Don't access at user/sign_in/demi and gestionnaire/sign_in/demo on env production

2016-02-19 15:04:29 +01:00 · 2016-02-19 15:04:29 +01:00 · c2983e08b6
commit c2983e08b6
parent 0e1dac7d19
4 changed files with 28 additions and 0 deletions
--- a/app/controllers/gestionnaires/sessions_controller.rb
+++ b/app/controllers/gestionnaires/sessions_controller.rb
@ -1,5 +1,7 @@
 class Gestionnaires::SessionsController < Sessions::SessionsController
  def demo
+    return redirect_to root_path if Rails.env.production?
+
    @gestionnaire = Gestionnaire.new(email: 'gestionnaire@apientreprise.fr', password: 'password')
    render 'new'
  end
--- a/app/controllers/users/sessions_controller.rb
+++ b/app/controllers/users/sessions_controller.rb
@ -2,6 +2,8 @@ class Users::SessionsController < Sessions::SessionsController
 # before_filter :configure_sign_in_params, only: [:create]

  def demo
+    return redirect_to root_path if Rails.env.production?
+
    @user = User.new(email: 'demo@tps.fr', password: 'password')

    render 'new'
--- a/spec/controllers/gestionnaires/sessions_controller_spec.rb
+++ b/spec/controllers/gestionnaires/sessions_controller_spec.rb
@ -5,6 +5,18 @@ describe Gestionnaires::SessionsController, type: :controller do
    @request.env["devise.mapping"] = Devise.mappings[:gestionnaire]
  end

+  describe '.demo' do
+    context 'when server is on env production' do
+      before do
+        allow(Rails).to receive(:env).and_return(ActiveSupport::StringInquirer.new("production"))
+      end
+      subject { get :demo }
+
+      it { expect(subject).to redirect_to root_path }
+
+    end
+  end
+
  describe '.create' do
    it { expect(described_class).to be < Sessions::SessionsController }
  end
--- a/spec/controllers/users/sessions_controller_spec.rb
+++ b/spec/controllers/users/sessions_controller_spec.rb
@ -8,6 +8,18 @@ describe Users::SessionsController, type: :controller do
    @request.env["devise.mapping"] = Devise.mappings[:user]
  end

+  describe '.demo' do
+    context 'when server is on env production' do
+      before do
+        allow(Rails).to receive(:env).and_return(ActiveSupport::StringInquirer.new("production"))
+      end
+      subject { get :demo }
+
+      it { expect(subject).to redirect_to root_path }
+
+    end
+  end
+
  describe '.create' do
    it { expect(described_class).to be < Sessions::SessionsController }