Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/spec/requests/admin/themes_controller_spec.rb

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

678 lines
22 KiB
Ruby
Raw Normal View History

DEV: use #frozen_string_literal: true on all spec This change both speeds up specs (less strings to allocate) and helps catch cases where methods in Discourse are mutating inputs. Overall we will be migrating everything to use #frozen_string_literal: true it will take a while, but this is the first and safest move in this direction
2019-04-29 20:27:42 -04:00
# frozen_string_literal: true
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
describe Admin::ThemesController do
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0
2019-05-06 23:12:20 -04:00
fab!(:admin) { Fabricate(:admin) }
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
it "is a subclass of AdminController" do
expect(Admin::UsersController < Admin::AdminController).to eq(true)
end
before do
sign_in(admin)
end
describe '#generate_key_pair' do
it 'can generate key pairs' do
post "/admin/themes/generate_key_pair.json"
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(json["private_key"]).to include("RSA PRIVATE KEY")
expect(json["public_key"]).to include("ssh-rsa ")
end
end
describe '#upload_asset' do
FIX: randomize file name when created from fixtures (#9731) * FIX: randomize file name when created from fixtures When a temporary file is created from fixtures it should have a unique name. It is to prevent a collision in parallel specs evaluation * FIX: use /tmp/pid folder to keep fixture files
2020-05-18 19:09:36 -04:00
let(:file) { file_from_fixtures("fake.woff2", "woff2") }
let(:filename) { File.basename(file) }
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
let(:upload) do
FIX: randomize file name when created from fixtures (#9731) * FIX: randomize file name when created from fixtures When a temporary file is created from fixtures it should have a unique name. It is to prevent a collision in parallel specs evaluation * FIX: use /tmp/pid folder to keep fixture files
2020-05-18 19:09:36 -04:00
Rack::Test::UploadedFile.new(file)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
it 'can create a theme upload' do
post "/admin/themes/upload_asset.json", params: { file: upload }
expect(response.status).to eq(201)
FIX: randomize file name when created from fixtures (#9731) * FIX: randomize file name when created from fixtures When a temporary file is created from fixtures it should have a unique name. It is to prevent a collision in parallel specs evaluation * FIX: use /tmp/pid folder to keep fixture files
2020-05-18 19:09:36 -04:00
upload = Upload.find_by(original_filename: filename)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(upload.id).not_to be_nil
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
expect(response.parsed_body["upload_id"]).to eq(upload.id)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
FIX: Mark secure media upload insecure automatically if used for theme component (#8413) When uploading a file to a theme component, and that file is existing and has already been marked as secure, we now automatically mark the file as secure: false, change the ACL, and log the action as the user (also rebake the posts for the upload)
2019-11-27 16:32:17 -05:00
context "when trying to upload an existing file" do
FIX: randomize file name when created from fixtures (#9731) * FIX: randomize file name when created from fixtures When a temporary file is created from fixtures it should have a unique name. It is to prevent a collision in parallel specs evaluation * FIX: use /tmp/pid folder to keep fixture files
2020-05-18 19:09:36 -04:00
let(:uploaded_file) { Upload.find_by(original_filename: filename) }
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
let(:response_json) { response.parsed_body }
FIX: Mark secure media upload insecure automatically if used for theme component (#8413) When uploading a file to a theme component, and that file is existing and has already been marked as secure, we now automatically mark the file as secure: false, change the ACL, and log the action as the user (also rebake the posts for the upload)
2019-11-27 16:32:17 -05:00
before do
post "/admin/themes/upload_asset.json", params: { file: upload }
expect(response.status).to eq(201)
end
FEATURE: Secure media allowing duplicated uploads with category-level privacy and post-based access rules (#8664) ### General Changes and Duplication * We now consider a post `with_secure_media?` if it is in a read-restricted category. * When uploading we now set an upload's secure status straight away. * When uploading if `SiteSetting.secure_media` is enabled, we do not check to see if the upload already exists using the `sha1` digest of the upload. The `sha1` column of the upload is filled with a `SecureRandom.hex(20)` value which is the same length as `Upload::SHA1_LENGTH`. The `original_sha1` column is filled with the _real_ sha1 digest of the file. * Whether an upload `should_be_secure?` is now determined by whether the `access_control_post` is `with_secure_media?` (if there is no access control post then we leave the secure status as is). * When serializing the upload, we now cook the URL if the upload is secure. This is so it shows up correctly in the composer preview, because we set secure status on upload. ### Viewing Secure Media * The secure-media-upload URL will take the post that the upload is attached to into account via `Guardian.can_see?` for access permissions * If there is no `access_control_post` then we just deliver the media. This should be a rare occurrance and shouldn't cause issues as the `access_control_post` is set when `link_post_uploads` is called via `CookedPostProcessor` ### Removed We no longer do any of these because we do not reuse uploads by sha1 if secure media is enabled. * We no longer have a way to prevent cross-posting of a secure upload from a private context to a public context. * We no longer have to set `secure: false` for uploads when uploading for a theme component.
2020-01-15 22:50:27 -05:00
it "reuses the original upload" do
expect(response.status).to eq(201)
expect(response_json["upload_id"]).to eq(uploaded_file.id)
FIX: Mark secure media upload insecure automatically if used for theme component (#8413) When uploading a file to a theme component, and that file is existing and has already been marked as secure, we now automatically mark the file as secure: false, change the ACL, and log the action as the user (also rebake the posts for the upload)
2019-11-27 16:32:17 -05:00
end
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
describe '#export' do
it "exports correctly" do
theme = Fabricate(:theme, name: "Awesome Theme")
theme.set_field(target: :common, name: :scss, value: '.body{color: black;}')
theme.set_field(target: :desktop, name: :after_header, value: '<b>test</b>')
FIX: Allow importing themes with subdirectories in extra_js The folder/file detection was broken by 9fea43e46a7bb9ee1f8a3ce9d22bb41664f0852a. This commit fixes and adds relevant specs
2019-11-13 18:45:09 -05:00
theme.set_field(target: :extra_js, name: "discourse/controller/blah", value: 'console.log("test");')
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
theme.save!
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
get "/admin/customize/themes/#{theme.id}/export"
expect(response.status).to eq(200)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
# Save the output in a temp file (automatically cleaned up)
SECURITY: Safely decompress files. (#8124) * FEATURE: Adds an extra protection layer when decompressing files. * Rename exporter/importer to zip importer. Update old locale * Added a new composite class to decompress a file with multiple strategies * Set max file size inside a site setting * Ensure that file is deleted after compression * Sanitize path and files before compressing/decompressing
2019-10-03 09:19:35 -04:00
file = Tempfile.new('archive.zip')
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
file.write(response.body)
file.rewind
FEATURE: Gz to zip for exports (#7889) * Revert "Revert "FEATURE: admin/user exports are compressed using the zip format (#7784)"" This reverts commit f89bd555763bd61a130145d2eff6c2ee75fe6b06. * Replace .tar.zip with .zip
2019-07-18 08:34:48 -04:00
uploaded_file = Rack::Test::UploadedFile.new(file.path, "application/zip")
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
# Now import it again
expect do
post "/admin/themes/import.json", params: { theme: uploaded_file }
expect(response.status).to eq(201)
end.to change { Theme.count }.by (1)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect(json["theme"]["name"]).to eq("Awesome Theme")
FIX: Allow importing themes with subdirectories in extra_js The folder/file detection was broken by 9fea43e46a7bb9ee1f8a3ce9d22bb41664f0852a. This commit fixes and adds relevant specs
2019-11-13 18:45:09 -05:00
expect(json["theme"]["theme_fields"].length).to eq(3)
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
end
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
describe '#import' do
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
let(:theme_json_file) do
Rack::Test::UploadedFile.new(file_from_fixtures("sam-s-simple-theme.dcstyle.json", "json"), "application/json")
end
let(:theme_archive) do
SECURITY: Safely decompress backups when restoring. (#8166) * SECURITY: Safely decompress backups when restoring. * Fix tests and update theme_controller_spec to work with zip files instead of .tar.gz
2019-10-09 10:41:16 -04:00
Rack::Test::UploadedFile.new(file_from_fixtures("discourse-test-theme.zip", "themes"), "application/zip")
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
end
let(:image) do
file_from_fixtures("logo.png")
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
FIX: use allowlist and blocklist terminology (#10209) This is a PR of the renaming whitelist to allowlist and blacklist to the blocklist.
2020-07-26 20:23:54 -04:00
context 'when theme allowlist mode is enabled' do
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
before do
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
global_setting :allowed_theme_repos, "https://github.com/discourse/discourse-brand-header.git"
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
end
FIX: use allowlist and blocklist terminology (#10209) This is a PR of the renaming whitelist to allowlist and blacklist to the blocklist.
2020-07-26 20:23:54 -04:00
it "allows allowlisted imports" do
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
expect(Theme.allowed_remote_theme_ids.length).to eq(0)
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
post "/admin/themes/import.json", params: {
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
remote: ' https://github.com/discourse/discourse-brand-header.git '
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
}
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
expect(Theme.allowed_remote_theme_ids.length).to eq(1)
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
expect(response.status).to eq(201)
end
UX: displays a descriptive error when theme is not allowed (#12763)
2021-04-20 07:28:59 -04:00
it "prevents adding disallowed themes" do
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
RemoteTheme.stubs(:import_theme)
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
remote = ' https://bad.com/discourse/discourse-brand-header.git '
UX: displays a descriptive error when theme is not allowed (#12763)
2021-04-20 07:28:59 -04:00
post "/admin/themes/import.json", params: { remote: remote }
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
expect(response.status).to eq(403)
UX: displays a descriptive error when theme is not allowed (#12763)
2021-04-20 07:28:59 -04:00
expect(response.parsed_body['errors']).to include(I18n.t("themes.import_error.not_allowed_theme", { repo: remote.strip }))
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
end
it "bans json file import" do
post "/admin/themes/import.json", params: { theme: theme_json_file }
expect(response.status).to eq(403)
end
end
FIX: Strip remote url before import. (#6762)
2018-12-17 09:27:49 -05:00
it 'can import a theme from Git' do
FIX: Our rspec suite should not require a network connection to github
2019-04-12 12:01:16 -04:00
RemoteTheme.stubs(:import_theme)
FIX: Strip remote url before import. (#6762)
2018-12-17 09:27:49 -05:00
post "/admin/themes/import.json", params: {
FIX: allowed_theme_ids should not be persisted in GlobalSettings (#14756) * FIX: allowed_theme_ids should not be persisted in GlobalSettings It was observed that the memoized value of `GlobalSetting.allowed_theme_ids` would be persisted across requests, which could lead to unpredictable/undesired behaviours in a multisite environment. This change moves that logic out of GlobalSettings so that the returned theme IDs are correct for the current site. Uses get_set_cache, which ultimately uses DistributedCache, which will take care of multisite issues for us.
2021-10-29 11:46:52 -04:00
remote: ' https://github.com/discourse/discourse-brand-header.git '
FIX: Strip remote url before import. (#6762)
2018-12-17 09:27:49 -05:00
}
expect(response.status).to eq(201)
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
it 'imports a theme' do
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
post "/admin/themes/import.json", params: { theme: theme_json_file }
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(json["theme"]["name"]).to eq("Sam's Simple Theme")
expect(json["theme"]["theme_fields"].length).to eq(2)
FIX: Set `auto_update` to false for non-git themes/components (#15157) Related to: https://github.com/discourse/discourse/commit/20f736aa112145efa3f09b6ab120904e2faa1b90. `auto_update` is true by default at the database level, but it doesn't make sense for `auto_update` to be true on themes that are not imported from a Git repository.
2021-12-01 11:58:13 -05:00
expect(json["theme"]["auto_update"]).to eq(false)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
FIX: Abort theme creation if unable to create uploads (#16336) Previous to this change if any of the assets were not allowed extensions they would simply be silently ignored, this could lead to broken themes that are very hard to debug
2022-03-31 21:03:14 -04:00
it 'fails to import with an error if uploads are not allowed' do
SiteSetting.theme_authorized_extensions = "nothing"
expect do
post "/admin/themes/import.json", params: { theme: theme_archive }
end.to change { Theme.count }.by (0)
expect(response.status).to eq(422)
end
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
it 'imports a theme from an archive' do
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
_existing_theme = Fabricate(:theme, name: "Header Icons")
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect do
post "/admin/themes/import.json", params: { theme: theme_archive }
end.to change { Theme.count }.by (1)
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect(json["theme"]["name"]).to eq("Header Icons")
expect(json["theme"]["theme_fields"].length).to eq(5)
FIX: Set `auto_update` to false for non-git themes/components (#15157) Related to: https://github.com/discourse/discourse/commit/20f736aa112145efa3f09b6ab120904e2faa1b90. `auto_update` is true by default at the database level, but it doesn't make sense for `auto_update` to be true on themes that are not imported from a Git repository.
2021-12-01 11:58:13 -05:00
expect(json["theme"]["auto_update"]).to eq(false)
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
it 'updates an existing theme from an archive by name' do
# Old theme CLI method, remove Jan 2020
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
_existing_theme = Fabricate(:theme, name: "Header Icons")
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect do
post "/admin/themes/import.json", params: { bundle: theme_archive }
end.to change { Theme.count }.by (0)
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
FEATURE: Import and export themes in a .tar.gz format (#6916)
2019-01-23 09:40:21 -05:00
expect(json["theme"]["name"]).to eq("Header Icons")
expect(json["theme"]["theme_fields"].length).to eq(5)
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
it 'updates an existing theme from an archive by id' do
# Used by theme CLI
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
_existing_theme = Fabricate(:theme, name: "Header Icons")
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
other_existing_theme = Fabricate(:theme, name: "Some other name")
FIX: Ensure live-reloading of theme CSS works first time (#8052) The client-side theme-selector would always apply the first in a series of file change notifications. This has been fixed, so it now applies the most recent notification. Duplicate notifications were being sent because - The remote_theme autosave was causing every change notification to be doubled - Color scheme change notifications were being sent every time a theme was uploaded, even if the colors were unchanged These duplicate notifications have been fixed, and a spec added to ensure it does not regress in future
2019-08-29 10:47:08 -04:00
messages = MessageBus.track_publish do
expect do
post "/admin/themes/import.json", params: { bundle: theme_archive, theme_id: other_existing_theme.id }
end.to change { Theme.count }.by (0)
end
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
FIX: Ensure live-reloading of theme CSS works first time (#8052) The client-side theme-selector would always apply the first in a series of file change notifications. This has been fixed, so it now applies the most recent notification. Duplicate notifications were being sent because - The remote_theme autosave was causing every change notification to be doubled - Color scheme change notifications were being sent every time a theme was uploaded, even if the colors were unchanged These duplicate notifications have been fixed, and a spec added to ensure it does not regress in future
2019-08-29 10:47:08 -04:00
# Ensure only one refresh message is sent.
# More than 1 is wasteful, and can trigger unusual race conditions in the client
# If this test fails, it probably means `theme.save` is being called twice - check any 'autosave' relations
file_change_messages = messages.filter { |m| m[:channel] == "/file-change" }
expect(file_change_messages.count).to eq(1)
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
expect(json["theme"]["name"]).to eq("Some other name")
expect(json["theme"]["id"]).to eq(other_existing_theme.id)
expect(json["theme"]["theme_fields"].length).to eq(5)
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
it 'creates a new theme when id specified as nil' do
# Used by theme CLI
existing_theme = Fabricate(:theme, name: "Header Icons")
expect do
post "/admin/themes/import.json", params: { bundle: theme_archive, theme_id: nil }
end.to change { Theme.count }.by (1)
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
expect(json["theme"]["name"]).to eq("Header Icons")
expect(json["theme"]["id"]).not_to eq(existing_theme.id)
expect(json["theme"]["theme_fields"].length).to eq(5)
FIX: Set `auto_update` to false for non-git themes/components (#15157) Related to: https://github.com/discourse/discourse/commit/20f736aa112145efa3f09b6ab120904e2faa1b90. `auto_update` is true by default at the database level, but it doesn't make sense for `auto_update` to be true on themes that are not imported from a Git repository.
2021-12-01 11:58:13 -05:00
expect(json["theme"]["auto_update"]).to eq(false)
DEV: Allow theme CLI to specify which theme to synchronize (#6963) Currently the theme is matched by name, which can be fragile when there are many themes with the same name. This functionality will be used by the next version of theme CLI.
2019-01-30 09:17:04 -05:00
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
describe '#index' do
it 'correctly returns themes' do
ColorScheme.destroy_all
Theme.destroy_all
FEATURE: backend support for user-selectable components * FEATURE: backend support for user-selectable components * fix problems with previewing default theme * rename preview_key => preview_theme_id * omit default theme from child themes dropdown and try a different fix * cache & freeze stylesheets arrays
2018-08-08 00:46:34 -04:00
theme = Fabricate(:theme)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
theme.set_field(target: :common, name: :scss, value: '.body{color: black;}')
theme.set_field(target: :desktop, name: :after_header, value: '<b>test</b>')
theme.remote_theme = RemoteTheme.new(
remote_url: 'awesome.git',
remote_version: '7',
local_version: '8',
remote_updated_at: Time.zone.now
)
theme.save!
# this will get serialized as well
ColorScheme.create_from_base(name: "test", colors: [])
get "/admin/themes.json"
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
UX: Tweaks to admin color palette dropdown (#10502)
2020-08-21 09:30:11 -04:00
expect(json["extras"]["color_schemes"].length).to eq(1)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
theme_json = json["themes"].find { |t| t["id"] == theme.id }
expect(theme_json["theme_fields"].length).to eq(2)
expect(theme_json["remote_theme"]["remote_version"]).to eq("7")
end
end
describe '#create' do
it 'creates a theme' do
post "/admin/themes.json", params: {
theme: {
name: 'my test name',
theme_fields: [name: 'scss', target: 'common', value: 'body{color: red;}']
}
}
expect(response.status).to eq(201)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
expect(json["theme"]["theme_fields"].length).to eq(1)
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
end
describe '#update' do
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0
2019-05-06 23:12:20 -04:00
let!(:theme) { Fabricate(:theme) }
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
FIX: Return the right response code for invalid theme id.
2019-04-11 01:56:43 -04:00
it 'returns the right response when an invalid id is given' do
put "/admin/themes/99999.json"
expect(response.status).to eq(400)
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
it 'can change default theme' do
FEATURE: Groundwork for user-selectable theme components * Phase 0 for user-selectable theme components - Drops `key` column from the `themes` table - Drops `theme_key` column from the `user_options` table - Adds `theme_ids` (array of ints default []) column to the `user_options` table and migrates data from `theme_key` to the new column. - Removes the `default_theme_key` site setting and adds `default_theme_id` instead. - Replaces `theme_key` cookie with a new one called `theme_ids` - no longer need Theme.settings_for_client
2018-07-12 00:18:21 -04:00
SiteSetting.default_theme_id = -1
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
put "/admin/themes/#{theme.id}.json", params: {
id: theme.id, theme: { default: true }
}
expect(response.status).to eq(200)
FEATURE: Groundwork for user-selectable theme components * Phase 0 for user-selectable theme components - Drops `key` column from the `themes` table - Drops `theme_key` column from the `user_options` table - Adds `theme_ids` (array of ints default []) column to the `user_options` table and migrates data from `theme_key` to the new column. - Removes the `default_theme_key` site setting and adds `default_theme_id` instead. - Replaces `theme_key` cookie with a new one called `theme_ids` - no longer need Theme.settings_for_client
2018-07-12 00:18:21 -04:00
expect(SiteSetting.default_theme_id).to eq(theme.id)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
it 'can unset default theme' do
FEATURE: Groundwork for user-selectable theme components * Phase 0 for user-selectable theme components - Drops `key` column from the `themes` table - Drops `theme_key` column from the `user_options` table - Adds `theme_ids` (array of ints default []) column to the `user_options` table and migrates data from `theme_key` to the new column. - Removes the `default_theme_key` site setting and adds `default_theme_id` instead. - Replaces `theme_key` cookie with a new one called `theme_ids` - no longer need Theme.settings_for_client
2018-07-12 00:18:21 -04:00
SiteSetting.default_theme_id = theme.id
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
put "/admin/themes/#{theme.id}.json", params: {
theme: { default: false }
}
expect(response.status).to eq(200)
FEATURE: Groundwork for user-selectable theme components * Phase 0 for user-selectable theme components - Drops `key` column from the `themes` table - Drops `theme_key` column from the `user_options` table - Adds `theme_ids` (array of ints default []) column to the `user_options` table and migrates data from `theme_key` to the new column. - Removes the `default_theme_key` site setting and adds `default_theme_id` instead. - Replaces `theme_key` cookie with a new one called `theme_ids` - no longer need Theme.settings_for_client
2018-07-12 00:18:21 -04:00
expect(SiteSetting.default_theme_id).to eq(-1)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
FIX: use allowlist and blocklist terminology (#10209) This is a PR of the renaming whitelist to allowlist and blacklist to the blocklist.
2020-07-26 20:23:54 -04:00
context 'when theme allowlist mode is enabled' do
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
before do
FIX: use allowlist and blocklist terminology (#10209) This is a PR of the renaming whitelist to allowlist and blacklist to the blocklist.
2020-07-26 20:23:54 -04:00
global_setting :allowed_theme_repos, " https://magic.com/repo.git, https://x.com/git"
FEATURE: whitelist theme repo mode (experimental) In some restricted setups all JS payloads need tight control. This setting bans admins from making changes to JS on the site and requires all themes be whitelisted to be used. There are edge cases we still need to work through in this mode hence this is still not supported in production and experimental. Use an example like this to enable: `DISCOURSE_WHITELISTED_THEME_REPOS="https://repo.com/repo.git,https://repo.com/repo2.git"` By default this feature is not enabled and no changes are made. One exception is that default theme id was missing a security check this was added for correctness.
2020-06-02 23:19:42 -04:00
end
it 'unconditionally bans theme_fields from updating' do
r = RemoteTheme.create!(remote_url: "https://magic.com/repo.git")
theme.update!(remote_theme_id: r.id)
put "/admin/themes/#{theme.id}.json", params: {
theme: {
name: 'my test name',
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
{ name: 'scss', target: 'desktop', value: 'body{color: blue;}' },
]
}
}
expect(response.status).to eq(403)
end
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
it 'updates a theme' do
theme.set_field(target: :common, name: :scss, value: '.body{color: black;}')
theme.save
FEATURE: themes and components split * FEATURE: themes and components split * two seperate methods to switch theme type * use strict equality operator
2018-08-23 21:30:00 -04:00
child_theme = Fabricate(:theme, component: true)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
DEV: Refactor theme SCSS compilation (#11919)
2021-02-02 13:09:41 -05:00
upload = UploadCreator.new(file_from_fixtures("logo.png"), "logo.png").create_for(Discourse.system_user.id)
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
put "/admin/themes/#{theme.id}.json", params: {
theme: {
child_theme_ids: [child_theme.id],
name: 'my test name',
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
{ name: 'scss', target: 'desktop', value: 'body{color: blue;}' },
{ name: 'bob', target: 'common', value: '', type_id: 2, upload_id: upload.id },
]
}
}
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
fields = json["theme"]["theme_fields"].sort { |a, b| a["value"] <=> b["value"] }
expect(fields[0]["value"]).to eq('')
expect(fields[0]["upload_id"]).to eq(upload.id)
expect(fields[1]["value"]).to eq('body{color: blue;}')
expect(fields.length).to eq(2)
expect(json["theme"]["child_themes"].length).to eq(1)
expect(UserHistory.where(action: UserHistory.actions[:change_theme]).count).to eq(1)
end
FEATURE: backend support for user-selectable components * FEATURE: backend support for user-selectable components * fix problems with previewing default theme * rename preview_key => preview_theme_id * omit default theme from child themes dropdown and try a different fix * cache & freeze stylesheets arrays
2018-08-08 00:46:34 -04:00
DEV: Show warning message when using ember css selectors (#12036) * DEV: Show warning message when using ember css selectors When editing the theme css via the admin UI a warning message will be displayed if it detects that the `#emberXXX` or `.ember-view` css selectors are being used. These are dynamic selectors that ember generates, but they can change so they should not be used. * Update error message text to be more helpful * Display a warning instead of erroring out This allows the theme to still be saved, but a warning is displayed. Updated the tests to check for the error message. Updated the pre tags css so that it wraps for long messages.
2021-02-11 15:48:57 -05:00
it 'prevents theme update when using ember css selectors' do
child_theme = Fabricate(:theme, component: true)
put "/admin/themes/#{theme.id}.json", params: {
theme: {
child_theme_ids: [child_theme.id],
name: 'my test name',
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
{ name: 'scss', target: 'desktop', value: '.ember-view{color: blue;}' },
]
}
}
expect(response.status).to eq(200)
json = response.parsed_body
fields = json["theme"]["theme_fields"].sort { |a, b| a["value"] <=> b["value"] }
expect(fields[0]["error"]).to eq(I18n.t("themes.ember_selector_error"))
put "/admin/themes/#{theme.id}.json", params: {
theme: {
child_theme_ids: [child_theme.id],
name: 'my test name',
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
{ name: 'scss', target: 'desktop', value: '#ember392{color: blue;}' },
]
}
}
expect(response.status).to eq(200)
json = response.parsed_body
fields = json["theme"]["theme_fields"].sort { |a, b| a["value"] <=> b["value"] }
expect(fields[0]["error"]).to eq(I18n.t("themes.ember_selector_error"))
end
FIX: Disallow editing of remote themes (#11189) Allowing the editing of remote themes has been something Discourse has advised against for some time. This commit removes the ability to edit or upload files to remote themes from Admin > Customize to enforce the recommended practice.
2020-11-13 10:57:49 -05:00
it 'blocks remote theme fields from being locally edited' do
r = RemoteTheme.create!(remote_url: "https://magic.com/repo.git")
theme.update!(remote_theme_id: r.id)
put "/admin/themes/#{theme.id}.json", params: {
theme: {
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
FIX: Only block local edits for git-sourced themes (#11450) Themes uploaded as zip files are given a row in the `remote_themes` table to store metadata, even though they are not truly remote.
2020-12-09 14:41:42 -05:00
{ name: 'header', target: 'common', value: 'filename.jpg', upload_id: 4 }
FIX: Disallow editing of remote themes (#11189) Allowing the editing of remote themes has been something Discourse has advised against for some time. This commit removes the ability to edit or upload files to remote themes from Admin > Customize to enforce the recommended practice.
2020-11-13 10:57:49 -05:00
]
}
}
expect(response.status).to eq(403)
end
FIX: Only block local edits for git-sourced themes (#11450) Themes uploaded as zip files are given a row in the `remote_themes` table to store metadata, even though they are not truly remote.
2020-12-09 14:41:42 -05:00
it 'allows zip-imported theme fields to be locally edited' do
r = RemoteTheme.create!(remote_url: "")
theme.update!(remote_theme_id: r.id)
put "/admin/themes/#{theme.id}.json", params: {
theme: {
theme_fields: [
{ name: 'scss', target: 'common', value: '' },
{ name: 'header', target: 'common', value: 'filename.jpg', upload_id: 4 }
]
}
}
expect(response.status).to eq(200)
end
FEATURE: Ability to add components to all themes (#8404) * FEATURE: Ability to add components to all themes This is the first and functional step from that topic https://dev.discourse.org/t/adding-a-theme-component-is-too-much-work/15398/16 The idea here is that when a new component is added, the user can easily assign it to all themes (parents). To achieve that, I needed to change a site-setting component to accept `setDefaultValues` action and `setDefaultValuesLabel` translated label. Also, I needed to add `allowAny` option to disable that for theme selector. I also refactored backend to accept both parent and child ids with one method to avoid duplication (Renamed `add_child_theme!` to more general `add_relative_theme!`) * FIX: Improvement after code review * FIX: Improvement after code review2 * FIX: use mapBy and filterBy directly
2019-11-28 00:19:01 -05:00
it 'updates a child theme' do
child_theme = Fabricate(:theme, component: true)
put "/admin/themes/#{child_theme.id}.json", params: {
theme: {
parent_theme_ids: [theme.id],
}
}
expect(child_theme.parent_themes).to eq([theme])
end
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
it 'can update translations' do
theme.set_field(target: :translations, name: :en, value: { en: { somegroup: { somestring: "defaultstring" } } }.deep_stringify_keys.to_yaml)
theme.save!
put "/admin/themes/#{theme.id}.json", params: {
theme: {
translations: {
DEV: Fix "overridden" typos (#16399) There are still some, but those are in actual code that's used outside core, so the change there would need to go through the deprecation cycle. That's a task for another day.
2022-04-06 17:17:20 -04:00
"somegroup.somestring" => "overriddenstring"
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
}
}
}
# Response correct
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
DEV: Fix "overridden" typos (#16399) There are still some, but those are in actual code that's used outside core, so the change there would need to go through the deprecation cycle. That's a task for another day.
2022-04-06 17:17:20 -04:00
expect(json["theme"]["translations"][0]["value"]).to eq("overriddenstring")
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
# Database correct
theme.reload
expect(theme.theme_translation_overrides.count).to eq(1)
expect(theme.theme_translation_overrides.first.translation_key).to eq("somegroup.somestring")
# Set back to default
put "/admin/themes/#{theme.id}.json", params: {
theme: {
translations: {
"somegroup.somestring" => "defaultstring"
}
}
}
# Response correct
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
expect(json["theme"]["translations"][0]["value"]).to eq("defaultstring")
# Database correct
theme.reload
expect(theme.theme_translation_overrides.count).to eq(0)
FIX: Rescue and display import errors when updating theme via git
2019-02-05 08:49:16 -05:00
end
FIX: remote theme record not saved when checking for updates (#8054)
2019-08-29 17:32:54 -04:00
it 'checking for updates saves the remote_theme record' do
theme.remote_theme = RemoteTheme.create!(remote_url: "http://discourse.org", remote_version: "a", local_version: "a", commits_behind: 0)
theme.save!
ThemeStore::GitImporter.any_instance.stubs(:import!)
ThemeStore::GitImporter.any_instance.stubs(:commits_since).returns(["b", 1])
put "/admin/themes/#{theme.id}.json", params: {
theme: {
remote_check: true
}
}
theme.reload
expect(theme.remote_theme.remote_version).to eq("b")
expect(theme.remote_theme.commits_behind).to eq(1)
end
FEATURE: allow disabling theme components (#7812) This allows you to temporarily disable components without having to remove them from a theme. This feature is very handy when doing quick fix engineering.
2019-07-03 04:18:11 -04:00
it 'can disable component' do
child = Fabricate(:theme, component: true)
put "/admin/themes/#{child.id}.json", params: {
theme: {
enabled: false
}
}
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
FEATURE: allow disabling theme components (#7812) This allows you to temporarily disable components without having to remove them from a theme. This feature is very handy when doing quick fix engineering.
2019-07-03 04:18:11 -04:00
expect(json["theme"]["enabled"]).to eq(false)
expect(UserHistory.where(
context: child.id.to_s,
action: UserHistory.actions[:disable_theme_component]
).size).to eq(1)
expect(json["theme"]["disabled_by"]["id"]).to eq(admin.id)
end
it "enabling/disabling a component creates the correct staff action log" do
child = Fabricate(:theme, component: true)
UserHistory.destroy_all
put "/admin/themes/#{child.id}.json", params: {
theme: {
enabled: false
}
}
expect(response.status).to eq(200)
expect(UserHistory.where(
context: child.id.to_s,
action: UserHistory.actions[:disable_theme_component]
).size).to eq(1)
expect(UserHistory.where(
context: child.id.to_s,
action: UserHistory.actions[:enable_theme_component]
).size).to eq(0)
put "/admin/themes/#{child.id}.json", params: {
theme: {
enabled: true
}
}
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
json = response.parsed_body
FEATURE: allow disabling theme components (#7812) This allows you to temporarily disable components without having to remove them from a theme. This feature is very handy when doing quick fix engineering.
2019-07-03 04:18:11 -04:00
expect(UserHistory.where(
context: child.id.to_s,
action: UserHistory.actions[:disable_theme_component]
).size).to eq(1)
expect(UserHistory.where(
context: child.id.to_s,
action: UserHistory.actions[:enable_theme_component]
).size).to eq(1)
expect(json["theme"]["disabled_by"]).to eq(nil)
expect(json["theme"]["enabled"]).to eq(true)
end
FIX: Rescue and display import errors when updating theme via git
2019-02-05 08:49:16 -05:00
it 'handles import errors on update' do
theme.create_remote_theme!(remote_url: "https://example.com/repository")
FIX: Ensure live-reloading of theme CSS works first time (#8052) The client-side theme-selector would always apply the first in a series of file change notifications. This has been fixed, so it now applies the most recent notification. Duplicate notifications were being sent because - The remote_theme autosave was causing every change notification to be doubled - Color scheme change notifications were being sent every time a theme was uploaded, even if the colors were unchanged These duplicate notifications have been fixed, and a spec added to ensure it does not regress in future
2019-08-29 10:47:08 -04:00
theme.save!
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
FIX: Rescue and display import errors when updating theme via git
2019-02-05 08:49:16 -05:00
# RemoteTheme is extensively tested, and setting up the test scaffold is a large overhead
# So use a stub here to test the controller
RemoteTheme.any_instance.stubs(:update_from_remote).raises(RemoteTheme::ImportError.new("error message"))
put "/admin/themes/#{theme.id}.json", params: {
theme: { remote_update: true }
}
expect(response.status).to eq(422)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
expect(response.parsed_body["errors"].first).to eq("error message")
FEATURE: Support for localized themes (#6848) - Themes can supply translation files in a format like `/locales/{locale}.yml`. These files should be valid YAML, with a single top level key equal to the locale being defined. For now these can only be defined using the `discourse_theme` CLI, importing a `.tar.gz`, or from a GIT repository. - Fallback is handled on a global level (if the locale is not defined in the theme), as well as on individual keys (if some keys are missing from the selected interface language). - Administrators can override individual keys on a per-theme basis in the /admin/customize/themes user interface. - Theme developers should access defined translations using the new theme prefix variables: JavaScript: `I18n.t(themePrefix("my_translation_key"))` Handlebars: `{{theme-i18n "my_translation_key"}}` or `{{i18n (theme-prefix "my_translation_key")}}` - To design for backwards compatibility, theme developers can check for the presence of the `themePrefix` variable in JavaScript - As part of this, the old `{{themeSetting.setting_name}}` syntax is deprecated in favour of `{{theme-setting "setting_name"}}`
2019-01-17 06:46:11 -05:00
end
FEATURE: backend support for user-selectable components * FEATURE: backend support for user-selectable components * fix problems with previewing default theme * rename preview_key => preview_theme_id * omit default theme from child themes dropdown and try a different fix * cache & freeze stylesheets arrays
2018-08-08 00:46:34 -04:00
it 'returns the right error message' do
FEATURE: themes and components split * FEATURE: themes and components split * two seperate methods to switch theme type * use strict equality operator
2018-08-23 21:30:00 -04:00
theme.update!(component: true)
FEATURE: backend support for user-selectable components * FEATURE: backend support for user-selectable components * fix problems with previewing default theme * rename preview_key => preview_theme_id * omit default theme from child themes dropdown and try a different fix * cache & freeze stylesheets arrays
2018-08-08 00:46:34 -04:00
put "/admin/themes/#{theme.id}.json", params: {
theme: { default: true }
}
expect(response.status).to eq(400)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
expect(response.parsed_body["errors"].first).to include(I18n.t("themes.errors.component_no_default"))
FEATURE: backend support for user-selectable components * FEATURE: backend support for user-selectable components * fix problems with previewing default theme * rename preview_key => preview_theme_id * omit default theme from child themes dropdown and try a different fix * cache & freeze stylesheets arrays
2018-08-08 00:46:34 -04:00
end
FIX: Prevent users from converting the default theme to a component This results in some fun disasters if allowed to happen. For now, just issue an oblique error message; a localized message will be added on the client.
2021-01-11 17:53:04 -05:00
it 'prevents converting the default theme to a component' do
SiteSetting.default_theme_id = theme.id
put "/admin/themes/#{theme.id}.json", params: {
theme: { component: true }
}
# should this error message be localized? InvalidParameters :component
expect(response.status).to eq(400)
expect(response.parsed_body["errors"].first).to include('component')
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end
DEV: extract inline js when baking theme fields (#6447) * extract inline js when baking theme fields * destroy javascript cache when destroying theme fields This work is needed to support CSP work
2018-10-15 00:55:23 -04:00
describe '#destroy' do
DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0
2019-05-06 23:12:20 -04:00
let!(:theme) { Fabricate(:theme) }
DEV: extract inline js when baking theme fields (#6447) * extract inline js when baking theme fields * destroy javascript cache when destroying theme fields This work is needed to support CSP work
2018-10-15 00:55:23 -04:00
FIX: Return the right response code for invalid theme id.
2019-04-11 01:56:43 -04:00
it 'returns the right response when an invalid id is given' do
delete "/admin/themes/9999.json"
expect(response.status).to eq(400)
end
DEV: extract inline js when baking theme fields (#6447) * extract inline js when baking theme fields * destroy javascript cache when destroying theme fields This work is needed to support CSP work
2018-10-15 00:55:23 -04:00
it "deletes the field's javascript cache" do
theme.set_field(target: :common, name: :header, value: '<script>console.log("test")</script>')
theme.save!
javascript_cache = theme.theme_fields.find_by(target_id: Theme.targets[:common], name: :header).javascript_cache
expect(javascript_cache).to_not eq(nil)
delete "/admin/themes/#{theme.id}.json"
expect(response.status).to eq(204)
expect { theme.reload }.to raise_error(ActiveRecord::RecordNotFound)
expect { javascript_cache.reload }.to raise_error(ActiveRecord::RecordNotFound)
end
end
FIX: Return the right response code for invalid theme id.
2019-04-11 01:56:43 -04:00
describe '#preview' do
it "should return the right response when an invalid id is given" do
get "/admin/themes/9999/preview.json"
expect(response.status).to eq(400)
end
end
FEATURE: Show diff of local changes before updating remote theme (#7443)
2019-05-02 21:43:54 -04:00
FEATURE: Add endpoint to individually update a theme setting (#7789) - also adds a new staff action type called "change theme setting" for easier logging of staff changes to theme settings
2019-06-21 13:49:14 -04:00
describe '#update_single_setting' do
let(:theme) { Fabricate(:theme) }
before do
theme.set_field(target: :settings, name: :yaml, value: "bg: red")
theme.save!
end
it "should update a theme setting" do
put "/admin/themes/#{theme.id}/setting.json", params: {
name: "bg",
value: "green"
}
expect(response.status).to eq(200)
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1.
2020-05-07 11:04:12 -04:00
expect(response.parsed_body["bg"]).to eq("green")
FEATURE: Add endpoint to individually update a theme setting (#7789) - also adds a new staff action type called "change theme setting" for easier logging of staff changes to theme settings
2019-06-21 13:49:14 -04:00
theme.reload
DEV: Remove child theme settings/variables from parent compilation (#16001) aa1442fdc3 split theme stylesheets so that every component gets its own stylesheet. Therefore, there is now no need for parent themes to collate the settings/variables of its children during scss compilation. Technically this is a breaking change for any themes which depend on the settings/variables of their child components. That was never a supported/recommended arrangement, so we don't expect this to cause issues.
2022-02-21 06:15:35 -05:00
expect(theme.cached_settings[:bg]).to eq("green")
FEATURE: Add endpoint to individually update a theme setting (#7789) - also adds a new staff action type called "change theme setting" for easier logging of staff changes to theme settings
2019-06-21 13:49:14 -04:00
user_history = UserHistory.last
expect(user_history.action).to eq(
UserHistory.actions[:change_theme_setting]
)
end
it "should clear a theme setting" do
put "/admin/themes/#{theme.id}/setting.json", params: { name: "bg" }
theme.reload
expect(response.status).to eq(200)
DEV: Remove child theme settings/variables from parent compilation (#16001) aa1442fdc3 split theme stylesheets so that every component gets its own stylesheet. Therefore, there is now no need for parent themes to collate the settings/variables of its children during scss compilation. Technically this is a breaking change for any themes which depend on the settings/variables of their child components. That was never a supported/recommended arrangement, so we don't expect this to cause issues.
2022-02-21 06:15:35 -05:00
expect(theme.cached_settings[:bg]).to eq("")
FEATURE: Add endpoint to individually update a theme setting (#7789) - also adds a new staff action type called "change theme setting" for easier logging of staff changes to theme settings
2019-06-21 13:49:14 -04:00
end
end
REFACTOR: admin themes controller specs to requests (#5954)
2018-06-11 00:54:16 -04:00
end