foodsoft/spec/support/api_helper.rb

module ApiHelper
  extend ActiveSupport::Concern

  included do
    let(:user) { create(:user) }
    let(:api_scopes) { [] } # empty scopes for stricter testing (in reality this would be default_scopes)
    let(:api_access_token) { create(:oauth2_access_token, resource_owner_id: user.id, scopes: api_scopes&.join(' ')).token }
    let(:Authorization) { "Bearer #{api_access_token}" }

    # TODO: not needed anymore?
    def self.it_handles_invalid_token()
      context 'with invalid access token' do
        let(:Authorization) { 'abc' }

        response 401, 'not logged-in' do
          run_test!
        end
      end
    end

    def self.it_handles_invalid_scope()
      context 'with invalid scope' do
        let(:api_scopes) { ['none'] }

        response 403, 'missing scope' do
          run_test!
        end
      end
    end

    def self.it_handles_invalid_token_and_scope(*args)
      it_handles_invalid_token(*args)
      it_handles_invalid_scope(*args)
    end
  end

  # Add authentication to parameters for {Swagger::RspecHelpers#validate}
  # @param params [Hash] Query parameters
  # @return Query parameters with authentication header
  # @see Swagger::RspecHelpers#validate
  # def api_auth(params = {})
  #   { '_headers' => { 'Authorization' => api_authorization } }.deep_merge(params)
  # end
  # TODO: not needed anymore
end
API documentation and spec setup 2018-10-15 16:47:14 +02:00			`module ApiHelper`
			`extend ActiveSupport::Concern`

			`included do`
			`let(:user) { create(:user) }`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00			`let(:api_scopes) { [] } # empty scopes for stricter testing (in reality this would be default_scopes)`
			`let(:api_access_token) { create(:oauth2_access_token, resource_owner_id: user.id, scopes: api_scopes&.join(' ')).token }`
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`let(:Authorization) { "Bearer #{api_access_token}" }`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`# TODO: not needed anymore?`
			`def self.it_handles_invalid_token()`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00			`context 'with invalid access token' do`
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`let(:Authorization) { 'abc' }`
Auto correct rubocop style issues 2022-02-20 16:15:22 +01:00
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`response 401, 'not logged-in' do`
			`run_test!`
			`end`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00			`end`
			`end`

refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`def self.it_handles_invalid_scope()`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00			`context 'with invalid scope' do`
			`let(:api_scopes) { ['none'] }`
Auto correct rubocop style issues 2022-02-20 16:15:22 +01:00
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`response 403, 'missing scope' do`
			`run_test!`
			`end`
Add OAuth scopes https://github.com/foodcoops/foodsoft/issues/582#issuecomment-442513237 2019-02-05 20:53:02 +01:00			`end`
			`end`

			`def self.it_handles_invalid_token_and_scope(*args)`
			`it_handles_invalid_token(*args)`
			`it_handles_invalid_scope(*args)`
			`end`
API documentation and spec setup 2018-10-15 16:47:14 +02:00			`end`

			`# Add authentication to parameters for {Swagger::RspecHelpers#validate}`
			`# @param params [Hash] Query parameters`
			`# @return Query parameters with authentication header`
			`# @see Swagger::RspecHelpers#validate`
refactor invalid token, scope 2022-11-07 17:42:32 +01:00			`# def api_auth(params = {})`
			`# { '_headers' => { 'Authorization' => api_authorization } }.deep_merge(params)`
			`# end`
			`# TODO: not needed anymore`
API documentation and spec setup 2018-10-15 16:47:14 +02:00			`end`