demarches-normaliennes/spec/controllers/new_user/dossiers_controller_spec.rb

require 'spec_helper'

describe NewUser::DossiersController, type: :controller do
  let(:user) { create(:user) }

  describe 'before_actions' do
    it 'are present' do
      before_actions = NewUser::DossiersController
        ._process_action_callbacks
        .find_all{ |process_action_callbacks| process_action_callbacks.kind == :before }
        .map(&:filter)

      expect(before_actions).to include(:ensure_ownership!, :ensure_ownership_or_invitation!, :forbid_invite_submission!)
    end
  end

  shared_examples_for 'does not redirect nor flash' do
    before { @controller.send(ensure_authorized) }

    it { expect(@controller).not_to have_received(:redirect_to) }
    it { expect(flash.alert).to eq(nil) }
  end

  shared_examples_for 'redirects and flashes' do
    before { @controller.send(ensure_authorized) }

    it { expect(@controller).to have_received(:redirect_to).with(root_path) }
    it { expect(flash.alert).to eq("Vous n'avez pas accès à ce dossier") }
  end

  describe '#ensure_ownership!' do
    let(:user) { create(:user) }
    let(:asked_dossier) { create(:dossier) }
    let(:ensure_authorized) { :ensure_ownership! }

    before do
      @controller.params = @controller.params.merge(dossier_id: asked_dossier.id)
      expect(@controller).to receive(:current_user).and_return(user)
      allow(@controller).to receive(:redirect_to)
    end

    context 'when a user asks for their own dossier' do
      let(:asked_dossier) { create(:dossier, user: user) }

      it_behaves_like 'does not redirect nor flash'
    end

    context 'when a user asks for another dossier' do
      it_behaves_like 'redirects and flashes'
    end

    context 'when an invite asks for a dossier where they were invited' do
      before { create(:invite, dossier: asked_dossier, user: user, type: 'InviteUser') }

      it_behaves_like 'redirects and flashes'
    end

    context 'when an invite asks for another dossier' do
      before { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }

      it_behaves_like 'redirects and flashes'
    end
  end

  describe '#ensure_ownership_or_invitation!' do
    let(:user) { create(:user) }
    let(:asked_dossier) { create(:dossier) }
    let(:ensure_authorized) { :ensure_ownership_or_invitation! }

    before do
      @controller.params = @controller.params.merge(dossier_id: asked_dossier.id)
      expect(@controller).to receive(:current_user).and_return(user)
      allow(@controller).to receive(:redirect_to)
    end

    context 'when a user asks for their own dossier' do
      let(:asked_dossier) { create(:dossier, user: user) }

      it_behaves_like 'does not redirect nor flash'
    end

    context 'when a user asks for another dossier' do
      it_behaves_like 'redirects and flashes'
    end

    context 'when an invite asks for a dossier where they were invited' do
      before { create(:invite, dossier: asked_dossier, user: user, type: 'InviteUser') }

      it_behaves_like 'does not redirect nor flash'
    end

    context 'when an invite asks for another dossier' do
      before { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }

      it_behaves_like 'redirects and flashes'
    end
  end

  describe 'attestation' do
    before { sign_in(user) }

    context 'when a dossier has an attestation' do
      let(:fake_pdf) { double(read: 'pdf content') }
      let!(:dossier) { create(:dossier, attestation: Attestation.new, user: user) }

      it 'returns the attestation pdf' do
        allow_any_instance_of(Attestation).to receive(:pdf).and_return(fake_pdf)

        expect(controller).to receive(:send_data)
          .with('pdf content', filename: 'attestation.pdf', type: 'application/pdf') do
            controller.head :ok
          end

        get :attestation, params: { dossier_id: dossier.id }
        expect(response).to have_http_status(:success)
      end
    end
  end

  describe 'update_identite' do
    let(:procedure) { create(:procedure, :for_individual) }
    let(:dossier) { create(:dossier, user: user, procedure: procedure) }

    subject { post :update_identite, params: { id: dossier.id, individual: individual_params, dossier: dossier_params } }

    before do
      sign_in(user)
      subject
    end

    context 'with correct individual and dossier params' do
      let(:individual_params) { { gender: 'M', nom: 'Mouse', prenom: 'Mickey' } }
      let(:dossier_params) { { autorisation_donnees: true } }

      it do
        expect(response).to redirect_to(modifier_dossier_path(dossier))
      end

      context 'on a procedure with carto' do
        let(:procedure) { create(:procedure, :for_individual, :with_api_carto) }

        it do
          expect(response).to redirect_to(users_dossier_carte_path(dossier))
        end
      end
    end

    context 'when the identite cannot be updated by the user' do
      let(:dossier) { create(:dossier, :for_individual, :en_instruction, user: user, procedure: procedure) }
      let(:individual_params) { { gender: 'M', nom: 'Mouse', prenom: 'Mickey' } }
      let(:dossier_params) { { autorisation_donnees: true } }

      it 'redirects to user_dossiers_path' do
        expect(response).to redirect_to(users_dossiers_path)
        expect(flash.alert).to eq('Votre dossier ne peut plus être modifié')
      end
    end

    context 'with incorrect individual and dossier params' do
      let(:individual_params) { { gender: '', nom: '', prenom: '' } }
      let(:dossier_params) { { autorisation_donnees: nil } }

      it do
        expect(response).not_to have_http_status(:redirect)
        expect(flash[:alert]).to include("Civilité doit être rempli", "Nom doit être rempli", "Prénom doit être rempli", "Acceptation des CGU doit être coché")
      end
    end
  end

  describe '#modifier' do
    before { sign_in(user) }
    let!(:dossier) { create(:dossier, user: user, autorisation_donnees: true) }

    subject { get :modifier, params: { id: dossier.id } }

    context 'when autorisation_donnees is checked' do
      it { is_expected.to render_template(:modifier) }
    end

    context 'when autorisation_donnees is not checked' do
      before { dossier.update_columns(autorisation_donnees: false) }

      context 'when the dossier is for personne morale' do
        it { is_expected.to redirect_to(users_dossier_path(dossier)) }
      end

      context 'when the dossier is for an personne physique' do
        before { dossier.procedure.update(for_individual: true) }

        it { is_expected.to redirect_to(identite_dossier_path(dossier)) }
      end
    end
  end

  describe '#edit' do
    before { sign_in(user) }
    let!(:dossier) { create(:dossier, user: user) }

    it 'returns the edit page' do
      get :modifier, params: { id: dossier.id }
      expect(response).to have_http_status(:success)
    end
  end

  describe '#update' do
    before { sign_in(user) }
    let!(:dossier) { create(:dossier, user: user) }
    let(:first_champ) { dossier.champs.first }
    let(:value) { 'beautiful value' }
    let(:submit_payload) do
      {
        id: dossier.id,
        dossier: {
          champs_attributes: {
            id: first_champ.id,
            value: value
          }
        }
      }
    end
    let(:payload) { submit_payload }

    subject { patch :update, params: payload }

    context 'when the dossier cannot be updated by the user' do
      let!(:dossier) { create(:dossier, :en_instruction, user: user) }

      it 'redirects to user_dossiers_path' do
        subject

        expect(response).to redirect_to(users_dossiers_path)
        expect(flash.alert).to eq('Votre dossier ne peut plus être modifié')
      end
    end

    it 'updates the champs' do
      subject

      expect(response).to redirect_to(merci_dossier_path(dossier))
      expect(first_champ.reload.value).to eq('beautiful value')
      expect(dossier.reload.state).to eq('en_construction')
    end

    it 'sends an email only on the first #update' do
      delivery = double
      expect(delivery).to receive(:deliver_later).with(no_args)

      expect(NotificationMailer).to receive(:send_initiated_notification)
        .and_return(delivery)

      subject

      expect(NotificationMailer).not_to receive(:send_initiated_notification)

      subject
    end

    context 'when the update fails' do
      before do
        expect_any_instance_of(Dossier).to receive(:save).and_return(false)
        expect_any_instance_of(Dossier).to receive(:errors)
          .and_return(double(full_messages: ['nop']))

        subject
      end

      it { expect(response).to render_template(:modifier) }
      it { expect(flash.alert).to eq(['nop']) }

      it 'does not send an email' do
        expect(NotificationMailer).not_to receive(:send_initiated_notification)

        subject
      end
    end

    context 'when the pj service returns an error' do
      before do
        expect(PiecesJustificativesService).to receive(:upload!).and_return(['nop'])

        subject
      end

      it { expect(response).to render_template(:modifier) }
      it { expect(flash.alert).to eq(['nop']) }
    end

    context 'when a mandatory champ is missing' do
      let(:value) { nil }

      before do
        first_champ.type_de_champ.update(mandatory: true, libelle: 'l')
        allow(PiecesJustificativesService).to receive(:missing_pj_error_messages).and_return(['pj'])

        subject
      end

      it { expect(response).to render_template(:modifier) }
      it { expect(flash.alert).to eq(['Le champ l doit être rempli.', 'pj']) }

      context 'and the user saves a draft' do
        let(:payload) { submit_payload.merge(submit_action: 'draft') }

        it { expect(response).to render_template(:modifier) }
        it { expect(flash.notice).to eq('Votre brouillon a bien été sauvegardé.') }
        it { expect(dossier.reload.state).to eq('brouillon') }
      end
    end

    context 'when dossier has no champ' do
      let(:submit_payload) { { id: dossier.id } }

      it 'does not raise any errors' do
        subject

        expect(response).to redirect_to(merci_dossier_path(dossier))
      end
    end

    context 'when the user has an invitation but is not the owner' do
      let(:dossier) { create(:dossier) }
      let!(:invite) { create(:invite, dossier: dossier, user: user, type: 'InviteUser') }

      context 'and the invite saves a draft' do
        let(:payload) { submit_payload.merge(submit_action: 'draft') }

        before do
          first_champ.type_de_champ.update(mandatory: true, libelle: 'l')
          allow(PiecesJustificativesService).to receive(:missing_pj_error_messages).and_return(['pj'])

          subject
        end

        it { expect(response).to render_template(:modifier) }
        it { expect(flash.notice).to eq('Votre brouillon a bien été sauvegardé.') }
        it { expect(dossier.reload.state).to eq('brouillon') }
      end

      context 'and the invite tries to submit the dossier' do
        before { subject }

        it { expect(response).to redirect_to(root_path) }
        it { expect(flash.alert).to eq("Vous n'avez pas accès à ce dossier") }
      end

      context 'and the invite updates a dossier en constructions' do
        before do
          dossier.en_construction!
          subject
        end

        it { expect(first_champ.reload.value).to eq('beautiful value') }
        it { expect(dossier.reload.state).to eq('en_construction') }
        it { expect(response).to redirect_to(users_dossiers_invite_path(invite)) }
      end
    end
  end

  describe '#index' do
    before { sign_in(user) }

    context 'when the user does not have any dossiers' do
      before { get(:index) }

      it { expect(assigns(:current_tab)).to eq('mes-dossiers') }
    end

    context 'when the user only have its own dossiers' do
      let!(:own_dossier) { create(:dossier, user: user) }

      before { get(:index) }

      it { expect(assigns(:current_tab)).to eq('mes-dossiers') }
      it { expect(assigns(:dossiers)).to match([own_dossier]) }
    end

    context 'when the user only have some dossiers invites' do
      let!(:invite) { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }

      before { get(:index) }

      it { expect(assigns(:current_tab)).to eq('dossiers-invites') }
      it { expect(assigns(:dossiers)).to match([invite.dossier]) }
    end

    context 'when the user has both' do
      let!(:own_dossier) { create(:dossier, user: user) }
      let!(:invite) { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }

      context 'and there is no current_tab param' do
        before { get(:index) }

        it { expect(assigns(:current_tab)).to eq('mes-dossiers') }
      end

      context 'and there is "dossiers-invites" param' do
        before { get(:index, params: { current_tab: 'dossiers-invites' }) }

        it { expect(assigns(:current_tab)).to eq('dossiers-invites') }
      end

      context 'and there is "mes-dossiers" param' do
        before { get(:index, params: { current_tab: 'mes-dossiers' }) }

        it { expect(assigns(:current_tab)).to eq('mes-dossiers') }
      end
    end
  end

  describe '#ask_deletion' do
    before { sign_in(user) }

    subject { post :ask_deletion, params: { id: dossier.id } }

    shared_examples_for "the dossier can not be deleted" do
      it do
        expect(DossierMailer).not_to receive(:notify_deletion_to_administration)
        expect(DossierMailer).not_to receive(:notify_deletion_to_user)
        subject
      end

      it do
        subject
        expect(Dossier.find_by(id: dossier.id)).not_to eq(nil)
        expect(dossier.procedure.deleted_dossiers.count).to eq(0)
      end
    end

    context 'when dossier is owned by signed in user' do
      let(:dossier) { create(:dossier, user: user, autorisation_donnees: true) }

      it do
        expect(DossierMailer).to receive(:notify_deletion_to_administration).with(kind_of(DeletedDossier), dossier.procedure.administrateur.email).and_return(double(deliver_later: nil))
        expect(DossierMailer).to receive(:notify_deletion_to_user).with(kind_of(DeletedDossier), dossier.user.email).and_return(double(deliver_later: nil))
        subject
      end

      it do
        procedure = dossier.procedure
        dossier_id = dossier.id
        subject
        expect(Dossier.find_by(id: dossier_id)).to eq(nil)
        expect(procedure.deleted_dossiers.count).to eq(1)
        expect(procedure.deleted_dossiers.first.dossier_id).to eq(dossier_id)
      end

      it { is_expected.to redirect_to(users_dossiers_path) }

      context "and the instruction has started" do
        let(:dossier) { create(:dossier, :en_instruction, user: user, autorisation_donnees: true) }

        it_behaves_like "the dossier can not be deleted"
        it { is_expected.to redirect_to(users_dossier_path(dossier)) }
      end
    end

    context 'when dossier is not owned by signed in user' do
      let(:user2) { create(:user) }
      let(:dossier) { create(:dossier, user: user2, autorisation_donnees: true) }

      it_behaves_like "the dossier can not be deleted"
      it { is_expected.to redirect_to(root_path) }
    end
  end
end
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`require 'spec_helper'`

			`describe NewUser::DossiersController, type: :controller do`
			`let(:user) { create(:user) }`

[#1677] Prevent invites from submitting a dossier 2018-03-29 16:49:01 +02:00			`describe 'before_actions' do`
			`it 'are present' do`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`before_actions = NewUser::DossiersController`
			`._process_action_callbacks`
Enable the Layout/SpaceInsideBlockBraces cop 2018-01-15 21:54:40 +01:00			`.find_all{ \|process_action_callbacks\| process_action_callbacks.kind == :before }`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`.map(&:filter)`

[#1677] Prevent invites from submitting a dossier 2018-03-29 16:49:01 +02:00			`expect(before_actions).to include(:ensure_ownership!, :ensure_ownership_or_invitation!, :forbid_invite_submission!)`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`end`
			`end`

[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`shared_examples_for 'does not redirect nor flash' do`
			`before { @controller.send(ensure_authorized) }`

			`it { expect(@controller).not_to have_received(:redirect_to) }`
			`it { expect(flash.alert).to eq(nil) }`
			`end`

			`shared_examples_for 'redirects and flashes' do`
			`before { @controller.send(ensure_authorized) }`

			`it { expect(@controller).to have_received(:redirect_to).with(root_path) }`
			`it { expect(flash.alert).to eq("Vous n'avez pas accès à ce dossier") }`
			`end`

			`describe '#ensure_ownership!' do`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`let(:user) { create(:user) }`
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`let(:asked_dossier) { create(:dossier) }`
			`let(:ensure_authorized) { :ensure_ownership! }`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00
			`before do`
params is now an object and no longer a hash 2018-01-23 18:28:09 +01:00			`@controller.params = @controller.params.merge(dossier_id: asked_dossier.id)`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`expect(@controller).to receive(:current_user).and_return(user)`
			`allow(@controller).to receive(:redirect_to)`
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`end`

			`context 'when a user asks for their own dossier' do`
			`let(:asked_dossier) { create(:dossier, user: user) }`

			`it_behaves_like 'does not redirect nor flash'`
			`end`

			`context 'when a user asks for another dossier' do`
			`it_behaves_like 'redirects and flashes'`
			`end`

			`context 'when an invite asks for a dossier where they were invited' do`
			`before { create(:invite, dossier: asked_dossier, user: user, type: 'InviteUser') }`

			`it_behaves_like 'redirects and flashes'`
			`end`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`context 'when an invite asks for another dossier' do`
			`before { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }`

			`it_behaves_like 'redirects and flashes'`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`end`
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`end`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`describe '#ensure_ownership_or_invitation!' do`
			`let(:user) { create(:user) }`
			`let(:asked_dossier) { create(:dossier) }`
			`let(:ensure_authorized) { :ensure_ownership_or_invitation! }`

			`before do`
			`@controller.params = @controller.params.merge(dossier_id: asked_dossier.id)`
			`expect(@controller).to receive(:current_user).and_return(user)`
			`allow(@controller).to receive(:redirect_to)`
			`end`

			`context 'when a user asks for their own dossier' do`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`let(:asked_dossier) { create(:dossier, user: user) }`

[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`it_behaves_like 'does not redirect nor flash'`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`end`

			`context 'when a user asks for another dossier' do`
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`it_behaves_like 'redirects and flashes'`
			`end`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00
[#1677] Allow invites to edit dossiers 2018-03-29 15:25:05 +02:00			`context 'when an invite asks for a dossier where they were invited' do`
			`before { create(:invite, dossier: asked_dossier, user: user, type: 'InviteUser') }`

			`it_behaves_like 'does not redirect nor flash'`
			`end`

			`context 'when an invite asks for another dossier' do`
			`before { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }`

			`it_behaves_like 'redirects and flashes'`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`end`
			`end`
New Routes: add new_user/dossier_controller attestation 2017-06-29 14:18:59 +02:00
			`describe 'attestation' do`
			`before { sign_in(user) }`

			`context 'when a dossier has an attestation' do`
			`let(:fake_pdf) { double(read: 'pdf content') }`
			`let!(:dossier) { create(:dossier, attestation: Attestation.new, user: user) }`

			`it 'returns the attestation pdf' do`
			`allow_any_instance_of(Attestation).to receive(:pdf).and_return(fake_pdf)`

			`expect(controller).to receive(:send_data)`
			`.with('pdf content', filename: 'attestation.pdf', type: 'application/pdf') do`
render nothing: true has been removed from Rails Use head instead 2018-01-24 14:44:28 +01:00			`controller.head :ok`
New Routes: add new_user/dossier_controller attestation 2017-06-29 14:18:59 +02:00			`end`

			`get :attestation, params: { dossier_id: dossier.id }`
			`expect(response).to have_http_status(:success)`
			`end`
			`end`
			`end`
[Fix #1409] Identite can be updated 2018-02-08 17:13:15 +01:00
			`describe 'update_identite' do`
			`let(:procedure) { create(:procedure, :for_individual) }`
			`let(:dossier) { create(:dossier, user: user, procedure: procedure) }`

			`subject { post :update_identite, params: { id: dossier.id, individual: individual_params, dossier: dossier_params } }`

			`before do`
			`sign_in(user)`
			`subject`
			`end`

			`context 'with correct individual and dossier params' do`
			`let(:individual_params) { { gender: 'M', nom: 'Mouse', prenom: 'Mickey' } }`
			`let(:dossier_params) { { autorisation_donnees: true } }`

			`it do`
[fix #1411] user: link new screen to the rest of the application 2018-02-21 18:36:06 +01:00			`expect(response).to redirect_to(modifier_dossier_path(dossier))`
[Fix #1409] Identite can be updated 2018-02-08 17:13:15 +01:00			`end`

			`context 'on a procedure with carto' do`
			`let(:procedure) { create(:procedure, :for_individual, :with_api_carto) }`

			`it do`
			`expect(response).to redirect_to(users_dossier_carte_path(dossier))`
			`end`
			`end`
			`end`

[fix #2072] DossierController: check the user can update the dossier 2018-06-08 15:51:46 +02:00			`context 'when the identite cannot be updated by the user' do`
			`let(:dossier) { create(:dossier, :for_individual, :en_instruction, user: user, procedure: procedure) }`
			`let(:individual_params) { { gender: 'M', nom: 'Mouse', prenom: 'Mickey' } }`
			`let(:dossier_params) { { autorisation_donnees: true } }`

			`it 'redirects to user_dossiers_path' do`
			`expect(response).to redirect_to(users_dossiers_path)`
			`expect(flash.alert).to eq('Votre dossier ne peut plus être modifié')`
			`end`
			`end`

[Fix #1409] Identite can be updated 2018-02-08 17:13:15 +01:00			`context 'with incorrect individual and dossier params' do`
			`let(:individual_params) { { gender: '', nom: '', prenom: '' } }`
			`let(:dossier_params) { { autorisation_donnees: nil } }`

			`it do`
			`expect(response).not_to have_http_status(:redirect)`
			`expect(flash[:alert]).to include("Civilité doit être rempli", "Nom doit être rempli", "Prénom doit être rempli", "Acceptation des CGU doit être coché")`
			`end`
			`end`
			`end`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00
			`describe '#modifier' do`
			`before { sign_in(user) }`
			`let!(:dossier) { create(:dossier, user: user, autorisation_donnees: true) }`

			`subject { get :modifier, params: { id: dossier.id } }`

			`context 'when autorisation_donnees is checked' do`
			`it { is_expected.to render_template(:modifier) }`
			`end`

			`context 'when autorisation_donnees is not checked' do`
			`before { dossier.update_columns(autorisation_donnees: false) }`

			`context 'when the dossier is for personne morale' do`
			`it { is_expected.to redirect_to(users_dossier_path(dossier)) }`
			`end`

			`context 'when the dossier is for an personne physique' do`
Bump development gems - brakeman - rubocop - scss_lint 2018-03-02 16:27:03 +01:00			`before { dossier.procedure.update(for_individual: true) }`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00
			`it { is_expected.to redirect_to(identite_dossier_path(dossier)) }`
			`end`
			`end`
			`end`

			`describe '#edit' do`
			`before { sign_in(user) }`
			`let!(:dossier) { create(:dossier, user: user) }`

			`it 'returns the edit page' do`
			`get :modifier, params: { id: dossier.id }`
			`expect(response).to have_http_status(:success)`
			`end`
			`end`

			`describe '#update' do`
			`before { sign_in(user) }`
			`let!(:dossier) { create(:dossier, user: user) }`
			`let(:first_champ) { dossier.champs.first }`
			`let(:value) { 'beautiful value' }`
			`let(:submit_payload) do`
			`{`
			`id: dossier.id,`
			`dossier: {`
			`champs_attributes: {`
			`id: first_champ.id,`
			`value: value`
			`}`
			`}`
			`}`
			`end`
			`let(:payload) { submit_payload }`

			`subject { patch :update, params: payload }`

[fix #2072] DossierController: check the user can update the dossier 2018-06-08 15:51:46 +02:00			`context 'when the dossier cannot be updated by the user' do`
			`let!(:dossier) { create(:dossier, :en_instruction, user: user) }`

			`it 'redirects to user_dossiers_path' do`
			`subject`

			`expect(response).to redirect_to(users_dossiers_path)`
			`expect(flash.alert).to eq('Votre dossier ne peut plus être modifié')`
			`end`
			`end`

[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`it 'updates the champs' do`
			`subject`

new user: thanks page 2018-02-27 09:49:58 +01:00			`expect(response).to redirect_to(merci_dossier_path(dossier))`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`expect(first_champ.reload.value).to eq('beautiful value')`
			`expect(dossier.reload.state).to eq('en_construction')`
			`end`

[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00			`it 'sends an email only on the first #update' do`
			`delivery = double`
[Fix #1972] Always send mails asynchronously 2018-05-25 18:05:28 +02:00			`expect(delivery).to receive(:deliver_later).with(no_args)`
[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00
[#1972] Avoid passing unsaved templates to ActionMailer So that all mail arguments can be serialized 2018-05-25 23:08:47 +02:00			`expect(NotificationMailer).to receive(:send_initiated_notification)`
[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00			`.and_return(delivery)`

			`subject`

[#1972] Avoid passing unsaved templates to ActionMailer So that all mail arguments can be serialized 2018-05-25 23:08:47 +02:00			`expect(NotificationMailer).not_to receive(:send_initiated_notification)`
[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00
			`subject`
			`end`

[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`context 'when the update fails' do`
			`before do`
Add SIRET Type De Champ 2018-04-03 17:53:14 +02:00			`expect_any_instance_of(Dossier).to receive(:save).and_return(false)`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`expect_any_instance_of(Dossier).to receive(:errors)`
			`.and_return(double(full_messages: ['nop']))`

			`subject`
			`end`

			`it { expect(response).to render_template(:modifier) }`
			`it { expect(flash.alert).to eq(['nop']) }`
[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00
			`it 'does not send an email' do`
[#1999] Remove dead code 2018-05-30 17:07:29 +02:00			`expect(NotificationMailer).not_to receive(:send_initiated_notification)`
[Fix #1510] Send email after dossier is received 2018-03-05 17:59:45 +01:00
			`subject`
			`end`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`end`

			`context 'when the pj service returns an error' do`
			`before do`
			`expect(PiecesJustificativesService).to receive(:upload!).and_return(['nop'])`

			`subject`
			`end`

			`it { expect(response).to render_template(:modifier) }`
			`it { expect(flash.alert).to eq(['nop']) }`
			`end`

			`context 'when a mandatory champ is missing' do`
			`let(:value) { nil }`

			`before do`
Bump development gems - brakeman - rubocop - scss_lint 2018-03-02 16:27:03 +01:00			`first_champ.type_de_champ.update(mandatory: true, libelle: 'l')`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`allow(PiecesJustificativesService).to receive(:missing_pj_error_messages).and_return(['pj'])`

			`subject`
			`end`

			`it { expect(response).to render_template(:modifier) }`
			`it { expect(flash.alert).to eq(['Le champ l doit être rempli.', 'pj']) }`

			`context 'and the user saves a draft' do`
			`let(:payload) { submit_payload.merge(submit_action: 'draft') }`

			`it { expect(response).to render_template(:modifier) }`
			`it { expect(flash.notice).to eq('Votre brouillon a bien été sauvegardé.') }`
			`it { expect(dossier.reload.state).to eq('brouillon') }`
			`end`
			`end`
DossierController: allow upload of empty 2018-02-27 17:25:45 +01:00
			`context 'when dossier has no champ' do`
			`let(:submit_payload) { { id: dossier.id } }`

			`it 'does not raise any errors' do`
			`subject`

new user: thanks page 2018-02-27 09:49:58 +01:00			`expect(response).to redirect_to(merci_dossier_path(dossier))`
DossierController: allow upload of empty 2018-02-27 17:25:45 +01:00			`end`
			`end`
[#1677] After editing, send Invites back to invitation page 2018-03-29 16:45:24 +02:00
			`context 'when the user has an invitation but is not the owner' do`
			`let(:dossier) { create(:dossier) }`
			`let!(:invite) { create(:invite, dossier: dossier, user: user, type: 'InviteUser') }`

			`context 'and the invite saves a draft' do`
			`let(:payload) { submit_payload.merge(submit_action: 'draft') }`

			`before do`
			`first_champ.type_de_champ.update(mandatory: true, libelle: 'l')`
			`allow(PiecesJustificativesService).to receive(:missing_pj_error_messages).and_return(['pj'])`

			`subject`
			`end`

			`it { expect(response).to render_template(:modifier) }`
			`it { expect(flash.notice).to eq('Votre brouillon a bien été sauvegardé.') }`
			`it { expect(dossier.reload.state).to eq('brouillon') }`
			`end`

[#1677] Prevent invites from submitting a dossier 2018-03-29 16:49:01 +02:00			`context 'and the invite tries to submit the dossier' do`
			`before { subject }`

			`it { expect(response).to redirect_to(root_path) }`
			`it { expect(flash.alert).to eq("Vous n'avez pas accès à ce dossier") }`
			`end`

[#1677] After editing, send Invites back to invitation page 2018-03-29 16:45:24 +02:00			`context 'and the invite updates a dossier en constructions' do`
			`before do`
			`dossier.en_construction!`
			`subject`
			`end`

			`it { expect(first_champ.reload.value).to eq('beautiful value') }`
			`it { expect(dossier.reload.state).to eq('en_construction') }`
			`it { expect(response).to redirect_to(users_dossiers_invite_path(invite)) }`
			`end`
			`end`
[fix #1411] user: new form ui 2018-02-21 18:32:07 +01:00			`end`
DossierController: add tab for dossiers invites 2018-04-03 10:49:16 +02:00
			`describe '#index' do`
			`before { sign_in(user) }`

			`context 'when the user does not have any dossiers' do`
			`before { get(:index) }`

			`it { expect(assigns(:current_tab)).to eq('mes-dossiers') }`
			`end`

			`context 'when the user only have its own dossiers' do`
			`let!(:own_dossier) { create(:dossier, user: user) }`

			`before { get(:index) }`

			`it { expect(assigns(:current_tab)).to eq('mes-dossiers') }`
			`it { expect(assigns(:dossiers)).to match([own_dossier]) }`
			`end`

			`context 'when the user only have some dossiers invites' do`
			`let!(:invite) { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }`

			`before { get(:index) }`

			`it { expect(assigns(:current_tab)).to eq('dossiers-invites') }`
			`it { expect(assigns(:dossiers)).to match([invite.dossier]) }`
			`end`

			`context 'when the user has both' do`
			`let!(:own_dossier) { create(:dossier, user: user) }`
			`let!(:invite) { create(:invite, dossier: create(:dossier), user: user, type: 'InviteUser') }`

			`context 'and there is no current_tab param' do`
			`before { get(:index) }`

			`it { expect(assigns(:current_tab)).to eq('mes-dossiers') }`
			`end`

			`context 'and there is "dossiers-invites" param' do`
			`before { get(:index, params: { current_tab: 'dossiers-invites' }) }`

			`it { expect(assigns(:current_tab)).to eq('dossiers-invites') }`
			`end`

			`context 'and there is "mes-dossiers" param' do`
			`before { get(:index, params: { current_tab: 'mes-dossiers' }) }`

			`it { expect(assigns(:current_tab)).to eq('mes-dossiers') }`
			`end`
			`end`
			`end`
[Fix #1931] User can ask support to delete dossier 2018-05-24 15:55:47 +02:00
			`describe '#ask_deletion' do`
			`before { sign_in(user) }`

			`subject { post :ask_deletion, params: { id: dossier.id } }`

Allow dossier deletion if instruction has not started 2018-06-13 13:58:14 +02:00			`shared_examples_for "the dossier can not be deleted" do`
			`it do`
			`expect(DossierMailer).not_to receive(:notify_deletion_to_administration)`
			`expect(DossierMailer).not_to receive(:notify_deletion_to_user)`
			`subject`
			`end`

			`it do`
			`subject`
			`expect(Dossier.find_by(id: dossier.id)).not_to eq(nil)`
			`expect(dossier.procedure.deleted_dossiers.count).to eq(0)`
			`end`
			`end`

[Fix #1931] User can ask support to delete dossier 2018-05-24 15:55:47 +02:00			`context 'when dossier is owned by signed in user' do`
			`let(:dossier) { create(:dossier, user: user, autorisation_donnees: true) }`

			`it do`
Delete button, notify user and admin then delete dossier 2018-05-30 11:36:48 +02:00			`expect(DossierMailer).to receive(:notify_deletion_to_administration).with(kind_of(DeletedDossier), dossier.procedure.administrateur.email).and_return(double(deliver_later: nil))`
			`expect(DossierMailer).to receive(:notify_deletion_to_user).with(kind_of(DeletedDossier), dossier.user.email).and_return(double(deliver_later: nil))`
[Fix #1931] User can ask support to delete dossier 2018-05-24 15:55:47 +02:00			`subject`
			`end`

Delete button, notify user and admin then delete dossier 2018-05-30 11:36:48 +02:00			`it do`
			`procedure = dossier.procedure`
			`dossier_id = dossier.id`
			`subject`
			`expect(Dossier.find_by(id: dossier_id)).to eq(nil)`
			`expect(procedure.deleted_dossiers.count).to eq(1)`
			`expect(procedure.deleted_dossiers.first.dossier_id).to eq(dossier_id)`
			`end`
Allow dossier deletion if instruction has not started 2018-06-13 13:58:14 +02:00
Delete button, notify user and admin then delete dossier 2018-05-30 11:36:48 +02:00			`it { is_expected.to redirect_to(users_dossiers_path) }`
Allow dossier deletion if instruction has not started 2018-06-13 13:58:14 +02:00
			`context "and the instruction has started" do`
			`let(:dossier) { create(:dossier, :en_instruction, user: user, autorisation_donnees: true) }`

			`it_behaves_like "the dossier can not be deleted"`
			`it { is_expected.to redirect_to(users_dossier_path(dossier)) }`
			`end`
[Fix #1931] User can ask support to delete dossier 2018-05-24 15:55:47 +02:00			`end`

			`context 'when dossier is not owned by signed in user' do`
			`let(:user2) { create(:user) }`
			`let(:dossier) { create(:dossier, user: user2, autorisation_donnees: true) }`

Allow dossier deletion if instruction has not started 2018-06-13 13:58:14 +02:00			`it_behaves_like "the dossier can not be deleted"`
[Fix #1931] User can ask support to delete dossier 2018-05-24 15:55:47 +02:00			`it { is_expected.to redirect_to(root_path) }`
			`end`
			`end`
New Routes: add new_user/dossier_controller 2017-06-29 14:18:12 +02:00			`end`