blob: e1961aa605345a02389eff75f5e9880afb8059d0 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
module AuthTestHelper
extend ActiveSupport::Concern
# Controller will fetch current user from warden.
# Make it pick up our current_user
included do
setup do
request.env['warden'] ||= stub :user => nil
end
end
def login(user_or_method_hash = {})
if user_or_method_hash.respond_to?(:reverse_merge)
user_or_method_hash.reverse_merge! :is_admin? => false
end
@current_user = stub_record(:user, user_or_method_hash)
request.env['warden'] = stub :user => @current_user
request.env['HTTP_AUTHORIZATION'] = header_for_token_auth
return @current_user
end
def assert_login_required
assert_access_denied(true, false)
end
def assert_access_denied(denied = true, logged_in = true)
if denied
if @response.content_type == 'application/json'
assert_json_response('error' => I18n.t(:not_authorized))
assert_response :unprocessable_entity
else
if logged_in
assert_equal({:alert => I18n.t(:not_authorized)}, flash.to_hash)
assert_redirected_to home_url
else
assert_equal({:alert => I18n.t(:not_authorized_login)}, flash.to_hash)
assert_redirected_to login_url
end
end
else
assert flash[:alert].blank?
end
end
def expect_logout
expect_warden_logout
@token.expects(:destroy) if @token
end
protected
def header_for_token_auth
@token = find_record(:token, :authenticate => @current_user)
ActionController::HttpAuthentication::Token.encode_credentials @token.id
end
def expect_warden_logout
raw = mock('raw session') do
expects(:inspect)
end
request.env['warden'].expects(:raw_session).returns(raw)
request.env['warden'].expects(:logout)
end
end
class ActionController::TestCase
include AuthTestHelper
end
|