skill-assessment-app/test/controllers/admin/auth_controller_test.rb

# frozen_string_literal: true
require 'test_helper'

module Admin
  class AuthControllerTest < ActionDispatch::IntegrationTest
    include ActiveJob::TestHelper

    test "should get login" do
      get admin_login_url
      assert_response :success
      assert_template 'admin/auth/login'
    end

    test "should get logout" do
      post admin_auth_url, params: { auth:
          { email: 'alan.admin@mailinator.com', password: 'password' } }

      get admin_logout_url
      assert_redirected_to admin_login_url
      assert session[:user].nil?
    end

    test "should auth to dashboard" do
      post admin_auth_url, params: { auth:
          { email: 'alan.admin@mailinator.com', password: 'password' } }
      assert_redirected_to admin_url
    end

    test "recruiter should not admin auth" do
      post admin_auth_url, params: { auth:
          { email: 'pdr.recruiter@mailinator.com', password: 'password' } }
      assert_redirected_to admin_login_url
      assert_match(/incorrect.*email/, flash[:error])
    end

    test "reviewer should not admin auth" do
      post admin_auth_url, params: { auth:
          { email: 'fed.reviewer@mailinator.com', password: 'password' } }
      assert_redirected_to admin_login_url
      assert_match(/incorrect.*email/, flash[:error])
    end

    test "should get reset_request" do
      get admin_reset_request_url
      assert_response :success
    end

    test "should process a reset request" do
      user = users(:admin)
      assert_enqueued_jobs 1 do
        post admin_send_reset_url, params: { auth: { email: user.email } }
      end
      refute_equal user.reset_token, User.find(user.id).reset_token
      assert_redirected_to admin_reset_request_url
      assert_match(/request.*sent/i, flash[:success])
    end

    test "should redirect with invalid reset_token" do
      get admin_reset_url('fooBarBaz')
      assert_redirected_to admin_reset_request_url
    end

    test "should get reset form" do
      user = users(:admin)
      user.setup_reset
      get admin_reset_url(user.reset_token)
      assert :success
    end

    test "should post password reset" do
      user = users(:admin)
      user.setup_reset

      post admin_reset_password_url, params: { auth:
        { reset_token: user.reset_token, password: '12345', password_confirmation: '12345' } }

      assert_redirected_to admin_auth_path
      assert_match(/reset.*log/i, flash[:success])
    end

    test "should fail to reset with mistyped password" do
      user = users(:admin)
      user.setup_reset

      post admin_reset_password_url, params: { auth:
        { reset_token: user.reset_token, password: '12345', password_confirmation: 'abcde' } }

      assert :success
      assert flash[:error]
    end
  end
end
rubocop noise: fixes FrozenStringLiteralComment Adding the .ruby-verison file triggered previously un-run cops, specifically: This cop is designed to help upgrade to Ruby 3.0. It will add the comment `# frozen_string_literal: true` to the top of files to enable frozen string literals. Frozen string literals will be default in Ruby 3.0. The comment will be added below a shebang and encoding comment. The frozen string literal comment is only valid in Ruby 2.3+. More info on rubocop [Automatic-Corrections](https://github.com/bbatsov/rubocop/wiki/Automatic-Corrections) 2016-09-08 10:25:33 -05:00			`# frozen_string_literal: true`
admin interface generation 2016-08-17 17:49:09 -05:00			`require 'test_helper'`

			`module Admin`
			`class AuthControllerTest < ActionDispatch::IntegrationTest`
deliver_later for controller actions. 2016-09-14 14:38:26 -05:00			`include ActiveJob::TestHelper`

admin interface generation 2016-08-17 17:49:09 -05:00			`test "should get login" do`
admin controller tests, sans question 2016-08-18 15:35:17 -05:00			`get admin_login_url`
admin interface generation 2016-08-17 17:49:09 -05:00			`assert_response :success`
			`assert_template 'admin/auth/login'`
			`end`

			`test "should get logout" do`
admin controller tests, sans question 2016-08-18 15:35:17 -05:00			`post admin_auth_url, params: { auth:`
			`{ email: 'alan.admin@mailinator.com', password: 'password' } }`

admin interface generation 2016-08-17 17:49:09 -05:00			`get admin_logout_url`
admin controller tests, sans question 2016-08-18 15:35:17 -05:00			`assert_redirected_to admin_login_url`
			`assert session[:user].nil?`
			`end`

			`test "should auth to dashboard" do`
			`post admin_auth_url, params: { auth:`
			`{ email: 'alan.admin@mailinator.com', password: 'password' } }`
			`assert_redirected_to admin_url`
			`end`

			`test "recruiter should not admin auth" do`
			`post admin_auth_url, params: { auth:`
			`{ email: 'pdr.recruiter@mailinator.com', password: 'password' } }`
			`assert_redirected_to admin_login_url`
			`assert_match(/incorrect.*email/, flash[:error])`
			`end`

			`test "reviewer should not admin auth" do`
			`post admin_auth_url, params: { auth:`
			`{ email: 'fed.reviewer@mailinator.com', password: 'password' } }`
			`assert_redirected_to admin_login_url`
			`assert_match(/incorrect.*email/, flash[:error])`
admin interface generation 2016-08-17 17:49:09 -05:00			`end`
password reset requests 2016-08-24 15:02:32 -05:00
			`test "should get reset_request" do`
			`get admin_reset_request_url`
			`assert_response :success`
			`end`

			`test "should process a reset request" do`
			`user = users(:admin)`
deliver_later for controller actions. 2016-09-14 14:38:26 -05:00			`assert_enqueued_jobs 1 do`
user mailers completes #25 2016-08-24 16:26:07 -05:00			`post admin_send_reset_url, params: { auth: { email: user.email } }`
			`end`
password reset requests 2016-08-24 15:02:32 -05:00			`refute_equal user.reset_token, User.find(user.id).reset_token`
			`assert_redirected_to admin_reset_request_url`
			`assert_match(/request.*sent/i, flash[:success])`
			`end`

			`test "should redirect with invalid reset_token" do`
			`get admin_reset_url('fooBarBaz')`
			`assert_redirected_to admin_reset_request_url`
			`end`

			`test "should get reset form" do`
			`user = users(:admin)`
			`user.setup_reset`
			`get admin_reset_url(user.reset_token)`
			`assert :success`
			`end`

			`test "should post password reset" do`
			`user = users(:admin)`
			`user.setup_reset`

			`post admin_reset_password_url, params: { auth:`
			`{ reset_token: user.reset_token, password: '12345', password_confirmation: '12345' } }`

			`assert_redirected_to admin_auth_path`
			`assert_match(/reset.*log/i, flash[:success])`
			`end`
test cleanup 2016-08-24 16:47:15 -05:00
			`test "should fail to reset with mistyped password" do`
			`user = users(:admin)`
			`user.setup_reset`

			`post admin_reset_password_url, params: { auth:`
			`{ reset_token: user.reset_token, password: '12345', password_confirmation: 'abcde' } }`

			`assert :success`
			`assert flash[:error]`
			`end`
admin interface generation 2016-08-17 17:49:09 -05:00			`end`
			`end`