mirror of
https://github.com/openfoodfoundation/openfoodnetwork
synced 2026-02-01 21:47:16 +00:00
133 lines
4.7 KiB
Ruby
133 lines
4.7 KiB
Ruby
require 'open_food_network/permissions'
|
|
|
|
module OpenFoodNetwork
|
|
describe Permissions do
|
|
let(:user) { double(:user) }
|
|
let(:permissions) { Permissions.new(user) }
|
|
let(:permission) { 'one' }
|
|
let(:e1) { create(:enterprise) }
|
|
let(:e2) { create(:enterprise) }
|
|
|
|
describe "finding enterprises that can be added to an order cycle" do
|
|
let(:e) { double(:enterprise) }
|
|
|
|
it "returns managed and related enterprises with add_to_order_cycle permission" do
|
|
permissions.
|
|
should_receive(:managed_and_related_enterprises_with).
|
|
with(:add_to_order_cycle).
|
|
and_return([e])
|
|
|
|
permissions.order_cycle_enterprises.should == [e]
|
|
end
|
|
end
|
|
|
|
describe "finding exchanges of an order cycle that an admin can manage" do
|
|
let(:oc) { create(:simple_order_cycle) }
|
|
let!(:ex) { create(:exchange, order_cycle: oc, sender: e1, receiver: e2) }
|
|
|
|
before do
|
|
permissions.stub(:managed_enterprises) { [] }
|
|
permissions.stub(:related_enterprises_with) { [] }
|
|
end
|
|
|
|
it "returns exchanges involving enterprises managed by the user" do
|
|
permissions.stub(:managed_enterprises) { [e1, e2] }
|
|
permissions.order_cycle_exchanges(oc).should == [ex]
|
|
end
|
|
|
|
it "returns exchanges involving enterprises with E2E permission" do
|
|
permissions.stub(:related_enterprises_with) { [e1, e2] }
|
|
permissions.order_cycle_exchanges(oc).should == [ex]
|
|
end
|
|
|
|
it "does not return exchanges involving only the sender" do
|
|
permissions.stub(:managed_enterprises) { [e1] }
|
|
permissions.order_cycle_exchanges(oc).should == []
|
|
end
|
|
|
|
it "does not return exchanges involving only the receiver" do
|
|
permissions.stub(:managed_enterprises) { [e2] }
|
|
permissions.order_cycle_exchanges(oc).should == []
|
|
end
|
|
end
|
|
|
|
describe "finding managed products" do
|
|
let!(:p1) { create(:simple_product) }
|
|
let!(:p2) { create(:simple_product) }
|
|
|
|
before do
|
|
permissions.stub(:managed_enterprise_products) { Spree::Product.where('1=0') }
|
|
permissions.stub(:related_enterprise_products) { Spree::Product.where('1=0') }
|
|
end
|
|
|
|
it "returns products produced by managed enterprises" do
|
|
permissions.stub(:managed_enterprise_products) { Spree::Product.where(id: p1) }
|
|
permissions.managed_products.should == [p1]
|
|
end
|
|
|
|
it "returns products produced by permitted enterprises" do
|
|
permissions.stub(:related_enterprise_products) { Spree::Product.where(id: p2) }
|
|
permissions.managed_products.should == [p2]
|
|
end
|
|
end
|
|
|
|
describe "finding enterprises that we manage products for" do
|
|
let(:e) { double(:enterprise) }
|
|
|
|
it "returns managed and related enterprises with manage_products permission" do
|
|
permissions.
|
|
should_receive(:managed_and_related_enterprises_with).
|
|
with(:manage_products).
|
|
and_return([e])
|
|
|
|
permissions.managed_product_enterprises.should == [e]
|
|
end
|
|
end
|
|
|
|
########################################
|
|
|
|
describe "finding related enterprises with a particular permission" do
|
|
let!(:er) { create(:enterprise_relationship, parent: e1, child: e2, permissions_list: [permission]) }
|
|
|
|
it "returns the enterprises" do
|
|
permissions.stub(:managed_enterprises) { e2 }
|
|
permissions.send(:related_enterprises_with, permission).should == [e1]
|
|
end
|
|
|
|
it "returns an empty array when there are none" do
|
|
permissions.stub(:managed_enterprises) { e1 }
|
|
permissions.send(:related_enterprises_with, permission).should == []
|
|
end
|
|
end
|
|
|
|
describe "finding enterprises that are managed or with a particular permission" do
|
|
before do
|
|
permissions.stub(:managed_enterprises) { Enterprise.where('1=0') }
|
|
permissions.stub(:related_enterprises_with) { Enterprise.where('1=0') }
|
|
end
|
|
|
|
it "returns managed enterprises" do
|
|
permissions.should_receive(:managed_enterprises) { Enterprise.where(id: e1) }
|
|
permissions.send(:managed_and_related_enterprises_with, permission).should == [e1]
|
|
end
|
|
|
|
it "returns permitted enterprises" do
|
|
permissions.should_receive(:related_enterprises_with).with(permission).
|
|
and_return(Enterprise.where(id: e2))
|
|
permissions.send(:managed_and_related_enterprises_with, permission).should == [e2]
|
|
end
|
|
end
|
|
|
|
describe "finding the supplied products of related enterprises" do
|
|
let!(:e) { create(:enterprise) }
|
|
let!(:p) { create(:simple_product, supplier: e) }
|
|
|
|
it "returns supplied products" do
|
|
permissions.should_receive(:related_enterprises_with).with(:manage_products) { [e] }
|
|
|
|
permissions.send(:related_enterprise_products).should == [p]
|
|
end
|
|
end
|
|
end
|
|
end
|