chinwagsocial/spec/policies/webhook_policy_spec.rb

# frozen_string_literal: true

require 'rails_helper'
require 'pundit/rspec'

describe WebhookPolicy do
  let(:policy) { described_class }
  let(:admin)   { Fabricate(:user, role: UserRole.find_by(name: 'Admin')).account }
  let(:john)    { Fabricate(:account) }

  permissions :index?, :create? do
    context 'with an admin' do
      it 'permits' do
        expect(policy).to permit(admin, Webhook)
      end
    end

    context 'with a non-admin' do
      it 'denies' do
        expect(policy).to_not permit(john, Webhook)
      end
    end
  end

  permissions :show?, :update?, :enable?, :disable?, :rotate_secret?, :destroy? do
    let(:webhook) { Fabricate(:webhook, events: ['account.created', 'report.created']) }

    context 'with an admin' do
      it 'permits' do
        expect(policy).to permit(admin, webhook)
      end
    end

    context 'with a non-admin' do
      it 'denies' do
        expect(policy).to_not permit(john, webhook)
      end
    end
  end
end
Policies specs (#23924) 2023-03-05 02:57:22 +11:00			`# frozen_string_literal: true`

			`require 'rails_helper'`
			`require 'pundit/rspec'`

			`describe WebhookPolicy do`
			`let(:policy) { described_class }`
			`let(:admin) { Fabricate(:user, role: UserRole.find_by(name: 'Admin')).account }`
			`let(:john) { Fabricate(:account) }`

Add finer permission requirements for managing webhooks (#25463) 2023-06-22 22:52:25 +10:00			`permissions :index?, :create? do`
Policies specs (#23924) 2023-03-05 02:57:22 +11:00			`context 'with an admin' do`
			`it 'permits' do`
Add finer permission requirements for managing webhooks (#25463) 2023-06-22 22:52:25 +10:00			`expect(policy).to permit(admin, Webhook)`
Policies specs (#23924) 2023-03-05 02:57:22 +11:00			`end`
			`end`

			`context 'with a non-admin' do`
			`it 'denies' do`
Add finer permission requirements for managing webhooks (#25463) 2023-06-22 22:52:25 +10:00			`expect(policy).to_not permit(john, Webhook)`
			`end`
			`end`
			`end`

			`permissions :show?, :update?, :enable?, :disable?, :rotate_secret?, :destroy? do`
			`let(:webhook) { Fabricate(:webhook, events: ['account.created', 'report.created']) }`

			`context 'with an admin' do`
			`it 'permits' do`
			`expect(policy).to permit(admin, webhook)`
			`end`
			`end`

			`context 'with a non-admin' do`
			`it 'denies' do`
			`expect(policy).to_not permit(john, webhook)`
Policies specs (#23924) 2023-03-05 02:57:22 +11:00			`end`
			`end`
			`end`
			`end`