20 +11:00			`it "will not confirm again" do`
Update rspec syntax to v3 update rspec syntax to v3 change syntax to rspec v3 oops. fix typo mailers classes with rspec3 syntax helpers with rspec3 syntax jobs with rspec3 syntax serializers with rspec3 syntax views with rspec3 syntax support to rspec3 syntax category spec with rspec3 syntax 2014-12-31 11:55:03 -03:00			`expect(EmailToken.confirm(email_token.token)).to be_blank`
You can only reuse email tokens within 24 hours. 2014-03-04 14:03:04 -05:00			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
FIX: mark user as approved if an invite is already present 2015-06-26 01:21:26 +05:30
DEV: Use proper wording for contexts in specs 2022-07-27 18:14:14 +02:00			`context 'when confirms the token and redeems invite' do`
FIX: mark user as approved if an invite is already present 2015-06-26 01:21:26 +05:30			`before do`
			`SiteSetting.must_approve_users = true`
FIX: Reviewables should not be created for users until they are active Conversely, if a user is deactivated the reviewable should automatically be rejected. Before this fix, if a user was not active they'd still show in the review queue but without an "Approve" button which was confusing. 2019-04-03 12:04:05 -04:00			`Jobs.run_immediately!`
FIX: mark user as approved if an invite is already present 2015-06-26 01:21:26 +05:30			`end`

FEATURE: multiple use invite links (#9813) 2020-06-09 20:49:32 +05:30			`fab!(:invite) { Fabricate(:invite, email: 'test@example.com') }`
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0 2019-05-07 03:12:20 +00:00			`fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }`
FIX: Do not redeem invites if user resets password (#17486) The invites should be redeemed during the signup process. This was a problem because when user tried to redeem an admin invite it tried to authenticate the user using information from the session that was not available. 2022-07-19 22:25:01 +03:00			`let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:signup]) }`
			`let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:signup]) }`
FIX: mark user as approved if an invite is already present 2015-06-26 01:21:26 +05:30
			`it "returns the correct user" do`
			`expect(confirmed_invited_user).to eq invited_user`
			`end`

			`it 'marks the user as active' do`
			`confirmed_invited_user.reload`
			`expect(confirmed_invited_user).to be_active`
			`end`

			`it 'marks the token as confirmed' do`
			`user_email_token.reload`
			`expect(user_email_token).to be_confirmed`
			`end`

			`it 'redeems invite' do`
			`invite.reload`
			`expect(invite).to be_redeemed`
			`end`

			`it 'marks the user as approved' do`
			`expect(confirmed_invited_user).to be_approved`
			`end`
			`end`
FIX: Do not redeem invites if user resets password (#17486) The invites should be redeemed during the signup process. This was a problem because when user tried to redeem an admin invite it tried to authenticate the user using information from the session that was not available. 2022-07-19 22:25:01 +03:00
DEV: Use proper wording for contexts in specs 2022-07-27 18:14:14 +02:00			`context 'when does not redeem the invite if token is password_reset' do`
FIX: Do not redeem invites if user resets password (#17486) The invites should be redeemed during the signup process. This was a problem because when user tried to redeem an admin invite it tried to authenticate the user using information from the session that was not available. 2022-07-19 22:25:01 +03:00			`before do`
			`SiteSetting.must_approve_users = true`
			`Jobs.run_immediately!`
			`end`

			`fab!(:invite) { Fabricate(:invite, email: 'test@example.com') }`
			`fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }`
			`let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:password_reset]) }`
			`let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:password_reset]) }`

			`it "returns the correct user" do`
			`expect(confirmed_invited_user).to eq invited_user`
			`end`

			`it 'marks the user as active' do`
			`confirmed_invited_user.reload`
			`expect(confirmed_invited_user).to be_active`
			`end`

			`it 'marks the token as confirmed' do`
			`user_email_token.reload`
			`expect(user_email_token).to be_confirmed`
			`end`

			`it 'does not redeem invite' do`
			`invite.reload`
			`expect(invite).not_to be_redeemed`
			`end`

			`it 'marks the user as approved' do`
			`expect(confirmed_invited_user).to be_approved`
			`end`
			`end`
FIX: do not redeem expired invites on new user signup (#17798) 2022-08-05 07:50:48 +05:30
			`context 'with expired invite record' do`
			`before do`
			`SiteSetting.must_approve_users = true`
			`Jobs.run_immediately!`
			`end`

			`fab!(:invite) { Fabricate(:invite, email: 'test@example.com', expires_at: 1.day.ago) }`
			`fab!(:invited_user) { Fabricate(:user, active: false, email: invite.email) }`
			`let!(:user_email_token) { Fabricate(:email_token, user: invited_user, scope: EmailToken.scopes[:signup]) }`
			`let!(:confirmed_invited_user) { EmailToken.confirm(user_email_token.token, scope: EmailToken.scopes[:signup]) }`

			`it "returns the correct user" do`
			`expect(confirmed_invited_user).to eq invited_user`
			`end`

			`it 'marks the user as active' do`
			`confirmed_invited_user.reload`
			`expect(confirmed_invited_user).to be_active`
			`end`

			`it 'marks the token as confirmed' do`
			`user_email_token.reload`
			`expect(user_email_token).to be_confirmed`
			`end`

			`it 'does not redeem invite' do`
			`invite.reload`
			`expect(invite).not_to be_redeemed`
			`end`

			`it 'marks the user as approved' do`
			`expect(confirmed_invited_user).to be_approved`
			`end`
			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`