1f6ed4f86a
* Add more granular OAuth scopes * Add human-readable descriptions of the new scopes * Ensure new scopes look good on the app UI * Add tests * Group scopes in screen and color-code dangerous ones * Fix wrong extra scope
44 lines
1.2 KiB
Ruby
44 lines
1.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'rails_helper'
|
|
|
|
describe Api::V1::Timelines::HomeController do
|
|
render_views
|
|
|
|
let(:user) { Fabricate(:user, account: Fabricate(:account, username: 'alice'), current_sign_in_at: 1.day.ago) }
|
|
|
|
before do
|
|
allow(controller).to receive(:doorkeeper_token) { token }
|
|
end
|
|
|
|
context 'with a user context' do
|
|
let(:token) { Fabricate(:accessible_access_token, resource_owner_id: user.id, scopes: 'read:statuses') }
|
|
|
|
describe 'GET #show' do
|
|
before do
|
|
follow = Fabricate(:follow, account: user.account)
|
|
PostStatusService.new.call(follow.target_account, 'New status for user home timeline.')
|
|
end
|
|
|
|
it 'returns http success' do
|
|
get :show
|
|
|
|
expect(response).to have_http_status(200)
|
|
expect(response.headers['Link'].links.size).to eq(2)
|
|
end
|
|
end
|
|
end
|
|
|
|
context 'without a user context' do
|
|
let(:token) { Fabricate(:accessible_access_token, resource_owner_id: nil, scopes: 'read') }
|
|
|
|
describe 'GET #show' do
|
|
it 'returns http unprocessable entity' do
|
|
get :show
|
|
|
|
expect(response).to have_http_status(:unprocessable_entity)
|
|
expect(response.headers['Link']).to be_nil
|
|
end
|
|
end
|
|
end
|
|
end
|