Unit test for is_admin?

author: jessib <jessib@riseup.net> 2012-11-05 14:50:13 -0800
committer: jessib <jessib@riseup.net> 2012-11-05 14:50:13 -0800
commit: b3dc5378e5c09e91956aa899a6d71f0fc790de5e (patch)
tree: 042974e60bc75e7ed3f3a3c1b69fd51013144cd6 /users
parent: c7177593aaf2b1b8fd8dbd53b9cfb6562e1411d7 (diff)
2 files changed, 12 insertions, 0 deletions
diff --git a/users/app/controllers/controller_extension/authentication.rb b/users/app/controllers/controller_extension/authentication.rb
index 598d8a9..e27b4da 100644
--- a/users/app/controllers/controller_extension/authentication.rb
+++ b/users/app/controllers/controller_extension/authentication.rb
@@ -20,6 +20,7 @@ module ControllerExtension::Authentication
   end
 
   def access_denied
+    # TODO: should we redirect to the root_url in either case, and have the root_url include the login screen (and also ability to create unauthenticated tickets) when no user is logged in?
     redirect_to login_url, :alert => "Not authorized" if !logged_in?
     redirect_to root_url, :alert => "Not authorized" if logged_in?
   end
diff --git a/users/test/unit/user_test.rb b/users/test/unit/user_test.rb
index f057ca7..9977fca 100644
--- a/users/test/unit/user_test.rb
+++ b/users/test/unit/user_test.rb
@@ -48,4 +48,15 @@ class UserTest < ActiveSupport::TestCase
     assert_equal client_rnd, srp_session.aa
   end
 
+  test 'is user an admin' do
+    admin_login = APP_CONFIG['admins'].first
+    attribs = User.valid_attributes_hash
+    attribs[:login] = admin_login
+    admin_user = User.new(attribs)
+    assert admin_user.is_admin?
+    assert !@user.is_admin?
+
+  end
+
+
 end
author	jessib <jessib@riseup.net>	2012-11-05 14:50:13 -0800
committer	jessib <jessib@riseup.net>	2012-11-05 14:50:13 -0800
commit	b3dc5378e5c09e91956aa899a6d71f0fc790de5e (patch)
tree	042974e60bc75e7ed3f3a3c1b69fd51013144cd6 /users
parent	c7177593aaf2b1b8fd8dbd53b9cfb6562e1411d7 (diff)