require 'spec_helper' describe Spree::Admin::SearchController, type: :controller do include AuthenticationWorkflow context "Distributor Enterprise User" do let!(:owner) { create_enterprise_user( email: "test1@email.com" ) } let!(:manager) { create_enterprise_user( email: "test2@email.com" ) } let!(:random) { create_enterprise_user( email: "test3@email.com" ) } let!(:enterprise) { create(:enterprise, owner: owner, users: [owner, manager]) } before { login_as_enterprise_user [enterprise] } describe 'searching for known users' do describe "when search query is not an exact match" do before do spree_get :known_users, q: "test" end it "returns a list of users that I share management of enteprises with" do expect(assigns(:users)).to include owner, manager expect(assigns(:users)).to_not include random end end describe "when search query exactly matches the email of a user in the system" do before do spree_get :known_users, q: "test3@email.com" end it "returns that user, regardless of the relationship between the two users" do expect(assigns(:users)).to eq [random] end end end describe 'searching for customers' do let!(:customer_1) { create(:customer, enterprise: enterprise, email: 'test1@email.com') } let!(:customer_2) { create(:customer, enterprise: enterprise, name: 'test2') } let!(:customer_3) { create(:customer, email: 'test3@email.com') } describe 'when search owned enterprises' do before do spree_get :customers, q: "test", distributor_id: enterprise.id @results = JSON.parse(response.body) end describe 'when search query matches the email or name' do it 'returns a list of customers of the enterprise' do expect(@results.size).to eq 2 expect(@results.find { |c| c['id'] == customer_1.id}).to be_truthy expect(@results.find { |c| c['id'] == customer_2.id}).to be_truthy end it 'does not return the customer of other enterprises' do expect(@results.find { |c| c['id'] == customer_3.id}).to be_nil p customer_3 p enterprise end end end describe 'when search in unmanaged enterprise' do before do spree_get :customers, q: "test", distributor_id: customer_3.enterprise_id @results = JSON.parse(response.body) end it 'returns empty array' do expect(@results).to eq [] end end end describe "searching for customer addresses" do let(:bill_address) { create(:address, firstname: "Dominic", address1: "123 Lala Street" ) } let(:ship_address) { create(:address, firstname: "Dom", address1: "123 Sesame Street") } let(:managed_customer) { create(:customer, enterprise: enterprise, bill_address: bill_address, ship_address: ship_address) } let(:unmanaged_customer) { create(:customer) } let(:params) { { format: :json } } context "when I manage the customer" do before { params.merge!({customer_id: managed_customer.id}) } it "returns with serialized addresses for the customer" do spree_get :customer_addresses, params json_response = JSON.parse(response.body) expect(json_response.keys).to include "bill_address", "ship_address" expect(json_response["bill_address"]["firstname"]).to eq "Dominic" expect(json_response["bill_address"]["address1"]).to eq "123 Lala Street" expect(json_response["ship_address"]["firstname"]).to eq "Dom" expect(json_response["ship_address"]["address1"]).to eq "123 Sesame Street" end end context "when I don't manage the customer" do before { params.merge!({customer_id: unmanaged_customer.id}) } it "redirects to unauthorised" do spree_get :customer_addresses, params expect(response).to redirect_to spree.unauthorized_path end end context "when no customer with a matching id exists" do before { params.merge!({customer_id: 1}) } it "redirects to unauthorised" do spree_get :customer_addresses, params expect(response).to redirect_to spree.unauthorized_path end end end end end