foodsoft/spec/support/api_helper.rb

72 lines
2 KiB
Ruby
Raw Normal View History

2018-10-15 16:47:14 +02:00
module ApiHelper
extend ActiveSupport::Concern
included do
let(:user) { create(:user) }
let(:api_scopes) { [] } # empty scopes for stricter testing (in reality this would be default_scopes)
let(:api_access_token) { create(:oauth2_access_token, resource_owner_id: user.id, scopes: api_scopes&.join(' ')).token }
2022-11-07 17:42:32 +01:00
let(:Authorization) { "Bearer #{api_access_token}" }
2022-11-21 13:17:14 +01:00
def self.it_handles_invalid_token
context 'with invalid access token' do
2022-11-07 17:42:32 +01:00
let(:Authorization) { 'abc' }
2022-02-20 16:15:22 +01:00
2022-11-07 17:42:32 +01:00
response 401, 'not logged-in' do
2022-11-21 12:49:53 +01:00
schema '$ref' => '#/components/schemas/Error401'
2022-11-07 17:42:32 +01:00
run_test!
end
end
end
2022-11-29 18:55:45 +01:00
def self.it_handles_invalid_token_with_id(class_sym)
context 'with invalid access token' do
let(:Authorization) { 'abc' }
let(:id) { create(class_sym).id }
response 401, 'not logged-in' do
schema '$ref' => '#/components/schemas/Error401'
run_test!
end
end
end
2022-12-12 12:59:06 +01:00
def self.it_handles_invalid_scope(description = 'missing scope')
context 'with invalid scope' do
let(:api_scopes) { ['none'] }
2022-02-20 16:15:22 +01:00
response 403, description do
2022-11-21 12:49:53 +01:00
schema '$ref' => '#/components/schemas/Error403'
2022-11-07 17:42:32 +01:00
run_test!
end
end
end
2022-12-12 12:59:06 +01:00
def self.it_handles_invalid_scope_with_id(class_sym, description = 'missing scope')
2022-11-29 18:55:45 +01:00
context 'with invalid scope' do
let(:api_scopes) { ['none'] }
let(:id) { create(class_sym).id }
2022-12-12 11:30:09 +01:00
response 403, description do
2022-11-29 18:55:45 +01:00
schema '$ref' => '#/components/schemas/Error403'
run_test!
end
end
end
2022-12-12 12:59:06 +01:00
def self.it_cannot_find_object(description = 'not found')
2022-12-12 11:30:09 +01:00
let(:id) { 'invalid' }
response 404, description do
schema '$ref' => '#/components/schemas/Error404'
run_test!
end
end
def self.it_handles_invalid_token_and_scope(*args)
it_handles_invalid_token(*args)
it_handles_invalid_scope(*args)
end
2018-10-15 16:47:14 +02:00
end
end