demarches-normaliennes/spec/controllers/administrateurs/procedure_administrateurs_controller_spec.rb

describe Administrateurs::ProcedureAdministrateursController, type: :controller do
  let(:signed_in_admin) { create(:administrateur) }
  let(:other_admin) { create(:administrateur) }
  let!(:administrateurs_procedure) { create(:administrateurs_procedure, administrateur: signed_in_admin, procedure: procedure, manager: manager) }
  let!(:procedure) { create(:procedure, administrateurs: [other_admin]) }
  render_views

  before do
    sign_in(signed_in_admin.user)
  end

  describe '#create' do
    context 'as manager' do
      let(:manager) { true }
      subject { post :create, params: { procedure_id: procedure.id, administrateur: { email: create(:administrateur).email } }, format: :turbo_stream }
      it { is_expected.to have_http_status(:forbidden) }
    end
  end

  describe '#destroy' do
    let(:manager) { false }
    subject do
      delete :destroy, params: { procedure_id: procedure.id, id: admin_to_remove.id }, format: :turbo_stream
    end

    context 'when removing another admin' do
      let(:admin_to_remove) { other_admin }

      it 'removes the admin from the procedure' do
        subject
        expect(response).to have_http_status(:ok)
        expect(subject.body).to include('alert-success')
        expect(admin_to_remove.procedures.reload).not_to include(procedure)
      end
    end

    context 'when removing oneself from a procedure' do
      let(:admin_to_remove) { signed_in_admin }

      it 'denies the right for an admin to remove itself' do
        subject
        expect(response).to have_http_status(:ok)
        expect(subject.body).to include('alert-danger')
        expect(admin_to_remove.procedures.reload).to include(procedure)
      end
    end
  end
end
Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00			`describe Administrateurs::ProcedureAdministrateursController, type: :controller do`
			`let(:signed_in_admin) { create(:administrateur) }`
			`let(:other_admin) { create(:administrateur) }`
feat(Administrateurs::ProcedureAdministrateurs): ensure admin from super admin can not add administrateur 2022-07-21 16:52:31 +02:00			`let!(:administrateurs_procedure) { create(:administrateurs_procedure, administrateur: signed_in_admin, procedure: procedure, manager: manager) }`
			`let!(:procedure) { create(:procedure, administrateurs: [other_admin]) }`
refactor(turbo): use turbo in procedure administrateurs controller 2022-04-19 12:28:29 +02:00			`render_views`
Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00
			`before do`
			`sign_in(signed_in_admin.user)`
			`end`

feat(Administrateurs::ProcedureAdministrateurs): ensure admin from super admin can not add administrateur 2022-07-21 16:52:31 +02:00			`describe '#create' do`
			`context 'as manager' do`
			`let(:manager) { true }`
			`subject { post :create, params: { procedure_id: procedure.id, administrateur: { email: create(:administrateur).email } }, format: :turbo_stream }`
			`it { is_expected.to have_http_status(:forbidden) }`
			`end`
			`end`

Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00			`describe '#destroy' do`
feat(Administrateurs::ProcedureAdministrateurs): ensure admin from super admin can not add administrateur 2022-07-21 16:52:31 +02:00			`let(:manager) { false }`
Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00			`subject do`
refactor(turbo): use turbo in procedure administrateurs controller 2022-04-19 12:28:29 +02:00			`delete :destroy, params: { procedure_id: procedure.id, id: admin_to_remove.id }, format: :turbo_stream`
Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00			`end`

			`context 'when removing another admin' do`
			`let(:admin_to_remove) { other_admin }`

			`it 'removes the admin from the procedure' do`
			`subject`
refactor(turbo): use turbo in procedure administrateurs controller 2022-04-19 12:28:29 +02:00			`expect(response).to have_http_status(:ok)`
			`expect(subject.body).to include('alert-success')`
Fix ProcedureAdministrateursController#destroy - The "no remove oneself" rule wasn't actually enforced - `flash.error` is not a flash category 2022-01-05 16:21:59 +01:00			`expect(admin_to_remove.procedures.reload).not_to include(procedure)`
			`end`
			`end`

			`context 'when removing oneself from a procedure' do`
			`let(:admin_to_remove) { signed_in_admin }`

			`it 'denies the right for an admin to remove itself' do`
			`subject`
refactor(turbo): use turbo in procedure administrateurs controller 2022-04-19 12:28:29 +02:00			`expect(response).to have_http_status(:ok)`
			`expect(subject.body).to include('alert-danger')`
Fix ProcedureAdministrateursController#destroy - The "no remove oneself" rule wasn't actually enforced - `flash.error` is not a flash category 2022-01-05 16:21:59 +01:00			`expect(admin_to_remove.procedures.reload).to include(procedure)`
Add specs for Administrateurs::ProcedureAdministrateursController 2022-01-05 16:19:26 +01:00			`end`
			`end`
			`end`
			`end`