|
require 'spec_helper'
describe UserCredentialsController do
def valid_attributes(options = {})
{
:credential_name => "some_name",
:credential_value => "some_value"
}.merge(options)
end
before do
sign_in users(:bob)
end
describe "GET index" do
it "only returns UserCredentials for the current user" do
get :index
assigns(:user_credentials).all? {|i| i.user.should == users(:bob) }.should be_truthy
end
end
describe "GET edit" do
it "only shows UserCredentials for the current user" do
get :edit, :id => user_credentials(:bob_aws_secret).to_param
assigns(:user_credential).should eq(user_credentials(:bob_aws_secret))
lambda {
get :edit, :id => user_credentials(:jane_aws_secret).to_param
}.should raise_error(ActiveRecord::RecordNotFound)
end
end
describe "POST create" do
it "creates UserCredentials for the current user" do
expect {
post :create, :user_credential => valid_attributes
}.to change { users(:bob).user_credentials.count }.by(1)
end
it "shows errors" do
expect {
post :create, :user_credential => valid_attributes(:credential_name => "")
}.not_to change { users(:bob).user_credentials.count }
assigns(:user_credential).should have(1).errors_on(:credential_name)
response.should render_template("new")
end
it "will not create UserCredentials for other users" do
expect {
post :create, :user_credential => valid_attributes(:user_id => users(:jane).id)
}.to raise_error(ActiveModel::MassAssignmentSecurity::Error)
end
end
describe "PUT update" do
it "updates attributes on UserCredentials for the current user" do
post :update, :id => user_credentials(:bob_aws_key).to_param, :user_credential => { :credential_name => "new_name" }
response.should redirect_to(user_credentials_path)
user_credentials(:bob_aws_key).reload.credential_name.should == "new_name"
lambda {
post :update, :id => user_credentials(:jane_aws_key).to_param, :user_credential => { :credential_name => "new_name" }
}.should raise_error(ActiveRecord::RecordNotFound)
user_credentials(:jane_aws_key).reload.credential_name.should_not == "new_name"
end
it "shows errors" do
post :update, :id => user_credentials(:bob_aws_key).to_param, :user_credential => { :credential_name => "" }
assigns(:user_credential).should have(1).errors_on(:credential_name)
response.should render_template("edit")
end
end
describe "DELETE destroy" do
it "destroys only UserCredentials owned by the current user" do
expect {
delete :destroy, :id => user_credentials(:bob_aws_key).to_param
}.to change(UserCredential, :count).by(-1)
lambda {
delete :destroy, :id => user_credentials(:jane_aws_key).to_param
}.should raise_error(ActiveRecord::RecordNotFound)
end
end
end
|